last executing test programs: 6.741638073s ago: executing program 0 (id=1481): socket(0xa, 0x1, 0x84) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0) statmount$auto(0x0, &(0x7f0000000380)={0x6, 0xffff59e7, 0x8, 0x100, 0x9df, 0x7fffffff, 0x3, 0x6, 0x5, 0xcb, 0x6b7, 0x0, 0xb4, 0x1, 0x8, 0x800000000000008, 0x101, 0x10001, 0x4, 0x100000001, 0x0, 0x8000000, 0x87, 0x7, 0x1, 0x10001, 0x40, 0x8, 0x1000f, 0x6, 0x10, [0xa, 0x2, 0xffff, 0x3, 0x7, 0x200000003, 0xfffe, 0x5, 0xe3f8, 0x9, 0x180, 0x4, 0x1000, 0x1614, 0x4, 0x1, 0x100, 0x8, 0x7, 0x8000, 0x2, 0xee, 0x4000000000008, 0xf36, 0x0, 0x6ba3, 0x3, 0xfffffffffffffffd, 0x7, 0x55ac, 0x4, 0xa, 0xfffffffffffffffd, 0x8, 0x1ff, 0xfae9, 0x2, 0x0, 0x9, 0xfffffffffffffbff, 0x5, 0x7fff, 0x6]}, 0x4, 0xf) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0x8, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x9, 0x80, 0x104, 0x6, 0x4}, {0x100, 0x1, 0x101, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) r0 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0) read$auto_vhci_fops_hci_vhci(r0, &(0x7f0000000d40)=""/16, 0x10) keyctl$auto(0x12, 0x102000000010001, 0x7f, 0x200, 0x3) r1 = socket(0xa, 0x2, 0x3a) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r1, 0x8000000028000) shutdown$auto(0x200000003, 0x403) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa0b02, 0x0) read$auto(0xffffffffffffffff, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0x70) symlink$auto(&(0x7f0000001500)='./file0/file0\x00', &(0x7f0000001540)='./file0\x00') mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb3, 0x401, 0x8000) semctl$auto_GETNCNT(0x2, 0x1, 0xe, 0x8) adjtimex$auto(0x0) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{&(0x7f0000001280)="ae230117e1ab72a83346c0cedc1de87ee99586aeaad3e1b43304d7735f1d9c66e9effc1eee2282e04d22a691e3a937a4614db388eeb0791c299ac3f9e1701fc4bf867feb3ecce256f42f829df396eef5154b28e60e8286778d7ae00c52893e632d6bf242ac5c42b2733a73c23633d3147d41774499391482dfb590100e8bebbb93c49b59", 0x4, &(0x7f0000000180)={&(0x7f0000000100)="434f6acecc650adee291b97a577b8f8301504d501e382a99dae5387d58e5b3c74a5e3d33106ffc4af7016d012c04df34686c1629bb0e72588b3d065d046481694160b635bd7d1f59db60d6cc11fee1addf11e456", 0x2}, 0x1, &(0x7f00000001c0)="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", 0x5, 0x5}, 0x44}, 0x7fffffff, 0x4000a8, &(0x7f0000001200)={0x400, 0x3218}) r2 = io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, r2, 0x0) io_uring_setup$auto(0x401, 0x0) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x3, 0x1, 0x32, 0x0, 0x9) mbind$auto(0x400, 0x4, 0x200, &(0x7f0000001240)=0xfff, 0xaa6, 0xa1) 5.672802603s ago: executing program 3 (id=1483): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptya9\x00', 0x441800, 0x0) r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x110) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x28, 0x0, 0x1) r2 = socket(0x1e, 0x4, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x200000000000404, 0x0) capset$auto(0x0, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:04.0/resource0\x00', 0xc0082, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000080), 0x0) io_setup$auto(0x8afc, 0x0) io_setup$auto(0x7ffe, &(0x7f0000000000)) setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14) ioctl$auto(r1, 0x2, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_DEL_RADIO(r4, &(0x7f0000003bc0)={0x0, 0x0, &(0x7f0000003b80)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYBLOB="4c10f84d03f49084398e7560c10eee1798a01cfd740b0eff51db389cd1bc0da510b87d0168ce8a54d0242cb5caad858e9a142cf0858185ff970a77e5ca6ccbbf939338818d73e32bbc44e9da"], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0xc044) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) socket(0x2c, 0x80003, 0x0) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x40242, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r6, 0x0, 0x20) writev$auto(r5, &(0x7f0000000200)={0x0, 0x10}, 0x3) close_range$auto(0x2, 0x8, 0x0) r7 = open(&(0x7f0000000080)='./file0\x00', 0x52bc40, 0x0) mmap$auto(0xf000, 0x1, 0x3ff, 0x12, r7, 0x0) close_range$auto(0x0, 0xffffffffffffffff, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r0, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_TUNNEL_INFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}}, 0x4000000) 4.324910352s ago: executing program 1 (id=1484): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop12\x00', 0x24040, 0x0) ioctl$auto_BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000240)={"ef65ce7cb454168d6c0000000000002713df81000000ffffffffffffff2900", 0x3ff, 0x408, 0xffc, 0x400004, 0x200000000040000d}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) dup2$auto(0x5, 0x4) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) write$auto(0x6, 0x0, 0x100000001) close_range$auto(0x2, 0x8000, 0x0) 4.257164713s ago: executing program 2 (id=1485): ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, &(0x7f00000005c0)={{0xffffffffffffffff, &(0x7f0000000100), 0x101, &(0x7f0000000340), 0x3, &(0x7f0000000440)="4f621839f1f6f2f10f7489395483d6194fe2c7317d1ead5786f9fe97deb5c9d0f04b08a2f56e150c49be91d5dd489a79b391243ee22f4a", &(0x7f0000000480)=0x9}, {[0x4, 0xffffffff, 0x8, 0x7a]}, 0x14, 0x6, &(0x7f00000004c0)="852dd6a7b259d9e7a5eb74ac697cd21ee6065f7f2a9058eed931d9b0c0d805052cd988c92166a90e294d94a568efb6f43e267a720745ddb7a6dd3667d63cf0a0446995e3f0fe3f976d21b67165901c14425fcaeb4f411a50a5a7a3f23e1aae0a582de63d8ce514ba277b9fa21aabb0990ae4611ad972ff8b46770b7191ac4b107c808c7feba9b39a6e7bc8cdeb669a6986f4aec6ab57dae1d81ccf"}) ioctl$auto_RTC_PARAM_SET(r0, 0x40187014, &(0x7f0000000640)={0x30000000000, @svalue=0xc, 0x7}) socket(0x2, 0x3, 0xa) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$auto(0xfffffffc, 0x0, 0x6f4) mmap$auto(0x0, 0x6d, 0x4000000000db, 0x4000000eb1, 0x401, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x20000008000) socketpair$auto(0x1e, 0x1, 0xffffffff, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f0000000000)) ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f00000000c0)="c0402e39") write$auto(r2, &(0x7f0000000180)='1\x00\\\xa0\x04|\x9d$\xdcM)\xb9\xdd\xd6', 0x5) setsockopt$auto_SO_OOBINLINE(r1, 0x10000, 0xa, &(0x7f0000000680)='@\x00\x005\xee\x7fdO\xf3\xd1\xeeL\xe8?e\xcda\xe3\xf8\xb9\xee\xc6\xe3I\x1c\xaa-\xb9\xa4\x87\xe8=\x10\xe8\x9e\xac\x1f\xbf\x12\xb1\xfe\x03\x8e\x12[>CIY2O\x1c\xda\x03o\v\xa7\x11\xa8\\t\x9e\xedH\x03\xf4\x167\x10\x8b\xc6\fj\xb2\x06\xccT-\xf3\x85h@\x02\xd3F\x13V\xad0\xf9D\x13\xe8\x1c\x14\x14\x12E\xf12\x83Z\x1d\xb4\xe6\x8b\x1f\xa3\xdf\xed?\xbeH\xe4nQ\x1c\xb7\xefI\f\t\xa5\x95m9~#\xc7\xf7\xcd7:\xee\xb1=\x1f\xdf\xd30\x7f\xe96KU9\xa4\xeb|\x8c\x15?%\x03v\xda\xfd\xa0\x9d', 0x6) mmap$auto(0x0, 0x20109, 0x4000000000df, 0xafd, 0x401, 0x8000) mlock$auto(0xfbe8, 0x4) syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0) munlock$auto(0xffff, 0x1) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop6\x00', 0x0, 0x0) ioctl$auto_SG_GET_RESERVED_SIZE(r4, 0x4c03, 0xfffffffffffffffd) r5 = bpf$auto(0x2, 0x0, 0xf) read$auto(r5, 0x0, 0x4) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/fb0\x00', 0x8080, 0x0) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000380)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000", @ANYRES16=0x0, @ANYBLOB="00012d6f0e00000000000001000008000b0004000000"], 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x14) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'veth1_to_batadv\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_HARDIF(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="60194be759000000", @ANYRES16=0x0, @ANYBLOB="000225bd7000fedbdf2510000000080039007f00000008001300f9ffffff08000300", @ANYRES32=r6, @ANYBLOB="0a000800aaaaaaaaaa2300001400070073797a6b616c6c6572300000000000000c000c0003000000000000000500350090000000"], 0x60}, 0x1, 0x0, 0x0, 0x8000}, 0x40001) sendmmsg$auto(0x3, 0x0, 0x9a5, 0x47ffff7a) 4.20964775s ago: executing program 3 (id=1486): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x1, 0x0, 0x80000000) timer_create$auto(0x2, 0x0, &(0x7f0000000140)=0x5) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), r0) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003180)={0x14, r1, 0x737, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x0) clock_nanosleep$auto(0x2, 0x200, &(0x7f0000000000)={0x0, 0x7}, 0x0) timer_settime$auto(0x0, 0xffff8000, &(0x7f00000000c0)={{0xf, 0x10007}, {0x9}}, 0x0) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0) madvise$auto(0x0, 0xffffffffffff0004, 0x19) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r2 = socket(0x25, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000080)={{&(0x7f0000000040), 0x1c, &(0x7f00000000c0)={0x0, 0x1a004}, 0x7, 0x0, 0x0, 0xb}, 0xfff}, 0x5, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f00000000c0)=ANY=[@ANYBLOB="cdf8d2b1", @ANYRES16=r4, @ANYBLOB="01002bbd7000ffdbdf2501000000080005000c000000080005000600000008000200", @ANYRES32=0x0, @ANYBLOB="070001002e5e0000"], 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x2000000) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x2, 0x0) madvise$auto(0x0, 0x200007, 0x8) open$dir(0x0, 0xb41, 0x1) 3.901916771s ago: executing program 2 (id=1487): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x1, 0x0, 0x80000000) timer_create$auto(0x2, 0x0, &(0x7f0000000140)=0x5) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), r0) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003180)={0x14, r1, 0x737, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x0) clock_nanosleep$auto(0x2, 0x200, &(0x7f0000000000)={0x0, 0x7}, 0x0) timer_settime$auto(0x0, 0xffff8000, &(0x7f00000000c0)={{0xf, 0x10007}, {0x9}}, 0x0) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0) madvise$auto(0x0, 0xffffffffffff0004, 0x19) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r2 = socket(0x25, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r3 = socket(0x2, 0x1, 0x84) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000080)={{&(0x7f0000000040), 0x1c, &(0x7f00000000c0)={0x0, 0x1a004}, 0x7, 0x0, 0x0, 0xb}, 0xfff}, 0x5, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_DEL(r3, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400100}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c007501", @ANYRES16=r4, @ANYBLOB="00012bbd7000fcdbdf250200000008000900", @ANYRES32=0x0, @ANYBLOB="080001005d2e5d0008000700b8f9022d"], 0x2c}, 0x1, 0x0, 0x0, 0x26040010}, 0x40040) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x2, 0x0) madvise$auto(0x0, 0x200007, 0x8) open$dir(0x0, 0xb41, 0x1) 3.593060225s ago: executing program 1 (id=1488): r0 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/filter\x00', 0x2, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000000)='\x14\xf4\xb6\xc6\x97\xdb\x18B\f\xef\x1dQZ\xa66\xe7\x06\\\xe0)+\x86\xa7\x9bv\xe1\x18\xf5\x83\b\x11\x19\xdd\x1c', 0x7e) write$auto_ftrace_event_filter_fops_trace_events(r0, 0x0, 0x0) munmap$auto(0x200000008000, 0xffffffff) r1 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) ioctl$auto_RNDADDENTROPY2(r1, 0x40085203, &(0x7f0000000440)=[0xfff, 0xedc0]) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = open(&(0x7f0000000100)='.\x00', 0x381800, 0x408) getdents$auto(r2, 0x0, 0x40) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), r3) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) socket(0x3, 0x3, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000005, 0x7, 0x1, 0x9, 0x1]}, 0x0) write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x28800, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sg0\x00', 0x40200, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) mmap$auto(0xfffffffffffffff9, 0x400006, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x1, 0x1021, 0x0, 0xd) close_range$auto(0x2, r4, 0x100000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace\x00', 0x1a6b75d638828712, 0x0) 3.283456368s ago: executing program 0 (id=1489): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x1, 0x0, 0x80000000) timer_create$auto(0x2, 0x0, &(0x7f0000000140)=0x5) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), r0) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003180)={0x14, r1, 0x737, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x0) clock_nanosleep$auto(0x2, 0x200, &(0x7f0000000000)={0x0, 0x7}, 0x0) timer_settime$auto(0x0, 0xffff8000, &(0x7f00000000c0)={{0xf, 0x10007}, {0x9}}, 0x0) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0) madvise$auto(0x0, 0xffffffffffff0004, 0x19) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r2 = socket(0x25, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) sendmmsg$auto(r2, &(0x7f0000000080)={{&(0x7f0000000040), 0x1c, &(0x7f00000000c0)={0x0, 0x1a004}, 0x7, 0x0, 0x0, 0xb}, 0xfff}, 0x5, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27) 2.955583734s ago: executing program 3 (id=1490): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x400, 0x0) select$auto(0x5, 0x0, 0x0, 0x0, 0x0) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/fail-nth\x00', 0x48000, 0x0) socket(0x10, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) socket(0x1e, 0x805, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x5, 0x0) fsopen$auto(0x0, 0x1) sysfs$auto(0x2, 0xf, 0x0) fsopen$auto(0x0, 0x1) fsconfig$auto(r1, 0x1, &(0x7f00000001c0)='+\x00', &(0x7f0000000280), 0x0) listen$auto(r0, 0x1f64b57d) io_uring_setup$auto(0x6, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D3\x00', 0x42801, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS64(r2, 0xc0385720, 0x0) r3 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) ioctl$auto_UBI_IOCATT(r3, 0x40186f40, &(0x7f0000000080)={0xffffffff, 0x0, 0xf7d, 0x4, 0x1}) 2.670984296s ago: executing program 2 (id=1491): r0 = eventfd$auto(0x2200000c) socket(0x2, 0x3, 0x6) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/kvm/blocking\x00', 0x1, 0x0) keyctl$auto_KEYCTL_INSTANTIATE(0xc, 0x9, 0x5, 0x90000000, 0xfffffffffffffff7) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/self/net/ip_vs_conn\x00', 0x20440, 0x0) mmap$auto(0x0, 0x2000a, 0xdd, 0xeb1, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x23, 0x0) fsopen$auto(0x0, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0xfe14, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, r0, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4020009, 0x2, 0xeb1, 0x401, 0x8000) r1 = socket(0x11, 0x6, 0xfffffffc) r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/event1\x00', 0x102100, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x80, 0x0) r4 = ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xaea2, 0x10000000000402) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r4, 0xae80, 0x0) socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2) listen$auto(r1, 0x7) sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000100)="43868724788231e1997648a6541c023fecf2ed90432b4e1eae1b211cd3eeba41d5", 0x12, 0x0, 0x9, 0x0, 0xd, 0xb}, 0x3}, 0x5, 0x2000fdff) close_range$auto(0x2, 0x8, 0x0) 2.403534312s ago: executing program 0 (id=1492): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/interrupts\x00', 0x18b202, 0x0) setresuid$auto(0x0, 0x7, 0x8080) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r1, 0x4b32, 0x9) pread64$auto(r0, 0x0, 0x1, 0x2000100) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000040)='/dev/binderfs/binder0\x00', 0x2200, 0x0) r2 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x0, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ttyS2\x00', 0x101e81, 0x0) writev$auto(r3, &(0x7f0000000080)={&(0x7f0000000000)="286d6175a30b45199cebab7863321699281750fb47c47eb256dd85bfc92e479f0ac49676c98eae2490", 0x200}, 0x3) ioctl$auto_BINDER_WRITE_READ(r2, 0xc0306201, 0x0) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="01002dd57000fcdbdf257e003f00"], 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0) sendmsg$auto_NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x2e8, r4, 0x8, 0x70bd2b, 0x25dfdbff, {}, [@NL80211_ATTR_WIPHY={0x8}, @NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}, @NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0x2}, @NL80211_ATTR_BSS_BASIC_RATES={0x16, 0x24, "e66f24f69fce1f788600d114e41dcbbf4f78"}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x6}, @NL80211_ATTR_BSS_SELECT={0x296, 0xe3, 0x0, 0x1, [@generic="b0b692289ee0fbb871931ccf2237efa2895ea0176b14600fa3b8f703e311caac418fa006ae6d8c79d06b04691419e83ebc9c6cbc1f2a463ed0bfacf2cacbef1d567e1d3817bbeeef2d626089b560337c0971ff300798d2a243cc0251963f187d94068f121f3f0c01132bca8674f0b02fe97e8fc1fee276f8169cd3c0d80393d17ecdb9748d2b1b62f016cedac344070413211631cfb8a467ee93ebc736780ae0d94fc08c64972cfedf9aee0ee0857884f3c701a65c2407dda8ee4e474c3dcd7982", @generic="3c58783773e908a92507cc82a598da7507192917b5bcc2be1dcc966051782466abac09b529ba69fe52e64d3cc9a61fe566eb215b93667a4876c2caff5e7d01d842a3a2ee822adeae2463ae9d0bab6b3fe582a3b33b8cdf180d33c80ca2bf4e08c27ca64a2aa3cb68c7f811030b", @typed={0x4, 0x98}, @nested={0xf3, 0x11c, 0x0, 0x1, [@generic="2bc4621538d78e519d217676135c6a8dd0210b09d62e8ead9f2a97d515a6c70d98d8f7fd664b8e028d7dbd07a522b54293fcfc9603d86d9e8dd5e7b5ffab4d8f4f105d1b1cbfe98e41396566d534ffee9173f1b9872b78759dea04725a0d5c0b2eaa0fe62d0ae61dff887db98af452523b5e77c2ae6969df49e1634d7de3da1b405750506bdee573074c9cdfded8393a12a1714c0956c388fc7d386cfc3e46b769acee651947318baa90d3212a505273ce627c7adff34e897ef2035096", @typed={0x8, 0xd8, 0x0, 0x0, @fd=r0}, @generic="5144d7c1a9e85b499b7df7b09b65cb94cde890213ae1338262156e20429988407f12d51f758031ba3259"]}, @nested={0x8, 0xb8, 0x0, 0x1, [@nested={0x4, 0x127}]}, @typed={0x14, 0x14b, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0xe}}, @generic="57229bb82670734f2779fdacd3d807d2f882261cbf0bf3fe2f69b9b52e1eab6f4c81da80cb9a6be5cd2d9633d8aed8bba39aee1c35687cf8037322c11ffd1bb869ed56089a26d9a0343a22066d16e831"]}, @NL80211_ATTR_TWT_RESPONDER={0x4}]}, 0x2e8}, 0x1, 0x0, 0x0, 0x40000}, 0x4000080) 2.336964251s ago: executing program 2 (id=1493): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) r2 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000180), r0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000001d40), 0x40a40, 0x0) mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) r4 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r3, 0x4b4d, r4) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) readv$auto(r5, &(0x7f00000000c0)={0x0, 0x5}, 0x3) ioctl$auto_TIOCVHANGUP2(r5, 0x5437, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0x1010001, 0x100000003) read$auto(r6, 0x0, 0x20) mmap$auto(0xff0f200000000000, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_IPVS_CMD_NEW_SERVICE(r4, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000003d40)={0x105c, 0x0, 0x10, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x1018, 0x1, 0x0, 0x1, [@typed={0x14, 0x10d, 0x0, 0x0, @ipv6=@private1}, @generic="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"]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_DAEMON={0x28, 0x3, 0x0, 0x1, [@typed={0x23, 0x99, 0x0, 0x0, @str='/sys/kernel/debug/sync/sw_sync\x00'}]}]}, 0x105c}, 0x1, 0x0, 0x0, 0x20004010}, 0x4) r8 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r7) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000180)={0x24, r8, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@HWSIM_ATTR_PMSR_SUPPORT={0x10, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_TYPE_CAPA={0xc, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}]}]}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008040}, 0x4000800) sendmsg$auto_OVS_VPORT_CMD_NEW(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, r2, 0x908, 0x70bd27, 0x25dfdbee, {}, [@OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0x5}, @OVS_VPORT_ATTR_TYPE={0x8, 0x2, 0x7fff}, @OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0x80000001}, @OVS_VPORT_ATTR_TYPE={0x8, 0x2, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x4040805}, 0x4c004) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="01002bff659e46ca5c0a48ecac3b"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0) 2.183913645s ago: executing program 0 (id=1494): sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20004014}, 0xc0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000) r0 = socket(0x2, 0x3, 0x6) r1 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x8006a) bpf$auto_BPF_ENABLE_STATS(0x20, &(0x7f0000000180)=@bpf_attr_0={0x3ff, 0x8, 0xffff, 0x7fffffff, 0xc2, r0, 0x7, "3f8850b8c665dabcdf3c01e5fde04738", 0x0, r0, 0x10001, 0x0, 0x1, 0x2, r0, r0}, 0xffffffc0) r4 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r4, &(0x7f0000000440)="671f264add69b6440843b6e6688a2b5ad9df2669e6f9cd236532b20ed763ac8caf4b9b4c", 0x24) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000340)="d746c2a7e1e55adc317519e6be95df740ae038c111a0fe", 0x12, 0x0, 0x9, 0x0, 0x80000000001f, 0xb}, 0x800009}, 0xffff, 0x20000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r5 = socket(0x1d, 0xa, 0x1) setsockopt$auto(r5, 0x65, 0x1, 0x0, 0x800) socketpair$auto(0x8, 0x4, 0x10000, &(0x7f0000000280)=0x8) ioctl$auto_TUNSETNOCSUM(r3, 0x400454c8, &(0x7f0000000240)=0xd) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x103a42, 0x0) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/module/psmouse/parameters/proto\x00', 0x20a42, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000001080)=""/4076, 0xfec) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/kernel/debug/bdi/1:15/wb_stats\x00', 0x40, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(r2, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0xff, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) socket(0x2, 0x1, 0x0) socketpair$auto(0x1e, 0x3, 0xfffffffe, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x3}, 0x7}, 0x3, 0xcad7) mmap$auto(0x0, 0x400006, 0x7fffffffffffffff, 0x4000000001000015, r6, 0x9) 2.04571189s ago: executing program 1 (id=1495): landlock_create_ruleset$auto(&(0x7f0000000000)={0x10, 0x2, 0x9}, 0x9, 0x0) fanotify_init$auto(0x5, 0x2000000000002) (async) fanotify_init$auto(0x5, 0x2000000000002) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14abfd) mlockall$auto(0x6) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x5, 0x0) (async) socket(0x28, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0xa, 0x2, 0x88) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_prog_fd=r0}, 0xa3) (async) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_prog_fd=r0}, 0xa3) 1.910914294s ago: executing program 3 (id=1496): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop12\x00', 0x24380, 0x0) ioctl$auto_FS_IOC_UNRESVSP(r0, 0x40305829, 0x7) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0x16, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r1 = socket(0xa, 0x5, 0x84) getsockopt$auto(r1, 0x84, 0x1f, 0x0, &(0x7f0000000080)=0x7) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) epoll_create$auto(0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) r2 = socket(0x2, 0x1, 0x106) getsockopt$auto(r2, 0x6, 0x4, 0xfffffffffffffffe, 0xfffffffffffffffd) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D1\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000180)=""/68, 0x44) syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r4) sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r4, 0x0, 0x20000000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) ioctl$auto_posix_clock_file_operations_posix_clock(0xffffffffffffffff, 0xc0603d06, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xd, 0x1, 0x3, 0x0, 0x15f4da0a, 0x5, 0x3, 0x62, 0x0, 0x7, 0x6d3e, 0x9, 0x100000d, 0x4]}, 0x0) getgid() mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb3, 0x401, 0x300000000000) getpid() clone$auto(0x4, 0x289, &(0x7f0000000040), 0x0, 0x7fffffff) 1.859504866s ago: executing program 1 (id=1497): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) syz_clone(0x0, &(0x7f00000001c0)="4b7778a67ff9469ac2517f19e30f658322d574ce4389", 0x16, &(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)="612c8d15b0b5ae7be8933a0cae2f28f85d340b3782024121c7c7c51cf6e1c66897d68fc27a2f1db529ed59f2f35d21fd78298086f6917141035d8279") close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket(0x2, 0x2, 0x1) r1 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r0, 0x10000, 0xffffffffffffffff}, 0x10) futex$auto(&(0x7f00000000c0)=0x1, 0x8c, 0x1, 0x0, 0x0, 0x1) bpf$auto(0x3, &(0x7f0000000240)=@bpf_attr_5={@target_fd=r1, 0xffffffffffffffff, 0xc000, 0x9, 0xffffffffffffffff, @relative_fd=r2, 0x40}, 0x5) futex$auto(&(0x7f0000000000)=0x6, 0x0, 0x3, &(0x7f0000000080)={0x7, 0x6}, &(0x7f0000000180)=0x9, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000980), r3) sendmsg$auto_TIPC_NL_MEDIA_SET(r3, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f0000009800)={0x20, r4, 0x1, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x18}}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x20000048) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async) syz_clone(0x0, &(0x7f00000001c0)="4b7778a67ff9469ac2517f19e30f658322d574ce4389", 0x16, &(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000340)="612c8d15b0b5ae7be8933a0cae2f28f85d340b3782024121c7c7c51cf6e1c66897d68fc27a2f1db529ed59f2f35d21fd78298086f6917141035d8279") (async) close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async) socket(0x2, 0x2, 0x1) (async) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r0, 0x10000}, 0x10) (async) futex$auto(&(0x7f00000000c0)=0x1, 0x8c, 0x1, 0x0, 0x0, 0x1) (async) bpf$auto(0x3, &(0x7f0000000240)=@bpf_attr_5={@target_fd=r1, 0xffffffffffffffff, 0xc000, 0x9, 0xffffffffffffffff, @relative_fd=r2, 0x40}, 0x5) (async) futex$auto(&(0x7f0000000000)=0x6, 0x0, 0x3, &(0x7f0000000080)={0x7, 0x6}, &(0x7f0000000180)=0x9, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000980), r3) (async) sendmsg$auto_TIPC_NL_MEDIA_SET(r3, &(0x7f000000a4c0)={0x0, 0x0, &(0x7f000000a480)={&(0x7f0000009800)={0x20, r4, 0x1, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x18}}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x20000048) (async) 1.857399034s ago: executing program 0 (id=1498): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/v4l-touch13\x00', 0x88080, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) pread64$auto(r2, 0x0, 0x4, 0x80000000000006) select$auto(0xd, 0x0, 0x0, &(0x7f00000000c0)={[0x1ff, 0x8, 0xffffffffffffff6d, 0xffffffffffffffff, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x6, 0x62, 0x80000000, 0x9, 0x6d3f, 0x7, 0x2, 0x6]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) getpid() mlockall$auto(0x5) rt_sigprocmask$auto(0x6, &(0x7f0000000080)={0x6}, 0xffffffffffffffff, 0x8) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) unshare$auto(0x4) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) socket(0x11, 0xa, 0x300) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x400, 0x7) mincore$auto(0xffc, 0x8000, 0x0) close_range$auto(r0, 0x8, 0x0) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x0, 0x0) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) sendfile$auto(r4, r3, 0x0, 0x1000202) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/addr_gen_mode\x00', 0xa0202, 0x0) io_uring_setup$auto(0xa, 0x0) ioctl$auto(r0, 0x4020565b, 0x38) 992.296375ms ago: executing program 1 (id=1499): mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/apparmor/parameters/path_max\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)=""/17, 0x11) shmctl$auto_SHM_STAT_ANY(0x80, 0xf, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x1, 0x0) socket(0x23, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0xa, 0x2, 0x88) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r2, @new_prog_fd=0x4, 0x4, @old_map_fd=0x3ff}, 0xa3) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) 749.554647ms ago: executing program 3 (id=1500): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/interrupts\x00', 0x18b202, 0x0) setfsuid$auto(0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r1, 0x4b32, 0x9) pread64$auto(r0, 0x0, 0x1, 0x2000100) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000040)='/dev/binderfs/binder0\x00', 0x2200, 0x0) r2 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x0, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ttyS2\x00', 0x101e81, 0x0) writev$auto(r3, &(0x7f0000000080)={&(0x7f0000000000)="286d6175a30b45199cebab7863321699281750fb47c47eb256dd85bfc92e479f0ac49676c98eae2490", 0x200}, 0x3) ioctl$auto_BINDER_WRITE_READ(r2, 0xc0306201, 0x0) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="01002dd57000fcdbdf257e003f00"], 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0) sendmsg$auto_NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x2e8, r4, 0x8, 0x70bd2b, 0x25dfdbff, {}, [@NL80211_ATTR_WIPHY={0x8}, @NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}, @NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0x2}, @NL80211_ATTR_BSS_BASIC_RATES={0x16, 0x24, "e66f24f69fce1f788600d114e41dcbbf4f78"}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x6}, @NL80211_ATTR_BSS_SELECT={0x296, 0xe3, 0x0, 0x1, [@generic="b0b692289ee0fbb871931ccf2237efa2895ea0176b14600fa3b8f703e311caac418fa006ae6d8c79d06b04691419e83ebc9c6cbc1f2a463ed0bfacf2cacbef1d567e1d3817bbeeef2d626089b560337c0971ff300798d2a243cc0251963f187d94068f121f3f0c01132bca8674f0b02fe97e8fc1fee276f8169cd3c0d80393d17ecdb9748d2b1b62f016cedac344070413211631cfb8a467ee93ebc736780ae0d94fc08c64972cfedf9aee0ee0857884f3c701a65c2407dda8ee4e474c3dcd7982", @generic="3c58783773e908a92507cc82a598da7507192917b5bcc2be1dcc966051782466abac09b529ba69fe52e64d3cc9a61fe566eb215b93667a4876c2caff5e7d01d842a3a2ee822adeae2463ae9d0bab6b3fe582a3b33b8cdf180d33c80ca2bf4e08c27ca64a2aa3cb68c7f811030b", @typed={0x4, 0x98}, @nested={0xf3, 0x11c, 0x0, 0x1, [@generic="2bc4621538d78e519d217676135c6a8dd0210b09d62e8ead9f2a97d515a6c70d98d8f7fd664b8e028d7dbd07a522b54293fcfc9603d86d9e8dd5e7b5ffab4d8f4f105d1b1cbfe98e41396566d534ffee9173f1b9872b78759dea04725a0d5c0b2eaa0fe62d0ae61dff887db98af452523b5e77c2ae6969df49e1634d7de3da1b405750506bdee573074c9cdfded8393a12a1714c0956c388fc7d386cfc3e46b769acee651947318baa90d3212a505273ce627c7adff34e897ef2035096", @typed={0x8, 0xd8, 0x0, 0x0, @fd=r0}, @generic="5144d7c1a9e85b499b7df7b09b65cb94cde890213ae1338262156e20429988407f12d51f758031ba3259"]}, @nested={0x8, 0xb8, 0x0, 0x1, [@nested={0x4, 0x127}]}, @typed={0x14, 0x14b, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0xe}}, @generic="57229bb82670734f2779fdacd3d807d2f882261cbf0bf3fe2f69b9b52e1eab6f4c81da80cb9a6be5cd2d9633d8aed8bba39aee1c35687cf8037322c11ffd1bb869ed56089a26d9a0343a22066d16e831"]}, @NL80211_ATTR_TWT_RESPONDER={0x4}]}, 0x2e8}, 0x1, 0x0, 0x0, 0x40000}, 0x4000080) 226.814578ms ago: executing program 2 (id=1501): process_madvise$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, 0x0, 0x2, 0x3, 0x0) 92.85678ms ago: executing program 0 (id=1502): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x1, 0x0, 0x80000000) timer_create$auto(0x2, 0x0, &(0x7f0000000140)=0x5) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), r0) sendmsg$auto_ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000003180)={0x14, r1, 0x737, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x6000091}, 0x0) clock_nanosleep$auto(0x2, 0x200, &(0x7f0000000000)={0x0, 0x7}, 0x0) timer_settime$auto(0x0, 0xffff8000, &(0x7f00000000c0)={{0xf, 0x10007}, {0x9}}, 0x0) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0) madvise$auto(0x0, 0xffffffffffff0004, 0x19) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r2 = socket(0x25, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r3 = socket(0x2, 0x1, 0x84) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000080)={{&(0x7f0000000040), 0x1c, &(0x7f00000000c0)={0x0, 0x1a004}, 0x7, 0x0, 0x0, 0xb}, 0xfff}, 0x5, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) sendmsg$auto_OVS_DP_CMD_NEW(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f00000000c0)=ANY=[@ANYBLOB="cdf8d2b1", @ANYRES16=r5, @ANYBLOB="01002bbd7000ffdbdf2501000000080005000c000000080005000600000008000200", @ANYRES32=0x0, @ANYBLOB="070001002e5e0000"], 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x2000000) sendmsg$auto_OVS_DP_CMD_DEL(r3, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400100}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c007501", @ANYRES16=r5, @ANYBLOB="00012bbd7000fcdbdf250200000008000900", @ANYRES32=0x0, @ANYBLOB="080001005d2e5d0008000700b8f9022d"], 0x2c}, 0x1, 0x0, 0x0, 0x26040010}, 0x40040) setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x2, 0x0) open$dir(0x0, 0xb41, 0x1) 78.87745ms ago: executing program 1 (id=1503): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40002, 0x300) (async) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) (async) mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) (async) ioctl$auto_TCFLSH2(r0, 0x5453, 0x0) (async) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0) (async) mmap$auto(0x0, 0x4020009, 0x9, 0x19, 0xffffffffffffffff, 0x8000) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) select$auto(0xc, 0x0, 0x0, 0x0, 0x0) (async) mq_open$auto(0x0, 0x400056a, 0x9, 0x0) (async) close_range$auto(0x2, 0xa, 0x0) (async) r4 = socket(0xa, 0x2, 0x73) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r6, @ANYRES32=r3, @ANYRES32=r4], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080) close_range$auto(0x2, 0x8, 0x0) (async) socket(0x15, 0x800, 0x81) (async) prctl$auto_PR_SET_MM_START_STACK(0x5, 0x5, 0xffffffffffffffff, 0x2, 0x2) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) (async) write$auto_mousedev_fops_mousedev(0xffffffffffffffff, 0x0, 0x0) (async) poll$auto(&(0x7f0000000d40)={0x3, 0x1, 0xa}, 0x5, 0x400) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) prctl$auto(0x10000000024, 0x2, 0x2008, 0x4000000c, 0x80001) getrandom$auto(0x0, 0x6000000, 0x3) 29.579612ms ago: executing program 3 (id=1504): r0 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/filter\x00', 0x2, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000000)='\x14\xf4\xb6\xc6\x97\xdb\x18B\f\xef\x1dQZ\xa66\xe7\x06\\\xe0)+\x86\xa7\x9bv\xe1\x18\xf5\x83\b\x11\x19\xdd\x1c', 0x7e) write$auto_ftrace_event_filter_fops_trace_events(r0, 0x0, 0x0) munmap$auto(0x200000008000, 0xffffffff) r1 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) ioctl$auto_RNDADDENTROPY2(r1, 0x40085203, &(0x7f0000000440)=[0xfff, 0xedc0]) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = open(&(0x7f0000000100)='.\x00', 0x381800, 0x408) getdents$auto(r2, 0x0, 0x40) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), r3) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) socket(0x3, 0x3, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000005, 0x7, 0x1, 0x9, 0x1]}, 0x0) write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x28800, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sg0\x00', 0x40200, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) mmap$auto(0xfffffffffffffff9, 0x400006, 0xdf, 0x9b72, 0x2, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x1, 0x1021, 0x0, 0xd) close_range$auto(0x2, r4, 0x100000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace\x00', 0x1a6b75d638828712, 0x0) 0s ago: executing program 2 (id=1505): r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000040)='/dev/binderfs/binder0\x00', 0x2200, 0x0) setsockopt$auto_SO_DEBUG(r0, 0x1e576, 0x1, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x6) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dri/card0\x00', 0x404080, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x22000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001100)=""/4106, 0x100a) write$auto(0x1, 0x0, 0x80000000) mmap$auto(0x100000000, 0xfffffffffffffffe, 0x1, 0x9b72, 0x2, 0x8000) rt_sigaction$auto(0x1, &(0x7f00000001c0)={&(0x7f0000000080)=0x0, 0x7fffffffffffffff, 0x0, {0x5}}, 0x0, 0x8) rt_sigaction$auto(0x5, &(0x7f0000000140)={&(0x7f0000000040)=0x0, 0x9, 0x0, {0x81}}, 0x0, 0x8) ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=0x0) bind$auto(r1, &(0x7f0000000080)=@nfc={0x27, r2, 0x0, 0x5}, 0x8) r3 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0) epoll_create$auto(0xfffffff9) read$auto_l2cap_debugfs_fops_(r3, &(0x7f0000000240)=""/170, 0xaa) rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) r4 = gettid() r5 = getpid() rt_tgsigqueueinfo$auto(r5, r4, 0x1, 0x0) rt_sigsuspend$auto(0x0, 0x8) mmap$auto(0x0, 0x2000b, 0xdd, 0x40eb1, 0x401, 0x8000) ioctl$auto_BINDER_WRITE_READ(r0, 0xc0306201, 0x0) kernel console output (not intermixed with test programs): > [ 326.267976][ T8581] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input86 [ 326.850733][ T8583] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input87 [ 327.588316][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 327.597475][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 328.272173][ T8599] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input88 [ 329.719969][ T8604] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input89 [ 329.960685][ T8617] FAULT_INJECTION: forcing a failure. [ 329.960685][ T8617] name fail_futex, interval 1, probability 0, space 0, times 0 [ 330.002765][ T8617] CPU: 1 UID: 0 PID: 8617 Comm: syz.0.621 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 330.002812][ T8617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 330.002831][ T8617] Call Trace: [ 330.002842][ T8617] [ 330.002854][ T8617] dump_stack_lvl+0x16c/0x1f0 [ 330.002900][ T8617] should_fail_ex+0x512/0x640 [ 330.002940][ T8617] get_futex_key+0x1d0/0x1540 [ 330.002981][ T8617] ? find_held_lock+0x2b/0x80 [ 330.003021][ T8617] ? __pfx_get_futex_key+0x10/0x10 [ 330.003061][ T8617] ? __mutex_trylock_common+0xe9/0x250 [ 330.003115][ T8617] futex_wake+0xea/0x530 [ 330.003166][ T8617] ? __pfx_futex_wake+0x10/0x10 [ 330.003210][ T8617] ? __lock_acquire+0xb8a/0x1c90 [ 330.003271][ T8617] do_futex+0x1e3/0x350 [ 330.003312][ T8617] ? __pfx_do_futex+0x10/0x10 [ 330.003350][ T8617] ? __might_fault+0xe3/0x190 [ 330.003401][ T8617] mm_release+0x24e/0x300 [ 330.003438][ T8617] do_exit+0x68e/0x2bf0 [ 330.003490][ T8617] ? __pfx_do_exit+0x10/0x10 [ 330.003533][ T8617] ? do_raw_spin_lock+0x12c/0x2b0 [ 330.003581][ T8617] ? find_held_lock+0x2b/0x80 [ 330.003619][ T8617] do_group_exit+0xd3/0x2a0 [ 330.003667][ T8617] get_signal+0x2673/0x26d0 [ 330.003708][ T8617] ? kmem_cache_free+0x2d1/0x4d0 [ 330.003750][ T8617] ? find_held_lock+0x2b/0x80 [ 330.003782][ T8617] ? do_sys_openat2+0x1b0/0x1d0 [ 330.003819][ T8617] ? __pfx_get_signal+0x10/0x10 [ 330.003852][ T8617] ? do_futex+0x122/0x350 [ 330.003891][ T8617] ? __pfx_do_futex+0x10/0x10 [ 330.003932][ T8617] arch_do_signal_or_restart+0x8f/0x790 [ 330.003973][ T8617] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 330.004047][ T8617] exit_to_user_mode_loop+0x84/0x110 [ 330.004097][ T8617] do_syscall_64+0x3f6/0x490 [ 330.004140][ T8617] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 330.004172][ T8617] RIP: 0033:0x7fecb8f8e9a9 [ 330.004198][ T8617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 330.004228][ T8617] RSP: 002b:00007fecb9dc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 330.004257][ T8617] RAX: fffffffffffffe00 RBX: 00007fecb91b5fa8 RCX: 00007fecb8f8e9a9 [ 330.004278][ T8617] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fecb91b5fa8 [ 330.004297][ T8617] RBP: 00007fecb91b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 330.004316][ T8617] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fecb91b5fac [ 330.004335][ T8617] R13: 0000000000000000 R14: 00007fff3c304760 R15: 00007fff3c304848 [ 330.004376][ T8617] [ 333.420025][ T8658] FAULT_INJECTION: forcing a failure. [ 333.420025][ T8658] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 333.465958][ T8658] CPU: 1 UID: 0 PID: 8658 Comm: syz.0.629 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 333.466004][ T8658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 333.466023][ T8658] Call Trace: [ 333.466033][ T8658] [ 333.466045][ T8658] dump_stack_lvl+0x16c/0x1f0 [ 333.466091][ T8658] should_fail_ex+0x512/0x640 [ 333.466131][ T8658] _copy_from_user+0x2e/0xd0 [ 333.466174][ T8658] binder_ioctl+0x57a/0x7380 [ 333.466230][ T8658] ? tomoyo_path_number_perm+0x295/0x580 [ 333.466274][ T8658] ? tomoyo_path_number_perm+0x18d/0x580 [ 333.466314][ T8658] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 333.466353][ T8658] ? find_held_lock+0x2b/0x80 [ 333.466386][ T8658] ? __pfx_binder_ioctl+0x10/0x10 [ 333.466439][ T8658] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 333.466493][ T8658] ? do_vfs_ioctl+0x128/0x14f0 [ 333.466527][ T8658] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 333.466575][ T8658] ? hook_file_ioctl_common+0x145/0x410 [ 333.466625][ T8658] ? __fget_files+0x20e/0x3c0 [ 333.466665][ T8658] ? __pfx_binder_ioctl+0x10/0x10 [ 333.466709][ T8658] __x64_sys_ioctl+0x18e/0x210 [ 333.466740][ T8658] do_syscall_64+0xcd/0x490 [ 333.466780][ T8658] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 333.466813][ T8658] RIP: 0033:0x7fecb8f8e9a9 [ 333.466838][ T8658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 333.466868][ T8658] RSP: 002b:00007fecb9dc3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 333.466898][ T8658] RAX: ffffffffffffffda RBX: 00007fecb91b5fa0 RCX: 00007fecb8f8e9a9 [ 333.466919][ T8658] RDX: 0000200000000080 RSI: 00000000c0306201 RDI: 0000000000000003 [ 333.466939][ T8658] RBP: 00007fecb9dc3090 R08: 0000000000000000 R09: 0000000000000000 [ 333.466958][ T8658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 333.466976][ T8658] R13: 0000000000000000 R14: 00007fecb91b5fa0 R15: 00007fff3c304848 [ 333.467017][ T8658] [ 333.471224][ T8658] binder: 8657:8658 ioctl c0306201 200000000080 returned -14 [ 335.117681][ T8682] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input90 [ 335.859007][ T8685] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input91 [ 337.500363][ T8678] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 337.904584][ T8720] sp0: Synchronizing with TNC [ 338.757452][ T8737] [U] - [ 338.763146][ T8737] [U] [ 338.790990][ T8737] [U] ֊s.-o^yQ)l)+ [ 338.807019][ T8737] [U] ʙ3v`- BHRG=xKCm֣aaK6dsT!>Q"3 [ 338.921244][ T8737] [U] wD#cV.|RΤcL3eȋK [ 339.000249][ T8741] FAULT_INJECTION: forcing a failure. [ 339.000249][ T8741] name fail_futex, interval 1, probability 0, space 0, times 0 [ 339.039554][ T8741] CPU: 0 UID: 0 PID: 8741 Comm: syz.3.648 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 339.039601][ T8741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 339.039620][ T8741] Call Trace: [ 339.039631][ T8741] [ 339.039643][ T8741] dump_stack_lvl+0x16c/0x1f0 [ 339.039690][ T8741] should_fail_ex+0x512/0x640 [ 339.039732][ T8741] get_futex_key+0x1d0/0x1540 [ 339.039778][ T8741] ? __pfx_get_futex_key+0x10/0x10 [ 339.039817][ T8741] ? futex_private_hash_put+0x176/0x300 [ 339.039859][ T8741] ? __lock_acquire+0x622/0x1c90 [ 339.039909][ T8741] futex_wake+0xea/0x530 [ 339.039955][ T8741] ? futex_wait+0x120/0x380 [ 339.040009][ T8741] ? __pfx_futex_wake+0x10/0x10 [ 339.040065][ T8741] ? __fget_files+0x204/0x3c0 [ 339.040115][ T8741] do_futex+0x1e3/0x350 [ 339.040158][ T8741] ? __pfx_do_futex+0x10/0x10 [ 339.040199][ T8741] ? fdget+0x187/0x210 [ 339.040238][ T8741] ? __sys_sendmsg+0x18c/0x220 [ 339.040285][ T8741] __x64_sys_futex+0x1e0/0x4c0 [ 339.040334][ T8741] ? __pfx___x64_sys_futex+0x10/0x10 [ 339.040395][ T8741] do_syscall_64+0xcd/0x490 [ 339.040441][ T8741] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 339.040475][ T8741] RIP: 0033:0x7f03a6f8e9a9 [ 339.040507][ T8741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 339.040540][ T8741] RSP: 002b:00007f03a7e6e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 339.040570][ T8741] RAX: ffffffffffffffda RBX: 00007f03a71b5fa8 RCX: 00007f03a6f8e9a9 [ 339.040592][ T8741] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f03a71b5fac [ 339.040613][ T8741] RBP: 00007f03a71b5fa0 R08: 00007f03a7e6f000 R09: 0000000000000000 [ 339.040634][ T8741] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f03a71b5fac [ 339.040655][ T8741] R13: 0000000000000000 R14: 00007ffe2b657da0 R15: 00007ffe2b657e88 [ 339.040697][ T8741] [ 339.113732][ T8744] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 339.988254][ T8753] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 341.505364][ T8774] FAULT_INJECTION: forcing a failure. [ 341.505364][ T8774] name failslab, interval 1, probability 0, space 0, times 0 [ 341.552679][ T8774] CPU: 1 UID: 0 PID: 8774 Comm: syz.3.655 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 341.552724][ T8774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 341.552744][ T8774] Call Trace: [ 341.552754][ T8774] [ 341.552766][ T8774] dump_stack_lvl+0x16c/0x1f0 [ 341.552812][ T8774] should_fail_ex+0x512/0x640 [ 341.552844][ T8774] ? __kvmalloc_node_noprof+0x124/0x620 [ 341.552890][ T8774] should_failslab+0xc2/0x120 [ 341.552940][ T8774] __kvmalloc_node_noprof+0x137/0x620 [ 341.552984][ T8774] ? seq_read_iter+0x826/0x12c0 [ 341.553017][ T8774] ? __lock_acquire+0xb8a/0x1c90 [ 341.553066][ T8774] ? seq_read_iter+0x826/0x12c0 [ 341.553110][ T8774] seq_read_iter+0x826/0x12c0 [ 341.553149][ T8774] ? __mutex_trylock_common+0xe9/0x250 [ 341.553206][ T8774] kernfs_fop_read_iter+0x40f/0x5a0 [ 341.553241][ T8774] ? rw_verify_area+0xcf/0x680 [ 341.553282][ T8774] vfs_read+0x8bc/0xc60 [ 341.553328][ T8774] ? __pfx___mutex_lock+0x10/0x10 [ 341.553371][ T8774] ? __pfx_vfs_read+0x10/0x10 [ 341.553439][ T8774] ksys_read+0x12a/0x250 [ 341.553478][ T8774] ? __pfx_ksys_read+0x10/0x10 [ 341.553530][ T8774] do_syscall_64+0xcd/0x490 [ 341.553574][ T8774] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 341.553606][ T8774] RIP: 0033:0x7f03a6f8e9a9 [ 341.553637][ T8774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 341.553665][ T8774] RSP: 002b:00007f03a7e4d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 341.553694][ T8774] RAX: ffffffffffffffda RBX: 00007f03a71b6080 RCX: 00007f03a6f8e9a9 [ 341.553714][ T8774] RDX: 0000000000000011 RSI: 00002000000000c0 RDI: 0000000000000005 [ 341.553732][ T8774] RBP: 00007f03a7e4d090 R08: 0000000000000000 R09: 0000000000000000 [ 341.553750][ T8774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 341.553768][ T8774] R13: 0000000000000000 R14: 00007f03a71b6080 R15: 00007ffe2b657e88 [ 341.553809][ T8774] [ 342.229136][ T8770] zswap: compressor not available [ 342.305914][ T8784] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 342.343882][ T8785] netlink: 28 bytes leftover after parsing attributes in process `syz.2.658'. [ 342.353113][ T8785] ipvlan0: entered allmulticast mode [ 342.358505][ T8785] veth0_vlan: entered allmulticast mode [ 342.410936][ T8787] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 342.525162][ T8784] svc: failed to register nfsdv3 RPC service (errno 111). [ 342.567179][ T8784] svc: failed to register nfsaclv3 RPC service (errno 111). [ 343.779396][ T8804] vmstat_refresh: nr_hugetlb -27136 [ 345.370793][ T8830] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 345.842247][ T8839] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input92 [ 346.205505][ T8797] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 347.501160][ T8867] blktrace: Concurrent blktraces are not allowed on loop2 [ 347.542502][ T8867] vmstat_refresh: nr_hugetlb -27136 [ 348.081922][ T8868] netlink: 20 bytes leftover after parsing attributes in process `syz.1.674'. [ 348.124100][ T8868] mac80211_hwsim hwsim3 wlan1: entered promiscuous mode [ 348.131766][ T8868] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode [ 348.192649][ T8877] [U] - [ 348.198026][ T8877] [U] [ 348.201298][ T8877] [U] ֊s.-o^yQ)l)+ [ 348.210173][ T8877] [U] ʙ3v`- BHRG=xKCm֣aaK6dsT!>Q"3 [ 348.272581][ T8877] [U] wD#cV.|RΤcL3eȋK7W}* [ 348.847280][ T8886] FAULT_INJECTION: forcing a failure. [ 348.847280][ T8886] name failslab, interval 1, probability 0, space 0, times 0 [ 348.863949][ T8886] CPU: 1 UID: 0 PID: 8886 Comm: syz.1.682 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 348.863996][ T8886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 348.864016][ T8886] Call Trace: [ 348.864027][ T8886] [ 348.864039][ T8886] dump_stack_lvl+0x16c/0x1f0 [ 348.864087][ T8886] should_fail_ex+0x512/0x640 [ 348.864121][ T8886] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 348.864173][ T8886] should_failslab+0xc2/0x120 [ 348.864224][ T8886] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 348.864273][ T8886] ? sock_alloc_inode+0x25/0x1c0 [ 348.864328][ T8886] ? __pfx_sock_alloc_inode+0x10/0x10 [ 348.864374][ T8886] sock_alloc_inode+0x25/0x1c0 [ 348.864421][ T8886] alloc_inode+0x64/0x240 [ 348.864475][ T8886] sock_alloc+0x40/0x280 [ 348.864521][ T8886] sock_create_lite+0x82/0x120 [ 348.864571][ T8886] __netlink_kernel_create+0xbd/0x750 [ 348.864612][ T8886] ? trace_kmalloc+0x2b/0xd0 [ 348.864650][ T8886] ? __kvmalloc_node_noprof+0x298/0x620 [ 348.864694][ T8886] ? __pfx___netlink_kernel_create+0x10/0x10 [ 348.864732][ T8886] ? fib4_semantics_init+0x25/0x100 [ 348.864776][ T8886] fib_net_init+0x26d/0x3f0 [ 348.864819][ T8886] ? __pfx___register_sysctl_table+0x10/0x10 [ 348.864876][ T8886] ? __pfx_fib_net_init+0x10/0x10 [ 348.864922][ T8886] ? lockdep_init_map_type+0x5c/0x280 [ 348.864970][ T8886] ? __pfx_nl_fib_input+0x10/0x10 [ 348.865022][ T8886] ? devinet_init_net+0x5c2/0x910 [ 348.865073][ T8886] ? __pfx_fib_net_init+0x10/0x10 [ 348.865117][ T8886] ops_init+0x1e2/0x5f0 [ 348.865166][ T8886] setup_net+0x10f/0x380 [ 348.865206][ T8886] ? lockdep_init_map_type+0x5c/0x280 [ 348.865254][ T8886] ? __pfx_setup_net+0x10/0x10 [ 348.865300][ T8886] ? debug_mutex_init+0x37/0x70 [ 348.865337][ T8886] copy_net_ns+0x2a6/0x5f0 [ 348.865389][ T8886] create_new_namespaces+0x3ea/0xa90 [ 348.865436][ T8886] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 348.865479][ T8886] ksys_unshare+0x45b/0xa40 [ 348.865526][ T8886] ? __pfx_ksys_unshare+0x10/0x10 [ 348.865574][ T8886] ? xfd_validate_state+0x61/0x180 [ 348.865644][ T8886] __x64_sys_unshare+0x31/0x40 [ 348.865691][ T8886] do_syscall_64+0xcd/0x490 [ 348.865737][ T8886] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 348.865771][ T8886] RIP: 0033:0x7f20d398e9a9 [ 348.865798][ T8886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 348.865833][ T8886] RSP: 002b:00007f20d4828038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 348.865866][ T8886] RAX: ffffffffffffffda RBX: 00007f20d3bb5fa0 RCX: 00007f20d398e9a9 [ 348.865889][ T8886] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 348.865910][ T8886] RBP: 00007f20d3a10d69 R08: 0000000000000000 R09: 0000000000000000 [ 348.865930][ T8886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 348.865950][ T8886] R13: 0000000000000000 R14: 00007f20d3bb5fa0 R15: 00007ffe35b8c958 [ 348.865994][ T8886] [ 349.163054][ C1] vkms_vblank_simulate: vblank timer overrun [ 349.308906][ T8864] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 349.768730][ T8895] binder: 8892:8895 ioctl c0306201 0 returned -14 [ 350.465937][ T8893] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 350.472247][ T8893] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 350.479061][ T8893] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 350.485626][ T8893] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 351.772941][ T8887] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 351.904559][ T5983] Bluetooth: hci0: command 0x0c1a tx timeout [ 352.549126][ T5983] Bluetooth: hci1: command 0x0c1a tx timeout [ 352.562480][ T6028] Bluetooth: hci3: command 0x0c1a tx timeout [ 352.572777][ T6028] Bluetooth: hci2: command 0x0c1a tx timeout [ 353.428629][ T8948] ubi0: attaching mtd0 [ 353.439225][ T8942] random: crng reseeded on system resumption [ 353.629666][ T8948] ubi0: scanning is finished [ 353.724587][ T8948] ubi0 warning: ubi_read_volume_table: volume table copy #1 is corrupted [ 353.733321][ T8948] ubi0: volume table was restored [ 354.155395][ T8948] ubi0 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt0d", error -4 [ 354.713918][ T8949] capability: warning: `syz.0.696' uses 32-bit capabilities (legacy support in use) [ 355.641727][ T8978] ======================================================= [ 355.641727][ T8978] WARNING: The mand mount option has been deprecated and [ 355.641727][ T8978] and is ignored by this kernel. Remove the mand [ 355.641727][ T8978] option from the mount to silence this warning. [ 355.641727][ T8978] ======================================================= [ 355.676854][ C1] vkms_vblank_simulate: vblank timer overrun [ 356.360216][ T8984] [U] - [ 356.363053][ T8984] [U] [ 356.375766][ T8984] [U] ֊s.-o^yQ)l)+ [ 356.507220][ T8984] [U] ʙ3v`- BHRG=xKCm֣aaK6dsT!>Q"3 [ 356.662159][ T8984] [U] wD#cV.|RΤcL3eȋK7W}* [ 357.216722][ T8993] sp0: Synchronizing with TNC [ 357.306347][ T8966] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 360.685691][ T9067] FAULT_INJECTION: forcing a failure. [ 360.685691][ T9067] name failslab, interval 1, probability 0, space 0, times 0 [ 360.706103][ T9067] CPU: 1 UID: 0 PID: 9067 Comm: syz.1.723 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 360.706153][ T9067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 360.706174][ T9067] Call Trace: [ 360.706185][ T9067] [ 360.706198][ T9067] dump_stack_lvl+0x16c/0x1f0 [ 360.706247][ T9067] should_fail_ex+0x512/0x640 [ 360.706282][ T9067] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 360.706331][ T9067] should_failslab+0xc2/0x120 [ 360.706384][ T9067] __kmalloc_cache_noprof+0x6a/0x3e0 [ 360.706427][ T9067] ? alloc_tty_struct+0x96/0x8c0 [ 360.706470][ T9067] alloc_tty_struct+0x96/0x8c0 [ 360.706508][ T9067] ? __pfx_alloc_tty_struct+0x10/0x10 [ 360.706557][ T9067] pty_common_install+0x1c7/0xb30 [ 360.706611][ T9067] ? __pfx_pty_install+0x10/0x10 [ 360.706659][ T9067] tty_init_dev.part.0+0x99/0x500 [ 360.706697][ T9067] tty_open+0xa50/0xf90 [ 360.706738][ T9067] ? __pfx_tty_open+0x10/0x10 [ 360.706773][ T9067] ? chrdev_open+0x10b/0x6a0 [ 360.706827][ T9067] ? __pfx_tty_open+0x10/0x10 [ 360.706860][ T9067] chrdev_open+0x234/0x6a0 [ 360.706907][ T9067] ? __pfx_apparmor_file_open+0x10/0x10 [ 360.706957][ T9067] ? __pfx_chrdev_open+0x10/0x10 [ 360.707010][ T9067] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 360.707063][ T9067] do_dentry_open+0x744/0x1c10 [ 360.707111][ T9067] ? __pfx_chrdev_open+0x10/0x10 [ 360.707167][ T9067] vfs_open+0x82/0x3f0 [ 360.707204][ T9067] path_openat+0x1de4/0x2cb0 [ 360.707260][ T9067] ? __pfx_path_openat+0x10/0x10 [ 360.707308][ T9067] ? __lock_acquire+0xb8a/0x1c90 [ 360.707356][ T9067] do_filp_open+0x20b/0x470 [ 360.707402][ T9067] ? __pfx_do_filp_open+0x10/0x10 [ 360.707477][ T9067] ? alloc_fd+0x471/0x7d0 [ 360.707529][ T9067] do_sys_openat2+0x11b/0x1d0 [ 360.707562][ T9067] ? __pfx_do_sys_openat2+0x10/0x10 [ 360.707613][ T9067] __x64_sys_openat+0x174/0x210 [ 360.707647][ T9067] ? __pfx___x64_sys_openat+0x10/0x10 [ 360.707699][ T9067] do_syscall_64+0xcd/0x490 [ 360.707746][ T9067] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 360.707780][ T9067] RIP: 0033:0x7f20d398e9a9 [ 360.707806][ T9067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 360.707839][ T9067] RSP: 002b:00007f20d4828038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 360.707871][ T9067] RAX: ffffffffffffffda RBX: 00007f20d3bb5fa0 RCX: 00007f20d398e9a9 [ 360.707893][ T9067] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 360.707914][ T9067] RBP: 00007f20d3a10d69 R08: 0000000000000000 R09: 0000000000000000 [ 360.707944][ T9067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 360.707965][ T9067] R13: 0000000000000000 R14: 00007f20d3bb5fa0 R15: 00007ffe35b8c958 [ 360.708009][ T9067] [ 361.357935][ T9072] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input93 [ 362.382098][ T9091] Debayer A: ================= START STATUS ================= [ 362.390401][ T9091] Debayer A: Debayer Mean Window Size: 3 [ 362.402447][ T9091] Debayer A: ================== END STATUS ================== [ 363.990314][ T9105] binder: binder_mmap: 9099 0-811000 bad vm_flags failed -1 [ 364.967649][ T9130] FAULT_INJECTION: forcing a failure. [ 364.967649][ T9130] name fail_futex, interval 1, probability 0, space 0, times 0 [ 364.984066][ T9130] CPU: 1 UID: 0 PID: 9130 Comm: syz.0.738 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 364.984116][ T9130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 364.984139][ T9130] Call Trace: [ 364.984150][ T9130] [ 364.984163][ T9130] dump_stack_lvl+0x16c/0x1f0 [ 364.984211][ T9130] should_fail_ex+0x512/0x640 [ 364.984255][ T9130] get_futex_key+0x1d0/0x1540 [ 364.984303][ T9130] ? __pfx_get_futex_key+0x10/0x10 [ 364.984344][ T9130] ? trace_pid_list_is_set+0xfb/0x150 [ 364.984392][ T9130] ? do_raw_spin_unlock+0x172/0x230 [ 364.984453][ T9130] futex_wait_setup+0x9d/0x550 [ 364.984518][ T9130] __futex_wait+0x194/0x2f0 [ 364.984570][ T9130] ? __pfx___futex_wait+0x10/0x10 [ 364.984620][ T9130] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 364.984664][ T9130] ? __pfx_futex_wake_mark+0x10/0x10 [ 364.984743][ T9130] ? futex_private_hash_put+0x176/0x300 [ 364.984791][ T9130] ? futex_private_hash_put+0x18a/0x300 [ 364.984835][ T9130] futex_wait+0xe8/0x380 [ 364.984886][ T9130] ? __pfx_futex_wait+0x10/0x10 [ 364.984945][ T9130] ? kmem_cache_free+0x2d1/0x4d0 [ 364.984989][ T9130] ? fd_install+0x225/0x750 [ 364.985025][ T9130] ? putname+0x154/0x1a0 [ 364.985082][ T9130] do_futex+0x229/0x350 [ 364.985126][ T9130] ? __pfx_do_futex+0x10/0x10 [ 364.985179][ T9130] __x64_sys_futex+0x1e0/0x4c0 [ 364.985226][ T9130] ? __x64_sys_openat+0x174/0x210 [ 364.985261][ T9130] ? __pfx___x64_sys_futex+0x10/0x10 [ 364.985305][ T9130] ? xfd_validate_state+0x61/0x180 [ 364.985368][ T9130] do_syscall_64+0xcd/0x490 [ 364.985415][ T9130] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.985452][ T9130] RIP: 0033:0x7fecb8f8e9a9 [ 364.985480][ T9130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 364.985514][ T9130] RSP: 002b:00007fecb9dc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 364.985548][ T9130] RAX: ffffffffffffffda RBX: 00007fecb91b5fa8 RCX: 00007fecb8f8e9a9 [ 364.985572][ T9130] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fecb91b5fa8 [ 364.985592][ T9130] RBP: 00007fecb91b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 364.985613][ T9130] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fecb91b5fac [ 364.985634][ T9130] R13: 0000000000000000 R14: 00007fff3c304760 R15: 00007fff3c304848 [ 364.985689][ T9130] [ 365.236456][ C1] vkms_vblank_simulate: vblank timer overrun [ 365.741554][ T9138] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input94 [ 365.824077][ T9140] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input95 [ 365.961639][ T9108] delete_channel: no stack [ 366.610958][ T9113] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 367.029007][ T9161] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input96 [ 367.045761][ T9154] netlink: 342 bytes leftover after parsing attributes in process `syz.1.744'. [ 367.114457][ T9154] netlink: 274 bytes leftover after parsing attributes in process `syz.1.744'. [ 367.350520][ T9163] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input97 [ 368.014728][ T9172] [U] - [ 368.014788][ T9172] [U] [ 368.014816][ T9172] [U] ֊s.-o^yQ)l)+ [ 368.014885][ T9172] [U] ʙ3v`- BHRG=xKCm֣aaK6dsT!>Q"3 [ 368.091718][ T9170] [U] wD#cV.|RΤcL3eȋK7W}*Yƨ [ 368.290369][ T9169] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input98 [ 368.638364][ T9174] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input99 [ 368.769316][ T9152] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 371.033357][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88805b0ea000: 0x00000: (2) System resources were needed for another task so this connection managed session was terminated. [ 371.708341][ T9236] netlink: 326 bytes leftover after parsing attributes in process `syz.0.764'. [ 373.511422][ T9260] 0x000200000001-0xa29656a63616329 : "" [ 373.518210][ T9260] mtd: partition "" is out of reach -- disabled [ 373.701206][ T9260] ftl_cs: FTL header not found. [ 374.784547][ T9280] [U] - [ 374.787379][ T9280] [U] ֊s.-o^yQ)l)+ [ 374.844454][ T9280] [U] ʙ3v`- BHRG=xKCm֣aaK6dsT!>Q"3 [ 374.999865][ T9280] [U] wD#cV.|RΤcL3eȋK7W}*Yƨ [ 375.308080][ T9288] FAULT_INJECTION: forcing a failure. [ 375.308080][ T9288] name failslab, interval 1, probability 0, space 0, times 0 [ 375.356660][ T9294] binder: 9292:9294 ioctl c0306201 0 returned -14 [ 375.379202][ T9288] CPU: 1 UID: 0 PID: 9288 Comm: syz.2.777 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 375.379253][ T9288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 375.379274][ T9288] Call Trace: [ 375.379285][ T9288] [ 375.379305][ T9288] dump_stack_lvl+0x16c/0x1f0 [ 375.379355][ T9288] should_fail_ex+0x512/0x640 [ 375.379390][ T9288] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 375.379438][ T9288] should_failslab+0xc2/0x120 [ 375.379491][ T9288] __kmalloc_cache_noprof+0x6a/0x3e0 [ 375.379533][ T9288] ? pty_common_install+0x10e/0xb30 [ 375.379589][ T9288] pty_common_install+0x10e/0xb30 [ 375.379643][ T9288] ? __pfx_pty_install+0x10/0x10 [ 375.379693][ T9288] tty_init_dev.part.0+0x99/0x500 [ 375.379731][ T9288] tty_open+0xa50/0xf90 [ 375.379774][ T9288] ? __pfx_tty_open+0x10/0x10 [ 375.379809][ T9288] ? chrdev_open+0x10b/0x6a0 [ 375.379863][ T9288] ? __pfx_tty_open+0x10/0x10 [ 375.379897][ T9288] chrdev_open+0x234/0x6a0 [ 375.379944][ T9288] ? __pfx_apparmor_file_open+0x10/0x10 [ 375.380017][ T9288] ? __pfx_chrdev_open+0x10/0x10 [ 375.380072][ T9288] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 375.380126][ T9288] do_dentry_open+0x744/0x1c10 [ 375.380174][ T9288] ? __pfx_chrdev_open+0x10/0x10 [ 375.380236][ T9288] vfs_open+0x82/0x3f0 [ 375.380274][ T9288] path_openat+0x1de4/0x2cb0 [ 375.380341][ T9288] ? __pfx_path_openat+0x10/0x10 [ 375.380390][ T9288] ? __lock_acquire+0xb8a/0x1c90 [ 375.380441][ T9288] do_filp_open+0x20b/0x470 [ 375.380488][ T9288] ? __pfx_do_filp_open+0x10/0x10 [ 375.380565][ T9288] ? alloc_fd+0x471/0x7d0 [ 375.380618][ T9288] do_sys_openat2+0x11b/0x1d0 [ 375.380649][ T9288] ? __pfx_do_sys_openat2+0x10/0x10 [ 375.380700][ T9288] __x64_sys_openat+0x174/0x210 [ 375.380736][ T9288] ? __pfx___x64_sys_openat+0x10/0x10 [ 375.380789][ T9288] do_syscall_64+0xcd/0x490 [ 375.380836][ T9288] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 375.380872][ T9288] RIP: 0033:0x7efca4f8e9a9 [ 375.380899][ T9288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 375.380931][ T9288] RSP: 002b:00007efca5dae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 375.380963][ T9288] RAX: ffffffffffffffda RBX: 00007efca51b5fa0 RCX: 00007efca4f8e9a9 [ 375.380983][ T9288] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 375.381003][ T9288] RBP: 00007efca5010d69 R08: 0000000000000000 R09: 0000000000000000 [ 375.381021][ T9288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 375.381039][ T9288] R13: 0000000000000000 R14: 00007efca51b5fa0 R15: 00007ffd71b3ed18 [ 375.381081][ T9288] [ 377.804129][ T9326] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 378.059500][ T9305] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 378.372997][ T30] audit: type=1800 audit(2616161211.031:3): pid=9334 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.788" name="lu_gp_id" dev="configfs" ino=21044 res=0 errno=0 [ 379.157533][ T9339] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 379.166889][ T9339] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 379.173441][ T9339] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 379.192374][ T9339] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 379.608971][ T9322] kexec: Could not allocate control_code_buffer [ 379.940636][ T9364] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 380.784899][ T8937] Bluetooth: hci0: command 0x0c1a tx timeout [ 381.203001][ T8937] Bluetooth: hci3: command 0x0c1a tx timeout [ 381.210120][ T6028] Bluetooth: hci2: command 0x0c1a tx timeout [ 381.264958][ T8937] Bluetooth: hci1: command 0x0c1a tx timeout [ 381.695577][ T9384] input: f as /devices/virtual/input/input100 [ 382.693714][ T9397] FAULT_INJECTION: forcing a failure. [ 382.693714][ T9397] name failslab, interval 1, probability 0, space 0, times 0 [ 382.707028][ T9397] CPU: 1 UID: 0 PID: 9397 Comm: syz.1.803 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 382.707075][ T9397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 382.707094][ T9397] Call Trace: [ 382.707105][ T9397] [ 382.707117][ T9397] dump_stack_lvl+0x16c/0x1f0 [ 382.707165][ T9397] should_fail_ex+0x512/0x640 [ 382.707200][ T9397] ? __kmalloc_noprof+0xbf/0x510 [ 382.707247][ T9397] ? kernfs_fop_write_iter+0x237/0x510 [ 382.707282][ T9397] should_failslab+0xc2/0x120 [ 382.707332][ T9397] __kmalloc_noprof+0xd2/0x510 [ 382.707388][ T9397] kernfs_fop_write_iter+0x237/0x510 [ 382.707430][ T9397] vfs_write+0x6c4/0x1150 [ 382.707475][ T9397] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 382.707513][ T9397] ? __pfx___mutex_lock+0x10/0x10 [ 382.707556][ T9397] ? __pfx_vfs_write+0x10/0x10 [ 382.707627][ T9397] ksys_write+0x12a/0x250 [ 382.707670][ T9397] ? __pfx_ksys_write+0x10/0x10 [ 382.707727][ T9397] do_syscall_64+0xcd/0x490 [ 382.707772][ T9397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 382.707806][ T9397] RIP: 0033:0x7f20d398e9a9 [ 382.707833][ T9397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 382.707873][ T9397] RSP: 002b:00007f20d4828038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 382.707904][ T9397] RAX: ffffffffffffffda RBX: 00007f20d3bb5fa0 RCX: 00007f20d398e9a9 [ 382.707926][ T9397] RDX: 0000000000000081 RSI: 00002000000001c0 RDI: 0000000000000007 [ 382.707945][ T9397] RBP: 00007f20d4828090 R08: 0000000000000000 R09: 0000000000000000 [ 382.707965][ T9397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 382.707985][ T9397] R13: 0000000000000000 R14: 00007f20d3bb5fa0 R15: 00007ffe35b8c958 [ 382.708028][ T9397] [ 383.249673][ T9403] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input101 [ 383.886411][ T9408] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input102 [ 385.018994][ T9430] netlink: 4 bytes leftover after parsing attributes in process `syz.1.808'. [ 385.090128][ T9437] FAULT_INJECTION: forcing a failure. [ 385.090128][ T9437] name failslab, interval 1, probability 0, space 0, times 0 [ 385.115923][ T9437] CPU: 1 UID: 0 PID: 9437 Comm: syz.2.810 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 385.115972][ T9437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 385.115993][ T9437] Call Trace: [ 385.116003][ T9437] [ 385.116016][ T9437] dump_stack_lvl+0x16c/0x1f0 [ 385.116064][ T9437] should_fail_ex+0x512/0x640 [ 385.116100][ T9437] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 385.116145][ T9437] should_failslab+0xc2/0x120 [ 385.116198][ T9437] __kmalloc_cache_noprof+0x6a/0x3e0 [ 385.116239][ T9437] ? pty_common_install+0x10e/0xb30 [ 385.116294][ T9437] pty_common_install+0x10e/0xb30 [ 385.116348][ T9437] ? __pfx_pty_install+0x10/0x10 [ 385.116397][ T9437] tty_init_dev.part.0+0x99/0x500 [ 385.116436][ T9437] tty_open+0xa50/0xf90 [ 385.116478][ T9437] ? __pfx_tty_open+0x10/0x10 [ 385.116512][ T9437] ? chrdev_open+0x10b/0x6a0 [ 385.116566][ T9437] ? __pfx_tty_open+0x10/0x10 [ 385.116599][ T9437] chrdev_open+0x234/0x6a0 [ 385.116652][ T9437] ? __pfx_apparmor_file_open+0x10/0x10 [ 385.116699][ T9437] ? __pfx_chrdev_open+0x10/0x10 [ 385.116752][ T9437] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 385.116806][ T9437] do_dentry_open+0x744/0x1c10 [ 385.116853][ T9437] ? __pfx_chrdev_open+0x10/0x10 [ 385.116916][ T9437] vfs_open+0x82/0x3f0 [ 385.116953][ T9437] path_openat+0x1de4/0x2cb0 [ 385.117013][ T9437] ? __pfx_path_openat+0x10/0x10 [ 385.117060][ T9437] ? __lock_acquire+0xb8a/0x1c90 [ 385.117111][ T9437] do_filp_open+0x20b/0x470 [ 385.117157][ T9437] ? __pfx_do_filp_open+0x10/0x10 [ 385.117234][ T9437] ? alloc_fd+0x471/0x7d0 [ 385.117289][ T9437] do_sys_openat2+0x11b/0x1d0 [ 385.117322][ T9437] ? __pfx_do_sys_openat2+0x10/0x10 [ 385.117374][ T9437] __x64_sys_openat+0x174/0x210 [ 385.117409][ T9437] ? __pfx___x64_sys_openat+0x10/0x10 [ 385.117462][ T9437] do_syscall_64+0xcd/0x490 [ 385.117508][ T9437] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 385.117543][ T9437] RIP: 0033:0x7efca4f8e9a9 [ 385.117569][ T9437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 385.117603][ T9437] RSP: 002b:00007efca5dae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 385.117635][ T9437] RAX: ffffffffffffffda RBX: 00007efca51b5fa0 RCX: 00007efca4f8e9a9 [ 385.117657][ T9437] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 385.117679][ T9437] RBP: 00007efca5010d69 R08: 0000000000000000 R09: 0000000000000000 [ 385.117711][ T9437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 385.117733][ T9437] R13: 0000000000000000 R14: 00007efca51b5fa0 R15: 00007ffd71b3ed18 [ 385.117778][ T9437] [ 385.714579][ T9447] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 386.154198][ T9454] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input103 [ 386.323473][ T9440] netlink: 20 bytes leftover after parsing attributes in process `syz.3.809'. [ 386.666027][ T9456] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input104 [ 386.924477][ T9463] sp0: Synchronizing with TNC [ 388.683135][ T9497] FAULT_INJECTION: forcing a failure. [ 388.683135][ T9497] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 388.716381][ T9493] sp0: Synchronizing with TNC [ 388.758183][ T9497] CPU: 1 UID: 0 PID: 9497 Comm: syz.3.827 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 388.758244][ T9497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 388.758266][ T9497] Call Trace: [ 388.758277][ T9497] [ 388.758290][ T9497] dump_stack_lvl+0x16c/0x1f0 [ 388.758340][ T9497] should_fail_ex+0x512/0x640 [ 388.758383][ T9497] should_fail_alloc_page+0xe7/0x130 [ 388.758438][ T9497] prepare_alloc_pages+0x3c2/0x610 [ 388.758476][ T9497] ? rcu_is_watching+0x12/0xc0 [ 388.758521][ T9497] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 388.758574][ T9497] ? __lock_acquire+0xb8a/0x1c90 [ 388.758636][ T9497] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 388.758687][ T9497] ? do_raw_spin_lock+0x12c/0x2b0 [ 388.758739][ T9497] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 388.758791][ T9497] ? find_held_lock+0x2b/0x80 [ 388.758837][ T9497] ? __lock_acquire+0xb8a/0x1c90 [ 388.758880][ T9497] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 388.758935][ T9497] ? policy_nodemask+0xea/0x4e0 [ 388.758990][ T9497] alloc_pages_mpol+0x1fb/0x550 [ 388.759042][ T9497] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 388.759106][ T9497] folio_alloc_mpol_noprof+0x36/0x2f0 [ 388.759143][ T9497] shmem_alloc_folio+0x135/0x160 [ 388.759213][ T9497] shmem_alloc_and_add_folio+0x499/0xc20 [ 388.759268][ T9497] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 388.759318][ T9497] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 388.759371][ T9497] shmem_get_folio_gfp+0x67f/0x1600 [ 388.759427][ T9497] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 388.759475][ T9497] ? __lock_acquire+0x622/0x1c90 [ 388.759525][ T9497] shmem_fault+0x1fe/0xa30 [ 388.759571][ T9497] ? __pfx_shmem_fault+0x10/0x10 [ 388.759625][ T9497] ? __lock_acquire+0xb8a/0x1c90 [ 388.759680][ T9497] __do_fault+0x10a/0x490 [ 388.759727][ T9497] ? __pfx_filemap_map_pages+0x10/0x10 [ 388.759776][ T9497] __handle_mm_fault+0x371a/0x5390 [ 388.759830][ T9497] ? __pfx___handle_mm_fault+0x10/0x10 [ 388.759872][ T9497] ? __pte_offset_map_lock+0x174/0x310 [ 388.759928][ T9497] ? find_held_lock+0x2b/0x80 [ 388.759960][ T9497] ? find_held_lock+0x2b/0x80 [ 388.760003][ T9497] ? follow_page_pte+0x3af/0x14c0 [ 388.760047][ T9497] handle_mm_fault+0x589/0xd10 [ 388.760097][ T9497] __get_user_pages+0x589/0x3b80 [ 388.760149][ T9497] ? __pfx___get_user_pages+0x10/0x10 [ 388.760184][ T9497] ? __pfx_down_read_killable+0x10/0x10 [ 388.760244][ T9497] ? __lock_acquire+0xb8a/0x1c90 [ 388.760298][ T9497] faultin_page_range+0x249/0x980 [ 388.760346][ T9497] madvise_do_behavior+0x268/0x3f0 [ 388.760408][ T9497] ? __pfx_madvise_do_behavior+0x10/0x10 [ 388.760491][ T9497] do_madvise+0x161/0x230 [ 388.760523][ T9497] ? __pfx_do_madvise+0x10/0x10 [ 388.760577][ T9497] ? xfd_validate_state+0x61/0x180 [ 388.760625][ T9497] ? __pfx_do_writev+0x10/0x10 [ 388.760674][ T9497] __x64_sys_madvise+0xa9/0x110 [ 388.760705][ T9497] ? lockdep_hardirqs_on+0x7c/0x110 [ 388.760746][ T9497] do_syscall_64+0xcd/0x490 [ 388.760791][ T9497] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 388.760827][ T9497] RIP: 0033:0x7f03a6f8e9a9 [ 388.760854][ T9497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 388.760889][ T9497] RSP: 002b:00007f03a7e6e038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 388.760923][ T9497] RAX: ffffffffffffffda RBX: 00007f03a71b5fa0 RCX: 00007f03a6f8e9a9 [ 388.760947][ T9497] RDX: 0000000000000017 RSI: 0000000000100000 RDI: 0000000000000000 [ 388.760968][ T9497] RBP: 00007f03a7010d69 R08: 0000000000000000 R09: 0000000000000000 [ 388.760989][ T9497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 388.761010][ T9497] R13: 0000000000000000 R14: 00007f03a71b5fa0 R15: 00007ffe2b657e88 [ 388.761054][ T9497] [ 389.202359][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 389.209824][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 389.530217][ T9514] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input105 [ 391.387276][ T9538] [U]  [ 391.410521][ T9538] [U] [ 393.982426][ T9550] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 394.140181][ T9566] FAULT_INJECTION: forcing a failure. [ 394.140181][ T9566] name failslab, interval 1, probability 0, space 0, times 0 [ 394.192821][ T9566] CPU: 0 UID: 0 PID: 9566 Comm: syz.3.841 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 394.192868][ T9566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 394.192904][ T9566] Call Trace: [ 394.192914][ T9566] [ 394.192927][ T9566] dump_stack_lvl+0x16c/0x1f0 [ 394.192973][ T9566] should_fail_ex+0x512/0x640 [ 394.193007][ T9566] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 394.193052][ T9566] should_failslab+0xc2/0x120 [ 394.193103][ T9566] __kmalloc_cache_noprof+0x6a/0x3e0 [ 394.193143][ T9566] ? pty_common_install+0x10e/0xb30 [ 394.193194][ T9566] pty_common_install+0x10e/0xb30 [ 394.193244][ T9566] ? __pfx_pty_install+0x10/0x10 [ 394.193289][ T9566] tty_init_dev.part.0+0x99/0x500 [ 394.193325][ T9566] tty_open+0xa50/0xf90 [ 394.193366][ T9566] ? __pfx_tty_open+0x10/0x10 [ 394.193401][ T9566] ? chrdev_open+0x10b/0x6a0 [ 394.193451][ T9566] ? __pfx_tty_open+0x10/0x10 [ 394.193483][ T9566] chrdev_open+0x234/0x6a0 [ 394.193528][ T9566] ? __pfx_apparmor_file_open+0x10/0x10 [ 394.193568][ T9566] ? __pfx_chrdev_open+0x10/0x10 [ 394.193618][ T9566] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 394.193679][ T9566] do_dentry_open+0x744/0x1c10 [ 394.193735][ T9566] ? __pfx_chrdev_open+0x10/0x10 [ 394.193802][ T9566] vfs_open+0x82/0x3f0 [ 394.193839][ T9566] path_openat+0x1de4/0x2cb0 [ 394.193914][ T9566] ? __pfx_path_openat+0x10/0x10 [ 394.193963][ T9566] ? __lock_acquire+0xb8a/0x1c90 [ 394.194010][ T9566] do_filp_open+0x20b/0x470 [ 394.194054][ T9566] ? __pfx_do_filp_open+0x10/0x10 [ 394.194126][ T9566] ? alloc_fd+0x471/0x7d0 [ 394.194180][ T9566] do_sys_openat2+0x11b/0x1d0 [ 394.194216][ T9566] ? __pfx_do_sys_openat2+0x10/0x10 [ 394.194264][ T9566] __x64_sys_openat+0x174/0x210 [ 394.194294][ T9566] ? __pfx___x64_sys_openat+0x10/0x10 [ 394.194340][ T9566] do_syscall_64+0xcd/0x490 [ 394.194380][ T9566] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 394.194410][ T9566] RIP: 0033:0x7f03a6f8e9a9 [ 394.194435][ T9566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 394.194465][ T9566] RSP: 002b:00007f03a7e6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 394.194495][ T9566] RAX: ffffffffffffffda RBX: 00007f03a71b5fa0 RCX: 00007f03a6f8e9a9 [ 394.194515][ T9566] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 394.194535][ T9566] RBP: 00007f03a7010d69 R08: 0000000000000000 R09: 0000000000000000 [ 394.194557][ T9566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 394.194578][ T9566] R13: 0000000000000000 R14: 00007f03a71b5fa0 R15: 00007ffe2b657e88 [ 394.194619][ T9566] [ 394.457793][ C0] vkms_vblank_simulate: vblank timer overrun [ 395.769181][ T9581] netlink: 8 bytes leftover after parsing attributes in process `syz.3.845'. [ 395.946138][ T9556] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 397.899405][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88805c735c00: 0x00000: (2) System resources were needed for another task so this connection managed session was terminated. [ 398.050995][ T9609] mkiss: ax0: crc mode is auto. [ 398.093590][ T9613] binder: 9612:9613 ioctl c0306201 200000000240 returned -14 [ 398.099359][ T9611] sp0: Synchronizing with TNC [ 398.616587][ T9621] CIFS: VFS: Unsupported security flags: 0x10 [ 398.660396][ T9621] netlink: 28 bytes leftover after parsing attributes in process `syz.3.858'. [ 398.694026][ T9621] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 398.726281][ T9621] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 398.775066][ T9621] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 398.782701][ T9621] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 399.061954][ T9639] FAULT_INJECTION: forcing a failure. [ 399.061954][ T9639] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 399.129566][ T9639] CPU: 0 UID: 0 PID: 9639 Comm: syz.2.861 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 399.129615][ T9639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 399.129637][ T9639] Call Trace: [ 399.129647][ T9639] [ 399.129657][ T9639] dump_stack_lvl+0x16c/0x1f0 [ 399.129692][ T9639] should_fail_ex+0x512/0x640 [ 399.129722][ T9639] _copy_from_user+0x2e/0xd0 [ 399.129752][ T9639] copy_from_sockptr_offset+0x15c/0x1b0 [ 399.129790][ T9639] ? __pfx_copy_from_sockptr_offset+0x10/0x10 [ 399.129831][ T9639] ? is_bpf_text_address+0x8a/0x1a0 [ 399.129869][ T9639] do_tcp_getsockopt+0x161/0x25d0 [ 399.129901][ T9639] ? __pfx_do_tcp_getsockopt+0x10/0x10 [ 399.129936][ T9639] ? arch_stack_walk+0xa6/0x100 [ 399.129988][ T9639] ? _parse_integer_limit+0x17f/0x1d0 [ 399.130039][ T9639] ? _kstrtoull+0x145/0x200 [ 399.130074][ T9639] ? __pfx__kstrtoull+0x10/0x10 [ 399.130110][ T9639] ? aa_label_sk_perm+0x19b/0x5a0 [ 399.130139][ T9639] ? find_held_lock+0x2b/0x80 [ 399.130162][ T9639] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 399.130191][ T9639] ? __lock_acquire+0x622/0x1c90 [ 399.130239][ T9639] ? __lock_acquire+0xb8a/0x1c90 [ 399.130273][ T9639] ? __pfx___might_resched+0x10/0x10 [ 399.130309][ T9639] ? find_held_lock+0x2b/0x80 [ 399.130330][ T9639] ? __might_fault+0xe3/0x190 [ 399.130367][ T9639] ? __might_fault+0xe3/0x190 [ 399.130398][ T9639] ? __might_fault+0x13b/0x190 [ 399.130433][ T9639] tcp_getsockopt+0xdf/0x100 [ 399.130461][ T9639] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 399.130497][ T9639] do_sock_getsockopt+0x34a/0x440 [ 399.130533][ T9639] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 399.130575][ T9639] ? __fget_files+0x204/0x3c0 [ 399.130619][ T9639] __sys_getsockopt+0x123/0x1b0 [ 399.130654][ T9639] __x64_sys_getsockopt+0xbd/0x160 [ 399.130681][ T9639] ? syscall_trace_enter+0x5e/0x240 [ 399.130720][ T9639] do_syscall_64+0xcd/0x490 [ 399.130753][ T9639] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 399.130778][ T9639] RIP: 0033:0x7efca4f8e9a9 [ 399.130797][ T9639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 399.130822][ T9639] RSP: 002b:00007efca5d6c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 399.130845][ T9639] RAX: ffffffffffffffda RBX: 00007efca51b6160 RCX: 00007efca4f8e9a9 [ 399.130862][ T9639] RDX: 0000000000000023 RSI: 0000000000000006 RDI: 0000000000000006 [ 399.130876][ T9639] RBP: 00007efca5d6c090 R08: 00002000000000c0 R09: 0000000000000000 [ 399.130891][ T9639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 399.130905][ T9639] R13: 0000000000000000 R14: 00007efca51b6160 R15: 00007ffd71b3ed18 [ 399.130935][ T9639] [ 399.786218][ T9629] FAULT_INJECTION: forcing a failure. [ 399.786218][ T9629] name failslab, interval 1, probability 0, space 0, times 0 [ 399.870144][ T9629] CPU: 1 UID: 0 PID: 9629 Comm: syz.3.858 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 399.870195][ T9629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 399.870216][ T9629] Call Trace: [ 399.870226][ T9629] [ 399.870239][ T9629] dump_stack_lvl+0x16c/0x1f0 [ 399.870287][ T9629] should_fail_ex+0x512/0x640 [ 399.870323][ T9629] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 399.870376][ T9629] should_failslab+0xc2/0x120 [ 399.870426][ T9629] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 399.870489][ T9629] ? sock_alloc_inode+0x25/0x1c0 [ 399.870542][ T9629] ? __pfx_sock_alloc_inode+0x10/0x10 [ 399.870588][ T9629] sock_alloc_inode+0x25/0x1c0 [ 399.870634][ T9629] alloc_inode+0x64/0x240 [ 399.870687][ T9629] sock_alloc+0x40/0x280 [ 399.870731][ T9629] sock_create_lite+0x82/0x120 [ 399.870791][ T9629] __netlink_kernel_create+0xbd/0x750 [ 399.870840][ T9629] ? __pfx___netlink_kernel_create+0x10/0x10 [ 399.870894][ T9629] ? __pfx_crypto_netlink_init+0x10/0x10 [ 399.870942][ T9629] crypto_netlink_init+0xb7/0x140 [ 399.870989][ T9629] ? cpus_read_unlock+0x83/0x150 [ 399.871026][ T9629] ? __pfx_crypto_netlink_init+0x10/0x10 [ 399.871074][ T9629] ? __nf_register_net_hook+0x371/0x730 [ 399.871117][ T9629] ? __pfx_crypto_netlink_rcv+0x10/0x10 [ 399.871167][ T9629] ? nf_register_net_hook+0x117/0x160 [ 399.871209][ T9629] ? nf_register_net_hooks+0xb1/0xd0 [ 399.871252][ T9629] ops_init+0x1e2/0x5f0 [ 399.871300][ T9629] setup_net+0x10f/0x380 [ 399.871340][ T9629] ? lockdep_init_map_type+0x5c/0x280 [ 399.871389][ T9629] ? __pfx_setup_net+0x10/0x10 [ 399.871435][ T9629] ? debug_mutex_init+0x37/0x70 [ 399.871473][ T9629] copy_net_ns+0x2a6/0x5f0 [ 399.871525][ T9629] create_new_namespaces+0x3ea/0xa90 [ 399.871574][ T9629] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 399.871616][ T9629] ksys_unshare+0x45b/0xa40 [ 399.871663][ T9629] ? __pfx_ksys_unshare+0x10/0x10 [ 399.871710][ T9629] ? xfd_validate_state+0x61/0x180 [ 399.871782][ T9629] __x64_sys_unshare+0x31/0x40 [ 399.871828][ T9629] do_syscall_64+0xcd/0x490 [ 399.871875][ T9629] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 399.871910][ T9629] RIP: 0033:0x7f03a6f8e9a9 [ 399.871937][ T9629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 399.871972][ T9629] RSP: 002b:00007f03a7e4d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 399.872004][ T9629] RAX: ffffffffffffffda RBX: 00007f03a71b6080 RCX: 00007f03a6f8e9a9 [ 399.872027][ T9629] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 399.872049][ T9629] RBP: 00007f03a7010d69 R08: 0000000000000000 R09: 0000000000000000 [ 399.872070][ T9629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 399.872090][ T9629] R13: 0000000000000000 R14: 00007f03a71b6080 R15: 00007ffe2b657e88 [ 399.872134][ T9629] [ 400.154449][ C1] vkms_vblank_simulate: vblank timer overrun [ 401.396677][ T9663] binder: 9662:9663 ioctl c0306201 200000000240 returned -14 [ 402.731261][ T9673] sp0: Synchronizing with TNC [ 404.608169][ T9668] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 404.888676][ T9705] binder: 9704:9705 ioctl c0306201 200000000240 returned -14 [ 407.117447][ T9726] FAULT_INJECTION: forcing a failure. [ 407.117447][ T9726] name failslab, interval 1, probability 0, space 0, times 0 [ 407.164304][ T9726] CPU: 1 UID: 0 PID: 9726 Comm: syz.3.881 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 407.164352][ T9726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 407.164370][ T9726] Call Trace: [ 407.164382][ T9726] [ 407.164393][ T9726] dump_stack_lvl+0x16c/0x1f0 [ 407.164439][ T9726] should_fail_ex+0x512/0x640 [ 407.164472][ T9726] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 407.164521][ T9726] should_failslab+0xc2/0x120 [ 407.164572][ T9726] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 407.164618][ T9726] ? getname_flags.part.0+0x4c/0x550 [ 407.164656][ T9726] getname_flags.part.0+0x4c/0x550 [ 407.164694][ T9726] getname_flags+0x93/0xf0 [ 407.164734][ T9726] do_sys_openat2+0xb8/0x1d0 [ 407.164766][ T9726] ? __pfx_do_sys_openat2+0x10/0x10 [ 407.164803][ T9726] ? __fget_files+0x20e/0x3c0 [ 407.164850][ T9726] __x64_sys_openat+0x174/0x210 [ 407.164883][ T9726] ? __pfx___x64_sys_openat+0x10/0x10 [ 407.164915][ T9726] ? ksys_write+0x1ac/0x250 [ 407.164971][ T9726] do_syscall_64+0xcd/0x490 [ 407.165016][ T9726] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 407.165050][ T9726] RIP: 0033:0x7f03a6f8e9a9 [ 407.165074][ T9726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 407.165106][ T9726] RSP: 002b:00007f03a7e6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 407.165144][ T9726] RAX: ffffffffffffffda RBX: 00007f03a71b5fa0 RCX: 00007f03a6f8e9a9 [ 407.165166][ T9726] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 407.165187][ T9726] RBP: 00007f03a7e6e090 R08: 0000000000000000 R09: 0000000000000000 [ 407.165207][ T9726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 407.165226][ T9726] R13: 0000000000000000 R14: 00007f03a71b5fa0 R15: 00007ffe2b657e88 [ 407.165268][ T9726] [ 407.356153][ C1] vkms_vblank_simulate: vblank timer overrun [ 407.490693][ T9716] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 407.710155][ T9735] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 409.552808][ T9753] CIFS: VFS: Unsupported security flags: 0x10 [ 409.563108][ T9753] netlink: 28 bytes leftover after parsing attributes in process `syz.2.888'. [ 409.575837][ T9753] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 409.599446][ T9753] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 409.624898][ T9753] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 409.670355][ T9753] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 410.087619][ T9760] sp0: Synchronizing with TNC [ 410.431253][ T9761] FAULT_INJECTION: forcing a failure. [ 410.431253][ T9761] name failslab, interval 1, probability 0, space 0, times 0 [ 410.448574][ T9761] CPU: 0 UID: 0 PID: 9761 Comm: syz.2.888 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 410.448626][ T9761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 410.448648][ T9761] Call Trace: [ 410.448659][ T9761] [ 410.448671][ T9761] dump_stack_lvl+0x16c/0x1f0 [ 410.448721][ T9761] should_fail_ex+0x512/0x640 [ 410.448757][ T9761] ? __kvmalloc_node_noprof+0x124/0x620 [ 410.448807][ T9761] should_failslab+0xc2/0x120 [ 410.448859][ T9761] __kvmalloc_node_noprof+0x137/0x620 [ 410.448913][ T9761] ? __pfx___mutex_lock+0x10/0x10 [ 410.448957][ T9761] ? nf_hook_entries_grow+0x22b/0x860 [ 410.449006][ T9761] ? nf_hook_entries_grow+0x22b/0x860 [ 410.449042][ T9761] nf_hook_entries_grow+0x22b/0x860 [ 410.449095][ T9761] __nf_register_net_hook+0x1cd/0x730 [ 410.449144][ T9761] nf_register_net_hook+0x109/0x160 [ 410.449186][ T9761] nf_register_net_hooks+0x5d/0xd0 [ 410.449229][ T9761] ? __pfx_apparmor_nf_register+0x10/0x10 [ 410.449280][ T9761] ops_init+0x1e2/0x5f0 [ 410.449329][ T9761] setup_net+0x10f/0x380 [ 410.449368][ T9761] ? lockdep_init_map_type+0x5c/0x280 [ 410.449417][ T9761] ? __pfx_setup_net+0x10/0x10 [ 410.449462][ T9761] ? debug_mutex_init+0x37/0x70 [ 410.449499][ T9761] copy_net_ns+0x2a6/0x5f0 [ 410.449555][ T9761] create_new_namespaces+0x3ea/0xa90 [ 410.449604][ T9761] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 410.449648][ T9761] ksys_unshare+0x45b/0xa40 [ 410.449696][ T9761] ? __pfx_ksys_unshare+0x10/0x10 [ 410.449744][ T9761] ? xfd_validate_state+0x61/0x180 [ 410.449806][ T9761] __x64_sys_unshare+0x31/0x40 [ 410.449848][ T9761] do_syscall_64+0xcd/0x490 [ 410.449891][ T9761] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 410.449934][ T9761] RIP: 0033:0x7efca4f8e9a9 [ 410.449961][ T9761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 410.449995][ T9761] RSP: 002b:00007efca5d6c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 410.450025][ T9761] RAX: ffffffffffffffda RBX: 00007efca51b6160 RCX: 00007efca4f8e9a9 [ 410.450047][ T9761] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 410.450067][ T9761] RBP: 00007efca5010d69 R08: 0000000000000000 R09: 0000000000000000 [ 410.450086][ T9761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 410.450107][ T9761] R13: 0000000000000000 R14: 00007efca51b6160 R15: 00007ffd71b3ed18 [ 410.450151][ T9761] [ 411.175730][ T9781] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input106 [ 412.881325][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88805ab5e000: 0x00000: (2) System resources were needed for another task so this connection managed session was terminated. [ 413.100521][ T9814] sp0: Synchronizing with TNC [ 414.156082][ T9827] sp0: Synchronizing with TNC [ 414.419399][ T9837] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input107 [ 414.651000][ T9841] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input108 [ 415.060244][ T9847] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input109 [ 415.075524][ T9819] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 416.401123][ T9822] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 417.110521][ T9864] random: crng reseeded on system resumption [ 424.407156][ T9944] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 426.210618][ T9990] sp0: Synchronizing with TNC [ 426.768689][T10001] FAULT_INJECTION: forcing a failure. [ 426.768689][T10001] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 426.784377][T10001] CPU: 0 UID: 0 PID: 10001 Comm: syz.0.944 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 426.784412][T10001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 426.784426][T10001] Call Trace: [ 426.784434][T10001] [ 426.784442][T10001] dump_stack_lvl+0x16c/0x1f0 [ 426.784476][T10001] should_fail_ex+0x512/0x640 [ 426.784506][T10001] _copy_to_user+0x32/0xd0 [ 426.784545][T10001] simple_read_from_buffer+0xcb/0x170 [ 426.784585][T10001] proc_fail_nth_read+0x197/0x240 [ 426.784625][T10001] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 426.784662][T10001] ? rw_verify_area+0xcf/0x680 [ 426.784688][T10001] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 426.784715][T10001] vfs_read+0x1e1/0xc60 [ 426.784748][T10001] ? __pfx___mutex_lock+0x10/0x10 [ 426.784776][T10001] ? __pfx_vfs_read+0x10/0x10 [ 426.784812][T10001] ? __fget_files+0x20e/0x3c0 [ 426.784848][T10001] ksys_read+0x12a/0x250 [ 426.784876][T10001] ? __pfx_ksys_read+0x10/0x10 [ 426.784905][T10001] ? fput+0x70/0xf0 [ 426.784952][T10001] do_syscall_64+0xcd/0x490 [ 426.784984][T10001] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 426.785008][T10001] RIP: 0033:0x7fecb8f8d3bc [ 426.785027][T10001] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 426.785050][T10001] RSP: 002b:00007fecb9da2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 426.785072][T10001] RAX: ffffffffffffffda RBX: 00007fecb91b6080 RCX: 00007fecb8f8d3bc [ 426.785088][T10001] RDX: 000000000000000f RSI: 00007fecb9da20a0 RDI: 0000000000000005 [ 426.785102][T10001] RBP: 00007fecb9da2090 R08: 0000000000000000 R09: 0000000000000000 [ 426.785116][T10001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 426.785131][T10001] R13: 0000000000000000 R14: 00007fecb91b6080 R15: 00007fff3c304848 [ 426.785160][T10001] [ 427.663586][T10011] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 429.306217][T10048] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input111 [ 430.231088][T10063] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input112 [ 430.634072][T10065] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input113 [ 431.673708][T10059] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 432.385811][T10088] vmstat_refresh: nr_hugetlb -30208 [ 433.371459][ T8937] Bluetooth: hci0: unexpected event 0x3e length: 728 > 260 [ 433.371513][ T8937] Bluetooth: hci0: unexpected subevent 0x0c length: 727 > 5 [ 433.951259][T10122] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input114 [ 435.524997][T10117] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 436.991821][T10129] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 437.057425][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888025ed1800: 0x00000: (2) System resources were needed for another task so this connection managed session was terminated. [ 437.266723][T10150] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input115 [ 437.518113][T10162] vmstat_refresh: nr_hugetlb -30208 [ 441.552559][T10196] blktrace: Concurrent blktraces are not allowed on loop12 [ 443.320419][T10177] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 444.710880][T10216] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 445.016863][T10240] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input116 [ 445.512453][T10244] random: crng reseeded on system resumption [ 445.882561][T10241] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input117 [ 447.120340][T10256] binder: 10253:10256 ioctl c0306201 0 returned -14 [ 448.159114][T10273] vmstat_refresh: nr_hugetlb -30208 [ 448.338665][T10274] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input118 [ 448.694255][T10280] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000) [ 448.774374][T10276] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input119 [ 450.481456][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 450.488840][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 452.955225][T10285] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 453.018188][T10331] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1024'. [ 453.408545][T10327] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 453.414782][T10327] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 453.443734][T10327] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 453.472837][T10327] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 453.645978][T10341] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input120 [ 454.499279][T10342] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input121 [ 454.798777][ T8937] Bluetooth: hci0: command 0x0c1a tx timeout [ 455.439045][ T8937] Bluetooth: hci2: command 0x0c1a tx timeout [ 455.517757][T10364] FAULT_INJECTION: forcing a failure. [ 455.517757][T10364] name failslab, interval 1, probability 0, space 0, times 0 [ 455.517795][T10364] CPU: 1 UID: 0 PID: 10364 Comm: syz.2.1030 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 455.517826][T10364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 455.517840][T10364] Call Trace: [ 455.517848][T10364] [ 455.517856][T10364] dump_stack_lvl+0x16c/0x1f0 [ 455.517890][T10364] should_fail_ex+0x512/0x640 [ 455.517915][T10364] ? fs_reclaim_acquire+0xae/0x150 [ 455.517943][T10364] should_failslab+0xc2/0x120 [ 455.517980][T10364] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 455.518015][T10364] ? security_inode_alloc+0x3b/0x2b0 [ 455.518043][T10364] security_inode_alloc+0x3b/0x2b0 [ 455.518067][T10364] inode_init_always_gfp+0xce4/0x1030 [ 455.518102][T10364] alloc_inode+0x86/0x240 [ 455.518140][T10364] path_from_stashed+0x25b/0x750 [ 455.518179][T10364] ? do_raw_read_unlock+0x44/0xe0 [ 455.518223][T10364] ns_get_path+0x5f/0x80 [ 455.518251][T10364] proc_ns_get_link+0x121/0x230 [ 455.518284][T10364] ? __pfx_proc_ns_get_link+0x10/0x10 [ 455.518319][T10364] ? atime_needs_update+0x8b/0x710 [ 455.518344][T10364] ? __pfx_proc_ns_get_link+0x10/0x10 [ 455.518376][T10364] step_into+0x1a2c/0x2270 [ 455.518410][T10364] ? __pfx_step_into+0x10/0x10 [ 455.518438][T10364] ? find_held_lock+0x2b/0x80 [ 455.518470][T10364] path_openat+0x6db/0x2cb0 [ 455.518510][T10364] ? __pfx_path_openat+0x10/0x10 [ 455.518543][T10364] ? __lock_acquire+0xb8a/0x1c90 [ 455.518577][T10364] do_filp_open+0x20b/0x470 [ 455.518608][T10364] ? __pfx_do_filp_open+0x10/0x10 [ 455.518660][T10364] ? alloc_fd+0x471/0x7d0 [ 455.518696][T10364] do_sys_openat2+0x11b/0x1d0 [ 455.518719][T10364] ? __pfx_do_sys_openat2+0x10/0x10 [ 455.518745][T10364] ? __pfx___schedule+0x10/0x10 [ 455.518776][T10364] __x64_sys_openat+0x174/0x210 [ 455.518800][T10364] ? __pfx___x64_sys_openat+0x10/0x10 [ 455.518836][T10364] do_syscall_64+0xcd/0x490 [ 455.518868][T10364] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 455.518900][T10364] RIP: 0033:0x7efca4f8d310 [ 455.518928][T10364] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 455.518958][T10364] RSP: 002b:00007efca5dadf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 455.518988][T10364] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007efca4f8d310 [ 455.519008][T10364] RDX: 0000000000000002 RSI: 00007efca5dadfa0 RDI: 00000000ffffff9c [ 455.519029][T10364] RBP: 00007efca5dadfa0 R08: 0000000000000000 R09: 0000000000000000 [ 455.519048][T10364] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 455.519068][T10364] R13: 0000000000000000 R14: 00007efca51b5fa0 R15: 00007ffd71b3ed18 [ 455.519109][T10364] [ 455.519350][ T6028] Bluetooth: hci3: command 0x0c1a tx timeout [ 455.519432][ T8937] Bluetooth: hci1: command 0x0c1a tx timeout [ 456.337761][T10354] kexec: Could not allocate control_code_buffer [ 457.440250][T10389] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1037'. [ 458.170457][ T30] audit: type=1800 audit(3478402895.814:4): pid=10404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1041" name="lu_gp_id" dev="configfs" ino=26597 res=0 errno=0 [ 458.531398][T10398] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 458.568452][T10398] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 458.615345][T10398] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 458.651931][T10398] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 459.922077][ T8937] Bluetooth: hci0: command 0x0c1a tx timeout [ 460.738132][ T8937] Bluetooth: hci3: command 0x0c1a tx timeout [ 460.749817][ T8937] Bluetooth: hci2: command 0x0c1a tx timeout [ 460.756042][ T6028] Bluetooth: hci1: command 0x0c1a tx timeout [ 461.494421][T10423] kexec: Could not allocate control_code_buffer [ 462.981237][T10467] ubi0: attaching mtd0 [ 463.035106][T10467] ubi0: scanning is finished [ 463.401426][T10467] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 463.409413][T10467] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 463.416825][T10467] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 463.424218][T10467] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 463.431743][T10467] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 463.438734][T10467] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 463.446902][T10467] ubi0: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 186512323 [ 463.457387][T10467] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 463.469054][T10482] ubi0: background thread "ubi_bgt0d" started, PID 10482 [ 463.476643][T10473] ubi0: detaching mtd0 [ 463.504687][T10473] ubi0: mtd0 is detached [ 463.851877][T10476] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 463.858496][T10476] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 463.873851][T10476] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 463.890614][T10476] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 464.256470][T10490] sp0: Synchronizing with TNC [ 465.524148][T10445] Bluetooth: hci0: command 0x0c1a tx timeout [ 465.942240][T10445] Bluetooth: hci1: command 0x0c1a tx timeout [ 465.950261][ T5983] Bluetooth: hci3: command 0x0c1a tx timeout [ 465.957180][ T6028] Bluetooth: hci2: command 0x0c1a tx timeout [ 466.001748][T10515] blktrace: Concurrent blktraces are not allowed on loop12 [ 466.839249][T10527] binder: 10526:10527 ioctl c0306201 0 returned -14 [ 467.243424][T10535] sp0: Synchronizing with TNC [ 467.337923][T10537] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input122 [ 467.812768][T10540] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input123 [ 468.673784][T10557] bridge0: port 3(team0) entered blocking state [ 468.693759][T10557] bridge0: port 3(team0) entered disabled state [ 468.714970][T10557] team0: entered allmulticast mode [ 468.733193][T10557] team_slave_0: entered allmulticast mode [ 468.733232][T10557] team_slave_1: entered allmulticast mode [ 468.738466][T10557] team0: entered promiscuous mode [ 468.738489][T10557] team_slave_0: entered promiscuous mode [ 468.738645][T10557] team_slave_1: entered promiscuous mode [ 468.753194][T10557] bridge0: port 3(team0) entered blocking state [ 468.753387][T10557] bridge0: port 3(team0) entered forwarding state [ 468.995133][T10548] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 469.004699][T10548] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 469.011515][T10559] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input124 [ 469.037033][T10548] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 469.052644][T10548] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 469.320948][T10563] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input125 [ 470.406828][T10445] Bluetooth: hci0: command 0x0c1a tx timeout [ 471.047117][ T5983] Bluetooth: hci2: command 0x0c1a tx timeout [ 471.054414][T10445] Bluetooth: hci3: command 0x0c1a tx timeout [ 471.128166][T10445] Bluetooth: hci1: command 0x0c1a tx timeout [ 471.237023][T10587] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 471.244867][T10587] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 471.309454][T10587] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 471.344853][T10587] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 472.869080][T10617] input: f as /devices/virtual/input/input126 [ 473.290855][T10445] Bluetooth: hci2: command 0x0c1a tx timeout [ 473.297090][ T5983] Bluetooth: hci0: command 0x0c1a tx timeout [ 473.369298][T10445] Bluetooth: hci1: command 0x0c1a tx timeout [ 473.375451][ T5983] Bluetooth: hci3: command 0x0c1a tx timeout [ 473.490079][T10610] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 473.831753][T10620] kexec: Could not allocate control_code_buffer [ 474.693023][T10621] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 474.722402][T10639] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input127 [ 475.872015][T10657] sp0: Synchronizing with TNC [ 475.900684][T10644] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input128 [ 477.467144][T10676] blktrace: Concurrent blktraces are not allowed on loop12 [ 479.942523][T10708] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input129 [ 480.460399][T10711] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input130 [ 481.253385][T10725] random: crng reseeded on system resumption [ 481.460230][T10722] binder: binder_mmap: 10714 0-811000 bad vm_flags failed -1 [ 482.392565][T10737] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input131 [ 483.098440][T10739] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input132 [ 483.658639][T10748] random: crng reseeded on system resumption [ 484.333486][T10761] Format for unlinking a device is "netnsfd:ifidx" (int uint). [ 484.370500][T10761] net_ratelimit: 394 callbacks suppressed [ 484.370528][T10761] openvswitch: netlink: IP tunnel dst address not specified [ 485.580096][T10779] random: crng reseeded on system resumption [ 486.791761][T10756] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 488.804316][T10823] binder: binder_mmap: 10815 0-811000 bad vm_flags failed -1 [ 489.909310][T10843] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input133 [ 490.155937][T10819] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 490.514133][T10844] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input134 [ 490.557475][T10851] binder: 10847:10851 ioctl c0306201 0 returned -14 [ 491.242489][T10848] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 491.249707][T10848] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 491.307327][T10848] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 491.357273][T10848] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 492.448843][T10881] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input135 [ 492.581679][T10445] Bluetooth: hci0: command 0x0c1a tx timeout [ 493.027545][T10884] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input136 [ 493.298374][T10445] Bluetooth: hci2: command 0x0c1a tx timeout [ 493.378789][T10445] Bluetooth: hci1: command 0x0c1a tx timeout [ 493.384933][T10445] Bluetooth: hci3: command 0x0c1a tx timeout [ 493.446563][T10876] kexec: Could not allocate control_code_buffer [ 493.900697][T10893] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 494.375464][T10878] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 496.048608][T10916] binder: binder_mmap: 10905 0-811000 bad vm_flags failed -1 [ 496.282691][T10930] FAULT_INJECTION: forcing a failure. [ 496.282691][T10930] name failslab, interval 1, probability 0, space 0, times 0 [ 496.389110][T10930] CPU: 1 UID: 0 PID: 10930 Comm: syz.1.1156 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 496.389146][T10930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 496.389160][T10930] Call Trace: [ 496.389168][T10930] [ 496.389177][T10930] dump_stack_lvl+0x16c/0x1f0 [ 496.389211][T10930] should_fail_ex+0x512/0x640 [ 496.389235][T10930] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 496.389274][T10930] should_failslab+0xc2/0x120 [ 496.389316][T10930] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 496.389363][T10930] ? __mutex_lock+0x1c2/0x1070 [ 496.389402][T10930] ? argv_split+0x35/0x440 [ 496.389439][T10930] kstrndup+0x6d/0x160 [ 496.389484][T10930] ? __pfx___trace_eprobe_create+0x10/0x10 [ 496.389518][T10930] argv_split+0x35/0x440 [ 496.389553][T10930] ? __pfx___trace_eprobe_create+0x10/0x10 [ 496.389588][T10930] trace_probe_create+0x7d/0x100 [ 496.389636][T10930] ? __pfx_trace_probe_create+0x10/0x10 [ 496.389696][T10930] create_dyn_event+0xee/0x1c0 [ 496.389734][T10930] trace_parse_run_command+0x1a9/0x3e0 [ 496.389783][T10930] ? __pfx_create_dyn_event+0x10/0x10 [ 496.389826][T10930] ? __pfx_dyn_event_write+0x10/0x10 [ 496.389860][T10930] vfs_write+0x2a0/0x1150 [ 496.389917][T10930] ? __pfx___mutex_lock+0x10/0x10 [ 496.389959][T10930] ? __pfx_vfs_write+0x10/0x10 [ 496.390012][T10930] ? __fget_files+0x20e/0x3c0 [ 496.390066][T10930] ksys_write+0x12a/0x250 [ 496.390107][T10930] ? __pfx_ksys_write+0x10/0x10 [ 496.390162][T10930] do_syscall_64+0xcd/0x490 [ 496.390206][T10930] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 496.390239][T10930] RIP: 0033:0x7f20d398e9a9 [ 496.390265][T10930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 496.390298][T10930] RSP: 002b:00007f20d4828038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 496.390329][T10930] RAX: ffffffffffffffda RBX: 00007f20d3bb5fa0 RCX: 00007f20d398e9a9 [ 496.390350][T10930] RDX: 0000000000000018 RSI: 0000200000000140 RDI: 0000000000000003 [ 496.390370][T10930] RBP: 00007f20d4828090 R08: 0000000000000000 R09: 0000000000000000 [ 496.390388][T10930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 496.390406][T10930] R13: 0000000000000000 R14: 00007f20d3bb5fa0 R15: 00007ffe35b8c958 [ 496.390446][T10930] [ 496.687209][T10914] binder: binder_mmap: 10913 0-811000 bad vm_flags failed -1 [ 497.485217][T10950] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input137 [ 497.897234][T10953] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input138 [ 499.095440][T10966] binder: binder_mmap: 10958 0-811000 bad vm_flags failed -1 [ 500.098702][T10983] binder: 10980:10983 ioctl c0306201 0 returned -14 [ 500.257665][T10985] FAULT_INJECTION: forcing a failure. [ 500.257665][T10985] name failslab, interval 1, probability 0, space 0, times 0 [ 500.283712][T10985] CPU: 1 UID: 0 PID: 10985 Comm: syz.0.1169 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 500.283764][T10985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 500.283785][T10985] Call Trace: [ 500.283796][T10985] [ 500.283810][T10985] dump_stack_lvl+0x16c/0x1f0 [ 500.283858][T10985] should_fail_ex+0x512/0x640 [ 500.283894][T10985] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 500.283941][T10985] should_failslab+0xc2/0x120 [ 500.283995][T10985] __kmalloc_cache_noprof+0x6a/0x3e0 [ 500.284038][T10985] ? devlink_fmsg_u8_pair_put+0x225/0x2f0 [ 500.284083][T10985] ? devlink_fmsg_nest_common.part.0+0x48/0x1e0 [ 500.284136][T10985] devlink_fmsg_nest_common.part.0+0x48/0x1e0 [ 500.284185][T10985] devlink_fmsg_obj_nest_end+0xa2/0xc0 [ 500.284232][T10985] nsim_dev_dummy_fmsg_put+0x100/0x1e0 [ 500.284287][T10985] devlink_health_do_dump+0x240/0x620 [ 500.284342][T10985] devlink_health_report+0x3c9/0x9c0 [ 500.284397][T10985] ? __pfx_devlink_health_report+0x10/0x10 [ 500.284448][T10985] ? _copy_from_user+0x59/0xd0 [ 500.284496][T10985] nsim_dev_health_break_write+0x166/0x210 [ 500.284550][T10985] ? __pfx_nsim_dev_health_break_write+0x10/0x10 [ 500.284625][T10985] full_proxy_write+0x131/0x1a0 [ 500.284679][T10985] ? __pfx_full_proxy_write+0x10/0x10 [ 500.284730][T10985] vfs_write+0x2a0/0x1150 [ 500.284782][T10985] ? __pfx___mutex_lock+0x10/0x10 [ 500.284826][T10985] ? __pfx_vfs_write+0x10/0x10 [ 500.284883][T10985] ? __fget_files+0x20e/0x3c0 [ 500.284938][T10985] ksys_write+0x12a/0x250 [ 500.284981][T10985] ? __pfx_ksys_write+0x10/0x10 [ 500.285040][T10985] do_syscall_64+0xcd/0x490 [ 500.285087][T10985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 500.285122][T10985] RIP: 0033:0x7fecb8f8e9a9 [ 500.285149][T10985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 500.285183][T10985] RSP: 002b:00007fecb9dc3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 500.285215][T10985] RAX: ffffffffffffffda RBX: 00007fecb91b5fa0 RCX: 00007fecb8f8e9a9 [ 500.285238][T10985] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 000000000000000a [ 500.285259][T10985] RBP: 00007fecb9010d69 R08: 0000000000000000 R09: 0000000000000000 [ 500.285280][T10985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 500.285300][T10985] R13: 0000000000000000 R14: 00007fecb91b5fa0 R15: 00007fff3c304848 [ 500.285345][T10985] [ 500.656944][T10991] sp0: Synchronizing with TNC [ 500.843629][T10981] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 500.887074][T10981] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 500.899490][T10981] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 500.924442][T10981] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 501.578009][T10998] : Can't lookup blockdev [ 501.702999][T11009] [U] - [ 501.703074][T11009] [U] [ 501.729907][T11008] [U] ֊2+ [ 502.582717][T10445] Bluetooth: hci0: command 0x0c1a tx timeout [ 502.907807][ T5983] Bluetooth: hci2: command 0x0c1a tx timeout [ 502.913989][T10445] Bluetooth: hci3: command 0x0c1a tx timeout [ 502.992585][T10445] Bluetooth: hci1: command 0x0c1a tx timeout [ 503.134814][T11032] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 503.292210][T11034] ovs_: entered promiscuous mode [ 503.381997][T11034] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input139 [ 503.915955][T11042] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input140 [ 503.951463][T11044] sp0: Synchronizing with TNC [ 504.754552][T11059] FAULT_INJECTION: forcing a failure. [ 504.754552][T11059] name failslab, interval 1, probability 0, space 0, times 0 [ 504.783775][T11059] CPU: 1 UID: 0 PID: 11059 Comm: syz.3.1189 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 504.783827][T11059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 504.783849][T11059] Call Trace: [ 504.783860][T11059] [ 504.783872][T11059] dump_stack_lvl+0x16c/0x1f0 [ 504.783920][T11059] should_fail_ex+0x512/0x640 [ 504.783954][T11059] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 504.784000][T11059] should_failslab+0xc2/0x120 [ 504.784054][T11059] __kmalloc_cache_noprof+0x6a/0x3e0 [ 504.784097][T11059] ? pty_common_install+0x10e/0xb30 [ 504.784173][T11059] pty_common_install+0x10e/0xb30 [ 504.784228][T11059] ? __pfx_pty_install+0x10/0x10 [ 504.784278][T11059] tty_init_dev.part.0+0x99/0x500 [ 504.784319][T11059] tty_open+0xa50/0xf90 [ 504.784362][T11059] ? __pfx_tty_open+0x10/0x10 [ 504.784400][T11059] ? chrdev_open+0x10b/0x6a0 [ 504.784457][T11059] ? __pfx_tty_open+0x10/0x10 [ 504.784491][T11059] chrdev_open+0x234/0x6a0 [ 504.784539][T11059] ? __pfx_apparmor_file_open+0x10/0x10 [ 504.784582][T11059] ? __pfx_chrdev_open+0x10/0x10 [ 504.784636][T11059] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 504.784689][T11059] do_dentry_open+0x744/0x1c10 [ 504.784737][T11059] ? __pfx_chrdev_open+0x10/0x10 [ 504.784796][T11059] vfs_open+0x82/0x3f0 [ 504.784832][T11059] path_openat+0x1de4/0x2cb0 [ 504.784890][T11059] ? __pfx_path_openat+0x10/0x10 [ 504.784941][T11059] ? __lock_acquire+0xb8a/0x1c90 [ 504.784992][T11059] do_filp_open+0x20b/0x470 [ 504.785040][T11059] ? __pfx_do_filp_open+0x10/0x10 [ 504.785121][T11059] ? alloc_fd+0x471/0x7d0 [ 504.785186][T11059] do_sys_openat2+0x11b/0x1d0 [ 504.785223][T11059] ? __pfx_do_sys_openat2+0x10/0x10 [ 504.785275][T11059] __x64_sys_openat+0x174/0x210 [ 504.785311][T11059] ? __pfx___x64_sys_openat+0x10/0x10 [ 504.785365][T11059] do_syscall_64+0xcd/0x490 [ 504.785414][T11059] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 504.785451][T11059] RIP: 0033:0x7f03a6f8e9a9 [ 504.785479][T11059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 504.785513][T11059] RSP: 002b:00007f03a7e6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 504.785547][T11059] RAX: ffffffffffffffda RBX: 00007f03a71b5fa0 RCX: 00007f03a6f8e9a9 [ 504.785570][T11059] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 504.785593][T11059] RBP: 00007f03a7010d69 R08: 0000000000000000 R09: 0000000000000000 [ 504.785615][T11059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 504.785635][T11059] R13: 0000000000000000 R14: 00007f03a71b5fa0 R15: 00007ffe2b657e88 [ 504.785681][T11059] [ 505.142212][T11066] FAULT_INJECTION: forcing a failure. [ 505.142212][T11066] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 505.156765][T11066] CPU: 0 UID: 0 PID: 11066 Comm: syz.3.1191 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 505.156798][T11066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 505.156813][T11066] Call Trace: [ 505.156820][T11066] [ 505.156828][T11066] dump_stack_lvl+0x16c/0x1f0 [ 505.156862][T11066] should_fail_ex+0x512/0x640 [ 505.156890][T11066] strncpy_from_user+0x3b/0x2e0 [ 505.156931][T11066] getname_flags.part.0+0x8f/0x550 [ 505.156959][T11066] getname_flags+0x93/0xf0 [ 505.156987][T11066] do_sys_openat2+0xb8/0x1d0 [ 505.157009][T11066] ? __pfx_do_sys_openat2+0x10/0x10 [ 505.157035][T11066] ? __fget_files+0x20e/0x3c0 [ 505.157070][T11066] __x64_sys_openat+0x174/0x210 [ 505.157093][T11066] ? __pfx___x64_sys_openat+0x10/0x10 [ 505.157116][T11066] ? ksys_write+0x1ac/0x250 [ 505.157155][T11066] do_syscall_64+0xcd/0x490 [ 505.157187][T11066] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.157212][T11066] RIP: 0033:0x7f03a6f8e9a9 [ 505.157230][T11066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 505.157253][T11066] RSP: 002b:00007f03a7e6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 505.157274][T11066] RAX: ffffffffffffffda RBX: 00007f03a71b5fa0 RCX: 00007f03a6f8e9a9 [ 505.157290][T11066] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 505.157305][T11066] RBP: 00007f03a7e6e090 R08: 0000000000000000 R09: 0000000000000000 [ 505.157319][T11066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 505.157332][T11066] R13: 0000000000000000 R14: 00007f03a71b5fa0 R15: 00007ffe2b657e88 [ 505.157361][T11066] [ 505.618173][T11051] FAULT_INJECTION: forcing a failure. [ 505.618173][T11051] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 505.634386][T11051] CPU: 1 UID: 0 PID: 11051 Comm: syz.0.1186 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 505.634420][T11051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 505.634435][T11051] Call Trace: [ 505.634443][T11051] [ 505.634451][T11051] dump_stack_lvl+0x16c/0x1f0 [ 505.634486][T11051] should_fail_ex+0x512/0x640 [ 505.634515][T11051] _copy_from_user+0x2e/0xd0 [ 505.634544][T11051] copy_from_sockptr_offset+0x15c/0x1b0 [ 505.634580][T11051] ? __pfx_copy_from_sockptr_offset+0x10/0x10 [ 505.634618][T11051] ? is_bpf_text_address+0x8a/0x1a0 [ 505.634656][T11051] do_tcp_getsockopt+0x1004/0x25d0 [ 505.634686][T11051] ? __pfx_do_tcp_getsockopt+0x10/0x10 [ 505.634710][T11051] ? arch_stack_walk+0xa6/0x100 [ 505.634745][T11051] ? _parse_integer_limit+0x17f/0x1d0 [ 505.634786][T11051] ? _kstrtoull+0x145/0x200 [ 505.634819][T11051] ? __pfx__kstrtoull+0x10/0x10 [ 505.634854][T11051] ? aa_label_sk_perm+0x19b/0x5a0 [ 505.634882][T11051] ? find_held_lock+0x2b/0x80 [ 505.634905][T11051] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 505.634931][T11051] ? __lock_acquire+0x622/0x1c90 [ 505.634977][T11051] ? __lock_acquire+0xb8a/0x1c90 [ 505.635010][T11051] ? __pfx___might_resched+0x10/0x10 [ 505.635044][T11051] ? find_held_lock+0x2b/0x80 [ 505.635071][T11051] ? __might_fault+0xe3/0x190 [ 505.635101][T11051] ? __might_fault+0xe3/0x190 [ 505.635130][T11051] ? __might_fault+0x13b/0x190 [ 505.635163][T11051] tcp_getsockopt+0xdf/0x100 [ 505.635191][T11051] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 505.635226][T11051] do_sock_getsockopt+0x34a/0x440 [ 505.635263][T11051] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 505.635296][T11051] ? __pfx_do_sys_openat2+0x10/0x10 [ 505.635333][T11051] __sys_getsockopt+0x123/0x1b0 [ 505.635366][T11051] __x64_sys_getsockopt+0xbd/0x160 [ 505.635393][T11051] ? do_syscall_64+0x91/0x490 [ 505.635421][T11051] ? lockdep_hardirqs_on+0x7c/0x110 [ 505.635448][T11051] do_syscall_64+0xcd/0x490 [ 505.635478][T11051] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.635503][T11051] RIP: 0033:0x7fecb8f8e9a9 [ 505.635522][T11051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 505.635545][T11051] RSP: 002b:00007fecb9dc3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 505.635567][T11051] RAX: ffffffffffffffda RBX: 00007fecb91b5fa0 RCX: 00007fecb8f8e9a9 [ 505.635583][T11051] RDX: 0000000000000023 RSI: 0000000000000006 RDI: 0000000000000001 [ 505.635596][T11051] RBP: 00007fecb9dc3090 R08: 00002000000000c0 R09: 0000000000000000 [ 505.635611][T11051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 505.635625][T11051] R13: 0000000000000000 R14: 00007fecb91b5fa0 R15: 00007fff3c304848 [ 505.635654][T11051] [ 505.931034][T11070] sp0: Synchronizing with TNC [ 506.868763][T11084] blktrace: Concurrent blktraces are not allowed on loop12 [ 508.132360][T11100] netlink: 'syz.1.1200': attribute type 4 has an invalid length. [ 509.091832][T11077] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 509.174991][T11103] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 509.217379][T11103] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 509.223690][T11103] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 509.241351][T11103] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 510.442572][T11129] blktrace: Concurrent blktraces are not allowed on loop12 [ 510.506860][T10445] Bluetooth: hci0: command 0x0c1a tx timeout [ 511.229099][T10445] Bluetooth: hci3: command 0x0c1a tx timeout [ 511.235267][ T5983] Bluetooth: hci2: command 0x0c1a tx timeout [ 511.306906][T10445] Bluetooth: hci1: command 0x0c1a tx timeout [ 511.953594][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 511.961303][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 512.150149][T11150] sp0: Synchronizing with TNC [ 512.853058][T11168] binder: 11167:11168 ioctl c0306201 200000000080 returned -14 [ 514.534670][T11181] blktrace: Concurrent blktraces are not allowed on loop12 [ 515.958247][T11195] sp0: Synchronizing with TNC [ 516.484837][T11193] random: crng reseeded on system resumption [ 516.831165][T11202] binder: 11201:11202 ioctl c0306201 0 returned -14 [ 518.010779][T11206] FAULT_INJECTION: forcing a failure. [ 518.010779][T11206] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 518.049539][T11206] CPU: 1 UID: 0 PID: 11206 Comm: syz.2.1227 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 518.049594][T11206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 518.049615][T11206] Call Trace: [ 518.049626][T11206] [ 518.049640][T11206] dump_stack_lvl+0x16c/0x1f0 [ 518.049688][T11206] should_fail_ex+0x512/0x640 [ 518.049731][T11206] should_fail_alloc_page+0xe7/0x130 [ 518.049786][T11206] prepare_alloc_pages+0x3c2/0x610 [ 518.049821][T11206] ? rcu_is_watching+0x12/0xc0 [ 518.049859][T11206] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 518.049908][T11206] ? __lock_acquire+0xb8a/0x1c90 [ 518.049969][T11206] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 518.050018][T11206] ? do_raw_spin_lock+0x12c/0x2b0 [ 518.050069][T11206] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 518.050127][T11206] ? find_held_lock+0x2b/0x80 [ 518.050170][T11206] ? __lock_acquire+0xb8a/0x1c90 [ 518.050213][T11206] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 518.050270][T11206] ? policy_nodemask+0xea/0x4e0 [ 518.050322][T11206] alloc_pages_mpol+0x1fb/0x550 [ 518.050376][T11206] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 518.050440][T11206] folio_alloc_mpol_noprof+0x36/0x2f0 [ 518.050477][T11206] shmem_alloc_folio+0x135/0x160 [ 518.050516][T11206] shmem_alloc_and_add_folio+0x499/0xc20 [ 518.050570][T11206] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 518.050628][T11206] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 518.050666][T11206] shmem_get_folio_gfp+0x67f/0x1600 [ 518.050705][T11206] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 518.050738][T11206] ? __lock_acquire+0x622/0x1c90 [ 518.050773][T11206] shmem_fault+0x1fe/0xa30 [ 518.050806][T11206] ? __pfx_shmem_fault+0x10/0x10 [ 518.050843][T11206] ? __lock_acquire+0xb8a/0x1c90 [ 518.050881][T11206] __do_fault+0x10a/0x490 [ 518.050914][T11206] ? __pfx_filemap_map_pages+0x10/0x10 [ 518.050948][T11206] __handle_mm_fault+0x371a/0x5390 [ 518.050986][T11206] ? __pfx___handle_mm_fault+0x10/0x10 [ 518.051015][T11206] ? __pte_offset_map_lock+0x174/0x310 [ 518.051053][T11206] ? find_held_lock+0x2b/0x80 [ 518.051074][T11206] ? find_held_lock+0x2b/0x80 [ 518.051105][T11206] ? follow_page_pte+0x3af/0x14c0 [ 518.051134][T11206] handle_mm_fault+0x589/0xd10 [ 518.051169][T11206] __get_user_pages+0x589/0x3b80 [ 518.051204][T11206] ? __pfx___get_user_pages+0x10/0x10 [ 518.051228][T11206] ? __pfx_down_read_killable+0x10/0x10 [ 518.051264][T11206] ? __lock_acquire+0xb8a/0x1c90 [ 518.051317][T11206] faultin_page_range+0x249/0x980 [ 518.051353][T11206] madvise_do_behavior+0x268/0x3f0 [ 518.051397][T11206] ? __pfx_madvise_do_behavior+0x10/0x10 [ 518.051454][T11206] do_madvise+0x161/0x230 [ 518.051476][T11206] ? __pfx_do_madvise+0x10/0x10 [ 518.051512][T11206] ? xfd_validate_state+0x61/0x180 [ 518.051545][T11206] ? __pfx_do_writev+0x10/0x10 [ 518.051579][T11206] __x64_sys_madvise+0xa9/0x110 [ 518.051608][T11206] ? lockdep_hardirqs_on+0x7c/0x110 [ 518.051643][T11206] do_syscall_64+0xcd/0x490 [ 518.051687][T11206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 518.051723][T11206] RIP: 0033:0x7efca4f8e9a9 [ 518.051747][T11206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 518.051771][T11206] RSP: 002b:00007efca5dae038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 518.051794][T11206] RAX: ffffffffffffffda RBX: 00007efca51b5fa0 RCX: 00007efca4f8e9a9 [ 518.051809][T11206] RDX: 0000000000000017 RSI: 0000000000100000 RDI: 0000000000000000 [ 518.051824][T11206] RBP: 00007efca5010d69 R08: 0000000000000000 R09: 0000000000000000 [ 518.051838][T11206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 518.051852][T11206] R13: 0000000000000000 R14: 00007efca51b5fa0 R15: 00007ffd71b3ed18 [ 518.051881][T11206] [ 518.603056][T11207] random: crng reseeded on system resumption [ 519.119235][T11234] netlink: 280 bytes leftover after parsing attributes in process `syz.1.1231'. [ 519.294253][T11234] sctp: [Deprecated]: syz.1.1231 (pid 11234) Use of struct sctp_assoc_value in delayed_ack socket option. [ 519.294253][T11234] Use struct sctp_sack_info instead [ 519.517214][T11240] sp0: Synchronizing with TNC [ 520.154066][T11245] random: crng reseeded on system resumption [ 520.893709][T11270] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1235'. [ 523.201123][T11301] random: crng reseeded on system resumption [ 523.633284][T11296] random: crng reseeded on system resumption [ 523.888171][T11307] blktrace: Concurrent blktraces are not allowed on loop12 [ 525.859990][T11319] binder: 11318:11319 unknown command 0 [ 525.904171][T11319] binder: 11318:11319 ioctl c0306201 200000000080 returned -22 [ 527.758348][T11350] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 527.764586][T11350] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 527.774726][T11350] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 527.781209][T11350] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 528.965181][T11375] blktrace: Concurrent blktraces are not allowed on loop2 [ 528.979505][T11375] vmstat_refresh: nr_hugetlb -31232 [ 529.576532][T11378] FAULT_INJECTION: forcing a failure. [ 529.576532][T11378] name fail_futex, interval 1, probability 0, space 0, times 0 [ 529.652736][T11378] CPU: 0 UID: 0 PID: 11378 Comm: syz.2.1254 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 529.652782][T11378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 529.652802][T11378] Call Trace: [ 529.652812][T11378] [ 529.652825][T11378] dump_stack_lvl+0x16c/0x1f0 [ 529.652869][T11378] should_fail_ex+0x512/0x640 [ 529.652910][T11378] ? rcu_is_watching+0x12/0xc0 [ 529.652947][T11378] get_futex_key+0x1d0/0x1540 [ 529.652991][T11378] ? __pfx_get_futex_key+0x10/0x10 [ 529.653031][T11378] ? do_semtimedop+0x1d3/0x2e0 [ 529.653070][T11378] futex_wake+0xea/0x530 [ 529.653118][T11378] ? __pfx_futex_wake+0x10/0x10 [ 529.653187][T11378] do_futex+0x1e3/0x350 [ 529.653228][T11378] ? __pfx_do_futex+0x10/0x10 [ 529.653277][T11378] __x64_sys_futex+0x1e0/0x4c0 [ 529.653322][T11378] ? __pfx___x64_sys_futex+0x10/0x10 [ 529.653364][T11378] ? __pfx___x64_sys_semtimedop+0x10/0x10 [ 529.653414][T11378] do_syscall_64+0xcd/0x490 [ 529.653459][T11378] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 529.653493][T11378] RIP: 0033:0x7efca4f8e9a9 [ 529.653518][T11378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 529.653551][T11378] RSP: 002b:00007efca5d8d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 529.653581][T11378] RAX: ffffffffffffffda RBX: 00007efca51b6088 RCX: 00007efca4f8e9a9 [ 529.653603][T11378] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efca51b608c [ 529.653624][T11378] RBP: 00007efca51b6080 R08: 00007efca5daf000 R09: 0000000000000000 [ 529.653645][T11378] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007efca51b608c [ 529.653665][T11378] R13: 0000000000000000 R14: 00007ffd71b3ec30 R15: 00007ffd71b3ed18 [ 529.653707][T11378] [ 530.046094][T10445] Bluetooth: hci1: command 0x0c1a tx timeout [ 530.055738][T10445] Bluetooth: hci3: command 0x0c1a tx timeout [ 530.061885][T10445] Bluetooth: hci2: command 0x0c1a tx timeout [ 530.067965][T10445] Bluetooth: hci0: command 0x0c1a tx timeout [ 531.354354][T11406] ubi0: attaching mtd0 [ 531.361317][T11406] ubi0: scanning is finished [ 531.467684][T11406] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 531.487585][T11406] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 531.494862][T11406] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 531.591244][T11406] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 531.606760][T11406] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 531.613729][T11406] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 531.622190][T11406] ubi0: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 186512323 [ 531.633589][T11406] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 531.689446][T11408] ubi0: detaching mtd0 [ 531.708904][T11414] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input141 [ 531.750754][T11408] ubi0: mtd0 is detached [ 532.782576][T11424] netlink: 'syz.0.1264': attribute type 2 has an invalid length. [ 534.234953][T11443] ubi0: attaching mtd0 [ 534.240831][T11443] ubi0: scanning is finished n[ 534.664884][T11443] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 534.672784][T11443] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 534.680921][T11443] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 534.689110][T11443] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 534.703765][T11443] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 534.727702][T11452] netlink: 21 bytes leftover after parsing attributes in process `syz.3.1269'. [ 534.798883][T11443] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 534.808817][T11443] ubi0: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 186512323 [ 534.819057][T11443] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 534.839122][T11449] ubi0: background thread "ubi_bgt0d" started, PID 11449 [ 535.387118][T11459] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input143 [ 535.442451][T11463] binder: 11462:11463 ioctl c0306201 0 returned -14 [ 537.705180][T11488] ptrace attach of "./syz-executor exec"[5845] was attempted by "./syz-executor exec"[11488] [ 538.348775][T11497] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 540.301642][T11525] ptp ptp0: only physical clock in use now [ 545.022896][T11599] FAULT_INJECTION: forcing a failure. [ 545.022896][T11599] name failslab, interval 1, probability 0, space 0, times 0 [ 545.035976][T11599] CPU: 1 UID: 0 PID: 11599 Comm: syz.1.1299 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 545.036025][T11599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 545.036039][T11599] Call Trace: [ 545.036047][T11599] [ 545.036056][T11599] dump_stack_lvl+0x16c/0x1f0 [ 545.036089][T11599] should_fail_ex+0x512/0x640 [ 545.036114][T11599] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 545.036151][T11599] should_failslab+0xc2/0x120 [ 545.036188][T11599] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 545.036221][T11599] ? getname_flags.part.0+0x4c/0x550 [ 545.036249][T11599] getname_flags.part.0+0x4c/0x550 [ 545.036276][T11599] getname_flags+0x93/0xf0 [ 545.036305][T11599] do_sys_openat2+0xb8/0x1d0 [ 545.036329][T11599] ? __pfx_do_sys_openat2+0x10/0x10 [ 545.036364][T11599] __x64_sys_openat+0x174/0x210 [ 545.036388][T11599] ? __pfx___x64_sys_openat+0x10/0x10 [ 545.036424][T11599] do_syscall_64+0xcd/0x490 [ 545.036456][T11599] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 545.036480][T11599] RIP: 0033:0x7f20d398e9a9 [ 545.036499][T11599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 545.036522][T11599] RSP: 002b:00007f20d4828038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 545.036544][T11599] RAX: ffffffffffffffda RBX: 00007f20d3bb5fa0 RCX: 00007f20d398e9a9 [ 545.036560][T11599] RDX: 0000000000000002 RSI: 0000000000000000 RDI: ffffffffffffff9c [ 545.036587][T11599] RBP: 00007f20d3a10d69 R08: 0000000000000000 R09: 0000000000000000 [ 545.036606][T11599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 545.036627][T11599] R13: 0000000000000000 R14: 00007f20d3bb5fa0 R15: 00007ffe35b8c958 [ 545.036668][T11599] [ 545.210328][ C1] vkms_vblank_simulate: vblank timer overrun [ 547.495641][T11632] blktrace: Concurrent blktraces are not allowed on loop12 [ 547.568119][T11634] sp0: Synchronizing with TNC [ 547.953726][T11645] FAULT_INJECTION: forcing a failure. [ 547.953726][T11645] name fail_futex, interval 1, probability 0, space 0, times 0 [ 547.971656][T11645] CPU: 0 UID: 0 PID: 11645 Comm: syz.2.1314 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 547.971700][T11645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 547.971718][T11645] Call Trace: [ 547.971727][T11645] [ 547.971738][T11645] dump_stack_lvl+0x16c/0x1f0 [ 547.971782][T11645] should_fail_ex+0x512/0x640 [ 547.971819][T11645] should_fail_futex+0x4c/0x60 [ 547.971855][T11645] __x64_sys_futex+0x25e/0x4c0 [ 547.971898][T11645] ? __pfx___x64_sys_futex+0x10/0x10 [ 547.971937][T11645] ? xfd_validate_state+0x61/0x180 [ 547.971998][T11645] do_syscall_64+0xcd/0x490 [ 547.972040][T11645] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 547.972072][T11645] RIP: 0033:0x7efca4f8e9a9 [ 547.972097][T11645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 547.972126][T11645] RSP: 002b:00007ffd71b3ee78 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 547.972155][T11645] RAX: ffffffffffffffda RBX: 0000000000085c07 RCX: 00007efca4f8e9a9 [ 547.972176][T11645] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007efca51b5fac [ 547.972194][T11645] RBP: 0000000000000032 R08: 00007efca5daf000 R09: 0000001871b3f16f [ 547.972214][T11645] R10: 00007ffd71b3ef70 R11: 0000000000000246 R12: 00007efca51b5fac [ 547.972235][T11645] R13: 00007ffd71b3ef70 R14: 0000000000085c39 R15: 00007ffd71b3ef90 [ 547.972276][T11645] [ 548.624352][T11660] FAULT_INJECTION: forcing a failure. [ 548.624352][T11660] name failslab, interval 1, probability 0, space 0, times 0 [ 548.724896][T11660] CPU: 0 UID: 0 PID: 11660 Comm: syz.2.1317 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 548.724951][T11660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 548.724972][T11660] Call Trace: [ 548.724983][T11660] [ 548.724996][T11660] dump_stack_lvl+0x16c/0x1f0 [ 548.725045][T11660] should_fail_ex+0x512/0x640 [ 548.725082][T11660] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 548.725131][T11660] should_failslab+0xc2/0x120 [ 548.725184][T11660] __kmalloc_cache_noprof+0x6a/0x3e0 [ 548.725228][T11660] ? cgroup_file_open+0x93/0x330 [ 548.725268][T11660] cgroup_file_open+0x93/0x330 [ 548.725299][T11660] ? __pfx_cgroup_file_open+0x10/0x10 [ 548.725336][T11660] kernfs_fop_open+0x8c9/0xda0 [ 548.725375][T11660] ? file_set_fsnotify_mode_from_watchers+0x141/0x640 [ 548.725424][T11660] do_dentry_open+0x744/0x1c10 [ 548.725468][T11660] ? __pfx_kernfs_fop_open+0x10/0x10 [ 548.725524][T11660] vfs_open+0x82/0x3f0 [ 548.725562][T11660] path_openat+0x1de4/0x2cb0 [ 548.725622][T11660] ? __pfx_path_openat+0x10/0x10 [ 548.725665][T11660] ? __lock_acquire+0xb8a/0x1c90 [ 548.725709][T11660] do_filp_open+0x20b/0x470 [ 548.725753][T11660] ? __pfx_do_filp_open+0x10/0x10 [ 548.725810][T11660] ? alloc_fd+0x471/0x7d0 [ 548.725846][T11660] do_sys_openat2+0x11b/0x1d0 [ 548.725870][T11660] ? __pfx_do_sys_openat2+0x10/0x10 [ 548.725905][T11660] __x64_sys_openat+0x174/0x210 [ 548.725929][T11660] ? __pfx___x64_sys_openat+0x10/0x10 [ 548.725971][T11660] do_syscall_64+0xcd/0x490 [ 548.726004][T11660] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 548.726028][T11660] RIP: 0033:0x7efca4f8e9a9 [ 548.726047][T11660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 548.726071][T11660] RSP: 002b:00007efca5dae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 548.726093][T11660] RAX: ffffffffffffffda RBX: 00007efca51b5fa0 RCX: 00007efca4f8e9a9 [ 548.726109][T11660] RDX: 0000000000063102 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 548.726124][T11660] RBP: 00007efca5010d69 R08: 0000000000000000 R09: 0000000000000000 [ 548.726139][T11660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 548.726153][T11660] R13: 0000000000000000 R14: 00007efca51b5fa0 R15: 00007ffd71b3ed18 [ 548.726182][T11660] [ 551.044657][T11683] kexec: Could not allocate control_code_buffer [ 552.040021][T11701] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 556.996768][ T5983] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 557.458925][T11749] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 557.597303][T11766] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1342'. [ 559.999828][T11788] random: crng reseeded on system resumption [ 561.797562][T11814] random: crng reseeded on system resumption [ 562.312357][T11820] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input144 [ 563.434554][T11821] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input145 [ 565.670560][T11855] binder: 11854:11855 ioctl c0306201 0 returned -14 [ 565.810992][T11857] sp0: Synchronizing with TNC [ 565.937240][T11863] FAULT_INJECTION: forcing a failure. [ 565.937240][T11863] name failslab, interval 1, probability 0, space 0, times 0 [ 566.055091][T11863] CPU: 1 UID: 0 PID: 11863 Comm: syz.3.1362 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 566.055139][T11863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 566.055159][T11863] Call Trace: [ 566.055170][T11863] [ 566.055182][T11863] dump_stack_lvl+0x16c/0x1f0 [ 566.055237][T11863] should_fail_ex+0x512/0x640 [ 566.055271][T11863] ? __kmalloc_noprof+0xbf/0x510 [ 566.055319][T11863] ? argv_split+0x188/0x440 [ 566.055356][T11863] should_failslab+0xc2/0x120 [ 566.055407][T11863] __kmalloc_noprof+0xd2/0x510 [ 566.055453][T11863] ? __asan_memcpy+0x3c/0x60 [ 566.055499][T11863] argv_split+0x188/0x440 [ 566.055535][T11863] ? __pfx___trace_eprobe_create+0x10/0x10 [ 566.055572][T11863] trace_probe_create+0x7d/0x100 [ 566.055620][T11863] ? __pfx_trace_probe_create+0x10/0x10 [ 566.055679][T11863] create_dyn_event+0xee/0x1c0 [ 566.055718][T11863] trace_parse_run_command+0x1a9/0x3e0 [ 566.055767][T11863] ? __pfx_create_dyn_event+0x10/0x10 [ 566.055808][T11863] ? __pfx_dyn_event_write+0x10/0x10 [ 566.055844][T11863] vfs_write+0x2a0/0x1150 [ 566.055893][T11863] ? __pfx___mutex_lock+0x10/0x10 [ 566.055936][T11863] ? __pfx_vfs_write+0x10/0x10 [ 566.055991][T11863] ? __fget_files+0x20e/0x3c0 [ 566.056045][T11863] ksys_write+0x12a/0x250 [ 566.056087][T11863] ? __pfx_ksys_write+0x10/0x10 [ 566.056149][T11863] do_syscall_64+0xcd/0x490 [ 566.056195][T11863] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.056228][T11863] RIP: 0033:0x7f03a6f8e9a9 [ 566.056254][T11863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 566.056286][T11863] RSP: 002b:00007f03a7e6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 566.056315][T11863] RAX: ffffffffffffffda RBX: 00007f03a71b5fa0 RCX: 00007f03a6f8e9a9 [ 566.056337][T11863] RDX: 0000000000000018 RSI: 0000200000000140 RDI: 0000000000000003 [ 566.056366][T11863] RBP: 00007f03a7e6e090 R08: 0000000000000000 R09: 0000000000000000 [ 566.056386][T11863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 566.056405][T11863] R13: 0000000000000000 R14: 00007f03a71b5fa0 R15: 00007ffe2b657e88 [ 566.056448][T11863] [ 566.273075][ C1] vkms_vblank_simulate: vblank timer overrun [ 566.470083][T11874] FAULT_INJECTION: forcing a failure. [ 566.470083][T11874] name failslab, interval 1, probability 0, space 0, times 0 [ 566.470191][T11874] CPU: 0 UID: 0 PID: 11874 Comm: syz.3.1366 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 566.470232][T11874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 566.470250][T11874] Call Trace: [ 566.470261][T11874] [ 566.470273][T11874] dump_stack_lvl+0x16c/0x1f0 [ 566.470318][T11874] should_fail_ex+0x512/0x640 [ 566.470350][T11874] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 566.470395][T11874] should_failslab+0xc2/0x120 [ 566.470445][T11874] __kmalloc_cache_noprof+0x6a/0x3e0 [ 566.470486][T11874] ? drm_atomic_state_alloc+0xb8/0x120 [ 566.470533][T11874] drm_atomic_state_alloc+0xb8/0x120 [ 566.470574][T11874] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 566.470621][T11874] ? __pfx___might_resched+0x10/0x10 [ 566.470658][T11874] ? rcu_is_watching+0x12/0xc0 [ 566.470690][T11874] ? trace_contention_end+0xdd/0x130 [ 566.470737][T11874] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 566.470777][T11874] ? __mutex_lock+0x1c2/0x1070 [ 566.470842][T11874] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 566.470900][T11874] drm_client_modeset_commit_locked+0x14d/0x580 [ 566.470947][T11874] drm_fb_helper_pan_display+0x32d/0xa40 [ 566.471015][T11874] fb_pan_display+0x47c/0x7d0 [ 566.471063][T11874] ? __pfx_drm_fb_helper_pan_display+0x10/0x10 [ 566.471121][T11874] ud_update_start+0x121/0x300 [ 566.471163][T11874] fbcon_modechanged+0x5ab/0x700 [ 566.471220][T11874] fbcon_update_vcs+0x42/0x50 [ 566.471270][T11874] do_fb_ioctl+0x787/0x7e0 [ 566.471308][T11874] ? __pfx_do_fb_ioctl+0x10/0x10 [ 566.471351][T11874] ? find_held_lock+0x2b/0x80 [ 566.471395][T11874] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 566.471489][T11874] ? __fget_files+0x20e/0x3c0 [ 566.471538][T11874] fb_ioctl+0xe5/0x150 [ 566.471569][T11874] ? __pfx_fb_ioctl+0x10/0x10 [ 566.471606][T11874] __x64_sys_ioctl+0x18e/0x210 [ 566.471650][T11874] do_syscall_64+0xcd/0x490 [ 566.471693][T11874] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.471726][T11874] RIP: 0033:0x7f03a6f8e9a9 [ 566.471751][T11874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 566.471782][T11874] RSP: 002b:00007f03a7e6e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 566.471812][T11874] RAX: ffffffffffffffda RBX: 00007f03a71b5fa0 RCX: 00007f03a6f8e9a9 [ 566.471833][T11874] RDX: 0000200000000140 RSI: 0000000000004601 RDI: 0000000000000003 [ 566.471853][T11874] RBP: 00007f03a7e6e090 R08: 0000000000000000 R09: 0000000000000000 [ 566.471873][T11874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 566.471892][T11874] R13: 0000000000000000 R14: 00007f03a71b5fa0 R15: 00007ffe2b657e88 [ 566.471937][T11874] [ 567.925949][T11892] binder: 11890:11892 ioctl c0306201 0 returned -14 [ 567.942015][T11888] sp0: Synchronizing with TNC [ 568.251437][T11901] random: crng reseeded on system resumption [ 568.318359][T11899] sp0: Synchronizing with TNC [ 568.764338][T11907] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1373'. [ 568.851234][T11907] nbd: must specify a size in bytes for the device [ 569.029038][T11902] input: f as /devices/virtual/input/input146 [ 570.062930][T11928] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input147 [ 570.317449][T11931] binder: 11929:11931 ioctl c0306201 0 returned -14 [ 570.439394][T11933] sp0: Synchronizing with TNC [ 570.548426][T11930] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input148 [ 570.654885][T11940] kmem.limit_in_bytes is deprecated and will be removed. Writing any value to this file has no effect. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 571.358834][T11940] binder: 11937:11940 ioctl c018620c 0 returned -1 [ 572.627094][T11969] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input149 [ 573.400780][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 573.410876][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 573.565572][T11982] [U] - [ 573.583718][T11982] [U] [ 573.595775][T11982] [U] ֊s.-o^yQ)l)+ [ 573.624762][T11982] [U] ʙ3v`- BHRG=xKCm֣aaK6dsT!>Q"3 [ 573.733702][T11982] [U] wD#cV.|RΤcL3eȋK7W}*Yƨ [ 573.953608][T11985] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input150 [ 575.067372][T12009] ubi: mtd0 is already attached to ubi0 [ 575.375471][T12015] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1402'. [ 575.478234][T12015] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1402'. [ 575.554781][T12015] WARNING! power/level is deprecated; use power/control instead [ 575.604699][T12015] ICMPv6: process `syz.1.1402' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead [ 576.006715][T12023] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1404'. [ 576.357135][T12033] FAULT_INJECTION: forcing a failure. [ 576.357135][T12033] name failslab, interval 1, probability 0, space 0, times 0 [ 576.411706][T12033] CPU: 1 UID: 0 PID: 12033 Comm: syz.2.1406 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 576.411766][T12033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 576.411787][T12033] Call Trace: [ 576.411798][T12033] [ 576.411811][T12033] dump_stack_lvl+0x16c/0x1f0 [ 576.411860][T12033] should_fail_ex+0x512/0x640 [ 576.411895][T12033] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 576.411941][T12033] should_failslab+0xc2/0x120 [ 576.411992][T12033] __kmalloc_cache_noprof+0x6a/0x3e0 [ 576.412033][T12033] ? pty_common_install+0x10e/0xb30 [ 576.412104][T12033] pty_common_install+0x10e/0xb30 [ 576.412158][T12033] ? __pfx_pty_install+0x10/0x10 [ 576.412206][T12033] tty_init_dev.part.0+0x99/0x500 [ 576.412246][T12033] tty_open+0xa50/0xf90 [ 576.412290][T12033] ? __pfx_tty_open+0x10/0x10 [ 576.412326][T12033] ? chrdev_open+0x10b/0x6a0 [ 576.412382][T12033] ? __pfx_tty_open+0x10/0x10 [ 576.412416][T12033] chrdev_open+0x234/0x6a0 [ 576.412462][T12033] ? __pfx_apparmor_file_open+0x10/0x10 [ 576.412503][T12033] ? __pfx_chrdev_open+0x10/0x10 [ 576.412557][T12033] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 576.412610][T12033] do_dentry_open+0x744/0x1c10 [ 576.412659][T12033] ? __pfx_chrdev_open+0x10/0x10 [ 576.412730][T12033] vfs_open+0x82/0x3f0 [ 576.412770][T12033] path_openat+0x1de4/0x2cb0 [ 576.412833][T12033] ? __pfx_path_openat+0x10/0x10 [ 576.412881][T12033] ? irqentry_exit+0x3b/0x90 [ 576.412923][T12033] ? lockdep_hardirqs_on+0x7c/0x110 [ 576.412970][T12033] do_filp_open+0x20b/0x470 [ 576.413019][T12033] ? __pfx_do_filp_open+0x10/0x10 [ 576.413099][T12033] ? alloc_fd+0x471/0x7d0 [ 576.413155][T12033] do_sys_openat2+0x11b/0x1d0 [ 576.413189][T12033] ? __pfx_do_sys_openat2+0x10/0x10 [ 576.413242][T12033] __x64_sys_openat+0x174/0x210 [ 576.413278][T12033] ? __pfx___x64_sys_openat+0x10/0x10 [ 576.413334][T12033] do_syscall_64+0xcd/0x490 [ 576.413382][T12033] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.413417][T12033] RIP: 0033:0x7efca4f8e9a9 [ 576.413447][T12033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 576.413480][T12033] RSP: 002b:00007efca5dae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 576.413514][T12033] RAX: ffffffffffffffda RBX: 00007efca51b5fa0 RCX: 00007efca4f8e9a9 [ 576.413537][T12033] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 576.413560][T12033] RBP: 00007efca5010d69 R08: 0000000000000000 R09: 0000000000000000 [ 576.413581][T12033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 576.413603][T12033] R13: 0000000000000000 R14: 00007efca51b5fa0 R15: 00007ffd71b3ed18 [ 576.413648][T12033] [ 576.682224][ C1] vkms_vblank_simulate: vblank timer overrun [ 578.071315][T12046] FAULT_INJECTION: forcing a failure. [ 578.071315][T12046] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 578.095043][T12046] CPU: 1 UID: 0 PID: 12046 Comm: syz.1.1410 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 578.095088][T12046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 578.095105][T12046] Call Trace: [ 578.095116][T12046] [ 578.095127][T12046] dump_stack_lvl+0x16c/0x1f0 [ 578.095171][T12046] should_fail_ex+0x512/0x640 [ 578.095210][T12046] should_fail_alloc_page+0xe7/0x130 [ 578.095262][T12046] prepare_alloc_pages+0x3c2/0x610 [ 578.095302][T12046] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 578.095367][T12046] ? find_held_lock+0x2b/0x80 [ 578.095400][T12046] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 578.095449][T12046] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 578.095483][T12046] ? is_bpf_text_address+0x94/0x1a0 [ 578.095527][T12046] ? unwind_get_return_address+0x59/0xa0 [ 578.095559][T12046] ? arch_stack_walk+0xa6/0x100 [ 578.095595][T12046] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 578.095648][T12046] ? policy_nodemask+0xea/0x4e0 [ 578.095698][T12046] alloc_pages_mpol+0x1fb/0x550 [ 578.095750][T12046] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 578.095803][T12046] ? __thp_vma_allowable_orders+0x1c5/0xb10 [ 578.095842][T12046] alloc_pages_noprof+0x131/0x390 [ 578.095894][T12046] pte_alloc_one+0x1c/0x3a0 [ 578.095928][T12046] __handle_mm_fault+0x3a36/0x5390 [ 578.095987][T12046] ? __pfx___handle_mm_fault+0x10/0x10 [ 578.096024][T12046] ? __pfx_mt_find+0x10/0x10 [ 578.096093][T12046] ? find_vma+0xbf/0x140 [ 578.096121][T12046] ? __pfx_find_vma+0x10/0x10 [ 578.096155][T12046] handle_mm_fault+0x589/0xd10 [ 578.096196][T12046] ? __pkru_allows_pkey+0x51/0xb0 [ 578.096247][T12046] do_user_addr_fault+0x7a6/0x1370 [ 578.096302][T12046] ? rcu_is_watching+0x12/0xc0 [ 578.096339][T12046] exc_page_fault+0x5c/0xb0 [ 578.096378][T12046] asm_exc_page_fault+0x26/0x30 [ 578.096410][T12046] RIP: 0010:check_zeroed_user+0x90/0x1c0 [ 578.096451][T12046] Code: 00 00 00 e8 e2 f4 dc fc 48 89 de 4c 89 ef e8 87 ef dc fc 4d 85 ff 0f 85 a5 00 00 00 e8 c9 f4 dc fc 0f 01 cb 0f ae e8 45 31 e4 <49> 8b 45 00 31 ff 44 89 e6 48 89 c3 e8 ef ef dc fc 45 85 e4 75 79 [ 578.096482][T12046] RSP: 0018:ffffc9000b6878f8 EFLAGS: 00050246 [ 578.096508][T12046] RAX: 0000000000000000 RBX: 0000000000028000 RCX: ffffffff84de1659 [ 578.096528][T12046] RDX: ffff88807ca2da00 RSI: ffffffff84de1667 RDI: 0000000000000006 [ 578.096554][T12046] RBP: 0000000000000000 R08: 0000000000000006 R09: 0000000000000040 [ 578.096571][T12046] R10: 0000000000028000 R11: 0000000000000001 R12: 0000000000000000 [ 578.096590][T12046] R13: 0000000000000040 R14: 0000000000027fc0 R15: 0000000000000000 [ 578.096620][T12046] ? check_zeroed_user+0x79/0x1c0 [ 578.096657][T12046] ? check_zeroed_user+0x87/0x1c0 [ 578.096705][T12046] ? check_zeroed_user+0x87/0x1c0 [ 578.096749][T12046] do_tcp_getsockopt+0x1bac/0x25d0 [ 578.096791][T12046] ? __pfx_do_tcp_getsockopt+0x10/0x10 [ 578.096825][T12046] ? arch_stack_walk+0xa6/0x100 [ 578.096874][T12046] ? _parse_integer_limit+0x17f/0x1d0 [ 578.096930][T12046] ? _kstrtoull+0x145/0x200 [ 578.096982][T12046] ? __pfx__kstrtoull+0x10/0x10 [ 578.097030][T12046] ? aa_label_sk_perm+0x19b/0x5a0 [ 578.097069][T12046] ? find_held_lock+0x2b/0x80 [ 578.097099][T12046] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 578.097133][T12046] ? __lock_acquire+0x622/0x1c90 [ 578.097199][T12046] ? __lock_acquire+0xb8a/0x1c90 [ 578.097245][T12046] ? __pfx___might_resched+0x10/0x10 [ 578.097294][T12046] ? find_held_lock+0x2b/0x80 [ 578.097323][T12046] ? __might_fault+0xe3/0x190 [ 578.097364][T12046] ? __might_fault+0xe3/0x190 [ 578.097404][T12046] ? __might_fault+0x13b/0x190 [ 578.097452][T12046] tcp_getsockopt+0xdf/0x100 [ 578.097491][T12046] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 578.097539][T12046] do_sock_getsockopt+0x34a/0x440 [ 578.097588][T12046] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 578.097633][T12046] ? __pfx_do_sys_openat2+0x10/0x10 [ 578.097683][T12046] __sys_getsockopt+0x123/0x1b0 [ 578.097731][T12046] __x64_sys_getsockopt+0xbd/0x160 [ 578.097768][T12046] ? do_syscall_64+0x91/0x490 [ 578.097809][T12046] ? lockdep_hardirqs_on+0x7c/0x110 [ 578.097846][T12046] do_syscall_64+0xcd/0x490 [ 578.097888][T12046] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 578.097920][T12046] RIP: 0033:0x7f20d398e9a9 [ 578.097951][T12046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 578.097982][T12046] RSP: 002b:00007f20d4828038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 578.098012][T12046] RAX: ffffffffffffffda RBX: 00007f20d3bb5fa0 RCX: 00007f20d398e9a9 [ 578.098033][T12046] RDX: 0000000000000023 RSI: 0000000000000006 RDI: 0000000000000001 [ 578.098052][T12046] RBP: 00007f20d4828090 R08: 00002000000000c0 R09: 0000000000000000 [ 578.098073][T12046] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 578.098092][T12046] R13: 0000000000000000 R14: 00007f20d3bb5fa0 R15: 00007ffe35b8c958 [ 578.098134][T12046] [ 578.571616][ C1] vkms_vblank_simulate: vblank timer overrun [ 578.752968][T12042] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 579.219559][T12065] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input152 [ 580.908119][T12084] sp0: Synchronizing with TNC [ 581.169016][T12090] binder: 12089:12090 ioctl c0306201 0 returned -14 [ 581.372726][T12094] binder: 12093:12094 ioctl c0306201 0 returned -14 [ 582.890471][T12130] sp0: Synchronizing with TNC [ 585.144149][T12172] sp0: Synchronizing with TNC [ 585.389031][T12176] FAULT_INJECTION: forcing a failure. [ 585.389031][T12176] name failslab, interval 1, probability 0, space 0, times 0 [ 585.431062][T12176] CPU: 0 UID: 0 PID: 12176 Comm: syz.2.1440 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 585.431112][T12176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 585.431133][T12176] Call Trace: [ 585.431144][T12176] [ 585.431158][T12176] dump_stack_lvl+0x16c/0x1f0 [ 585.431209][T12176] should_fail_ex+0x512/0x640 [ 585.431253][T12176] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 585.431306][T12176] should_failslab+0xc2/0x120 [ 585.431362][T12176] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 585.431410][T12176] ? getname_flags.part.0+0x4c/0x550 [ 585.431451][T12176] getname_flags.part.0+0x4c/0x550 [ 585.431490][T12176] getname_flags+0x93/0xf0 [ 585.431531][T12176] do_sys_openat2+0xb8/0x1d0 [ 585.431564][T12176] ? __pfx_do_sys_openat2+0x10/0x10 [ 585.431615][T12176] __x64_sys_openat+0x174/0x210 [ 585.431650][T12176] ? __pfx___x64_sys_openat+0x10/0x10 [ 585.431687][T12176] ? syscall_user_dispatch+0x78/0x140 [ 585.431754][T12176] do_syscall_64+0xcd/0x490 [ 585.431799][T12176] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 585.431833][T12176] RIP: 0033:0x7efca4f8e9a9 [ 585.431860][T12176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 585.431893][T12176] RSP: 002b:00007efca5dae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 585.431925][T12176] RAX: ffffffffffffffda RBX: 00007efca51b5fa0 RCX: 00007efca4f8e9a9 [ 585.431948][T12176] RDX: 3b2af90efa7aae38 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 585.431970][T12176] RBP: 00007efca5010d69 R08: 0000000000000000 R09: 0000000000000000 [ 585.431991][T12176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 585.432011][T12176] R13: 0000000000000000 R14: 00007efca51b5fa0 R15: 00007ffd71b3ed18 [ 585.432054][T12176] [ 587.650044][T12205] blktrace: Concurrent blktraces are not allowed on loop12 [ 592.042547][T12263] blktrace: Concurrent blktraces are not allowed on loop12 [ 593.197889][T12226] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 593.491454][T12274] sp0: Synchronizing with TNC [ 594.402642][T12286] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet. [ 594.635087][T12290] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input153 [ 597.894528][T12329] blktrace: Concurrent blktraces are not allowed on loop12 [ 597.976415][T12330] random: crng reseeded on system resumption [ 598.599021][T12336] sp0: Synchronizing with TNC [ 603.634676][T12385] blktrace: Concurrent blktraces are not allowed on loop12 [ 603.809945][T12387] sp0: Synchronizing with TNC [ 604.424302][ T5983] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 605.189216][T12408] ubi: mtd0 is already attached to ubi0 [ 605.418522][T12416] kvm: user requested TSC rate below hardware speed syzkaller syzkaller login: [ 607.441467][T12451] zswap: compressor not available [ 607.662435][T12457] binder: 12455:12457 ioctl c0306201 0 returned -14 [ 608.107874][T12465] [ 608.110267][T12465] ====================================================== [ 608.117315][T12465] WARNING: possible circular locking dependency detected [ 608.124377][T12465] 6.16.0-syzkaller-06699-ge8d780dcd957 #0 Not tainted [ 608.131138][T12465] ------------------------------------------------------ [ 608.138152][T12465] syz.1.1503/12465 is trying to acquire lock: [ 608.144218][T12465] ffffffff8e75f680 (fs_reclaim){+.+.}-{0:0}, at: prepare_alloc_pages+0x162/0x610 [ 608.153393][T12465] [ 608.153393][T12465] but task is already holding lock: [ 608.160750][T12465] ffffffff8e72b1a8 (pcpu_alloc_mutex){+.+.}-{4:4}, at: pcpu_alloc_noprof+0xb4c/0x1470 [ 608.170338][T12465] [ 608.170338][T12465] which lock already depends on the new lock. [ 608.170338][T12465] [ 608.180739][T12465] [ 608.180739][T12465] the existing dependency chain (in reverse order) is: [ 608.189758][T12465] [ 608.189758][T12465] -> #3 (pcpu_alloc_mutex){+.+.}-{4:4}: [ 608.197597][T12465] __mutex_lock+0x191/0x1070 [ 608.202729][T12465] pcpu_alloc_noprof+0xb4c/0x1470 [ 608.208293][T12465] sbitmap_init_node+0x2fd/0x770 [ 608.213775][T12465] sbitmap_queue_init_node+0x41/0x560 [ 608.219687][T12465] blk_mq_init_tags+0x12d/0x2b0 [ 608.225065][T12465] blk_mq_alloc_map_and_rqs+0x237/0xf60 [ 608.231253][T12465] blk_mq_init_sched+0x30c/0x610 [ 608.236742][T12465] elevator_switch+0x1e1/0x7f0 [ 608.242049][T12465] elevator_change+0x2ac/0x400 [ 608.247347][T12465] elevator_set_default+0x2c4/0x360 [ 608.253080][T12465] blk_register_queue+0x393/0x4f0 [ 608.258645][T12465] __add_disk+0x74a/0xf00 [ 608.263502][T12465] add_disk_fwnode+0x13f/0x5d0 [ 608.268798][T12465] nbd_dev_add+0x783/0xbb0 [ 608.273738][T12465] nbd_init+0x181/0x320 [ 608.278423][T12465] do_one_initcall+0x120/0x6e0 [ 608.283719][T12465] kernel_init_freeable+0x5c2/0x900 [ 608.289447][T12465] kernel_init+0x1c/0x2b0 [ 608.294312][T12465] ret_from_fork+0x5d7/0x6f0 [ 608.299441][T12465] ret_from_fork_asm+0x1a/0x30 [ 608.304734][T12465] [ 608.304734][T12465] -> #2 (&q->elevator_lock){+.+.}-{4:4}: [ 608.312571][T12465] __mutex_lock+0x191/0x1070 [ 608.317750][T12465] elevator_change+0x103/0x400 [ 608.323071][T12465] elv_iosched_store+0x2eb/0x3a0 [ 608.328593][T12465] queue_attr_store+0x268/0x310 [ 608.334017][T12465] sysfs_kf_write+0xef/0x150 [ 608.339218][T12465] kernfs_fop_write_iter+0x354/0x510 [ 608.345071][T12465] vfs_write+0x6c4/0x1150 [ 608.349978][T12465] ksys_write+0x12a/0x250 [ 608.354888][T12465] do_syscall_64+0xcd/0x490 [ 608.359969][T12465] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 608.366435][T12465] [ 608.366435][T12465] -> #1 (&q->q_usage_counter(io)#18){++++}-{0:0}: [ 608.375062][T12465] blk_alloc_queue+0x619/0x760 [ 608.380365][T12465] blk_mq_alloc_queue+0x172/0x280 [ 608.385919][T12465] __blk_mq_alloc_disk+0x29/0x120 [ 608.391559][T12465] loop_add+0x490/0xb70 [ 608.396252][T12465] loop_init+0x164/0x270 [ 608.401055][T12465] do_one_initcall+0x120/0x6e0 [ 608.406356][T12465] kernel_init_freeable+0x5c2/0x900 [ 608.412101][T12465] kernel_init+0x1c/0x2b0 [ 608.416984][T12465] ret_from_fork+0x5d7/0x6f0 [ 608.422134][T12465] ret_from_fork_asm+0x1a/0x30 [ 608.427452][T12465] [ 608.427452][T12465] -> #0 (fs_reclaim){+.+.}-{0:0}: [ 608.434682][T12465] __lock_acquire+0x126f/0x1c90 [ 608.440107][T12465] lock_acquire+0x179/0x350 [ 608.445222][T12465] fs_reclaim_acquire+0x102/0x150 [ 608.450880][T12465] prepare_alloc_pages+0x162/0x610 [ 608.456532][T12465] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 608.462968][T12465] __alloc_pages_noprof+0xb/0x1b0 [ 608.468535][T12465] pcpu_populate_chunk+0x110/0xb00 [ 608.474200][T12465] pcpu_alloc_noprof+0x86a/0x1470 [ 608.479788][T12465] bpf_map_alloc_percpu+0x9a/0x4b0 [ 608.485471][T12465] htab_map_alloc+0x10ca/0x1570 [ 608.490878][T12465] map_create+0x58f/0x1db0 [ 608.495838][T12465] __sys_bpf+0x44d2/0x4de0 [ 608.500884][T12465] __x64_sys_bpf+0x78/0xc0 [ 608.505833][T12465] do_syscall_64+0xcd/0x490 [ 608.510894][T12465] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 608.517321][T12465] [ 608.517321][T12465] other info that might help us debug this: [ 608.517321][T12465] [ 608.527578][T12465] Chain exists of: [ 608.527578][T12465] fs_reclaim --> &q->elevator_lock --> pcpu_alloc_mutex [ 608.527578][T12465] [ 608.540461][T12465] Possible unsafe locking scenario: [ 608.540461][T12465] [ 608.547943][T12465] CPU0 CPU1 [ 608.553339][T12465] ---- ---- [ 608.558741][T12465] lock(pcpu_alloc_mutex); [ 608.563285][T12465] lock(&q->elevator_lock); [ 608.570445][T12465] lock(pcpu_alloc_mutex); [ 608.577512][T12465] lock(fs_reclaim); [ 608.581502][T12465] [ 608.581502][T12465] *** DEADLOCK *** [ 608.581502][T12465] [ 608.589654][T12465] 1 lock held by syz.1.1503/12465: [ 608.594781][T12465] #0: ffffffff8e72b1a8 (pcpu_alloc_mutex){+.+.}-{4:4}, at: pcpu_alloc_noprof+0xb4c/0x1470 [ 608.604864][T12465] [ 608.604864][T12465] stack backtrace: [ 608.610771][T12465] CPU: 0 UID: 0 PID: 12465 Comm: syz.1.1503 Not tainted 6.16.0-syzkaller-06699-ge8d780dcd957 #0 PREEMPT(full) [ 608.610810][T12465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 608.610824][T12465] Call Trace: [ 608.610834][T12465] [ 608.610843][T12465] dump_stack_lvl+0x116/0x1f0 [ 608.610874][T12465] print_circular_bug+0x275/0x350 [ 608.610906][T12465] check_noncircular+0x14c/0x170 [ 608.610938][T12465] __lock_acquire+0x126f/0x1c90 [ 608.610973][T12465] lock_acquire+0x179/0x350 [ 608.611002][T12465] ? prepare_alloc_pages+0x162/0x610 [ 608.611033][T12465] fs_reclaim_acquire+0x102/0x150 [ 608.611055][T12465] ? prepare_alloc_pages+0x162/0x610 [ 608.611078][T12465] prepare_alloc_pages+0x162/0x610 [ 608.611101][T12465] ? __pick_eevdf+0x30a/0x670 [ 608.611129][T12465] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 608.611163][T12465] ? __lock_acquire+0xb8a/0x1c90 [ 608.611194][T12465] ? find_held_lock+0x2b/0x80 [ 608.611215][T12465] ? pcpu_next_md_free_region+0x108/0x380 [ 608.611240][T12465] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 608.611272][T12465] ? pcpu_chunk_refresh_hint+0x2b5/0x360 [ 608.611296][T12465] ? __pfx_pcpu_chunk_refresh_hint+0x10/0x10 [ 608.611326][T12465] ? pcpu_block_update_hint_alloc+0x86b/0xb80 [ 608.611357][T12465] __alloc_pages_noprof+0xb/0x1b0 [ 608.611387][T12465] pcpu_populate_chunk+0x110/0xb00 [ 608.611415][T12465] ? mark_held_locks+0x49/0x80 [ 608.611443][T12465] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 608.611470][T12465] pcpu_alloc_noprof+0x86a/0x1470 [ 608.611505][T12465] bpf_map_alloc_percpu+0x9a/0x4b0 [ 608.611541][T12465] htab_map_alloc+0x10ca/0x1570 [ 608.611568][T12465] ? ns_capable+0xd7/0x110 [ 608.611592][T12465] map_create+0x58f/0x1db0 [ 608.611631][T12465] ? __pfx_map_create+0x10/0x10 [ 608.611665][T12465] ? __might_fault+0xe3/0x190 [ 608.611702][T12465] ? __might_fault+0xe3/0x190 [ 608.611739][T12465] ? __might_fault+0x13b/0x190 [ 608.611790][T12465] __sys_bpf+0x44d2/0x4de0 [ 608.611814][T12465] ? __pfx___sys_bpf+0x10/0x10 [ 608.611835][T12465] ? do_writev+0x218/0x340 [ 608.611864][T12465] ? do_futex+0x122/0x350 [ 608.611892][T12465] ? __pfx_do_futex+0x10/0x10 [ 608.611926][T12465] ? fput+0x70/0xf0 [ 608.611960][T12465] ? xfd_validate_state+0x61/0x180 [ 608.611993][T12465] ? __pfx_do_writev+0x10/0x10 [ 608.612021][T12465] __x64_sys_bpf+0x78/0xc0 [ 608.612045][T12465] ? lockdep_hardirqs_on+0x7c/0x110 [ 608.612071][T12465] do_syscall_64+0xcd/0x490 [ 608.612099][T12465] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 608.612122][T12465] RIP: 0033:0x7f20d398e9a9 [ 608.612139][T12465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 608.612161][T12465] RSP: 002b:00007f20d4828038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 608.612182][T12465] RAX: ffffffffffffffda RBX: 00007f20d3bb5fa0 RCX: 00007f20d398e9a9 [ 608.612197][T12465] RDX: 00000000000000a3 RSI: 0000200000000780 RDI: 0000000000000000 [ 608.612211][T12465] RBP: 00007f20d3a10d69 R08: 0000000000000000 R09: 0000000000000000 [ 608.612224][T12465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 608.612237][T12465] R13: 0000000000000000 R14: 00007f20d3bb5fa0 R15: 00007ffe35b8c958 [ 608.612258][T12465] [ 609.349722][T12462] caif:caif_disconnect_client(): nothing to disconnect