last executing test programs: 8.912789699s ago: executing program 1 (id=3828): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x40000, 0x0) read$auto(r0, 0x0, 0x20) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40802, 0x0) read$auto(r1, 0x0, 0xb4d3) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000240), 0x400, 0x0) 8.613910988s ago: executing program 1 (id=3830): mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) io_uring_setup$auto(0x1, 0x0) madvise$auto(0x0, 0x1ff, 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) (fail_nth: 4) 7.671943642s ago: executing program 1 (id=3832): r0 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000240), 0xa002, 0x0) writev$auto(r0, 0x0, 0x100) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0) unshare$auto(0x40000080) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) r2 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) readv$auto(r2, &(0x7f0000000680)={&(0x7f0000000540), 0x40200}, 0x3) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0) ppoll$auto(&(0x7f0000000000)={r1, 0x40}, 0x2, 0x0, 0x0, 0x8) socket(0x2, 0x801, 0x100) bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x3, @local}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x52) sendmsg$auto_IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, 0x0, 0x4040885) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_SNDCTL_DSP_SYNC(r1, 0x5001, 0xfffffffffffffffc) modify_ldt$auto(0x1, 0x0, 0x10) modify_ldt$auto(0x6, &(0x7f0000000340)="8301b656ef0399b211b40bbdaaa0167ea0777435df2347b051011c5de632cff853938f661b6932b79d9e1a61e6d5ce6ce292d8a580342223f7408aae9d90bec8520759be575acd3945ea6e1bb0cf05f5ab15ee04954d227dd4f6ec4ddde26ec093641fd66f76e2e6f9e29df029efb5a6cc1a8b97302958f49982ed93d6a5c0e6c3074f9e33ab25e2b87ae53f78163a6f4cf7f69115f9c1842954b7ee0fa5340cb15ead1b0161911cf0df78623d6d0b3c757300d9c55ddf4b20080330c7a49054fbeefc0e052693", 0x1ff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) r3 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) pread64$auto(r3, 0x0, 0x5, 0x8000400) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) syz_genetlink_get_family_id$auto_ethtool(0x0, r5) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(r5, 0x0, 0x20000080) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x20000000007, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x2, 0x20009, 0x4000000000000005, 0xeb1, 0x405, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x404020009, 0xdb, 0xf1, 0x401, 0x8000) 7.001064002s ago: executing program 0 (id=3836): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x51, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002dbd7000f9dbdf2501000000060002000100000005000700570000000800090108000000050004000300000014001f00fe88000000000000000000000000000114002000ff010000000000000000000000000001"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000180)=""/68, 0x44) syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r1) sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r1, 0x0, 0x20000000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) ioctl$auto(r1, 0x57, r0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r2 = getpid() openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0) process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={0x0, 0xffffffff}, 0x6, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x801, 0x84) fsopen$auto(0x0, 0x1) getpid() 6.202896725s ago: executing program 3 (id=3839): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) r1 = openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/ns/cgroup\x00', 0xa2000, 0x0) r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000001c0), r0) sendmsg$auto_NL802154_CMD_GET_INTERFACE(r0, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x88, r2, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_IFNAME={0x14, 0x4, 'veth1_vlan\x00'}, @NL802154_ATTR_SEC_KEY={0x5f, 0x30, 0x0, 0x1, [@generic="533dec67f8675ca7e797538ed1b2ae59570efa005543019d7cf405d4d89bd58834d259ccf9944b6512f3d7f10f4847afd9dcb339c628eb1f5e2c5f950bc2e2217add977f70f511c17ff06a55505cc032d91bd477a187da473b4b51"]}]}, 0x88}, 0x1, 0x0, 0x0, 0x20008000}, 0x8000000) write$auto(r1, 0x0, 0x100000000) recvfrom$auto(0x4, 0x0, 0x1, 0x3ffffd, 0x0, 0x0) r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x4010000000001, 0x0) r4 = fsopen$auto(0x0, 0x1) keyctl$auto_KEY_SPEC_GROUP_KEYRING(0x2, 0x0, 0xee00, 0x0, 0xfffffffffffffffa) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/transparent_hugepage/hugepages-8kB/stats/shmem_alloc\x00', 0x2400, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000000)=""/8, 0x8) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptya5\x00', 0x62c00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) munmap$auto(0x20001000, 0x7fb3) waitid$auto_P_ALL(0x0, 0x7, &(0x7f0000000340)={@_si_pad}, 0x1, 0x0) openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/cmdline\x00', 0x200000, 0x0) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000140), 0x120200, 0x0) r6 = open(&(0x7f0000000000)='./file0\x00', 0x101800, 0x181) r7 = creat$auto(&(0x7f0000000040)='./file0\x00', 0x81) splice$auto(r6, 0x0, r7, 0x0, 0xb, 0xf) ioctl$auto_PPPIOCSPASS(r3, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x20, 0xf1, 0xb0, @raw=0xfffff028}}) 5.508987602s ago: executing program 1 (id=3840): mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000001c0)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x3, 0x0) r0 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x155) ioctl$auto(0x3, 0x541a, r0) ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x1, &(0x7f0000000200)="dfa49241ebc5fa96a9297dd3a0ee857735a62cc4228d134f78ac2336b2d55d94db30c76afeaa5abde6bc293d4e058775232fa5a4cd86e6ad55f588c593dd4bf24737d142a223f67eaf1d1e7e26971a0a78013b390363cc7476becdda979338cf128e5d6945edf361872bdaff1caf78de663eec01e715e94e5387f037c11d9f88762918e0504a54b79d2b01a71f7f7345072a83ac7341497660f1daa24f8e7581513205c1c80a1645aa4b184c8d8fa5b0b53bb7c69d2d3db06cbd31b5d5ddc9392bff24bf21523998d7e8187da9a20e") access$auto(&(0x7f0000000000)='}[,&*}\x00', 0x7) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x0, 0x5, 0x0) inotify_init1$auto(0x800) io_uring_setup$auto(0x4, 0x0) open(0x0, 0x22240, 0x55) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x40000, 0x0) ioctl$auto(0x3, 0x80286f4e, r1) ioctl$auto(0x3, 0x6f41, 0x38) 5.404556313s ago: executing program 0 (id=3842): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) capget$auto(&(0x7f0000000000)={0x19980330}, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000002500), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r1) sendmsg$auto_OVS_DP_CMD_NEW(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x2c, r4, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, 'HfR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x80) r5 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_DP_CMD_DEL(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002abd70"], 0x38}, 0x1, 0x0, 0x0, 0x20040011}, 0x20000000) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000500)={'gretap0\x00', 0x0}) socket(0xa, 0x23af690fef30229, 0x9) sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, 0x0, 0x140080e4) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x807, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x8, 0x9, 0x80003, 0x4, 0x200000000001, 0x384, 0x9, 0x8, 0x10006, 0x400007f, 0x7, 0x0, 0xe, 0x22000, 0x200, 0x0, 0x84}, 0x1fa, 0xd) r9 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000000c0), 0x2802, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r9, 0x2, &(0x7f0000000380)="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") sendmsg$auto_OVS_DP_CMD_GET(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r2, 0x5, 0x70bd29, 0x25dfdbfc, {}, [@OVS_DP_ATTR_IFINDEX={0x8, 0x9, r8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000c000}, 0x4000024) madvise$auto(0x0, 0xffffffffffff0001, 0x15) write$auto(0x3, 0x0, 0x100082) sendmmsg$auto(r0, &(0x7f0000000640)={{&(0x7f0000000000), 0x5ae, &(0x7f0000000100)={&(0x7f0000000780)="4c030000000000002106000000000000005f6bba441810", 0x49}, 0x5, 0x0, 0x5, 0x1}, 0x1}, 0x2, 0x100) fsconfig$auto_SHMEM_HUGE_FORCE(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)="50a54f6ba2eabf1c36410848849a", 0xfffffffffffffffe) bpf$auto(0xa, &(0x7f00000000c0)=@query={@target_ifindex, 0x4, 0x0, 0x2, 0x3, @prog_cnt=0xc, 0x0, 0xd8, 0x0, 0x56a, 0x1}, 0x91) 4.683888593s ago: executing program 3 (id=3843): r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vivid.0/video4linux/video10/dev_debug\x00', 0x40000, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) futex$auto(&(0x7f0000000080)=0x1, 0x8, 0x3d, 0x0, 0x0, 0x0) r3 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40802, 0x0) read$auto(r3, 0x0, 0xb4d3) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000240), 0x400, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/tty/ttya3/uevent\x00', 0x9917e99cff98066a, 0x0) read$auto(r4, 0x0, 0x20) mq_open$auto(0x0, 0x83, 0x9, 0x0) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mount$auto(0x0, 0x0, &(0x7f0000000100)='nfsd\x00\xee\x1a\x8fg\x1b\x04\xad>\x96\xe9IG\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p\xc6\x00\x00\x00\x00\xb9\xac\xde\x0e\x90\x18\xf1\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd\x14\x81\xbe\xab\xed\xd5MI\x830_\xc2\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xees\xf0\xc2\xad\xae\x99\xeb\xc5\xf0\"\x92\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x94o\x1b[\xa8]\x9b\x03\x95\xc3\xad\xad\x1d#oi|\x04\x93N\xfa\x17\xf3b\xf6', 0x4, 0x0) getcwd$auto(0x0, 0x0) mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) lstat$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x6) semtimedop$auto(0x7, &(0x7f0000000180)={0xffff, 0x7}, 0x1, &(0x7f00000001c0)={0x7, 0x80000000}) semctl$auto_IPC_STAT(0x0, 0x101, 0x2, 0x200) ioctl$auto_IOCTL_VMCI_CTX_REMOVE_NOTIFICATION(0xffffffffffffffff, 0x7b0, 0x0) ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cc, 0x8, 0x5}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xb}) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x200, 0x0) ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0) 4.486910999s ago: executing program 1 (id=3844): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/03.0\x00', 0x121002, 0x0) setrlimit$auto(0x7, &(0x7f0000000080)={0x0, 0x6}) r1 = pidfd_open$auto(0x1, 0x0) setns(r1, 0x4000000) signalfd$auto(0xffffffff, &(0x7f0000000000)={0x7}, 0x8) write$auto(r0, 0x0, 0x30fe) 4.464727843s ago: executing program 3 (id=3845): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x40040}, 0x800) socketpair$auto(0x4004, 0x5, 0xfffffffc, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22040, 0x75) socket(0x840000000002, 0x3, 0xff) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x14}, 0x3}, 0x55) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="db00"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x4, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) fsconfig$auto_SHMEM_HUGE_FORCE(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000100)="50a54f6ba2eabf1c36410848849a", 0xfffffffffffffffe) r0 = bpf$auto(0xa, &(0x7f00000000c0)=@query={@target_ifindex, 0x4, 0x0, 0x2, 0x3, @prog_cnt=0xc, 0x0, 0xd8, 0x0, 0x569}, 0x91) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.3/usb4/ep_00/uevent\x00', 0xa001, 0x0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram13\x00', 0xe8742, 0x0) write$auto(r2, &(0x7f0000000000)='/dev/nullb0\x00', 0xb2) close_range$auto(0x2, 0x8, 0x0) write$auto(r1, &(0x7f0000000040)=' ', 0x4) bpf$auto(0x8, &(0x7f0000000000)=@prog_bind_map={r0, r1, 0x1}, 0x7) 4.344730657s ago: executing program 0 (id=3846): openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0) mmap$auto(0x0, 0x101, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x100) getsockopt$auto(r0, 0x0, 0x42, 0x0, &(0x7f00000000c0)=0x1e) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) socket(0x2, 0x2, 0x88) setpriority$auto_PRIO_PROCESS(0x0, 0x0, 0xfffffff7) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) mmap$auto(0x0, 0x400008, 0xd, 0x9b72, 0x2, 0x7f) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x48041, 0x0) write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000240)="1c520b214b197e", 0x7) write$auto(r1, 0x0, 0x480) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r2, 0x0, 0x1f40) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x101001, 0x0) open_tree_attr$auto(0xffffffffffffff9c, 0x0, 0x4, 0x0, 0xf) bpf$auto(0xffffffff, &(0x7f0000000100)=@link_detach, 0xee) write$auto(0x3, 0x0, 0xfdf3) mmap$auto(0x0, 0x9, 0x40, 0x8000000008012, 0x3, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x8000012, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x8001) mprotect$auto(0x0, 0x806121, 0x8) getsockopt$auto_SO_ERROR(r0, 0x6, 0x4, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) syslog$auto(0x3, 0x0, 0x5) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000140), r0) sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="d8000000", @ANYRES16=r4, @ANYBLOB="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"], 0xd8}, 0x1, 0x0, 0x0, 0x405}, 0x4004000) 4.258099541s ago: executing program 3 (id=3847): openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/domainname\x00', 0x88042, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = socket(0x2, 0x1, 0x0) getsockopt$auto(r0, 0x6, 0x1f, 0x0, &(0x7f0000000100)=0x1) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x1b}, 0x403) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) preadv2$auto(r2, &(0x7f00000011c0)={0x0, 0x8}, 0x10, 0x2, 0x3, 0x2) r3 = socket(0x11, 0x3, 0x9) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmmsg$auto(r3, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x49}, 0x5, &(0x7f0000000180), 0x6, 0x1000}, 0x5}, 0x2, 0x100) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.2/usb3/power/autosuspend\x00', 0x10b142, 0x0) sendfile$auto(r4, r4, 0x0, 0x5) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) mmap$auto(0x9, 0x8, 0xdb, 0x9b75, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYRES8], 0x24}, 0x1, 0x0, 0x0, 0x20040014}, 0x2600c880) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x2, 0x73) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000080), 0x6b) connect$auto(0x3, &(0x7f00000000c0), 0x55) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0xe000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) setsockopt$auto(0x3, 0x10000000084, 0x18, 0x0, 0xb) ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) 4.100847151s ago: executing program 1 (id=3849): socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/thread-self/net/dev_mcast\x00', 0x404080, 0x0) write$auto(r0, 0x0, 0x7ef) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/mac80211_hwsim/hwsim1/net/wlan1/type\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)=""/116, 0x74) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0) socket(0xa, 0x1, 0x100) modify_ldt$auto(0x1, 0x0, 0x10) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) socket(0x2, 0x1, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x12, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0x4000]}, 0x0) write$auto(r2, &(0x7f0000000440)='/Eev/audio1\x00VI\xa3\xaa\xb1\x05\x00\x00\x00\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\x89C:\xc3\xcbx*=\x12\xb4q\xeeC\x81\n\\_\x04D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\x9e\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x8cec, 0x6]}, 0x0) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0) sendfile$auto(r3, r3, 0x0, 0x0) mmap$auto(0xc, 0x20009, 0x5, 0xeb1, 0x405, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x80400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0xffffffffffffbfff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x60301, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto(r4, 0x0, 0x20) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0004, 0x19) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) close_range$auto(0x2, 0x8, 0x0) 3.236217007s ago: executing program 3 (id=3850): openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0) io_uring_setup$auto(0x9e6, 0x0) bpf$auto(0x5, &(0x7f0000000300)=@bpf_attr_3={0x1c, 0x24, 0xf, 0x63, 0x400, 0x0, 0xffffffffffffffff, 0x80f0c8, 0x60, "38c1d5cbcb9f6b5e511f0cd8ed068f65", 0x0, 0x113e33f2, 0xffffffffffffffff, 0xe4, 0x6, 0x5, 0x6, 0x8, 0x0, 0x3, @attach_prog_fd, 0x6, 0xffff, 0x8, 0x4, 0xfffffffe}, 0x47) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x88000, 0x0) read$auto(r0, 0x0, 0x20) sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, 0x0, 0x24008804) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x35, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x40080, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x7}, 0x1fe, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000380)='ns/user\x00') sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) sysfs$auto(0xfffffffe, 0x60000, 0x0) execveat$auto(r1, 0x0, 0x0, 0x0, 0x39) keyctl$auto(0x1d, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8) r2 = socket(0x10, 0x2, 0x0) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r2) sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 2.915951849s ago: executing program 0 (id=3851): r0 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/etherd/discover\x00', 0x80101, 0x0) writev$auto(r0, &(0x7f0000000140)={0x0, 0xe0}, 0x4) 2.30930845s ago: executing program 0 (id=3852): socket(0x2, 0x1, 0x106) syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), 0xffffffffffffffff) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/uevent_seqnum\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000001dc0)=""/195, 0xc3) r4 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/etherd/discover\x00', 0x80101, 0x0) writev$auto(r4, &(0x7f0000000140)={0x0, 0xe0}, 0x4) 2.103452102s ago: executing program 2 (id=3853): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x0) socket(0xa, 0x1, 0x84) connect$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x2, @rand_addr=0xe0}, 0x2000055) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x10, 0x3, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4000894}, 0x4000000) bpf$auto(0x0, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0xffff, 0xfffff0b6, 0xffff, 0x84, 0xac1, 0x2, 0x36242398, 0xfffff5b2, 0x3bb, 0x8000007, 0xffff, 0x6, 0x81, 0x68198}, 0x6f3) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) rt_tgsigqueueinfo$auto(0x3, 0x96, 0x3, &(0x7f0000000180)={@siginfo_0_0={0x80000000, 0x7, 0x8000, @_kill={0xffffffffffffffff}}}) epoll_ctl$auto_EPOLL_CTL_DEL(r0, 0x2, r1, &(0x7f0000000000)={0x5, 0x9}) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.879348167s ago: executing program 2 (id=3854): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x1ff, 0x1001, 0x5, 0x717e, 0x204, 0x7, 0x3, 0xd, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0xfffffffffffffffe, 0x10001, 0x10002, 0x7f, 0x2a2, 0x2, 0xa, 0x22000, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0xd) r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffffffffffd07, &(0x7f00000001c0)) (fail_nth: 6) 1.287883224s ago: executing program 2 (id=3855): mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) (fail_nth: 16) prctl$auto_PR_SET_NAME(0xf, 0x3, 0x0, 0x7ff, 0x2) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) 576.769968ms ago: executing program 0 (id=3856): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) clock_adjtime$auto(0xff, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) socket$nl_generic(0x11, 0x3, 0x10) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x4000, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8001) socket(0x11, 0x2, 0x300) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x7ffc) move_pages$auto(0x1, 0x5, 0x0, 0x0, 0x0, 0x8000000000000000) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(r0, 0x0, 0x9a6, 0x7000002) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) epoll_create$auto(0x4) sendmmsg$auto(r0, 0x0, 0x9a8, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) bpf$auto(0x0, &(0x7f00000001c0)=@query={@target_fd=r1, 0x6, 0x8, 0x80000001, 0x7, @prog_cnt=0x6, 0x0, 0x1, 0x40, 0x7, 0x3}, 0x6f3) mmap$auto(0x3ff, 0x3, 0xffffffff, 0x100000eb1, 0x40000000000a1, 0x4000008000) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) 357.980609ms ago: executing program 3 (id=3857): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/dummy_udc.6/udc/dummy_udc.6/state\x00', 0x2000, 0x0) mmap$auto(0x80000000, 0x400008, 0xdf, 0x9b72, 0x2, 0x100000001) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0) mmap$auto(0x2, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) socket(0xa, 0x1, 0x100) r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0x153500, 0x0) r1 = ioctl$auto_SW_SYNC_GET_DEADLINE(r0, 0xc0105702, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x541100, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0) sendfile$auto(r3, r3, 0x0, 0x200) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x80000001, 0x7, 0xffffffffffffffff, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) syz_genetlink_get_family_id$auto_psample(0x0, r1) sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r4, 0x0, 0x801) socket$nl_generic(0x10, 0x3, 0x10) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x8800) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r5, 0x4b41, 0x7) 357.305176ms ago: executing program 2 (id=3865): signalfd$auto(0xffffffff, &(0x7f0000000000)={0x7}, 0x8) 248.215417ms ago: executing program 2 (id=3858): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) (async) mmap$auto(0x0, 0x6, 0x30e7, 0x1000411, 0x40000000000a1, 0x2000000009) r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) pread64$auto(r0, 0x0, 0x7ff, 0x400) (async) socket(0x1e, 0x805, 0x0) (async) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x60840, 0x0) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) mmap$auto(0xfffffffffffff25c, 0x3, 0x121, 0x16, r1, 0x8) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc4c85513, &(0x7f0000000100)={{@raw=0x2, 0x85, 0x20e, 0x9, "669cbbd9e9756f22fdffa188e0f106000000000000000b2f4ab8633824f2d2252ca5f200", @raw=0x6}, 0x0, @integer=@value_ptr=&(0x7f0000000680)=0x4, "282f77b07e718ed4d99a34617774e3a82f982e0f05e516c299a28a585e87e0d908e2c8e50de5016f1de5d432da2cc20e951d8fcdc4f791a11996aad5af504c0d9927e62ef70b23a13735a4fe805c1ce1b6b1d83d21bb42794ec925b4547a3d52d4b5210392111e181719fef9d685b6534b171d76ad633f94a608b818600a6c85"}) (async) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (async) socket(0xa, 0x5, 0x100) (async) r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) pread64$auto(r2, 0x0, 0x7ff, 0x400) (async) socket(0x1a, 0x1, 0x0) (async) sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, 0x0, 0x24008804) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x36, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x84}, 0x1fe, 0xd) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYRES16=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x13, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8040) (async) open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) (async) r3 = socket(0x10, 0x2, 0x0) getcwd$auto(&(0x7f0000000040)='HSR\x00', 0x5) (async) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video14\x00', 0x1a1983, 0x0) (async) r4 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) getdents$auto(r4, 0x0, 0x400018) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, 0x0, 0x40090) (async) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4c000000852c0c11e2f519ee00a5c3cf16958aa8312e0a5330148e541222842ff5467ddeda14344fc7b2fe577314545cefef8afa13047c4a2c65335706a273679635f267bab97dae0075f0b1fc1e203dce238affda8938254b93ca53e1f856c3c048c064", @ANYRES16=0x0, @ANYBLOB="01002bbd7000f9dbdf250100000005000700580000000800090008000000140008006d61637674617030000000000000000014001f00"/70], 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) (async) socket(0x2, 0x1, 0x106) 0s ago: executing program 2 (id=3859): mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) prctl$auto_PR_SET_NAME(0xf, 0x3, 0x0, 0x7ff, 0x2) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/default/forwarding\x00', 0x141241, 0x0) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000000c0), 0xffffffffffffffff) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000080), 0x1ffffffff}, 0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0) mbind$auto(0x4, 0x3a, 0x0, &(0x7f0000000040)=0x8, 0x4, 0x80) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x41, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000040), r1) sendmsg$auto_ILA_CMD_DEL(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, r2, 0x1, 0x70bd26, 0x6, {}, [@ILA_ATTR_CSUM_MODE={0x5, 0x7, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000010}, 0x4000000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x1, 0x0) r3 = mq_open$auto(&(0x7f0000000000)='.\xf1e4\xdf\x16\x95kxE\xd9x\x15\xb0\xf6V\x93\xb4E\x06\xc5}l', 0x400056a, 0x9, 0x0) ftruncate$auto(r3, 0x10000000004) setsockopt$auto(0x400000000000003, 0x28, 0x1, 0x0, 0x0) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) socket(0x22, 0x80002, 0x73) setsockopt$auto(0x3, 0x0, 0x60, 0x0, 0x10001) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) kernel console output (not intermixed with test programs): 6 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1216.036920][T22077] RSP: 002b:00007f830a0bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1216.036943][T22077] RAX: ffffffffffffffda RBX: 00007f83093b5fa0 RCX: 00007f830918e929 [ 1216.036959][T22077] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1216.036974][T22077] RBP: 00007f8309210b39 R08: 0000000000000000 R09: 0000000000000000 [ 1216.036988][T22077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1216.037003][T22077] R13: 0000000000000000 R14: 00007f83093b5fa0 R15: 00007ffd7784f428 [ 1216.037032][T22077] [ 1216.512024][T22088] ubi0: attaching mtd0 [ 1216.520149][T22088] ubi0: scanning is finished [ 1216.715522][T22088] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1217.206411][T22094] can: request_module (can-proto-3) failed. [ 1217.216993][T22088] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1218.408249][T22105] random: crng reseeded on system resumption [ 1220.027720][T22138] can: request_module (can-proto-3) failed. [ 1220.726294][T22156] ALSA: mixer_oss: invalid OSS volume '' [ 1220.932150][T22161] FAULT_INJECTION: forcing a failure. [ 1220.932150][T22161] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1220.945859][T22161] CPU: 1 UID: 0 PID: 22161 Comm: syz.2.3354 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1220.945906][T22161] Tainted: [U]=USER [ 1220.945915][T22161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1220.945929][T22161] Call Trace: [ 1220.945937][T22161] [ 1220.945947][T22161] dump_stack_lvl+0x16c/0x1f0 [ 1220.945986][T22161] should_fail_ex+0x512/0x640 [ 1220.946028][T22161] should_fail_alloc_page+0xe7/0x130 [ 1220.946054][T22161] prepare_alloc_pages+0x3c2/0x610 [ 1220.946084][T22161] ? rcu_is_watching+0x12/0xc0 [ 1220.946125][T22161] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1220.946188][T22161] ? rcu_is_watching+0x12/0xc0 [ 1220.946225][T22161] ? trace_mm_page_alloc+0x11f/0x1a0 [ 1220.946267][T22161] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 1220.946332][T22161] ? __pfx_stack_trace_save+0x10/0x10 [ 1220.946375][T22161] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1220.946444][T22161] ? alloc_vmap_area+0x645/0x29c0 [ 1220.946482][T22161] ? __vmalloc_node_range_noprof+0x271/0x14b0 [ 1220.946526][T22161] ? __do_sys_listmount+0x1c2/0xec0 [ 1220.946570][T22161] ? do_syscall_64+0xcd/0x490 [ 1220.946621][T22161] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1220.946676][T22161] alloc_pages_bulk_noprof+0x71c/0x1410 [ 1220.946730][T22161] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1220.946786][T22161] ? policy_nodemask+0xea/0x4e0 [ 1220.946825][T22161] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 1220.946881][T22161] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1220.946935][T22161] kasan_populate_vmalloc+0xf1/0x1f0 [ 1220.946993][T22161] alloc_vmap_area+0x959/0x29c0 [ 1220.947051][T22161] ? __pfx_alloc_vmap_area+0x10/0x10 [ 1220.947101][T22161] __get_vm_area_node+0x1ca/0x330 [ 1220.947151][T22161] __vmalloc_node_range_noprof+0x271/0x14b0 [ 1220.947197][T22161] ? __do_sys_listmount+0x1c2/0xec0 [ 1220.947251][T22161] ? __lock_acquire+0xb8a/0x1c90 [ 1220.947305][T22161] ? __do_sys_listmount+0x1c2/0xec0 [ 1220.947358][T22161] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 1220.947406][T22161] ? __alloc_pages_noprof+0xb/0x1b0 [ 1220.947459][T22161] ? ___kmalloc_large_node+0x84/0x1e0 [ 1220.947496][T22161] ? find_held_lock+0x2b/0x80 [ 1220.947539][T22161] __kvmalloc_node_noprof+0x30a/0x620 [ 1220.947588][T22161] ? __do_sys_listmount+0x1c2/0xec0 [ 1220.947632][T22161] ? __do_sys_listmount+0x1c2/0xec0 [ 1220.947685][T22161] ? __do_sys_listmount+0x1c2/0xec0 [ 1220.947728][T22161] __do_sys_listmount+0x1c2/0xec0 [ 1220.947779][T22161] ? __x64_sys_futex+0x1e0/0x4c0 [ 1220.947818][T22161] ? __x64_sys_futex+0x1e9/0x4c0 [ 1220.947862][T22161] ? __pfx___do_sys_listmount+0x10/0x10 [ 1220.947924][T22161] do_syscall_64+0xcd/0x490 [ 1220.947982][T22161] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1220.948009][T22161] RIP: 0033:0x7fbcd478e929 [ 1220.948028][T22161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1220.948053][T22161] RSP: 002b:00007fbcd55a6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 1220.948076][T22161] RAX: ffffffffffffffda RBX: 00007fbcd49b5fa0 RCX: 00007fbcd478e929 [ 1220.948093][T22161] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 1220.948108][T22161] RBP: 00007fbcd4810b39 R08: 0000000000000000 R09: 0000000000000000 [ 1220.948123][T22161] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 1220.948138][T22161] R13: 0000000000000000 R14: 00007fbcd49b5fa0 R15: 00007ffdc5fe97e8 [ 1220.948168][T22161] [ 1220.950000][T22161] syz.2.3354: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 1221.313778][T22161] CPU: 0 UID: 0 PID: 22161 Comm: syz.2.3354 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1221.313826][T22161] Tainted: [U]=USER [ 1221.313837][T22161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1221.313857][T22161] Call Trace: [ 1221.313868][T22161] [ 1221.313881][T22161] dump_stack_lvl+0x16c/0x1f0 [ 1221.313937][T22161] warn_alloc+0x248/0x3a0 [ 1221.313989][T22161] ? __pfx_warn_alloc+0x10/0x10 [ 1221.314040][T22161] ? kfree+0x2b4/0x4d0 [ 1221.314093][T22161] ? __get_vm_area_node+0x208/0x330 [ 1221.314142][T22161] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 1221.314199][T22161] ? __lock_acquire+0xb8a/0x1c90 [ 1221.314249][T22161] ? __do_sys_listmount+0x1c2/0xec0 [ 1221.314317][T22161] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 1221.314367][T22161] ? __alloc_pages_noprof+0xb/0x1b0 [ 1221.314420][T22161] ? ___kmalloc_large_node+0x84/0x1e0 [ 1221.314454][T22161] ? find_held_lock+0x2b/0x80 [ 1221.314497][T22161] __kvmalloc_node_noprof+0x30a/0x620 [ 1221.314546][T22161] ? __do_sys_listmount+0x1c2/0xec0 [ 1221.314591][T22161] ? __do_sys_listmount+0x1c2/0xec0 [ 1221.314641][T22161] ? __do_sys_listmount+0x1c2/0xec0 [ 1221.314684][T22161] __do_sys_listmount+0x1c2/0xec0 [ 1221.314737][T22161] ? __x64_sys_futex+0x1e0/0x4c0 [ 1221.314780][T22161] ? __x64_sys_futex+0x1e9/0x4c0 [ 1221.314824][T22161] ? __pfx___do_sys_listmount+0x10/0x10 [ 1221.314890][T22161] do_syscall_64+0xcd/0x490 [ 1221.314960][T22161] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1221.314995][T22161] RIP: 0033:0x7fbcd478e929 [ 1221.315022][T22161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1221.315056][T22161] RSP: 002b:00007fbcd55a6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 1221.315087][T22161] RAX: ffffffffffffffda RBX: 00007fbcd49b5fa0 RCX: 00007fbcd478e929 [ 1221.315110][T22161] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 1221.315131][T22161] RBP: 00007fbcd4810b39 R08: 0000000000000000 R09: 0000000000000000 [ 1221.315152][T22161] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 1221.315173][T22161] R13: 0000000000000000 R14: 00007fbcd49b5fa0 R15: 00007ffdc5fe97e8 [ 1221.315215][T22161] [ 1221.545354][T22161] Mem-Info: [ 1221.548679][T22161] active_anon:13452 inactive_anon:2639 isolated_anon:0 [ 1221.548679][T22161] active_file:19618 inactive_file:44131 isolated_file:0 [ 1221.548679][T22161] unevictable:768 dirty:583 writeback:0 [ 1221.548679][T22161] slab_reclaimable:11140 slab_unreclaimable:95029 [ 1221.548679][T22161] mapped:27201 shmem:1440 pagetables:1121 [ 1221.548679][T22161] sec_pagetables:0 bounce:0 [ 1221.548679][T22161] kernel_misc_reclaimable:0 [ 1221.548679][T22161] free:1305471 free_pcp:11351 free_cma:0 [ 1221.595449][T22161] Node 0 active_anon:53808kB inactive_anon:9556kB active_file:78460kB inactive_file:176392kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:108796kB dirty:2328kB writeback:0kB shmem:4224kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11292kB pagetables:4332kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1221.629659][T22161] Node 1 active_anon:0kB inactive_anon:0kB active_file:12kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:8kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:152kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1221.663872][T22161] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1221.702705][T22161] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 1221.710017][T22161] Node 0 DMA32 free:1289820kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:53764kB inactive_anon:9556kB active_file:77232kB inactive_file:176320kB unevictable:1536kB writepending:2328kB present:3129332kB managed:2540352kB mlocked:0kB bounce:0kB free_pcp:43284kB local_pcp:26508kB free_cma:0kB [ 1221.743204][T22161] lowmem_reserve[]: 0 0 1 1 1 [ 1221.748406][T22161] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:1228kB inactive_file:72kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:24kB local_pcp:12kB free_cma:0kB [ 1221.777996][T22161] lowmem_reserve[]: 0 0 0 0 0 [ 1221.782959][T22161] Node 1 Normal free:3916684kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:12kB inactive_file:132kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:2092kB local_pcp:0kB free_cma:0kB [ 1221.814047][T22161] lowmem_reserve[]: 0 0 0 0 0 [ 1221.818896][T22161] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 1221.831832][T22161] Node 0 DMA32: 491*4kB (UM) 1124*8kB (UME) 1285*16kB (UM) 1068*32kB (UME) 704*64kB (UME) 391*128kB (UM) 280*256kB (UM) 143*512kB (UME) 71*1024kB (UM) 5*2048kB (UME) 220*4096kB (UM) = 1289756kB [ 1221.852049][T22161] Node 0 Normal: 3*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB [ 1221.864756][T22161] Node 1 Normal: 209*4kB (UME) 65*8kB (UME) 52*16kB (UME) 236*32kB (UME) 110*64kB (UME) 30*128kB (UME) 13*256kB (UME) 7*512kB (UM) 2*1024kB (ME) 4*2048kB (UME) 947*4096kB (M) = 3916684kB [ 1221.895180][T22163] FAULT_INJECTION: forcing a failure. [ 1221.895180][T22163] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1221.958851][T22161] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1221.969009][T22163] CPU: 1 UID: 0 PID: 22163 Comm: syz.1.3355 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1221.969066][T22163] Tainted: [U]=USER [ 1221.969078][T22163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1221.969099][T22163] Call Trace: [ 1221.969110][T22163] [ 1221.969123][T22163] dump_stack_lvl+0x16c/0x1f0 [ 1221.969189][T22163] should_fail_ex+0x512/0x640 [ 1221.969246][T22163] strncpy_from_user+0x3b/0x2e0 [ 1221.969298][T22163] getname_flags.part.0+0x8f/0x550 [ 1221.969345][T22163] __x64_sys_unlink+0xb0/0x110 [ 1221.969399][T22163] do_syscall_64+0xcd/0x490 [ 1221.969454][T22163] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1221.969497][T22163] RIP: 0033:0x7f830918e929 [ 1221.969525][T22163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1221.969559][T22163] RSP: 002b:00007f830a0bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 1221.969591][T22163] RAX: ffffffffffffffda RBX: 00007f83093b5fa0 RCX: 00007f830918e929 [ 1221.969615][T22163] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000004c0 [ 1221.969636][T22163] RBP: 00007f8309210b39 R08: 0000000000000000 R09: 0000000000000000 [ 1221.969657][T22163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1221.969677][T22163] R13: 0000000000000000 R14: 00007f83093b5fa0 R15: 00007ffd7784f428 [ 1221.969721][T22163] [ 1221.970544][T22161] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 1222.168360][T22161] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1222.211086][T22161] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 1222.225408][T22161] 65161 total pagecache pages [ 1222.230278][T22161] 1 pages in swap cache [ 1222.237099][T22161] Free swap = 124752kB [ 1222.241373][T22161] Total swap = 124996kB [ 1222.246026][T22161] 2097051 pages RAM [ 1222.250667][T22161] 0 pages HighMem/MovableOnly [ 1222.260696][T22161] 429985 pages reserved [ 1222.265299][T22161] 0 pages cma reserved [ 1225.232934][T22222] ubi0: attaching mtd0 [ 1225.257116][T22222] ubi0: scanning is finished [ 1225.282911][T22222] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1225.528123][T22222] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1225.985757][T22238] FAULT_INJECTION: forcing a failure. [ 1225.985757][T22238] name failslab, interval 1, probability 0, space 0, times 0 [ 1225.998953][T22238] CPU: 0 UID: 0 PID: 22238 Comm: syz.1.3370 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1225.999011][T22238] Tainted: [U]=USER [ 1225.999020][T22238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1225.999034][T22238] Call Trace: [ 1225.999043][T22238] [ 1225.999052][T22238] dump_stack_lvl+0x16c/0x1f0 [ 1225.999094][T22238] should_fail_ex+0x512/0x640 [ 1225.999130][T22238] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1225.999172][T22238] should_failslab+0xc2/0x120 [ 1225.999196][T22238] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1225.999242][T22238] ? security_inode_alloc+0x3b/0x2b0 [ 1225.999269][T22238] ? sk_prot_alloc+0x60/0x2a0 [ 1225.999298][T22238] sk_prot_alloc+0x60/0x2a0 [ 1225.999325][T22238] sk_alloc+0x36/0xc20 [ 1225.999360][T22238] smc_create+0x114/0x2a0 [ 1225.999392][T22238] __sock_create+0x335/0x8d0 [ 1225.999426][T22238] __sys_socket+0x14d/0x260 [ 1225.999452][T22238] ? __fget_files+0x20e/0x3c0 [ 1225.999486][T22238] ? __pfx___sys_socket+0x10/0x10 [ 1225.999515][T22238] ? xfd_validate_state+0x61/0x180 [ 1225.999555][T22238] __x64_sys_socket+0x72/0xb0 [ 1225.999582][T22238] ? lockdep_hardirqs_on+0x7c/0x110 [ 1225.999618][T22238] do_syscall_64+0xcd/0x490 [ 1225.999660][T22238] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1225.999685][T22238] RIP: 0033:0x7f830918e929 [ 1225.999704][T22238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1225.999727][T22238] RSP: 002b:00007f830a0bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1225.999750][T22238] RAX: ffffffffffffffda RBX: 00007f83093b5fa0 RCX: 00007f830918e929 [ 1225.999766][T22238] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 000000000000002b [ 1225.999781][T22238] RBP: 00007f8309210b39 R08: 0000000000000000 R09: 0000000000000000 [ 1225.999797][T22238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1225.999812][T22238] R13: 0000000000000000 R14: 00007f83093b5fa0 R15: 00007ffd7784f428 [ 1225.999842][T22238] [ 1226.203712][ C0] vkms_vblank_simulate: vblank timer overrun [ 1226.251899][T22238] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 1226.573261][T22243] ERROR: Out of memory at tomoyo_memory_ok. [ 1231.332071][T22321] can: request_module (can-proto-3) failed. [ 1231.720096][T22328] can: request_module (can-proto-3) failed. [ 1232.941257][T22338] random: crng reseeded on system resumption [ 1233.249100][T22353] FAULT_INJECTION: forcing a failure. [ 1233.249100][T22353] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1233.270968][T22353] CPU: 0 UID: 0 PID: 22353 Comm: syz.1.3391 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1233.271021][T22353] Tainted: [U]=USER [ 1233.271033][T22353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1233.271053][T22353] Call Trace: [ 1233.271064][T22353] [ 1233.271078][T22353] dump_stack_lvl+0x16c/0x1f0 [ 1233.271133][T22353] should_fail_ex+0x512/0x640 [ 1233.271189][T22353] _copy_from_user+0x2e/0xd0 [ 1233.271243][T22353] copy_msghdr_from_user+0x98/0x160 [ 1233.271295][T22353] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1233.271358][T22353] ? __pfx__kstrtoull+0x10/0x10 [ 1233.271407][T22353] ___sys_sendmsg+0xfe/0x1d0 [ 1233.271459][T22353] ? __pfx____sys_sendmsg+0x10/0x10 [ 1233.271530][T22353] ? find_held_lock+0x2b/0x80 [ 1233.271593][T22353] __sys_sendmmsg+0x200/0x420 [ 1233.271647][T22353] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1233.271713][T22353] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1233.271790][T22353] ? fput+0x70/0xf0 [ 1233.271822][T22353] ? ksys_write+0x1ac/0x250 [ 1233.271865][T22353] ? __pfx_ksys_write+0x10/0x10 [ 1233.271903][T22353] __x64_sys_sendmmsg+0x9c/0x100 [ 1233.271937][T22353] ? lockdep_hardirqs_on+0x7c/0x110 [ 1233.271970][T22353] do_syscall_64+0xcd/0x490 [ 1233.272007][T22353] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1233.272031][T22353] RIP: 0033:0x7f830918e929 [ 1233.272055][T22353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1233.272089][T22353] RSP: 002b:00007f830a0bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1233.272120][T22353] RAX: ffffffffffffffda RBX: 00007f83093b5fa0 RCX: 00007f830918e929 [ 1233.272142][T22353] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 1233.272162][T22353] RBP: 00007f830a0bc090 R08: 0000000000000000 R09: 0000000000000000 [ 1233.272183][T22353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1233.272203][T22353] R13: 0000000000000000 R14: 00007f83093b5fa0 R15: 00007ffd7784f428 [ 1233.272241][T22353] [ 1233.475574][ C0] vkms_vblank_simulate: vblank timer overrun [ 1236.976935][T22398] ubi0: attaching mtd0 [ 1237.000067][T22398] ubi0: scanning is finished [ 1237.018903][T22398] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1237.310786][T22388] random: crng reseeded on system resumption [ 1237.325283][T22398] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1237.849466][T22412] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3402'. [ 1238.165376][T22415] ovs_: entered promiscuous mode [ 1238.187566][T22416] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3403'. [ 1238.971366][T22435] ERROR: Out of memory at tomoyo_memory_ok. [ 1239.532506][T22444] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3410'. [ 1239.586073][T22444] vcan0: entered promiscuous mode [ 1240.606429][T22458] ubi0: attaching mtd0 [ 1240.614256][T22458] ubi0: scanning is finished [ 1240.618969][T22458] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1240.651773][T22462] FAULT_INJECTION: forcing a failure. [ 1240.651773][T22462] name failslab, interval 1, probability 0, space 0, times 0 [ 1240.682765][T22462] CPU: 1 UID: 0 PID: 22462 Comm: syz.3.3415 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1240.682813][T22462] Tainted: [U]=USER [ 1240.682821][T22462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1240.682835][T22462] Call Trace: [ 1240.682842][T22462] [ 1240.682851][T22462] dump_stack_lvl+0x16c/0x1f0 [ 1240.682892][T22462] should_fail_ex+0x512/0x640 [ 1240.682926][T22462] ? __kmalloc_noprof+0xbf/0x510 [ 1240.682963][T22462] ? unregister_netdevice_many_notify+0x63b/0x2700 [ 1240.683011][T22462] should_failslab+0xc2/0x120 [ 1240.683035][T22462] __kmalloc_noprof+0xd2/0x510 [ 1240.683077][T22462] unregister_netdevice_many_notify+0x63b/0x2700 [ 1240.683124][T22462] ? __pfx___mutex_trylock_common+0x10/0x10 [ 1240.683161][T22462] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 1240.683203][T22462] ? rcu_is_watching+0x12/0xc0 [ 1240.683231][T22462] ? __mutex_lock+0x1ca/0xb90 [ 1240.683268][T22462] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1240.683307][T22462] ? ppp_release+0x167/0x230 [ 1240.683333][T22462] ? __fsnotify_parent+0x24b/0xc40 [ 1240.683364][T22462] ? __pfx___mutex_lock+0x10/0x10 [ 1240.683404][T22462] unregister_netdevice_queue+0x305/0x3f0 [ 1240.683445][T22462] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 1240.683486][T22462] ? __pfx_locks_remove_file+0x10/0x10 [ 1240.683518][T22462] ? __pfx_ppp_release+0x10/0x10 [ 1240.683545][T22462] ppp_release+0x209/0x230 [ 1240.683573][T22462] __fput+0x402/0xb70 [ 1240.683603][T22462] task_work_run+0x150/0x240 [ 1240.683642][T22462] ? __pfx_task_work_run+0x10/0x10 [ 1240.683680][T22462] ? __pfx___do_sys_close_range+0x10/0x10 [ 1240.683722][T22462] exit_to_user_mode_loop+0xeb/0x110 [ 1240.683762][T22462] do_syscall_64+0x3f6/0x490 [ 1240.683800][T22462] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1240.683825][T22462] RIP: 0033:0x7f8cc278e929 [ 1240.683844][T22462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1240.683867][T22462] RSP: 002b:00007f8cc354c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1240.683890][T22462] RAX: 0000000000000000 RBX: 00007f8cc29b5fa0 RCX: 00007f8cc278e929 [ 1240.683906][T22462] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 1240.683921][T22462] RBP: 00007f8cc354c090 R08: 0000000000000000 R09: 0000000000000000 [ 1240.683936][T22462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1240.683950][T22462] R13: 0000000000000000 R14: 00007f8cc29b5fa0 R15: 00007ffebb18e1e8 [ 1240.683980][T22462] [ 1241.063187][T22458] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1242.334316][T22491] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3420'. [ 1242.573502][T22500] FAULT_INJECTION: forcing a failure. [ 1242.573502][T22500] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1242.613019][T22500] CPU: 0 UID: 0 PID: 22500 Comm: syz.0.3422 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1242.613075][T22500] Tainted: [U]=USER [ 1242.613086][T22500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1242.613105][T22500] Call Trace: [ 1242.613117][T22500] [ 1242.613130][T22500] dump_stack_lvl+0x16c/0x1f0 [ 1242.613186][T22500] should_fail_ex+0x512/0x640 [ 1242.613255][T22500] _copy_to_user+0x32/0xd0 [ 1242.613313][T22500] simple_read_from_buffer+0xcb/0x170 [ 1242.613360][T22500] tracing_total_entries_read+0x325/0x430 [ 1242.613411][T22500] ? __pfx_tracing_total_entries_read+0x10/0x10 [ 1242.613464][T22500] ? rw_verify_area+0xcf/0x680 [ 1242.613507][T22500] ? __pfx_tracing_total_entries_read+0x10/0x10 [ 1242.613548][T22500] vfs_read+0x1e1/0xc60 [ 1242.613601][T22500] ? __pfx___mutex_lock+0x10/0x10 [ 1242.613653][T22500] ? __pfx_vfs_read+0x10/0x10 [ 1242.613712][T22500] ? __fget_files+0x20e/0x3c0 [ 1242.613772][T22500] ksys_read+0x12a/0x250 [ 1242.613819][T22500] ? __pfx_ksys_read+0x10/0x10 [ 1242.613882][T22500] do_syscall_64+0xcd/0x490 [ 1242.613935][T22500] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1242.613969][T22500] RIP: 0033:0x7eff36b8e929 [ 1242.613996][T22500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1242.614029][T22500] RSP: 002b:00007eff37a3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1242.614061][T22500] RAX: ffffffffffffffda RBX: 00007eff36db5fa0 RCX: 00007eff36b8e929 [ 1242.614083][T22500] RDX: 00000000000000a8 RSI: 0000200000000380 RDI: 0000000000000003 [ 1242.614104][T22500] RBP: 00007eff37a3d090 R08: 0000000000000000 R09: 0000000000000000 [ 1242.614123][T22500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1242.614143][T22500] R13: 0000000000000000 R14: 00007eff36db5fa0 R15: 00007ffd29215798 [ 1242.614186][T22500] [ 1242.812216][ C0] vkms_vblank_simulate: vblank timer overrun [ 1242.835977][T22500] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3422'. [ 1242.953620][T22502] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3422'. [ 1243.121357][T22507] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3424'. [ 1243.256899][T22509] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3426'. [ 1243.425463][T22516] ubi0: attaching mtd0 [ 1243.445958][T22516] ubi0: scanning is finished [ 1243.451063][T22516] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1243.713654][T22516] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1243.811548][T22518] FAULT_INJECTION: forcing a failure. [ 1243.811548][T22518] name failslab, interval 1, probability 0, space 0, times 0 [ 1244.691655][T22518] CPU: 1 UID: 0 PID: 22518 Comm: syz.3.3424 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1244.691726][T22518] Tainted: [U]=USER [ 1244.691738][T22518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1244.691766][T22518] Call Trace: [ 1244.691777][T22518] [ 1244.691791][T22518] dump_stack_lvl+0x16c/0x1f0 [ 1244.691847][T22518] should_fail_ex+0x512/0x640 [ 1244.691891][T22518] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1244.691939][T22518] should_failslab+0xc2/0x120 [ 1244.691974][T22518] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1244.692019][T22518] ? trace_kmalloc+0x2b/0xd0 [ 1244.692052][T22518] ? call_usermodehelper_setup+0xaf/0x360 [ 1244.692086][T22518] ? __pfx_free_modprobe_argv+0x10/0x10 [ 1244.692126][T22518] call_usermodehelper_setup+0xaf/0x360 [ 1244.692156][T22518] __request_module+0x3bd/0x690 [ 1244.692195][T22518] ? __pfx___request_module+0x10/0x10 [ 1244.692232][T22518] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1244.692259][T22518] ? security_inode_alloc+0x3b/0x2b0 [ 1244.692294][T22518] ? inode_init_always_gfp+0xd05/0x1030 [ 1244.692340][T22518] __sock_create+0x5c3/0x8d0 [ 1244.692373][T22518] __sys_socket+0x14d/0x260 [ 1244.692399][T22518] ? fput+0x70/0xf0 [ 1244.692421][T22518] ? __pfx___sys_socket+0x10/0x10 [ 1244.692450][T22518] ? xfd_validate_state+0x61/0x180 [ 1244.692482][T22518] ? __pfx_ksys_write+0x10/0x10 [ 1244.692522][T22518] __x64_sys_socket+0x72/0xb0 [ 1244.692549][T22518] ? lockdep_hardirqs_on+0x7c/0x110 [ 1244.692596][T22518] do_syscall_64+0xcd/0x490 [ 1244.692649][T22518] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1244.692683][T22518] RIP: 0033:0x7f8cc278e929 [ 1244.692712][T22518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1244.692759][T22518] RSP: 002b:00007f8cc01d3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1244.692783][T22518] RAX: ffffffffffffffda RBX: 00007f8cc29b6240 RCX: 00007f8cc278e929 [ 1244.692800][T22518] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 000000000000000c [ 1244.692815][T22518] RBP: 00007f8cc2810b39 R08: 0000000000000000 R09: 0000000000000000 [ 1244.692831][T22518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1244.692846][T22518] R13: 0000000000000000 R14: 00007f8cc29b6240 R15: 00007ffebb18e1e8 [ 1244.692876][T22518] [ 1248.371579][T22568] random: crng reseeded on system resumption [ 1248.634421][T22570] ubi0: attaching mtd0 [ 1248.641845][T22570] ubi0: scanning is finished [ 1248.660402][T22570] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1248.820740][T22570] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1249.109444][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1249.119150][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1249.375241][T22571] random: crng reseeded on system resumption [ 1250.669648][T22590] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3441'. [ 1250.868726][T22595] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3442'. [ 1251.879883][T22607] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3445'. [ 1253.955343][T22646] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3452'. [ 1254.843014][T22656] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1260.715510][T22736] random: crng reseeded on system resumption [ 1263.355123][T22762] can: request_module (can-proto-3) failed. [ 1265.156424][T22789] FAULT_INJECTION: forcing a failure. [ 1265.156424][T22789] name failslab, interval 1, probability 0, space 0, times 0 [ 1265.218469][T22789] CPU: 1 UID: 0 PID: 22789 Comm: syz.0.3477 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1265.218531][T22789] Tainted: [U]=USER [ 1265.218544][T22789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1265.218566][T22789] Call Trace: [ 1265.218579][T22789] [ 1265.218593][T22789] dump_stack_lvl+0x16c/0x1f0 [ 1265.218654][T22789] should_fail_ex+0x512/0x640 [ 1265.218708][T22789] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 1265.218775][T22789] should_failslab+0xc2/0x120 [ 1265.218812][T22789] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 1265.218872][T22789] ? lockdep_hardirqs_on+0x7c/0x110 [ 1265.218923][T22789] ? fib_notifier_ops_register+0x32/0x270 [ 1265.218990][T22789] kmemdup_noprof+0x29/0x60 [ 1265.219057][T22789] fib_notifier_ops_register+0x32/0x270 [ 1265.219117][T22789] fib4_notifier_init+0x4f/0xd0 [ 1265.219155][T22789] fib_net_init+0xbf/0x3f0 [ 1265.219190][T22789] ? __pfx___register_sysctl_table+0x10/0x10 [ 1265.219247][T22789] ? __pfx_fib_net_init+0x10/0x10 [ 1265.219284][T22789] ? lockdep_init_map_type+0x5c/0x280 [ 1265.219336][T22789] ? do_init_timer+0xc9/0x110 [ 1265.219393][T22789] ? devinet_init_net+0x5c2/0x910 [ 1265.219439][T22789] ? __pfx_fib_net_init+0x10/0x10 [ 1265.219475][T22789] ops_init+0x1df/0x5f0 [ 1265.219535][T22789] setup_net+0x1ff/0x510 [ 1265.219588][T22789] ? lockdep_init_map_type+0x5c/0x280 [ 1265.219641][T22789] ? __pfx_setup_net+0x10/0x10 [ 1265.219698][T22789] ? debug_mutex_init+0x37/0x70 [ 1265.219740][T22789] copy_net_ns+0x2a6/0x5f0 [ 1265.219780][T22789] create_new_namespaces+0x3ea/0xa90 [ 1265.219830][T22789] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1265.219872][T22789] ksys_unshare+0x45b/0xa40 [ 1265.219916][T22789] ? __pfx_ksys_unshare+0x10/0x10 [ 1265.219961][T22789] ? xfd_validate_state+0x61/0x180 [ 1265.220012][T22789] __x64_sys_unshare+0x31/0x40 [ 1265.220055][T22789] do_syscall_64+0xcd/0x490 [ 1265.220105][T22789] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1265.220175][T22789] RIP: 0033:0x7eff36b8e929 [ 1265.220203][T22789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1265.220236][T22789] RSP: 002b:00007eff37a3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1265.220267][T22789] RAX: ffffffffffffffda RBX: 00007eff36db5fa0 RCX: 00007eff36b8e929 [ 1265.220290][T22789] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1265.220309][T22789] RBP: 00007eff36c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 1265.220329][T22789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1265.220361][T22789] R13: 0000000000000000 R14: 00007eff36db5fa0 R15: 00007ffd29215798 [ 1265.220402][T22789] [ 1266.620064][T22809] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3480'. [ 1269.875009][T22836] random: crng reseeded on system resumption [ 1270.113219][T22828] can: request_module (can-proto-3) failed. [ 1270.487571][T22842] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3486'. [ 1271.277365][T22859] netlink: zone id is out of range [ 1271.327694][T22859] netlink: zone id is out of range [ 1271.335259][T22859] netlink: zone id is out of range [ 1271.340613][T22859] netlink: zone id is out of range [ 1271.346233][T22859] netlink: zone id is out of range [ 1271.351552][T22859] netlink: zone id is out of range [ 1271.361999][T22859] netlink: zone id is out of range [ 1271.367610][T22859] netlink: zone id is out of range [ 1271.373910][T22859] netlink: zone id is out of range [ 1271.379179][T22859] netlink: zone id is out of range [ 1271.967243][T22865] bond0: option resend_igmp: invalid value () [ 1271.997880][T22865] bond0: option resend_igmp: allowed values 0 - 255 [ 1274.511806][T22887] FAULT_INJECTION: forcing a failure. [ 1274.511806][T22887] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1274.602850][T22887] CPU: 1 UID: 0 PID: 22887 Comm: syz.3.3495 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1274.602918][T22887] Tainted: [U]=USER [ 1274.602931][T22887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1274.602952][T22887] Call Trace: [ 1274.602965][T22887] [ 1274.602978][T22887] dump_stack_lvl+0x16c/0x1f0 [ 1274.603034][T22887] should_fail_ex+0x512/0x640 [ 1274.603090][T22887] _copy_to_user+0x32/0xd0 [ 1274.603145][T22887] simple_read_from_buffer+0xcb/0x170 [ 1274.603192][T22887] proc_fail_nth_read+0x197/0x270 [ 1274.603234][T22887] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1274.603278][T22887] ? rw_verify_area+0xcf/0x680 [ 1274.603322][T22887] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1274.603362][T22887] vfs_read+0x1e1/0xc60 [ 1274.603415][T22887] ? __pfx___mutex_lock+0x10/0x10 [ 1274.603467][T22887] ? __pfx_vfs_read+0x10/0x10 [ 1274.603526][T22887] ? __fget_files+0x20e/0x3c0 [ 1274.603585][T22887] ksys_read+0x12a/0x250 [ 1274.603633][T22887] ? __pfx_ksys_read+0x10/0x10 [ 1274.603693][T22887] do_syscall_64+0xcd/0x490 [ 1274.603754][T22887] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1274.603788][T22887] RIP: 0033:0x7f8cc278d33c [ 1274.603816][T22887] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1274.603848][T22887] RSP: 002b:00007f8cc354c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1274.603879][T22887] RAX: ffffffffffffffda RBX: 00007f8cc29b5fa0 RCX: 00007f8cc278d33c [ 1274.603901][T22887] RDX: 000000000000000f RSI: 00007f8cc354c0a0 RDI: 0000000000000008 [ 1274.603921][T22887] RBP: 00007f8cc354c090 R08: 0000000000000000 R09: 0000000000000000 [ 1274.603942][T22887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1274.603962][T22887] R13: 0000000000000000 R14: 00007f8cc29b5fa0 R15: 00007ffebb18e1e8 [ 1274.604006][T22887] [ 1274.800045][ C1] vkms_vblank_simulate: vblank timer overrun [ 1275.103128][T22898] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3497'. [ 1279.038656][T22943] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3506'. [ 1279.753505][T22949] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3507'. [ 1279.792383][T22951] binder: BINDER_SET_CONTEXT_MGR already set [ 1279.814396][T22951] binder: 22950:22951 ioctl 40046207 0 returned -16 [ 1280.659749][T22959] net_ratelimit: 345 callbacks suppressed [ 1280.659774][T22959] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1281.049038][T22975] netlink: 330 bytes leftover after parsing attributes in process `syz.0.3512'. [ 1283.031647][T23004] IPVS: length: 131 != 8 [ 1283.041213][T23004] vivid-007: ================= START STATUS ================= [ 1283.042855][T23004] vivid-007: Generate PTS: true [ 1283.042926][T23004] vivid-007: Generate SCR: true [ 1283.042995][T23004] tpg source WxH: 320x240 (Y'CbCr) [ 1283.043018][T23004] tpg field: 1 [ 1283.043031][T23004] tpg crop: (0,0)/320x240 [ 1283.043053][T23004] tpg compose: (0,0)/320x240 [ 1283.043075][T23004] tpg colorspace: 8 [ 1283.043089][T23004] tpg transfer function: 0/0 [ 1283.043105][T23004] tpg Y'CbCr encoding: 0/0 [ 1283.043122][T23004] tpg quantization: 0/0 [ 1283.043138][T23004] tpg RGB range: 0/2 [ 1283.043154][T23004] vivid-007: ================== END STATUS ================== [ 1283.741695][T23019] futex_wake_op: syz.1.3517 tries to shift op by 64; fix this program [ 1285.695906][T23058] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3525'. [ 1286.694234][T23056] can: request_module (can-proto-3) failed. [ 1287.088924][T23077] device-mapper: ioctl: Invalid ioctl structure: name , dev 7f00010002 [ 1287.670827][T23085] vivid-007: ================= START STATUS ================= [ 1287.857588][T23085] vivid-007: Generate PTS: true [ 1288.054492][T23085] vivid-007: Generate SCR: true [ 1288.143259][T23085] tpg source WxH: 320x240 (Y'CbCr) [ 1288.148462][T23085] tpg field: 1 [ 1288.151921][T23085] tpg crop: (0,0)/320x240 [ 1288.156457][T23085] tpg compose: (0,0)/320x240 [ 1288.161122][T23085] tpg colorspace: 8 [ 1288.167490][T23085] tpg transfer function: 0/0 [ 1288.173049][T23085] tpg Y'CbCr encoding: 0/0 [ 1288.177535][T23085] tpg quantization: 0/0 [ 1288.181734][T23085] tpg RGB range: 0/2 [ 1288.185798][T23085] vivid-007: ================== END STATUS ================== [ 1288.500540][T23094] device-mapper: ioctl: Unable to rename non-existent device,  to [ 1290.804083][T23117] ubi0: attaching mtd0 [ 1290.834930][T23117] ubi0: scanning is finished [ 1290.862736][T23117] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1291.154748][T23121] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5) [ 1291.332380][T23117] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1292.128296][T23141] IPVS: length: 131 != 8 [ 1292.134282][T23141] vivid-007: ================= START STATUS ================= [ 1292.134309][T23141] vivid-007: Generate PTS: true [ 1292.134348][T23141] vivid-007: Generate SCR: true [ 1292.134384][T23141] tpg source WxH: 320x240 (Y'CbCr) [ 1292.134406][T23141] tpg field: 1 [ 1292.134419][T23141] tpg crop: (0,0)/320x240 [ 1292.134442][T23141] tpg compose: (0,0)/320x240 [ 1292.134464][T23141] tpg colorspace: 8 [ 1292.134478][T23141] tpg transfer function: 0/0 [ 1292.134495][T23141] tpg Y'CbCr encoding: 0/0 [ 1292.134511][T23141] tpg quantization: 0/0 [ 1292.134528][T23141] tpg RGB range: 0/2 [ 1292.134544][T23141] vivid-007: ================== END STATUS ================== [ 1293.350013][T23155] FAULT_INJECTION: forcing a failure. [ 1293.350013][T23155] name failslab, interval 1, probability 0, space 0, times 0 [ 1293.618323][T23155] CPU: 1 UID: 0 PID: 23155 Comm: syz.2.3544 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1293.618379][T23155] Tainted: [U]=USER [ 1293.618391][T23155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1293.618410][T23155] Call Trace: [ 1293.618422][T23155] [ 1293.618434][T23155] dump_stack_lvl+0x16c/0x1f0 [ 1293.618489][T23155] should_fail_ex+0x512/0x640 [ 1293.618536][T23155] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1293.618592][T23155] should_failslab+0xc2/0x120 [ 1293.618625][T23155] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1293.618677][T23155] ? getname_flags.part.0+0x4c/0x550 [ 1293.618730][T23155] getname_flags.part.0+0x4c/0x550 [ 1293.618774][T23155] getname_flags+0x93/0xf0 [ 1293.618820][T23155] do_sys_openat2+0xb8/0x1d0 [ 1293.618858][T23155] ? __pfx_do_sys_openat2+0x10/0x10 [ 1293.618914][T23155] __x64_sys_openat+0x174/0x210 [ 1293.618955][T23155] ? __pfx___x64_sys_openat+0x10/0x10 [ 1293.619013][T23155] do_syscall_64+0xcd/0x490 [ 1293.619068][T23155] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1293.619102][T23155] RIP: 0033:0x7fbcd478e929 [ 1293.619129][T23155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1293.619162][T23155] RSP: 002b:00007fbcd55a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1293.619193][T23155] RAX: ffffffffffffffda RBX: 00007fbcd49b5fa0 RCX: 00007fbcd478e929 [ 1293.619214][T23155] RDX: 0000000000020000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1293.619236][T23155] RBP: 00007fbcd4810b39 R08: 0000000000000000 R09: 0000000000000000 [ 1293.619256][T23155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1293.619276][T23155] R13: 0000000000000000 R14: 00007fbcd49b5fa0 R15: 00007ffdc5fe97e8 [ 1293.619318][T23155] [ 1293.802292][ C1] vkms_vblank_simulate: vblank timer overrun [ 1295.390931][T23178] FAULT_INJECTION: forcing a failure. [ 1295.390931][T23178] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1295.415139][T23178] CPU: 0 UID: 0 PID: 23178 Comm: syz.2.3546 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1295.415192][T23178] Tainted: [U]=USER [ 1295.415203][T23178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1295.415222][T23178] Call Trace: [ 1295.415233][T23178] [ 1295.415245][T23178] dump_stack_lvl+0x16c/0x1f0 [ 1295.415301][T23178] should_fail_ex+0x512/0x640 [ 1295.415357][T23178] _copy_to_user+0x32/0xd0 [ 1295.415414][T23178] simple_read_from_buffer+0xcb/0x170 [ 1295.415461][T23178] proc_fail_nth_read+0x197/0x270 [ 1295.415502][T23178] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1295.415546][T23178] ? rw_verify_area+0xcf/0x680 [ 1295.415597][T23178] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1295.415644][T23178] vfs_read+0x1e1/0xc60 [ 1295.415697][T23178] ? __pfx___mutex_lock+0x10/0x10 [ 1295.415750][T23178] ? __pfx_vfs_read+0x10/0x10 [ 1295.415809][T23178] ? __fget_files+0x20e/0x3c0 [ 1295.415868][T23178] ksys_read+0x12a/0x250 [ 1295.415915][T23178] ? __pfx_ksys_read+0x10/0x10 [ 1295.415977][T23178] do_syscall_64+0xcd/0x490 [ 1295.416032][T23178] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1295.416065][T23178] RIP: 0033:0x7fbcd478d33c [ 1295.416092][T23178] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1295.416127][T23178] RSP: 002b:00007fbcd55a6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1295.416159][T23178] RAX: ffffffffffffffda RBX: 00007fbcd49b5fa0 RCX: 00007fbcd478d33c [ 1295.416182][T23178] RDX: 000000000000000f RSI: 00007fbcd55a60a0 RDI: 0000000000000004 [ 1295.416203][T23178] RBP: 00007fbcd55a6090 R08: 0000000000000000 R09: 0000000000000000 [ 1295.416224][T23178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1295.416243][T23178] R13: 0000000000000000 R14: 00007fbcd49b5fa0 R15: 00007ffdc5fe97e8 [ 1295.416287][T23178] [ 1296.280958][T23187] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88807800a000 pfn:0x78008 [ 1296.323997][T23187] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 1296.350870][T23187] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff) [ 1296.360954][T23187] page_type: f5(slab) [ 1296.527765][T23187] raw: 00fff00000000240 ffff88801b842140 ffffea0001e5de10 ffffea0001a8a810 [ 1296.534496][T23192] ubi0: attaching mtd0 [ 1296.545655][T23192] ubi0: scanning is finished [ 1296.550743][T23192] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1296.567239][T23187] raw: ffff88807800a000 0000000000040003 00000000f5000000 0000000000000000 [ 1296.576420][T23187] head: 00fff00000000240 ffff88801b842140 ffffea0001e5de10 ffffea0001a8a810 [ 1296.599055][T23187] head: ffff88807800a000 0000000000040003 00000000f5000000 0000000000000000 [ 1296.624338][T23187] head: 00fff00000000003 ffffea0001e00201 00000000ffffffff 00000000ffffffff [ 1296.642658][T23187] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 1296.662674][T23187] page dumped because: unmovable page [ 1296.668122][T23187] page_owner tracks the page as allocated [ 1296.722641][T23187] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5223, tgid 5223 (udevd), ts 55022570722, free_ts 53710047050 [ 1296.788061][T23192] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1296.806661][T23187] post_alloc_hook+0x1c0/0x230 [ 1296.811543][T23187] get_page_from_freelist+0x1321/0x3890 [ 1296.828287][T23187] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 1296.891513][T23187] alloc_pages_mpol+0x1fb/0x550 [ 1296.900039][T23187] new_slab+0x23b/0x330 [ 1296.904708][T23187] ___slab_alloc+0xd9c/0x1940 [ 1296.909463][T23187] __slab_alloc.constprop.0+0x56/0xb0 [ 1296.915470][T23187] __kmalloc_cache_noprof+0xfb/0x3e0 [ 1296.920902][T23187] uevent_show+0x165/0x3a0 [ 1296.924600][T23206] IPVS: length: 131 != 8 [ 1296.926381][T23187] dev_attr_show+0x53/0xe0 [ 1296.936334][T23187] sysfs_kf_seq_show+0x216/0x3e0 [ 1296.941460][T23187] seq_read_iter+0x509/0x12c0 [ 1296.949214][T23206] vivid-007: ================= START STATUS ================= [ 1296.963042][T23187] kernfs_fop_read_iter+0x40f/0x5a0 [ 1296.977235][T23187] vfs_read+0x8bc/0xc60 [ 1296.982952][T23206] vivid-007: Generate PTS: true [ 1296.985315][T23187] ksys_read+0x12a/0x250 [ 1296.988005][T23206] vivid-007: Generate SCR: [ 1296.992137][T23187] do_syscall_64+0xcd/0x490 [ 1297.000446][T23206] true [ 1297.004823][T23206] tpg source WxH: 320x240 (Y'CbCr) [ 1297.020225][T23206] tpg field: 1 [ 1297.030408][T23206] tpg crop: (0,0)/320x240 [ 1297.052687][T23187] page last free pid 5231 tgid 5231 stack trace: [ 1297.068606][T23187] __free_frozen_pages+0x7fe/0x1180 [ 1297.078685][T23206] tpg compose: (0,0)/320x240 [ 1297.093122][T23187] __put_partials+0x16d/0x1c0 [ 1297.106917][T23206] tpg colorspace: 8 [ 1297.128114][T23187] qlist_free_all+0x4d/0x120 [ 1297.139142][T23206] tpg transfer function: 0/0 [ 1297.151411][T23187] kasan_quarantine_reduce+0x195/0x1e0 [ 1297.161379][T23206] tpg Y'CbCr encoding: 0/0 [ 1297.180792][T23187] __kasan_slab_alloc+0x69/0x90 [ 1297.186706][T23206] tpg quantization: 0/0 [ 1297.198438][T23187] kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 1297.210203][T23206] tpg RGB range: 0/2 [ 1297.220670][T23206] vivid-007: ================== END STATUS ================== [ 1297.228677][T23187] getname_flags.part.0+0x4c/0x550 [ 1297.245319][T23187] getname_flags+0x93/0xf0 [ 1297.272282][T23187] vfs_fstatat+0xe1/0xf0 [ 1297.301980][T23187] __do_sys_newfstatat+0x97/0x120 [ 1297.323762][T23187] do_syscall_64+0xcd/0x490 [ 1297.328388][T23187] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1297.641402][T23218] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input16 [ 1297.664005][ T5205] ERROR: Out of memory at tomoyo_memory_ok. [ 1297.763988][T23214] can: request_module (can-proto-3) failed. [ 1297.989828][T23223] netlink: 330 bytes leftover after parsing attributes in process `syz.0.3555'. [ 1298.008529][T23223] futex_wake_op: syz.0.3555 tries to shift op by 64; fix this program [ 1298.158749][T23233] FAULT_INJECTION: forcing a failure. [ 1298.158749][T23233] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1298.172127][T23233] CPU: 1 UID: 0 PID: 23233 Comm: syz.0.3559 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1298.172180][T23233] Tainted: [U]=USER [ 1298.172192][T23233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1298.172209][T23233] Call Trace: [ 1298.172219][T23233] [ 1298.172230][T23233] dump_stack_lvl+0x16c/0x1f0 [ 1298.172279][T23233] should_fail_ex+0x512/0x640 [ 1298.172330][T23233] get_futex_key+0x293/0x1540 [ 1298.172370][T23233] ? __pfx_get_futex_key+0x10/0x10 [ 1298.172419][T23233] futex_wake_op+0x168/0xd50 [ 1298.172470][T23233] ? get_pid_task+0x106/0x250 [ 1298.172531][T23233] ? __pfx_futex_wake_op+0x10/0x10 [ 1298.172598][T23233] ? ksys_write+0x190/0x250 [ 1298.172652][T23233] do_futex+0x2e9/0x350 [ 1298.172692][T23233] ? __pfx_do_futex+0x10/0x10 [ 1298.172744][T23233] __x64_sys_futex+0x1e0/0x4c0 [ 1298.172788][T23233] ? fput+0x70/0xf0 [ 1298.172829][T23233] ? __pfx___x64_sys_futex+0x10/0x10 [ 1298.172865][T23233] ? ksys_write+0x1ac/0x250 [ 1298.172927][T23233] ? __pfx_ksys_write+0x10/0x10 [ 1298.172984][T23233] do_syscall_64+0xcd/0x490 [ 1298.173036][T23233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1298.173069][T23233] RIP: 0033:0x7eff36b8e929 [ 1298.173095][T23233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1298.173128][T23233] RSP: 002b:00007eff37a3d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1298.173158][T23233] RAX: ffffffffffffffda RBX: 00007eff36db5fa0 RCX: 00007eff36b8e929 [ 1298.173192][T23233] RDX: 00000000000000f4 RSI: 0000000000000005 RDI: 0000000000000000 [ 1298.173211][T23233] RBP: 00007eff37a3d090 R08: 0000000000000000 R09: 00000000c0040000 [ 1298.173232][T23233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1298.173251][T23233] R13: 0000000000000000 R14: 00007eff36db5fa0 R15: 00007ffd29215798 [ 1298.173293][T23233] [ 1298.281690][T23225] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1298.651428][T23240] can: request_module (can-proto-3) failed. [ 1298.818109][T23248] IPVS: length: 131 != 8 [ 1298.845884][T23248] vivid-007: ================= START STATUS ================= [ 1298.862726][T23248] vivid-007: Generate PTS: true [ 1298.867989][T23248] vivid-007: Generate SCR: true [ 1298.873982][T23248] tpg source WxH: 320x240 (Y'CbCr) [ 1298.879621][T23248] tpg field: 1 [ 1298.883637][T23248] tpg crop: (0,0)/320x240 [ 1298.888215][T23248] tpg compose: (0,0)/320x240 [ 1298.894907][T23248] tpg colorspace: 8 [ 1298.898918][T23248] tpg transfer function: 0/0 [ 1298.922710][T23248] tpg Y'CbCr encoding: 0/0 [ 1298.927259][T23248] tpg quantization: 0/0 [ 1298.936310][T23248] tpg RGB range: 0/2 [ 1298.953990][T23248] vivid-007: ================== END STATUS ================== [ 1299.972411][T23258] block2mtd: error: cannot open device inX±jFBB>U;߸Ilk [ 1300.047151][T23266] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input17 [ 1301.352796][T23284] [ 1301.887878][T23289] can: request_module (can-proto-3) failed. [ 1302.167475][T23299] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1302.879399][T23324] binder: BINDER_SET_CONTEXT_MGR already set [ 1302.912792][T23324] binder: 23322:23324 ioctl 40046207 0 returned -16 [ 1305.261895][T23353] can: request_module (can-proto-3) failed. [ 1305.464845][T23363] can: request_module (can-proto-3) failed. [ 1305.761657][T23388] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3592'. [ 1308.284645][T23426] FAULT_INJECTION: forcing a failure. [ 1308.284645][T23426] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1308.299434][ T31] audit: type=1800 audit(6047054181.900:9): pid=23421 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3599" name="lu_gp_id" dev="configfs" ino=76239 res=0 errno=0 [ 1308.303487][T23426] CPU: 0 UID: 0 PID: 23426 Comm: syz.1.3601 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1308.303560][T23426] Tainted: [U]=USER [ 1308.303574][T23426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1308.303597][T23426] Call Trace: [ 1308.303611][T23426] [ 1308.303625][T23426] dump_stack_lvl+0x16c/0x1f0 [ 1308.303689][T23426] should_fail_ex+0x512/0x640 [ 1308.303754][T23426] get_futex_key+0x1d0/0x1540 [ 1308.303810][T23426] ? __pfx_get_futex_key+0x10/0x10 [ 1308.303874][T23426] futex_wake+0xe7/0x4e0 [ 1308.303933][T23426] ? __pfx_futex_wake+0x10/0x10 [ 1308.303994][T23426] ? kmem_cache_free+0x2d1/0x4d0 [ 1308.304049][T23426] ? fd_install+0x225/0x750 [ 1308.304099][T23426] ? putname+0x154/0x1a0 [ 1308.304143][T23426] do_futex+0x1e3/0x350 [ 1308.304191][T23426] ? __pfx_do_futex+0x10/0x10 [ 1308.304253][T23426] __x64_sys_futex+0x1e0/0x4c0 [ 1308.304304][T23426] ? __x64_sys_openat+0x174/0x210 [ 1308.304350][T23426] ? __pfx___x64_sys_futex+0x10/0x10 [ 1308.304417][T23426] do_syscall_64+0xcd/0x490 [ 1308.304479][T23426] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1308.304527][T23426] RIP: 0033:0x7f830918e929 [ 1308.304559][T23426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1308.304597][T23426] RSP: 002b:00007f830a0bc0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1308.304634][T23426] RAX: ffffffffffffffda RBX: 00007f83093b5fa8 RCX: 00007f830918e929 [ 1308.304661][T23426] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f83093b5fac [ 1308.304685][T23426] RBP: 00007f83093b5fa0 R08: 00007f830a0bd000 R09: 0000000000000000 [ 1308.304711][T23426] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f83093b5fac [ 1308.304736][T23426] R13: 0000000000000000 R14: 00007ffd7784f340 R15: 00007ffd7784f428 [ 1308.304783][T23426] [ 1309.419028][T23440] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3604'. [ 1309.423294][T23443] FAULT_INJECTION: forcing a failure. [ 1309.423294][T23443] name failslab, interval 1, probability 0, space 0, times 0 [ 1309.451450][T23443] CPU: 1 UID: 0 PID: 23443 Comm: syz.1.3605 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1309.451504][T23443] Tainted: [U]=USER [ 1309.451517][T23443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1309.451537][T23443] Call Trace: [ 1309.451549][T23443] [ 1309.451561][T23443] dump_stack_lvl+0x16c/0x1f0 [ 1309.451617][T23443] should_fail_ex+0x512/0x640 [ 1309.451666][T23443] ? fs_reclaim_acquire+0xae/0x150 [ 1309.451710][T23443] ? tomoyo_encode2+0x100/0x3e0 [ 1309.451754][T23443] should_failslab+0xc2/0x120 [ 1309.451788][T23443] __kmalloc_noprof+0xd2/0x510 [ 1309.451848][T23443] tomoyo_encode2+0x100/0x3e0 [ 1309.451901][T23443] tomoyo_encode+0x29/0x50 [ 1309.451946][T23443] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1309.452006][T23443] ? tomoyo_profile+0x47/0x60 [ 1309.452059][T23443] tomoyo_path_number_perm+0x245/0x580 [ 1309.452094][T23443] ? tomoyo_path_number_perm+0x237/0x580 [ 1309.452131][T23443] ? do_raw_spin_unlock+0xe4/0x230 [ 1309.452161][T23443] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1309.452214][T23443] ? do_epoll_ctl+0x226/0x2ff0 [ 1309.452273][T23443] ? __might_fault+0xe3/0x190 [ 1309.452318][T23443] ? __pfx_ep_ptable_queue_proc+0x10/0x10 [ 1309.452357][T23443] ? hook_file_ioctl_common+0x145/0x410 [ 1309.452406][T23443] ? __x64_sys_futex+0x1e0/0x4c0 [ 1309.452444][T23443] ? __x64_sys_futex+0x1e9/0x4c0 [ 1309.452497][T23443] security_file_ioctl+0x9b/0x240 [ 1309.452538][T23443] __x64_sys_ioctl+0xb7/0x210 [ 1309.452587][T23443] do_syscall_64+0xcd/0x490 [ 1309.452636][T23443] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1309.452667][T23443] RIP: 0033:0x7f830918e929 [ 1309.452691][T23443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1309.452722][T23443] RSP: 002b:00007f830a0bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1309.452745][T23443] RAX: ffffffffffffffda RBX: 00007f83093b5fa0 RCX: 00007f830918e929 [ 1309.452760][T23443] RDX: 0000200000000080 RSI: 0000000080184132 RDI: 0000000000000005 [ 1309.452774][T23443] RBP: 00007f8309210b39 R08: 0000000000000000 R09: 0000000000000000 [ 1309.452787][T23443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1309.452800][T23443] R13: 0000000000000000 R14: 00007f83093b5fa0 R15: 00007ffd7784f428 [ 1309.452827][T23443] [ 1309.682771][ C1] vkms_vblank_simulate: vblank timer overrun [ 1309.733115][T23443] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1310.539617][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1310.552675][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1310.661728][T23463] Unable to find swap-space signature [ 1312.796841][T23483] vivid-007: ================= START STATUS ================= [ 1312.804782][T23483] vivid-007: Generate PTS: true [ 1312.809834][T23483] vivid-007: Generate SCR: true [ 1312.815299][T23483] tpg source WxH: 320x240 (Y'CbCr) [ 1312.820597][T23483] tpg field: 1 [ 1312.824444][T23483] tpg crop: (0,0)/320x240 [ 1312.829152][T23483] tpg compose: (0,0)/320x240 [ 1312.834332][T23483] tpg colorspace: 8 [ 1312.838189][T23483] tpg transfer function: 0/0 [ 1312.843384][T23483] tpg Y'CbCr encoding: 0/0 [ 1312.849335][T23483] tpg quantization: 0/0 [ 1312.854069][T23483] tpg RGB range: 0/2 [ 1312.858001][T23483] vivid-007: ================== END STATUS ================== [ 1313.207393][T23492] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3616'. [ 1314.268035][T23507] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input20 [ 1314.335260][ T5205] ERROR: Out of memory at tomoyo_memory_ok. [ 1315.567352][T23524] can: request_module (can-proto-3) failed. [ 1315.849617][T23540] Dead loop on virtual device ip6_vti0, fix it urgently! [ 1315.871143][T23540] Dead loop on virtual device ip6_vti0, fix it urgently! [ 1315.898735][T23540] Dead loop on virtual device ip6_vti0, fix it urgently! [ 1315.925694][T23540] Dead loop on virtual device ip6_vti0, fix it urgently! [ 1315.947071][T23540] Dead loop on virtual device ip6_vti0, fix it urgently! [ 1315.976061][T23550] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3626'. [ 1315.976531][T23540] Dead loop on virtual device ip6_vti0, fix it urgently! [ 1316.429038][T23577] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input21 [ 1317.860315][T23588] can: request_module (can-proto-3) failed. [ 1320.738491][T23632] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3637'. [ 1322.150775][T23658] FAULT_INJECTION: forcing a failure. [ 1322.150775][T23658] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1322.191708][T23658] CPU: 1 UID: 0 PID: 23658 Comm: syz.2.3644 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1322.191762][T23658] Tainted: [U]=USER [ 1322.191773][T23658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1322.191794][T23658] Call Trace: [ 1322.191804][T23658] [ 1322.191818][T23658] dump_stack_lvl+0x16c/0x1f0 [ 1322.191872][T23658] should_fail_ex+0x512/0x640 [ 1322.191933][T23658] _copy_from_user+0x2e/0xd0 [ 1322.191987][T23658] snd_pcm_oss_write2+0x1c2/0x410 [ 1322.192027][T23658] ? __pfx_snd_pcm_oss_write2+0x10/0x10 [ 1322.192062][T23658] ? snd_pcm_kernel_ioctl+0x267/0x2e0 [ 1322.192106][T23658] ? snd_pcm_oss_prepare+0x11e/0x220 [ 1322.192169][T23658] snd_pcm_oss_write+0x711/0xa10 [ 1322.192211][T23658] ? security_file_permission+0x71/0x210 [ 1322.192264][T23658] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 1322.192300][T23658] vfs_write+0x2a0/0x1150 [ 1322.192356][T23658] ? __pfx_vfs_write+0x10/0x10 [ 1322.192388][T23658] ? find_held_lock+0x2b/0x80 [ 1322.192414][T23658] ? __fget_files+0x204/0x3c0 [ 1322.192451][T23658] ? __fget_files+0x20e/0x3c0 [ 1322.192491][T23658] ksys_write+0x12a/0x250 [ 1322.192524][T23658] ? __pfx_ksys_write+0x10/0x10 [ 1322.192581][T23658] do_syscall_64+0xcd/0x490 [ 1322.192633][T23658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1322.192658][T23658] RIP: 0033:0x7fbcd478e929 [ 1322.192678][T23658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1322.192701][T23658] RSP: 002b:00007fbcd5585038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1322.192723][T23658] RAX: ffffffffffffffda RBX: 00007fbcd49b6080 RCX: 00007fbcd478e929 [ 1322.192739][T23658] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 1322.192754][T23658] RBP: 00007fbcd5585090 R08: 0000000000000000 R09: 0000000000000000 [ 1322.192769][T23658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1322.192783][T23658] R13: 0000000000000000 R14: 00007fbcd49b6080 R15: 00007ffdc5fe97e8 [ 1322.192818][T23658] [ 1322.395666][ C1] vkms_vblank_simulate: vblank timer overrun [ 1323.425232][T23683] FAULT_INJECTION: forcing a failure. [ 1323.425232][T23683] name failslab, interval 1, probability 0, space 0, times 0 [ 1323.440150][T23683] CPU: 1 UID: 0 PID: 23683 Comm: syz.1.3648 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1323.440202][T23683] Tainted: [U]=USER [ 1323.440218][T23683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1323.440238][T23683] Call Trace: [ 1323.440249][T23683] [ 1323.440262][T23683] dump_stack_lvl+0x16c/0x1f0 [ 1323.440315][T23683] should_fail_ex+0x512/0x640 [ 1323.440362][T23683] ? fs_reclaim_acquire+0xae/0x150 [ 1323.440406][T23683] should_failslab+0xc2/0x120 [ 1323.440439][T23683] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1323.440486][T23683] ? tomoyo_init_log+0x197/0x2140 [ 1323.440537][T23683] tomoyo_init_log+0x197/0x2140 [ 1323.440581][T23683] ? format_decode+0x1ad/0xd40 [ 1323.440622][T23683] ? __pfx_format_decode+0x10/0x10 [ 1323.440664][T23683] ? number+0x9aa/0xc70 [ 1323.440706][T23683] ? __pfx_tomoyo_init_log+0x10/0x10 [ 1323.440772][T23683] tomoyo_write_log2+0x2f7/0xc10 [ 1323.440826][T23683] tomoyo_supervisor+0x15e/0x13b0 [ 1323.440887][T23683] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 1323.440938][T23683] ? __pfx_vsnprintf+0x10/0x10 [ 1323.441005][T23683] ? tomoyo_encode2+0x329/0x3e0 [ 1323.441057][T23683] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 1323.441111][T23683] tomoyo_path_number_perm+0x448/0x580 [ 1323.441159][T23683] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1323.441202][T23683] ? find_held_lock+0x2b/0x80 [ 1323.441277][T23683] ? find_held_lock+0x2b/0x80 [ 1323.441313][T23683] ? hook_file_ioctl_common+0x145/0x410 [ 1323.441371][T23683] ? __fget_files+0x20e/0x3c0 [ 1323.441424][T23683] security_file_ioctl+0x9b/0x240 [ 1323.441468][T23683] __x64_sys_ioctl+0xb7/0x210 [ 1323.441510][T23683] do_syscall_64+0xcd/0x490 [ 1323.441563][T23683] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1323.441596][T23683] RIP: 0033:0x7f830918e929 [ 1323.441622][T23683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1323.441654][T23683] RSP: 002b:00007f830a059038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1323.441685][T23683] RAX: ffffffffffffffda RBX: 00007f83093b6240 RCX: 00007f830918e929 [ 1323.441706][T23683] RDX: 0000000000000007 RSI: 0000000000004b41 RDI: 000000000000000b [ 1323.441733][T23683] RBP: 00007f830a059090 R08: 0000000000000000 R09: 0000000000000000 [ 1323.441753][T23683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1323.441772][T23683] R13: 0000000000000000 R14: 00007f83093b6240 R15: 00007ffd7784f428 [ 1323.441813][T23683] [ 1323.687386][ C1] vkms_vblank_simulate: vblank timer overrun [ 1323.714846][T23668] can: request_module (can-proto-3) failed. [ 1324.093902][T23694] netlink: 504 bytes leftover after parsing attributes in process `syz.0.3650'. [ 1324.179081][T23694] netlink: 350 bytes leftover after parsing attributes in process `syz.0.3650'. [ 1327.855218][T23721] random: crng reseeded on system resumption [ 1328.269245][T23750] can: request_module (can-proto-3) failed. [ 1329.060933][T23756] openvswitch: netlink: nsh attr 254 is out of range max 3 [ 1330.446223][T23796] blk-mq: reduced tag depth (128 -> 64) [ 1331.153400][T23789] random: crng reseeded on system resumption [ 1332.627090][T23815] can: request_module (can-proto-3) failed. [ 1333.518597][T23827] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input22 [ 1334.516037][T23835] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input23 [ 1335.586130][T23857] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3681'. [ 1336.646439][T23873] FAULT_INJECTION: forcing a failure. [ 1336.646439][T23873] name failslab, interval 1, probability 0, space 0, times 0 [ 1336.775403][T23873] CPU: 0 UID: 0 PID: 23873 Comm: syz.2.3683 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1336.775459][T23873] Tainted: [U]=USER [ 1336.775470][T23873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1336.775491][T23873] Call Trace: [ 1336.775502][T23873] [ 1336.775515][T23873] dump_stack_lvl+0x16c/0x1f0 [ 1336.775572][T23873] should_fail_ex+0x512/0x640 [ 1336.775628][T23873] should_failslab+0xc2/0x120 [ 1336.775663][T23873] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1336.775710][T23873] ? sctp_add_bind_addr+0xae/0x3f0 [ 1336.775765][T23873] sctp_add_bind_addr+0xae/0x3f0 [ 1336.775833][T23873] sctp_copy_local_addr_list+0x39d/0x5a0 [ 1336.775901][T23873] ? __pfx_sctp_copy_local_addr_list+0x10/0x10 [ 1336.775960][T23873] ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360 [ 1336.776002][T23873] ? sctp_bind_addr_copy+0xe0/0x530 [ 1336.776051][T23873] sctp_bind_addr_copy+0xe0/0x530 [ 1336.776109][T23873] sctp_connect_new_asoc+0x1d7/0x790 [ 1336.776154][T23873] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 1336.776197][T23873] ? sctp_endpoint_lookup_assoc+0x15c/0x2a0 [ 1336.776245][T23873] __sctp_connect+0x3f3/0xc60 [ 1336.776290][T23873] ? do_raw_spin_lock+0x12c/0x2b0 [ 1336.776346][T23873] ? __pfx___sctp_connect+0x10/0x10 [ 1336.776388][T23873] ? __pfx_sctp_inet_connect+0x10/0x10 [ 1336.776430][T23873] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1336.776484][T23873] ? __pfx_sctp_inet_connect+0x10/0x10 [ 1336.776522][T23873] sctp_inet_connect+0x15f/0x200 [ 1336.776563][T23873] __sys_connect_file+0x13e/0x1a0 [ 1336.776612][T23873] __sys_connect+0x13b/0x160 [ 1336.776654][T23873] ? __pfx___sys_connect+0x10/0x10 [ 1336.776712][T23873] ? __pfx_ksys_write+0x10/0x10 [ 1336.776769][T23873] __x64_sys_connect+0x72/0xb0 [ 1336.776809][T23873] ? lockdep_hardirqs_on+0x7c/0x110 [ 1336.776862][T23873] do_syscall_64+0xcd/0x490 [ 1336.776916][T23873] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1336.776949][T23873] RIP: 0033:0x7fbcd478e929 [ 1336.776976][T23873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1336.777008][T23873] RSP: 002b:00007fbcd5543038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1336.777039][T23873] RAX: ffffffffffffffda RBX: 00007fbcd49b6240 RCX: 00007fbcd478e929 [ 1336.777061][T23873] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003 [ 1336.777081][T23873] RBP: 00007fbcd5543090 R08: 0000000000000000 R09: 0000000000000000 [ 1336.777102][T23873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1336.777122][T23873] R13: 0000000000000000 R14: 00007fbcd49b6240 R15: 00007ffdc5fe97e8 [ 1336.777165][T23873] [ 1337.484074][T23884] FAULT_INJECTION: forcing a failure. [ 1337.484074][T23884] name failslab, interval 1, probability 0, space 0, times 0 [ 1337.584321][T23884] CPU: 0 UID: 0 PID: 23884 Comm: syz.1.3685 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1337.584379][T23884] Tainted: [U]=USER [ 1337.584392][T23884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1337.584413][T23884] Call Trace: [ 1337.584425][T23884] [ 1337.584439][T23884] dump_stack_lvl+0x16c/0x1f0 [ 1337.584497][T23884] should_fail_ex+0x512/0x640 [ 1337.584549][T23884] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1337.584616][T23884] should_failslab+0xc2/0x120 [ 1337.584651][T23884] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1337.584706][T23884] ? __kernfs_new_node+0xd2/0x8e0 [ 1337.584762][T23884] __kernfs_new_node+0xd2/0x8e0 [ 1337.584815][T23884] ? __pfx___kernfs_new_node+0x10/0x10 [ 1337.584876][T23884] ? find_held_lock+0x2b/0x80 [ 1337.584916][T23884] ? kernfs_root+0xee/0x2a0 [ 1337.584973][T23884] kernfs_new_node+0x13c/0x1e0 [ 1337.585038][T23884] __kernfs_create_file+0x53/0x350 [ 1337.585083][T23884] sysfs_add_file_mode_ns+0x207/0x3c0 [ 1337.585141][T23884] sysfs_merge_group+0x1aa/0x340 [ 1337.585195][T23884] ? __pfx_sysfs_merge_group+0x10/0x10 [ 1337.585253][T23884] ? __pfx_dev_add_physical_location+0x10/0x10 [ 1337.585290][T23884] ? bus_to_subsys+0x131/0x160 [ 1337.585339][T23884] dpm_sysfs_add+0x237/0x280 [ 1337.585377][T23884] device_add+0x9a6/0x1a70 [ 1337.585419][T23884] ? __pfx_device_add+0x10/0x10 [ 1337.585453][T23884] ? kfree+0x24f/0x4d0 [ 1337.585512][T23884] device_create_groups_vargs+0x1f8/0x270 [ 1337.585580][T23884] device_create+0xed/0x130 [ 1337.585622][T23884] ? __pfx_device_create+0x10/0x10 [ 1337.585663][T23884] ? do_init_timer+0xc9/0x110 [ 1337.585708][T23884] ? ieee80211_roc_setup+0x136/0x270 [ 1337.585758][T23884] ? ieee80211_alloc_hw_nm+0x231/0x2260 [ 1337.585803][T23884] mac80211_hwsim_new_radio+0x369/0x54d0 [ 1337.585879][T23884] ? __asan_memset+0x23/0x50 [ 1337.585928][T23884] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 1337.585996][T23884] hwsim_new_radio_nl+0xb51/0x12c0 [ 1337.586054][T23884] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1337.586123][T23884] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 1337.586171][T23884] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1337.586227][T23884] genl_family_rcv_msg_doit+0x209/0x2f0 [ 1337.586274][T23884] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1337.586318][T23884] ? trace_cap_capable+0x18d/0x200 [ 1337.586363][T23884] ? bpf_lsm_capable+0x9/0x10 [ 1337.586407][T23884] ? security_capable+0x7e/0x260 [ 1337.586441][T23884] ? ns_capable+0xd7/0x110 [ 1337.586482][T23884] genl_rcv_msg+0x55c/0x800 [ 1337.586531][T23884] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1337.586583][T23884] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1337.586652][T23884] netlink_rcv_skb+0x158/0x420 [ 1337.586689][T23884] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1337.586734][T23884] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1337.586790][T23884] ? netlink_deliver_tap+0x1ae/0xd30 [ 1337.586855][T23884] genl_rcv+0x28/0x40 [ 1337.586891][T23884] netlink_unicast+0x53a/0x7f0 [ 1337.586932][T23884] ? __pfx_netlink_unicast+0x10/0x10 [ 1337.586983][T23884] netlink_sendmsg+0x8d1/0xdd0 [ 1337.587027][T23884] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1337.587080][T23884] ____sys_sendmsg+0xa98/0xc70 [ 1337.587121][T23884] ? copy_msghdr_from_user+0x10a/0x160 [ 1337.587178][T23884] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1337.587228][T23884] ? __pfx_futex_wake_mark+0x10/0x10 [ 1337.587285][T23884] ___sys_sendmsg+0x134/0x1d0 [ 1337.587341][T23884] ? __pfx____sys_sendmsg+0x10/0x10 [ 1337.587390][T23884] ? __lock_acquire+0x622/0x1c90 [ 1337.587492][T23884] __sys_sendmsg+0x16d/0x220 [ 1337.587546][T23884] ? __pfx___sys_sendmsg+0x10/0x10 [ 1337.587606][T23884] ? __x64_sys_futex+0x1e0/0x4c0 [ 1337.587678][T23884] do_syscall_64+0xcd/0x490 [ 1337.587736][T23884] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1337.587771][T23884] RIP: 0033:0x7f830918e929 [ 1337.587799][T23884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1337.587833][T23884] RSP: 002b:00007f830a09b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1337.587864][T23884] RAX: ffffffffffffffda RBX: 00007f83093b6080 RCX: 00007f830918e929 [ 1337.587888][T23884] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 000000000000000b [ 1337.587909][T23884] RBP: 00007f8309210b39 R08: 0000000000000000 R09: 0000000000000000 [ 1337.587930][T23884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1337.587950][T23884] R13: 0000000000000000 R14: 00007f83093b6080 R15: 00007ffd7784f428 [ 1337.587995][T23884] [ 1338.954799][T23915] EXT4-fs error (device sda1): trigger_test_error:129: comm syz.1.3689: 7 [ 1342.035667][T23971] EXT4-fs error (device sda1): trigger_test_error:129: comm syz.3.3700: 7 [ 1344.009590][T24000] FAULT_INJECTION: forcing a failure. [ 1344.009590][T24000] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1344.089231][T24000] CPU: 1 UID: 0 PID: 24000 Comm: syz.3.3707 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1344.089276][T24000] Tainted: [U]=USER [ 1344.089284][T24000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1344.089298][T24000] Call Trace: [ 1344.089306][T24000] [ 1344.089316][T24000] dump_stack_lvl+0x16c/0x1f0 [ 1344.089356][T24000] should_fail_ex+0x512/0x640 [ 1344.089397][T24000] get_futex_key+0x293/0x1540 [ 1344.089433][T24000] ? __pfx_get_futex_key+0x10/0x10 [ 1344.089461][T24000] ? __mutex_trylock_common+0xe9/0x250 [ 1344.089502][T24000] futex_wake+0xe7/0x4e0 [ 1344.089538][T24000] ? __pfx_futex_wake+0x10/0x10 [ 1344.089569][T24000] ? __lock_acquire+0xb8a/0x1c90 [ 1344.089614][T24000] do_futex+0x1e3/0x350 [ 1344.089643][T24000] ? __pfx_do_futex+0x10/0x10 [ 1344.089669][T24000] ? __might_fault+0xe3/0x190 [ 1344.089711][T24000] mm_release+0x24e/0x300 [ 1344.089755][T24000] do_exit+0x68b/0x2bd0 [ 1344.089792][T24000] ? __pfx_do_exit+0x10/0x10 [ 1344.089828][T24000] ? do_raw_spin_lock+0x12c/0x2b0 [ 1344.089863][T24000] ? find_held_lock+0x2b/0x80 [ 1344.089892][T24000] do_group_exit+0xd3/0x2a0 [ 1344.089926][T24000] get_signal+0x2673/0x26d0 [ 1344.089955][T24000] ? __sys_recvfrom+0x26c/0x310 [ 1344.089992][T24000] ? __pfx_get_signal+0x10/0x10 [ 1344.090017][T24000] ? do_futex+0x122/0x350 [ 1344.090045][T24000] ? __pfx_do_futex+0x10/0x10 [ 1344.090076][T24000] arch_do_signal_or_restart+0x8f/0x790 [ 1344.090105][T24000] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1344.090147][T24000] ? xfd_validate_state+0x61/0x180 [ 1344.090204][T24000] exit_to_user_mode_loop+0x84/0x110 [ 1344.090244][T24000] do_syscall_64+0x3f6/0x490 [ 1344.090283][T24000] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1344.090307][T24000] RIP: 0033:0x7f8cc278e929 [ 1344.090326][T24000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1344.090349][T24000] RSP: 002b:00007f8cc354c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1344.090372][T24000] RAX: fffffffffffffe00 RBX: 00007f8cc29b5fa8 RCX: 00007f8cc278e929 [ 1344.090388][T24000] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8cc29b5fa8 [ 1344.090403][T24000] RBP: 00007f8cc29b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1344.090418][T24000] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8cc29b5fac [ 1344.090433][T24000] R13: 0000000000000000 R14: 00007ffebb18e100 R15: 00007ffebb18e1e8 [ 1344.090462][T24000] [ 1344.420388][T24009] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1345.521473][T24020] can: request_module (can-proto-3) failed. [ 1346.803772][T24045] vivid-007: ================= START STATUS ================= [ 1346.811614][T24045] vivid-007: Generate PTS: true [ 1346.816883][T24045] vivid-007: Generate SCR: true [ 1346.822289][T24045] tpg source WxH: 320x240 (Y'CbCr) [ 1346.852884][T24045] tpg field: 1 [ 1346.856338][T24045] tpg crop: (0,0)/320x240 [ 1346.860724][T24045] tpg compose: (0,0)/320x240 [ 1346.895544][T24045] tpg colorspace: 8 [ 1346.899391][T24045] tpg transfer function: 0/0 [ 1346.927079][T24045] tpg Y'CbCr encoding: 0/0 [ 1346.985126][T24045] tpg quantization: 0/0 [ 1346.989383][T24045] tpg RGB range: 0/2 [ 1347.013581][T24045] vivid-007: ================== END STATUS ================== [ 1347.135778][T24049] FAULT_INJECTION: forcing a failure. [ 1347.135778][T24049] name failslab, interval 1, probability 0, space 0, times 0 [ 1347.183185][T24049] CPU: 1 UID: 0 PID: 24049 Comm: syz.3.3715 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1347.183227][T24049] Tainted: [U]=USER [ 1347.183236][T24049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1347.183251][T24049] Call Trace: [ 1347.183259][T24049] [ 1347.183269][T24049] dump_stack_lvl+0x16c/0x1f0 [ 1347.183309][T24049] should_fail_ex+0x512/0x640 [ 1347.183345][T24049] ? __kmalloc_noprof+0xbf/0x510 [ 1347.183383][T24049] ? lsm_blob_alloc+0x68/0x90 [ 1347.183418][T24049] should_failslab+0xc2/0x120 [ 1347.183441][T24049] __kmalloc_noprof+0xd2/0x510 [ 1347.183484][T24049] lsm_blob_alloc+0x68/0x90 [ 1347.183522][T24049] security_sk_alloc+0x30/0x270 [ 1347.183550][T24049] sk_prot_alloc+0x1c7/0x2a0 [ 1347.183578][T24049] sk_alloc+0x36/0xc20 [ 1347.183612][T24049] __netlink_create+0x5e/0x2c0 [ 1347.183646][T24049] ? __wake_up+0x3f/0x60 [ 1347.183677][T24049] netlink_create+0x39e/0x620 [ 1347.183713][T24049] ? __pfx_genl_bind+0x10/0x10 [ 1347.183738][T24049] ? __pfx_genl_unbind+0x10/0x10 [ 1347.183768][T24049] ? __pfx_genl_release+0x10/0x10 [ 1347.183799][T24049] __sock_create+0x335/0x8d0 [ 1347.183832][T24049] __sys_socket+0x14d/0x260 [ 1347.183860][T24049] ? __pfx___sys_socket+0x10/0x10 [ 1347.183891][T24049] ? do_user_addr_fault+0x843/0x1370 [ 1347.183933][T24049] __x64_sys_socket+0x72/0xb0 [ 1347.183960][T24049] ? lockdep_hardirqs_on+0x7c/0x110 [ 1347.183995][T24049] do_syscall_64+0xcd/0x490 [ 1347.184034][T24049] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1347.184059][T24049] RIP: 0033:0x7f8cc2790847 [ 1347.184079][T24049] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1347.184102][T24049] RSP: 002b:00007f8cc354afa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 1347.184126][T24049] RAX: ffffffffffffffda RBX: 00007f8cc29b5fa0 RCX: 00007f8cc2790847 [ 1347.184142][T24049] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 1347.184157][T24049] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 1347.184180][T24049] R10: 0000200000000540 R11: 0000000000000286 R12: 0000000000000000 [ 1347.184196][T24049] R13: 0000000000000000 R14: 00007f8cc29b5fa0 R15: 00007ffebb18e1e8 [ 1347.184226][T24049] [ 1347.415995][ C1] vkms_vblank_simulate: vblank timer overrun [ 1348.123923][T24072] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24 [ 1349.460597][T24092] ERROR: Out of memory at tomoyo_memory_ok. [ 1349.532733][T24102] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3725'. [ 1350.453578][T24095] ERROR: Out of memory at tomoyo_memory_ok. [ 1352.072460][T24144] bridge0: port 3(netdevsim1) entered blocking state [ 1352.076406][T24144] bridge0: port 3(netdevsim1) entered disabled state [ 1352.076605][T24144] netdevsim netdevsim2 netdevsim1: entered allmulticast mode [ 1352.079204][T24144] netdevsim netdevsim2 netdevsim1: entered promiscuous mode [ 1352.080080][T24144] bridge0: port 3(netdevsim1) entered blocking state [ 1352.080267][T24144] bridge0: port 3(netdevsim1) entered forwarding state [ 1352.317241][ T31] audit: type=1804 audit(6047054225.930:10): pid=24138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3731" name="/newroot/348/file0" dev="tmpfs" ino=1824 res=1 errno=0 [ 1352.566468][T24155] binder: 24154:24155 unknown command 3 [ 1352.588468][T24155] binder: 24154:24155 ioctl c0306201 0 returned -22 [ 1353.057704][T24160] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input25 [ 1353.102159][ T5205] ERROR: Out of memory at tomoyo_memory_ok. [ 1354.780464][T24196] netlink: 342 bytes leftover after parsing attributes in process `syz.3.3744'. [ 1355.045897][T24199] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1355.291865][T24207] vivid-007: ================= START STATUS ================= [ 1355.300416][T24207] vivid-007: Generate PTS: true [ 1355.305986][T24207] vivid-007: Generate SCR: true [ 1355.311642][T24207] tpg source WxH: 320x240 (Y'CbCr) [ 1355.321771][T24207] tpg field: 1 [ 1355.366658][T24207] tpg crop: (0,0)/320x240 [ 1355.385176][T24207] tpg compose: (0,0)/320x240 [ 1355.419285][T24207] tpg colorspace: 8 [ 1355.476246][T24207] tpg transfer function: 0/0 [ 1355.498295][T24207] tpg Y'CbCr encoding: 0/0 [ 1355.557887][T24207] tpg quantization: 0/0 [ 1355.582832][T24207] tpg RGB range: 0/2 [ 1355.589226][T24207] vivid-007: ================== END STATUS ================== [ 1356.365795][T24238] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3750'. [ 1356.430465][T24238] bridge0: port 2(bridge_slave_1) entered disabled state [ 1356.440425][T24241] FAULT_INJECTION: forcing a failure. [ 1356.440425][T24241] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1356.457529][T24241] CPU: 0 UID: 0 PID: 24241 Comm: syz.2.3751 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1356.457590][T24241] Tainted: [U]=USER [ 1356.457602][T24241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1356.457622][T24241] Call Trace: [ 1356.457634][T24241] [ 1356.457646][T24241] dump_stack_lvl+0x16c/0x1f0 [ 1356.457699][T24241] should_fail_ex+0x512/0x640 [ 1356.457754][T24241] _copy_from_user+0x2e/0xd0 [ 1356.457810][T24241] copy_msghdr_from_user+0x98/0x160 [ 1356.457861][T24241] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1356.457919][T24241] ? kfree+0x24f/0x4d0 [ 1356.457958][T24241] ? __pfx__kstrtoull+0x10/0x10 [ 1356.458006][T24241] ___sys_sendmsg+0xfe/0x1d0 [ 1356.458059][T24241] ? __pfx____sys_sendmsg+0x10/0x10 [ 1356.458147][T24241] ? __pfx___might_resched+0x10/0x10 [ 1356.458198][T24241] __sys_sendmmsg+0x200/0x420 [ 1356.458255][T24241] ? __pfx___sys_sendmmsg+0x10/0x10 [ 1356.458320][T24241] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1356.458391][T24241] ? fput+0x70/0xf0 [ 1356.458422][T24241] ? ksys_write+0x1ac/0x250 [ 1356.458470][T24241] ? __pfx_ksys_write+0x10/0x10 [ 1356.458526][T24241] __x64_sys_sendmmsg+0x9c/0x100 [ 1356.458582][T24241] ? lockdep_hardirqs_on+0x7c/0x110 [ 1356.458630][T24241] do_syscall_64+0xcd/0x490 [ 1356.458684][T24241] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1356.458719][T24241] RIP: 0033:0x7fbcd478e929 [ 1356.458745][T24241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1356.458779][T24241] RSP: 002b:00007fbcd5564038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1356.458809][T24241] RAX: ffffffffffffffda RBX: 00007fbcd49b6160 RCX: 00007fbcd478e929 [ 1356.458831][T24241] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 1356.458851][T24241] RBP: 00007fbcd5564090 R08: 0000000000000000 R09: 0000000000000000 [ 1356.458872][T24241] R10: 000000000000003f R11: 0000000000000246 R12: 0000000000000002 [ 1356.458891][T24241] R13: 0000000000000000 R14: 00007fbcd49b6160 R15: 00007ffdc5fe97e8 [ 1356.458934][T24241] [ 1356.953494][T24238] bridge_slave_1 (unregistering): left allmulticast mode [ 1356.960657][T24238] bridge_slave_1 (unregistering): left promiscuous mode [ 1356.996470][T24238] bridge0: port 2(bridge_slave_1) entered disabled state [ 1357.248782][T24256] FAULT_INJECTION: forcing a failure. [ 1357.248782][T24256] name failslab, interval 1, probability 0, space 0, times 0 [ 1357.315612][T24256] CPU: 1 UID: 0 PID: 24256 Comm: syz.3.3753 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1357.315669][T24256] Tainted: [U]=USER [ 1357.315681][T24256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1357.315701][T24256] Call Trace: [ 1357.315713][T24256] [ 1357.315726][T24256] dump_stack_lvl+0x16c/0x1f0 [ 1357.315782][T24256] should_fail_ex+0x512/0x640 [ 1357.315830][T24256] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1357.315886][T24256] should_failslab+0xc2/0x120 [ 1357.315919][T24256] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1357.315971][T24256] ? proc_net_ns_init+0x42/0x410 [ 1357.316005][T24256] ? __pfx_proc_net_ns_init+0x10/0x10 [ 1357.316039][T24256] proc_net_ns_init+0x42/0x410 [ 1357.316072][T24256] ? __pfx_proc_net_ns_init+0x10/0x10 [ 1357.316103][T24256] ops_init+0x1df/0x5f0 [ 1357.316160][T24256] setup_net+0x1ff/0x510 [ 1357.316210][T24256] ? lockdep_init_map_type+0x5c/0x280 [ 1357.316268][T24256] ? __pfx_setup_net+0x10/0x10 [ 1357.316325][T24256] ? debug_mutex_init+0x37/0x70 [ 1357.316364][T24256] copy_net_ns+0x2a6/0x5f0 [ 1357.316402][T24256] create_new_namespaces+0x3ea/0xa90 [ 1357.316451][T24256] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1357.316496][T24256] ksys_unshare+0x45b/0xa40 [ 1357.316544][T24256] ? __pfx_ksys_unshare+0x10/0x10 [ 1357.316590][T24256] ? ksys_write+0x1ac/0x250 [ 1357.316659][T24256] __x64_sys_unshare+0x31/0x40 [ 1357.316706][T24256] do_syscall_64+0xcd/0x490 [ 1357.316761][T24256] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1357.316794][T24256] RIP: 0033:0x7f8cc278e929 [ 1357.316821][T24256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1357.316853][T24256] RSP: 002b:00007f8cc354c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1357.316885][T24256] RAX: ffffffffffffffda RBX: 00007f8cc29b5fa0 RCX: 00007f8cc278e929 [ 1357.316908][T24256] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1357.316928][T24256] RBP: 00007f8cc354c090 R08: 0000000000000000 R09: 0000000000000000 [ 1357.316948][T24256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1357.316967][T24256] R13: 0000000000000000 R14: 00007f8cc29b5fa0 R15: 00007ffebb18e1e8 [ 1357.317011][T24256] [ 1357.545538][ C1] vkms_vblank_simulate: vblank timer overrun [ 1357.565321][T24254] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1358.490088][T24275] FAULT_INJECTION: forcing a failure. [ 1358.490088][T24275] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1358.507731][T24275] CPU: 1 UID: 0 PID: 24275 Comm: syz.3.3756 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1358.507782][T24275] Tainted: [U]=USER [ 1358.507793][T24275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1358.507812][T24275] Call Trace: [ 1358.507822][T24275] [ 1358.507835][T24275] dump_stack_lvl+0x16c/0x1f0 [ 1358.507889][T24275] should_fail_ex+0x512/0x640 [ 1358.507942][T24275] _copy_to_user+0x32/0xd0 [ 1358.507996][T24275] simple_read_from_buffer+0xcb/0x170 [ 1358.508042][T24275] proc_fail_nth_read+0x197/0x270 [ 1358.508082][T24275] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1358.508124][T24275] ? rw_verify_area+0xcf/0x680 [ 1358.508165][T24275] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1358.508211][T24275] vfs_read+0x1e1/0xc60 [ 1358.508263][T24275] ? __pfx___mutex_lock+0x10/0x10 [ 1358.508312][T24275] ? __pfx_vfs_read+0x10/0x10 [ 1358.508368][T24275] ? __fget_files+0x20e/0x3c0 [ 1358.508425][T24275] ksys_read+0x12a/0x250 [ 1358.508476][T24275] ? __pfx_ksys_read+0x10/0x10 [ 1358.508536][T24275] do_syscall_64+0xcd/0x490 [ 1358.508589][T24275] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1358.508621][T24275] RIP: 0033:0x7f8cc278d33c [ 1358.508648][T24275] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1358.508680][T24275] RSP: 002b:00007f8cc05d5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1358.508710][T24275] RAX: ffffffffffffffda RBX: 00007f8cc29b6240 RCX: 00007f8cc278d33c [ 1358.508730][T24275] RDX: 000000000000000f RSI: 00007f8cc05d50a0 RDI: 000000000000000a [ 1358.508750][T24275] RBP: 00007f8cc05d5090 R08: 0000000000000000 R09: 0000000000000000 [ 1358.508770][T24275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1358.508789][T24275] R13: 0000000000000000 R14: 00007f8cc29b6240 R15: 00007ffebb18e1e8 [ 1358.508829][T24275] [ 1358.700197][ C1] vkms_vblank_simulate: vblank timer overrun [ 1359.027892][T24280] vivid-007: ================= START STATUS ================= [ 1359.039185][T24280] vivid-007: Generate PTS: true [ 1359.046229][T24280] vivid-007: Generate SCR: true [ 1359.056915][T24280] tpg source WxH: 320x240 (Y'CbCr) [ 1359.062102][T24280] tpg field: 1 [ 1359.066062][T24280] tpg crop: (0,0)/320x240 [ 1359.070566][T24280] tpg compose: (0,0)/320x240 [ 1359.086982][T24280] tpg colorspace: 8 [ 1359.101677][T24280] tpg transfer function: 0/0 [ 1359.109206][T24280] tpg Y'CbCr encoding: 0/0 [ 1359.127667][T24280] tpg quantization: 0/0 [ 1359.127688][T24280] tpg RGB range: 0/2 [ 1359.127706][T24280] vivid-007: ================== END STATUS ================== [ 1359.924478][T24305] FAULT_INJECTION: forcing a failure. [ 1359.924478][T24305] name failslab, interval 1, probability 0, space 0, times 0 [ 1359.940600][T24305] CPU: 0 UID: 0 PID: 24305 Comm: syz.1.3762 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1359.940650][T24305] Tainted: [U]=USER [ 1359.940660][T24305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1359.940678][T24305] Call Trace: [ 1359.940689][T24305] [ 1359.940701][T24305] dump_stack_lvl+0x16c/0x1f0 [ 1359.940752][T24305] should_fail_ex+0x512/0x640 [ 1359.940796][T24305] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 1359.940846][T24305] should_failslab+0xc2/0x120 [ 1359.940875][T24305] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 1359.940922][T24305] ? __alloc_skb+0x2b2/0x380 [ 1359.940971][T24305] __alloc_skb+0x2b2/0x380 [ 1359.941011][T24305] ? __pfx___alloc_skb+0x10/0x10 [ 1359.941052][T24305] ? kasan_quarantine_put+0x10a/0x240 [ 1359.941097][T24305] ? lockdep_hardirqs_on+0x7c/0x110 [ 1359.941152][T24305] inet_netconf_notify_devconf+0x8b/0x1f0 [ 1359.941192][T24305] inetdev_event+0xed5/0x18a0 [ 1359.941231][T24305] ? ib_netdevice_event+0xfc/0x330 [ 1359.941265][T24305] ? __pfx_inetdev_event+0x10/0x10 [ 1359.941301][T24305] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1359.941364][T24305] notifier_call_chain+0xbc/0x410 [ 1359.941400][T24305] ? __pfx_inetdev_event+0x10/0x10 [ 1359.941443][T24305] call_netdevice_notifiers_info+0xbe/0x140 [ 1359.941482][T24305] unregister_netdevice_many_notify+0xf9d/0x2700 [ 1359.941548][T24305] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 1359.941602][T24305] ? rcu_is_watching+0x12/0xc0 [ 1359.941641][T24305] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1359.941689][T24305] ? ppp_release+0x167/0x230 [ 1359.941723][T24305] ? __fsnotify_parent+0x24b/0xc40 [ 1359.941762][T24305] ? __pfx___mutex_lock+0x10/0x10 [ 1359.941816][T24305] unregister_netdevice_queue+0x305/0x3f0 [ 1359.941869][T24305] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 1359.941922][T24305] ? __pfx_locks_remove_file+0x10/0x10 [ 1359.941964][T24305] ? __pfx_ppp_release+0x10/0x10 [ 1359.941998][T24305] ppp_release+0x209/0x230 [ 1359.942034][T24305] __fput+0x402/0xb70 [ 1359.942075][T24305] task_work_run+0x150/0x240 [ 1359.942127][T24305] ? __pfx_task_work_run+0x10/0x10 [ 1359.942176][T24305] ? __pfx___do_sys_close_range+0x10/0x10 [ 1359.942230][T24305] exit_to_user_mode_loop+0xeb/0x110 [ 1359.942282][T24305] do_syscall_64+0x3f6/0x490 [ 1359.942341][T24305] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1359.942372][T24305] RIP: 0033:0x7f830918e929 [ 1359.942397][T24305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1359.942427][T24305] RSP: 002b:00007f830a0bc038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1359.942456][T24305] RAX: 0000000000000000 RBX: 00007f83093b5fa0 RCX: 00007f830918e929 [ 1359.942475][T24305] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 1359.942493][T24305] RBP: 00007f830a0bc090 R08: 0000000000000000 R09: 0000000000000000 [ 1359.942511][T24305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1359.942533][T24305] R13: 0000000000000000 R14: 00007f83093b5fa0 R15: 00007ffd7784f428 [ 1359.942572][T24305] [ 1360.836943][T24317] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3764'. [ 1361.264414][T24328] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26 [ 1361.862127][T24331] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input27 [ 1362.332265][T24349] FAULT_INJECTION: forcing a failure. [ 1362.332265][T24349] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1362.357325][T24349] CPU: 0 UID: 0 PID: 24349 Comm: syz.0.3768 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1362.357376][T24349] Tainted: [U]=USER [ 1362.357387][T24349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1362.357405][T24349] Call Trace: [ 1362.357416][T24349] [ 1362.357430][T24349] dump_stack_lvl+0x16c/0x1f0 [ 1362.357482][T24349] should_fail_ex+0x512/0x640 [ 1362.357533][T24349] _copy_to_user+0x32/0xd0 [ 1362.357587][T24349] simple_read_from_buffer+0xcb/0x170 [ 1362.357633][T24349] proc_fail_nth_read+0x197/0x270 [ 1362.357671][T24349] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1362.357712][T24349] ? rw_verify_area+0xcf/0x680 [ 1362.357752][T24349] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1362.357791][T24349] vfs_read+0x1e1/0xc60 [ 1362.357841][T24349] ? __pfx___mutex_lock+0x10/0x10 [ 1362.357891][T24349] ? __pfx_vfs_read+0x10/0x10 [ 1362.357949][T24349] ? __fget_files+0x20e/0x3c0 [ 1362.358014][T24349] ksys_read+0x12a/0x250 [ 1362.358060][T24349] ? __pfx_ksys_read+0x10/0x10 [ 1362.358118][T24349] do_syscall_64+0xcd/0x490 [ 1362.358170][T24349] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1362.358204][T24349] RIP: 0033:0x7eff36b8d33c [ 1362.358229][T24349] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1362.358262][T24349] RSP: 002b:00007eff37a3d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1362.358292][T24349] RAX: ffffffffffffffda RBX: 00007eff36db5fa0 RCX: 00007eff36b8d33c [ 1362.358312][T24349] RDX: 000000000000000f RSI: 00007eff37a3d0a0 RDI: 0000000000000004 [ 1362.358332][T24349] RBP: 00007eff37a3d090 R08: 0000000000000000 R09: 0000000000000000 [ 1362.358351][T24349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1362.358370][T24349] R13: 0000000000000000 R14: 00007eff36db5fa0 R15: 00007ffd29215798 [ 1362.358411][T24349] [ 1362.731696][T24355] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1363.474080][T24364] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input28 [ 1363.507712][T24366] FAULT_INJECTION: forcing a failure. [ 1363.507712][T24366] name failslab, interval 1, probability 0, space 0, times 0 [ 1363.520696][T24366] CPU: 0 UID: 0 PID: 24366 Comm: syz.0.3773 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1363.520755][T24366] Tainted: [U]=USER [ 1363.520767][T24366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1363.520788][T24366] Call Trace: [ 1363.520800][T24366] [ 1363.520813][T24366] dump_stack_lvl+0x16c/0x1f0 [ 1363.520877][T24366] should_fail_ex+0x512/0x640 [ 1363.520938][T24366] should_failslab+0xc2/0x120 [ 1363.520972][T24366] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 1363.521028][T24366] ? __alloc_skb+0x2b2/0x380 [ 1363.521083][T24366] __alloc_skb+0x2b2/0x380 [ 1363.521131][T24366] ? __pfx___alloc_skb+0x10/0x10 [ 1363.521197][T24366] new_skb+0x21/0x230 [ 1363.521229][T24366] aoecmd_cfg+0x21c/0x7d0 [ 1363.521268][T24366] ? __pfx_aoecmd_cfg+0x10/0x10 [ 1363.521318][T24366] ? apparmor_file_permission+0x251/0x400 [ 1363.521366][T24366] ? __pfx_aoechr_write+0x10/0x10 [ 1363.521431][T24366] ? aoechr_write+0x120/0x160 [ 1363.521482][T24366] aoechr_write+0x120/0x160 [ 1363.521535][T24366] vfs_writev+0x5df/0xde0 [ 1363.521592][T24366] ? __pfx_vfs_writev+0x10/0x10 [ 1363.521640][T24366] ? kmem_cache_free+0x2d1/0x4d0 [ 1363.521686][T24366] ? preempt_schedule_thunk+0x16/0x30 [ 1363.521783][T24366] ? __fget_files+0x20e/0x3c0 [ 1363.521849][T24366] ? do_writev+0x132/0x340 [ 1363.521893][T24366] do_writev+0x132/0x340 [ 1363.521939][T24366] ? __pfx_do_writev+0x10/0x10 [ 1363.521998][T24366] do_syscall_64+0xcd/0x490 [ 1363.522054][T24366] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1363.522089][T24366] RIP: 0033:0x7eff36b8e929 [ 1363.522115][T24366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1363.522149][T24366] RSP: 002b:00007eff37a1c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 1363.522180][T24366] RAX: ffffffffffffffda RBX: 00007eff36db6080 RCX: 00007eff36b8e929 [ 1363.522203][T24366] RDX: 0000000000000004 RSI: 0000200000000140 RDI: 0000000000000009 [ 1363.522223][T24366] RBP: 00007eff36c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 1363.522244][T24366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1363.522265][T24366] R13: 0000000000000000 R14: 00007eff36db6080 R15: 00007ffd29215798 [ 1363.522308][T24366] [ 1363.522440][T24366] aoe: skb alloc failure [ 1363.775269][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1363.783325][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1364.502321][T24379] [ 1367.261200][T24430] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3784'. [ 1368.601313][T24453] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3790'. [ 1368.930040][T24457] FAULT_INJECTION: forcing a failure. [ 1368.930040][T24457] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1368.953946][T24457] CPU: 1 UID: 0 PID: 24457 Comm: syz.2.3791 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1368.953998][T24457] Tainted: [U]=USER [ 1368.954009][T24457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1368.954029][T24457] Call Trace: [ 1368.954036][T24457] [ 1368.954045][T24457] dump_stack_lvl+0x16c/0x1f0 [ 1368.954084][T24457] should_fail_ex+0x512/0x640 [ 1368.954120][T24457] _copy_from_user+0x2e/0xd0 [ 1368.954156][T24457] core_sys_select+0x35b/0xc10 [ 1368.954194][T24457] ? __pfx_core_sys_select+0x10/0x10 [ 1368.954230][T24457] ? proc_fail_nth_write+0x9f/0x250 [ 1368.954279][T24457] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1368.954321][T24457] kern_select+0x15d/0x1e0 [ 1368.954351][T24457] ? __pfx_kern_select+0x10/0x10 [ 1368.954384][T24457] ? __pfx_ksys_write+0x10/0x10 [ 1368.954421][T24457] __x64_sys_select+0xbd/0x160 [ 1368.954450][T24457] ? do_syscall_64+0x91/0x490 [ 1368.954483][T24457] ? lockdep_hardirqs_on+0x7c/0x110 [ 1368.954517][T24457] do_syscall_64+0xcd/0x490 [ 1368.954553][T24457] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1368.954576][T24457] RIP: 0033:0x7fbcd478e929 [ 1368.954594][T24457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1368.954616][T24457] RSP: 002b:00007fbcd5564038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1368.954638][T24457] RAX: ffffffffffffffda RBX: 00007fbcd49b6160 RCX: 00007fbcd478e929 [ 1368.954657][T24457] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011 [ 1368.954676][T24457] RBP: 00007fbcd5564090 R08: 0000000000000000 R09: 0000000000000000 [ 1368.954695][T24457] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 1368.954715][T24457] R13: 0000000000000001 R14: 00007fbcd49b6160 R15: 00007ffdc5fe97e8 [ 1368.954767][T24457] [ 1369.146182][ C1] vkms_vblank_simulate: vblank timer overrun [ 1369.982239][T24471] FAULT_INJECTION: forcing a failure. [ 1369.982239][T24471] name failslab, interval 1, probability 0, space 0, times 0 [ 1370.037124][T24471] CPU: 0 UID: 0 PID: 24471 Comm: syz.2.3794 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1370.037173][T24471] Tainted: [U]=USER [ 1370.037183][T24471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1370.037199][T24471] Call Trace: [ 1370.037209][T24471] [ 1370.037221][T24471] dump_stack_lvl+0x16c/0x1f0 [ 1370.037272][T24471] should_fail_ex+0x512/0x640 [ 1370.037314][T24471] ? fs_reclaim_acquire+0xae/0x150 [ 1370.037352][T24471] ? tomoyo_encode2+0x100/0x3e0 [ 1370.037396][T24471] should_failslab+0xc2/0x120 [ 1370.037425][T24471] __kmalloc_noprof+0xd2/0x510 [ 1370.037468][T24471] ? d_absolute_path+0x136/0x1a0 [ 1370.037504][T24471] tomoyo_encode2+0x100/0x3e0 [ 1370.037550][T24471] tomoyo_encode+0x29/0x50 [ 1370.037589][T24471] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1370.037644][T24471] tomoyo_path_perm+0x274/0x460 [ 1370.037677][T24471] ? tomoyo_path_perm+0x260/0x460 [ 1370.037716][T24471] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 1370.037802][T24471] ? __lock_acquire+0x622/0x1c90 [ 1370.037870][T24471] ? find_held_lock+0x2b/0x80 [ 1370.037904][T24471] ? __pfx___up_read+0x10/0x10 [ 1370.037955][T24471] ? kernfs_dop_revalidate+0x350/0x740 [ 1370.038010][T24471] tomoyo_path_rmdir+0x91/0xe0 [ 1370.038059][T24471] ? __pfx_tomoyo_path_rmdir+0x10/0x10 [ 1370.038117][T24471] security_path_rmdir+0x145/0x2b0 [ 1370.038154][T24471] do_rmdir+0x27b/0x3c0 [ 1370.038203][T24471] ? __pfx_do_rmdir+0x10/0x10 [ 1370.038263][T24471] ? getname_flags.part.0+0x1c5/0x550 [ 1370.038307][T24471] __x64_sys_rmdir+0xc5/0x110 [ 1370.038354][T24471] do_syscall_64+0xcd/0x490 [ 1370.038407][T24471] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1370.038439][T24471] RIP: 0033:0x7fbcd478e929 [ 1370.038465][T24471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1370.038496][T24471] RSP: 002b:00007fbcd55a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054 [ 1370.038525][T24471] RAX: ffffffffffffffda RBX: 00007fbcd49b5fa0 RCX: 00007fbcd478e929 [ 1370.038546][T24471] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000040 [ 1370.038565][T24471] RBP: 00007fbcd55a6090 R08: 0000000000000000 R09: 0000000000000000 [ 1370.038584][T24471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1370.038602][T24471] R13: 0000000000000000 R14: 00007fbcd49b5fa0 R15: 00007ffdc5fe97e8 [ 1370.038644][T24471] [ 1370.038684][T24471] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1370.979342][T24486] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1371.203871][T24462] ubi0: attaching mtd0 [ 1371.220342][T24462] ubi0: scanning is finished [ 1371.254027][T24462] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1371.976646][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1372.004848][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1372.113540][T24462] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1373.092418][T24507] FAULT_INJECTION: forcing a failure. [ 1373.092418][T24507] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1373.154473][T24507] CPU: 1 UID: 0 PID: 24507 Comm: syz.1.3801 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1373.154521][T24507] Tainted: [U]=USER [ 1373.154529][T24507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1373.154543][T24507] Call Trace: [ 1373.154550][T24507] [ 1373.154559][T24507] dump_stack_lvl+0x16c/0x1f0 [ 1373.154599][T24507] should_fail_ex+0x512/0x640 [ 1373.154636][T24507] _copy_from_user+0x2e/0xd0 [ 1373.154674][T24507] move_addr_to_kernel+0x65/0x170 [ 1373.154703][T24507] __sys_connect+0xb1/0x160 [ 1373.154732][T24507] ? __pfx___sys_connect+0x10/0x10 [ 1373.154771][T24507] ? __pfx_ksys_write+0x10/0x10 [ 1373.154810][T24507] __x64_sys_connect+0x72/0xb0 [ 1373.154838][T24507] ? lockdep_hardirqs_on+0x7c/0x110 [ 1373.154870][T24507] do_syscall_64+0xcd/0x490 [ 1373.154906][T24507] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1373.154930][T24507] RIP: 0033:0x7f830918e929 [ 1373.154949][T24507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1373.154971][T24507] RSP: 002b:00007f830a09b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 1373.154992][T24507] RAX: ffffffffffffffda RBX: 00007f83093b6080 RCX: 00007f830918e929 [ 1373.155008][T24507] RDX: 000000000000001b RSI: 00002000000018c0 RDI: 0000000000000003 [ 1373.155022][T24507] RBP: 00007f830a09b090 R08: 0000000000000000 R09: 0000000000000000 [ 1373.155037][T24507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1373.155051][T24507] R13: 0000000000000000 R14: 00007f83093b6080 R15: 00007ffd7784f428 [ 1373.155079][T24507] [ 1374.055223][T24537] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub [ 1374.413178][T24541] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3807'. [ 1379.022397][T24609] zram0: detected capacity change from 0 to 8 [ 1379.151653][T24609] netlink: zone id is out of range [ 1379.189737][T24609] netlink: zone id is out of range [ 1379.212631][T24609] netlink: zone id is out of range [ 1379.218065][T24609] netlink: zone id is out of range [ 1379.247841][T24609] netlink: zone id is out of range [ 1379.276736][T24609] netlink: zone id is out of range [ 1379.313708][T24614] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78010 [ 1379.334266][T24609] netlink: zone id is out of range [ 1379.339955][T24609] netlink: zone id is out of range [ 1379.401020][T24609] netlink: zone id is out of range [ 1379.407752][T24614] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 1379.432963][T24609] netlink: zone id is out of range [ 1379.455529][T24614] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 1379.512728][T24614] page_type: f5(slab) [ 1379.546601][T24614] raw: 00fff00000000040 ffff88801b842140 0000000000000000 dead000000000001 [ 1379.572659][T24621] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input29 [ 1379.591652][T24614] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 1379.677707][T24614] head: 00fff00000000040 ffff88801b842140 0000000000000000 dead000000000001 [ 1379.739068][T24614] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 1379.749226][T24614] head: 00fff00000000003 ffffea0001e00401 00000000ffffffff 00000000ffffffff [ 1379.764223][T24614] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 1379.794141][T24614] page dumped because: unmovable page [ 1379.902759][T24614] page_owner tracks the page as allocated [ 1379.944862][T24614] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5854, tgid 5854 (syz-executor), ts 851923897065, free_ts 851198679486 [ 1379.965790][ C1] vkms_vblank_simulate: vblank timer overrun [ 1380.111429][T24614] post_alloc_hook+0x1c0/0x230 [ 1380.116471][T24614] get_page_from_freelist+0x1321/0x3890 [ 1380.122222][T24614] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 1380.128564][T24614] alloc_pages_mpol+0x1fb/0x550 [ 1380.133634][T24614] new_slab+0x23b/0x330 [ 1380.137879][T24614] ___slab_alloc+0xd9c/0x1940 [ 1380.144391][T24614] __slab_alloc.constprop.0+0x56/0xb0 [ 1380.150482][T24614] __kmalloc_noprof+0x2f2/0x510 [ 1380.155497][T24614] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1380.161184][T24614] tomoyo_path_perm+0x274/0x460 [ 1380.303997][T24614] security_inode_getattr+0x116/0x290 [ 1380.335068][T24614] vfs_statx+0x121/0x3e0 [ 1380.342906][T24614] vfs_fstatat+0x7b/0xf0 [ 1380.347357][T24614] __do_sys_newfstatat+0x97/0x120 [ 1380.353297][T24614] do_syscall_64+0xcd/0x490 [ 1380.357900][T24614] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1380.364144][T24614] page last free pid 5837 tgid 5837 stack trace: [ 1380.401160][T24614] __free_frozen_pages+0x7fe/0x1180 [ 1380.407641][T24614] __folio_put+0x329/0x450 [ 1380.412174][T24614] skb_release_data+0x7fb/0x9c0 [ 1380.427929][T24614] __kfree_skb+0x4f/0x70 [ 1380.481308][T24614] tcp_ack+0x19b2/0x5c90 [ 1380.496329][T24614] tcp_rcv_established+0xda1/0x22e0 [ 1380.501694][T24614] tcp_v4_do_rcv+0x5ca/0xa90 [ 1380.509198][T24614] __release_sock+0x31b/0x400 [ 1380.545092][T24614] release_sock+0x5a/0x220 [ 1380.565482][T24614] tcp_sendmsg+0x38/0x50 [ 1380.569811][T24614] inet_sendmsg+0xb9/0x140 [ 1380.603606][T24614] sock_write_iter+0x4aa/0x5b0 [ 1380.616885][T24614] vfs_write+0x6c4/0x1150 [ 1380.628288][T24614] ksys_write+0x1f8/0x250 [ 1380.645116][T24614] do_syscall_64+0xcd/0x490 [ 1380.680659][T24614] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1381.228621][T24638] futex_wake_op: syz.0.3826 tries to shift op by 64; fix this program [ 1381.485418][T24647] FAULT_INJECTION: forcing a failure. [ 1381.485418][T24647] name failslab, interval 1, probability 0, space 0, times 0 [ 1381.567280][T24647] CPU: 0 UID: 0 PID: 24647 Comm: syz.0.3829 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1381.567341][T24647] Tainted: [U]=USER [ 1381.567353][T24647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1381.567374][T24647] Call Trace: [ 1381.567390][T24647] [ 1381.567404][T24647] dump_stack_lvl+0x16c/0x1f0 [ 1381.567463][T24647] should_fail_ex+0x512/0x640 [ 1381.567513][T24647] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1381.567571][T24647] should_failslab+0xc2/0x120 [ 1381.567603][T24647] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1381.567663][T24647] ? __proc_create+0xc3/0x8c0 [ 1381.567718][T24647] ? __proc_create+0x2ce/0x8c0 [ 1381.567778][T24647] __proc_create+0x2ce/0x8c0 [ 1381.567830][T24647] ? __pfx___proc_create+0x10/0x10 [ 1381.567882][T24647] ? __register_sysctl_table+0x736/0x1900 [ 1381.567945][T24647] ? _raw_spin_unlock+0x28/0x50 [ 1381.567988][T24647] proc_create_reg+0x7d/0x180 [ 1381.568014][T24647] proc_create_net_data+0x8e/0x1b0 [ 1381.568054][T24647] ? __pfx_proc_create_net_data+0x10/0x10 [ 1381.568101][T24647] ? __pfx_arp_net_init+0x10/0x10 [ 1381.568133][T24647] arp_net_init+0x53/0x70 [ 1381.568164][T24647] ops_init+0x1df/0x5f0 [ 1381.568205][T24647] setup_net+0x1ff/0x510 [ 1381.568241][T24647] ? lockdep_init_map_type+0x5c/0x280 [ 1381.568277][T24647] ? __pfx_setup_net+0x10/0x10 [ 1381.568318][T24647] ? debug_mutex_init+0x37/0x70 [ 1381.568346][T24647] copy_net_ns+0x2a6/0x5f0 [ 1381.568374][T24647] create_new_namespaces+0x3ea/0xa90 [ 1381.568409][T24647] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1381.568440][T24647] ksys_unshare+0x45b/0xa40 [ 1381.568474][T24647] ? __pfx_ksys_unshare+0x10/0x10 [ 1381.568509][T24647] ? xfd_validate_state+0x61/0x180 [ 1381.568564][T24647] __x64_sys_unshare+0x31/0x40 [ 1381.568597][T24647] do_syscall_64+0xcd/0x490 [ 1381.568635][T24647] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1381.568669][T24647] RIP: 0033:0x7eff36b8e929 [ 1381.568688][T24647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1381.568712][T24647] RSP: 002b:00007eff37a3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1381.568734][T24647] RAX: ffffffffffffffda RBX: 00007eff36db5fa0 RCX: 00007eff36b8e929 [ 1381.568751][T24647] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1381.568765][T24647] RBP: 00007eff36c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 1381.568781][T24647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1381.568794][T24647] R13: 0000000000000000 R14: 00007eff36db5fa0 R15: 00007ffd29215798 [ 1381.568824][T24647] [ 1382.066211][T24652] FAULT_INJECTION: forcing a failure. [ 1382.066211][T24652] name failslab, interval 1, probability 0, space 0, times 0 [ 1382.105749][T24652] CPU: 0 UID: 0 PID: 24652 Comm: syz.1.3830 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1382.105802][T24652] Tainted: [U]=USER [ 1382.105813][T24652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1382.105833][T24652] Call Trace: [ 1382.105843][T24652] [ 1382.105857][T24652] dump_stack_lvl+0x16c/0x1f0 [ 1382.105920][T24652] should_fail_ex+0x512/0x640 [ 1382.105968][T24652] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1382.106019][T24652] should_failslab+0xc2/0x120 [ 1382.106052][T24652] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1382.106099][T24652] ? copy_net_ns+0x135/0x5f0 [ 1382.106140][T24652] copy_net_ns+0x135/0x5f0 [ 1382.106171][T24652] ? copy_cgroup_ns+0x71/0x700 [ 1382.106211][T24652] create_new_namespaces+0x3ea/0xa90 [ 1382.106258][T24652] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1382.106301][T24652] ksys_unshare+0x45b/0xa40 [ 1382.106348][T24652] ? __pfx_ksys_unshare+0x10/0x10 [ 1382.106395][T24652] ? ksys_write+0x1ac/0x250 [ 1382.106456][T24652] __x64_sys_unshare+0x31/0x40 [ 1382.106503][T24652] do_syscall_64+0xcd/0x490 [ 1382.106567][T24652] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1382.106600][T24652] RIP: 0033:0x7f830918e929 [ 1382.106630][T24652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1382.106663][T24652] RSP: 002b:00007f830a0bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1382.106693][T24652] RAX: ffffffffffffffda RBX: 00007f83093b5fa0 RCX: 00007f830918e929 [ 1382.106716][T24652] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1382.106736][T24652] RBP: 00007f830a0bc090 R08: 0000000000000000 R09: 0000000000000000 [ 1382.106756][T24652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1382.106777][T24652] R13: 0000000000000000 R14: 00007f83093b5fa0 R15: 00007ffd7784f428 [ 1382.106819][T24652] [ 1382.724461][ T5859] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 1382.724512][ T5859] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15 [ 1382.739748][ T5859] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f [ 1382.898074][T24667] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input30 [ 1382.920640][ T5205] ERROR: Out of memory at tomoyo_memory_ok. [ 1383.750365][T24678] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3837'. [ 1384.189670][T24683] FAULT_INJECTION: forcing a failure. [ 1384.189670][T24683] name failslab, interval 1, probability 0, space 0, times 0 [ 1384.213789][T24683] CPU: 1 UID: 0 PID: 24683 Comm: syz.2.3838 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1384.213849][T24683] Tainted: [U]=USER [ 1384.213861][T24683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1384.213883][T24683] Call Trace: [ 1384.213895][T24683] [ 1384.213909][T24683] dump_stack_lvl+0x16c/0x1f0 [ 1384.213967][T24683] should_fail_ex+0x512/0x640 [ 1384.214017][T24683] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1384.214068][T24683] should_failslab+0xc2/0x120 [ 1384.214102][T24683] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1384.214150][T24683] ? percpu_ref_init+0xec/0x410 [ 1384.214197][T24683] ? __pfx_blk_queue_usage_counter_release+0x10/0x10 [ 1384.214241][T24683] percpu_ref_init+0xec/0x410 [ 1384.214290][T24683] blk_alloc_queue+0x577/0x760 [ 1384.214335][T24683] blk_mq_alloc_queue+0x175/0x290 [ 1384.214385][T24683] ? __pfx_blk_mq_alloc_queue+0x10/0x10 [ 1384.214467][T24683] ? debug_mutex_init+0x37/0x70 [ 1384.214504][T24683] ? blk_mq_alloc_tag_set+0xcfe/0x1260 [ 1384.214563][T24683] __blk_mq_alloc_disk+0x29/0x120 [ 1384.214615][T24683] loop_add+0x49e/0xb70 [ 1384.214652][T24683] ? do_vfs_ioctl+0x523/0x1a60 [ 1384.214692][T24683] ? __pfx_loop_add+0x10/0x10 [ 1384.214728][T24683] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1384.214799][T24683] ? find_held_lock+0x2b/0x80 [ 1384.214841][T24683] loop_control_ioctl+0x13e/0x630 [ 1384.214884][T24683] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1384.214932][T24683] ? __pfx_loop_control_ioctl+0x10/0x10 [ 1384.214976][T24683] __x64_sys_ioctl+0x18e/0x210 [ 1384.215020][T24683] do_syscall_64+0xcd/0x490 [ 1384.215076][T24683] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1384.215110][T24683] RIP: 0033:0x7fbcd478e929 [ 1384.215138][T24683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1384.215174][T24683] RSP: 002b:00007fbcd55a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1384.215207][T24683] RAX: ffffffffffffffda RBX: 00007fbcd49b5fa0 RCX: 00007fbcd478e929 [ 1384.215230][T24683] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 1384.215252][T24683] RBP: 00007fbcd4810b39 R08: 0000000000000000 R09: 0000000000000000 [ 1384.215273][T24683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1384.215293][T24683] R13: 0000000000000000 R14: 00007fbcd49b5fa0 R15: 00007ffdc5fe97e8 [ 1384.215335][T24683] [ 1384.222343][T24683] QAT: Stopping all acceleration devices. [ 1384.959355][T24699] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3842'. [ 1384.982234][T24699] HfR: entered promiscuous mode [ 1385.576824][T24705] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input31 [ 1386.335365][T24712] FAULT_INJECTION: forcing a failure. [ 1386.335365][T24712] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1386.472855][T24712] CPU: 0 UID: 0 PID: 24712 Comm: syz.0.3846 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1386.472907][T24712] Tainted: [U]=USER [ 1386.472916][T24712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1386.472930][T24712] Call Trace: [ 1386.472938][T24712] [ 1386.472952][T24712] dump_stack_lvl+0x16c/0x1f0 [ 1386.472991][T24712] should_fail_ex+0x512/0x640 [ 1386.473030][T24712] get_futex_key+0x1d0/0x1540 [ 1386.473065][T24712] ? __pfx___schedule+0x10/0x10 [ 1386.473108][T24712] ? __pfx_get_futex_key+0x10/0x10 [ 1386.473163][T24712] futex_wait_setup+0x84/0x510 [ 1386.473210][T24712] __futex_wait+0x194/0x2f0 [ 1386.473245][T24712] ? __pfx___futex_wait+0x10/0x10 [ 1386.473284][T24712] ? __pfx_futex_wake_mark+0x10/0x10 [ 1386.473329][T24712] ? plist_check_head+0xa3/0x150 [ 1386.473356][T24712] ? find_held_lock+0x2b/0x80 [ 1386.473384][T24712] ? __futex_hash.constprop.0+0x1e9/0x440 [ 1386.473415][T24712] futex_wait+0xe8/0x380 [ 1386.473449][T24712] ? __pfx_futex_wait+0x10/0x10 [ 1386.473489][T24712] ? kmem_cache_free+0x2d1/0x4d0 [ 1386.473522][T24712] ? fd_install+0x225/0x750 [ 1386.473552][T24712] ? putname+0x154/0x1a0 [ 1386.473581][T24712] do_futex+0x229/0x350 [ 1386.473610][T24712] ? __pfx_do_futex+0x10/0x10 [ 1386.473647][T24712] __x64_sys_futex+0x1e0/0x4c0 [ 1386.473677][T24712] ? __pfx___x64_sys_open_tree_attr+0x10/0x10 [ 1386.473701][T24712] ? __x64_sys_openat+0x174/0x210 [ 1386.473728][T24712] ? __pfx___x64_sys_futex+0x10/0x10 [ 1386.473758][T24712] ? xfd_validate_state+0x61/0x180 [ 1386.473800][T24712] do_syscall_64+0xcd/0x490 [ 1386.473837][T24712] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1386.473861][T24712] RIP: 0033:0x7eff36b8e929 [ 1386.473880][T24712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1386.473904][T24712] RSP: 002b:00007eff37a3d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1386.473927][T24712] RAX: ffffffffffffffda RBX: 00007eff36db5fa8 RCX: 00007eff36b8e929 [ 1386.473961][T24712] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007eff36db5fa8 [ 1386.473977][T24712] RBP: 00007eff36db5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1386.473992][T24712] R10: 0000000000000000 R11: 0000000000000246 R12: 00007eff36db5fac [ 1386.474008][T24712] R13: 0000000000000000 R14: 00007ffd292156b0 R15: 00007ffd29215798 [ 1386.474038][T24712] [ 1387.761064][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1387.769901][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1388.034185][T24739] aoe: skb alloc failure [ 1388.048228][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1388.056595][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1388.318652][T24743] FAULT_INJECTION: forcing a failure. [ 1388.318652][T24743] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1388.337183][T24743] CPU: 1 UID: 0 PID: 24743 Comm: syz.2.3854 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1388.337235][T24743] Tainted: [U]=USER [ 1388.337246][T24743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1388.337270][T24743] Call Trace: [ 1388.337280][T24743] [ 1388.337293][T24743] dump_stack_lvl+0x16c/0x1f0 [ 1388.337343][T24743] should_fail_ex+0x512/0x640 [ 1388.337382][T24743] _copy_from_user+0x2e/0xd0 [ 1388.337419][T24743] ctl_ioctl+0xeb/0xd60 [ 1388.337444][T24743] ? do_vfs_ioctl+0x523/0x1a60 [ 1388.337472][T24743] ? __pfx_ctl_ioctl+0x10/0x10 [ 1388.337524][T24743] ? __fget_files+0x20e/0x3c0 [ 1388.337568][T24743] dm_ctl_ioctl+0x22/0x30 [ 1388.337590][T24743] ? __pfx_dm_ctl_ioctl+0x10/0x10 [ 1388.337614][T24743] __x64_sys_ioctl+0x18e/0x210 [ 1388.337654][T24743] do_syscall_64+0xcd/0x490 [ 1388.337687][T24743] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1388.337709][T24743] RIP: 0033:0x7fbcd478e929 [ 1388.337726][T24743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1388.337746][T24743] RSP: 002b:00007fbcd55a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1388.337766][T24743] RAX: ffffffffffffffda RBX: 00007fbcd49b5fa0 RCX: 00007fbcd478e929 [ 1388.337780][T24743] RDX: 00002000000001c0 RSI: fffffffffffffd07 RDI: 0000000000000003 [ 1388.337793][T24743] RBP: 00007fbcd55a6090 R08: 0000000000000000 R09: 0000000000000000 [ 1388.337806][T24743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1388.337819][T24743] R13: 0000000000000000 R14: 00007fbcd49b5fa0 R15: 00007ffdc5fe97e8 [ 1388.337845][T24743] [ 1388.508318][ C1] vkms_vblank_simulate: vblank timer overrun [ 1388.585763][T24744] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3850'. [ 1389.009870][T24746] FAULT_INJECTION: forcing a failure. [ 1389.009870][T24746] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1389.046345][T24746] CPU: 1 UID: 0 PID: 24746 Comm: syz.2.3855 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1389.046393][T24746] Tainted: [U]=USER [ 1389.046403][T24746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1389.046420][T24746] Call Trace: [ 1389.046430][T24746] [ 1389.046442][T24746] dump_stack_lvl+0x16c/0x1f0 [ 1389.046490][T24746] should_fail_ex+0x512/0x640 [ 1389.046540][T24746] should_fail_alloc_page+0xe7/0x130 [ 1389.046571][T24746] prepare_alloc_pages+0x3c2/0x610 [ 1389.046605][T24746] ? rcu_is_watching+0x12/0xc0 [ 1389.046641][T24746] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1389.046700][T24746] ? __lock_acquire+0x622/0x1c90 [ 1389.046765][T24746] ? __vmf_anon_prepare+0x11c/0x240 [ 1389.046806][T24746] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1389.046853][T24746] ? __lock_acquire+0x622/0x1c90 [ 1389.046910][T24746] ? __lock_acquire+0x622/0x1c90 [ 1389.046956][T24746] ? __lock_acquire+0x622/0x1c90 [ 1389.047000][T24746] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1389.047053][T24746] ? policy_nodemask+0xea/0x4e0 [ 1389.047088][T24746] alloc_pages_mpol+0x1fb/0x550 [ 1389.047121][T24746] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1389.047174][T24746] folio_alloc_mpol_noprof+0x36/0x2f0 [ 1389.047215][T24746] vma_alloc_folio_noprof+0xed/0x1e0 [ 1389.047251][T24746] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 1389.047304][T24746] ? find_held_lock+0x2b/0x80 [ 1389.047338][T24746] ? __handle_mm_fault+0x1092/0x5490 [ 1389.047388][T24746] __handle_mm_fault+0x2f21/0x5490 [ 1389.047442][T24746] ? __pfx___handle_mm_fault+0x10/0x10 [ 1389.047496][T24746] ? __pte_offset_map_lock+0x174/0x310 [ 1389.047530][T24746] ? find_held_lock+0x2b/0x80 [ 1389.047560][T24746] ? find_held_lock+0x2b/0x80 [ 1389.047622][T24746] ? follow_page_pte+0x3af/0x14c0 [ 1389.047671][T24746] handle_mm_fault+0x589/0xd10 [ 1389.047723][T24746] __get_user_pages+0x589/0x3b80 [ 1389.047774][T24746] ? __pfx_mt_find+0x10/0x10 [ 1389.047804][T24746] ? __pfx___get_user_pages+0x10/0x10 [ 1389.047858][T24746] populate_vma_page_range+0x278/0x3a0 [ 1389.047903][T24746] ? __pfx_populate_vma_page_range+0x10/0x10 [ 1389.047944][T24746] ? __pfx_find_vma_intersection+0x10/0x10 [ 1389.047985][T24746] ? do_mmap+0x69c/0x1210 [ 1389.048026][T24746] __mm_populate+0x1d8/0x380 [ 1389.048069][T24746] ? __pfx___mm_populate+0x10/0x10 [ 1389.048113][T24746] ? up_write+0x1b2/0x520 [ 1389.048177][T24746] vm_mmap_pgoff+0x362/0x450 [ 1389.048216][T24746] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1389.048255][T24746] ? __fget_files+0x20e/0x3c0 [ 1389.048315][T24746] ksys_mmap_pgoff+0x7d/0x5c0 [ 1389.048351][T24746] ? __pfx_ksys_write+0x10/0x10 [ 1389.048416][T24746] __x64_sys_mmap+0x125/0x190 [ 1389.048466][T24746] do_syscall_64+0xcd/0x490 [ 1389.048516][T24746] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1389.048550][T24746] RIP: 0033:0x7fbcd478e929 [ 1389.048575][T24746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1389.048606][T24746] RSP: 002b:00007fbcd55a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1389.048636][T24746] RAX: ffffffffffffffda RBX: 00007fbcd49b5fa0 RCX: 00007fbcd478e929 [ 1389.048657][T24746] RDX: 0000000000000003 RSI: 0000000000400008 RDI: 0000000000000000 [ 1389.048676][T24746] RBP: 00007fbcd55a6090 R08: 0000000000000002 R09: 0000000000008000 [ 1389.048695][T24746] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000002 [ 1389.048714][T24746] R13: 0000000000000001 R14: 00007fbcd49b5fa0 R15: 00007ffdc5fe97e8 [ 1389.048755][T24746] [ 1389.395370][ C1] vkms_vblank_simulate: vblank timer overrun [ 1433.416815][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1433.423481][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1494.856371][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 1494.862982][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 1531.972973][ T32] INFO: task syz.1.3849:24726 blocked for more than 143 seconds. [ 1531.980786][ T32] Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 [ 1531.990487][ T32] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1531.999677][ T32] task:syz.1.3849 state:D stack:26424 pid:24726 tgid:24719 ppid:17518 task_flags:0x400140 flags:0x00004004 [ 1532.012193][ T32] Call Trace: [ 1532.015607][ T32] [ 1532.018578][ T32] __schedule+0x116a/0x5de0 [ 1532.023205][ T32] ? __pfx___schedule+0x10/0x10 [ 1532.028121][ T32] ? find_held_lock+0x2b/0x80 [ 1532.032904][ T32] ? schedule+0x2d7/0x3a0 [ 1532.037317][ T32] schedule+0xe7/0x3a0 [ 1532.041419][ T32] io_schedule+0xbf/0x130 [ 1532.045868][ T32] folio_wait_bit_common+0x3d6/0x9e0 [ 1532.051227][ T32] ? folio_wait_bit_common+0x13a/0x9e0 [ 1532.056780][ T32] ? __pfx_folio_wait_bit_common+0x10/0x10 [ 1532.063446][ T32] ? filemap_get_folios_tag+0x46a/0xae0 [ 1532.069072][ T32] ? __pfx_wake_page_function+0x10/0x10 [ 1532.075018][ T32] folio_wait_writeback+0x3c/0x90 [ 1532.080155][ T32] __filemap_fdatawait_range+0x11f/0x200 [ 1532.085917][ T32] ? __pfx___filemap_fdatawait_range+0x10/0x10 [ 1532.092159][ T32] file_write_and_wait_range+0x101/0x140 [ 1532.097946][ T32] ext4_sync_file+0x310/0xf10 [ 1532.103269][ T32] ? __pfx___up_read+0x10/0x10 [ 1532.108107][ T32] ? __pfx_ext4_sync_file+0x10/0x10 [ 1532.113419][ T32] vfs_fsync_range+0x139/0x220 [ 1532.118261][ T32] __do_sys_msync+0x3cb/0x5c0 [ 1532.123082][ T32] do_syscall_64+0xcd/0x490 [ 1532.127644][ T32] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1532.133647][ T32] RIP: 0033:0x7f830918e929 [ 1532.138110][ T32] RSP: 002b:00007f830a038038 EFLAGS: 00000246 ORIG_RAX: 000000000000001a [ 1532.146632][ T32] RAX: ffffffffffffffda RBX: 00007f83093b6320 RCX: 00007f830918e929 [ 1532.154754][ T32] RDX: 0000000400000004 RSI: 0180000000000000 RDI: 000000001ffff000 [ 1532.162856][ T32] RBP: 00007f8309210b39 R08: 0000000000000000 R09: 0000000000000000 [ 1532.170869][ T32] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1532.178940][ T32] R13: 0000000000000000 R14: 00007f83093b6320 R15: 00007ffd7784f428 [ 1532.186992][ T32] [ 1532.190026][ T32] [ 1532.190026][ T32] Showing all locks held in the system: [ 1532.197821][ T32] 1 lock held by khungtaskd/32: [ 1532.202745][ T32] #0: ffffffff8e5c4d00 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 1532.213070][ T32] 6 locks held by kworker/u8:4/61: [ 1532.218218][ T32] #0: ffff8880202b5948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 1532.229022][ T32] #1: ffffc9000212fd10 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 1532.241041][ T32] #2: ffff888035b000e0 (&type->s_umount_key#31){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0 [ 1532.251955][ T32] #3: ffff888035b02b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x277/0x600 [ 1532.262384][ T32] #4: ffff888035f30950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1532.272118][ T32] #5: ffff888033e45880 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x5b6/0x14b0 [ 1532.282027][ T32] 1 lock held by klogd/5209: [ 1532.286684][ T32] #0: ffff8880b843a418 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 1532.296830][ T32] 3 locks held by syz-executor/5837: [ 1532.302143][ T32] #0: ffff88807b4d8a88 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 1532.311558][ T32] #1: ffff888035b00520 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 1532.321195][ T32] #2: ffff888035f30950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1532.331154][ T32] 3 locks held by kworker/0:3/5906: [ 1532.336610][ T32] #0: ffff8880b843a418 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 1532.346753][ T32] #1: ffff8880304bc018 (&pid_list->lock){-.-.}-{2:2}, at: trace_pid_list_is_set+0x4c/0x150 [ 1532.357036][ T32] #2: ffffffff9b08a028 (&obj_hash[i].lock){-.-.}-{2:2}, at: debug_object_deactivate+0x135/0x3a0 [ 1532.367744][ T32] 5 locks held by kworker/u8:0/22954: [ 1532.374661][ T32] 3 locks held by kworker/u8:5/23560: [ 1532.380181][ T32] #0: ffff8880b843a418 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 1532.390294][ T32] #1: ffff8880304bc018 (&pid_list->lock){-.-.}-{2:2}, at: trace_pid_list_is_set+0x4c/0x150 [ 1532.400705][ T32] #2: ffff8880b8425b18 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x127/0x1d0 [ 1532.410187][ T32] 3 locks held by syz.3.3857/24753: [ 1532.415491][ T32] #0: ffff888034f98948 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 1532.424943][ T32] #1: ffff888035b00520 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 1532.434798][ T32] #2: ffff888035f30950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1532.444573][ T32] 1 lock held by syz.3.3857/24767: [ 1532.449715][ T32] #0: ffff888035b02b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x277/0x600 [ 1532.460131][ T32] 3 locks held by syz.2.3859/24763: [ 1532.465421][ T32] #0: ffff8880349b3308 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370 [ 1532.474905][ T32] #1: ffff888035b00520 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380 [ 1532.484561][ T32] #2: ffff888035f30950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410 [ 1532.494334][ T32] [ 1532.496693][ T32] ============================================= [ 1532.496693][ T32] [ 1532.505199][ T32] NMI backtrace for cpu 0 [ 1532.505222][ T32] CPU: 0 UID: 0 PID: 32 Comm: khungtaskd Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1532.505268][ T32] Tainted: [U]=USER [ 1532.505279][ T32] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1532.505297][ T32] Call Trace: [ 1532.505307][ T32] [ 1532.505319][ T32] dump_stack_lvl+0x116/0x1f0 [ 1532.505371][ T32] nmi_cpu_backtrace+0x27b/0x390 [ 1532.505410][ T32] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1532.505456][ T32] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 1532.505499][ T32] watchdog+0xf70/0x12c0 [ 1532.505554][ T32] ? __pfx_watchdog+0x10/0x10 [ 1532.505600][ T32] ? lockdep_hardirqs_on+0x7c/0x110 [ 1532.505657][ T32] ? __kthread_parkme+0x19e/0x250 [ 1532.505700][ T32] ? __pfx_watchdog+0x10/0x10 [ 1532.505749][ T32] kthread+0x3c2/0x780 [ 1532.505796][ T32] ? __pfx_kthread+0x10/0x10 [ 1532.505845][ T32] ? rcu_is_watching+0x12/0xc0 [ 1532.505880][ T32] ? __pfx_kthread+0x10/0x10 [ 1532.505929][ T32] ret_from_fork+0x5d7/0x6f0 [ 1532.505973][ T32] ? __pfx_kthread+0x10/0x10 [ 1532.506020][ T32] ret_from_fork_asm+0x1a/0x30 [ 1532.506075][ T32] [ 1532.506086][ T32] Sending NMI from CPU 0 to CPUs 1: [ 1532.630488][ C1] NMI backtrace for cpu 1 [ 1532.630511][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1532.630550][ C1] Tainted: [U]=USER [ 1532.630559][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1532.630575][ C1] RIP: 0010:pv_native_safe_halt+0xf/0x20 [ 1532.630625][ C1] Code: 4b 6f 02 e9 93 fb 02 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 93 c7 25 00 fb f4 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 [ 1532.630652][ C1] RSP: 0018:ffffc90000197df8 EFLAGS: 000002c6 [ 1532.630673][ C1] RAX: 0000000000dd095f RBX: 0000000000000001 RCX: ffffffff8b844c49 [ 1532.630690][ C1] RDX: 0000000000000000 RSI: ffffffff8de2be6b RDI: ffffffff8c1578e0 [ 1532.630707][ C1] RBP: ffffed1003cd7b40 R08: 0000000000000001 R09: ffffed10170a6645 [ 1532.630724][ C1] R10: ffff8880b853322b R11: 0000000000000001 R12: 0000000000000001 [ 1532.630740][ C1] R13: ffff88801e6bda00 R14: ffffffff90a99a50 R15: 0000000000000000 [ 1532.630758][ C1] FS: 0000000000000000(0000) GS:ffff888124821000(0000) knlGS:0000000000000000 [ 1532.630782][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1532.630799][ C1] CR2: 00007f374d362e9c CR3: 000000000e382000 CR4: 00000000003526f0 [ 1532.630816][ C1] Call Trace: [ 1532.630825][ C1] [ 1532.630834][ C1] default_idle+0x13/0x20 [ 1532.630858][ C1] default_idle_call+0x6d/0xb0 [ 1532.630883][ C1] do_idle+0x391/0x510 [ 1532.630913][ C1] ? __pfx_do_idle+0x10/0x10 [ 1532.630942][ C1] ? trace_sched_exit_tp+0x31/0x130 [ 1532.630978][ C1] cpu_startup_entry+0x4f/0x60 [ 1532.631006][ C1] start_secondary+0x21d/0x2b0 [ 1532.631041][ C1] ? __pfx_start_secondary+0x10/0x10 [ 1532.631079][ C1] common_startup_64+0x13e/0x148 [ 1532.631114][ C1] [ 1532.631547][ T32] Kernel panic - not syncing: hung_task: blocked tasks [ 1532.816202][ T32] CPU: 1 UID: 0 PID: 32 Comm: khungtaskd Tainted: G U 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1532.829594][ T32] Tainted: [U]=USER [ 1532.833408][ T32] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1532.843492][ T32] Call Trace: [ 1532.846786][ T32] [ 1532.849723][ T32] dump_stack_lvl+0x3d/0x1f0 [ 1532.854343][ T32] panic+0x71c/0x800 [ 1532.858263][ T32] ? __pfx_panic+0x10/0x10 [ 1532.862716][ T32] ? preempt_schedule_thunk+0x16/0x30 [ 1532.868155][ T32] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1532.874162][ T32] ? preempt_schedule_thunk+0x16/0x30 [ 1532.879563][ T32] ? watchdog+0xdda/0x12c0 [ 1532.884019][ T32] ? watchdog+0xdcd/0x12c0 [ 1532.888468][ T32] watchdog+0xdeb/0x12c0 [ 1532.892744][ T32] ? __pfx_watchdog+0x10/0x10 [ 1532.897450][ T32] ? lockdep_hardirqs_on+0x7c/0x110 [ 1532.902690][ T32] ? __kthread_parkme+0x19e/0x250 [ 1532.907776][ T32] ? __pfx_watchdog+0x10/0x10 [ 1532.912517][ T32] kthread+0x3c2/0x780 [ 1532.916695][ T32] ? __pfx_kthread+0x10/0x10 [ 1532.921352][ T32] ? rcu_is_watching+0x12/0xc0 [ 1532.926183][ T32] ? __pfx_kthread+0x10/0x10 [ 1532.930839][ T32] ret_from_fork+0x5d7/0x6f0 [ 1532.935512][ T32] ? __pfx_kthread+0x10/0x10 [ 1532.940170][ T32] ret_from_fork_asm+0x1a/0x30 [ 1532.945026][ T32] [ 1532.948427][ T32] Kernel Offset: disabled [ 1532.952775][ T32] Rebooting in 86400 seconds..