last executing test programs: 11.938974826s ago: executing program 2 (id=1684): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [0x0, 0x42], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}}) open(0x0, 0x22240, 0x154) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = clone3$auto(&(0x7f00000002c0)={0x4, 0x5, 0x1, 0x59, 0x2008000, 0xffffffffffffffff, 0x7, 0x7, 0x7fffffff, 0xc, 0x20000000000200}, 0x7) ptrace$auto_PTRACE_GETSIGMASK(0x420a, r0, 0x6e3, 0x1) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/audio1\x00', 0x101001, 0x0) ioctl$auto_SNDCTL_DSP_NONBLOCK(r2, 0x500e, 0x0) io_setup$auto(0x7ffe, 0x0) semctl$auto_GETPID(0x0, 0xc0000000, 0xb, 0x5) io_setup$auto(0x7ffe, &(0x7f0000000000)) 9.146152772s ago: executing program 2 (id=1694): mmap$auto(0x0, 0x7ffffffff000, 0x8004, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x1a, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x7f, 0xeb1, 0x401, 0x8000) socketpair$auto(0xa, 0x2, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) unshare$auto(0x3) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x40000000007, 0xd3e, 0x1, 0x948b, 0xcf4, 0x95f4da0a, 0xffffffffffffffff, 0x7, 0x62, 0x80000001, 0x4, 0x80000001, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x3665664e) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80800, 0x0) r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r2, 0x0, 0x0) io_uring_setup$auto(0x4b, &(0x7f00000001c0)={0x6, 0x6, 0x10, 0x5, 0x8, 0x100, r2, [0xfffffff1, 0x5, 0x4], {0x6, 0x0, 0x4, 0x9906, 0x81, 0x2, 0x2, 0xfec, 0x5}, {0x8000, 0xb4, 0x5, 0x4a4, 0xfff, 0x3, 0xc, 0x7, 0x7}}) r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder0\x00', 0x0, 0x0) mmap$auto(0x0, 0x5, 0xfffffffffffffe01, 0x8011, r3, 0x8000) mremap$auto(0x0, 0x4, 0x3fd6, 0x3, 0x20000000) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x1e, 0x4, 0x3, 0x8}, 0x6f4) sendfile$auto(r1, r0, &(0x7f0000000040)=0x80000000, 0xa131) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x400000000001ff, 0x7, 0x9, 0x1, 0x4, 0xffffffffffffffff, 0x9, 0x5, 0x3, 0x62, 0x8002001f, 0x79d, 0x6d3e, 0xc, 0x6, 0x9]}, 0x0) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_BLKTRACESETUP32(0xffffffffffffffff, 0xc0401273, &(0x7f0000000340)={"05362a3b4f10ba691a5951e5b55ba2ccf8526032a7b4a61ebc73203b301cdbf0", 0x3695, 0x10004, 0x6, 0x263, 0x101, 0x0}) sched_getattr$auto(r4, &(0x7f00000000c0)={0x0, 0x8, 0x100000001, 0x8, 0x9, 0x73c, 0xb, 0x80000001, 0x3, 0x4}, 0x6, 0x0) 8.463546821s ago: executing program 2 (id=1696): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/nbd0/mq/0/cpu_list\x00', 0xc0082, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, r0, 0x8000) r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x100, 0x0) r2 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x8d200, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r2, 0x0) mmap$auto(0x0, 0x9, 0x1, 0x8000000008011, 0x3, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_CHANNEL_INFO2(r1, 0x80184132, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), 0xffffffffffffffff) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC1D0p\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram5\x00', 0xdd01, 0x0) ioctl$auto_SG_GET_COMMAND_Q2(r4, 0x2270, &(0x7f0000000440)="2527cd0321f78857a99a50bfc31fce658f127c32db3be922559387bf5bcf2b0292ebf790fefd82aed870dcac4b681c23c133bb1cc965c00279aae8150b13c75049d73b904a57a4ac359c4a915e5ee31404d117c00f132ea796d01efb9753a39ac81c0aa23bc4ffa0b853d246254502b8116ef8e811fce1e7a6d4b0346aa3b92bc5bbba8984e1c794e5e5e207d1d0c651ba035d7394ca78") madvise$auto(0xa, 0x20499f, 0x9) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) ioctl$auto_BLKRRPART(r5, 0x125f, 0x700000000000000) r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x1b6773bc7616fcfa, 0x0) ioctl$auto(r6, 0xc0285443, 0x0) r7 = open(0x0, 0x161342, 0x100) open(0x0, 0xeee00, 0x31) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cec23\x00', 0x4700, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram2\x00', 0x14f602, 0x0) socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x2, 0x3c5, 0x9, 0x7, 0x3b, 0x4909b6fb, 0x1ffde, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0x1, 0x9, 0x2, 0x10000, 0x80, 0x7, 0x40000, 0x7, 0x2000, 0x202, 0x8000, 0x84, 0x0, 0x0, 0x0, 0x8, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x4, 0x0, 0xd, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffe]}, 0x202, 0xd) sendmsg$auto_OVS_VPORT_CMD_DEL(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x28000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) 7.479126473s ago: executing program 2 (id=1699): mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, 0x0, 0x20000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000001680)='/sys/kernel/tracing/uprobe_events\x00', 0x2, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x2584, 0x0) ioctl$auto(0x3, 0x40045542, 0xb551) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000300)='/dev/midi2\x00', 0x80b00, 0x0) close_range$auto(0x2, 0x8000, 0x0) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r0) sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10010}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4081}, 0xc000) ioctl$auto_TIOCSCTTY(r0, 0x540e, &(0x7f0000000040)="f889202fd17ce1d37114caca0e944cd54618f82961bff0b5013c8369d0c4c854a538a27375e63952f4fb4f102715f5a77e4c235d7417ff1c4b6353883893d3b0246bac2fb723bc97b2eb7adf5d") socket(0x11, 0x80003, 0x300) 7.4428424s ago: executing program 1 (id=1700): unshare$auto(0x40000080) mmap$auto(0x6, 0x2000d, 0x6, 0xebe, 0x404, 0x10008000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/rose8/address\x00', 0x752502, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd0\x00', 0xc0c00, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) read$auto(r0, 0x0, 0x0) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) clock_gettime$auto(0x2, &(0x7f0000000000)={0x7, 0x7}) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) io_uring_register$auto(0xffffffffffffffff, 0xffff5594, 0x0, 0x1) prctl$auto(0x1000000001c, 0x5, 0x100000000, 0x40000000000c, 0x3fffffffff) r2 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) poll$auto(&(0x7f0000000180)={r2, 0xfff7, 0x9816}, 0x7f, 0x9) ioctl$auto_VHOST_SET_OWNER(r3, 0xaf01, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ram3\x00', 0x8001, 0x0) close_range$auto(r1, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_BATADV_CMD_GET_BLA_CLAIM(r4, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000340)=ANY=[@ANYBLOB="6714bf7f", @ANYBLOB="7d3f2dbd7000fddbdf250b0000009a186fa3009c378575480d377bec17864aaab310d1f023c2a5cb12fdffb0bd4163942b191301bf33e2937efbe29aa7361d3097d3896ad0467eb3002aeda72c84aae892abafeee433c70514752c7ca49580b5075e72ada90a09f94f42dd8d6a8cb4cf2524e80d75c0a00a60c9e8b4f645ea8f87531f22811b6d7e41ef3c3432b3891fce3f71c25ad7bb1e6cc04afe5d75f8789199b6"], 0x14}, 0x1, 0x0, 0x0, 0x48018}, 0x400c880) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x2400c804) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x23, 0x0) r5 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r5, 0x0, 0x4) socket$nl_generic(0x10, 0x3, 0x10) 7.369996805s ago: executing program 3 (id=1701): madvise$auto(0x0, 0x2000040080000003, 0xe) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) getsockopt$auto_SO_RCVPRIORITY(0xffffffffffffffff, 0x2, 0x52, 0x0, &(0x7f0000000240)=0x7) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/nfs/parameters/nfs_mountpoint_expiry_timeout\x00', 0xa001, 0x0) write$auto(r2, &(0x7f0000000080)='0\x00\\\xa0\xe2\xff\xaa8nr\xec\x13Dy\xe9\xd2-\xec\xb7F\x92\x05\x1e\xfa\x1c\x80\xc2);\x11\xfemdV\x9cc\x8e\x88A\xb7(\xcc\x04\xff;k\xa5\x1b=yYp4-\x89\x189\xba<\x83\xee\xc4&-\x81\xa8\x98\xaf\xaac\x06g\x84\x9e\x9f\x00\x00\x00\x00\xfed\xfdvT,', 0x81) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto(0xffffffffffffffff, 0x11c, 0x2, 0x0, 0x0) pread64$auto(0xffffffffffffffff, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{o2?\x0f\x11\x90^\xdf/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x5) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/fib_triestat\x00', 0x0, 0x0) pread64$auto(r3, &(0x7f0000000040)='veth1\x00', 0x200000000006, 0x8) msgctl$auto_IPC_INFO(0xaf86, 0x3, &(0x7f00000003c0)={{0x1, 0xffffffffffffffff, 0x0, 0x6, 0x8, 0xfffffff7, 0xc2}, &(0x7f0000000340)=0x5, &(0x7f0000000380)=0xff, 0x4, 0x4, 0x3, 0x7, 0x4, 0x7f, 0x7fff, 0xfff}) r4 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/etherd/flush\x00', 0x1, 0x0) r5 = socket(0x2, 0x1, 0x0) ioctl$auto_KVM_GET_DEVICE_ATTR(r5, 0x4018aee2, &(0x7f0000000480)={0x80000000, 0xee00, 0x5, 0xd032}) r7 = setfsgid$auto(r6) fchown$auto(r4, 0xee00, r7) fsconfig$auto(0xffffffffffffffff, 0x6, &(0x7f0000000080)=',\xd6{/@){--\xd4\x00', &(0x7f0000000380)="ed866ad7625148e6fb7003dd923e63ba59443a3c4d8ec4985e3531c2dfb7145166453aa4e0ec035225fc27a72a14d2d8ab4954fa5e4258cd2bada8a685a08639a60b1acff51d6be788231f7c975aac4bfae7a4586644a5babedf816e9f4777e2b4d68236c6fe1b730575cdb7ffbde3b38743a6e8a92392fb684fdfa902490837c2dc4b134394b2898b0125b91bc355a794c94fdb63a0e450818598", r7) 4.921570861s ago: executing program 1 (id=1702): madvise$auto(0x0, 0x2000040080000003, 0xe) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) getsockopt$auto_SO_RCVPRIORITY(0xffffffffffffffff, 0x2, 0x52, 0x0, &(0x7f0000000240)=0x7) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/nfs/parameters/nfs_mountpoint_expiry_timeout\x00', 0xa001, 0x0) write$auto(r2, &(0x7f0000000080)='0\x00\\\xa0\xe2\xff\xaa8nr\xec\x13Dy\xe9\xd2-\xec\xb7F\x92\x05\x1e\xfa\x1c\x80\xc2);\x11\xfemdV\x9cc\x8e\x88A\xb7(\xcc\x04\xff;k\xa5\x1b=yYp4-\x89\x189\xba<\x83\xee\xc4&-\x81\xa8\x98\xaf\xaac\x06g\x84\x9e\x9f\x00\x00\x00\x00\xfed\xfdvT,', 0x81) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto(0xffffffffffffffff, 0x11c, 0x2, 0x0, 0x0) pread64$auto(0xffffffffffffffff, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{o2?\x0f\x11\x90^\xdf/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x5) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/fib_triestat\x00', 0x0, 0x0) pread64$auto(r3, &(0x7f0000000040)='veth1\x00', 0x200000000006, 0x8) msgctl$auto_IPC_INFO(0xaf86, 0x3, &(0x7f00000003c0)={{0x1, 0xffffffffffffffff, 0x0, 0x6, 0x8, 0xfffffff7, 0xc2}, &(0x7f0000000340)=0x5, &(0x7f0000000380)=0xff, 0x4, 0x4, 0x3, 0x7, 0x4, 0x7f, 0x7fff, 0xfff}) r4 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/etherd/flush\x00', 0x1, 0x0) r5 = socket(0x2, 0x1, 0x0) ioctl$auto_KVM_GET_DEVICE_ATTR(r5, 0x4018aee2, &(0x7f0000000480)={0x80000000, 0xee00, 0x5, 0xd032}) r7 = setfsgid$auto(r6) fchown$auto(r4, 0xee00, r7) fsconfig$auto(0xffffffffffffffff, 0x6, &(0x7f0000000080)=',\xd6{/@){--\xd4\x00', &(0x7f0000000380)="ed866ad7625148e6fb7003dd923e63ba59443a3c4d8ec4985e3531c2dfb7145166453aa4e0ec035225fc27a72a14d2d8ab4954fa5e4258cd2bada8a685a08639a60b1acff51d6be788231f7c975aac4bfae7a4586644a5babedf816e9f4777e2b4d68236c6fe1b730575cdb7ffbde3b38743a6e8a92392fb684fdfa902490837c2dc4b134394b2898b0125b91bc355a794c94fdb63a0e450818598", r7) 4.92007173s ago: executing program 2 (id=1703): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r1 = pidfd_open$auto(0x1, 0x0) open_by_handle_at$auto(r1, 0x0, 0x1000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r2 = socket(0x18, 0x6, 0x4) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) sendmsg$auto_HSR_C_GET_NODE_STATUS(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x4008010}, 0x8000) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) getdents$auto(r4, 0x0, 0xfff) msync$auto(0x7f, 0x6, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop15/queue/discard_granularity\x00', 0x8000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) clone$auto(0x81000005, 0x6, 0xfffffffffffffffd, 0xffffffffffffffff, 0x80000001) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x2, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x5) r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmallocinfo\x00', 0x0, 0x0) pread64$auto(r5, &(0x7f0000000400)='/proc/Nes\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x88<\xf7\xc2\xed}\xd2kM\x1f\x15\x03ZN$\'\xf4\"\x13g|\x8f\xe1Svo\xfe\xb1\xf8#]\x85\xc2\x82e\xc6#z\xeb\x14\xd3\x96\xff\xb4\xa2\xac\xc5\xd8\x8d\xce\x01B\xd4\xea\x85\xa5', 0x100000001, 0x100) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'}) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) write$auto(0xffffffffffffffff, &(0x7f0000000000)='-\x00', 0x2fb) madvise$auto(0x0, 0xffffffffffff0000, 0x15) remap_file_pages$auto(0x8, 0xda, 0x5, 0x4, 0x4) 4.90711357s ago: executing program 3 (id=1704): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) socket(0x1d, 0x2, 0x6) socket(0x2, 0x1, 0x0) socket(0x15, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x2, 0x73) io_uring_setup$auto(0x7e1b, 0x0) socket(0x2, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x800, 0x14) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptya7\x00', 0x101e81, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyde\x00', 0xa0102, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) ioctl$auto(0x3, 0x5411, 0x38) r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r3 = open(&(0x7f0000000100)='.\x00', 0x0, 0x110) getdents64$auto(r3, 0x0, 0x400) open$dir(0x0, 0x204000, 0x2) ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x5) ioctl$auto(r2, 0x4008af10, r1) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r4, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000080)=ANY=[@ANYBLOB="3a71f39562445344e3b1dae7e500", @ANYRES16=r5, @ANYBLOB="010027bd7000f7dbdf250300000004000180"], 0x18}}, 0x0) 4.594469543s ago: executing program 3 (id=1705): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1b0026bd7000fcdbdf2503000000040003800400028012000100898035e161e0453c425e000000000000000000000000000c00038008000600", @ANYRES32=0x0, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0x4004800) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto_proc_pid_attr_operations_base(0xffffffffffffffff, 0x0, 0x0) r2 = socket(0xa, 0x3, 0x2f) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ila(&(0x7f0000000f80), 0xffffffffffffffff) sendmsg$auto_ILA_CMD_DEL(r3, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000001000)={&(0x7f0000000fc0)={0x14, r4, 0x1, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x44884) sendmsg$auto_ILA_CMD_DEL(r2, 0x0, 0x1) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) r5 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x10040, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_PAUSE(r5, 0x54a3, 0x0) socket(0x2, 0x3, 0xa) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0xc01) 4.003808635s ago: executing program 0 (id=1706): close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101480, 0x0) socket(0x2, 0x1, 0x84) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x22, &(0x7f0000000000), 0x1) 3.648410497s ago: executing program 3 (id=1707): mmap$auto(0x0, 0x3, 0xb, 0x3132, 0x4008df3, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0x2b, 0x1, 0x1) r0 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000140), 0xffffffffffffffff) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x100000000, 0xd77, 0x5, 0x7181, 0x81, 0x7, 0x3, 0x9a89, 0x5, 0x80005, 0x800, 0x1fffffffffff, 0xb4, 0x3, 0x2, 0x10007, 0x80, 0x0, 0x0, 0xa, 0x22004, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x1, [0x0, 0x0, 0xea4, 0x4, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x5, 0x0, 0x0, 0x100000000, 0x0, 0x3, 0x4, 0x5, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x100000000]}, 0x1fe, 0xd) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0, @ANYBLOB="010025bd7000fbdbdf0002"], 0x1c}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xda5c}, 0x800}, 0x7, 0x4008) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x10, 0x2, 0x15) read$auto(0xffffffffffffffff, &(0x7f0000000100)='nl80211\x00', 0xbe62) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x101502, 0x0) write$auto_console_fops_tty_io(r2, &(0x7f0000000000)="1f91f2c3881f4610e18d5fc5e5bfd9800e9b50", 0x13) 3.540021668s ago: executing program 1 (id=1708): open_by_handle_at$auto(0xffffff9c, 0xffffffffffffffff, 0x9658) (async) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x70, 0xdf, 0x9b72, 0x2, 0x80000000008000) (async) semctl$auto(0x7, 0x2, 0x13, 0x1) r0 = socket(0x11, 0x80003, 0x0) setsockopt$auto(r0, 0x107, 0x5, 0x0, 0xce24) (async) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x10800, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async) r1 = io_uring_setup$auto(0xa, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x1020, 0x202, 0x10001, 0x8, r1, [], {0x6, 0x6, 0x8c48, 0x4, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x10000008, 0x52, 0x1, 0x1, 0x40, 0x76c4, 0x80008, 0x5}}) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sr0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x10000, 0xde, 0x11, r2, 0x28000) (async) close_range$auto(0x2, 0xfffffffffffff000, 0x2) r3 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aab4) flock$auto(r3, 0x1) (async) r4 = socket(0x2, 0x1, 0x0) getsockopt$auto(r4, 0x0, 0x63, 0x0, &(0x7f00000000c0)=0x44) r5 = open(&(0x7f00000000c0)='./file0\x00', 0x4081, 0x40) flock$auto(r5, 0x2) r6 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0) write$auto_mousedev_fops_mousedev(r6, 0x0, 0x0) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async) write$auto(0x3, 0x0, 0xfdef) (async) read$auto(0x3, 0x0, 0xf3c) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4004) (async) r7 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/tty/ptyb4/power/runtime_suspended_time\x00', 0x410100, 0x0) sendmsg$auto_IPVS_CMD_DEL_DAEMON(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="01002dbd7000fedbdf250a000000f0ff0400c40000b1aafbd8fdcb93a2fb3d55f1009c326c043430675b06369d3522ef2edee80e470da7adc2b9ec9346ef0fd8ab5c82b47a1708fd99b0b855b6cffd4a79993659a0a237f3bddd5d7c26dc69b67b5a8a3fc99a773491c8f4f7638cfa652dee1956962310dca2c88b0c82a1b73c2680de1fef326f9beef42104c2d72987b4d9c22949ec1eb2260a1f0a4a0f473798f37fd75dbafebb10ccfe9573bf6efb3db0c36ae957f29a315cd2c41c07df629e3b570bdad6d61899d27b5470e7cfb73bc9c8cba65ba4d225629a727ba4278fe270816f394bd23b4f3b4437a7d7383c5d8a"], 0x1c}}, 0x24008040) 3.469070265s ago: executing program 0 (id=1709): r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x1) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) socket(0x1d, 0x2, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) lsm_set_self_attr$auto(0x9, 0x0, 0x80, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) open_by_handle_at$auto(r0, &(0x7f0000000480)={0xb4, 0x1e, "d5cb45bf3a85257cf184925b8dd3c6b4ba2f10e67122cbf74010d219333f2c634c3e01dae068eb200fac11aac7036e00eb07ace5ad056bcdf5bc266f99d6467f70017e9482374eff37af7bbecdc2d6389d2b5e78a50a4210767c870668ddcd0d3ae336ade6a363271b2fbaddc9ae97bf6ad4800dc0e850a5215973a1192b18930549f786880174c404722d369ef05a03034ac9241f0eaffe52d4363dc2e5c258bf3c4c5eab9b19fac68b638608cd45c7364f871b"}, 0x403) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000240)='/dev/binderfs/binder0\x00', 0x800, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800c0011800600c40040177904859082884700000400028000"/58], 0x40}, 0x1, 0x0, 0x0, 0x4044}, 0xc800) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r4 = socket(0x15, 0x5, 0x0) getsockopt$auto(r4, 0x114, 0x2713, 0xfffffffffffffffc, 0x0) 2.915142493s ago: executing program 3 (id=1710): madvise$auto(0x0, 0x2000040080000003, 0xe) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) getsockopt$auto_SO_RCVPRIORITY(0xffffffffffffffff, 0x2, 0x52, 0x0, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) pipe2$auto(0x0, 0x80) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) keyctl$auto(0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0) syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SETHMAC(r2, &(0x7f0000001440)={0x0, 0xf0, &(0x7f0000000380)={&(0x7f0000000240)={0x34, r3, 0x6c5679fc7dece1a9, 0x70bd27, 0x25dfdbff, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x7}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x10001}, @SEG6_ATTR_SECRET={0x7, 0x4, "96e300"}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000014}, 0x400c810) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$auto(0xffffffffffffffff, 0x11c, 0x2, 0x0, 0x0) pread64$auto(0xffffffffffffffff, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{o2?\x0f\x11\x90^\xdf/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x5) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/fib_triestat\x00', 0x0, 0x0) pread64$auto(r5, &(0x7f0000000040)='veth1\x00', 0x200000000006, 0x8) msgctl$auto_IPC_INFO(0xaf86, 0x3, &(0x7f00000003c0)={{0x1, 0xffffffffffffffff, 0x0, 0x6, 0x8, 0xfffffff7, 0xc2}, &(0x7f0000000340)=0x5, 0x0, 0x4, 0x4, 0x3, 0x7, 0x4, 0x7f, 0x7fff, 0xfff, @inferred=r4, @inferred=r4}) r6 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/etherd/flush\x00', 0x1, 0x0) r7 = socket(0x2, 0x1, 0x0) ioctl$auto_KVM_GET_DEVICE_ATTR(r7, 0x4018aee2, &(0x7f0000000480)={0x80000000, 0xee00, 0x5, 0xd032}) r9 = setfsgid$auto(r8) fchown$auto(r6, 0xee00, r9) 2.534217329s ago: executing program 1 (id=1711): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), r1) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'wg0\x00', 0x0}) sendmsg$auto_WG_CMD_SET_DEVICE(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x1c, r2, 0x1, 0x60bd29, 0x25dddbfb, {}, [@WGDEVICE_A_IFINDEX={0x8, 0x1, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000811}, 0x810) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r0, 0x0, 0x4004840) 2.129410555s ago: executing program 0 (id=1712): mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, 0x0, 0x20000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000001680)='/sys/kernel/tracing/uprobe_events\x00', 0x2, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x2584, 0x0) ioctl$auto(0x3, 0x40045542, 0xb551) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000300)='/dev/midi2\x00', 0x80b00, 0x0) close_range$auto(0x2, 0x8000, 0x0) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r0) sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10010}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4081}, 0xc000) ioctl$auto_TIOCSCTTY(r0, 0x540e, &(0x7f0000000040)="f889202fd17ce1d37114caca0e944cd54618f82961bff0b5013c8369d0c4c854a538a27375e63952f4fb4f102715f5a77e4c235d7417ff1c4b6353883893d3b0246bac2fb723bc97b2eb7adf5d") socket(0x11, 0x80003, 0x300) 2.018186437s ago: executing program 1 (id=1713): mmap$auto(0x7fffffff9000, 0x5d3e, 0x7fffffffffffffff, 0x3132, 0x8d73, 0x0) mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x2, 0x73) pipe2$auto(0x0, 0x0) io_uring_setup$auto(0x7e1b, 0x0) socket(0x2, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x2, 0x14) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyde\x00', 0xa0102, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) read$auto(r0, 0x0, 0x2) madvise$auto(0x0, 0x2003ec, 0x415) madvise$auto(0xfffffffffffffffe, 0x200004, 0x19) read$auto_proc_single_file_operations_base(0xffffffffffffffff, &(0x7f0000000040)=""/9, 0x9) fsopen$auto(0x0, 0x3) mmap$auto(0x0, 0x3, 0xb, 0x3132, 0x4008df3, 0x0) syz_clone(0x4180200, 0x0, 0x0, 0x0, 0x0, 0x0) futex$auto(0x0, 0x86, 0x8, &(0x7f0000000280)={0x40000000000800, 0x9}, 0x0, 0x7) mmap$auto(0x7fffffffe000, 0x5, 0x7fffffffffffffff, 0x3132, 0x8d73, 0x0) socketpair$auto(0x9, 0x7, 0x1a, &(0x7f0000000000)=0x60000000) 1.455886068s ago: executing program 0 (id=1714): close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101480, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x22, &(0x7f0000000000), 0x1) 1.031276525s ago: executing program 2 (id=1715): openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x96141, 0x0) socket(0x1b, 0x3, 0x76) madvise$auto(0x0, 0x2000040080000003, 0xe) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x5, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x20, 0x0, 0x4) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x7, 0x8, 0xdf, 0x9b72, 0x2, 0x8001) socket(0x2, 0x801, 0x106) ioctl$auto_TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0) r2 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/ieee80211/phy10/reset\x00', 0x82, 0x0) write$auto_debugfs_full_proxy_file_operations_internal(r2, 0x0, 0x20) socket(0x10, 0x2, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) setresuid$auto(0x2, 0x7, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xfffffdef) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = getpid() pidfd_open$auto(r3, 0x0) socket(0xa, 0x801, 0x84) r4 = epoll_create$auto(0x3e) epoll_ctl$auto(r4, 0x1, 0x8000000000000000, 0x0) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) 990.251603ms ago: executing program 1 (id=1716): mmap$auto(0x0, 0x3, 0xb, 0x3132, 0x4008df3, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socket(0x2b, 0x1, 0x1) r0 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000140), 0xffffffffffffffff) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x100000000, 0xd77, 0x5, 0x7181, 0x81, 0x7, 0x3, 0x9a89, 0x5, 0x80005, 0x800, 0x1fffffffffff, 0xb4, 0x3, 0x2, 0x10007, 0x80, 0x0, 0x0, 0xa, 0x22004, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x1, [0x0, 0x0, 0xea4, 0x4, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x5, 0x0, 0x0, 0x100000000, 0x0, 0x3, 0x4, 0x5, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x100000000]}, 0x1fe, 0xd) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0, @ANYBLOB="010025bd7000fbdbdf0002"], 0x1c}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xda5c}, 0x800}, 0x7, 0x4008) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) read$auto(0xffffffffffffffff, &(0x7f0000000100)='nl80211\x00', 0xbe62) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x101502, 0x0) write$auto_console_fops_tty_io(r2, &(0x7f0000000000)="1f91f2c3881f4610e18d5fc5e5bfd9800e9b50", 0x13) 587.247907ms ago: executing program 0 (id=1717): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) mmap$auto(0xf000, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x2, 0x0) socket(0x28, 0x1, 0x0) socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x201, 0x7, 0x1f, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0xa, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x9, 0x4, 0x0, 0xa, 0x1, 0x200, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x3, 0x3, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001]}, 0x1fe, 0xd) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) sysfs$auto(0x2, 0x10, 0x0) fsopen$auto(0x0, 0x1) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES16=r1], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r2 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/pcmC0D0c\x00', 0x0, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_FORWARD2(r2, 0x40084149, 0x0) sysfs$auto(0x2, 0x0, 0x0) epoll_create$auto(0x7) r3 = socket$nl_generic(0x10, 0x3, 0x10) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0xffffffffffffffff, 0x2) epoll_ctl$auto(0x5, 0x1, r3, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) epoll_ctl$auto(0x5, 0x34ee, r3, 0x0) 383.054832ms ago: executing program 3 (id=1718): mmap$auto(0x3fffffffe000, 0x400005, 0x7fffffffffffffff, 0x3132, 0x6, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x802, 0x0) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) socket(0xa, 0x1, 0x100) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x8800) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000) sendmsg$auto_TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYRESHEX=0x0, @ANYRES16=0x0, @ANYRES32=0x0, @ANYBLOB="160083002f6465762f736e642f6d69646943324430000000da0007802000bfce062815f545559fc8d84ace66131a61e94d4312d5526980b59522515bed2964108b25cf3c7d786f063913e41b6fc985884b34a0b9fe37c723f18c9005d89f151a60e94c9466f90ab85fc59a7b46f7e955fea3de2067bb953f32cfb7222c9a2a47c2e892f07f82d3b2f2d06ad035d1c588c2f5765db2f7f397c1a83373c1f9efa03f922ddf229f8d9d2f8814a5bb1a83c631d7b9d30e4a2b71df74bc3c5265453817124399f70ef893a5fd804a5167279d493db4a5777234fa8b2c17003e806a8d081ec0dff4809e8b2649b4f87b65717f7a000000ab00000053cf50a230226fbddca25c4c2bb35e87f5ff38e53103a03f04e8bbcae5a0851a17d0ed73968695ba48a1bdbebc3f14da08633393c70e2113369825f224298f622b3c141cdd062533521aae276b2caf11475591bc152779bffc7586cae4f4d5e35587a640339882b5e892accfb78bf2dc4e8a64871cc7e5abf0381f5fe6f3aee15318b1b33016a9e21757463a8c96e1ffb9406048dc7018089a9c071cf0364600c8dae7bf36214a0004000180fa03078008007f00", @ANYRES32=0x0, @ANYRESDEC=0x0, @ANYRES32=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES16=0x0, @ANYRESDEC, @ANYRES32=0x0, @ANYBLOB="0400558004"], 0x226c}, 0x1, 0x0, 0x0, 0xc4}, 0x1880) openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000001680)='V', 0x1) madvise$auto(0x0, 0x20200, 0x15) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xe2, 0x9b7e, 0x2, 0x8000) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/mtd\x00', 0x404f82, 0x0) read$auto_proc_iter_file_ops_compat_inode(r1, 0x0, 0x4d) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) read$auto_cgwb_debug_stats_fops_(0xffffffffffffffff, 0x0, 0x0) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, 0x0) listen$auto(0x3, 0x81) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="01002dd57000fcdbdf257e003f00"], 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) 0s ago: executing program 0 (id=1719): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/ext4/sda1/mb_groups\x00', 0x145181, 0x0) pread64$auto(r0, 0x0, 0x682c3390, 0xcff) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/040/001\x00', 0xa901, 0x0) landlock_restrict_self$auto(r1, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), r2) sendmsg$auto_OVS_DP_CMD_GET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="1b1527bd7000ffdbdf2503000000080005000900000008000900", @ANYRES32=0x0, @ANYBLOB="130001004d414338303231315f485753494d0000"], 0x38}, 0x1, 0x0, 0x0, 0x4880}, 0x4000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_udc.0/gadget.0/function\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000001080)=""/98, 0x62) ioctl$auto(r1, 0x5522, 0xf15) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), r5) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x2eb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r6 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r6, 0x400, 0x1) socket(0x20, 0x6, 0x0) setsockopt$auto(0x400000000000003, 0x1000, 0x1b, 0x0, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/loop9/queue/max_segment_size\x00', 0x226c1, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0) r7 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x101a02, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x101040, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r7, 0xc1105517, &(0x7f00000001c0)={{@raw=0xfff, 0x100110d, 0xfffd, 0x40000404, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa0000000000040000660e0701000000000000008000", @raw=0xb072}, 0x6, 0x0, 0x4, @raw=0x404, @reserved="2fd3bd3025f4321f5facc45cb72348ad398fc2da15a209bbcfc17cc5c5ab3d965f4e2ad345355d68f1c1e2d4f28197da1d7c06ba6226ffbbc4343010240cfbd08da557a5ed0723552fed99ee474bcc2b15fe80f05a93aa59c59ccd9bcd7c11e692ec22f5a8490a5e9a714112fb6a3e71b1f63f638788433081c3c730772916f1", "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"}) close_range$auto(0x2, 0x8, 0x0) r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vkms/graphics/fb0/blank\x00', 0xa001, 0x0) write$auto(r8, &(0x7f0000000140)='7\x00\xb1\x9a\xc0\xf9\xc0e\xd2T\xbe\xb6I\x9d\xd9\x18\xf5\x91\xbfq\xfe\xf2\x9a\x02\x9fC0xb\xccW(\xc1n+\n|5\xa5\x9c=^\xf1\x11H\x1c\xf73\x16\xd2\a\xfaw\xcc\xf1\xff7\xab\xa1\xeaF\x04\x17\x99\xd3\xd1\x83\xccG^\xbbdC\x8a\n\x88\xbcW@+\xafD\xd1\x8a\xc13W\xf66\x86\xe5\xee\xa7\x1d\x0f\x90\x00\xcf\xdb\xf5\xbf\xd4\xc8\x84\xb3\xeeb\xb0\xc7kN\x80\x93\xfd\x89\xe1\xc9tp\xd4jm\x7f\xf0a\xc3\x02\x14\xcf\xcf\\e!\a\x82\t,\xa7\x00\xbd&\xcax\xf8P\xc1\x8f\x87\x83\x0f\x93z', 0x1) r9 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0) poll$auto(&(0x7f0000000000)={r9, 0x7fff, 0x9}, 0xd, 0x9) kernel console output (not intermixed with test programs): evsim0 netdevsim3: renamed from eth3 [ 102.036866][ T5862] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 102.066560][ T5862] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 102.079814][ T5862] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 102.107381][ T5862] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 102.171232][ T5854] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 102.183081][ T5854] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 102.208931][ T5854] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 102.220209][ T5854] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 102.350492][ T5858] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 102.362752][ T5858] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 102.381021][ T5858] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 102.393041][ T5858] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 102.468273][ T5863] 8021q: adding VLAN 0 to HW filter on device bond0 [ 102.530686][ T5863] 8021q: adding VLAN 0 to HW filter on device team0 [ 102.568104][ T5862] 8021q: adding VLAN 0 to HW filter on device bond0 [ 102.582166][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.589808][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 102.611574][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.618879][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 102.650550][ T5862] 8021q: adding VLAN 0 to HW filter on device team0 [ 102.686349][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.693665][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 102.703711][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.710980][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 102.763273][ T5854] 8021q: adding VLAN 0 to HW filter on device bond0 [ 102.851943][ T5854] 8021q: adding VLAN 0 to HW filter on device team0 [ 102.909531][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.916813][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state [ 102.929706][ T1147] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.937166][ T1147] bridge0: port 2(bridge_slave_1) entered forwarding state [ 103.019143][ T5858] 8021q: adding VLAN 0 to HW filter on device bond0 [ 103.054449][ T5860] Bluetooth: hci0: command tx timeout [ 103.060130][ T5860] Bluetooth: hci3: command tx timeout [ 103.118966][ T5858] 8021q: adding VLAN 0 to HW filter on device team0 [ 103.124582][ T5860] Bluetooth: hci1: command tx timeout [ 103.127422][ T51] Bluetooth: hci2: command tx timeout [ 103.182683][ T2948] bridge0: port 1(bridge_slave_0) entered blocking state [ 103.189976][ T2948] bridge0: port 1(bridge_slave_0) entered forwarding state [ 103.259250][ T3005] bridge0: port 2(bridge_slave_1) entered blocking state [ 103.266642][ T3005] bridge0: port 2(bridge_slave_1) entered forwarding state [ 103.577282][ T5863] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 103.615430][ T5862] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 103.753585][ T5863] veth0_vlan: entered promiscuous mode [ 103.803281][ T5863] veth1_vlan: entered promiscuous mode [ 103.827341][ T5862] veth0_vlan: entered promiscuous mode [ 103.863691][ T5862] veth1_vlan: entered promiscuous mode [ 103.950371][ T5854] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 103.990411][ T5858] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 104.001460][ T5863] veth0_macvtap: entered promiscuous mode [ 104.041302][ T5863] veth1_macvtap: entered promiscuous mode [ 104.050615][ T5862] veth0_macvtap: entered promiscuous mode [ 104.082021][ T5862] veth1_macvtap: entered promiscuous mode [ 104.135654][ T5863] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 104.172833][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 104.187514][ T5863] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 104.216695][ T5854] veth0_vlan: entered promiscuous mode [ 104.225973][ T5858] veth0_vlan: entered promiscuous mode [ 104.242522][ T5863] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.252430][ T5863] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.262021][ T5863] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.271054][ T5863] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.298906][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 104.311624][ T5862] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.322086][ T5862] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.333531][ T5862] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.351682][ T5862] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.397684][ T5858] veth1_vlan: entered promiscuous mode [ 104.407444][ T5854] veth1_vlan: entered promiscuous mode [ 104.567855][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.572721][ T5854] veth0_macvtap: entered promiscuous mode [ 104.582673][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.605706][ T5854] veth1_macvtap: entered promiscuous mode [ 104.674671][ T5858] veth0_macvtap: entered promiscuous mode [ 104.699074][ T5854] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 104.720196][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.726908][ T5854] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 104.738857][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.742690][ T5854] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.759342][ T5854] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.770008][ T5854] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.779010][ T5854] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.792843][ T5858] veth1_macvtap: entered promiscuous mode [ 104.824880][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.832907][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.896064][ T2948] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.908703][ T2948] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.922308][ T5858] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 104.962027][ T5858] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 105.002199][ T5863] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 105.051823][ T5858] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.062992][ T5858] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.074165][ T5858] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.083108][ T5858] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.130366][ T51] Bluetooth: hci3: command tx timeout [ 105.130384][ T5860] Bluetooth: hci0: command tx timeout [ 105.206297][ T5860] Bluetooth: hci2: command tx timeout [ 105.206544][ T51] Bluetooth: hci1: command tx timeout [ 105.311681][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.340267][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.425876][ T3559] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.484013][ T3559] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.520179][ T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.564270][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.604299][ T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.855276][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.866102][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.524367][ T5950] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2'. [ 106.551132][ T5950] Zero length message leads to an empty skb [ 106.622158][ T5957] size and base must be multiples of 4 kiB [ 106.636446][ T5957] CPU: 1 UID: 0 PID: 5957 Comm: syz.0.6 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 106.636492][ T5957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 106.636509][ T5957] Call Trace: [ 106.636519][ T5957] [ 106.636531][ T5957] dump_stack_lvl+0x16c/0x1f0 [ 106.636597][ T5957] mtrr_add+0xdf/0x110 [ 106.636635][ T5957] mtrr_ioctl+0x7ef/0xcf0 [ 106.636675][ T5957] ? __pfx_mtrr_ioctl+0x10/0x10 [ 106.636723][ T5957] ? find_held_lock+0x2b/0x80 [ 106.636766][ T5957] ? __fget_files+0x20e/0x3c0 [ 106.636806][ T5957] ? __pfx_mtrr_ioctl+0x10/0x10 [ 106.636846][ T5957] proc_reg_unlocked_ioctl+0x229/0x320 [ 106.636883][ T5957] ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10 [ 106.636929][ T5957] __x64_sys_ioctl+0x18b/0x210 [ 106.636967][ T5957] do_syscall_64+0xcd/0x490 [ 106.637014][ T5957] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.637043][ T5957] RIP: 0033:0x7f8e64d8e929 [ 106.637068][ T5957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 106.637096][ T5957] RSP: 002b:00007f8e65b4f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 106.637126][ T5957] RAX: ffffffffffffffda RBX: 00007f8e64fb5fa0 RCX: 00007f8e64d8e929 [ 106.637145][ T5957] RDX: 0000000000000005 RSI: 00000000400c4d01 RDI: 0000000000000005 [ 106.637163][ T5957] RBP: 00007f8e64e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 106.637181][ T5957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 106.637198][ T5957] R13: 0000000000000000 R14: 00007f8e64fb5fa0 R15: 00007ffce1028628 [ 106.637236][ T5957] [ 107.204024][ T51] Bluetooth: hci0: command tx timeout [ 107.215783][ T51] Bluetooth: hci3: command tx timeout [ 107.285498][ T51] Bluetooth: hci1: command tx timeout [ 107.289893][ T5860] Bluetooth: hci2: command tx timeout [ 107.414164][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 107.831910][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 107.842964][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 107.853335][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 107.865098][ T5959] mmap: syz.3.5 (5959) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. syzkaller syzkaller login: [ 108.842362][ T5979] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 108.852044][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 108.894905][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 109.214414][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 109.225349][ T0] NOHZ tick-stop error: local softirq work is pending, handler #20a!!! [ 109.234574][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 109.853572][ T5981] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 syzkaller syzkaller login: [ 114.222076][ T6024] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 116.074197][ T6064] block nbd9: NBD_DISCONNECT [ 116.664581][ T6068] bridge0: port 3(veth0_to_bridge) entered blocking state [ 116.671914][ T6068] bridge0: port 3(veth0_to_bridge) entered disabled state [ 116.764255][ T6068] veth0_to_bridge: entered allmulticast mode [ 116.771666][ T6068] FAULT_INJECTION: forcing a failure. [ 116.771666][ T6068] name failslab, interval 1, probability 0, space 0, times 1 [ 116.875115][ T6068] CPU: 0 UID: 0 PID: 6068 Comm: syz.0.26 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 116.875159][ T6068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 116.875174][ T6068] Call Trace: [ 116.875185][ T6068] [ 116.875197][ T6068] dump_stack_lvl+0x16c/0x1f0 [ 116.875250][ T6068] should_fail_ex+0x512/0x640 [ 116.875290][ T6068] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 116.875341][ T6068] should_failslab+0xc2/0x120 [ 116.875371][ T6068] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 116.875413][ T6068] ? __kernfs_new_node+0xd2/0x8e0 [ 116.875458][ T6068] __kernfs_new_node+0xd2/0x8e0 [ 116.875506][ T6068] ? __pfx___kernfs_new_node+0x10/0x10 [ 116.875559][ T6068] ? find_held_lock+0x2b/0x80 [ 116.875592][ T6068] ? kernfs_root+0xee/0x2a0 [ 116.875644][ T6068] kernfs_new_node+0x13c/0x1e0 [ 116.875701][ T6068] ? __pfx_map_id_range_down+0x10/0x10 [ 116.875750][ T6068] __kernfs_create_file+0x53/0x350 [ 116.875791][ T6068] sysfs_add_file_mode_ns+0x207/0x3c0 [ 116.875843][ T6068] sysfs_create_file_ns+0x13d/0x1d0 [ 116.875885][ T6068] ? __pfx_sysfs_create_file_ns+0x10/0x10 [ 116.875923][ T6068] ? kernfs_create_link+0x1bd/0x240 [ 116.875959][ T6068] ? kernfs_put+0x35/0x60 [ 116.876002][ T6068] ? sysfs_do_create_link_sd+0xbb/0x140 [ 116.876051][ T6068] br_sysfs_addif+0xe4/0x220 [ 116.876087][ T6068] br_add_if+0x70d/0x1b70 [ 116.876138][ T6068] ? security_capable+0x7e/0x260 [ 116.876171][ T6068] add_del_if+0x114/0x160 [ 116.876216][ T6068] br_dev_siocdevprivate+0x908/0x1650 [ 116.876266][ T6068] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 116.876318][ T6068] ? __lock_acquire+0xb8a/0x1c90 [ 116.876370][ T6068] ? __mutex_trylock_common+0xe9/0x250 [ 116.876419][ T6068] ? netdev_name_node_lookup+0x127/0x180 [ 116.876462][ T6068] dev_ifsioc+0x8ee/0x1ee0 [ 116.876506][ T6068] ? __pfx_dev_ifsioc+0x10/0x10 [ 116.876546][ T6068] ? __pfx___mutex_lock+0x10/0x10 [ 116.876603][ T6068] ? dev_load+0x8e/0x240 [ 116.876652][ T6068] dev_ioctl+0x1b2/0x1060 [ 116.876706][ T6068] sock_ioctl+0x5b3/0x6b0 [ 116.876742][ T6068] ? __pfx_sock_ioctl+0x10/0x10 [ 116.876773][ T6068] ? hook_file_ioctl_common+0x145/0x410 [ 116.876814][ T6068] ? __fget_files+0x20e/0x3c0 [ 116.876860][ T6068] ? __pfx_sock_ioctl+0x10/0x10 [ 116.876897][ T6068] __x64_sys_ioctl+0x18b/0x210 [ 116.876936][ T6068] do_syscall_64+0xcd/0x490 [ 116.876983][ T6068] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.877014][ T6068] RIP: 0033:0x7f8e64d8e929 [ 116.877039][ T6068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 116.877067][ T6068] RSP: 002b:00007f8e65b4f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 116.877096][ T6068] RAX: ffffffffffffffda RBX: 00007f8e64fb5fa0 RCX: 00007f8e64d8e929 [ 116.877115][ T6068] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000008 [ 116.877133][ T6068] RBP: 00007f8e64e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 116.877150][ T6068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 116.877165][ T6068] R13: 0000000000000000 R14: 00007f8e64fb5fa0 R15: 00007ffce1028628 [ 116.877206][ T6068] [ 117.196693][ C0] vkms_vblank_simulate: vblank timer overrun [ 117.246654][ T6068] veth0_to_bridge: left allmulticast mode [ 118.521200][ T6081] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 118.529204][ T6081] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 118.651098][ T6081] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 118.730981][ T6081] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 118.737459][ T6081] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 118.762171][ T6081] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 118.801599][ T6081] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 118.828923][ T6081] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 118.867028][ T6081] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 118.882860][ T6081] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 118.891333][ T6081] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 118.951899][ T6081] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 120.163911][ T5860] Bluetooth: hci0: command 0x0c1a tx timeout syzkaller syzkaller login: [ 120.652938][ T6096] warning: `syz.0.32' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 120.803965][ T5860] Bluetooth: hci2: command 0x0c1a tx timeout [ 120.804232][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 120.904065][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 122.259929][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 122.776829][ T6133] FAULT_INJECTION: forcing a failure. [ 122.776829][ T6133] name failslab, interval 1, probability 0, space 0, times 0 [ 122.860283][ T6133] CPU: 1 UID: 0 PID: 6133 Comm: syz.0.36 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 122.860328][ T6133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 122.860346][ T6133] Call Trace: [ 122.860356][ T6133] [ 122.860368][ T6133] dump_stack_lvl+0x16c/0x1f0 [ 122.860428][ T6133] should_fail_ex+0x512/0x640 [ 122.860467][ T6133] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 122.860520][ T6133] should_failslab+0xc2/0x120 [ 122.860550][ T6133] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 122.860595][ T6133] ? ktime_get_coarse_real_ts64_mg+0x240/0x300 [ 122.860639][ T6133] ? __d_alloc+0x31/0xaa0 [ 122.860701][ T6133] __d_alloc+0x31/0xaa0 [ 122.860753][ T6133] d_alloc_pseudo+0x1c/0xc0 [ 122.860787][ T6133] alloc_file_pseudo+0xcf/0x230 [ 122.860824][ T6133] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 122.860880][ T6133] ioctx_alloc+0x5ab/0x2120 [ 122.860937][ T6133] ? find_held_lock+0x2b/0x80 [ 122.860968][ T6133] ? __pfx_ioctx_alloc+0x10/0x10 [ 122.861004][ T6133] ? __might_fault+0x13b/0x190 [ 122.861061][ T6133] __x64_sys_io_setup+0xc9/0x210 [ 122.861105][ T6133] do_syscall_64+0xcd/0x490 [ 122.861163][ T6133] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.861193][ T6133] RIP: 0033:0x7f8e64d8e929 [ 122.861216][ T6133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.861244][ T6133] RSP: 002b:00007f8e62bf6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 122.861273][ T6133] RAX: ffffffffffffffda RBX: 00007f8e64fb6160 RCX: 00007f8e64d8e929 [ 122.861293][ T6133] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 122.861310][ T6133] RBP: 00007f8e64e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 122.861328][ T6133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 122.861345][ T6133] R13: 0000000000000000 R14: 00007f8e64fb6160 R15: 00007ffce1028628 [ 122.861386][ T6133] [ 123.091068][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 123.097293][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 123.103451][ T51] Bluetooth: hci3: command 0x0c1a tx timeout syzkaller syzkaller login: [ 124.323901][ T5860] Bluetooth: hci0: command 0x0c1a tx timeout [ 125.124530][ T5860] Bluetooth: hci3: command 0x0c1a tx timeout [ 125.127953][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 125.130612][ T5860] Bluetooth: hci2: command 0x0c1a tx timeout [ 128.173911][ T6211] FAULT_INJECTION: forcing a failure. [ 128.173911][ T6211] name failslab, interval 1, probability 0, space 0, times 0 [ 128.212568][ T6211] CPU: 0 UID: 0 PID: 6211 Comm: syz.0.47 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 128.212595][ T6211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 128.212605][ T6211] Call Trace: [ 128.212612][ T6211] [ 128.212619][ T6211] dump_stack_lvl+0x16c/0x1f0 [ 128.212650][ T6211] should_fail_ex+0x512/0x640 [ 128.212676][ T6211] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 128.212702][ T6211] should_failslab+0xc2/0x120 [ 128.212727][ T6211] __kmalloc_cache_noprof+0x6a/0x3e0 [ 128.212752][ T6211] ? percpu_ref_init+0xec/0x410 [ 128.212774][ T6211] ? __pfx_io_ring_ctx_ref_free+0x10/0x10 [ 128.212801][ T6211] percpu_ref_init+0xec/0x410 [ 128.212826][ T6211] io_uring_setup+0x453/0x2080 [ 128.212851][ T6211] ? __pfx_io_uring_setup+0x10/0x10 [ 128.212873][ T6211] ? do_futex+0x122/0x350 [ 128.212894][ T6211] ? __pfx_do_futex+0x10/0x10 [ 128.212927][ T6211] ? xfd_validate_state+0x61/0x180 [ 128.212950][ T6211] ? __pfx_ksys_write+0x10/0x10 [ 128.212979][ T6211] __x64_sys_io_uring_setup+0xc2/0x170 [ 128.213003][ T6211] do_syscall_64+0xcd/0x490 [ 128.213031][ T6211] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.213050][ T6211] RIP: 0033:0x7f8e64d8e929 [ 128.213063][ T6211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 128.213080][ T6211] RSP: 002b:00007f8e65b2e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 128.213096][ T6211] RAX: ffffffffffffffda RBX: 00007f8e64fb6080 RCX: 00007f8e64d8e929 [ 128.213107][ T6211] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007 [ 128.213117][ T6211] RBP: 00007f8e64e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 128.213127][ T6211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 128.213136][ T6211] R13: 0000000000000000 R14: 00007f8e64fb6080 R15: 00007ffce1028628 [ 128.213157][ T6211] [ 128.406301][ C0] vkms_vblank_simulate: vblank timer overrun syzkaller syzkaller login: [ 132.148919][ T6248] vivid-003: ================= START STATUS ================= [ 132.176225][ T6248] vivid-003: Radio HW Seek Mode: Bounded [ 132.193988][ T6248] vivid-003: Radio Programmable HW Seek: false [ 132.214039][ T6248] vivid-003: RDS Rx I/O Mode: Block I/O [ 132.219687][ T6248] vivid-003: Generate RBDS Instead of RDS: false [ 132.242557][ T6248] vivid-003: RDS Reception: true [ 132.292511][ T6248] vivid-003: RDS Program Type: 0 inactive [ 132.303961][ T6248] vivid-003: RDS PS Name: inactive [ 132.311918][ T6248] vivid-003: RDS Radio Text: inactive [ 132.317836][ T6248] vivid-003: RDS Traffic Announcement: false inactive [ 132.353426][ T6248] vivid-003: RDS Traffic Program: false inactive [ 132.363945][ T6248] vivid-003: RDS Music: false inactive [ 132.369559][ T6248] vivid-003: ================== END STATUS ================== [ 135.917357][ T6283] vivid-003: ================= START STATUS ================= [ 135.955632][ T6283] vivid-003: Radio HW Seek Mode: Bounded [ 136.016971][ T6283] vivid-003: Radio Programmable HW Seek: false [ 136.023614][ T6283] vivid-003: RDS Rx I/O Mode: Block I/O [ 136.120449][ T6283] vivid-003: Generate RBDS Instead of RDS: false [ 136.144814][ T6283] vivid-003: RDS Reception: true [ 136.160278][ T6283] vivid-003: RDS Program Type: 0 inactive [ 136.201001][ T6283] vivid-003: RDS PS Name: inactive syzkaller syzkaller login: [ 136.223861][ T6283] vivid-003: RDS Radio Text: inactive [ 136.234142][ T6283] vivid-003: RDS Traffic Announcement: false inactive [ 136.252366][ T6283] vivid-003: RDS Traffic Program: false inactive [ 136.261893][ T6283] vivid-003: RDS Music: false inactive [ 136.272331][ T6283] vivid-003: ================== END STATUS ================== [ 138.361214][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.384039][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.817804][ T6320] syz.1.70 uses obsolete (PF_INET,SOCK_PACKET) syzkaller syzkaller login: syzkaller syzkaller login: [ 146.204753][ T6396] Invalid ELF header magic: != ELF [ 146.859862][ T6410] kafs: addr_prefs: Too many elements in string [ 148.529607][ T30] audit: type=1400 audit(1752577699.133:2): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=6416 comm="syz.2.87" [ 150.078123][ T6448] ubi0: attaching mtd0 [ 150.094998][ T6448] ubi0: scanning is finished [ 150.108933][ T6448] ubi0: empty MTD device detected [ 150.552525][ T6448] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 150.560395][ T6448] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 150.568838][ T6448] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 150.576314][ T6448] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 150.584200][ T6448] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 150.591336][ T6448] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 150.599645][ T6448] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3264048303 [ 150.610730][ T6448] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 150.661646][ T6453] ubi0: background thread "ubi_bgt0d" started, PID 6453 [ 151.103656][ T6456] syz.3.90 (6456) used obsolete PPPIOCDETACH ioctl syzkaller syzkaller login: [ 154.124996][ T6475] netlink: 28 bytes leftover after parsing attributes in process `syz.1.96'. [ 155.825290][ T6492] FAULT_INJECTION: forcing a failure. [ 155.825290][ T6492] name failslab, interval 1, probability 0, space 0, times 0 [ 155.883628][ T6492] CPU: 0 UID: 0 PID: 6492 Comm: syz.2.99 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 155.883671][ T6492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 155.883689][ T6492] Call Trace: [ 155.883699][ T6492] [ 155.883710][ T6492] dump_stack_lvl+0x16c/0x1f0 [ 155.883763][ T6492] should_fail_ex+0x512/0x640 [ 155.883801][ T6492] ? __kmalloc_noprof+0xbf/0x510 [ 155.883846][ T6492] ? lsm_blob_alloc+0x68/0x90 [ 155.883889][ T6492] should_failslab+0xc2/0x120 [ 155.883918][ T6492] __kmalloc_noprof+0xd2/0x510 [ 155.883971][ T6492] lsm_blob_alloc+0x68/0x90 [ 155.884018][ T6492] security_prepare_creds+0x30/0x270 [ 155.884063][ T6492] prepare_creds+0x56f/0x7d0 [ 155.884112][ T6492] copy_creds+0xa7/0xa50 [ 155.884162][ T6492] copy_process+0xff6/0x7650 [ 155.884201][ T6492] ? __pfx___futex_wait+0x10/0x10 [ 155.884243][ T6492] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 155.884299][ T6492] ? __pfx_copy_process+0x10/0x10 [ 155.884338][ T6492] ? find_held_lock+0x2b/0x80 [ 155.884384][ T6492] kernel_clone+0xfc/0x960 [ 155.884426][ T6492] ? __pfx_kernel_clone+0x10/0x10 [ 155.884488][ T6492] __do_sys_clone+0xce/0x120 [ 155.884527][ T6492] ? __pfx___do_sys_clone+0x10/0x10 [ 155.884566][ T6492] ? handle_mm_fault+0x2ab/0xd10 [ 155.884645][ T6492] do_syscall_64+0xcd/0x490 [ 155.884695][ T6492] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 155.884722][ T6492] RIP: 0033:0x7f8daaf8e929 [ 155.884745][ T6492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 155.884772][ T6492] RSP: 002b:00007f8dabdc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 155.884800][ T6492] RAX: ffffffffffffffda RBX: 00007f8dab1b6240 RCX: 00007f8daaf8e929 [ 155.884820][ T6492] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00000000000006db [ 155.884838][ T6492] RBP: 00007f8dab010b39 R08: 0000000000000006 R09: 0000000000000000 [ 155.884855][ T6492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 155.884873][ T6492] R13: 0000000000000000 R14: 00007f8dab1b6240 R15: 00007ffd82a9f5c8 [ 155.884911][ T6492] [ 158.035377][ T6501] cifs: Unknown parameter 'no+ 1§• Ö`ÑørêsFn)ÈøaõH†šÄ¿¡h`àØÝë9k¤A}€žŠ1\D@‹Ç.ÁäZÔCg^‚nternal nodes: 4 [ 158.035377][ T6501] 3: 2 5: 2 [ 158.035377][ T6501] Pointers: 80 [ 158.035377][ T6501] Null ptrs: 16 [ 158.035377][ T6501] Total size: 13 kB [ 158.035377][ T6501] [ 158.035377][ T6501] Counters: [ 158.035377][ T6501] --------- [ 158.035377][ T6501] gets ' [ 158.073358][ C1] vkms_vblank_simulate: vblank timer overrun [ 164.982831][ T6603] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 166.839766][ T6612] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 168.829866][ T6669] bcache: register_bcache() error : failed to open device [ 170.046619][ T6681] FAULT_INJECTION: forcing a failure. [ 170.046619][ T6681] name failslab, interval 1, probability 0, space 0, times 0 [ 170.134707][ T6681] CPU: 1 UID: 0 PID: 6681 Comm: syz.0.140 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 170.134734][ T6681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 170.134744][ T6681] Call Trace: [ 170.134750][ T6681] [ 170.134756][ T6681] dump_stack_lvl+0x16c/0x1f0 [ 170.134787][ T6681] should_fail_ex+0x512/0x640 [ 170.134813][ T6681] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 170.134841][ T6681] should_failslab+0xc2/0x120 [ 170.134858][ T6681] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 170.134884][ T6681] ? __kernfs_new_node+0xd2/0x8e0 [ 170.134912][ T6681] __kernfs_new_node+0xd2/0x8e0 [ 170.134939][ T6681] ? __pfx___kernfs_new_node+0x10/0x10 [ 170.134969][ T6681] ? find_held_lock+0x2b/0x80 [ 170.134988][ T6681] ? kernfs_root+0xee/0x2a0 [ 170.135016][ T6681] kernfs_new_node+0x13c/0x1e0 [ 170.135047][ T6681] __kernfs_create_file+0x53/0x350 [ 170.135070][ T6681] sysfs_add_file_mode_ns+0x207/0x3c0 [ 170.135098][ T6681] internal_create_group+0x578/0xf30 [ 170.135129][ T6681] ? __pfx_internal_create_group+0x10/0x10 [ 170.135157][ T6681] ? kernfs_create_link+0x1bd/0x240 [ 170.135180][ T6681] internal_create_groups+0x9d/0x150 [ 170.135207][ T6681] device_add+0xf30/0x1a70 [ 170.135235][ T6681] ? __pfx_device_add+0x10/0x10 [ 170.135253][ T6681] ? lockdep_init_map_type+0x5c/0x280 [ 170.135286][ T6681] ? __init_waitqueue_head+0xca/0x150 [ 170.135308][ T6681] netdev_register_kobject+0x182/0x3a0 [ 170.135330][ T6681] register_netdevice+0x13dc/0x2270 [ 170.135351][ T6681] ? __pfx_register_netdevice+0x10/0x10 [ 170.135373][ T6681] ? __pfx_loopback_net_init+0x10/0x10 [ 170.135394][ T6681] register_netdev+0x34/0x50 [ 170.135410][ T6681] loopback_net_init+0x7a/0x170 [ 170.135430][ T6681] ? __pfx_loopback_net_init+0x10/0x10 [ 170.135449][ T6681] ops_init+0x1e2/0x5f0 [ 170.135483][ T6681] setup_net+0x1ff/0x510 [ 170.135509][ T6681] ? lockdep_init_map_type+0x5c/0x280 [ 170.135534][ T6681] ? __pfx_setup_net+0x10/0x10 [ 170.135562][ T6681] ? debug_mutex_init+0x37/0x70 [ 170.135582][ T6681] copy_net_ns+0x2a6/0x5f0 [ 170.135602][ T6681] create_new_namespaces+0x3ea/0xa90 [ 170.135628][ T6681] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 170.135650][ T6681] ksys_unshare+0x45b/0xa40 [ 170.135675][ T6681] ? __pfx_ksys_unshare+0x10/0x10 [ 170.135699][ T6681] ? xfd_validate_state+0x61/0x180 [ 170.135730][ T6681] __x64_sys_unshare+0x31/0x40 [ 170.135753][ T6681] do_syscall_64+0xcd/0x490 [ 170.135780][ T6681] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.135798][ T6681] RIP: 0033:0x7f8e64d8e929 [ 170.135812][ T6681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 170.135829][ T6681] RSP: 002b:00007f8e65b4f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 170.135845][ T6681] RAX: ffffffffffffffda RBX: 00007f8e64fb5fa0 RCX: 00007f8e64d8e929 [ 170.135856][ T6681] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 170.135866][ T6681] RBP: 00007f8e64e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 170.135875][ T6681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 170.135885][ T6681] R13: 0000000000000000 R14: 00007f8e64fb5fa0 R15: 00007ffce1028628 [ 170.135907][ T6681] [ 171.701066][ T6704] ubi: mtd0 is already attached to ubi0 [ 172.580919][ T6721] 0x000200000001-0xa29656a63616329 : "" [ 172.600008][ T6721] mtd: partition "" is out of reach -- disabled [ 172.694655][ T6721] ftl_cs: FTL header not found. [ 173.902098][ T6737] process 'syz.3.150' launched './file0' with NULL argv: empty string added syzkaller syzkaller login: [ 180.210242][ T6815] vivid-003: ================= START STATUS ================= [ 180.223463][ T6815] vivid-003: Radio HW Seek Mode: Bounded [ 180.267494][ T6815] vivid-003: Radio Programmable HW Seek: false [ 180.380707][ T6815] vivid-003: RDS Rx I/O Mode: Block I/O [ 180.406480][ T6815] vivid-003: Generate RBDS Instead of RDS: false [ 180.499254][ T6815] vivid-003: RDS Reception: true [ 180.569065][ T6815] vivid-003: RDS Program Type: 0 inactive [ 180.599992][ T6815] vivid-003: RDS PS Name: inactive [ 180.637447][ T6815] vivid-003: RDS Radio Text: inactive [ 180.643041][ T6815] vivid-003: RDS Traffic Announcement: false inactive [ 180.650312][ T6815] vivid-003: RDS Traffic Program: false inactive [ 180.656944][ T6815] vivid-003: RDS Music: false inactive [ 180.662631][ T6815] vivid-003: ================== END STATUS ================== [ 180.679762][ T6816] FAULT_INJECTION: forcing a failure. [ 180.679762][ T6816] name failslab, interval 1, probability 0, space 0, times 0 [ 180.730656][ T6816] CPU: 1 UID: 0 PID: 6816 Comm: syz.3.169 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 180.730699][ T6816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 180.730714][ T6816] Call Trace: [ 180.730724][ T6816] [ 180.730735][ T6816] dump_stack_lvl+0x16c/0x1f0 [ 180.730783][ T6816] should_fail_ex+0x512/0x640 [ 180.730823][ T6816] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 180.730871][ T6816] should_failslab+0xc2/0x120 [ 180.730899][ T6816] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 180.730939][ T6816] ? __pmd_alloc+0xbf/0x930 [ 180.730973][ T6816] __pmd_alloc+0xbf/0x930 [ 180.731001][ T6816] ? find_held_lock+0x2b/0x80 [ 180.731036][ T6816] __handle_mm_fault+0xaac/0x5490 [ 180.731087][ T6816] ? __pfx___handle_mm_fault+0x10/0x10 [ 180.731121][ T6816] ? __pfx_mt_find+0x10/0x10 [ 180.731171][ T6816] ? find_vma+0xbf/0x140 [ 180.731198][ T6816] ? __pfx_find_vma+0x10/0x10 [ 180.731242][ T6816] handle_mm_fault+0x589/0xd10 [ 180.731282][ T6816] ? __pkru_allows_pkey+0x51/0xb0 [ 180.731325][ T6816] do_user_addr_fault+0x7a6/0x1370 [ 180.731370][ T6816] ? rcu_is_watching+0x12/0xc0 [ 180.731407][ T6816] exc_page_fault+0x5c/0xb0 [ 180.731448][ T6816] asm_exc_page_fault+0x26/0x30 [ 180.731474][ T6816] RIP: 0010:rep_movs_alternative+0x11/0x90 [ 180.731508][ T6816] Code: e9 84 11 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 4d 11 04 00 66 66 2e 0f [ 180.731534][ T6816] RSP: 0018:ffffc900193afb78 EFLAGS: 00050206 [ 180.731557][ T6816] RAX: 000000000000006d RBX: 0000000000000003 RCX: 0000000000000003 [ 180.731575][ T6816] RDX: fffff52003275f87 RSI: ffffc900193afc38 RDI: 0000000000000000 [ 180.731592][ T6816] RBP: 0000000000000000 R08: 0000000000000000 R09: fffff52003275f87 [ 180.731609][ T6816] R10: 0000000000000002 R11: 0000000000000001 R12: ffffc900193afc38 [ 180.731625][ T6816] R13: 0000000000000003 R14: 00007ffffffff000 R15: 0000000000000000 [ 180.731665][ T6816] _copy_to_user+0xbb/0xd0 [ 180.731719][ T6816] vivid_radio_rx_read+0x7ce/0xb90 [ 180.731761][ T6816] ? __pfx_vivid_radio_rx_read+0x10/0x10 [ 180.731799][ T6816] vivid_radio_read+0x86/0xc0 [ 180.731843][ T6816] v4l2_read+0x229/0x360 [ 180.731881][ T6816] ? __pfx_v4l2_read+0x10/0x10 [ 180.731921][ T6816] vfs_read+0x1e4/0xc60 [ 180.731970][ T6816] ? __pfx_vfs_read+0x10/0x10 [ 180.732005][ T6816] ? find_held_lock+0x2b/0x80 [ 180.732036][ T6816] ? __fget_files+0x204/0x3c0 [ 180.732081][ T6816] ? __fget_files+0x20e/0x3c0 [ 180.732132][ T6816] ksys_read+0x12a/0x250 [ 180.732171][ T6816] ? __pfx_ksys_read+0x10/0x10 [ 180.732233][ T6816] do_syscall_64+0xcd/0x490 [ 180.732279][ T6816] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.732307][ T6816] RIP: 0033:0x7fbe2698e929 [ 180.732329][ T6816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.732354][ T6816] RSP: 002b:00007fbe27814038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 180.732379][ T6816] RAX: ffffffffffffffda RBX: 00007fbe26bb6080 RCX: 00007fbe2698e929 [ 180.732396][ T6816] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000003 [ 180.732412][ T6816] RBP: 00007fbe27814090 R08: 0000000000000000 R09: 0000000000000000 [ 180.732426][ T6816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 180.732442][ T6816] R13: 0000000000000000 R14: 00007fbe26bb6080 R15: 00007ffeeb821468 [ 180.732479][ T6816] [ 181.077885][ C1] vkms_vblank_simulate: vblank timer overrun [ 182.204389][ T6840] openvswitch: netlink: nsh attr 68 is out of range max 3 [ 182.364334][ T6846] nbd: must specify an index to disconnect [ 183.845370][ T6867] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 183.876165][ T6867] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) syzkaller syzkaller login: [ 185.337912][ T6897] futex_wake_op: syz.2.189 tries to shift op by -2048; fix this program [ 185.348153][ T6904] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 185.375034][ T6897] futex_wake_op: syz.2.189 tries to shift op by -2048; fix this program [ 186.611221][ T6934] netlink: 24 bytes leftover after parsing attributes in process `syz.2.199'. syzkaller syzkaller login: [ 188.426961][ T36] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.608592][ T36] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.838751][ T36] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.955542][ T6974] netlink: 334 bytes leftover after parsing attributes in process `syz.2.211'. [ 188.981782][ T36] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 189.489855][ T36] bridge_slave_1: left allmulticast mode [ 189.513890][ T36] bridge_slave_1: left promiscuous mode [ 189.521002][ T36] bridge0: port 2(bridge_slave_1) entered disabled state [ 189.625180][ T36] bridge_slave_0: left allmulticast mode [ 189.631053][ T36] bridge_slave_0: left promiscuous mode [ 189.654205][ T36] bridge0: port 1(bridge_slave_0) entered disabled state syzkaller syzkaller login: [ 189.730930][ T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 189.757440][ T51] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 189.780774][ T51] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 189.801801][ T51] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 189.810059][ T51] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 190.591388][ T7006] vivid-007: ================= START STATUS ================= [ 190.591452][ T7006] vivid-007: Generate PTS: true [ 190.591490][ T7006] vivid-007: Generate SCR: true [ 190.591509][ T7006] tpg source WxH: 320x240 (Y'CbCr) [ 190.591520][ T7006] tpg field: 1 [ 190.591527][ T7006] tpg crop: (0,0)/320x240 [ 190.591538][ T7006] tpg compose: (0,0)/320x240 [ 190.591549][ T7006] tpg colorspace: 8 [ 190.591556][ T7006] tpg transfer function: 0/0 [ 190.591565][ T7006] tpg Y'CbCr encoding: 0/0 [ 190.591573][ T7006] tpg quantization: 0/0 [ 190.591581][ T7006] tpg RGB range: 0/2 [ 190.591588][ T7006] vivid-007: ================== END STATUS ================== [ 191.215857][ T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 191.245617][ T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 191.259449][ T36] bond0 (unregistering): Released all slaves [ 191.857272][ T5860] Bluetooth: hci2: command tx timeout [ 192.503909][ T36] hsr_slave_0: left promiscuous mode [ 192.524152][ T36] hsr_slave_1: left promiscuous mode [ 192.556371][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 192.571291][ T36] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 192.600425][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 192.624319][ T36] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 192.739980][ T36] veth1_macvtap: left promiscuous mode [ 192.758782][ T36] veth0_macvtap: left promiscuous mode [ 192.774722][ T36] veth1_vlan: left promiscuous mode [ 192.817115][ T36] veth0_vlan: left promiscuous mode [ 193.924499][ T5860] Bluetooth: hci2: command tx timeout [ 194.532268][ T36] team0 (unregistering): Port device team_slave_1 removed [ 194.687637][ T36] team0 (unregistering): Port device team_slave_0 removed [ 196.013853][ T5860] Bluetooth: hci2: command tx timeout [ 196.840730][ T6988] chnl_net:caif_netlink_parms(): no params data found [ 197.485367][ T6988] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.540955][ T6988] bridge0: port 1(bridge_slave_0) entered disabled state [ 197.607333][ T6988] bridge_slave_0: entered allmulticast mode [ 197.635610][ T6988] bridge_slave_0: entered promiscuous mode [ 197.651286][ T6988] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.659440][ T6988] bridge0: port 2(bridge_slave_1) entered disabled state [ 197.667245][ T6988] bridge_slave_1: entered allmulticast mode [ 197.675663][ T6988] bridge_slave_1: entered promiscuous mode [ 197.979923][ T6988] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 198.030662][ T6988] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 198.083905][ T5860] Bluetooth: hci2: command tx timeout [ 198.143095][ T7111] vivid-003: ================= START STATUS ================= [ 198.158138][ T7111] vivid-003: Radio HW Seek Mode: Bounded [ 198.186616][ T7111] vivid-003: Radio Programmable HW Seek: false [ 198.192908][ T7111] vivid-003: RDS Rx I/O Mode: Block I/O [ 198.217856][ T6988] team0: Port device team_slave_0 added [ 198.228790][ T6988] team0: Port device team_slave_1 added [ 198.276440][ T7111] vivid-003: Generate RBDS Instead of RDS: false [ 198.282927][ T7111] vivid-003: RDS Reception: true [ 198.288396][ T7111] vivid-003: RDS Program Type: 0 inactive [ 198.325467][ T7111] vivid-003: RDS PS Name: inactive [ 198.344239][ T6988] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 198.378507][ T7111] vivid-003: RDS Radio Text: inactive [ 198.403311][ T7111] vivid-003: RDS Traffic Announcement: false inactive [ 198.421392][ T6988] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 198.448542][ T7111] vivid-003: RDS Traffic Program: false inactive [ 198.463817][ T6988] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 198.474578][ T7111] vivid-003: RDS Music: false inactive [ 198.487857][ T7111] vivid-003: ================== END STATUS ================== [ 198.510054][ T6988] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 198.517719][ T6988] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 198.574311][ T6988] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 199.594833][ T7150] FAULT_INJECTION: forcing a failure. [ 199.594833][ T7150] name failslab, interval 1, probability 0, space 0, times 0 [ 199.607930][ T7150] CPU: 0 UID: 0 PID: 7150 Comm: syz.1.245 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 199.607967][ T7150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 199.607983][ T7150] Call Trace: [ 199.607992][ T7150] [ 199.608002][ T7150] dump_stack_lvl+0x16c/0x1f0 [ 199.608049][ T7150] should_fail_ex+0x512/0x640 [ 199.608090][ T7150] ? __kmalloc_noprof+0xbf/0x510 [ 199.608136][ T7150] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 199.608212][ T7150] should_failslab+0xc2/0x120 [ 199.608241][ T7150] __kmalloc_noprof+0xd2/0x510 [ 199.608283][ T7150] ? kmem_cache_free+0x2d1/0x4d0 [ 199.608330][ T7150] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 199.608377][ T7150] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 199.608414][ T7150] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 199.608447][ T7150] ? rcu_is_watching+0x12/0xc0 [ 199.608493][ T7150] ? bpf_lsm_capable+0x9/0x10 [ 199.608528][ T7150] ? security_capable+0x7e/0x260 [ 199.608565][ T7150] genl_rcv_msg+0x55c/0x800 [ 199.608607][ T7150] ? __pfx_genl_rcv_msg+0x10/0x10 [ 199.608637][ T7150] ? __pfx_seg6_genl_sethmac+0x10/0x10 [ 199.608672][ T7150] netlink_rcv_skb+0x155/0x420 [ 199.608690][ T7150] ? __pfx_genl_rcv_msg+0x10/0x10 [ 199.608712][ T7150] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 199.608739][ T7150] ? netlink_deliver_tap+0x1ae/0xd30 [ 199.608770][ T7150] genl_rcv+0x28/0x40 [ 199.608787][ T7150] netlink_unicast+0x58d/0x850 [ 199.608808][ T7150] ? __pfx_netlink_unicast+0x10/0x10 [ 199.608832][ T7150] netlink_sendmsg+0x8d1/0xdd0 [ 199.608854][ T7150] ? __pfx_netlink_sendmsg+0x10/0x10 [ 199.608880][ T7150] ____sys_sendmsg+0xa95/0xc70 [ 199.608900][ T7150] ? copy_msghdr_from_user+0x10a/0x160 [ 199.608925][ T7150] ? __pfx_____sys_sendmsg+0x10/0x10 [ 199.608955][ T7150] ___sys_sendmsg+0x134/0x1d0 [ 199.608982][ T7150] ? __pfx____sys_sendmsg+0x10/0x10 [ 199.609005][ T7150] ? __lock_acquire+0x622/0x1c90 [ 199.609057][ T7150] __sys_sendmsg+0x16d/0x220 [ 199.609083][ T7150] ? __pfx___sys_sendmsg+0x10/0x10 [ 199.609123][ T7150] do_syscall_64+0xcd/0x490 [ 199.609157][ T7150] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.609175][ T7150] RIP: 0033:0x7f843958e929 [ 199.609189][ T7150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.609205][ T7150] RSP: 002b:00007f843a46f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 199.609222][ T7150] RAX: ffffffffffffffda RBX: 00007f84397b6160 RCX: 00007f843958e929 [ 199.609232][ T7150] RDX: 000000000400c810 RSI: 0000200000001440 RDI: 0000000000000008 [ 199.609242][ T7150] RBP: 00007f843a46f090 R08: 0000000000000000 R09: 0000000000000000 [ 199.609252][ T7150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 199.609262][ T7150] R13: 0000000000000000 R14: 00007f84397b6160 R15: 00007fff5f8878e8 [ 199.609283][ T7150] [ 199.907008][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.913458][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 200.549738][ T6988] hsr_slave_0: entered promiscuous mode [ 200.589913][ T6988] hsr_slave_1: entered promiscuous mode [ 200.639841][ T6988] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 200.673888][ T6988] Cannot create hsr debugfs directory [ 201.233894][ T7169] random: crng reseeded on system resumption [ 202.149829][ T7183] FAULT_INJECTION: forcing a failure. [ 202.149829][ T7183] name failslab, interval 1, probability 0, space 0, times 0 [ 202.225878][ T7183] CPU: 0 UID: 0 PID: 7183 Comm: syz.0.253 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 202.225919][ T7183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 202.225933][ T7183] Call Trace: [ 202.225942][ T7183] [ 202.225952][ T7183] dump_stack_lvl+0x16c/0x1f0 [ 202.226005][ T7183] should_fail_ex+0x512/0x640 [ 202.226048][ T7183] ? __kmalloc_noprof+0xbf/0x510 [ 202.226094][ T7183] ? devlink_fmsg_put_name+0xf0/0x3f0 [ 202.226126][ T7183] should_failslab+0xc2/0x120 [ 202.226156][ T7183] __kmalloc_noprof+0xd2/0x510 [ 202.226198][ T7183] ? kasan_save_track+0x14/0x30 [ 202.226251][ T7183] devlink_fmsg_put_name+0xf0/0x3f0 [ 202.226283][ T7183] nsim_dev_dummy_fmsg_put+0xce/0x1e0 [ 202.226317][ T7183] devlink_health_do_dump+0x240/0x620 [ 202.226366][ T7183] devlink_health_report+0x3c9/0x9c0 [ 202.226406][ T7183] ? __pfx_devlink_health_report+0x10/0x10 [ 202.226441][ T7183] ? _copy_from_user+0x59/0xd0 [ 202.226486][ T7183] nsim_dev_health_break_write+0x166/0x210 [ 202.226521][ T7183] ? __pfx_nsim_dev_health_break_write+0x10/0x10 [ 202.226565][ T7183] full_proxy_write+0x13c/0x200 [ 202.226596][ T7183] ? __pfx_full_proxy_write+0x10/0x10 [ 202.226623][ T7183] vfs_write+0x29d/0x1150 [ 202.226668][ T7183] ? __pfx___mutex_lock+0x10/0x10 [ 202.226712][ T7183] ? __pfx_vfs_write+0x10/0x10 [ 202.226767][ T7183] ? __fget_files+0x20e/0x3c0 [ 202.226822][ T7183] ksys_write+0x12a/0x250 [ 202.226865][ T7183] ? __pfx_ksys_write+0x10/0x10 [ 202.226922][ T7183] do_syscall_64+0xcd/0x490 [ 202.226972][ T7183] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.227003][ T7183] RIP: 0033:0x7f8e64d8e929 [ 202.227027][ T7183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.227056][ T7183] RSP: 002b:00007f8e65b4f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 202.227101][ T7183] RAX: ffffffffffffffda RBX: 00007f8e64fb5fa0 RCX: 00007f8e64d8e929 [ 202.227121][ T7183] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 000000000000000a [ 202.227139][ T7183] RBP: 00007f8e64e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 202.227157][ T7183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 202.227174][ T7183] R13: 0000000000000000 R14: 00007f8e64fb5fa0 R15: 00007ffce1028628 [ 202.227216][ T7183] [ 204.194093][ T6988] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 204.225774][ T6988] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 204.281725][ T6988] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 204.323174][ T6988] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 205.682437][ T6988] 8021q: adding VLAN 0 to HW filter on device bond0 [ 205.766111][ T6988] 8021q: adding VLAN 0 to HW filter on device team0 [ 205.850529][ T2948] bridge0: port 1(bridge_slave_0) entered blocking state [ 205.858687][ T2948] bridge0: port 1(bridge_slave_0) entered forwarding state [ 205.928942][ T2948] bridge0: port 2(bridge_slave_1) entered blocking state [ 205.936355][ T2948] bridge0: port 2(bridge_slave_1) entered forwarding state [ 206.691572][ T6988] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 206.805155][ T6988] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 208.722796][ T6988] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 209.202509][ T6988] veth0_vlan: entered promiscuous mode [ 209.461106][ T7318] FAULT_INJECTION: forcing a failure. [ 209.461106][ T7318] name failslab, interval 1, probability 0, space 0, times 0 [ 209.482145][ T7318] CPU: 0 UID: 0 PID: 7318 Comm: syz.1.277 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 209.482192][ T7318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 209.482211][ T7318] Call Trace: [ 209.482222][ T7318] [ 209.482233][ T7318] dump_stack_lvl+0x16c/0x1f0 [ 209.482278][ T7318] should_fail_ex+0x512/0x640 [ 209.482319][ T7318] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 209.482373][ T7318] should_failslab+0xc2/0x120 [ 209.482401][ T7318] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 209.482447][ T7318] ? __d_alloc+0x31/0xaa0 [ 209.482490][ T7318] ? __lock_acquire+0xb8a/0x1c90 [ 209.482536][ T7318] __d_alloc+0x31/0xaa0 [ 209.482588][ T7318] d_alloc+0x4a/0x1e0 [ 209.482637][ T7318] d_alloc_parallel+0xe3/0x12e0 [ 209.482676][ T7318] ? __lock_acquire+0xb8a/0x1c90 [ 209.482717][ T7318] ? look_up_lock_class+0x6b/0x150 [ 209.482763][ T7318] ? register_lock_class+0x41/0x4c0 [ 209.482802][ T7318] ? _raw_spin_unlock+0x28/0x50 [ 209.482843][ T7318] ? __pfx_d_alloc_parallel+0x10/0x10 [ 209.482883][ T7318] ? lockdep_init_map_type+0x5c/0x280 [ 209.482924][ T7318] ? lockdep_init_map_type+0x5c/0x280 [ 209.482970][ T7318] __lookup_slow+0x193/0x460 [ 209.483003][ T7318] ? __pfx___lookup_slow+0x10/0x10 [ 209.483061][ T7318] ? lookup_fast+0x156/0x610 [ 209.483100][ T7318] walk_component+0x353/0x5b0 [ 209.483151][ T7318] link_path_walk+0x627/0xe20 [ 209.483205][ T7318] path_openat+0x1b0/0x2cb0 [ 209.483244][ T7318] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 209.483288][ T7318] ? __pfx_path_openat+0x10/0x10 [ 209.483333][ T7318] ? __lock_acquire+0xb8a/0x1c90 [ 209.483375][ T7318] do_filp_open+0x20b/0x470 [ 209.483415][ T7318] ? __pfx_do_filp_open+0x10/0x10 [ 209.483473][ T7318] ? __pfx_kfree_link+0x10/0x10 [ 209.483517][ T7318] ? alloc_fd+0x471/0x7d0 [ 209.483569][ T7318] do_sys_openat2+0x11b/0x1d0 [ 209.483602][ T7318] ? __pfx_do_sys_openat2+0x10/0x10 [ 209.483652][ T7318] __x64_sys_openat+0x174/0x210 [ 209.483687][ T7318] ? __pfx___x64_sys_openat+0x10/0x10 [ 209.483740][ T7318] do_syscall_64+0xcd/0x490 [ 209.483782][ T7318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 209.483810][ T7318] RIP: 0033:0x7f843958d290 [ 209.483834][ T7318] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 209.483860][ T7318] RSP: 002b:00007f843a4b0f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 209.483890][ T7318] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f843958d290 [ 209.483908][ T7318] RDX: 0000000000000002 RSI: 00007f843a4b0fa0 RDI: 00000000ffffff9c [ 209.483925][ T7318] RBP: 00007f843a4b0fa0 R08: 0000000000000000 R09: 00007f843a4b0cd5 [ 209.483942][ T7318] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 209.483957][ T7318] R13: 0000000000000000 R14: 00007f84397b5fa0 R15: 00007fff5f8878e8 [ 209.483994][ T7318] [ 210.178419][ T6988] veth1_vlan: entered promiscuous mode [ 210.415774][ T6988] veth0_macvtap: entered promiscuous mode [ 210.475560][ T6988] veth1_macvtap: entered promiscuous mode [ 210.558802][ T6988] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 210.603075][ T6988] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 210.694498][ T6988] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.737326][ T6988] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.797093][ T6988] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.821944][ T6988] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 211.141322][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 211.141388][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 211.407712][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 211.436845][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 211.487308][ T7344] syz.0.284 (7344) used greatest stack depth: 19784 bytes left [ 212.454211][ T7387] FAULT_INJECTION: forcing a failure. [ 212.454211][ T7387] name failslab, interval 1, probability 0, space 0, times 0 [ 212.485106][ T7387] CPU: 0 UID: 0 PID: 7387 Comm: syz.1.289 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 212.485147][ T7387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 212.485162][ T7387] Call Trace: [ 212.485171][ T7387] [ 212.485182][ T7387] dump_stack_lvl+0x16c/0x1f0 [ 212.485231][ T7387] should_fail_ex+0x512/0x640 [ 212.485270][ T7387] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 212.485319][ T7387] should_failslab+0xc2/0x120 [ 212.485364][ T7387] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 212.485406][ T7387] ? lockdep_init_map_type+0x5c/0x280 [ 212.485447][ T7387] ? __d_alloc+0x31/0xaa0 [ 212.485495][ T7387] __d_alloc+0x31/0xaa0 [ 212.485544][ T7387] d_alloc_pseudo+0x1c/0xc0 [ 212.485574][ T7387] alloc_file_pseudo+0xcf/0x230 [ 212.485609][ T7387] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 212.485641][ T7387] ? alloc_fd+0x471/0x7d0 [ 212.485685][ T7387] sock_alloc_file+0x50/0x210 [ 212.485731][ T7387] __sys_socket+0x1c0/0x260 [ 212.485764][ T7387] ? __pfx___sys_socket+0x10/0x10 [ 212.485800][ T7387] ? do_user_addr_fault+0x843/0x1370 [ 212.485847][ T7387] __x64_sys_socket+0x72/0xb0 [ 212.485879][ T7387] ? lockdep_hardirqs_on+0x7c/0x110 [ 212.485918][ T7387] do_syscall_64+0xcd/0x490 [ 212.485965][ T7387] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 212.485993][ T7387] RIP: 0033:0x7f8439590847 [ 212.486016][ T7387] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 212.486043][ T7387] RSP: 002b:00007f843a46dfa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029 [ 212.486070][ T7387] RAX: ffffffffffffffda RBX: 00007f84397b6160 RCX: 00007f8439590847 [ 212.486088][ T7387] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 212.486104][ T7387] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 212.486120][ T7387] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000 [ 212.486135][ T7387] R13: 0000000000000000 R14: 00007f84397b6160 R15: 00007fff5f8878e8 [ 212.486171][ T7387] [ 212.699511][ C0] vkms_vblank_simulate: vblank timer overrun [ 213.985377][ T7412] FAULT_INJECTION: forcing a failure. [ 213.985377][ T7412] name failslab, interval 1, probability 0, space 0, times 0 [ 214.060664][ T7412] CPU: 0 UID: 0 PID: 7412 Comm: syz.0.294 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 214.060703][ T7412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 214.060718][ T7412] Call Trace: [ 214.060727][ T7412] [ 214.060738][ T7412] dump_stack_lvl+0x16c/0x1f0 [ 214.060783][ T7412] should_fail_ex+0x512/0x640 [ 214.060821][ T7412] ? fs_reclaim_acquire+0xae/0x150 [ 214.060858][ T7412] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 214.060896][ T7412] should_failslab+0xc2/0x120 [ 214.060924][ T7412] __kmalloc_noprof+0xd2/0x510 [ 214.060975][ T7412] tomoyo_realpath_from_path+0xc2/0x6e0 [ 214.061018][ T7412] ? tomoyo_profile+0x47/0x60 [ 214.061064][ T7412] tomoyo_path_number_perm+0x245/0x580 [ 214.061105][ T7412] ? tomoyo_path_number_perm+0x237/0x580 [ 214.061138][ T7412] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 214.061173][ T7412] ? find_held_lock+0x2b/0x80 [ 214.061238][ T7412] ? find_held_lock+0x2b/0x80 [ 214.061267][ T7412] ? hook_file_ioctl_common+0x145/0x410 [ 214.061306][ T7412] ? __fget_files+0x20e/0x3c0 [ 214.061350][ T7412] security_file_ioctl+0x9b/0x240 [ 214.061387][ T7412] __x64_sys_ioctl+0xb7/0x210 [ 214.061422][ T7412] do_syscall_64+0xcd/0x490 [ 214.061465][ T7412] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.061493][ T7412] RIP: 0033:0x7f8e64d8e929 [ 214.061514][ T7412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 214.061539][ T7412] RSP: 002b:00007f8e65b4f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 214.061566][ T7412] RAX: ffffffffffffffda RBX: 00007f8e64fb5fa0 RCX: 00007f8e64d8e929 [ 214.061583][ T7412] RDX: 0000200000000100 RSI: 00000000c4c85513 RDI: 0000000000000003 [ 214.061600][ T7412] RBP: 00007f8e65b4f090 R08: 0000000000000000 R09: 0000000000000000 [ 214.061616][ T7412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 214.061631][ T7412] R13: 0000000000000000 R14: 00007f8e64fb5fa0 R15: 00007ffce1028628 [ 214.061669][ T7412] [ 214.061679][ T7412] ERROR: Out of memory at tomoyo_realpath_from_path. [ 218.900994][ T7500] FAULT_INJECTION: forcing a failure. [ 218.900994][ T7500] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 219.057970][ T7500] CPU: 1 UID: 0 PID: 7500 Comm: syz.2.312 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 219.058015][ T7500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 219.058033][ T7500] Call Trace: [ 219.058043][ T7500] [ 219.058055][ T7500] dump_stack_lvl+0x16c/0x1f0 [ 219.058116][ T7500] should_fail_ex+0x512/0x640 [ 219.058168][ T7500] should_fail_alloc_page+0xe7/0x130 [ 219.058202][ T7500] prepare_alloc_pages+0x3c2/0x610 [ 219.058246][ T7500] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 219.058298][ T7500] ? rcu_is_watching+0x12/0xc0 [ 219.058330][ T7500] ? trace_sched_exit_tp+0xde/0x130 [ 219.058368][ T7500] ? __schedule+0x1181/0x5de0 [ 219.058405][ T7500] ? kvm_sched_clock_read+0x11/0x20 [ 219.058444][ T7500] ? sched_clock+0x38/0x60 [ 219.058486][ T7500] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 219.058553][ T7500] ? __pfx___schedule+0x10/0x10 [ 219.058602][ T7500] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 219.058652][ T7500] ? policy_nodemask+0xea/0x4e0 [ 219.058685][ T7500] alloc_pages_mpol+0x1fb/0x550 [ 219.058717][ T7500] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 219.058760][ T7500] folio_alloc_mpol_noprof+0x36/0x2f0 [ 219.058799][ T7500] vma_alloc_folio_noprof+0xed/0x1e0 [ 219.058833][ T7500] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 219.058865][ T7500] ? find_held_lock+0x2b/0x80 [ 219.058898][ T7500] ? __handle_mm_fault+0x1092/0x5490 [ 219.058946][ T7500] __handle_mm_fault+0x2f21/0x5490 [ 219.058998][ T7500] ? __pfx___handle_mm_fault+0x10/0x10 [ 219.059039][ T7500] ? lock_vma_under_rcu+0x47d/0x970 [ 219.059087][ T7500] ? lock_vma_under_rcu+0x47d/0x970 [ 219.059148][ T7500] ? find_held_lock+0x2b/0x80 [ 219.059187][ T7500] handle_mm_fault+0x589/0xd10 [ 219.059230][ T7500] ? __pkru_allows_pkey+0x51/0xb0 [ 219.059274][ T7500] do_user_addr_fault+0x60c/0x1370 [ 219.059321][ T7500] ? rcu_is_watching+0x12/0xc0 [ 219.059358][ T7500] exc_page_fault+0x5c/0xb0 [ 219.059401][ T7500] asm_exc_page_fault+0x26/0x30 [ 219.059430][ T7500] RIP: 0033:0x7f8daae5a33b [ 219.059454][ T7500] Code: 00 00 00 48 8d 3d fd 2b 19 00 48 89 c1 31 c0 e8 fb 3c ff ff eb d2 66 0f 1f 84 00 00 00 00 00 55 31 c0 53 48 81 ec 68 10 00 00 <48> 89 7c 24 08 48 8d 3d 31 2c 19 00 48 89 34 24 48 8b 14 24 48 8b [ 219.059483][ T7500] RSP: 002b:00007f8dabe23fb0 EFLAGS: 00010202 [ 219.059508][ T7500] RAX: 0000000000000000 RBX: 00007f8dab1b5fa0 RCX: 0000000000000000 [ 219.059527][ T7500] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000000 [ 219.059543][ T7500] RBP: 00007f8dab010b39 R08: 0000000000000000 R09: 0000000000000000 [ 219.059561][ T7500] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 219.059577][ T7500] R13: 0000000000000000 R14: 00007f8dab1b5fa0 R15: 00007ffd82a9f5c8 [ 219.059618][ T7500] [ 219.364163][ T7500] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF [ 219.718847][ T30] audit: type=1400 audit(1752578797.353:3): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=7512 comm="syz.0.314" [ 220.733148][ T7539] CIFS: VFS: Unsupported security flags: 0x10 [ 221.078027][ T7535] openvswitch: netlink: IP tunnel dst address not specified [ 223.033670][ T7562] zswap: compressor not available [ 223.038054][ T7568] netlink: 8 bytes leftover after parsing attributes in process `syz.1.326'. [ 232.224579][ T7698] netlink: 28 bytes leftover after parsing attributes in process `syz.1.361'. [ 233.748586][ T7726] ALSA: mixer_oss: invalid OSS volume '' [ 234.743370][ T7727] FAULT_INJECTION: forcing a failure. [ 234.743370][ T7727] name failslab, interval 1, probability 0, space 0, times 0 [ 234.854163][ T7727] CPU: 0 UID: 0 PID: 7727 Comm: syz.1.373 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 234.854210][ T7727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 234.854229][ T7727] Call Trace: [ 234.854248][ T7727] [ 234.854261][ T7727] dump_stack_lvl+0x16c/0x1f0 [ 234.854312][ T7727] should_fail_ex+0x512/0x640 [ 234.854357][ T7727] ? __kvmalloc_node_noprof+0x124/0x620 [ 234.854406][ T7727] should_failslab+0xc2/0x120 [ 234.854436][ T7727] __kvmalloc_node_noprof+0x137/0x620 [ 234.854482][ T7727] ? do_semtimedop+0x235/0x2e0 [ 234.854525][ T7727] ? do_semtimedop+0x235/0x2e0 [ 234.854557][ T7727] do_semtimedop+0x235/0x2e0 [ 234.854595][ T7727] ? __pfx_do_semtimedop+0x10/0x10 [ 234.854680][ T7727] ? rcu_is_watching+0x12/0xc0 [ 234.854720][ T7727] ? __x64_sys_futex+0x1e0/0x4c0 [ 234.854757][ T7727] ? __x64_sys_futex+0x1e9/0x4c0 [ 234.854799][ T7727] __x64_sys_semtimedop+0x1b4/0x1f0 [ 234.854838][ T7727] ? __pfx___x64_sys_semtimedop+0x10/0x10 [ 234.854887][ T7727] do_syscall_64+0xcd/0x490 [ 234.854937][ T7727] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.854968][ T7727] RIP: 0033:0x7f843958e929 [ 234.854993][ T7727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 234.855020][ T7727] RSP: 002b:00007f843a4b1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000dc [ 234.855049][ T7727] RAX: ffffffffffffffda RBX: 00007f84397b5fa0 RCX: 00007f843958e929 [ 234.855069][ T7727] RDX: 00000000000001f4 RSI: 0000000000000000 RDI: 000000000000003d [ 234.855086][ T7727] RBP: 00007f8439610b39 R08: 0000000000000000 R09: 0000000000000000 [ 234.855103][ T7727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 234.855121][ T7727] R13: 0000000000000000 R14: 00007f84397b5fa0 R15: 00007fff5f8878e8 [ 234.855160][ T7727] [ 235.050537][ C0] vkms_vblank_simulate: vblank timer overrun [ 235.139066][ T7748] FAULT_INJECTION: forcing a failure. [ 235.139066][ T7748] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 235.210478][ T7748] CPU: 0 UID: 0 PID: 7748 Comm: syz.2.377 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 235.210517][ T7748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 235.210534][ T7748] Call Trace: [ 235.210543][ T7748] [ 235.210554][ T7748] dump_stack_lvl+0x16c/0x1f0 [ 235.210603][ T7748] should_fail_ex+0x512/0x640 [ 235.210646][ T7748] _copy_to_user+0x32/0xd0 [ 235.210692][ T7748] simple_read_from_buffer+0xcb/0x170 [ 235.210732][ T7748] proc_fail_nth_read+0x197/0x270 [ 235.210768][ T7748] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 235.210805][ T7748] ? rw_verify_area+0xcf/0x680 [ 235.210840][ T7748] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 235.210874][ T7748] vfs_read+0x1e4/0xc60 [ 235.210920][ T7748] ? __pfx___mutex_lock+0x10/0x10 [ 235.210959][ T7748] ? __pfx_vfs_read+0x10/0x10 [ 235.211025][ T7748] ? __fget_files+0x20e/0x3c0 [ 235.211075][ T7748] ksys_read+0x12a/0x250 [ 235.211112][ T7748] ? __pfx_ksys_read+0x10/0x10 [ 235.211161][ T7748] do_syscall_64+0xcd/0x490 [ 235.211206][ T7748] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 235.211234][ T7748] RIP: 0033:0x7f8daaf8d33c [ 235.211257][ T7748] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 235.211283][ T7748] RSP: 002b:00007f8dabe25030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 235.211308][ T7748] RAX: ffffffffffffffda RBX: 00007f8dab1b5fa0 RCX: 00007f8daaf8d33c [ 235.211326][ T7748] RDX: 000000000000000f RSI: 00007f8dabe250a0 RDI: 0000000000000003 [ 235.211342][ T7748] RBP: 00007f8dabe25090 R08: 0000000000000000 R09: 0000000000000018 [ 235.211358][ T7748] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000001 [ 235.211374][ T7748] R13: 0000000000000000 R14: 00007f8dab1b5fa0 R15: 00007ffd82a9f5c8 [ 235.211412][ T7748] [ 235.398125][ C0] vkms_vblank_simulate: vblank timer overrun [ 239.286261][ T7809] FAULT_INJECTION: forcing a failure. [ 239.286261][ T7809] name failslab, interval 1, probability 0, space 0, times 0 [ 239.331674][ T7809] CPU: 0 UID: 0 PID: 7809 Comm: syz.3.390 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 239.331717][ T7809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 239.331733][ T7809] Call Trace: [ 239.331744][ T7809] [ 239.331756][ T7809] dump_stack_lvl+0x16c/0x1f0 [ 239.331805][ T7809] should_fail_ex+0x512/0x640 [ 239.331847][ T7809] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 239.331895][ T7809] should_failslab+0xc2/0x120 [ 239.331925][ T7809] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 239.331969][ T7809] ? __pmd_alloc+0xbf/0x930 [ 239.332007][ T7809] __pmd_alloc+0xbf/0x930 [ 239.332037][ T7809] huge_pte_alloc+0x41d/0x5b0 [ 239.332079][ T7809] hugetlb_fault+0x373/0x3070 [ 239.332125][ T7809] ? __pfx_hugetlb_fault+0x10/0x10 [ 239.332181][ T7809] ? __pfx___up_read+0x10/0x10 [ 239.332234][ T7809] handle_mm_fault+0xbfa/0xd10 [ 239.332304][ T7809] __get_user_pages+0x589/0x3b80 [ 239.332352][ T7809] ? __pfx_mt_find+0x10/0x10 [ 239.332380][ T7809] ? __pfx___get_user_pages+0x10/0x10 [ 239.332430][ T7809] populate_vma_page_range+0x278/0x3a0 [ 239.332468][ T7809] ? __pfx_populate_vma_page_range+0x10/0x10 [ 239.332502][ T7809] ? __pfx_find_vma_intersection+0x10/0x10 [ 239.332538][ T7809] ? do_mmap+0x69c/0x1210 [ 239.332576][ T7809] __mm_populate+0x1d8/0x380 [ 239.332614][ T7809] ? __pfx___mm_populate+0x10/0x10 [ 239.332653][ T7809] ? up_write+0x1b2/0x520 [ 239.332701][ T7809] vm_mmap_pgoff+0x362/0x450 [ 239.332735][ T7809] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 239.332760][ T7809] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 239.332795][ T7809] ? hugetlbfs_get_inode+0x31f/0x730 [ 239.332839][ T7809] ksys_mmap_pgoff+0x1c8/0x5c0 [ 239.332878][ T7809] __x64_sys_mmap+0x125/0x190 [ 239.332926][ T7809] do_syscall_64+0xcd/0x490 [ 239.332972][ T7809] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.333001][ T7809] RIP: 0033:0x7f4ae6d8e929 [ 239.333023][ T7809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 239.333050][ T7809] RSP: 002b:00007f4ae7c16038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 239.333077][ T7809] RAX: ffffffffffffffda RBX: 00007f4ae6fb5fa0 RCX: 00007f4ae6d8e929 [ 239.333095][ T7809] RDX: 000000000000000b RSI: 0000000000000003 RDI: 0000000000000000 [ 239.333111][ T7809] RBP: 00007f4ae7c16090 R08: 0000000000000005 R09: 0000000000000000 [ 239.333128][ T7809] R10: 0000000055becab1 R11: 0000000000000246 R12: 0000000000000002 [ 239.333144][ T7809] R13: 0000000000000001 R14: 00007f4ae6fb5fa0 R15: 00007ffde4111db8 [ 239.333183][ T7809] [ 239.589853][ C0] vkms_vblank_simulate: vblank timer overrun [ 242.793238][ T7864] random: crng reseeded on system resumption [ 245.473192][ T7898] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 245.565003][ T7898] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 245.593268][ T7898] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 245.613963][ T7898] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 245.620415][ T7898] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 245.687413][ T7898] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 247.524081][ T5860] Bluetooth: hci0: command 0x0c1a tx timeout [ 247.606920][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 247.613350][ T5860] Bluetooth: hci3: command 0x0c1a tx timeout [ 247.684408][ T5860] Bluetooth: hci2: command 0x0c1a tx timeout [ 248.558444][ T7968] WARNING! power/level is deprecated; use power/control instead [ 248.576508][ T7968] ICMPv6: process `syz.1.431' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead [ 248.735627][ T7972] netlink: 252 bytes leftover after parsing attributes in process `syz.2.432'. [ 248.760634][ T7972] netlink: 252 bytes leftover after parsing attributes in process `syz.2.432'. [ 248.865392][ T7979] FAULT_INJECTION: forcing a failure. [ 248.865392][ T7979] name failslab, interval 1, probability 0, space 0, times 0 [ 248.909345][ T7981] vivid-003: ================= START STATUS ================= [ 248.910603][ T7979] CPU: 0 UID: 0 PID: 7979 Comm: syz.0.436 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 248.910640][ T7979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 248.910655][ T7979] Call Trace: [ 248.910665][ T7979] [ 248.910675][ T7979] dump_stack_lvl+0x16c/0x1f0 [ 248.910719][ T7979] should_fail_ex+0x512/0x640 [ 248.910756][ T7979] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 248.910798][ T7979] should_failslab+0xc2/0x120 [ 248.910825][ T7979] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 248.910863][ T7979] ? ptlock_alloc+0x1f/0x70 [ 248.910901][ T7979] ptlock_alloc+0x1f/0x70 [ 248.910933][ T7979] pte_alloc_one+0x82/0x3a0 [ 248.910968][ T7979] __pte_alloc+0x6d/0x3c0 [ 248.910994][ T7979] ? __pfx___pte_alloc+0x10/0x10 [ 248.911022][ T7979] ? find_held_lock+0x2b/0x80 [ 248.911054][ T7979] __handle_mm_fault+0x4358/0x5490 [ 248.911099][ T7979] ? __pfx___handle_mm_fault+0x10/0x10 [ 248.911168][ T7979] handle_mm_fault+0x589/0xd10 [ 248.911211][ T7979] __get_user_pages+0x589/0x3b80 [ 248.911252][ T7979] ? __pfx_mt_find+0x10/0x10 [ 248.911276][ T7979] ? __pfx___get_user_pages+0x10/0x10 [ 248.911319][ T7979] populate_vma_page_range+0x278/0x3a0 [ 248.911353][ T7979] ? __pfx_populate_vma_page_range+0x10/0x10 [ 248.911382][ T7979] ? __pfx_find_vma_intersection+0x10/0x10 [ 248.911413][ T7979] ? do_mmap+0x69c/0x1210 [ 248.911446][ T7979] __mm_populate+0x1d8/0x380 [ 248.911479][ T7979] ? __pfx___mm_populate+0x10/0x10 [ 248.911512][ T7979] ? up_write+0x1b2/0x520 [ 248.911554][ T7979] vm_mmap_pgoff+0x362/0x450 [ 248.911585][ T7979] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 248.911622][ T7979] ? __x64_sys_futex+0x1e0/0x4c0 [ 248.911652][ T7979] ? __x64_sys_futex+0x1e9/0x4c0 [ 248.911688][ T7979] ksys_mmap_pgoff+0x7d/0x5c0 [ 248.911715][ T7979] ? xfd_validate_state+0x61/0x180 [ 248.911747][ T7979] ? __pfx_do_writev+0x10/0x10 [ 248.911785][ T7979] __x64_sys_mmap+0x125/0x190 [ 248.911825][ T7979] do_syscall_64+0xcd/0x490 [ 248.911865][ T7979] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 248.911891][ T7979] RIP: 0033:0x7f8e64d8e929 [ 248.911913][ T7979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 248.911937][ T7979] RSP: 002b:00007f8e65b4f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 248.911968][ T7979] RAX: ffffffffffffffda RBX: 00007f8e64fb5fa0 RCX: 00007f8e64d8e929 [ 248.911985][ T7979] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 248.912001][ T7979] RBP: 00007f8e64e10b39 R08: 0000000000000002 R09: 0000000000008000 [ 248.912017][ T7979] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 248.912032][ T7979] R13: 0000000000000000 R14: 00007f8e64fb5fa0 R15: 00007ffce1028628 [ 248.912068][ T7979] [ 249.235112][ T7981] vivid-003: Radio HW Seek Mode: Bounded [ 249.287299][ T7981] vivid-003: Radio Programmable HW Seek: false [ 249.321248][ T7981] vivid-003: RDS Rx I/O Mode: Block I/O [ 249.368138][ T7981] vivid-003: Generate RBDS Instead of RDS: false [ 249.399576][ T7981] vivid-003: RDS Reception: true [ 249.405053][ T7981] vivid-003: RDS Program Type: 0 inactive [ 249.411013][ T7981] vivid-003: RDS PS Name: inactive [ 249.455864][ T7981] vivid-003: RDS Radio Text: inactive [ 249.461831][ T7981] vivid-003: RDS Traffic Announcement: false inactive [ 249.473297][ T7981] vivid-003: RDS Traffic Program: false inactive [ 249.527450][ T7981] vivid-003: RDS Music: false inactive [ 249.527927][ T7981] vivid-003: ================== END STATUS ================== [ 249.763903][ T5860] Bluetooth: hci2: command 0x0c1a tx timeout [ 249.992073][ T8002] netlink: 342 bytes leftover after parsing attributes in process `syz.2.442'. [ 250.088125][ T8002] netlink: 342 bytes leftover after parsing attributes in process `syz.2.442'. [ 250.272668][ T8002] netlink: 218 bytes leftover after parsing attributes in process `syz.2.442'. [ 250.309734][ T8012] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 250.330784][ T8012] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 250.368688][ T8012] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 250.390622][ T8012] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 250.977000][ T8028] FAULT_INJECTION: forcing a failure. [ 250.977000][ T8028] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 250.993890][ T8028] CPU: 1 UID: 0 PID: 8028 Comm: syz.2.446 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 250.993917][ T8028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 250.993927][ T8028] Call Trace: [ 250.993939][ T8028] [ 250.993946][ T8028] dump_stack_lvl+0x16c/0x1f0 [ 250.993977][ T8028] should_fail_ex+0x512/0x640 [ 250.994006][ T8028] _copy_from_user+0x2e/0xd0 [ 250.994034][ T8028] copy_msghdr_from_user+0x98/0x160 [ 250.994060][ T8028] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 250.994096][ T8028] ___sys_sendmsg+0xfe/0x1d0 [ 250.994122][ T8028] ? __pfx____sys_sendmsg+0x10/0x10 [ 250.994146][ T8028] ? __lock_acquire+0x622/0x1c90 [ 250.994195][ T8028] __sys_sendmsg+0x16d/0x220 [ 250.994221][ T8028] ? __pfx___sys_sendmsg+0x10/0x10 [ 250.994260][ T8028] do_syscall_64+0xcd/0x490 [ 250.994287][ T8028] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.994305][ T8028] RIP: 0033:0x7f8daaf8e929 [ 250.994320][ T8028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 250.994336][ T8028] RSP: 002b:00007f8dabe25038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 250.994352][ T8028] RAX: ffffffffffffffda RBX: 00007f8dab1b5fa0 RCX: 00007f8daaf8e929 [ 250.994363][ T8028] RDX: 0000000000000810 RSI: 0000200000000580 RDI: 0000000000000004 [ 250.994373][ T8028] RBP: 00007f8dabe25090 R08: 0000000000000000 R09: 0000000000000000 [ 250.994383][ T8028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 250.994392][ T8028] R13: 0000000000000000 R14: 00007f8dab1b5fa0 R15: 00007ffd82a9f5c8 [ 250.994413][ T8028] [ 251.172481][ C1] vkms_vblank_simulate: vblank timer overrun [ 252.324025][ T5860] Bluetooth: hci0: command 0x0c1a tx timeout [ 252.403977][ T5860] Bluetooth: hci2: command 0x0c1a tx timeout [ 252.410879][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 252.417400][ T5861] Bluetooth: hci1: command 0x0c1a tx timeout [ 253.605241][ T8053] FAULT_INJECTION: forcing a failure. [ 253.605241][ T8053] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 253.624332][ T8053] CPU: 1 UID: 0 PID: 8053 Comm: syz.3.455 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 253.624377][ T8053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 253.624393][ T8053] Call Trace: [ 253.624403][ T8053] [ 253.624414][ T8053] dump_stack_lvl+0x16c/0x1f0 [ 253.624459][ T8053] should_fail_ex+0x512/0x640 [ 253.624504][ T8053] _copy_from_user+0x2e/0xd0 [ 253.624546][ T8053] mtdchar_blkpg_ioctl+0xd8/0x250 [ 253.624579][ T8053] ? __pfx_mtdchar_blkpg_ioctl+0x10/0x10 [ 253.624649][ T8053] mtdchar_ioctl+0xbc4/0x2090 [ 253.624687][ T8053] ? __pfx_mtdchar_ioctl+0x10/0x10 [ 253.624726][ T8053] ? __mutex_trylock_common+0xe9/0x250 [ 253.624769][ T8053] ? __pfx___mutex_trylock_common+0x10/0x10 [ 253.624810][ T8053] ? __pfx___might_resched+0x10/0x10 [ 253.624845][ T8053] ? trace_contention_end+0xdd/0x130 [ 253.624885][ T8053] ? __mutex_lock+0x1ca/0xb90 [ 253.624939][ T8053] ? mtdchar_unlocked_ioctl+0xa2/0xf0 [ 253.624975][ T8053] ? __pfx___mutex_lock+0x10/0x10 [ 253.625019][ T8053] ? fd_install+0x244/0x750 [ 253.625077][ T8053] mtdchar_unlocked_ioctl+0xb0/0xf0 [ 253.625107][ T8053] ? __pfx_mtdchar_unlocked_ioctl+0x10/0x10 [ 253.625144][ T8053] __x64_sys_ioctl+0x18b/0x210 [ 253.625177][ T8053] do_syscall_64+0xcd/0x490 [ 253.625221][ T8053] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 253.625250][ T8053] RIP: 0033:0x7f4ae6d8e929 [ 253.625274][ T8053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 253.625300][ T8053] RSP: 002b:00007f4ae7c16038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 253.625327][ T8053] RAX: ffffffffffffffda RBX: 00007f4ae6fb5fa0 RCX: 00007f4ae6d8e929 [ 253.625346][ T8053] RDX: 0000000000000000 RSI: 0000000000001269 RDI: 0000000000000003 [ 253.625362][ T8053] RBP: 00007f4ae7c16090 R08: 0000000000000000 R09: 0000000000000000 [ 253.625378][ T8053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 253.625394][ T8053] R13: 0000000000000000 R14: 00007f4ae6fb5fa0 R15: 00007ffde4111db8 [ 253.625433][ T8053] [ 253.847629][ C1] vkms_vblank_simulate: vblank timer overrun [ 257.395275][ T8129] FAULT_INJECTION: forcing a failure. [ 257.395275][ T8129] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 257.514023][ T8129] CPU: 0 UID: 0 PID: 8129 Comm: syz.1.470 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 257.514065][ T8129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 257.514081][ T8129] Call Trace: [ 257.514090][ T8129] [ 257.514102][ T8129] dump_stack_lvl+0x16c/0x1f0 [ 257.514150][ T8129] should_fail_ex+0x512/0x640 [ 257.514197][ T8129] _copy_from_user+0x2e/0xd0 [ 257.514251][ T8129] snd_ctl_elem_add_user+0x9b/0x170 [ 257.514293][ T8129] ? __pfx_snd_ctl_elem_add_user+0x10/0x10 [ 257.514332][ T8129] ? find_held_lock+0x2b/0x80 [ 257.514409][ T8129] snd_ctl_ioctl+0x981/0x1320 [ 257.514451][ T8129] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 257.514497][ T8129] ? find_held_lock+0x2b/0x80 [ 257.514526][ T8129] ? hook_file_ioctl_common+0x145/0x410 [ 257.514567][ T8129] ? __fget_files+0x20e/0x3c0 [ 257.514611][ T8129] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 257.514654][ T8129] __x64_sys_ioctl+0x18b/0x210 [ 257.514691][ T8129] do_syscall_64+0xcd/0x490 [ 257.514736][ T8129] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 257.514763][ T8129] RIP: 0033:0x7f843958e929 [ 257.514786][ T8129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 257.514813][ T8129] RSP: 002b:00007f843a44e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 257.514840][ T8129] RAX: ffffffffffffffda RBX: 00007f84397b6240 RCX: 00007f843958e929 [ 257.514858][ T8129] RDX: 00002000000001c0 RSI: 00000000c1105517 RDI: 000000000000000a [ 257.514875][ T8129] RBP: 00007f843a44e090 R08: 0000000000000000 R09: 0000000000000000 [ 257.514892][ T8129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 257.514908][ T8129] R13: 0000000000000000 R14: 00007f84397b6240 R15: 00007fff5f8878e8 [ 257.514946][ T8129] [ 259.383674][ T8154] vhci_hcd: invalid port number 16 [ 259.389451][ T8154] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 261.226803][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.233436][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 263.643408][ T8212] netlink: 330 bytes leftover after parsing attributes in process `syz.3.490'. [ 265.510669][ T8255] overlayfs: missing 'lowerdir' [ 265.905264][ T8260] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 268.007738][ T8296] netlink: 'syz.0.510': attribute type 5 has an invalid length. [ 269.095350][ T8315] futex_wake_op: syz.1.515 tries to shift op by -2048; fix this program [ 269.172433][ T8315] futex_wake_op: syz.1.515 tries to shift op by -2048; fix this program [ 269.551033][ T8328] FAULT_INJECTION: forcing a failure. [ 269.551033][ T8328] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 269.618402][ T8328] CPU: 0 UID: 0 PID: 8328 Comm: syz.3.520 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 269.618489][ T8328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 269.618507][ T8328] Call Trace: [ 269.618517][ T8328] [ 269.618528][ T8328] dump_stack_lvl+0x16c/0x1f0 [ 269.618581][ T8328] should_fail_ex+0x512/0x640 [ 269.618631][ T8328] should_fail_alloc_page+0xe7/0x130 [ 269.618664][ T8328] prepare_alloc_pages+0x3c2/0x610 [ 269.618700][ T8328] ? rcu_is_watching+0x12/0xc0 [ 269.618737][ T8328] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 269.618785][ T8328] ? kasan_save_stack+0x42/0x60 [ 269.618848][ T8328] ? css_rstat_updated+0x9d/0xd30 [ 269.618891][ T8328] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 269.618930][ T8328] ? __lock_acquire+0x622/0x1c90 [ 269.618984][ T8328] ? __lock_acquire+0x622/0x1c90 [ 269.619028][ T8328] ? __lock_acquire+0x622/0x1c90 [ 269.619067][ T8328] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 269.619115][ T8328] ? policy_nodemask+0xea/0x4e0 [ 269.619148][ T8328] alloc_pages_mpol+0x1fb/0x550 [ 269.619180][ T8328] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 269.619221][ T8328] folio_alloc_mpol_noprof+0x36/0x2f0 [ 269.619258][ T8328] vma_alloc_folio_noprof+0xed/0x1e0 [ 269.619293][ T8328] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 269.619325][ T8328] ? find_held_lock+0x2b/0x80 [ 269.619356][ T8328] ? __handle_mm_fault+0x1092/0x5490 [ 269.619404][ T8328] __handle_mm_fault+0x2f21/0x5490 [ 269.619455][ T8328] ? __pfx___handle_mm_fault+0x10/0x10 [ 269.619496][ T8328] ? __pte_offset_map_lock+0x174/0x310 [ 269.619527][ T8328] ? find_held_lock+0x2b/0x80 [ 269.619557][ T8328] ? find_held_lock+0x2b/0x80 [ 269.619598][ T8328] ? follow_page_pte+0x3af/0x14c0 [ 269.619643][ T8328] handle_mm_fault+0x589/0xd10 [ 269.619691][ T8328] __get_user_pages+0x589/0x3b80 [ 269.619747][ T8328] ? __pfx_mt_find+0x10/0x10 [ 269.619777][ T8328] ? __pfx___get_user_pages+0x10/0x10 [ 269.619843][ T8328] populate_vma_page_range+0x278/0x3a0 [ 269.619885][ T8328] ? __pfx_populate_vma_page_range+0x10/0x10 [ 269.619921][ T8328] ? __pfx_find_vma_intersection+0x10/0x10 [ 269.619960][ T8328] ? do_mmap+0x69c/0x1210 [ 269.619997][ T8328] __mm_populate+0x1d8/0x380 [ 269.620033][ T8328] ? __pfx___mm_populate+0x10/0x10 [ 269.620071][ T8328] ? up_write+0x1b2/0x520 [ 269.620123][ T8328] vm_mmap_pgoff+0x362/0x450 [ 269.620158][ T8328] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 269.620198][ T8328] ? __x64_sys_futex+0x1e0/0x4c0 [ 269.620228][ T8328] ? __x64_sys_futex+0x1e9/0x4c0 [ 269.620267][ T8328] ksys_mmap_pgoff+0x7d/0x5c0 [ 269.620297][ T8328] ? xfd_validate_state+0x61/0x180 [ 269.620337][ T8328] ? __pfx_do_writev+0x10/0x10 [ 269.620383][ T8328] __x64_sys_mmap+0x125/0x190 [ 269.620434][ T8328] do_syscall_64+0xcd/0x490 [ 269.620485][ T8328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 269.620517][ T8328] RIP: 0033:0x7f4ae6d8e929 [ 269.620543][ T8328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 269.620571][ T8328] RSP: 002b:00007f4ae7c16038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 269.620601][ T8328] RAX: ffffffffffffffda RBX: 00007f4ae6fb5fa0 RCX: 00007f4ae6d8e929 [ 269.620621][ T8328] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 269.620638][ T8328] RBP: 00007f4ae6e10b39 R08: 0000000000000002 R09: 0000000000008000 [ 269.620657][ T8328] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 269.620674][ T8328] R13: 0000000000000000 R14: 00007f4ae6fb5fa0 R15: 00007ffde4111db8 [ 269.620715][ T8328] [ 269.980669][ C0] vkms_vblank_simulate: vblank timer overrun [ 270.972584][ T8346] FAULT_INJECTION: forcing a failure. [ 270.972584][ T8346] name failslab, interval 1, probability 0, space 0, times 0 [ 271.018759][ T8346] CPU: 1 UID: 0 PID: 8346 Comm: syz.2.525 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 271.018801][ T8346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 271.018818][ T8346] Call Trace: [ 271.018827][ T8346] [ 271.018839][ T8346] dump_stack_lvl+0x16c/0x1f0 [ 271.018896][ T8346] should_fail_ex+0x512/0x640 [ 271.018948][ T8346] should_failslab+0xc2/0x120 [ 271.018976][ T8346] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 271.019020][ T8346] ? skb_clone+0x190/0x3f0 [ 271.019067][ T8346] skb_clone+0x190/0x3f0 [ 271.019106][ T8346] netlink_deliver_tap+0xabd/0xd30 [ 271.019157][ T8346] netlink_unicast+0x702/0x850 [ 271.019191][ T8346] ? __pfx_netlink_unicast+0x10/0x10 [ 271.019218][ T8346] ? genl_rcv_msg+0x4bb/0x800 [ 271.019263][ T8346] netlink_ack+0x696/0xb80 [ 271.019306][ T8346] netlink_rcv_skb+0x332/0x420 [ 271.019335][ T8346] ? __pfx_genl_rcv_msg+0x10/0x10 [ 271.019372][ T8346] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 271.019419][ T8346] ? netlink_deliver_tap+0x1ae/0xd30 [ 271.019472][ T8346] genl_rcv+0x28/0x40 [ 271.019500][ T8346] netlink_unicast+0x58d/0x850 [ 271.019536][ T8346] ? __pfx_netlink_unicast+0x10/0x10 [ 271.019577][ T8346] netlink_sendmsg+0x8d1/0xdd0 [ 271.019615][ T8346] ? __pfx_netlink_sendmsg+0x10/0x10 [ 271.019661][ T8346] ____sys_sendmsg+0xa95/0xc70 [ 271.019695][ T8346] ? copy_msghdr_from_user+0x10a/0x160 [ 271.019737][ T8346] ? __pfx_____sys_sendmsg+0x10/0x10 [ 271.019789][ T8346] ___sys_sendmsg+0x134/0x1d0 [ 271.019833][ T8346] ? __pfx____sys_sendmsg+0x10/0x10 [ 271.019870][ T8346] ? __lock_acquire+0x622/0x1c90 [ 271.019971][ T8346] __sys_sendmsg+0x16d/0x220 [ 271.020014][ T8346] ? __pfx___sys_sendmsg+0x10/0x10 [ 271.020085][ T8346] do_syscall_64+0xcd/0x490 [ 271.020130][ T8346] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.020159][ T8346] RIP: 0033:0x7f8daaf8e929 [ 271.020182][ T8346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 271.020209][ T8346] RSP: 002b:00007f8dabe25038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 271.020236][ T8346] RAX: ffffffffffffffda RBX: 00007f8dab1b5fa0 RCX: 00007f8daaf8e929 [ 271.020253][ T8346] RDX: 0000000004004840 RSI: 0000200000001780 RDI: 0000000000000003 [ 271.020271][ T8346] RBP: 00007f8dabe25090 R08: 0000000000000000 R09: 0000000000000000 [ 271.020286][ T8346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 271.020302][ T8346] R13: 0000000000000000 R14: 00007f8dab1b5fa0 R15: 00007ffd82a9f5c8 [ 271.020341][ T8346] [ 271.374753][ T8338] FAULT_INJECTION: forcing a failure. [ 271.374753][ T8338] name failslab, interval 1, probability 0, space 0, times 0 [ 271.445013][ T8353] FAULT_INJECTION: forcing a failure. [ 271.445013][ T8353] name failslab, interval 1, probability 0, space 0, times 0 [ 271.478272][ T8338] CPU: 0 UID: 0 PID: 8338 Comm: syz.1.523 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 271.478319][ T8338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 271.478337][ T8338] Call Trace: [ 271.478347][ T8338] [ 271.478360][ T8338] dump_stack_lvl+0x16c/0x1f0 [ 271.478413][ T8338] should_fail_ex+0x512/0x640 [ 271.478454][ T8338] ? __kmalloc_node_noprof+0xc5/0x500 [ 271.478504][ T8338] should_failslab+0xc2/0x120 [ 271.478535][ T8338] __kmalloc_node_noprof+0xd8/0x500 [ 271.478586][ T8338] ? __get_vm_area_node+0x208/0x330 [ 271.478621][ T8338] ? __vmalloc_node_range_noprof+0x3e5/0x14b0 [ 271.478669][ T8338] __vmalloc_node_range_noprof+0x3e5/0x14b0 [ 271.478723][ T8338] ? n_tty_open+0x1a/0x170 [ 271.478775][ T8338] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 271.478820][ T8338] ? find_held_lock+0x2b/0x80 [ 271.478854][ T8338] ? n_tty_open+0x12b/0x170 [ 271.478889][ T8338] ? n_tty_open+0x1a/0x170 [ 271.478932][ T8338] __vmalloc_node_noprof+0xad/0xf0 [ 271.478971][ T8338] ? n_tty_open+0x1a/0x170 [ 271.479002][ T8338] ? __pfx_n_tty_open+0x10/0x10 [ 271.479037][ T8338] n_tty_open+0x1a/0x170 [ 271.479068][ T8338] ? __pfx_n_tty_open+0x10/0x10 [ 271.479100][ T8338] tty_ldisc_open+0x9c/0x120 [ 271.479138][ T8338] tty_ldisc_setup+0x87/0x100 [ 271.479175][ T8338] tty_init_dev.part.0+0x1ec/0x500 [ 271.479204][ T8338] tty_open+0xa50/0xf90 [ 271.479237][ T8338] ? __pfx_tty_open+0x10/0x10 [ 271.479264][ T8338] ? chrdev_open+0x58c/0x6a0 [ 271.479314][ T8338] ? __pfx_tty_open+0x10/0x10 [ 271.479342][ T8338] chrdev_open+0x231/0x6a0 [ 271.479391][ T8338] ? __pfx_chrdev_open+0x10/0x10 [ 271.479439][ T8338] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 271.479487][ T8338] do_dentry_open+0x744/0x1c10 [ 271.479532][ T8338] ? __pfx_chrdev_open+0x10/0x10 [ 271.479583][ T8338] vfs_open+0x82/0x3f0 [ 271.479617][ T8338] path_openat+0x1de4/0x2cb0 [ 271.479671][ T8338] ? __pfx_path_openat+0x10/0x10 [ 271.479718][ T8338] ? __lock_acquire+0xb8a/0x1c90 [ 271.479765][ T8338] do_filp_open+0x20b/0x470 [ 271.479811][ T8338] ? __pfx_do_filp_open+0x10/0x10 [ 271.479889][ T8338] ? alloc_fd+0x471/0x7d0 [ 271.479955][ T8338] do_sys_openat2+0x11b/0x1d0 [ 271.479989][ T8338] ? __pfx_do_sys_openat2+0x10/0x10 [ 271.480044][ T8338] __x64_sys_openat+0x174/0x210 [ 271.480081][ T8338] ? __pfx___x64_sys_openat+0x10/0x10 [ 271.480137][ T8338] do_syscall_64+0xcd/0x490 [ 271.480185][ T8338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.480217][ T8338] RIP: 0033:0x7f843958e929 [ 271.480243][ T8338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 271.480273][ T8338] RSP: 002b:00007f843a4b1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 271.480302][ T8338] RAX: ffffffffffffffda RBX: 00007f84397b5fa0 RCX: 00007f843958e929 [ 271.480322][ T8338] RDX: 0000000000040001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 271.480341][ T8338] RBP: 00007f8439610b39 R08: 0000000000000000 R09: 0000000000000000 [ 271.480360][ T8338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 271.480377][ T8338] R13: 0000000000000000 R14: 00007f84397b5fa0 R15: 00007fff5f8878e8 [ 271.480420][ T8338] [ 271.584566][ T8357] ======================================================= [ 271.584566][ T8357] WARNING: The mand mount option has been deprecated and [ 271.584566][ T8357] and is ignored by this kernel. Remove the mand [ 271.584566][ T8357] option from the mount to silence this warning. [ 271.584566][ T8357] ======================================================= [ 271.588483][ C0] vkms_vblank_simulate: vblank timer overrun [ 271.655554][ T8353] CPU: 1 UID: 0 PID: 8353 Comm: syz.2.527 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 271.655590][ T8353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 271.655604][ T8353] Call Trace: [ 271.655612][ T8353] [ 271.655622][ T8353] dump_stack_lvl+0x16c/0x1f0 [ 271.655663][ T8353] should_fail_ex+0x512/0x640 [ 271.655696][ T8353] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 271.655736][ T8353] should_failslab+0xc2/0x120 [ 271.655760][ T8353] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 271.655795][ T8353] ? __thp_vma_allowable_orders+0x1c5/0xb10 [ 271.655822][ T8353] ? ptlock_alloc+0x1f/0x70 [ 271.655866][ T8353] ptlock_alloc+0x1f/0x70 [ 271.655896][ T8353] pte_alloc_one+0x82/0x3a0 [ 271.655920][ T8353] __handle_mm_fault+0x3a68/0x5490 [ 271.655962][ T8353] ? __pfx___handle_mm_fault+0x10/0x10 [ 271.655992][ T8353] ? __pfx_mt_find+0x10/0x10 [ 271.656035][ T8353] ? find_vma+0xbf/0x140 [ 271.656059][ T8353] ? __pfx_find_vma+0x10/0x10 [ 271.656088][ T8353] handle_mm_fault+0x589/0xd10 [ 271.656122][ T8353] ? __pkru_allows_pkey+0x51/0xb0 [ 271.656158][ T8353] do_user_addr_fault+0x7a6/0x1370 [ 271.656195][ T8353] ? rcu_is_watching+0x12/0xc0 [ 271.656226][ T8353] exc_page_fault+0x5c/0xb0 [ 271.656269][ T8353] asm_exc_page_fault+0x26/0x30 [ 271.656293][ T8353] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 271.656322][ T8353] Code: c4 10 e9 84 11 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 4d 11 04 00 66 66 [ 271.656344][ T8353] RSP: 0018:ffffc9000e8bfd60 EFLAGS: 00050202 [ 271.656365][ T8353] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000004 [ 271.656379][ T8353] RDX: fffff52001d17fbc RSI: 0000000000000000 RDI: ffffc9000e8bfde0 [ 271.656395][ T8353] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff52001d17fbc [ 271.656409][ T8353] R10: 0000000000000003 R11: 0000000000000001 R12: 0000000000000000 [ 271.656423][ T8353] R13: ffffc9000e8bfde0 R14: 0000000000000000 R15: 0000000000000114 [ 271.656460][ T8353] _copy_from_user+0x98/0xd0 [ 271.656499][ T8353] do_sock_getsockopt+0x5f4/0x800 [ 271.656531][ T8353] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 271.656555][ T8353] ? __fget_files+0x204/0x3c0 [ 271.656589][ T8353] ? 0xffffffffff600000 [ 271.656622][ T8353] __sys_getsockopt+0x123/0x1b0 [ 271.656656][ T8353] ? 0xffffffffff600000 [ 271.656680][ T8353] __x64_sys_getsockopt+0xbd/0x160 [ 271.656712][ T8353] ? do_syscall_64+0x91/0x490 [ 271.656745][ T8353] ? lockdep_hardirqs_on+0x7c/0x110 [ 271.656778][ T8353] do_syscall_64+0xcd/0x490 [ 271.656816][ T8353] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 271.656840][ T8353] RIP: 0033:0x7f8daaf8e929 [ 271.656866][ T8353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 271.656888][ T8353] RSP: 002b:00007f8dabe25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 271.656909][ T8353] RAX: ffffffffffffffda RBX: 00007f8dab1b5fa0 RCX: 00007f8daaf8e929 [ 271.656925][ T8353] RDX: 0000000000002715 RSI: 0000000000000114 RDI: 0000000000000004 [ 271.656940][ T8353] RBP: 00007f8dabe25090 R08: 0000000000000000 R09: 0000000000000000 [ 271.656954][ T8353] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000001 [ 271.656969][ T8353] R13: 0000000000000000 R14: 00007f8dab1b5fa0 R15: 00007ffd82a9f5c8 [ 271.656990][ T8353] ? 0xffffffffff600000 [ 271.657018][ T8353] [ 272.184801][ C0] vkms_vblank_simulate: vblank timer overrun [ 272.190943][ C0] hrtimer: interrupt took 710146691 ns [ 272.221343][ T8338] syz.1.523: vmalloc error: size 12288, failed to allocated page array size 24, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 272.238894][ T8338] CPU: 0 UID: 0 PID: 8338 Comm: syz.1.523 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 272.238933][ T8338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 272.238948][ T8338] Call Trace: [ 272.238958][ T8338] [ 272.238970][ T8338] dump_stack_lvl+0x16c/0x1f0 [ 272.239016][ T8338] warn_alloc+0x248/0x3a0 [ 272.239060][ T8338] ? __pfx_warn_alloc+0x10/0x10 [ 272.239097][ T8338] ? dump_stack_lvl+0x1a3/0x1f0 [ 272.239144][ T8338] ? rcu_is_watching+0x12/0xc0 [ 272.239174][ T8338] ? trace_kmalloc+0x2b/0xd0 [ 272.239202][ T8338] ? __get_vm_area_node+0x208/0x330 [ 272.239243][ T8338] __vmalloc_node_range_noprof+0x101b/0x14b0 [ 272.239292][ T8338] ? n_tty_open+0x1a/0x170 [ 272.239642][ T8338] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 272.239696][ T8338] ? find_held_lock+0x2b/0x80 [ 272.239728][ T8338] ? n_tty_open+0x12b/0x170 [ 272.239761][ T8338] ? n_tty_open+0x1a/0x170 [ 272.239789][ T8338] __vmalloc_node_noprof+0xad/0xf0 [ 272.239816][ T8338] ? n_tty_open+0x1a/0x170 [ 272.239841][ T8338] ? __pfx_n_tty_open+0x10/0x10 [ 272.239885][ T8338] n_tty_open+0x1a/0x170 [ 272.239917][ T8338] ? __pfx_n_tty_open+0x10/0x10 [ 272.239945][ T8338] tty_ldisc_open+0x9c/0x120 [ 272.239985][ T8338] tty_ldisc_setup+0x87/0x100 [ 272.240025][ T8338] tty_init_dev.part.0+0x1ec/0x500 [ 272.240075][ T8338] tty_open+0xa50/0xf90 [ 272.240113][ T8338] ? __pfx_tty_open+0x10/0x10 [ 272.240143][ T8338] ? chrdev_open+0x58c/0x6a0 [ 272.240196][ T8338] ? __pfx_tty_open+0x10/0x10 [ 272.240224][ T8338] chrdev_open+0x231/0x6a0 [ 272.240272][ T8338] ? __pfx_chrdev_open+0x10/0x10 [ 272.240323][ T8338] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 272.240371][ T8338] do_dentry_open+0x744/0x1c10 [ 272.240418][ T8338] ? __pfx_chrdev_open+0x10/0x10 [ 272.240474][ T8338] vfs_open+0x82/0x3f0 [ 272.240513][ T8338] path_openat+0x1de4/0x2cb0 [ 272.240570][ T8338] ? __pfx_path_openat+0x10/0x10 [ 272.240617][ T8338] ? __lock_acquire+0xb8a/0x1c90 [ 272.240670][ T8338] do_filp_open+0x20b/0x470 [ 272.240715][ T8338] ? __pfx_do_filp_open+0x10/0x10 [ 272.240792][ T8338] ? alloc_fd+0x471/0x7d0 [ 272.240861][ T8338] do_sys_openat2+0x11b/0x1d0 [ 272.240896][ T8338] ? __pfx_do_sys_openat2+0x10/0x10 [ 272.240952][ T8338] __x64_sys_openat+0x174/0x210 [ 272.240988][ T8338] ? __pfx___x64_sys_openat+0x10/0x10 [ 272.241045][ T8338] do_syscall_64+0xcd/0x490 [ 272.241094][ T8338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 272.241125][ T8338] RIP: 0033:0x7f843958e929 [ 272.241151][ T8338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 272.241180][ T8338] RSP: 002b:00007f843a4b1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 272.241209][ T8338] RAX: ffffffffffffffda RBX: 00007f84397b5fa0 RCX: 00007f843958e929 [ 272.241229][ T8338] RDX: 0000000000040001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 272.241248][ T8338] RBP: 00007f8439610b39 R08: 0000000000000000 R09: 0000000000000000 [ 272.241266][ T8338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 272.241283][ T8338] R13: 0000000000000000 R14: 00007f84397b5fa0 R15: 00007fff5f8878e8 [ 272.241324][ T8338] [ 272.241336][ T8338] Mem-Info: [ 272.244904][ T8340] program syz.1.523 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 272.253280][ T8338] active_anon:8115 inactive_anon:0 isolated_anon:0 [ 272.253280][ T8338] active_file:17162 inactive_file:40976 isolated_file:0 [ 272.253280][ T8338] unevictable:768 dirty:271 writeback:0 [ 272.253280][ T8338] slab_reclaimable:11122 slab_unreclaimable:95340 [ 272.253280][ T8338] mapped:27606 shmem:1375 pagetables:1200 [ 272.253280][ T8338] sec_pagetables:0 bounce:0 [ 272.253280][ T8338] kernel_misc_reclaimable:0 [ 272.253280][ T8338] free:1309791 free_pcp:23610 free_cma:0 [ 272.253376][ T8338] Node 0 active_anon:32460kB inactive_anon:0kB active_file:68648kB inactive_file:163708kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:110372kB dirty:1084kB writeback:0kB shmem:3964kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11584kB pagetables:4652kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 272.253449][ T8338] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:196kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:52kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 272.253516][ T8338] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 272.253595][ T8338] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 272.253658][ T8338] Node 0 DMA32 free:1355580kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:32412kB inactive_anon:0kB active_file:68648kB inactive_file:162400kB unevictable:1536kB writepending:1084kB present:3129332kB managed:2540344kB mlocked:0kB bounce:0kB free_pcp:43908kB local_pcp:18992kB free_cma:0kB [ 272.294370][ C0] vkms_vblank_simulate: vblank timer overrun [ 272.630641][ C0] vkms_vblank_simulate: vblank timer overrun [ 272.664411][ C0] vkms_vblank_simulate: vblank timer overrun [ 272.696340][ C0] vkms_vblank_simulate: vblank timer overrun [ 272.765274][ C0] vkms_vblank_simulate: vblank timer overrun [ 272.809457][ T8338] lowmem_reserve[]: 0 0 1 1 1 [ 272.949996][ T8338] Node 0 Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1308kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB [ 273.257703][ T8338] lowmem_reserve[]: 0 0 0 0 0 [ 273.293392][ T8338] Node 1 Normal free:3868260kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:144kB unevictable:1588kB writepending:0kB present:4194300kB managed:4111164kB mlocked:52kB bounce:0kB free_pcp:50516kB local_pcp:27224kB free_cma:0kB [ 273.336812][ T8338] lowmem_reserve[]: 0 0 0 0 0 [ 273.344123][ T8338] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 273.362606][ T8338] Node 0 DMA32: 1328*4kB (M) 921*8kB (M) 340*16kB (ME) 241*32kB (UM) 326*64kB (UM) 177*128kB (M) 64*256kB (UM) 12*512kB (UME) 4*1024kB (ME) 2*2048kB (M) 303*4096kB (UM) = 1341160kB [ 273.521462][ T8338] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 273.521659][ T8338] Node 1 Normal: 13*4kB (UM) 10*8kB (UME) 10*16kB (UM) 134*32kB (UM) 46*64kB (UM) 12*128kB (UM) 9*256kB (UM) 9*512kB (UM) 4*1024kB (M) 7*2048kB (M) 936*4096kB (ME) = 3868260kB [ 273.521934][ T8338] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 273.521960][ T8338] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 273.521983][ T8338] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 273.522007][ T8338] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 273.522031][ T8338] 63607 total pagecache pages [ 273.522044][ T8338] 0 pages in swap cache [ 273.522055][ T8338] Free swap = 124996kB [ 273.522067][ T8338] Total swap = 124996kB [ 273.522079][ T8338] 2097051 pages RAM [ 273.522091][ T8338] 0 pages HighMem/MovableOnly [ 273.522102][ T8338] 429987 pages reserved [ 273.522114][ T8338] 0 pages cma reserved [ 273.522587][ T8338] pty pty228: ldisc open failed (-12), clearing slot 228 [ 273.916014][ T8364] tty tty60: ldisc open failed (-12), clearing slot 59 [ 274.354702][ T8389] netlink: 28 bytes leftover after parsing attributes in process `syz.3.537'. [ 278.595636][ T8433] futex_wake_op: syz.0.548 tries to shift op by -2048; fix this program [ 278.653159][ T8433] futex_wake_op: syz.0.548 tries to shift op by -2048; fix this program [ 280.050481][ T8459] ima: policy update failed [ 280.057947][ T30] audit: type=1802 audit(4294968355.719:4): pid=8459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.557" res=0 errno=0 [ 285.852864][ T8577] netlink: 4 bytes leftover after parsing attributes in process `syz.2.600'. [ 287.547987][ T8620] FAULT_INJECTION: forcing a failure. [ 287.547987][ T8620] name failslab, interval 1, probability 0, space 0, times 0 [ 287.577514][ T8620] CPU: 1 UID: 0 PID: 8620 Comm: syz.1.617 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 287.577542][ T8620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 287.577552][ T8620] Call Trace: [ 287.577559][ T8620] [ 287.577566][ T8620] dump_stack_lvl+0x16c/0x1f0 [ 287.577598][ T8620] should_fail_ex+0x512/0x640 [ 287.577624][ T8620] ? __kmalloc_noprof+0xbf/0x510 [ 287.577652][ T8620] ? lsm_blob_alloc+0x68/0x90 [ 287.577677][ T8620] should_failslab+0xc2/0x120 [ 287.577694][ T8620] __kmalloc_noprof+0xd2/0x510 [ 287.577724][ T8620] lsm_blob_alloc+0x68/0x90 [ 287.577751][ T8620] security_prepare_creds+0x30/0x270 [ 287.577777][ T8620] prepare_creds+0x56f/0x7d0 [ 287.577805][ T8620] copy_creds+0xa7/0xa50 [ 287.577834][ T8620] copy_process+0xff6/0x7650 [ 287.577859][ T8620] ? __pfx___futex_wait+0x10/0x10 [ 287.577884][ T8620] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 287.577914][ T8620] ? __pfx_copy_process+0x10/0x10 [ 287.577936][ T8620] ? find_held_lock+0x2b/0x80 [ 287.577963][ T8620] kernel_clone+0xfc/0x960 [ 287.577987][ T8620] ? __pfx_kernel_clone+0x10/0x10 [ 287.578024][ T8620] __do_sys_clone+0xce/0x120 [ 287.578046][ T8620] ? __pfx___do_sys_clone+0x10/0x10 [ 287.578069][ T8620] ? handle_mm_fault+0x2ab/0xd10 [ 287.578106][ T8620] ? xfd_validate_state+0x61/0x180 [ 287.578136][ T8620] do_syscall_64+0xcd/0x490 [ 287.578164][ T8620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.578181][ T8620] RIP: 0033:0x7f843958e929 [ 287.578196][ T8620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 287.578212][ T8620] RSP: 002b:00007f843a44e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 287.578230][ T8620] RAX: ffffffffffffffda RBX: 00007f84397b6240 RCX: 00007f843958e929 [ 287.578241][ T8620] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00000000000006db [ 287.578251][ T8620] RBP: 00007f8439610b39 R08: 0000000000000006 R09: 0000000000000000 [ 287.578262][ T8620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 287.578271][ T8620] R13: 0000000000000000 R14: 00007f84397b6240 R15: 00007fff5f8878e8 [ 287.578292][ T8620] [ 289.418692][ T8668] futex_wake_op: syz.2.637 tries to shift op by -1; fix this program [ 290.592529][ T8702] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 291.090343][ T8704] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10 [ 291.560101][ T8725] snd_aloop snd_aloop.0: Parsing timer source 'òÿÿÿòÿÿÿòÿÿÿòÿ' failed with -22 [ 291.674827][ T8728] snd_aloop snd_aloop.0: Parsing timer source 'òÿÿÿòÿÿÿòÿÿÿòÿ' failed with -22 [ 296.167781][ T8829] Unable to find swap-space signature [ 297.809204][ T8888] FAULT_INJECTION: forcing a failure. [ 297.809204][ T8888] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 297.833756][ T8888] CPU: 1 UID: 0 PID: 8888 Comm: syz.3.718 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 297.833797][ T8888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 297.833815][ T8888] Call Trace: [ 297.833825][ T8888] [ 297.833837][ T8888] dump_stack_lvl+0x16c/0x1f0 [ 297.833888][ T8888] should_fail_ex+0x512/0x640 [ 297.833936][ T8888] should_fail_alloc_page+0xe7/0x130 [ 297.833968][ T8888] prepare_alloc_pages+0x3c2/0x610 [ 297.834011][ T8888] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 297.834085][ T8888] ? rcu_is_watching+0x12/0xc0 [ 297.834118][ T8888] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 297.834166][ T8888] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 297.834231][ T8888] ? __lock_acquire+0x622/0x1c90 [ 297.834271][ T8888] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 297.834319][ T8888] ? policy_nodemask+0xea/0x4e0 [ 297.834352][ T8888] alloc_pages_mpol+0x1fb/0x550 [ 297.834384][ T8888] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 297.834416][ T8888] ? filemap_get_entry+0x1a7/0x3b0 [ 297.834447][ T8888] folio_alloc_noprof+0x20/0x2d0 [ 297.834479][ T8888] filemap_alloc_folio_noprof+0x3a1/0x470 [ 297.834515][ T8888] ? ___kmalloc_large_node+0x183/0x1e0 [ 297.834553][ T8888] ? __pfx_filemap_alloc_folio_noprof+0x10/0x10 [ 297.834593][ T8888] ? rcu_is_watching+0x12/0xc0 [ 297.834631][ T8888] __filemap_get_folio+0x5e1/0xc30 [ 297.834670][ T8888] ioctx_alloc+0x761/0x2120 [ 297.834728][ T8888] ? __pfx_ioctx_alloc+0x10/0x10 [ 297.834760][ T8888] ? __might_fault+0x13b/0x190 [ 297.834811][ T8888] __x64_sys_io_setup+0xc9/0x210 [ 297.834854][ T8888] do_syscall_64+0xcd/0x490 [ 297.834902][ T8888] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 297.834933][ T8888] RIP: 0033:0x7f4ae6d8e929 [ 297.834958][ T8888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 297.834984][ T8888] RSP: 002b:00007f4ae7bd4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 297.835012][ T8888] RAX: ffffffffffffffda RBX: 00007f4ae6fb6160 RCX: 00007f4ae6d8e929 [ 297.835039][ T8888] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 297.835056][ T8888] RBP: 00007f4ae6e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 297.835074][ T8888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 297.835091][ T8888] R13: 0000000000000000 R14: 00007f4ae6fb6160 R15: 00007ffde4111db8 [ 297.835130][ T8888] [ 304.374638][ T9062] netlink: 24 bytes leftover after parsing attributes in process `syz.3.795'. [ 313.112967][ T9325] syz.3.917 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 318.742361][ T9479] kexec: Could not allocate control_code_buffer [ 320.431721][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 320.438348][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 323.142071][ T9659] futex_wake_op: syz.1.1069 tries to shift op by -1; fix this program [ 327.551078][ T9815] Unable to find swap-space signature [ 329.055864][ T9872] futex_wake_op: syz.1.1168 tries to shift op by -2048; fix this program [ 340.089654][T10294] hugetlbfs: syz.2.1363 (10294): Using mlock ulimits for SHM_HUGETLB is obsolete [ 344.186871][T10465] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1448'. [ 350.047884][T10537] ALSA: mixer_oss: invalid OSS volume '' [ 350.320684][T10523] snd_aloop snd_aloop.0: Parsing timer source 'òÿÿÿòÿÿÿòÿÿÿòÿ' failed with -22 [ 353.386175][T10578] snd_aloop snd_aloop.0: Parsing timer source 'òÿÿÿòÿÿÿòÿÿÿòÿ' failed with -22 [ 359.018798][T10649] snd_aloop snd_aloop.0: Parsing timer source 'òÿÿÿòÿÿÿòÿÿÿòÿ' failed with -22 [ 360.621302][T10659] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1483'. [ 360.622820][T10659] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1483'. [ 360.624064][T10659] netlink: 218 bytes leftover after parsing attributes in process `syz.3.1483'. [ 361.675275][T10682] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1486'. [ 362.026881][T10689] futex_wake_op: syz.2.1487 tries to shift op by -2048; fix this program [ 362.171000][T10689] futex_wake_op: syz.2.1487 tries to shift op by -2048; fix this program [ 364.355089][T10711] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1493'. [ 364.392408][T10718] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1497'. [ 365.932453][T10752] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1504'. [ 366.003169][T10746] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1504'. [ 367.496661][T10762] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1506'. [ 368.045286][T10769] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1508'. [ 368.944493][T10785] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1510'. [ 370.910514][T10814] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1516'. [ 371.003350][T10816] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1516'. [ 371.193125][T10809] netlink: 218 bytes leftover after parsing attributes in process `syz.3.1516'. [ 372.386961][T10828] random: crng reseeded on system resumption [ 374.122964][T10854] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1525'. [ 374.212463][T10855] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1525'. [ 374.296267][T10854] ipvlan1: entered allmulticast mode [ 374.310532][T10854] veth0_vlan: entered allmulticast mode [ 377.142642][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 377.148974][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.971106][T10907] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1534'. [ 379.251314][T10912] random: crng reseeded on system resumption [ 380.472873][T10922] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1536'. [ 380.745212][T10921] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1538'. [ 381.852059][T10943] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1542'. [ 385.629836][T10990] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1550'. [ 386.403945][T11005] random: crng reseeded on system resumption [ 388.366643][T11028] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1560'. [ 390.495995][T11063] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1565'. [ 394.503335][T11102] delete_channel: no stack [ 395.516578][T11113] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1577'. [ 397.256890][T11138] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1581'. [ 397.280141][T11141] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 397.488474][T11138] hsr_slave_0: left promiscuous mode [ 397.561727][T11138] hsr_slave_1: left promiscuous mode [ 397.961770][T11151] snd_aloop snd_aloop.0: Parsing timer source 'òÿÿÿòÿÿÿòÿÿÿòÿ' failed with -22 [ 397.994982][T11156] snd_aloop snd_aloop.0: Parsing timer source 'òÿÿÿòÿÿÿòÿÿÿòÿ' failed with -22 [ 399.211286][T11166] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1589'. [ 400.191009][T11185] random: crng reseeded on system resumption [ 405.652647][T11247] random: crng reseeded on system resumption [ 408.686593][T11293] snd_aloop snd_aloop.0: Parsing timer source 'òÿÿÿòÿÿÿòÿÿÿòÿ' failed with -22 [ 410.573657][T11316] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1625'. [ 411.579387][T11327] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1626'. [ 411.760242][T11334] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1629'. [ 414.238223][T11362] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1636'. [ 414.586361][T11367] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1638'. [ 414.820255][T11379] snd_aloop snd_aloop.0: Parsing timer source 'òÿÿÿòÿÿÿòÿÿÿòÿ' failed with -22 [ 414.895175][T11382] snd_aloop snd_aloop.0: Parsing timer source 'òÿÿÿòÿÿÿòÿÿÿòÿ' failed with -22 [ 414.917121][T11383] snd_aloop snd_aloop.0: Parsing timer source 'òÿÿÿòÿÿÿòÿÿÿòÿ' failed with -22 [ 414.976899][T11377] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 415.027896][T11383] FAULT_INJECTION: forcing a failure. [ 415.027896][T11383] name failslab, interval 1, probability 0, space 0, times 0 [ 415.043948][T11383] CPU: 1 UID: 0 PID: 11383 Comm: syz.2.1641 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 415.043994][T11383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 415.044013][T11383] Call Trace: [ 415.044025][T11383] [ 415.044037][T11383] dump_stack_lvl+0x16c/0x1f0 [ 415.044089][T11383] should_fail_ex+0x512/0x640 [ 415.044132][T11383] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 415.044184][T11383] should_failslab+0xc2/0x120 [ 415.044214][T11383] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 415.044269][T11383] ? d_instantiate+0x77/0x90 [ 415.044294][T11383] ? alloc_empty_file+0x55/0x1e0 [ 415.044335][T11383] alloc_empty_file+0x55/0x1e0 [ 415.044369][T11383] alloc_file_pseudo+0x13a/0x230 [ 415.044405][T11383] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 415.044454][T11383] __shmem_file_setup+0x1a3/0x330 [ 415.044497][T11383] shmem_zero_setup+0x93/0x1a0 [ 415.044539][T11383] __mmap_region+0x1ece/0x25e0 [ 415.044592][T11383] ? __pfx___mmap_region+0x10/0x10 [ 415.044635][T11383] ? find_held_lock+0x2b/0x80 [ 415.044678][T11383] ? finish_task_switch.isra.0+0x221/0xc10 [ 415.044711][T11383] ? lockdep_hardirqs_on+0x7c/0x110 [ 415.044754][T11383] ? finish_task_switch.isra.0+0x221/0xc10 [ 415.044790][T11383] ? rcu_is_watching+0x12/0xc0 [ 415.044822][T11383] ? trace_sched_exit_tp+0xde/0x130 [ 415.044860][T11383] ? __schedule+0x1181/0x5de0 [ 415.044982][T11383] ? trace_cap_capable+0x18d/0x200 [ 415.045031][T11383] mmap_region+0x1ab/0x3f0 [ 415.045075][T11383] ? __get_unmapped_area+0x267/0x440 [ 415.045116][T11383] do_mmap+0xa3e/0x1210 [ 415.045160][T11383] ? __pfx_do_mmap+0x10/0x10 [ 415.045196][T11383] ? __pfx_down_write_killable+0x10/0x10 [ 415.045242][T11383] vm_mmap_pgoff+0x281/0x450 [ 415.045281][T11383] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 415.045309][T11383] ? find_held_lock+0x2b/0x80 [ 415.045350][T11383] ? __x64_sys_futex+0x1e0/0x4c0 [ 415.045386][T11383] ? __x64_sys_futex+0x1e9/0x4c0 [ 415.045429][T11383] ksys_mmap_pgoff+0x7d/0x5c0 [ 415.045460][T11383] ? xfd_validate_state+0x61/0x180 [ 415.045506][T11383] __x64_sys_mmap+0x125/0x190 [ 415.045555][T11383] do_syscall_64+0xcd/0x490 [ 415.045603][T11383] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 415.045634][T11383] RIP: 0033:0x7f8daaf8e929 [ 415.045659][T11383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 415.045688][T11383] RSP: 002b:00007f8dabe04038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 415.045717][T11383] RAX: ffffffffffffffda RBX: 00007f8dab1b6080 RCX: 00007f8daaf8e929 [ 415.045737][T11383] RDX: 00004000000000dd RSI: 0000000000020009 RDI: 0000000000000000 [ 415.045755][T11383] RBP: 00007f8dab010b39 R08: 0000000000000401 R09: 0000000000008000 [ 415.045773][T11383] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 415.045791][T11383] R13: 0000000000000000 R14: 00007f8dab1b6080 R15: 00007ffd82a9f5c8 [ 415.045831][T11383] [ 415.676970][ T51] Bluetooth: hci0: unexpected event 0x1d length: 10 > 5 [ 415.951571][T11400] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1645'. [ 416.527021][T11409] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1647'. [ 417.382037][T11427] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1651'. [ 418.139987][T11440] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 418.708574][T11437] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12 [ 418.770862][T11437] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12 [ 418.819163][T11437] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 418.985440][T11455] can: request_module (can-proto-0) failed. [ 419.268050][T11464] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1657'. [ 420.649748][T11477] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1662'. [ 420.668838][ T30] audit: type=1400 audit(52567.438:5): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=11479 comm="syz.2.1663" [ 421.439179][T11498] hub 1-0:1.0: USB hub found [ 421.493280][T11498] hub 1-0:1.0: 1 port detected [ 424.234984][ T30] audit: type=1400 audit(118108.346:6): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=11536 comm="syz.3.1673" [ 425.796307][T11557] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1678'. [ 427.831014][T11589] snd_aloop snd_aloop.0: Parsing timer source 'òÿÿÿòÿÿÿòÿÿÿòÿ' failed with -22 [ 428.436049][T11594] snd_aloop snd_aloop.0: Parsing timer source 'òÿÿÿòÿÿÿòÿÿÿòÿ' failed with -22 [ 429.293607][T11611] random: crng reseeded on system resumption [ 429.599983][T11618] FAULT_INJECTION: forcing a failure. [ 429.599983][T11618] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 429.626150][T11618] CPU: 1 UID: 0 PID: 11618 Comm: syz.0.1690 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 429.626216][T11618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 429.626231][T11618] Call Trace: [ 429.626239][T11618] [ 429.626249][T11618] dump_stack_lvl+0x16c/0x1f0 [ 429.626294][T11618] should_fail_ex+0x512/0x640 [ 429.626341][T11618] _copy_to_user+0x32/0xd0 [ 429.626386][T11618] simple_read_from_buffer+0xcb/0x170 [ 429.626426][T11618] proc_fail_nth_read+0x197/0x270 [ 429.626457][T11618] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 429.626496][T11618] ? rw_verify_area+0xcf/0x680 [ 429.626523][T11618] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 429.626551][T11618] vfs_read+0x1e4/0xc60 [ 429.626588][T11618] ? __pfx___mutex_lock+0x10/0x10 [ 429.626622][T11618] ? __pfx_vfs_read+0x10/0x10 [ 429.626665][T11618] ? __fget_files+0x20e/0x3c0 [ 429.626709][T11618] ksys_read+0x12a/0x250 [ 429.626742][T11618] ? __pfx_ksys_read+0x10/0x10 [ 429.626829][T11618] do_syscall_64+0xcd/0x490 [ 429.626868][T11618] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 429.626893][T11618] RIP: 0033:0x7f8e64d8d33c [ 429.626914][T11618] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 429.626937][T11618] RSP: 002b:00007f8e65b2e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 429.626962][T11618] RAX: ffffffffffffffda RBX: 00007f8e64fb6080 RCX: 00007f8e64d8d33c [ 429.626977][T11618] RDX: 000000000000000f RSI: 00007f8e65b2e0a0 RDI: 0000000000000009 [ 429.626993][T11618] RBP: 00007f8e65b2e090 R08: 0000000000000000 R09: 0000000000000000 [ 429.627007][T11618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 429.627021][T11618] R13: 0000000000000001 R14: 00007f8e64fb6080 R15: 00007ffce1028628 [ 429.627056][T11618] [ 429.750258][T11625] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1692'. [ 429.751229][T11625] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1692'. [ 430.875479][T11616] pty pty183: ldisc open failed (-12), clearing slot 183 [ 430.935705][T11629] tty tty12: ldisc open failed (-12), clearing slot 11 [ 431.230497][T11643] snd_aloop snd_aloop.0: Parsing timer source 'òÿÿÿòÿÿÿòÿÿÿòÿ' failed with -22 [ 431.360629][T11646] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1695'. [ 433.830818][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 433.837477][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 434.986479][T11682] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1705'. [ 435.667780][T11688] random: crng reseeded on system resumption [ 436.427844][T11691] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1707'. [ 436.442674][T11703] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1709'. [ 438.451890][T11721] random: crng reseeded on system resumption [ 439.179131][T11730] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1717'. [ 439.328185][T11730] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1717'. [ 439.556859][T11726] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1716'. [ 439.810660][T11735] ------------[ cut here ]------------ [ 439.816987][T11735] WARNING: CPU: 0 PID: 11735 at net/mac80211/pm.c:171 __ieee80211_suspend+0x1056/0x1300 [ 439.827595][T11735] Modules linked in: [ 439.831858][T11735] CPU: 0 UID: 0 PID: 11735 Comm: syz.2.1715 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 439.844293][T11735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 439.854661][T11735] RIP: 0010:__ieee80211_suspend+0x1056/0x1300 [ 439.861979][T11735] Code: 05 f7 f0 41 80 a4 24 81 01 00 00 fe 4c 89 e0 48 c1 e8 03 42 80 3c 30 00 74 c4 4c 89 e7 e8 e2 54 05 f7 eb ba e8 6b 73 9f f6 90 <0f> 0b 90 e9 4f f8 ff ff e8 5d 73 9f f6 90 0f 0b 90 e9 30 f6 ff ff [ 439.882626][T11735] RSP: 0018:ffffc90011d37c50 EFLAGS: 00010283 [ 439.889825][T11735] RAX: 0000000000006257 RBX: ffff88807efa8e40 RCX: ffffc900102c4000 [ 439.898533][T11735] RDX: 0000000000080000 RSI: ffffffff8b1beb75 RDI: 0000000000000001 [ 439.906827][T11735] RBP: ffff88807efaaac0 R08: 0000000000000001 R09: 0000000000000000 [ 439.915107][T11735] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000 [ 439.923392][T11735] R13: ffffed100fdf51d0 R14: ffff88807efaa8c8 R15: 0000000000000001 [ 439.931978][T11735] FS: 00007f8dabdc26c0(0000) GS:ffff888124720000(0000) knlGS:0000000000000000 [ 439.941120][T11735] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 439.947914][T11735] CR2: 00007ffe6d645f98 CR3: 000000001f6d8000 CR4: 00000000003526f0 [ 439.956645][T11735] Call Trace: [ 439.960387][T11735] [ 439.963400][T11735] reset_write+0x7a/0x2a0 [ 439.967787][T11735] full_proxy_write+0x13c/0x200 [ 439.972709][T11735] ? __pfx_full_proxy_write+0x10/0x10 [ 439.978282][T11735] vfs_write+0x29d/0x1150 [ 439.982894][T11735] ? __pfx___mutex_lock+0x10/0x10 [ 439.988293][T11735] ? __pfx_vfs_write+0x10/0x10 [ 439.993096][T11735] ? __fget_files+0x20e/0x3c0 [ 439.997967][T11735] ksys_write+0x12a/0x250 [ 440.002324][T11735] ? __pfx_ksys_write+0x10/0x10 [ 440.007238][T11735] ? xfd_validate_state+0x61/0x180 [ 440.012827][T11735] do_syscall_64+0xcd/0x490 [ 440.017383][T11735] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 440.023306][T11735] RIP: 0033:0x7f8daaf8e929 [ 440.031174][T11735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 440.051483][T11735] RSP: 002b:00007f8dabdc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 440.060091][T11735] RAX: ffffffffffffffda RBX: 00007f8dab1b6240 RCX: 00007f8daaf8e929 [ 440.068553][T11735] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000008 [ 440.077041][T11735] RBP: 00007f8dab010b39 R08: 0000000000000000 R09: 0000000000000000 [ 440.085440][T11735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 440.093568][T11735] R13: 0000000000000000 R14: 00007f8dab1b6240 R15: 00007ffd82a9f5c8 [ 440.101888][T11735] [ 440.105019][T11735] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 440.112594][T11735] CPU: 0 UID: 0 PID: 11735 Comm: syz.2.1715 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 440.124672][T11735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 440.134920][T11735] Call Trace: [ 440.138257][T11735] [ 440.141200][T11735] dump_stack_lvl+0x3d/0x1f0 [ 440.145964][T11735] panic+0x71c/0x800 [ 440.149971][T11735] ? __pfx_panic+0x10/0x10 [ 440.154439][T11735] ? show_trace_log_lvl+0x29b/0x3e0 [ 440.159692][T11735] ? __ieee80211_suspend+0x1056/0x1300 [ 440.165260][T11735] check_panic_on_warn+0xab/0xb0 [ 440.170215][T11735] __warn+0xf6/0x3c0 [ 440.174155][T11735] ? __ieee80211_suspend+0x1056/0x1300 [ 440.179763][T11735] report_bug+0x3c3/0x580 [ 440.184141][T11735] ? __ieee80211_suspend+0x1056/0x1300 [ 440.189719][T11735] handle_bug+0x184/0x210 [ 440.194094][T11735] exc_invalid_op+0x17/0x50 [ 440.198702][T11735] asm_exc_invalid_op+0x1a/0x20 [ 440.203665][T11735] RIP: 0010:__ieee80211_suspend+0x1056/0x1300 [ 440.209754][T11735] Code: 05 f7 f0 41 80 a4 24 81 01 00 00 fe 4c 89 e0 48 c1 e8 03 42 80 3c 30 00 74 c4 4c 89 e7 e8 e2 54 05 f7 eb ba e8 6b 73 9f f6 90 <0f> 0b 90 e9 4f f8 ff ff e8 5d 73 9f f6 90 0f 0b 90 e9 30 f6 ff ff [ 440.229467][T11735] RSP: 0018:ffffc90011d37c50 EFLAGS: 00010283 [ 440.235726][T11735] RAX: 0000000000006257 RBX: ffff88807efa8e40 RCX: ffffc900102c4000 [ 440.243847][T11735] RDX: 0000000000080000 RSI: ffffffff8b1beb75 RDI: 0000000000000001 [ 440.252542][T11735] RBP: ffff88807efaaac0 R08: 0000000000000001 R09: 0000000000000000 [ 440.260721][T11735] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000 [ 440.268816][T11735] R13: ffffed100fdf51d0 R14: ffff88807efaa8c8 R15: 0000000000000001 [ 440.276899][T11735] ? __ieee80211_suspend+0x1055/0x1300 [ 440.282464][T11735] reset_write+0x7a/0x2a0 [ 440.286971][T11735] full_proxy_write+0x13c/0x200 [ 440.291941][T11735] ? __pfx_full_proxy_write+0x10/0x10 [ 440.297429][T11735] vfs_write+0x29d/0x1150 [ 440.301895][T11735] ? __pfx___mutex_lock+0x10/0x10 [ 440.307077][T11735] ? __pfx_vfs_write+0x10/0x10 [ 440.311967][T11735] ? __fget_files+0x20e/0x3c0 [ 440.316756][T11735] ksys_write+0x12a/0x250 [ 440.321104][T11735] ? __pfx_ksys_write+0x10/0x10 [ 440.325983][T11735] ? xfd_validate_state+0x61/0x180 [ 440.331410][T11735] do_syscall_64+0xcd/0x490 [ 440.336327][T11735] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 440.342292][T11735] RIP: 0033:0x7f8daaf8e929 [ 440.346908][T11735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 440.366740][T11735] RSP: 002b:00007f8dabdc2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 440.375346][T11735] RAX: ffffffffffffffda RBX: 00007f8dab1b6240 RCX: 00007f8daaf8e929 [ 440.383329][T11735] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000008 [ 440.391454][T11735] RBP: 00007f8dab010b39 R08: 0000000000000000 R09: 0000000000000000 [ 440.399660][T11735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 440.407790][T11735] R13: 0000000000000000 R14: 00007f8dab1b6240 R15: 00007ffd82a9f5c8 [ 440.416031][T11735] [ 440.419541][T11735] Kernel Offset: disabled [ 440.423973][T11735] Rebooting in 86400 seconds..