last executing test programs: 14.317396375s ago: executing program 1 (id=4161): sendmsg$auto_NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000340)={&(0x7f0000000840)=ANY=[@ANYBLOB="281e000006aec20f9b600e57a2eab630e44618f0396d9c025de3757370b35e4b95f237a73692630994fce41ef400000000", @ANYRES16=0x0, @ANYBLOB="02002dbd7000fedbdf254f00000008006100010000000500f6000100000004008e00"], 0x28}, 0x1, 0x0, 0x0, 0x440c1}, 0x800) openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_RMID(0x2, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, 0x0, 0x0, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf, @raw=0x98}) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r2, 0x540a, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/udp\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/midi2\x00', 0x1, 0x0) r3 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r4) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="2f212dbd7000fcdbdf252100000008000300", @ANYRES32=r6, @ANYBLOB='\b\x00', @ANYRES16], 0x24}}, 0x4000000) sendmsg$auto_NL80211_CMD_REGISTER_FRAME(r3, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="10030000", @ANYRES16=r5, @ANYBLOB="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"], 0x310}, 0x1, 0x0, 0x0, 0x4000000}, 0x80) r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0) madvise$auto(0x0, 0xfffffffffffffffe, 0x15) madvise$auto(0x0, 0x200007, 0x8) mmap$auto(0x0, 0x400008, 0xb, 0x9b72, r1, 0x8000) mmap$auto(0xfffffffffffffffd, 0x1fc, 0xde, 0xeb1, r2, 0x2008001) semctl$auto(0x80001ff, 0x804, 0x13, 0x4) keyctl$auto(0x1, 0x7, 0x100, 0x8, 0x4) madvise$auto(0x0, 0x2003f0, 0x15) 11.118622433s ago: executing program 1 (id=4166): statx$auto(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x4, &(0x7f0000000040)={0x1, 0xa, 0x0, 0x7ff, 0x0, 0x0, 0xfffb, 0x8000, 0x83, 0x0, 0x7c55, 0x34b, {0x1000000, 0xe}, {0x100, 0x9}, {0x81, 0x2}, {0xfff, 0xfff}, 0x1, 0x6, 0xb0, 0xfffffffb, 0x3, 0x76b3, 0x4, 0x8, 0x6, 0x20000000, 0x3, 0x4, [0x10, 0x4, 0x3, 0x523, 0x4, 0x8, 0xf, 0x1, 0x7]}) 10.767484396s ago: executing program 1 (id=4167): mmap$auto(0x0, 0x20007, 0x4000000000df, 0x12, 0xffffffffffffffff, 0x7ffc) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r1, &(0x7f0000000080)={{&(0x7f00000002c0), 0x1, &(0x7f0000000280)={&(0x7f0000000780)="4c0300000000000000a3677337f9ecba", 0xfffffffffffffff7}, 0xc, 0x0, 0x5, 0x5}, 0x8}, 0xfffffffe, 0x100) pivot_root$auto(0x0, 0x0) nanosleep$auto(0x0, 0x0) open(0x0, 0x7d7f, 0x42) kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) write$auto(r2, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff) connect$auto(r2, 0x0, 0xffffff1a) unshare$auto(0x40000080) getsockopt$auto(0xffffffffffffffff, 0xd33, 0x4, &(0x7f0000000040)='/dev/cec27\x00', 0x0) madvise$auto(0x800000000, 0xffffffffffff0000, 0x80) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) r3 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x20000, 0x0) ioctl$auto_USB_RAW_IOCTL_INIT(r3, 0x41015500, &(0x7f0000000140)={"a7a018b09bb196a05739a38a73473b93f5452886bc599ef976c54a71a5ce72a9af15390e93a8760df83859e16320e8d0b1161f13d12afae66b1d900a49586aa98d3504ca431aabab1964249251e57fa70517cc19b0e3974dc2a89e90c932b8859c767780d65e849700", "e600d778e82f8b8db7e27a036e39a8ac08de7e036d650e2184857e6b64f6a2c7fb08c6f5ce3828fb4e9498c076bef49c99c9cd91332e12b53664dc20fa879020fbd184c0d300c13be6047a70685ce029fb2385ae6e132c1c6adbcfbd873a3b925d397a08e8733e19ef5ec4f40b0b473c72efd18b8a9e9f3d12c5e44468922beb", 0x3}) ioctl$auto_USB_RAW_IOCTL_RUN(r3, 0x5501, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/keys\x00', 0x8af00, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 9.505606434s ago: executing program 3 (id=4168): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) r0 = socket(0x29, 0x2, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x2, 0x948b, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) getpid() openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000000c0), r0) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) socketcall$auto_SYS_BIND(0x2, 0x0) 8.974452411s ago: executing program 2 (id=4171): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, 0x0, 0x80001, 0x0) fcntl$auto_F_OFD_SETLKW(r0, 0x26, 0x2000009) r1 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000240), 0x80, 0x0) ioctl$auto_BCH_IOCTL_DISK_OFFLINE(r1, 0x4010bc07, &(0x7f0000000280)={0x1595, 0x0, 0x7}) io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kmsg\x00', 0x80900, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x401, 0x5, 0x1, 0x2000000000948b, 0x3, 0x95f4da0a, 0x803, 0xfffffffffffffffe, 0xffff, 0x80000001, 0x96c1, 0x6d3f, 0xeca, 0x3, 0x8]}, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x4, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0xfffffffffffffff6, 0x0, 0x3f80, 0x79d, 0x338, 0x9, 0x2, 0xb]}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x58, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x23, 0x3, 0x10100) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000700), r3) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000740)={'pim6reg0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_CHANNEL(r3, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000780)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010027bd7000fddbdf256000000008000300", @ANYRES32=r5], 0x1c}, 0x1, 0x0, 0x0, 0x4080}, 0x20000000) write$auto(0xffffffffffffffff, 0x0, 0x40000001) write$auto(0x3, 0x0, 0x5c8) write$auto(0x3, 0x0, 0xffd8) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x40000, 0x2020005, 0x1, 0xeb1, 0xfffffffffffffffa, 0xda5) socket(0x28, 0x3, 0x14) 7.800199086s ago: executing program 2 (id=4173): mmap$auto(0x0, 0x20007, 0x4000000000df, 0x12, 0xffffffffffffffff, 0x7ffc) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r1, &(0x7f0000000080)={{&(0x7f00000002c0), 0x1, &(0x7f0000000280)={&(0x7f0000000780)="4c0300000000000000a3677337f9ecba", 0xfffffffffffffff7}, 0xc, 0x0, 0x5, 0x5}, 0x8}, 0xfffffffe, 0x100) pivot_root$auto(0x0, 0x0) nanosleep$auto(0x0, 0x0) open(0x0, 0x7d7f, 0x42) kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) write$auto(r2, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff) connect$auto(r2, 0x0, 0xffffff1a) unshare$auto(0x40000080) socket(0x2, 0x2, 0x1) madvise$auto(0x800000000, 0xffffffffffff0000, 0x80) r3 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x20000, 0x0) ioctl$auto_USB_RAW_IOCTL_INIT(r3, 0x41015500, &(0x7f0000000140)={"a7a018b09bb196a05739a38a73473b93f5452886bc599ef976c54a71a5ce72a9af15390e93a8760df83859e16320e8d0b1161f13d12afae66b1d900a49586aa98d3504ca431aabab1964249251e57fa70517cc19b0e3974dc2a89e90c932b8859c767780d65e849700", "e600d778e82f8b8db7e27a036e39a8ac08de7e036d650e2184857e6b64f6a2c7fb08c6f5ce3828fb4e9498c076bef49c99c9cd91332e12b53664dc20fa879020fbd184c0d300c13be6047a70685ce029fb2385ae6e132c1c6adbcfbd873a3b925d397a08e8733e19ef5ec4f40b0b473c72efd18b8a9e9f3d12c5e44468922beb", 0x3}) ioctl$auto_USB_RAW_IOCTL_RUN(r3, 0x5501, 0x0) 6.859382309s ago: executing program 1 (id=4174): mmap$auto(0x0, 0x20007, 0x4000000000df, 0x12, 0xffffffffffffffff, 0x7ffc) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r1, &(0x7f0000000080)={{&(0x7f00000002c0), 0x1, &(0x7f0000000280)={&(0x7f0000000780)="4c0300000000000000a3677337f9ecba", 0xfffffffffffffff7}, 0xc, 0x0, 0x5, 0x5}, 0x8}, 0xfffffffe, 0x100) pivot_root$auto(0x0, 0x0) nanosleep$auto(0x0, 0x0) open(0x0, 0x7d7f, 0x42) kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) write$auto(r2, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff) connect$auto(r2, 0x0, 0xffffff1a) unshare$auto(0x40000080) socket(0x2, 0x2, 0x1) madvise$auto(0x800000000, 0xffffffffffff0000, 0x80) r3 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x20000, 0x0) ioctl$auto_USB_RAW_IOCTL_INIT(r3, 0x41015500, &(0x7f0000000140)={"a7a018b09bb196a05739a38a73473b93f5452886bc599ef976c54a71a5ce72a9af15390e93a8760df83859e16320e8d0b1161f13d12afae66b1d900a49586aa98d3504ca431aabab1964249251e57fa70517cc19b0e3974dc2a89e90c932b8859c767780d65e849700", "e600d778e82f8b8db7e27a036e39a8ac08de7e036d650e2184857e6b64f6a2c7fb08c6f5ce3828fb4e9498c076bef49c99c9cd91332e12b53664dc20fa879020fbd184c0d300c13be6047a70685ce029fb2385ae6e132c1c6adbcfbd873a3b925d397a08e8733e19ef5ec4f40b0b473c72efd18b8a9e9f3d12c5e44468922beb", 0x3}) ioctl$auto_USB_RAW_IOCTL_RUN(r3, 0x5501, 0x0) 6.832588044s ago: executing program 0 (id=4175): openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x280, 0x0) socket(0x1d, 0x3, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x2, 0x2, 0x0) socket(0x1a, 0x5, 0xfffffffd) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) getsockopt$auto(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0) sendmsg$auto_IPVS_CMD_DEL_SERVICE(0xffffffffffffffff, 0x0, 0xc004) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x90, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000001f, 0x2, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_DEL_PMK(0xffffffffffffffff, 0x0, 0x8000) socket(0xa, 0x5, 0x8) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x1, 0x100) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x4c440, 0x0) socket(0xa, 0x3, 0xff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x1e, 0x805, 0x0) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x100000000000038, 0x0) fsopen$auto(0x0, 0x1) 5.277560932s ago: executing program 0 (id=4177): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) recvfrom$auto(r0, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) sendmsg$auto_NETDEV_CMD_QSTATS_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x20008800}, 0x1) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x14, 0x0, 0x2, 0x70bd29, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x4002, 0x20040000}, 0x4004001) 5.139535852s ago: executing program 0 (id=4178): get_mempolicy$auto(0x0, &(0x7f0000000bc0)=0x74ef, 0x54d7, 0x1, 0x4) mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) r0 = ioctl$auto_TUNGETVNETLE2(0xffffffffffffffff, 0x800454dd, 0x0) setsockopt$auto_SO_DEBUG(r0, 0x3, 0x1, &(0x7f00000000c0)='\x00', 0x2) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x400) ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000080)) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/scsi\x00', 0x40d81, 0x0) write$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000080), 0x0) mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2000, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd0\x00', 0xc0c00, 0x0) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r0, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000380)={&(0x7f0000001cc0)={0x1090, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {}, [@ETHTOOL_A_WOL_SOPASS={0x8, 0x3, "cd52eafb"}, @ETHTOOL_A_WOL_MODES={0xc, 0x2, 0x0, 0x1, [@typed={0x8, 0x1c, 0x0, 0x0, @fd}]}, @ETHTOOL_A_WOL_MODES={0x1058, 0x2, 0x0, 0x1, [@nested={0x4, 0xd8}, @nested={0x1047, 0x44, 0x0, 0x1, [@nested={0x4, 0x20}, @generic, @generic="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", @typed={0x8, 0xbd, 0x0, 0x0, @uid}, @generic="f5660fca5fab9e01608a47d7775b0fb21b239ab44fe76399045e1c7792a4fe3c5d0629fac495e14f02ce98f3cd237547d38ac2fe6599f3"]}, @nested={0x8, 0xa4, 0x0, 0x1, [@nested={0x4, 0x1c}]}]}, @ETHTOOL_A_WOL_MODES={0x10, 0x2, 0x0, 0x1, [@typed={0xc, 0x24, 0x0, 0x0, @u64=0x4}]}]}, 0x1090}, 0x1, 0x0, 0x0, 0x20000000}, 0x40) adjtimex$auto(0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) sendmsg$auto_ILA_CMD_DEL(0xffffffffffffffff, 0x0, 0x88d4) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mbind$auto(0x2, 0x80, 0x3, &(0x7f0000000200)=0xff, 0x3, 0x3) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x0, 0x0) openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/kvm/notify_window_exits\x00', 0x20000, 0x0) read$auto(0x3, 0x0, 0x80) r5 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0) write$auto(r5, 0x0, 0x9) mknod$auto(&(0x7f0000000180)=':,\x00', 0x800, 0x4) 4.453442875s ago: executing program 2 (id=4179): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/midiC2D2\x00', 0x0, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, 0x0, 0x100000a3d9) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/modules\x00', 0x88400, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000040)=""/209, 0xd1) mmap$auto(0x0, 0x0, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) read$auto_cgwb_debug_stats_fops_(r1, &(0x7f0000000240)=""/195, 0xc3) ioctl$auto(0x3, 0x2287, 0xffffffffffffffff) socket(0x23, 0x80805, 0x0) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_TIOCGWINSZ(r1, 0x5413, &(0x7f0000000400)="ec2f8ff9e3fb102cbe888b578f5d966feb416e3a1f019963459aeb5d218dddadaca4907438c27c293f1aef247501b0ffca3de383e0de4b56f426fa244b55a34aa39a3b2594548d3f") openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fuse\x00', 0x408000, 0x0) r3 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x10100, 0x0) read$auto_vcs_fops_vc_screen(r3, &(0x7f0000000080)=""/238, 0xffffffe9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r4 = socket(0x1, 0x5, 0x106) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nfc(&(0x7f00000017c0), 0xffffffffffffffff) sendmsg$auto_NFC_CMD_STOP_POLL(0xffffffffffffffff, &(0x7f0000001a80)={0x0, 0x0, &(0x7f0000001a40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="dfa6e3cc", @ANYRES16=r6, @ANYRESHEX=r2, @ANYRES32, @ANYRES16=0xffffffffffffffff], 0x228}, 0x1, 0x0, 0x0, 0x800}, 0x4000000) sendmsg$auto_NFC_CMD_GET_DEVICE(r5, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x290000}, 0xc, &(0x7f0000000380)={&(0x7f0000000840)=ANY=[@ANYRESHEX=r7, @ANYRES32, @ANYBLOB="dbc3a82bbd3c79bae4778443eb2583cea9aafecc6e2751a33703d3acb1918097f14b5642e68f65ec977c360e074104552218ca35648725", @ANYRES32=r4, @ANYRESDEC=r0, @ANYRES16=r8, @ANYRES16=r1, @ANYRESHEX], 0x2c}, 0x1, 0x0, 0x0, 0x90}, 0x10) r9 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFSD_CMD_THREADS_GET(r9, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000001780)={0x14, 0x0, 0x4, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x44848}, 0x24040004) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r10 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_TIOCVHANGUP2(r10, 0x5437, 0x0) write$auto(0x3, 0x0, 0x7fffffff) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x4d428b4f6a88cc31, 0x81010, 0xffffffffffffffff, 0x9) 4.298497022s ago: executing program 2 (id=4180): mmap$auto(0x0, 0x2020009, 0x7, 0xebd, 0xfffffffffffffffa, 0x1) close_range$auto(0xffffffffffffffff, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x9, 0x2, 0x0) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) mmap$auto(0x0, 0x9, 0xdf, 0x1000000eb1, 0x401, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x80080, 0x0) connect$auto(r0, 0x0, 0x1e) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto_PPPIOCSMRU(r0, 0x40047452, 0x0) ioctl$auto(0x3, 0x80000541b, 0x38) close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty0\x00', 0x2c80, 0x0) r1 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/fail_io_timeout/probability\x00', 0x20000, 0x0) read$auto(0x3, 0x0, 0x80) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0) read$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x0) landlock_add_rule$auto(0xffffffffffffffff, 0xd7393533b915ff26, &(0x7f0000000140)="6489384cb0a281c20c4f2402ca42d6e27ca5099aa1c9faec", 0x6) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0) write$auto(r3, 0x0, 0x300001000000) write$auto(r2, 0x0, 0xfdef) mmap$auto(0x0, 0x400008, 0xcf, 0x9b72, r1, 0xfffffffffffffffd) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000100), 0xa0080, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000080)=""/64, 0x40) ioctl$auto(r4, 0x4b4a, 0x1) 4.143782449s ago: executing program 3 (id=4181): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) (fail_nth: 16) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$auto_VHOST_SET_BACKEND_FEATURES(r1, 0x4008af25, 0x0) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000) r2 = openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) socket(0xf, 0xa, 0x5) ioperm$auto(0x7, 0x75, 0x4) fcntl$auto_F_UNLCK(r2, 0x8, 0x2) select$auto(0x2, &(0x7f0000000100)={[0x3, 0x7ff, 0x1, 0x8, 0x94c1, 0x0, 0x5, 0x14, 0x9, 0x2, 0x1, 0x7, 0xd11, 0x420, 0x4, 0x27de]}, &(0x7f0000000180)={[0x7fffffffffffffff, 0x586, 0x1, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0xfffffffffffffff7, 0x7, 0x40, 0x7fffffffffffffff, 0x0, 0x1, 0x5c, 0x8, 0x6]}, &(0x7f0000000200)={[0x96c, 0xb, 0x8000000000000001, 0x7, 0x10000, 0xf50, 0xcb20, 0x1, 0x8, 0x8000, 0x2, 0x7f, 0x6df, 0x8ad5, 0x2, 0x3]}, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) 4.093185862s ago: executing program 0 (id=4182): r0 = socket(0x2, 0x3, 0xa) connect$auto(r0, &(0x7f0000000080)=@l2tp={0x2, 0x0, @loopback, 0x10000000}, 0x54) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async) recvmmsg$auto(r0, 0x0, 0x400fffd, 0x0, 0x0) (async, rerun: 32) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (rerun: 32) ioperm$auto(0x400, 0x7f, 0xd) (async, rerun: 64) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0) (async, rerun: 64) socket(0xa, 0x3, 0x73) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x18, 0x0) (async) write$auto(0x4, 0x0, 0x100082) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) (async, rerun: 64) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64) getrandom$auto(0x0, 0x6000000, 0x3) (async) listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0) (async) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi18\x00', 0xc0400, 0x0) (async, rerun: 64) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) (async, rerun: 64) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) (async) write$auto(0x4, 0x0, 0x100082) (async) socket(0xf, 0x3, 0x2) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) socket(0xa, 0x5, 0x8) getrandom$auto(&(0x7f00000000c0)='+*)\x00', 0x0, 0x2) close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64) r1 = gettid() (rerun: 64) setpriority$auto_PRIO_PROCESS(0x0, r1, 0x3) (async) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000306b87000fedbdf250300000004000800040003800c0016"], 0x28}}, 0x4c810) socket(0x10, 0x2, 0x0) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) 3.294844989s ago: executing program 2 (id=4183): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x8000f500}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$auto_VHOST_SET_BACKEND_FEATURES(r1, 0x4008af25, 0x0) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000) r2 = openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) socket(0xf, 0xa, 0x5) ioperm$auto(0x7, 0x75, 0x4) fcntl$auto_F_UNLCK(r2, 0x8, 0x2) select$auto(0x2, &(0x7f0000000100)={[0x3, 0x7ff, 0x1, 0x8, 0x94c1, 0x0, 0x5, 0x14, 0x9, 0x2, 0x1, 0x7, 0xd11, 0x420, 0x4, 0x27de]}, &(0x7f0000000180)={[0x7fffffffffffffff, 0x586, 0x1, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0xfffffffffffffff7, 0x7, 0x40, 0x7fffffffffffffff, 0x0, 0x1, 0x5c, 0x8, 0x6]}, &(0x7f0000000200)={[0x96c, 0xb, 0x8000000000000001, 0x7, 0x10000, 0xf50, 0xcb20, 0x1, 0x8, 0x8000, 0x2, 0x7f, 0x6df, 0x8ad5, 0x2, 0x3]}, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) 3.051440361s ago: executing program 3 (id=4184): mmap$auto(0xfffffffffffffffc, 0x4021009, 0x7fff, 0xeb1, 0xffffffffffffffff, 0x0) openat$auto_percpu_stats_fops_(0xffffffffffffff9c, 0x0, 0x20800, 0x0) capset$auto(0x0, &(0x7f0000000080)={0x9, 0xffff3155, 0x3}) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x280303, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) writev$auto(0xffffffffffffffff, 0x0, 0x8) mmap$auto(0x0, 0x8001, 0x6, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/firmware/acpi/interrupts/ff_pmtimer\x00', 0x8802, 0x0) write$auto(r0, &(0x7f0000000140)='\x91[', 0x6) select$auto(0x5, &(0x7f0000000080)={[0x20000006, 0xfffffffffffffffc, 0x9, 0x5, 0xc, 0x7fffffffffffffff, 0x3, 0x1ffe000, 0xcad, 0x2, 0x9, 0x0, 0xa65a, 0x202, 0x6, 0x1]}, 0x0, 0x0, 0x0) connect$auto(0x4, 0x0, 0x10) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) fanotify_init$auto(0x602, 0x1) open(&(0x7f0000000180)='./cgroup\x00', 0x165282, 0xe1d2b27bdc14aad9) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x0, 0x0) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0) r1 = open(&(0x7f00000001c0)='./cgroup\x00', 0x80400, 0x55968ff165b8513f) open_by_handle_at$auto(r1, &(0x7f0000000040)={0x5, 0x2, "020000000000"}, 0x3ffff) write$auto_kmsg_fops_printk(r1, &(0x7f00000002c0)="3cf28b93891ad1ee39ef3700921c0900000000000000fd288499c5325908e75ca66ab7316de9259162f4fe94506201c79342fadfdbc0d100000000000000000000003845e799443bb112ee5100", 0x19) mkdir$auto(0x0, 0x8001) mount$auto(0x0, 0x0, &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) r2 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) sendmsg$auto_NL802154_CMD_NEW_SEC_KEY(r2, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="020e26bd7000fbdbdf2517000000080003009350e0946ff5a4039a55de70036787224771b9a6cee9de7d517bff27e5327ca29c3995ce3a5e6b885b774f8e8cdb4c480d2c676892761e1f5aefe743452aacf8bb5fd0ea858b055660c74f", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x40090}, 0x44041) mount$auto(0x0, 0x0, 0x0, 0x339, 0x0) userfaultfd$auto(0x1) 2.882805151s ago: executing program 0 (id=4185): r0 = socket(0x22, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x80044943, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40007, 0x1000000005, 0x9b72, 0x2, 0x8000) userfaultfd$auto(0x1) ioctl$auto(0x3, 0xc018aa3f, 0xf0b) syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), r1) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) socket(0x23, 0xa, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x4, 0xeb1, 0xffffffffffffffff, 0x8001) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) read$auto(r3, 0x0, 0x20) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0xa02, 0x0) unshare$auto(0x40000080) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000005, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x28800, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sg0\x00', 0x40200, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) mmap$auto(0xfffffffffffffff9, 0x400003, 0x7, 0x9b72, 0x2, 0x8000) setsockopt$auto(0xffffffffffffffff, 0x1, 0x1021, 0x0, 0xd) close_range$auto(0x2, 0xa, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace\x00', 0x1a6b75d638828712, 0x0) 2.775804473s ago: executing program 1 (id=4186): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ptyzf\x00', 0x2200, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) write$auto(r0, &(0x7f0000000180)='/d1\x80\x00\x00\x00\x00\x00\x00\x00\x00\xea\xfd\xf6\xc1\xc6C]m\\\x81\x04\xa9\x9ds\xa4\xb6W\xd6\xa5\xe7\x03\xe9\x0fP\xf4,Q\ap\x84!ER\xef$\'\x03\xc6\x9b\xb3RXqW\xf6&', 0x100000a3d9) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)={0x2c, r2, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x6, 0xa, ')%'}, @NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x400000000000004}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) select$auto(0x11, 0x0, 0x0, 0x0, 0x0) prctl$auto_PR_SET_MM_ARG_END(0x9, 0x9, 0xffffffffffffffff, 0xd, 0x13) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20681, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000200)='5', 0x1) sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, &(0x7f0000000200)={[0x8, 0x4, 0x2, 0xb, 0x1, 0x9, 0x0, 0x7fff, 0xa, 0x193, 0xfffffffffffffff9, 0x3, 0x5e4, 0x1000, 0x1, 0x1]}, 0x0, &(0x7f0000000280)={0x6, 0xc8}) socket$nl_generic(0x10, 0x3, 0x10) select$auto(0x7, 0x0, 0x0, 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x40841, 0x8) socket(0xa, 0x5, 0x94) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dri/card0\x00', 0x6c800, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x2482, 0x0) unshare$auto(0x40000080) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r4, 0x1260, 0x5) 1.93748212s ago: executing program 3 (id=4187): openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x280, 0x0) socket(0x1d, 0x3, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x2, 0x2, 0x0) socket(0x1a, 0x5, 0xfffffffd) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) getsockopt$auto(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0) sendmsg$auto_IPVS_CMD_DEL_SERVICE(0xffffffffffffffff, 0x0, 0xc004) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x90, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000001f, 0x2, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_DEL_PMK(0xffffffffffffffff, 0x0, 0x8000) socket(0xa, 0x5, 0x8) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x1, 0x100) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x4c440, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x1e, 0x805, 0x0) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x100000000000038, 0x0) fsopen$auto(0x0, 0x1) 908.32222ms ago: executing program 0 (id=4188): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ptyzf\x00', 0x2200, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) write$auto(r0, &(0x7f0000000180)='/d1\x80\x00\x00\x00\x00\x00\x00\x00\x00\xea\xfd\xf6\xc1\xc6C]m\\\x81\x04\xa9\x9ds\xa4\xb6W\xd6\xa5\xe7\x03\xe9\x0fP\xf4,Q\ap\x84!ER\xef$\'\x03\xc6\x9b\xb3RXqW\xf6&', 0x100000a3d9) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)={0x2c, r2, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x6, 0xa, ')%'}, @NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x400000000000004}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000) select$auto(0x11, 0x0, 0x0, 0x0, 0x0) prctl$auto_PR_SET_MM_ARG_END(0x9, 0x9, 0xffffffffffffffff, 0xd, 0x13) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20681, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000200)='5', 0x1) sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff) select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, &(0x7f0000000200)={[0x8, 0x4, 0x2, 0xb, 0x1, 0x9, 0x0, 0x7fff, 0xa, 0x193, 0xfffffffffffffff9, 0x3, 0x5e4, 0x1000, 0x1, 0x1]}, 0x0, &(0x7f0000000280)={0x6, 0xc8}) socket$nl_generic(0x10, 0x3, 0x10) select$auto(0x7, 0x0, 0x0, 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x40841, 0x8) socket(0xa, 0x5, 0x94) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dri/card0\x00', 0x6c800, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x2482, 0x0) unshare$auto(0x40000080) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r4, 0x1260, 0x5) 678.796568ms ago: executing program 1 (id=4189): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/midiC2D2\x00', 0x0, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, 0x0, 0x100000a3d9) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/modules\x00', 0x88400, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000040)=""/209, 0xd1) mmap$auto(0x0, 0x0, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) read$auto_cgwb_debug_stats_fops_(r1, &(0x7f0000000240)=""/195, 0xc3) ioctl$auto(0x3, 0x2287, 0xffffffffffffffff) socket(0x23, 0x80805, 0x0) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_TIOCGWINSZ(r1, 0x5413, &(0x7f0000000400)="ec2f8ff9e3fb102cbe888b578f5d966feb416e3a1f019963459aeb5d218dddadaca4907438c27c293f1aef247501b0ffca3de383e0de4b56f426fa244b55a34aa39a3b2594548d3f5473676f0cd6324e1fa446c68306fb46e1edadeff08e76008d81bd98ebd647f6b89385dd") openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fuse\x00', 0x408000, 0x0) r3 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x10100, 0x0) read$auto_vcs_fops_vc_screen(r3, &(0x7f0000000080)=""/238, 0xffffffe9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r4 = socket(0x1, 0x5, 0x106) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nfc(&(0x7f00000017c0), 0xffffffffffffffff) sendmsg$auto_NFC_CMD_STOP_POLL(0xffffffffffffffff, &(0x7f0000001a80)={0x0, 0x0, &(0x7f0000001a40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="dfa6e3cc", @ANYRES16=r6, @ANYRESHEX=r2, @ANYRES32, @ANYRES16=0xffffffffffffffff], 0x228}, 0x1, 0x0, 0x0, 0x800}, 0x4000000) sendmsg$auto_NFC_CMD_GET_DEVICE(r5, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x290000}, 0xc, &(0x7f0000000380)={&(0x7f0000000840)=ANY=[@ANYRESHEX=r7, @ANYRES32, @ANYBLOB="dbc3a82bbd3c79bae4778443eb2583cea9aafecc6e2751a33703d3acb1918097f14b5642e68f65ec977c360e074104552218ca35648725", @ANYRES32=r4, @ANYRESDEC=r0, @ANYRES16=r8, @ANYRES16=r1, @ANYRESHEX], 0x2c}, 0x1, 0x0, 0x0, 0x90}, 0x10) r9 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NFSD_CMD_THREADS_GET(r9, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000001780)={0x14, 0x0, 0x4, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x44848}, 0x24040004) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r10 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto_TIOCVHANGUP2(r10, 0x5437, 0x0) write$auto(0x3, 0x0, 0x7fffffff) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x4d428b4f6a88cc31, 0x81010, 0xffffffffffffffff, 0x9) 614.839537ms ago: executing program 3 (id=4190): openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/block/nbd5/hctx0/cpu1/read_rq_list\x00', 0x2, 0x0) read$auto(0x3, 0x0, 0x8080) mmap$auto(0x0, 0x20009, 0x7, 0xeb1, 0x405, 0x8000) r0 = socket(0xa, 0x5, 0x84) io_uring_setup$auto(0x40000002c55, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) setsockopt$auto(r0, 0x10000000084, 0x7f, 0x0, 0xad4) socket(0x10, 0x2, 0x0) userfaultfd$auto(0x1) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2, 0x801, 0x106) socket(0xa, 0x2, 0x0) socket(0xa, 0x2, 0x3a) r1 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_prog_fd=r1}, 0xa3) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000240), 0xffffffffffffffff) bpf$auto_BPF_MAP_DELETE_BATCH(0x1b, &(0x7f0000000000)=@enable_stats={0x9}, 0x8) sendmsg$auto_TIPC_NL_LINK_RESET_STATS(r2, &(0x7f0000003e40)={0x0, 0x0, &(0x7f0000003e00)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="01002cbd7000ffdbdf250a0000ea86000800048004000180"], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x40040050) 277.559719ms ago: executing program 2 (id=4191): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, 0x0, 0x80001, 0x0) fcntl$auto_F_OFD_SETLKW(r0, 0x26, 0x2000009) r1 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000240), 0x80, 0x0) ioctl$auto_BCH_IOCTL_DISK_OFFLINE(r1, 0x4010bc07, &(0x7f0000000280)={0x1595, 0x0, 0x7}) io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kmsg\x00', 0x80900, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x401, 0x5, 0x1, 0x2000000000948b, 0x3, 0x95f4da0a, 0x803, 0x2, 0xffff, 0x80000001, 0x14, 0x6d3f, 0xeca, 0x3, 0x8]}, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x4, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0xfffffffffffffff6, 0x9000000, 0x3f80, 0x79d, 0x338, 0x9, 0x2, 0xb]}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x58, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) write$auto(0xffffffffffffffff, 0x0, 0x40000001) write$auto(0x3, 0x0, 0x5c8) write$auto(0x3, 0x0, 0xffd8) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x28, 0x3, 0x14) writev$auto(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000140)="5135616bbfa0edc86328114b1fd240ff2b7343eef0939c3d550f83962894c61ea10afd46bd3d9ff383def02babb98613ad1d8a9fedd58196ead137693387f48c16eca5af637ec67c1695a9ae08c45a8edb3a3f59c6f3b90869c7b32555ae0367dd2417d671a5debb0220b5ee7ea47e774a29484dc68dac2dad91af03dfaa5cb8dcbbe71c33392bfefa8c580b6d7a48732dd6eecb28963f148739bc7c51bd10c5b8cbf0d1b074e7c0010fe7e40ac4bfec36f695bdaf955258e37020d218c9882014e4ea348d29d7b79d13d5a3551f2d0ea21bc9b3a6e167dccb0e9b53", 0x7}, 0x38000000000) 0s ago: executing program 3 (id=4192): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, 0x0, 0x80001, 0x0) fcntl$auto_F_OFD_SETLKW(r0, 0x26, 0x2000009) r1 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000240), 0x80, 0x0) ioctl$auto_BCH_IOCTL_DISK_OFFLINE(r1, 0x4010bc07, &(0x7f0000000280)={0x1595, 0x0, 0x7}) r2 = io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kmsg\x00', 0x80900, 0x0) r4 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x1a1000, 0x0) ioctl$auto_PROCMAP_QUERY(r4, 0xc0686611, &(0x7f0000000080)={0x67, 0x0, 0x7fff, 0x5, 0x80000000007, 0x1, 0x80000001, 0xff, 0x5, 0x7, 0xfbfffffe, 0x5, 0x7fb, 0x7, 0x9}) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x401, 0x5, 0x1, 0x2000000000948b, 0x3, 0x95f4da0a, 0x803, 0x2, 0xffff, 0x80000001, 0x14, 0x6d3f, 0xeca, 0x3, 0x8]}, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) sendmsg$auto_NL80211_CMD_REMOVE_LINK_STA(r2, &(0x7f00000014c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001480)={&(0x7f0000000440)={0x1024, 0x0, 0x800, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_FRAME_MATCH={0x1004, 0x5b, "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"}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_SMPS_MODE={0x5, 0xd5, 0x9}]}, 0x1024}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x4, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0xfffffffffffffff6, 0x0, 0x3f80, 0x79d, 0x338, 0x9, 0x2, 0xb]}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x58, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) write$auto(0xffffffffffffffff, 0x0, 0x40000001) write$auto(0x3, 0x0, 0x5c8) write$auto(0x3, 0x0, 0xffd8) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x28, 0x3, 0x14) writev$auto(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000140)="5135616bbfa0edc86328114b1fd240ff2b7343eef0939c3d550f83962894c61ea10afd46bd3d9ff383def02babb98613ad1d8a9fedd58196ead137693387f48c16eca5af637ec67c1695a9ae08c45a8edb3a3f59c6f3b90869c7b32555ae0367dd2417d671a5debb0220b5ee7ea47e774a29484dc68dac2dad91af03dfaa5cb8dcbbe71c33392bfefa8c580b6d7a48732dd6eecb28963f148739bc7c51bd10c5b8cbf0d1b074e7c0010fe7e40ac4bfec36f695bdaf955258e37020d218c9882014e4ea348d29d7b79d13d5a3551f2d0ea21bc9b3a6e167dccb0e9b53", 0x7}, 0x37ffffffffe) kernel console output (not intermixed with test programs): 0x10 [ 1210.389910][T21947] ? security_file_permission+0x71/0x210 [ 1210.389947][T21947] ? rw_verify_area+0xcf/0x6c0 [ 1210.389982][T21947] ? __pfx_uinput_write+0x10/0x10 [ 1210.390009][T21947] vfs_writev+0x5df/0xde0 [ 1210.390053][T21947] ? __pfx_vfs_writev+0x10/0x10 [ 1210.390085][T21947] ? find_held_lock+0x2b/0x80 [ 1210.390143][T21947] ? __fget_files+0x20e/0x3c0 [ 1210.390173][T21947] ? __fget_files+0x1e0/0x3c0 [ 1210.390216][T21947] ? do_writev+0x28c/0x340 [ 1210.390244][T21947] do_writev+0x28c/0x340 [ 1210.390277][T21947] ? __pfx_do_writev+0x10/0x10 [ 1210.390322][T21947] do_syscall_64+0xcd/0x490 [ 1210.390364][T21947] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1210.390395][T21947] RIP: 0033:0x7fec7738eb69 [ 1210.390418][T21947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1210.390447][T21947] RSP: 002b:00007fec782ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 1210.390475][T21947] RAX: ffffffffffffffda RBX: 00007fec775b5fa0 RCX: 00007fec7738eb69 [ 1210.390495][T21947] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000003 [ 1210.390513][T21947] RBP: 00007fec782ce090 R08: 0000000000000000 R09: 0000000000000000 [ 1210.390531][T21947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1210.390549][T21947] R13: 0000000000000000 R14: 00007fec775b5fa0 R15: 00007ffdb7621c28 [ 1210.390590][T21947] [ 1210.647244][T18059] udevd[18059]: setting owner of /dev/input/event2 to uid=0, gid=104 failed: No such file or directory [ 1211.339566][T21963] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3254'. [ 1212.898586][T21989] FAULT_INJECTION: forcing a failure. [ 1212.898586][T21989] name failslab, interval 1, probability 0, space 0, times 0 [ 1212.987871][T21989] CPU: 0 UID: 0 PID: 21989 Comm: syz.0.3260 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1212.987927][T21989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1212.987946][T21989] Call Trace: [ 1212.987957][T21989] [ 1212.987987][T21989] dump_stack_lvl+0x16c/0x1f0 [ 1212.988047][T21989] should_fail_ex+0x512/0x640 [ 1212.988085][T21989] ? __kmalloc_noprof+0xbf/0x510 [ 1212.988126][T21989] ? ops_init+0x77/0x5f0 [ 1212.988157][T21989] should_failslab+0xc2/0x120 [ 1212.988200][T21989] __kmalloc_noprof+0xd2/0x510 [ 1212.988234][T21989] ? lockdep_init_map_type+0x5c/0x280 [ 1212.988289][T21989] ops_init+0x77/0x5f0 [ 1212.988328][T21989] setup_net+0x10f/0x380 [ 1212.988360][T21989] ? lockdep_init_map_type+0x5c/0x280 [ 1212.988404][T21989] ? __pfx_setup_net+0x10/0x10 [ 1212.988441][T21989] ? debug_mutex_init+0x37/0x70 [ 1212.988479][T21989] copy_net_ns+0x2a6/0x5f0 [ 1212.988522][T21989] create_new_namespaces+0x3ea/0xa90 [ 1212.988567][T21989] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1212.988610][T21989] ksys_unshare+0x45b/0xa40 [ 1212.988654][T21989] ? __pfx_ksys_unshare+0x10/0x10 [ 1212.988699][T21989] ? xfd_validate_state+0x61/0x180 [ 1212.988758][T21989] __x64_sys_unshare+0x31/0x40 [ 1212.988811][T21989] do_syscall_64+0xcd/0x490 [ 1212.988849][T21989] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1212.988881][T21989] RIP: 0033:0x7f4a2738eb69 [ 1212.988907][T21989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1212.988939][T21989] RSP: 002b:00007f4a28142038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1212.988970][T21989] RAX: ffffffffffffffda RBX: 00007f4a275b5fa0 RCX: 00007f4a2738eb69 [ 1212.988990][T21989] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1212.989008][T21989] RBP: 00007f4a27411df1 R08: 0000000000000000 R09: 0000000000000000 [ 1212.989028][T21989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1212.989047][T21989] R13: 0000000000000000 R14: 00007f4a275b5fa0 R15: 00007ffd53d72178 [ 1212.989089][T21989] [ 1213.282781][T21977] CIFS: VFS: Invalid SecurityFlags: [ 1218.285431][T22048] CIFS: VFS: Invalid SecurityFlags: [ 1218.458223][T22065] netlink: 222 bytes leftover after parsing attributes in process `syz.2.3275'. [ 1221.787797][T22121] could not allocate digest TFM handle binfmt_misc [ 1224.287948][T22167] zram: Cannot change disksize for initialized device [ 1227.244010][T22208] Malformed UNC in devname [ 1227.244010][T22208] [ 1227.251122][T22208] CIFS: VFS: Malformed UNC in devname [ 1234.619795][T22305] FAULT_INJECTION: forcing a failure. [ 1234.619795][T22305] name failslab, interval 1, probability 0, space 0, times 0 [ 1234.637363][T22307] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1234.672830][T22305] CPU: 0 UID: 0 PID: 22305 Comm: syz.3.3322 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1234.672875][T22305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1234.672894][T22305] Call Trace: [ 1234.672904][T22305] [ 1234.672917][T22305] dump_stack_lvl+0x16c/0x1f0 [ 1234.672955][T22305] should_fail_ex+0x512/0x640 [ 1234.672993][T22305] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 1234.673037][T22305] should_failslab+0xc2/0x120 [ 1234.673080][T22305] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 1234.673119][T22305] ? __d_alloc+0x32/0xae0 [ 1234.673163][T22305] __d_alloc+0x32/0xae0 [ 1234.673205][T22305] d_alloc_pseudo+0x1c/0xc0 [ 1234.673252][T22305] alloc_file_pseudo+0xcf/0x230 [ 1234.673301][T22305] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 1234.673358][T22305] ? security_inode_init_security_anon+0x79/0x240 [ 1234.673402][T22305] secretmem_file_create.constprop.0+0x89/0x290 [ 1234.673448][T22305] __x64_sys_memfd_secret+0xc1/0x150 [ 1234.673489][T22305] do_syscall_64+0xcd/0x490 [ 1234.673527][T22305] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1234.673560][T22305] RIP: 0033:0x7fa994d8eb69 [ 1234.673585][T22305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1234.673614][T22305] RSP: 002b:00007fa995cc9038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf [ 1234.673643][T22305] RAX: ffffffffffffffda RBX: 00007fa994fb5fa0 RCX: 00007fa994d8eb69 [ 1234.673663][T22305] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1234.673681][T22305] RBP: 00007fa994e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1234.673700][T22305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1234.673719][T22305] R13: 0000000000000000 R14: 00007fa994fb5fa0 R15: 00007ffc9c90dce8 [ 1234.673760][T22305] [ 1235.134107][T22321] vhci_hcd: vhci_device speed not set [ 1235.896747][T22328] qrtr: Invalid version 0 [ 1236.228772][T22312] bond0: option all_slaves_active: invalid value () [ 1236.474122][T22337] FAULT_INJECTION: forcing a failure. [ 1236.474122][T22337] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1236.588062][T22337] CPU: 0 UID: 0 PID: 22337 Comm: syz.1.3329 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1236.588108][T22337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1236.588126][T22337] Call Trace: [ 1236.588137][T22337] [ 1236.588149][T22337] dump_stack_lvl+0x16c/0x1f0 [ 1236.588189][T22337] should_fail_ex+0x512/0x640 [ 1236.588232][T22337] _copy_from_user+0x2e/0xd0 [ 1236.588292][T22337] copy_msghdr_from_user+0x98/0x160 [ 1236.588327][T22337] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 1236.588379][T22337] ___sys_sendmsg+0xfe/0x1d0 [ 1236.588415][T22337] ? __pfx____sys_sendmsg+0x10/0x10 [ 1236.588482][T22337] ? __mutex_unlock_slowpath+0x140/0x800 [ 1236.588528][T22337] __sys_sendmsg+0x16d/0x220 [ 1236.588561][T22337] ? __pfx___sys_sendmsg+0x10/0x10 [ 1236.588619][T22337] do_syscall_64+0xcd/0x490 [ 1236.588655][T22337] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1236.588684][T22337] RIP: 0033:0x7fec7738eb69 [ 1236.588709][T22337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1236.588739][T22337] RSP: 002b:00007fec782ce038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1236.588769][T22337] RAX: ffffffffffffffda RBX: 00007fec775b5fa0 RCX: 00007fec7738eb69 [ 1236.588790][T22337] RDX: 0000000020000080 RSI: 00002000000005c0 RDI: 0000000000000002 [ 1236.588808][T22337] RBP: 00007fec782ce090 R08: 0000000000000000 R09: 0000000000000000 [ 1236.588827][T22337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1236.588844][T22337] R13: 0000000000000000 R14: 00007fec775b5fa0 R15: 00007ffdb7621c28 [ 1236.588884][T22337] [ 1239.026265][T22379] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1258.140143][T22650] FAULT_INJECTION: forcing a failure. [ 1258.140143][T22650] name failslab, interval 1, probability 0, space 0, times 0 [ 1258.192526][T22650] CPU: 0 UID: 0 PID: 22650 Comm: syz.3.3389 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1258.192578][T22650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1258.192598][T22650] Call Trace: [ 1258.192608][T22650] [ 1258.192622][T22650] dump_stack_lvl+0x16c/0x1f0 [ 1258.192661][T22650] should_fail_ex+0x512/0x640 [ 1258.192698][T22650] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1258.192737][T22650] should_failslab+0xc2/0x120 [ 1258.192779][T22650] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1258.192814][T22650] ? snd_seq_create_port+0xf7/0xae0 [ 1258.192855][T22650] snd_seq_create_port+0xf7/0xae0 [ 1258.192903][T22650] snd_seq_ioctl_create_port+0x253/0x950 [ 1258.192940][T22650] ? __pfx_snd_seq_ioctl_create_port+0x10/0x10 [ 1258.192979][T22650] ? kasan_save_stack+0x42/0x60 [ 1258.193012][T22650] ? kasan_save_stack+0x33/0x60 [ 1258.193046][T22650] ? kasan_save_track+0x14/0x30 [ 1258.193087][T22650] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 1258.193141][T22650] create_port+0x197/0x260 [ 1258.193179][T22650] ? __pfx_create_port+0x10/0x10 [ 1258.193223][T22650] ? __pfx_snd_seq_oss_event_input+0x10/0x10 [ 1258.193265][T22650] ? __pfx_free_devinfo+0x10/0x10 [ 1258.193334][T22650] ? mark_held_locks+0x49/0x80 [ 1258.193374][T22650] ? _raw_spin_unlock_irq+0x23/0x50 [ 1258.193426][T22650] snd_seq_oss_open+0x36c/0xa20 [ 1258.193474][T22650] odev_open+0x6f/0x90 [ 1258.193507][T22650] ? __pfx_odev_open+0x10/0x10 [ 1258.193542][T22650] soundcore_open+0x40c/0x580 [ 1258.193581][T22650] ? __pfx_soundcore_open+0x10/0x10 [ 1258.193615][T22650] chrdev_open+0x234/0x6a0 [ 1258.193656][T22650] ? __pfx_apparmor_file_open+0x10/0x10 [ 1258.193706][T22650] ? __pfx_chrdev_open+0x10/0x10 [ 1258.193747][T22650] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1258.193791][T22650] do_dentry_open+0x982/0x1530 [ 1258.193829][T22650] ? __pfx_chrdev_open+0x10/0x10 [ 1258.193879][T22650] vfs_open+0x82/0x3f0 [ 1258.193930][T22650] path_openat+0x1de4/0x2cb0 [ 1258.193982][T22650] ? __pfx_path_openat+0x10/0x10 [ 1258.194031][T22650] do_filp_open+0x20b/0x470 [ 1258.194069][T22650] ? __pfx_do_filp_open+0x10/0x10 [ 1258.194193][T22650] ? alloc_fd+0x471/0x7d0 [ 1258.194240][T22650] do_sys_openat2+0x11b/0x1d0 [ 1258.194289][T22650] ? __pfx_do_sys_openat2+0x10/0x10 [ 1258.194355][T22650] __x64_sys_openat+0x174/0x210 [ 1258.194402][T22650] ? __pfx___x64_sys_openat+0x10/0x10 [ 1258.194470][T22650] do_syscall_64+0xcd/0x490 [ 1258.194506][T22650] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1258.194536][T22650] RIP: 0033:0x7fa994d8eb69 [ 1258.194562][T22650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1258.194589][T22650] RSP: 002b:00007fa995cc9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1258.194609][T22650] RAX: ffffffffffffffda RBX: 00007fa994fb5fa0 RCX: 00007fa994d8eb69 [ 1258.194622][T22650] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1258.194634][T22650] RBP: 00007fa994e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1258.194646][T22650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1258.194657][T22650] R13: 0000000000000000 R14: 00007fa994fb5fa0 R15: 00007ffc9c90dce8 [ 1258.194682][T22650] [ 1258.202018][T22650] ALSA: seq_oss: can't create port [ 1259.074084][ T9785] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1259.211183][T22664] FAULT_INJECTION: forcing a failure. [ 1259.211183][T22664] name failslab, interval 1, probability 0, space 0, times 0 [ 1259.232990][T22664] CPU: 1 UID: 0 PID: 22664 Comm: syz.3.3394 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1259.233038][T22664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1259.233057][T22664] Call Trace: [ 1259.233069][T22664] [ 1259.233128][T22664] dump_stack_lvl+0x16c/0x1f0 [ 1259.233169][T22664] should_fail_ex+0x512/0x640 [ 1259.233215][T22664] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 1259.233263][T22664] should_failslab+0xc2/0x120 [ 1259.233306][T22664] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 1259.233347][T22664] ? snd_timer_instance_new+0x65/0x2e0 [ 1259.233394][T22664] kstrdup+0x53/0x100 [ 1259.233437][T22664] snd_timer_instance_new+0x65/0x2e0 [ 1259.233476][T22664] snd_seq_timer_open+0x1cc/0x600 [ 1259.233510][T22664] ? __pfx_snd_seq_timer_open+0x10/0x10 [ 1259.233546][T22664] ? find_held_lock+0x2b/0x80 [ 1259.233585][T22664] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1259.233633][T22664] ? lockdep_hardirqs_on+0x7c/0x110 [ 1259.233664][T22664] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1259.233720][T22664] queue_use+0xe3/0x250 [ 1259.233763][T22664] snd_seq_queue_alloc+0x2e5/0x5a0 [ 1259.233815][T22664] snd_seq_ioctl_create_queue+0xa9/0x380 [ 1259.233855][T22664] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 1259.233900][T22664] alloc_seq_queue+0xda/0x180 [ 1259.233936][T22664] ? __pfx_alloc_seq_queue+0x10/0x10 [ 1259.234000][T22664] ? mark_held_locks+0x49/0x80 [ 1259.234038][T22664] ? _raw_spin_unlock_irq+0x23/0x50 [ 1259.234102][T22664] snd_seq_oss_open+0x38c/0xa20 [ 1259.234159][T22664] odev_open+0x6f/0x90 [ 1259.234194][T22664] ? __pfx_odev_open+0x10/0x10 [ 1259.234226][T22664] soundcore_open+0x40c/0x580 [ 1259.234265][T22664] ? __pfx_soundcore_open+0x10/0x10 [ 1259.234301][T22664] chrdev_open+0x234/0x6a0 [ 1259.234339][T22664] ? __pfx_apparmor_file_open+0x10/0x10 [ 1259.234390][T22664] ? __pfx_chrdev_open+0x10/0x10 [ 1259.234433][T22664] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1259.234477][T22664] do_dentry_open+0x982/0x1530 [ 1259.234517][T22664] ? __pfx_chrdev_open+0x10/0x10 [ 1259.234564][T22664] vfs_open+0x82/0x3f0 [ 1259.234617][T22664] path_openat+0x1de4/0x2cb0 [ 1259.234669][T22664] ? __pfx_path_openat+0x10/0x10 [ 1259.234720][T22664] do_filp_open+0x20b/0x470 [ 1259.234759][T22664] ? __pfx_do_filp_open+0x10/0x10 [ 1259.234826][T22664] ? alloc_fd+0x471/0x7d0 [ 1259.234873][T22664] do_sys_openat2+0x11b/0x1d0 [ 1259.234919][T22664] ? __pfx_do_sys_openat2+0x10/0x10 [ 1259.234984][T22664] __x64_sys_openat+0x174/0x210 [ 1259.235033][T22664] ? __pfx___x64_sys_openat+0x10/0x10 [ 1259.235108][T22664] do_syscall_64+0xcd/0x490 [ 1259.235145][T22664] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1259.235177][T22664] RIP: 0033:0x7fa994d8eb69 [ 1259.235204][T22664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1259.235234][T22664] RSP: 002b:00007fa995cc9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1259.235265][T22664] RAX: ffffffffffffffda RBX: 00007fa994fb5fa0 RCX: 00007fa994d8eb69 [ 1259.235286][T22664] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1259.235306][T22664] RBP: 00007fa994e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1259.235325][T22664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1259.235343][T22664] R13: 0000000000000000 R14: 00007fa994fb5fa0 R15: 00007ffc9c90dce8 [ 1259.235395][T22664] [ 1259.601055][T22668] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3395'. [ 1259.742237][T22668] veth0_macvtap: left promiscuous mode [ 1261.504676][T22701] FAULT_INJECTION: forcing a failure. [ 1261.504676][T22701] name failslab, interval 1, probability 0, space 0, times 0 [ 1261.562169][T22701] CPU: 1 UID: 0 PID: 22701 Comm: syz.3.3404 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1261.562213][T22701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1261.562229][T22701] Call Trace: [ 1261.562239][T22701] [ 1261.562250][T22701] dump_stack_lvl+0x16c/0x1f0 [ 1261.562316][T22701] should_fail_ex+0x512/0x640 [ 1261.562351][T22701] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 1261.562388][T22701] should_failslab+0xc2/0x120 [ 1261.562424][T22701] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 1261.562457][T22701] ? sock_alloc_inode+0x25/0x1c0 [ 1261.562495][T22701] ? __pfx_sock_alloc_inode+0x10/0x10 [ 1261.562527][T22701] sock_alloc_inode+0x25/0x1c0 [ 1261.562558][T22701] alloc_inode+0x64/0x240 [ 1261.562599][T22701] sock_alloc+0x40/0x280 [ 1261.562632][T22701] __sock_create+0xc1/0x8d0 [ 1261.562679][T22701] mptcp_subflow_create_socket+0xf5/0xed0 [ 1261.562724][T22701] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 1261.562775][T22701] __mptcp_nmpc_sk+0x182/0x7d0 [ 1261.562815][T22701] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 1261.562860][T22701] ? __local_bh_enable_ip+0xa4/0x120 [ 1261.562899][T22701] mptcp_sendmsg+0x163d/0x1eb0 [ 1261.562927][T22701] ? __lock_acquire+0xb97/0x1ce0 [ 1261.562972][T22701] ? aa_sk_perm+0x2f4/0xb10 [ 1261.563011][T22701] ? __pfx_mptcp_sendmsg+0x10/0x10 [ 1261.563049][T22701] ? __pfx_mptcp_sendmsg+0x10/0x10 [ 1261.563085][T22701] inet_sendmsg+0x11c/0x140 [ 1261.563129][T22701] ____sys_sendmsg+0x973/0xc70 [ 1261.563168][T22701] ? copy_msghdr_from_user+0x10a/0x160 [ 1261.563199][T22701] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1261.563245][T22701] ? __pfx_css_rstat_updated+0x10/0x10 [ 1261.563294][T22701] ___sys_sendmsg+0x134/0x1d0 [ 1261.563330][T22701] ? __pfx____sys_sendmsg+0x10/0x10 [ 1261.563422][T22701] __sys_sendmsg+0x16d/0x220 [ 1261.563455][T22701] ? __pfx___sys_sendmsg+0x10/0x10 [ 1261.563519][T22701] do_syscall_64+0xcd/0x490 [ 1261.563556][T22701] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1261.563587][T22701] RIP: 0033:0x7fa994d8eb69 [ 1261.563612][T22701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1261.563642][T22701] RSP: 002b:00007fa995cc9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1261.563670][T22701] RAX: ffffffffffffffda RBX: 00007fa994fb5fa0 RCX: 00007fa994d8eb69 [ 1261.563689][T22701] RDX: 0000000020000080 RSI: 00002000000005c0 RDI: 0000000000000002 [ 1261.563706][T22701] RBP: 00007fa995cc9090 R08: 0000000000000000 R09: 0000000000000000 [ 1261.563723][T22701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1261.563741][T22701] R13: 0000000000000000 R14: 00007fa994fb5fa0 R15: 00007ffc9c90dce8 [ 1261.563779][T22701] [ 1261.872828][T22701] socket: no more sockets [ 1263.832217][T22741] netlink: 222 bytes leftover after parsing attributes in process `syz.3.3411'. [ 1263.917081][T22741] FAULT_INJECTION: forcing a failure. [ 1263.917081][T22741] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1263.966834][T22741] CPU: 1 UID: 0 PID: 22741 Comm: syz.3.3411 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1263.966885][T22741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1263.966903][T22741] Call Trace: [ 1263.966914][T22741] [ 1263.966926][T22741] dump_stack_lvl+0x16c/0x1f0 [ 1263.966963][T22741] should_fail_ex+0x512/0x640 [ 1263.967007][T22741] _copy_from_user+0x2e/0xd0 [ 1263.967050][T22741] kstrtouint_from_user+0xd6/0x1d0 [ 1263.967092][T22741] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 1263.967123][T22741] ? __lock_acquire+0xb97/0x1ce0 [ 1263.967184][T22741] proc_fail_nth_write+0x83/0x220 [ 1263.967219][T22741] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 1263.967264][T22741] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 1263.967291][T22741] vfs_write+0x2a0/0x1150 [ 1263.967326][T22741] ? __pfx___mutex_lock+0x10/0x10 [ 1263.967354][T22741] ? __pfx_vfs_write+0x10/0x10 [ 1263.967393][T22741] ? __fget_files+0x20e/0x3c0 [ 1263.967431][T22741] ksys_write+0x12a/0x250 [ 1263.967460][T22741] ? __pfx_ksys_write+0x10/0x10 [ 1263.967500][T22741] do_syscall_64+0xcd/0x490 [ 1263.967532][T22741] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1263.967563][T22741] RIP: 0033:0x7fa994d8d61f [ 1263.967586][T22741] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 1263.967615][T22741] RSP: 002b:00007fa995cc9030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 1263.967644][T22741] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00007fa994d8d61f [ 1263.967663][T22741] RDX: 0000000000000001 RSI: 00007fa995cc9090 RDI: 0000000000000006 [ 1263.967682][T22741] RBP: 00007fa995cc9090 R08: 0000000000000000 R09: 00007fa995cc8df7 [ 1263.967699][T22741] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1263.967718][T22741] R13: 0000000000000000 R14: 00007fa994fb5fa0 R15: 00007ffc9c90dce8 [ 1263.967757][T22741] [ 1264.337456][T22749] FAULT_INJECTION: forcing a failure. [ 1264.337456][T22749] name failslab, interval 1, probability 0, space 0, times 0 [ 1264.389489][T22748] netlink: 222 bytes leftover after parsing attributes in process `syz.1.3413'. [ 1264.401529][T22749] CPU: 1 UID: 0 PID: 22749 Comm: syz.2.3412 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1264.401574][T22749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1264.401592][T22749] Call Trace: [ 1264.401601][T22749] [ 1264.401611][T22749] dump_stack_lvl+0x16c/0x1f0 [ 1264.401644][T22749] should_fail_ex+0x512/0x640 [ 1264.401679][T22749] should_failslab+0xc2/0x120 [ 1264.401712][T22749] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1264.401743][T22749] ? skb_clone+0x190/0x3f0 [ 1264.401773][T22749] skb_clone+0x190/0x3f0 [ 1264.401800][T22749] netlink_deliver_tap+0xabd/0xd30 [ 1264.401832][T22749] netlink_unicast+0x64c/0x870 [ 1264.401864][T22749] ? __pfx_netlink_unicast+0x10/0x10 [ 1264.401891][T22749] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 1264.401928][T22749] netlink_sendmsg+0x8d1/0xdd0 [ 1264.401961][T22749] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1264.401992][T22749] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 1264.402036][T22749] __sys_sendto+0x4a3/0x520 [ 1264.402075][T22749] ? __pfx___sys_sendto+0x10/0x10 [ 1264.402125][T22749] ? fd_install+0x225/0x750 [ 1264.402165][T22749] ? __pfx___sys_socket+0x10/0x10 [ 1264.402206][T22749] __x64_sys_sendto+0xe0/0x1c0 [ 1264.402243][T22749] ? do_syscall_64+0x91/0x490 [ 1264.402273][T22749] ? lockdep_hardirqs_on+0x7c/0x110 [ 1264.402297][T22749] do_syscall_64+0xcd/0x490 [ 1264.402325][T22749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1264.402359][T22749] RIP: 0033:0x7fe4e8d909fc [ 1264.402379][T22749] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b [ 1264.402403][T22749] RSP: 002b:00007fe4e6bf4ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 1264.402428][T22749] RAX: ffffffffffffffda RBX: 00007fe4e6bf4fc0 RCX: 00007fe4e8d909fc [ 1264.402444][T22749] RDX: 000000000000001c RSI: 00007fe4e6bf5010 RDI: 0000000000000009 [ 1264.402458][T22749] RBP: 0000000000000000 R08: 00007fe4e6bf4f14 R09: 000000000000000c [ 1264.402473][T22749] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000009 [ 1264.402487][T22749] R13: 00007fe4e6bf4f68 R14: 00007fe4e6bf5010 R15: 0000000000000000 [ 1264.402519][T22749] [ 1264.720429][T22755] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input73 [ 1265.463059][T22763] Invalid ELF header magic: != ELF [ 1266.403317][T22773] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3416'. [ 1266.445464][T22735] syz.0.3409: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 1266.488463][T22735] CPU: 1 UID: 0 PID: 22735 Comm: syz.0.3409 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1266.488513][T22735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1266.488534][T22735] Call Trace: [ 1266.488545][T22735] [ 1266.488559][T22735] dump_stack_lvl+0x16c/0x1f0 [ 1266.488597][T22735] warn_alloc+0x248/0x3a0 [ 1266.488638][T22735] ? __pfx_warn_alloc+0x10/0x10 [ 1266.488705][T22735] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 1266.488745][T22735] __vmalloc_node_range_noprof+0xff5/0x14b0 [ 1266.488779][T22735] ? __pfx___might_resched+0x10/0x10 [ 1266.488814][T22735] ? rcu_is_watching+0x12/0xc0 [ 1266.488847][T22735] ? trace_contention_end+0xdd/0x130 [ 1266.488892][T22735] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 1266.488930][T22735] ? tomoyo_path_number_perm+0x295/0x580 [ 1266.488972][T22735] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 1266.489002][T22735] ? __pfx___mutex_lock+0x10/0x10 [ 1266.489040][T22735] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1266.489070][T22735] ? futex_wake+0x1ad/0x530 [ 1266.489122][T22735] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 1266.489157][T22735] __vmalloc_node_noprof+0xad/0xf0 [ 1266.489208][T22735] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 1266.489251][T22735] dvb_dvr_do_ioctl+0x15d/0x290 [ 1266.489295][T22735] dvb_usercopy+0x167/0x340 [ 1266.489338][T22735] ? __pfx_dvb_dvr_do_ioctl+0x10/0x10 [ 1266.489378][T22735] ? __pfx_dvb_usercopy+0x10/0x10 [ 1266.489431][T22735] ? __fget_files+0x20e/0x3c0 [ 1266.489477][T22735] dvb_dvr_ioctl+0x29/0x40 [ 1266.489511][T22735] ? __pfx_dvb_dvr_ioctl+0x10/0x10 [ 1266.489548][T22735] __x64_sys_ioctl+0x18b/0x210 [ 1266.489600][T22735] do_syscall_64+0xcd/0x490 [ 1266.489637][T22735] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1266.489668][T22735] RIP: 0033:0x7f4a2738eb69 [ 1266.489695][T22735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1266.489725][T22735] RSP: 002b:00007f4a28142038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1266.489755][T22735] RAX: ffffffffffffffda RBX: 00007f4a275b5fa0 RCX: 00007f4a2738eb69 [ 1266.489775][T22735] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000003 [ 1266.489795][T22735] RBP: 00007f4a27411df1 R08: 0000000000000000 R09: 0000000000000000 [ 1266.489813][T22735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1266.489831][T22735] R13: 0000000000000000 R14: 00007f4a275b5fa0 R15: 00007ffd53d72178 [ 1266.489873][T22735] [ 1266.489884][T22735] Mem-Info: [ 1266.756372][T22735] active_anon:16839 inactive_anon:31 isolated_anon:0 [ 1266.756372][T22735] active_file:13516 inactive_file:46489 isolated_file:0 [ 1266.756372][T22735] unevictable:768 dirty:1255 writeback:0 [ 1266.756372][T22735] slab_reclaimable:11730 slab_unreclaimable:94613 [ 1266.756372][T22735] mapped:32138 shmem:2199 pagetables:1188 [ 1266.756372][T22735] sec_pagetables:0 bounce:0 [ 1266.756372][T22735] kernel_misc_reclaimable:0 [ 1266.756372][T22735] free:1309008 free_pcp:9889 free_cma:0 [ 1266.873530][T22735] Node 0 active_anon:67956kB inactive_anon:124kB active_file:54064kB inactive_file:185780kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:129704kB dirty:5020kB writeback:0kB shmem:7560kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11440kB pagetables:4512kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1266.949466][T22735] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:176kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:48kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1267.020206][T22735] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1267.241815][T22735] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 1267.333012][T22735] Node 0 DMA32 free:1312520kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:65476kB inactive_anon:124kB active_file:54064kB inactive_file:184460kB unevictable:1536kB writepending:5108kB present:3129332kB managed:2539676kB mlocked:0kB bounce:0kB free_pcp:36072kB local_pcp:17552kB free_cma:0kB [ 1267.512493][T22735] lowmem_reserve[]: 0 0 1 1 1 [ 1267.531398][T22735] Node 0 Normal free:4kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB [ 1267.592557][T22735] lowmem_reserve[]: 0 0 0 0 0 [ 1267.631889][T22735] Node 1 Normal free:3910124kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:176kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:2640kB local_pcp:2640kB free_cma:0kB [ 1267.694551][T22735] lowmem_reserve[]: 0 0 0 0 0 [ 1267.724108][T22735] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 1267.747366][T22735] Node 0 DMA32: 2195*4kB (UME) 1915*8kB (UME) 1222*16kB (UME) 997*32kB (UME) 559*64kB (UME) 260*128kB (UME) 194*256kB (UME) 150*512kB (UM) 73*1024kB (UM) 14*2048kB (UME) 229*4096kB (UM) = 1312484kB [ 1267.775428][T22735] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 1267.788801][T22735] Node 1 Normal: 147*4kB (UME) 44*8kB (UME) 38*16kB (UME) 205*32kB (UME) 95*64kB (UME) 39*128kB (UME) 13*256kB (UM) 7*512kB (UME) 3*1024kB (UME) 3*2048kB (ME) 946*4096kB (M) = 3910124kB [ 1267.809131][T22735] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1267.820916][T22735] Node 0 hugepages_total=6 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 1267.831090][T22735] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1267.841416][T22735] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 1267.851560][T22735] 62613 total pagecache pages [ 1267.856393][T22735] 60 pages in swap cache [ 1267.861895][T22735] Free swap = 124756kB [ 1267.866213][T22735] Total swap = 124996kB [ 1267.872088][T22735] 2097051 pages RAM [ 1267.890077][T22735] 0 pages HighMem/MovableOnly [ 1267.977249][T22735] 430170 pages reserved [ 1267.981628][T22735] 0 pages cma reserved [ 1270.160567][T22840] sd 0:0:1:0: PR command failed: 1026 [ 1270.167305][T22840] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 1270.175475][T22840] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 1272.800725][T22885] zswap: compressor not available [ 1273.127880][T22902] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3439'. [ 1273.157843][T22902] netlink: 354 bytes leftover after parsing attributes in process `syz.1.3439'. [ 1275.304348][T22968] hub 8-0:1.0: USB hub found [ 1275.370932][T22968] hub 8-0:1.0: 1 port detected [ 1275.557288][T22970] hub 8-0:1.0: USB hub found [ 1275.585508][T22970] hub 8-0:1.0: 1 port detected [ 1276.193721][T22992] netlink: 222 bytes leftover after parsing attributes in process `syz.0.3455'. [ 1277.623823][T23002] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1280.501389][T23046] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1281.705206][T23060] FAULT_INJECTION: forcing a failure. [ 1281.705206][T23060] name failslab, interval 1, probability 0, space 0, times 0 [ 1281.736748][T23060] CPU: 0 UID: 0 PID: 23060 Comm: syz.3.3472 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1281.736793][T23060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1281.736811][T23060] Call Trace: [ 1281.736821][T23060] [ 1281.736833][T23060] dump_stack_lvl+0x16c/0x1f0 [ 1281.736860][T23060] should_fail_ex+0x512/0x640 [ 1281.736882][T23060] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1281.736908][T23060] should_failslab+0xc2/0x120 [ 1281.736939][T23060] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1281.736967][T23060] ? sk_prot_alloc+0x60/0x2a0 [ 1281.736994][T23060] sk_prot_alloc+0x60/0x2a0 [ 1281.737019][T23060] sk_alloc+0x36/0xc20 [ 1281.737038][T23060] inet_create+0x3a1/0x1040 [ 1281.737065][T23060] ? inet_create+0x93/0x1040 [ 1281.737094][T23060] __sock_create+0x338/0x8d0 [ 1281.737123][T23060] mptcp_subflow_create_socket+0xf5/0xed0 [ 1281.737152][T23060] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 1281.737192][T23060] __mptcp_nmpc_sk+0x182/0x7d0 [ 1281.737219][T23060] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 1281.737248][T23060] ? __local_bh_enable_ip+0xa4/0x120 [ 1281.737280][T23060] mptcp_sendmsg+0x163d/0x1eb0 [ 1281.737308][T23060] ? __lock_acquire+0xb97/0x1ce0 [ 1281.737351][T23060] ? aa_sk_perm+0x2f4/0xb10 [ 1281.737391][T23060] ? __pfx_mptcp_sendmsg+0x10/0x10 [ 1281.737430][T23060] ? __pfx_mptcp_sendmsg+0x10/0x10 [ 1281.737462][T23060] inet_sendmsg+0x11c/0x140 [ 1281.737497][T23060] ____sys_sendmsg+0x973/0xc70 [ 1281.737522][T23060] ? copy_msghdr_from_user+0x10a/0x160 [ 1281.737541][T23060] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1281.737577][T23060] ___sys_sendmsg+0x134/0x1d0 [ 1281.737598][T23060] ? __pfx____sys_sendmsg+0x10/0x10 [ 1281.737638][T23060] ? __mutex_unlock_slowpath+0x140/0x800 [ 1281.737665][T23060] __sys_sendmsg+0x16d/0x220 [ 1281.737685][T23060] ? __pfx___sys_sendmsg+0x10/0x10 [ 1281.737719][T23060] do_syscall_64+0xcd/0x490 [ 1281.737741][T23060] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1281.737760][T23060] RIP: 0033:0x7fa994d8eb69 [ 1281.737776][T23060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1281.737795][T23060] RSP: 002b:00007fa995cc9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1281.737826][T23060] RAX: ffffffffffffffda RBX: 00007fa994fb5fa0 RCX: 00007fa994d8eb69 [ 1281.737838][T23060] RDX: 0000000020000080 RSI: 00002000000005c0 RDI: 0000000000000002 [ 1281.737849][T23060] RBP: 00007fa995cc9090 R08: 0000000000000000 R09: 0000000000000000 [ 1281.737861][T23060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1281.737872][T23060] R13: 0000000000000000 R14: 00007fa994fb5fa0 R15: 00007ffc9c90dce8 [ 1281.737895][T23060] [ 1283.132250][T23079] can: request_module (can-proto-5) failed. [ 1285.020525][T23127] netlink: 222 bytes leftover after parsing attributes in process `syz.0.3485'. [ 1285.265521][T23134] warn_alloc: 1 callbacks suppressed [ 1285.265545][T23134] syz.3.3487: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 1285.414999][T23134] CPU: 0 UID: 0 PID: 23134 Comm: syz.3.3487 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1285.415047][T23134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1285.415074][T23134] Call Trace: [ 1285.415085][T23134] [ 1285.415098][T23134] dump_stack_lvl+0x16c/0x1f0 [ 1285.415139][T23134] warn_alloc+0x248/0x3a0 [ 1285.415182][T23134] ? __pfx_warn_alloc+0x10/0x10 [ 1285.415249][T23134] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 1285.415289][T23134] __vmalloc_node_range_noprof+0xff5/0x14b0 [ 1285.415324][T23134] ? __pfx___might_resched+0x10/0x10 [ 1285.415361][T23134] ? rcu_is_watching+0x12/0xc0 [ 1285.415394][T23134] ? trace_contention_end+0xdd/0x130 [ 1285.415439][T23134] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 1285.415479][T23134] ? tomoyo_path_number_perm+0x295/0x580 [ 1285.415521][T23134] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 1285.415551][T23134] ? __pfx___mutex_lock+0x10/0x10 [ 1285.415589][T23134] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1285.415621][T23134] ? __lock_acquire+0xb97/0x1ce0 [ 1285.415669][T23134] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 1285.415706][T23134] __vmalloc_node_noprof+0xad/0xf0 [ 1285.415756][T23134] ? dvb_dvr_do_ioctl+0x15d/0x290 [ 1285.415803][T23134] dvb_dvr_do_ioctl+0x15d/0x290 [ 1285.415860][T23134] dvb_usercopy+0x167/0x340 [ 1285.415897][T23134] ? __pfx_dvb_dvr_do_ioctl+0x10/0x10 [ 1285.415938][T23134] ? __pfx_dvb_usercopy+0x10/0x10 [ 1285.415993][T23134] ? __fget_files+0x20e/0x3c0 [ 1285.416026][T23134] ? update_triggers+0x550/0x5a0 [ 1285.416072][T23134] dvb_dvr_ioctl+0x29/0x40 [ 1285.416107][T23134] ? __pfx_dvb_dvr_ioctl+0x10/0x10 [ 1285.416144][T23134] __x64_sys_ioctl+0x18b/0x210 [ 1285.416207][T23134] do_syscall_64+0xcd/0x490 [ 1285.416247][T23134] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1285.416280][T23134] RIP: 0033:0x7fa994d8eb69 [ 1285.416306][T23134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1285.416340][T23134] RSP: 002b:00007fa995ca8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1285.416371][T23134] RAX: ffffffffffffffda RBX: 00007fa994fb6080 RCX: 00007fa994d8eb69 [ 1285.416392][T23134] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000004 [ 1285.416413][T23134] RBP: 00007fa994e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1285.416433][T23134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1285.416452][T23134] R13: 0000000000000000 R14: 00007fa994fb6080 R15: 00007ffc9c90dce8 [ 1285.416494][T23134] [ 1285.844576][T23134] Mem-Info: [ 1285.849879][T23134] active_anon:29224 inactive_anon:31 isolated_anon:0 [ 1285.849879][T23134] active_file:13418 inactive_file:46589 isolated_file:0 [ 1285.849879][T23134] unevictable:768 dirty:755 writeback:0 [ 1285.849879][T23134] slab_reclaimable:12001 slab_unreclaimable:94531 [ 1285.849879][T23134] mapped:33996 shmem:12179 pagetables:1263 [ 1285.849879][T23134] sec_pagetables:0 bounce:0 [ 1285.849879][T23134] kernel_misc_reclaimable:0 [ 1285.849879][T23134] free:1294560 free_pcp:12049 free_cma:0 [ 1286.017682][T23134] Node 0 active_anon:117820kB inactive_anon:124kB active_file:53672kB inactive_file:186180kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:132136kB dirty:3080kB writeback:0kB shmem:48200kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:12288kB kernel_stack:11296kB pagetables:4776kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1286.079740][T23134] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:176kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:48kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1286.146411][T23134] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1286.188755][T23134] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 1286.194646][T23134] Node 0 DMA32 free:1250460kB boost:0kB min:34320kB low:42900kB high:51480kB reserved_highatomic:0KB free_highatomic:0KB active_anon:121120kB inactive_anon:124kB active_file:53672kB inactive_file:184860kB unevictable:1536kB writepending:3080kB present:3129332kB managed:2539676kB mlocked:0kB bounce:0kB free_pcp:40876kB local_pcp:19612kB free_cma:0kB [ 1286.256476][T23134] lowmem_reserve[]: 0 0 1 1 1 [ 1286.261629][T23134] Node 0 Normal free:4kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:0kB free_cma:0kB [ 1286.465568][T23134] lowmem_reserve[]: 0 0 0 0 0 [ 1286.491313][T23134] Node 1 Normal free:3910884kB boost:0kB min:55560kB low:69448kB high:83336kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:176kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:1916kB local_pcp:1916kB free_cma:0kB [ 1286.543323][T23134] lowmem_reserve[]: 0 0 0 0 0 [ 1286.556770][T23134] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 1286.640615][T23134] Node 0 DMA32: 128*4kB (E) 541*8kB (UME) 125*16kB (UME) 832*32kB (UME) 561*64kB (UME) 266*128kB (UME) 197*256kB (UME) 156*512kB (UM) 79*1024kB (UM) 8*2048kB (UME) 224*4096kB (UM) = 1248504kB [ 1286.737836][T23134] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 1286.791478][T23134] Node 1 Normal: 217*4kB (UME) 48*8kB (UME) 40*16kB (UME) 204*32kB (UME) 96*64kB (UME) 42*128kB (UME) 13*256kB (UM) 7*512kB (UME) 3*1024kB (UME) 3*2048kB (ME) 946*4096kB (M) = 3910884kB [ 1286.840906][T23134] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1286.908035][T23134] Node 0 hugepages_total=6 hugepages_free=5 hugepages_surp=0 hugepages_size=2048kB [ 1286.963149][T23134] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1286.997502][T23134] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 1287.076351][T23134] 74104 total pagecache pages [ 1287.089342][T23134] 32 pages in swap cache [ 1287.093615][T23134] Free swap = 124768kB [ 1287.137393][T23134] Total swap = 124996kB [ 1287.141992][T23134] 2097051 pages RAM [ 1287.151135][T23134] 0 pages HighMem/MovableOnly [ 1287.156154][T23141] ptrace attach of "./syz-executor exec"[17609] was attempted by "./syz-executor exec"[23141] [ 1287.167061][T23134] 430170 pages reserved [ 1287.171257][T23134] 0 pages cma reserved [ 1287.524579][T23152] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1289.424359][T23186] zram0: detected capacity change from 8 to 0 [ 1289.548563][T23188] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3498'. [ 1291.190978][T23219] FAULT_INJECTION: forcing a failure. [ 1291.190978][T23219] name failslab, interval 1, probability 0, space 0, times 0 [ 1291.211955][T23219] CPU: 0 UID: 0 PID: 23219 Comm: syz.3.3507 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1291.211999][T23219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1291.212017][T23219] Call Trace: [ 1291.212028][T23219] [ 1291.212039][T23219] dump_stack_lvl+0x16c/0x1f0 [ 1291.212076][T23219] should_fail_ex+0x512/0x640 [ 1291.212112][T23219] ? __kmalloc_noprof+0xbf/0x510 [ 1291.212150][T23219] ? lsm_blob_alloc+0x68/0x90 [ 1291.212188][T23219] should_failslab+0xc2/0x120 [ 1291.212226][T23219] __kmalloc_noprof+0xd2/0x510 [ 1291.212268][T23219] lsm_blob_alloc+0x68/0x90 [ 1291.212310][T23219] security_sk_alloc+0x30/0x270 [ 1291.212358][T23219] sk_prot_alloc+0xfb/0x2a0 [ 1291.212400][T23219] sk_alloc+0x36/0xc20 [ 1291.212431][T23219] inet_create+0x3a1/0x1040 [ 1291.212473][T23219] ? inet_create+0x93/0x1040 [ 1291.212520][T23219] __sock_create+0x338/0x8d0 [ 1291.212569][T23219] mptcp_subflow_create_socket+0xf5/0xed0 [ 1291.212616][T23219] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 1291.212670][T23219] __mptcp_nmpc_sk+0x182/0x7d0 [ 1291.212711][T23219] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 1291.212757][T23219] ? __local_bh_enable_ip+0xa4/0x120 [ 1291.212811][T23219] mptcp_sendmsg+0x163d/0x1eb0 [ 1291.212841][T23219] ? __lock_acquire+0xb97/0x1ce0 [ 1291.212887][T23219] ? aa_sk_perm+0x2f4/0xb10 [ 1291.212928][T23219] ? __pfx_mptcp_sendmsg+0x10/0x10 [ 1291.212967][T23219] ? __pfx_mptcp_sendmsg+0x10/0x10 [ 1291.212999][T23219] inet_sendmsg+0x11c/0x140 [ 1291.213040][T23219] ____sys_sendmsg+0x973/0xc70 [ 1291.213080][T23219] ? copy_msghdr_from_user+0x10a/0x160 [ 1291.213111][T23219] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1291.213170][T23219] ___sys_sendmsg+0x134/0x1d0 [ 1291.213203][T23219] ? __pfx____sys_sendmsg+0x10/0x10 [ 1291.213269][T23219] ? __mutex_unlock_slowpath+0x140/0x800 [ 1291.213315][T23219] __sys_sendmsg+0x16d/0x220 [ 1291.213345][T23219] ? __pfx___sys_sendmsg+0x10/0x10 [ 1291.213402][T23219] do_syscall_64+0xcd/0x490 [ 1291.213438][T23219] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1291.213467][T23219] RIP: 0033:0x7fa994d8eb69 [ 1291.213491][T23219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1291.213519][T23219] RSP: 002b:00007fa995cc9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1291.213548][T23219] RAX: ffffffffffffffda RBX: 00007fa994fb5fa0 RCX: 00007fa994d8eb69 [ 1291.213567][T23219] RDX: 0000000020000080 RSI: 00002000000005c0 RDI: 0000000000000002 [ 1291.213585][T23219] RBP: 00007fa995cc9090 R08: 0000000000000000 R09: 0000000000000000 [ 1291.213604][T23219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1291.213622][T23219] R13: 0000000000000000 R14: 00007fa994fb5fa0 R15: 00007ffc9c90dce8 [ 1291.213663][T23219] [ 1294.312419][T23259] Unable to find swap-space signature [ 1297.369908][T23286] kexec: Could not allocate control_code_buffer [ 1300.357847][T23359] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3538'. [ 1300.383594][T23359] bond_slave_1: entered allmulticast mode [ 1307.477787][ T30] audit: type=1800 audit(1843104556.244:12): pid=23456 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=107813 res=0 errno=0 [ 1308.081761][T23477] FAULT_INJECTION: forcing a failure. [ 1308.081761][T23477] name failslab, interval 1, probability 0, space 0, times 0 [ 1308.098267][T23477] CPU: 1 UID: 0 PID: 23477 Comm: syz.0.3564 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1308.098311][T23477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1308.098329][T23477] Call Trace: [ 1308.098340][T23477] [ 1308.098351][T23477] dump_stack_lvl+0x16c/0x1f0 [ 1308.098389][T23477] should_fail_ex+0x512/0x640 [ 1308.098423][T23477] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1308.098458][T23477] should_failslab+0xc2/0x120 [ 1308.098497][T23477] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1308.098528][T23477] ? tcp_sendmsg_fastopen+0x24d/0x750 [ 1308.098575][T23477] tcp_sendmsg_fastopen+0x24d/0x750 [ 1308.098624][T23477] mptcp_sendmsg+0x14b4/0x1eb0 [ 1308.098653][T23477] ? __lock_acquire+0xb97/0x1ce0 [ 1308.098699][T23477] ? aa_sk_perm+0x2f4/0xb10 [ 1308.098738][T23477] ? __pfx_mptcp_sendmsg+0x10/0x10 [ 1308.098778][T23477] ? __pfx_mptcp_sendmsg+0x10/0x10 [ 1308.098810][T23477] inet_sendmsg+0x11c/0x140 [ 1308.098862][T23477] ____sys_sendmsg+0x973/0xc70 [ 1308.098903][T23477] ? copy_msghdr_from_user+0x10a/0x160 [ 1308.098933][T23477] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1308.098993][T23477] ___sys_sendmsg+0x134/0x1d0 [ 1308.099028][T23477] ? __pfx____sys_sendmsg+0x10/0x10 [ 1308.099099][T23477] ? __mutex_unlock_slowpath+0x140/0x800 [ 1308.099143][T23477] __sys_sendmsg+0x16d/0x220 [ 1308.099174][T23477] ? __pfx___sys_sendmsg+0x10/0x10 [ 1308.099235][T23477] do_syscall_64+0xcd/0x490 [ 1308.099272][T23477] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1308.099303][T23477] RIP: 0033:0x7f4a2738eb69 [ 1308.099329][T23477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1308.099359][T23477] RSP: 002b:00007f4a28142038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1308.099387][T23477] RAX: ffffffffffffffda RBX: 00007f4a275b5fa0 RCX: 00007f4a2738eb69 [ 1308.099408][T23477] RDX: 0000000020000080 RSI: 00002000000005c0 RDI: 0000000000000002 [ 1308.099426][T23477] RBP: 00007f4a28142090 R08: 0000000000000000 R09: 0000000000000000 [ 1308.099443][T23477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1308.099460][T23477] R13: 0000000000000000 R14: 00007f4a275b5fa0 R15: 00007ffd53d72178 [ 1308.099499][T23477] [ 1308.339129][T23471] FAULT_INJECTION: forcing a failure. [ 1308.339129][T23471] name failslab, interval 1, probability 0, space 0, times 0 [ 1308.352079][T23471] CPU: 1 UID: 0 PID: 23471 Comm: syz.1.3561 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1308.352124][T23471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1308.352140][T23471] Call Trace: [ 1308.352150][T23471] [ 1308.352160][T23471] dump_stack_lvl+0x16c/0x1f0 [ 1308.352193][T23471] should_fail_ex+0x512/0x640 [ 1308.352222][T23471] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1308.352256][T23471] should_failslab+0xc2/0x120 [ 1308.352290][T23471] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1308.352320][T23471] ? __kernfs_new_node+0xd2/0x8e0 [ 1308.352356][T23471] __kernfs_new_node+0xd2/0x8e0 [ 1308.352392][T23471] ? __pfx___kernfs_new_node+0x10/0x10 [ 1308.352432][T23471] ? find_held_lock+0x2b/0x80 [ 1308.352458][T23471] ? kernfs_root+0xee/0x2a0 [ 1308.352496][T23471] kernfs_new_node+0x13c/0x1e0 [ 1308.352537][T23471] __kernfs_create_file+0x53/0x350 [ 1308.352567][T23471] sysfs_add_file_mode_ns+0x207/0x3c0 [ 1308.352607][T23471] internal_create_group+0x578/0xf30 [ 1308.352649][T23471] ? __pfx_internal_create_group+0x10/0x10 [ 1308.352687][T23471] ? kernfs_create_link+0x1bd/0x240 [ 1308.352717][T23471] internal_create_groups+0x9d/0x150 [ 1308.352752][T23471] device_add+0x6d1/0x1aa0 [ 1308.352790][T23471] ? __pfx_device_add+0x10/0x10 [ 1308.352823][T23471] ? lockdep_init_map_type+0x5c/0x280 [ 1308.352865][T23471] ? __init_waitqueue_head+0xca/0x150 [ 1308.352911][T23471] netdev_register_kobject+0x1a9/0x3d0 [ 1308.352948][T23471] register_netdevice+0x13dc/0x2270 [ 1308.352984][T23471] ? __pfx_register_netdevice+0x10/0x10 [ 1308.353025][T23471] __ip_tunnel_create+0x540/0x6e0 [ 1308.353056][T23471] ? __pfx___ip_tunnel_create+0x10/0x10 [ 1308.353096][T23471] ip_tunnel_init_net+0x22f/0x7d0 [ 1308.353130][T23471] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 1308.353166][T23471] ? trace_kmalloc+0x2b/0xd0 [ 1308.353199][T23471] ? __kmalloc_noprof+0x242/0x510 [ 1308.353225][T23471] ? lockdep_init_map_type+0x5c/0x280 [ 1308.353271][T23471] ? __pfx_ipgre_tap_init_net+0x10/0x10 [ 1308.353299][T23471] ops_init+0x1df/0x5f0 [ 1308.353329][T23471] setup_net+0x10f/0x380 [ 1308.353353][T23471] ? lockdep_init_map_type+0x5c/0x280 [ 1308.353386][T23471] ? __pfx_setup_net+0x10/0x10 [ 1308.353414][T23471] ? debug_mutex_init+0x37/0x70 [ 1308.353443][T23471] copy_net_ns+0x2a6/0x5f0 [ 1308.353475][T23471] create_new_namespaces+0x3ea/0xa90 [ 1308.353512][T23471] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1308.353543][T23471] ksys_unshare+0x45b/0xa40 [ 1308.353576][T23471] ? __pfx_ksys_unshare+0x10/0x10 [ 1308.353611][T23471] ? xfd_validate_state+0x61/0x180 [ 1308.353656][T23471] __x64_sys_unshare+0x31/0x40 [ 1308.353689][T23471] do_syscall_64+0xcd/0x490 [ 1308.353718][T23471] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1308.353743][T23471] RIP: 0033:0x7fec7738eb69 [ 1308.353764][T23471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1308.353787][T23471] RSP: 002b:00007fec782ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1308.353811][T23471] RAX: ffffffffffffffda RBX: 00007fec775b5fa0 RCX: 00007fec7738eb69 [ 1308.353827][T23471] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1308.353849][T23471] RBP: 00007fec77411df1 R08: 0000000000000000 R09: 0000000000000000 [ 1308.353864][T23471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1308.353879][T23471] R13: 0000000000000000 R14: 00007fec775b5fa0 R15: 00007ffdb7621c28 [ 1308.353913][T23471] [ 1310.235089][T23520] netlink: 222 bytes leftover after parsing attributes in process `syz.1.3572'. [ 1310.476430][T23520] FAULT_INJECTION: forcing a failure. [ 1310.476430][T23520] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1310.531631][T23520] CPU: 1 UID: 0 PID: 23520 Comm: syz.1.3572 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1310.531674][T23520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1310.531693][T23520] Call Trace: [ 1310.531702][T23520] [ 1310.531715][T23520] dump_stack_lvl+0x16c/0x1f0 [ 1310.531752][T23520] should_fail_ex+0x512/0x640 [ 1310.531790][T23520] get_futex_key+0x293/0x1560 [ 1310.531831][T23520] ? __pfx_get_futex_key+0x10/0x10 [ 1310.531868][T23520] ? __mutex_trylock_common+0xe9/0x250 [ 1310.531952][T23520] futex_wake+0xea/0x530 [ 1310.532002][T23520] ? __pfx_futex_wake+0x10/0x10 [ 1310.532064][T23520] do_futex+0x1e3/0x350 [ 1310.532101][T23520] ? __pfx_do_futex+0x10/0x10 [ 1310.532135][T23520] ? __might_fault+0xe3/0x190 [ 1310.532181][T23520] mm_release+0x24e/0x300 [ 1310.532216][T23520] do_exit+0x68e/0x2bf0 [ 1310.532266][T23520] ? __pfx_do_exit+0x10/0x10 [ 1310.532307][T23520] ? do_raw_spin_lock+0x12c/0x2b0 [ 1310.532351][T23520] ? find_held_lock+0x2b/0x80 [ 1310.532388][T23520] do_group_exit+0xd3/0x2a0 [ 1310.532433][T23520] get_signal+0x2673/0x26d0 [ 1310.532476][T23520] ? do_vfs_ioctl+0x128/0x14f0 [ 1310.532525][T23520] ? __pfx_get_signal+0x10/0x10 [ 1310.532559][T23520] ? do_futex+0x122/0x350 [ 1310.532597][T23520] ? __pfx_do_futex+0x10/0x10 [ 1310.532636][T23520] arch_do_signal_or_restart+0x8f/0x790 [ 1310.532677][T23520] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1310.532724][T23520] ? xfd_validate_state+0x61/0x180 [ 1310.532776][T23520] exit_to_user_mode_loop+0x84/0x110 [ 1310.532821][T23520] do_syscall_64+0x3f6/0x490 [ 1310.532853][T23520] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1310.532882][T23520] RIP: 0033:0x7fec7738eb69 [ 1310.532917][T23520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1310.532943][T23520] RSP: 002b:00007fec782ce0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1310.532967][T23520] RAX: fffffffffffffe00 RBX: 00007fec775b5fa8 RCX: 00007fec7738eb69 [ 1310.532980][T23520] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fec775b5fa8 [ 1310.532991][T23520] RBP: 00007fec775b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1310.533002][T23520] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec775b5fac [ 1310.533013][T23520] R13: 0000000000000000 R14: 00007ffdb7621b40 R15: 00007ffdb7621c28 [ 1310.533036][T23520] [ 1310.864257][T23527] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3575'. [ 1312.020638][T23543] : Can't lookup blockdev [ 1314.521946][T23581] FAULT_INJECTION: forcing a failure. [ 1314.521946][T23581] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1314.535513][T23581] CPU: 0 UID: 0 PID: 23581 Comm: syz.0.3589 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1314.535555][T23581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1314.535567][T23581] Call Trace: [ 1314.535574][T23581] [ 1314.535582][T23581] dump_stack_lvl+0x16c/0x1f0 [ 1314.535606][T23581] should_fail_ex+0x512/0x640 [ 1314.535632][T23581] _copy_to_iter+0x463/0x16f0 [ 1314.535664][T23581] ? __pfx__copy_to_iter+0x10/0x10 [ 1314.535690][T23581] ? const_folio_flags+0x5b/0x100 [ 1314.535713][T23581] ? folio_mark_accessed+0xc1/0xc00 [ 1314.535738][T23581] ? __pfx_folio_mark_accessed+0x10/0x10 [ 1314.535767][T23581] copy_page_to_iter+0x12a/0x1e0 [ 1314.535796][T23581] filemap_read+0x6b1/0xe40 [ 1314.535831][T23581] ? __pfx_filemap_read+0x10/0x10 [ 1314.535871][T23581] ? __pfx_down_read+0x10/0x10 [ 1314.535893][T23581] ? __pfx__kstrtoull+0x10/0x10 [ 1314.535911][T23581] ? __pfx_aa_file_perm+0x10/0x10 [ 1314.535940][T23581] blkdev_read_iter+0x1ac/0x500 [ 1314.535964][T23581] do_iter_readv_writev+0x738/0x950 [ 1314.535987][T23581] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 1314.536010][T23581] ? bpf_lsm_file_permission+0x9/0x10 [ 1314.536037][T23581] ? security_file_permission+0x71/0x210 [ 1314.536060][T23581] ? rw_verify_area+0xcf/0x6c0 [ 1314.536081][T23581] vfs_readv+0x4cb/0x8b0 [ 1314.536104][T23581] ? __pfx_vfs_readv+0x10/0x10 [ 1314.536139][T23581] ? __fget_files+0x20e/0x3c0 [ 1314.536164][T23581] ? do_readv+0x132/0x340 [ 1314.536182][T23581] do_readv+0x132/0x340 [ 1314.536201][T23581] ? __pfx_do_readv+0x10/0x10 [ 1314.536221][T23581] ? ksys_write+0x1ac/0x250 [ 1314.536241][T23581] ? __pfx_ksys_write+0x10/0x10 [ 1314.536266][T23581] __x64_sys_preadv2+0x11f/0x160 [ 1314.536291][T23581] do_syscall_64+0xcd/0x490 [ 1314.536313][T23581] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1314.536332][T23581] RIP: 0033:0x7f4a2738eb69 [ 1314.536348][T23581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1314.536367][T23581] RSP: 002b:00007f4a28121038 EFLAGS: 00000246 ORIG_RAX: 0000000000000147 [ 1314.536385][T23581] RAX: ffffffffffffffda RBX: 00007f4a275b6080 RCX: 00007f4a2738eb69 [ 1314.536398][T23581] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000003 [ 1314.536409][T23581] RBP: 00007f4a28121090 R08: 0000000000000004 R09: 000000000000002e [ 1314.536420][T23581] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1314.536431][T23581] R13: 0000000000000001 R14: 00007f4a275b6080 R15: 00007ffd53d72178 [ 1314.536454][T23581] [ 1316.997730][T23608] netlink: 'syz.0.3594': attribute type 11 has an invalid length. [ 1317.412987][T23620] program syz.3.3596 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1320.373664][ T30] audit: type=1800 audit(1843104569.134:13): pid=23659 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3600" name="features" dev="configfs" ino=108916 res=0 errno=0 [ 1321.274614][T23661] netlink: 222 bytes leftover after parsing attributes in process `syz.3.3604'. [ 1321.474362][T23661] FAULT_INJECTION: forcing a failure. [ 1321.474362][T23661] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1321.513626][T23661] CPU: 1 UID: 0 PID: 23661 Comm: syz.3.3604 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1321.513670][T23661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1321.513688][T23661] Call Trace: [ 1321.513698][T23661] [ 1321.513710][T23661] dump_stack_lvl+0x16c/0x1f0 [ 1321.513747][T23661] should_fail_ex+0x512/0x640 [ 1321.513790][T23661] get_futex_key+0x1d0/0x1560 [ 1321.513841][T23661] ? __pfx_get_futex_key+0x10/0x10 [ 1321.513878][T23661] ? __mutex_trylock_common+0xe9/0x250 [ 1321.513929][T23661] futex_wake+0xea/0x530 [ 1321.513975][T23661] ? __pfx_futex_wake+0x10/0x10 [ 1321.514038][T23661] do_futex+0x1e3/0x350 [ 1321.514074][T23661] ? __pfx_do_futex+0x10/0x10 [ 1321.514109][T23661] ? __might_fault+0xe3/0x190 [ 1321.514154][T23661] mm_release+0x24e/0x300 [ 1321.514189][T23661] do_exit+0x68e/0x2bf0 [ 1321.514239][T23661] ? __pfx_do_exit+0x10/0x10 [ 1321.514280][T23661] ? do_raw_spin_lock+0x12c/0x2b0 [ 1321.514322][T23661] ? find_held_lock+0x2b/0x80 [ 1321.514359][T23661] do_group_exit+0xd3/0x2a0 [ 1321.514403][T23661] get_signal+0x2673/0x26d0 [ 1321.514446][T23661] ? do_vfs_ioctl+0x128/0x14f0 [ 1321.514494][T23661] ? __pfx_get_signal+0x10/0x10 [ 1321.514525][T23661] ? do_futex+0x122/0x350 [ 1321.514560][T23661] ? __pfx_do_futex+0x10/0x10 [ 1321.514600][T23661] arch_do_signal_or_restart+0x8f/0x790 [ 1321.514641][T23661] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1321.514691][T23661] ? xfd_validate_state+0x61/0x180 [ 1321.514746][T23661] exit_to_user_mode_loop+0x84/0x110 [ 1321.514792][T23661] do_syscall_64+0x3f6/0x490 [ 1321.514835][T23661] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1321.514865][T23661] RIP: 0033:0x7fa994d8eb69 [ 1321.514891][T23661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1321.514920][T23661] RSP: 002b:00007fa995cc90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1321.514949][T23661] RAX: fffffffffffffe00 RBX: 00007fa994fb5fa8 RCX: 00007fa994d8eb69 [ 1321.514969][T23661] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa994fb5fa8 [ 1321.514987][T23661] RBP: 00007fa994fb5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1321.515005][T23661] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa994fb5fac [ 1321.515023][T23661] R13: 0000000000000000 R14: 00007ffc9c90dc00 R15: 00007ffc9c90dce8 [ 1321.515079][T23661] [ 1322.082649][T23675] vivid-009: ================= START STATUS ================= [ 1322.082705][T23675] vivid-009: Enable Output Cropping: true [ 1322.082744][T23675] vivid-009: Enable Output Composing: true [ 1322.082764][T23675] vivid-009: Enable Output Scaler: true [ 1322.082783][T23675] vivid-009: Tx RGB Quantization Range: Automatic [ 1322.082812][T23675] vivid-009: Transmit Mode: HDMI [ 1322.082830][T23675] vivid-009: Hotplug Present: 0x00000000 [ 1322.082851][T23675] vivid-009: RxSense Present: 0x00000000 [ 1322.082871][T23675] vivid-009: EDID Present: 0x00000000 [ 1322.082892][T23675] vivid-009: ================== END STATUS ================== [ 1322.775323][T23668] tty tty12: ldisc open failed (-12), clearing slot 11 [ 1323.166674][T23681] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x78001 [ 1323.177605][T23681] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 1323.187885][T23681] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 1323.199179][T23681] raw: ffff888000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 1323.211390][T23681] page dumped because: unmovable page [ 1323.218276][T23681] page_owner tracks the page as allocated [ 1323.224711][T23681] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO), pid 10569, tgid 10550 (syz.0.958), ts 414466025364, free_ts 412908168030 [ 1323.299029][T23681] post_alloc_hook+0x1c0/0x230 [ 1323.336523][T23681] get_page_from_freelist+0x132b/0x38e0 [ 1323.342259][T23681] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 1323.388450][T23681] alloc_pages_mpol+0x1fb/0x550 [ 1323.412290][T23681] alloc_pages_noprof+0x131/0x390 [ 1323.417931][T23681] brd_submit_bio+0x942/0x1180 [ 1323.422994][T23681] __submit_bio+0x301/0x690 [ 1323.427739][T23681] submit_bio_noacct_nocheck+0x852/0xd30 [ 1323.442526][T23681] submit_bio_noacct+0xb49/0x1eb0 [ 1323.455396][T23681] blkdev_direct_IO+0x16ec/0x1fe0 [ 1323.460705][T23681] blkdev_write_iter+0x703/0xe00 [ 1323.466373][T23681] vfs_write+0x6c7/0x1150 [ 1323.471066][T23681] ksys_write+0x12a/0x250 [ 1323.476166][T23681] do_syscall_64+0xcd/0x490 [ 1323.480965][T23681] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1323.488011][T23681] page last free pid 10541 tgid 10541 stack trace: [ 1323.496362][T23681] __free_frozen_pages+0x7d5/0x10f0 [ 1323.501867][T23681] vfree+0x1fd/0xb50 [ 1323.506789][T23681] dvb_dvr_release+0x27d/0x460 [ 1323.511658][T23681] __fput+0x402/0xb70 [ 1323.517857][T23681] task_work_run+0x150/0x240 [ 1323.523122][T23681] exit_to_user_mode_loop+0xeb/0x110 [ 1323.552227][T23681] do_syscall_64+0x3f6/0x490 [ 1323.559179][T23681] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1323.604961][T23695] FAULT_INJECTION: forcing a failure. [ 1323.604961][T23695] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1323.689122][T23695] CPU: 1 UID: 0 PID: 23695 Comm: syz.0.3611 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1323.689152][T23695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1323.689163][T23695] Call Trace: [ 1323.689170][T23695] [ 1323.689178][T23695] dump_stack_lvl+0x16c/0x1f0 [ 1323.689204][T23695] should_fail_ex+0x512/0x640 [ 1323.689230][T23695] _copy_to_iter+0x463/0x16f0 [ 1323.689262][T23695] ? __pfx__copy_to_iter+0x10/0x10 [ 1323.689289][T23695] ? const_folio_flags+0x5b/0x100 [ 1323.689312][T23695] ? folio_mark_accessed+0xc1/0xc00 [ 1323.689337][T23695] ? __pfx_folio_mark_accessed+0x10/0x10 [ 1323.689366][T23695] copy_page_to_iter+0x12a/0x1e0 [ 1323.689395][T23695] filemap_read+0x6b1/0xe40 [ 1323.689429][T23695] ? __pfx_filemap_read+0x10/0x10 [ 1323.689476][T23695] ? __pfx_down_read+0x10/0x10 [ 1323.689498][T23695] ? __pfx__kstrtoull+0x10/0x10 [ 1323.689517][T23695] ? __pfx_aa_file_perm+0x10/0x10 [ 1323.689545][T23695] blkdev_read_iter+0x1ac/0x500 [ 1323.689569][T23695] do_iter_readv_writev+0x738/0x950 [ 1323.689592][T23695] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 1323.689616][T23695] ? bpf_lsm_file_permission+0x9/0x10 [ 1323.689644][T23695] ? security_file_permission+0x71/0x210 [ 1323.689667][T23695] ? rw_verify_area+0xcf/0x6c0 [ 1323.689688][T23695] vfs_readv+0x4cb/0x8b0 [ 1323.689715][T23695] ? __pfx_vfs_readv+0x10/0x10 [ 1323.689750][T23695] ? __fget_files+0x20e/0x3c0 [ 1323.689775][T23695] ? do_readv+0x132/0x340 [ 1323.689793][T23695] do_readv+0x132/0x340 [ 1323.689812][T23695] ? __pfx_do_readv+0x10/0x10 [ 1323.689832][T23695] ? ksys_write+0x1ac/0x250 [ 1323.689852][T23695] ? __pfx_ksys_write+0x10/0x10 [ 1323.689877][T23695] __x64_sys_preadv2+0x11f/0x160 [ 1323.689902][T23695] do_syscall_64+0xcd/0x490 [ 1323.689924][T23695] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1323.689944][T23695] RIP: 0033:0x7f4a2738eb69 [ 1323.689960][T23695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1323.689978][T23695] RSP: 002b:00007f4a28121038 EFLAGS: 00000246 ORIG_RAX: 0000000000000147 [ 1323.689996][T23695] RAX: ffffffffffffffda RBX: 00007f4a275b6080 RCX: 00007f4a2738eb69 [ 1323.690009][T23695] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000003 [ 1323.690020][T23695] RBP: 00007f4a28121090 R08: 0000000000000004 R09: 000000000000002e [ 1323.690031][T23695] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1323.690042][T23695] R13: 0000000000000001 R14: 00007f4a275b6080 R15: 00007ffd53d72178 [ 1323.690084][T23695] [ 1326.069787][T23735] random: crng reseeded on system resumption [ 1327.301955][T23729] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1327.378533][T23729] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1329.418393][T23790] FAULT_INJECTION: forcing a failure. [ 1329.418393][T23790] name failslab, interval 1, probability 0, space 0, times 0 [ 1329.487317][T23790] CPU: 0 UID: 0 PID: 23790 Comm: syz.0.3630 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1329.487347][T23790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1329.487358][T23790] Call Trace: [ 1329.487365][T23790] [ 1329.487372][T23790] dump_stack_lvl+0x16c/0x1f0 [ 1329.487398][T23790] should_fail_ex+0x512/0x640 [ 1329.487421][T23790] ? __kvmalloc_node_noprof+0x124/0x620 [ 1329.487446][T23790] should_failslab+0xc2/0x120 [ 1329.487474][T23790] __kvmalloc_node_noprof+0x137/0x620 [ 1329.487508][T23790] ? seq_read_iter+0x826/0x12c0 [ 1329.487544][T23790] ? seq_read_iter+0x826/0x12c0 [ 1329.487568][T23790] seq_read_iter+0x826/0x12c0 [ 1329.487614][T23790] seq_read+0x39e/0x4e0 [ 1329.487643][T23790] ? __pfx_seq_read+0x10/0x10 [ 1329.487673][T23790] ? copy_iovec_from_user+0x131/0x170 [ 1329.487728][T23790] ? iovec_from_user+0xbb/0x140 [ 1329.487786][T23790] ? __pfx_seq_read+0x10/0x10 [ 1329.487815][T23790] proc_reg_read+0x23d/0x330 [ 1329.487858][T23790] ? __pfx_proc_reg_read+0x10/0x10 [ 1329.487897][T23790] vfs_readv+0x5be/0x8b0 [ 1329.487940][T23790] ? __pfx_vfs_readv+0x10/0x10 [ 1329.487968][T23790] ? __mutex_lock+0x1c4/0x10b0 [ 1329.487998][T23790] ? find_held_lock+0x2b/0x80 [ 1329.488040][T23790] ? __pfx___mutex_lock+0x10/0x10 [ 1329.488089][T23790] ? __fget_files+0x20e/0x3c0 [ 1329.488117][T23790] ? __fget_files+0x1e0/0x3c0 [ 1329.488160][T23790] ? do_readv+0x132/0x340 [ 1329.488187][T23790] do_readv+0x132/0x340 [ 1329.488220][T23790] ? __pfx_do_readv+0x10/0x10 [ 1329.488266][T23790] do_syscall_64+0xcd/0x490 [ 1329.488301][T23790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1329.488331][T23790] RIP: 0033:0x7f4a2738eb69 [ 1329.488356][T23790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1329.488383][T23790] RSP: 002b:00007f4a28142038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 1329.488411][T23790] RAX: ffffffffffffffda RBX: 00007f4a275b5fa0 RCX: 00007f4a2738eb69 [ 1329.488431][T23790] RDX: 0000002000000400 RSI: 0000200000000a80 RDI: 0000000000000003 [ 1329.488448][T23790] RBP: 00007f4a28142090 R08: 0000000000000000 R09: 0000000000000000 [ 1329.488466][T23790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1329.488483][T23790] R13: 0000000000000000 R14: 00007f4a275b5fa0 R15: 00007ffd53d72178 [ 1329.488524][T23790] [ 1331.979698][T23832] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1333.744757][ T30] audit: type=1800 audit(1843104582.514:14): pid=23866 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3648" name="lu_gp_id" dev="configfs" ino=109867 res=0 errno=0 [ 1333.974425][T23873] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1334.467432][T23876] zswap: compressor 000 not available [ 1337.337791][T23926] vhci_hcd: not connected 4 [ 1337.711517][T23938] netlink: 222 bytes leftover after parsing attributes in process `syz.3.3664'. [ 1337.906082][T23938] FAULT_INJECTION: forcing a failure. [ 1337.906082][T23938] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1337.925860][T23938] CPU: 1 UID: 0 PID: 23938 Comm: syz.3.3664 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1337.925890][T23938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1337.925901][T23938] Call Trace: [ 1337.925908][T23938] [ 1337.925915][T23938] dump_stack_lvl+0x16c/0x1f0 [ 1337.925940][T23938] should_fail_ex+0x512/0x640 [ 1337.925966][T23938] get_futex_key+0x293/0x1560 [ 1337.925992][T23938] ? __pfx_get_futex_key+0x10/0x10 [ 1337.926015][T23938] ? __mutex_trylock_common+0xe9/0x250 [ 1337.926046][T23938] futex_wake+0xea/0x530 [ 1337.926075][T23938] ? __pfx_futex_wake+0x10/0x10 [ 1337.926111][T23938] do_futex+0x1e3/0x350 [ 1337.926135][T23938] ? __pfx_do_futex+0x10/0x10 [ 1337.926157][T23938] ? __might_fault+0xe3/0x190 [ 1337.926184][T23938] mm_release+0x24e/0x300 [ 1337.926206][T23938] do_exit+0x68e/0x2bf0 [ 1337.926236][T23938] ? __pfx_do_exit+0x10/0x10 [ 1337.926262][T23938] ? do_raw_spin_lock+0x12c/0x2b0 [ 1337.926289][T23938] ? find_held_lock+0x2b/0x80 [ 1337.926310][T23938] do_group_exit+0xd3/0x2a0 [ 1337.926338][T23938] get_signal+0x2673/0x26d0 [ 1337.926367][T23938] ? __pfx_get_signal+0x10/0x10 [ 1337.926388][T23938] ? do_futex+0x122/0x350 [ 1337.926417][T23938] ? __pfx_do_futex+0x10/0x10 [ 1337.926443][T23938] arch_do_signal_or_restart+0x8f/0x790 [ 1337.926469][T23938] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1337.926499][T23938] ? xfd_validate_state+0x61/0x180 [ 1337.926532][T23938] exit_to_user_mode_loop+0x84/0x110 [ 1337.926561][T23938] do_syscall_64+0x3f6/0x490 [ 1337.926583][T23938] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1337.926602][T23938] RIP: 0033:0x7fa994d8eb69 [ 1337.926617][T23938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1337.926636][T23938] RSP: 002b:00007fa995cc90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1337.926656][T23938] RAX: fffffffffffffe00 RBX: 00007fa994fb5fa8 RCX: 00007fa994d8eb69 [ 1337.926674][T23938] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa994fb5fa8 [ 1337.926692][T23938] RBP: 00007fa994fb5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1337.926709][T23938] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa994fb5fac [ 1337.926726][T23938] R13: 0000000000000000 R14: 00007ffc9c90dc00 R15: 00007ffc9c90dce8 [ 1337.926765][T23938] [ 1340.302429][T23975] FAULT_INJECTION: forcing a failure. [ 1340.302429][T23975] name failslab, interval 1, probability 0, space 0, times 0 [ 1340.342130][T23975] CPU: 0 UID: 0 PID: 23975 Comm: syz.1.3669 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1340.342177][T23975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1340.342196][T23975] Call Trace: [ 1340.342207][T23975] [ 1340.342220][T23975] dump_stack_lvl+0x16c/0x1f0 [ 1340.342260][T23975] should_fail_ex+0x512/0x640 [ 1340.342298][T23975] ? fs_reclaim_acquire+0xae/0x150 [ 1340.342348][T23975] ? tomoyo_encode2+0x100/0x3e0 [ 1340.342382][T23975] should_failslab+0xc2/0x120 [ 1340.342421][T23975] __kmalloc_noprof+0xd2/0x510 [ 1340.342457][T23975] ? d_absolute_path+0x136/0x1a0 [ 1340.342510][T23975] tomoyo_encode2+0x100/0x3e0 [ 1340.342555][T23975] tomoyo_encode+0x29/0x50 [ 1340.342591][T23975] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1340.342652][T23975] tomoyo_path_number_perm+0x245/0x580 [ 1340.342685][T23975] ? tomoyo_path_number_perm+0x237/0x580 [ 1340.342721][T23975] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1340.342770][T23975] ? __lock_acquire+0xb97/0x1ce0 [ 1340.342834][T23975] ? do_raw_spin_unlock+0x172/0x230 [ 1340.342878][T23975] ? _raw_spin_unlock+0x28/0x50 [ 1340.342923][T23975] ? current_check_access_path+0x33c/0x460 [ 1340.342967][T23975] ? __pfx_current_check_access_path+0x10/0x10 [ 1340.343009][T23975] ? simple_lookup+0x105/0x1d0 [ 1340.343051][T23975] tomoyo_path_mknod+0x10c/0x190 [ 1340.343096][T23975] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 1340.343145][T23975] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1340.343199][T23975] security_path_mknod+0x161/0x310 [ 1340.343242][T23975] do_mknodat+0x239/0x5d0 [ 1340.343282][T23975] ? __pfx_do_mknodat+0x10/0x10 [ 1340.343314][T23975] ? getname_flags.part.0+0x1c5/0x550 [ 1340.343369][T23975] __x64_sys_mknod+0x87/0xb0 [ 1340.343405][T23975] do_syscall_64+0xcd/0x490 [ 1340.343442][T23975] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1340.343475][T23975] RIP: 0033:0x7fec7738eb69 [ 1340.343504][T23975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1340.343536][T23975] RSP: 002b:00007fec782ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1340.343568][T23975] RAX: ffffffffffffffda RBX: 00007fec775b5fa0 RCX: 00007fec7738eb69 [ 1340.343590][T23975] RDX: 0000000000000004 RSI: 0000000000001001 RDI: 0000200000000040 [ 1340.343620][T23975] RBP: 00007fec77411df1 R08: 0000000000000000 R09: 0000000000000000 [ 1340.343640][T23975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1340.343659][T23975] R13: 0000000000000000 R14: 00007fec775b5fa0 R15: 00007ffdb7621c28 [ 1340.343707][T23975] [ 1340.687015][T23975] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1340.842064][T23982] kafs: addr_prefs: Invalid Command [ 1341.563514][T24001] FAULT_INJECTION: forcing a failure. [ 1341.563514][T24001] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1341.632358][T24001] CPU: 1 UID: 0 PID: 24001 Comm: syz.3.3677 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1341.632402][T24001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1341.632420][T24001] Call Trace: [ 1341.632431][T24001] [ 1341.632443][T24001] dump_stack_lvl+0x16c/0x1f0 [ 1341.632481][T24001] should_fail_ex+0x512/0x640 [ 1341.632521][T24001] _copy_to_iter+0x463/0x16f0 [ 1341.632573][T24001] ? __pfx__copy_to_iter+0x10/0x10 [ 1341.632616][T24001] ? const_folio_flags+0x5b/0x100 [ 1341.632652][T24001] ? folio_mark_accessed+0xc1/0xc00 [ 1341.632691][T24001] ? __pfx_folio_mark_accessed+0x10/0x10 [ 1341.632739][T24001] copy_page_to_iter+0x12a/0x1e0 [ 1341.632786][T24001] filemap_read+0x6b1/0xe40 [ 1341.632845][T24001] ? __pfx_filemap_read+0x10/0x10 [ 1341.632918][T24001] ? __pfx_down_read+0x10/0x10 [ 1341.632950][T24001] ? __pfx__kstrtoull+0x10/0x10 [ 1341.632979][T24001] ? __pfx_aa_file_perm+0x10/0x10 [ 1341.633023][T24001] blkdev_read_iter+0x1ac/0x500 [ 1341.633062][T24001] do_iter_readv_writev+0x738/0x950 [ 1341.633100][T24001] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 1341.633141][T24001] ? bpf_lsm_file_permission+0x9/0x10 [ 1341.633184][T24001] ? security_file_permission+0x71/0x210 [ 1341.633220][T24001] ? rw_verify_area+0xcf/0x6c0 [ 1341.633257][T24001] vfs_readv+0x4cb/0x8b0 [ 1341.633406][T24001] ? __pfx_vfs_readv+0x10/0x10 [ 1341.633471][T24001] ? __fget_files+0x20e/0x3c0 [ 1341.633541][T24001] ? do_readv+0x132/0x340 [ 1341.633571][T24001] do_readv+0x132/0x340 [ 1341.633603][T24001] ? __pfx_do_readv+0x10/0x10 [ 1341.633633][T24001] ? ksys_write+0x1ac/0x250 [ 1341.633666][T24001] ? __pfx_ksys_write+0x10/0x10 [ 1341.633707][T24001] __x64_sys_preadv2+0x11f/0x160 [ 1341.633752][T24001] do_syscall_64+0xcd/0x490 [ 1341.633789][T24001] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1341.633820][T24001] RIP: 0033:0x7fa994d8eb69 [ 1341.633847][T24001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1341.633876][T24001] RSP: 002b:00007fa995ca8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000147 [ 1341.633907][T24001] RAX: ffffffffffffffda RBX: 00007fa994fb6080 RCX: 00007fa994d8eb69 [ 1341.633927][T24001] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000003 [ 1341.633947][T24001] RBP: 00007fa995ca8090 R08: 0000000000000004 R09: 000000000000002e [ 1341.633966][T24001] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1341.633985][T24001] R13: 0000000000000001 R14: 00007fa994fb6080 R15: 00007ffc9c90dce8 [ 1341.634027][T24001] [ 1343.133048][T24020] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1344.664804][T24049] netlink: 338 bytes leftover after parsing attributes in process `syz.2.3689'. [ 1351.829504][T24169] netlink: 222 bytes leftover after parsing attributes in process `syz.0.3710'. [ 1353.571161][T24201] FAULT_INJECTION: forcing a failure. [ 1353.571161][T24201] name failslab, interval 1, probability 0, space 0, times 0 [ 1353.798556][T24201] CPU: 0 UID: 0 PID: 24201 Comm: syz.2.3716 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1353.798601][T24201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1353.798621][T24201] Call Trace: [ 1353.798632][T24201] [ 1353.798644][T24201] dump_stack_lvl+0x16c/0x1f0 [ 1353.798687][T24201] should_fail_ex+0x512/0x640 [ 1353.798722][T24201] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1353.798760][T24201] should_failslab+0xc2/0x120 [ 1353.798801][T24201] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1353.798830][T24201] ? __lock_acquire+0xb97/0x1ce0 [ 1353.798869][T24201] ? snd_timer_instance_new+0x47/0x2e0 [ 1353.798915][T24201] snd_timer_instance_new+0x47/0x2e0 [ 1353.798962][T24201] snd_seq_timer_open+0x1cc/0x600 [ 1353.798998][T24201] ? __pfx_snd_seq_timer_open+0x10/0x10 [ 1353.799033][T24201] ? find_held_lock+0x2b/0x80 [ 1353.799070][T24201] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1353.799118][T24201] ? lockdep_hardirqs_on+0x7c/0x110 [ 1353.799149][T24201] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1353.799200][T24201] queue_use+0xe3/0x250 [ 1353.799242][T24201] snd_seq_queue_alloc+0x2e5/0x5a0 [ 1353.799291][T24201] snd_seq_ioctl_create_queue+0xa9/0x380 [ 1353.799328][T24201] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 1353.799373][T24201] alloc_seq_queue+0xda/0x180 [ 1353.799412][T24201] ? __pfx_alloc_seq_queue+0x10/0x10 [ 1353.799476][T24201] ? mark_held_locks+0x49/0x80 [ 1353.799527][T24201] ? _raw_spin_unlock_irq+0x23/0x50 [ 1353.799579][T24201] snd_seq_oss_open+0x38c/0xa20 [ 1353.799624][T24201] odev_open+0x6f/0x90 [ 1353.799655][T24201] ? __pfx_odev_open+0x10/0x10 [ 1353.799687][T24201] soundcore_open+0x40c/0x580 [ 1353.799724][T24201] ? __pfx_soundcore_open+0x10/0x10 [ 1353.799756][T24201] chrdev_open+0x234/0x6a0 [ 1353.799793][T24201] ? __pfx_apparmor_file_open+0x10/0x10 [ 1353.799837][T24201] ? __pfx_chrdev_open+0x10/0x10 [ 1353.799876][T24201] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1353.799916][T24201] do_dentry_open+0x982/0x1530 [ 1353.799953][T24201] ? __pfx_chrdev_open+0x10/0x10 [ 1353.800000][T24201] vfs_open+0x82/0x3f0 [ 1353.800069][T24201] path_openat+0x1de4/0x2cb0 [ 1353.800119][T24201] ? __pfx_path_openat+0x10/0x10 [ 1353.800166][T24201] do_filp_open+0x20b/0x470 [ 1353.800199][T24201] ? __pfx_do_filp_open+0x10/0x10 [ 1353.800261][T24201] ? alloc_fd+0x471/0x7d0 [ 1353.800306][T24201] do_sys_openat2+0x11b/0x1d0 [ 1353.800348][T24201] ? __pfx_do_sys_openat2+0x10/0x10 [ 1353.800409][T24201] __x64_sys_openat+0x174/0x210 [ 1353.800453][T24201] ? __pfx___x64_sys_openat+0x10/0x10 [ 1353.800525][T24201] do_syscall_64+0xcd/0x490 [ 1353.800560][T24201] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1353.800592][T24201] RIP: 0033:0x7fe4e8d8eb69 [ 1353.800619][T24201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1353.800647][T24201] RSP: 002b:00007fe4e9b2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1353.800677][T24201] RAX: ffffffffffffffda RBX: 00007fe4e8fb5fa0 RCX: 00007fe4e8d8eb69 [ 1353.800697][T24201] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1353.800716][T24201] RBP: 00007fe4e8e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1353.800735][T24201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1353.800752][T24201] R13: 0000000000000000 R14: 00007fe4e8fb5fa0 R15: 00007ffcefd04c98 [ 1353.800794][T24201] [ 1357.771461][T24262] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1360.008683][T24302] random: crng reseeded on system resumption [ 1360.209186][T24302] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1360.284017][T24302] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1365.170912][T24386] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1367.703889][T24439] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1369.128882][T24459] FAULT_INJECTION: forcing a failure. [ 1369.128882][T24459] name failslab, interval 1, probability 0, space 0, times 0 [ 1369.293462][T24459] CPU: 0 UID: 0 PID: 24459 Comm: syz.0.3767 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1369.293494][T24459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1369.293506][T24459] Call Trace: [ 1369.293513][T24459] [ 1369.293521][T24459] dump_stack_lvl+0x16c/0x1f0 [ 1369.293549][T24459] should_fail_ex+0x512/0x640 [ 1369.293571][T24459] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1369.293597][T24459] should_failslab+0xc2/0x120 [ 1369.293623][T24459] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1369.293646][T24459] ? __kernfs_new_node+0xd2/0x8e0 [ 1369.293675][T24459] __kernfs_new_node+0xd2/0x8e0 [ 1369.293702][T24459] ? __pfx___kernfs_new_node+0x10/0x10 [ 1369.293731][T24459] ? find_held_lock+0x2b/0x80 [ 1369.293752][T24459] ? kernfs_root+0xee/0x2a0 [ 1369.293780][T24459] kernfs_new_node+0x13c/0x1e0 [ 1369.293810][T24459] __kernfs_create_file+0x53/0x350 [ 1369.293832][T24459] sysfs_add_file_mode_ns+0x207/0x3c0 [ 1369.293860][T24459] internal_create_group+0x578/0xf30 [ 1369.293890][T24459] ? __pfx_internal_create_group+0x10/0x10 [ 1369.293919][T24459] ? kernfs_create_link+0x1bd/0x240 [ 1369.293941][T24459] internal_create_groups+0x9d/0x150 [ 1369.293968][T24459] device_add+0xf30/0x1aa0 [ 1369.293998][T24459] ? __pfx_device_add+0x10/0x10 [ 1369.294023][T24459] ? lockdep_init_map_type+0x5c/0x280 [ 1369.294059][T24459] ? __init_waitqueue_head+0xca/0x150 [ 1369.294099][T24459] netdev_register_kobject+0x1a9/0x3d0 [ 1369.294127][T24459] register_netdevice+0x13dc/0x2270 [ 1369.294155][T24459] ? __pfx_register_netdevice+0x10/0x10 [ 1369.294183][T24459] ? __pfx_loopback_net_init+0x10/0x10 [ 1369.294213][T24459] register_netdev+0x34/0x50 [ 1369.294234][T24459] loopback_net_init+0x7a/0x170 [ 1369.294263][T24459] ? __pfx_loopback_net_init+0x10/0x10 [ 1369.294293][T24459] ops_init+0x1df/0x5f0 [ 1369.294316][T24459] setup_net+0x10f/0x380 [ 1369.294336][T24459] ? lockdep_init_map_type+0x5c/0x280 [ 1369.294368][T24459] ? __pfx_setup_net+0x10/0x10 [ 1369.294390][T24459] ? debug_mutex_init+0x37/0x70 [ 1369.294415][T24459] copy_net_ns+0x2a6/0x5f0 [ 1369.294440][T24459] create_new_namespaces+0x3ea/0xa90 [ 1369.294469][T24459] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1369.294493][T24459] ksys_unshare+0x45b/0xa40 [ 1369.294519][T24459] ? __pfx_ksys_unshare+0x10/0x10 [ 1369.294560][T24459] ? xfd_validate_state+0x61/0x180 [ 1369.294596][T24459] __x64_sys_unshare+0x31/0x40 [ 1369.294622][T24459] do_syscall_64+0xcd/0x490 [ 1369.294645][T24459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1369.294665][T24459] RIP: 0033:0x7f4a2738eb69 [ 1369.294681][T24459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1369.294700][T24459] RSP: 002b:00007f4a28142038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1369.294719][T24459] RAX: ffffffffffffffda RBX: 00007f4a275b5fa0 RCX: 00007f4a2738eb69 [ 1369.294731][T24459] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1369.294742][T24459] RBP: 00007f4a27411df1 R08: 0000000000000000 R09: 0000000000000000 [ 1369.294754][T24459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1369.294765][T24459] R13: 0000000000000000 R14: 00007f4a275b5fa0 R15: 00007ffd53d72178 [ 1369.294797][T24459] [ 1370.288189][T24475] random: crng reseeded on system resumption [ 1370.310190][T24475] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1370.321222][T24475] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1371.271837][T24488] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1372.614533][T24513] FAULT_INJECTION: forcing a failure. [ 1372.614533][T24513] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1372.636826][T24513] CPU: 1 UID: 0 PID: 24513 Comm: syz.2.3777 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1372.636869][T24513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1372.636886][T24513] Call Trace: [ 1372.636895][T24513] [ 1372.636907][T24513] dump_stack_lvl+0x16c/0x1f0 [ 1372.636943][T24513] should_fail_ex+0x512/0x640 [ 1372.636985][T24513] _copy_from_user+0x2e/0xd0 [ 1372.637026][T24513] core_sys_select+0x35b/0xc10 [ 1372.637070][T24513] ? __pfx_core_sys_select+0x10/0x10 [ 1372.637119][T24513] ? proc_fail_nth_write+0x9f/0x220 [ 1372.637178][T24513] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1372.637215][T24513] kern_select+0x15d/0x1e0 [ 1372.637242][T24513] ? __pfx_kern_select+0x10/0x10 [ 1372.637278][T24513] ? __pfx_ksys_write+0x10/0x10 [ 1372.637317][T24513] __x64_sys_select+0xbd/0x160 [ 1372.637346][T24513] ? do_syscall_64+0x91/0x490 [ 1372.637376][T24513] ? lockdep_hardirqs_on+0x7c/0x110 [ 1372.637404][T24513] do_syscall_64+0xcd/0x490 [ 1372.637439][T24513] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1372.637469][T24513] RIP: 0033:0x7fe4e8d8eb69 [ 1372.637494][T24513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1372.637524][T24513] RSP: 002b:00007fe4e6bd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 1372.637553][T24513] RAX: ffffffffffffffda RBX: 00007fe4e8fb6160 RCX: 00007fe4e8d8eb69 [ 1372.637573][T24513] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 1372.637590][T24513] RBP: 00007fe4e6bd5090 R08: 0000000000000000 R09: 0000000000000000 [ 1372.637609][T24513] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 1372.637628][T24513] R13: 0000000000000000 R14: 00007fe4e8fb6160 R15: 00007ffcefd04c98 [ 1372.637669][T24513] [ 1377.850861][T24569] FAULT_INJECTION: forcing a failure. [ 1377.850861][T24569] name failslab, interval 1, probability 0, space 0, times 0 [ 1377.908244][T24569] CPU: 0 UID: 0 PID: 24569 Comm: syz.0.3787 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1377.908295][T24569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1377.908315][T24569] Call Trace: [ 1377.908327][T24569] [ 1377.908339][T24569] dump_stack_lvl+0x16c/0x1f0 [ 1377.908380][T24569] should_fail_ex+0x512/0x640 [ 1377.908417][T24569] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1377.908455][T24569] should_failslab+0xc2/0x120 [ 1377.908498][T24569] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1377.908536][T24569] ? _raw_spin_unlock+0x28/0x50 [ 1377.908582][T24569] ? snd_rawmidi_open+0x3c3/0xbf0 [ 1377.908637][T24569] snd_rawmidi_open+0x3c3/0xbf0 [ 1377.908685][T24569] ? __mutex_unlock_slowpath+0x163/0x800 [ 1377.908726][T24569] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 1377.908784][T24569] ? kobject_get_unless_zero+0x156/0x1e0 [ 1377.908827][T24569] ? __pfx_snd_rawmidi_open+0x10/0x10 [ 1377.908875][T24569] snd_open+0x22d/0x4c0 [ 1377.908911][T24569] ? __pfx_snd_open+0x10/0x10 [ 1377.908945][T24569] chrdev_open+0x234/0x6a0 [ 1377.908981][T24569] ? __pfx_apparmor_file_open+0x10/0x10 [ 1377.909037][T24569] ? __pfx_chrdev_open+0x10/0x10 [ 1377.909076][T24569] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1377.909116][T24569] do_dentry_open+0x982/0x1530 [ 1377.909153][T24569] ? __pfx_chrdev_open+0x10/0x10 [ 1377.909198][T24569] vfs_open+0x82/0x3f0 [ 1377.909245][T24569] path_openat+0x1de4/0x2cb0 [ 1377.909289][T24569] ? __pfx_path_openat+0x10/0x10 [ 1377.909335][T24569] do_filp_open+0x20b/0x470 [ 1377.909371][T24569] ? __pfx_do_filp_open+0x10/0x10 [ 1377.909435][T24569] ? alloc_fd+0x471/0x7d0 [ 1377.909481][T24569] do_sys_openat2+0x11b/0x1d0 [ 1377.909526][T24569] ? __pfx_do_sys_openat2+0x10/0x10 [ 1377.909586][T24569] __x64_sys_openat+0x174/0x210 [ 1377.909625][T24569] ? __pfx___x64_sys_openat+0x10/0x10 [ 1377.909664][T24569] do_syscall_64+0xcd/0x490 [ 1377.909687][T24569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1377.909707][T24569] RIP: 0033:0x7f4a2738eb69 [ 1377.909723][T24569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1377.909742][T24569] RSP: 002b:00007f4a28142038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1377.909762][T24569] RAX: ffffffffffffffda RBX: 00007f4a275b5fa0 RCX: 00007f4a2738eb69 [ 1377.909774][T24569] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1377.909786][T24569] RBP: 00007f4a27411df1 R08: 0000000000000000 R09: 0000000000000000 [ 1377.909797][T24569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1377.909808][T24569] R13: 0000000000000000 R14: 00007f4a275b5fa0 R15: 00007ffd53d72178 [ 1377.909831][T24569] [ 1379.798411][T24611] random: crng reseeded on system resumption [ 1386.555172][T24682] ERROR: Out of memory at tomoyo_memory_ok. [ 1386.587422][T24682] ERROR: Domain ' /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /sbin/start-stop-daemon /usr/sbin/sshd /usr/libexec/sshd-session /bin/sh /root/syz-executor /root/syz-executor /newroot/367/\010' not defined. [ 1386.701700][T24687] netlink: 222 bytes leftover after parsing attributes in process `syz.0.3812'. [ 1386.866679][T24688] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock [ 1387.466467][T24700] random: crng reseeded on system resumption [ 1387.666060][T24700] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1387.676882][T24700] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1396.511957][T24773] kexec: Could not allocate control_code_buffer [ 1397.000126][T24824] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 1398.930636][T24848] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(16) [ 1400.569103][T24869] random: crng reseeded on system resumption [ 1407.923703][T24953] nbd: must specify at least one socket [ 1409.434707][T24970] nbd: must specify at least one socket [ 1409.446000][T24967] FAULT_INJECTION: forcing a failure. [ 1409.446000][T24967] name failslab, interval 1, probability 0, space 0, times 0 [ 1409.483702][T24967] CPU: 0 UID: 0 PID: 24967 Comm: syz.2.3866 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1409.483733][T24967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1409.483746][T24967] Call Trace: [ 1409.483752][T24967] [ 1409.483760][T24967] dump_stack_lvl+0x16c/0x1f0 [ 1409.483789][T24967] should_fail_ex+0x512/0x640 [ 1409.483813][T24967] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 1409.483841][T24967] should_failslab+0xc2/0x120 [ 1409.483867][T24967] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 1409.483891][T24967] ? chrdev_open+0x234/0x6a0 [ 1409.483923][T24967] ? do_dentry_open+0x982/0x1530 [ 1409.483945][T24967] ? vfs_open+0x82/0x3f0 [ 1409.483970][T24967] ? kasprintf+0xc7/0x100 [ 1409.483999][T24967] kvasprintf+0xbc/0x160 [ 1409.484025][T24967] ? __pfx_kvasprintf+0x10/0x10 [ 1409.484060][T24967] kasprintf+0xc7/0x100 [ 1409.484086][T24967] ? __pfx_kasprintf+0x10/0x10 [ 1409.484115][T24967] ? aa_get_newest_label+0xd2/0x250 [ 1409.484145][T24967] ? lockdep_init_map_type+0x5c/0x280 [ 1409.484176][T24967] drm_debugfs_clients_add+0x48/0x200 [ 1409.484203][T24967] drm_file_alloc+0x5c6/0xb40 [ 1409.484233][T24967] drm_open_helper+0x204/0x550 [ 1409.484263][T24967] drm_open+0x1a0/0x3e0 [ 1409.484289][T24967] ? __pfx_drm_open+0x10/0x10 [ 1409.484315][T24967] drm_stub_open+0x20f/0x380 [ 1409.484343][T24967] ? __pfx_drm_stub_open+0x10/0x10 [ 1409.484369][T24967] chrdev_open+0x234/0x6a0 [ 1409.484392][T24967] ? __pfx_apparmor_file_open+0x10/0x10 [ 1409.484422][T24967] ? __pfx_chrdev_open+0x10/0x10 [ 1409.484447][T24967] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1409.484472][T24967] do_dentry_open+0x982/0x1530 [ 1409.484496][T24967] ? __pfx_chrdev_open+0x10/0x10 [ 1409.484524][T24967] vfs_open+0x82/0x3f0 [ 1409.484555][T24967] path_openat+0x1de4/0x2cb0 [ 1409.484584][T24967] ? __pfx_path_openat+0x10/0x10 [ 1409.484612][T24967] do_filp_open+0x20b/0x470 [ 1409.484634][T24967] ? __pfx_do_filp_open+0x10/0x10 [ 1409.484675][T24967] ? alloc_fd+0x471/0x7d0 [ 1409.484702][T24967] do_sys_openat2+0x11b/0x1d0 [ 1409.484730][T24967] ? __pfx_do_sys_openat2+0x10/0x10 [ 1409.484766][T24967] __x64_sys_openat+0x174/0x210 [ 1409.484795][T24967] ? __pfx___x64_sys_openat+0x10/0x10 [ 1409.484832][T24967] do_syscall_64+0xcd/0x490 [ 1409.484855][T24967] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1409.484874][T24967] RIP: 0033:0x7fe4e8d8eb69 [ 1409.484890][T24967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1409.484909][T24967] RSP: 002b:00007fe4e9b2a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1409.484934][T24967] RAX: ffffffffffffffda RBX: 00007fe4e8fb5fa0 RCX: 00007fe4e8d8eb69 [ 1409.484946][T24967] RDX: 0000000000129800 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1409.484958][T24967] RBP: 00007fe4e8e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1409.484969][T24967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1409.484980][T24967] R13: 0000000000000000 R14: 00007fe4e8fb5fa0 R15: 00007ffcefd04c98 [ 1409.485002][T24967] [ 1410.402166][T24986] FAULT_INJECTION: forcing a failure. [ 1410.402166][T24986] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1410.468965][T24986] CPU: 0 UID: 0 PID: 24986 Comm: syz.2.3870 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1410.469008][T24986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1410.469026][T24986] Call Trace: [ 1410.469036][T24986] [ 1410.469048][T24986] dump_stack_lvl+0x16c/0x1f0 [ 1410.469085][T24986] should_fail_ex+0x512/0x640 [ 1410.469127][T24986] _copy_to_iter+0x463/0x16f0 [ 1410.469178][T24986] ? __pfx__copy_to_iter+0x10/0x10 [ 1410.469221][T24986] ? const_folio_flags+0x5b/0x100 [ 1410.469258][T24986] ? folio_mark_accessed+0xc1/0xc00 [ 1410.469298][T24986] ? __pfx_folio_mark_accessed+0x10/0x10 [ 1410.469346][T24986] copy_page_to_iter+0x12a/0x1e0 [ 1410.469394][T24986] filemap_read+0x6b1/0xe40 [ 1410.469453][T24986] ? __pfx_filemap_read+0x10/0x10 [ 1410.469524][T24986] ? __pfx_down_read+0x10/0x10 [ 1410.469557][T24986] ? __pfx__kstrtoull+0x10/0x10 [ 1410.469587][T24986] ? __pfx_aa_file_perm+0x10/0x10 [ 1410.469631][T24986] blkdev_read_iter+0x1ac/0x500 [ 1410.469670][T24986] do_iter_readv_writev+0x738/0x950 [ 1410.469701][T24986] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 1410.469733][T24986] ? bpf_lsm_file_permission+0x9/0x10 [ 1410.469768][T24986] ? security_file_permission+0x71/0x210 [ 1410.469797][T24986] ? rw_verify_area+0xcf/0x6c0 [ 1410.469824][T24986] vfs_readv+0x4cb/0x8b0 [ 1410.469857][T24986] ? __pfx_vfs_readv+0x10/0x10 [ 1410.469906][T24986] ? __fget_files+0x20e/0x3c0 [ 1410.469948][T24986] ? do_readv+0x132/0x340 [ 1410.469971][T24986] do_readv+0x132/0x340 [ 1410.469996][T24986] ? __pfx_do_readv+0x10/0x10 [ 1410.470021][T24986] ? ksys_write+0x1ac/0x250 [ 1410.470047][T24986] ? __pfx_ksys_write+0x10/0x10 [ 1410.470080][T24986] __x64_sys_preadv2+0x11f/0x160 [ 1410.470113][T24986] do_syscall_64+0xcd/0x490 [ 1410.470142][T24986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1410.470166][T24986] RIP: 0033:0x7fe4e8d8eb69 [ 1410.470186][T24986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1410.470210][T24986] RSP: 002b:00007fe4e6bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000147 [ 1410.470233][T24986] RAX: ffffffffffffffda RBX: 00007fe4e8fb6080 RCX: 00007fe4e8d8eb69 [ 1410.470249][T24986] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000003 [ 1410.470264][T24986] RBP: 00007fe4e6bf6090 R08: 0000000000000004 R09: 000000000000002e [ 1410.470278][T24986] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1410.470293][T24986] R13: 0000000000000001 R14: 00007fe4e8fb6080 R15: 00007ffcefd04c98 [ 1410.470325][T24986] [ 1410.728729][ C0] vkms_vblank_simulate: vblank timer overrun [ 1411.711982][T25004] random: crng reseeded on system resumption [ 1412.189570][T25004] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1412.215787][T25004] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1412.600721][T25012] nbd: must specify at least one socket [ 1415.145012][T25055] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBç [ 1415.465775][T25058] random: crng reseeded on system resumption [ 1415.935172][T25058] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1415.973898][T25069] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3883'. [ 1416.032935][T25058] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1417.002332][T25091] FAULT_INJECTION: forcing a failure. [ 1417.002332][T25091] name failslab, interval 1, probability 0, space 0, times 0 [ 1417.097775][T25091] CPU: 0 UID: 0 PID: 25091 Comm: syz.3.3886 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1417.097819][T25091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1417.097832][T25091] Call Trace: [ 1417.097839][T25091] [ 1417.097847][T25091] dump_stack_lvl+0x16c/0x1f0 [ 1417.097873][T25091] should_fail_ex+0x512/0x640 [ 1417.097911][T25091] ? fs_reclaim_acquire+0xae/0x150 [ 1417.097941][T25091] ? tomoyo_encode2+0x100/0x3e0 [ 1417.097965][T25091] should_failslab+0xc2/0x120 [ 1417.097990][T25091] __kmalloc_noprof+0xd2/0x510 [ 1417.098013][T25091] ? d_absolute_path+0x136/0x1a0 [ 1417.098044][T25091] tomoyo_encode2+0x100/0x3e0 [ 1417.098070][T25091] tomoyo_encode+0x29/0x50 [ 1417.098093][T25091] tomoyo_realpath_from_path+0x18f/0x6e0 [ 1417.098124][T25091] tomoyo_check_open_permission+0x2ab/0x3c0 [ 1417.098145][T25091] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1417.098187][T25091] ? do_raw_spin_lock+0x12c/0x2b0 [ 1417.098222][T25091] tomoyo_file_open+0x6b/0x90 [ 1417.098250][T25091] security_file_open+0x84/0x1e0 [ 1417.098273][T25091] do_dentry_open+0x596/0x1530 [ 1417.098304][T25091] vfs_open+0x82/0x3f0 [ 1417.098334][T25091] path_openat+0x1de4/0x2cb0 [ 1417.098363][T25091] ? __pfx_path_openat+0x10/0x10 [ 1417.098391][T25091] do_filp_open+0x20b/0x470 [ 1417.098414][T25091] ? __pfx_do_filp_open+0x10/0x10 [ 1417.098464][T25091] ? alloc_fd+0x471/0x7d0 [ 1417.098491][T25091] do_sys_openat2+0x11b/0x1d0 [ 1417.098520][T25091] ? __pfx_do_sys_openat2+0x10/0x10 [ 1417.098564][T25091] __x64_sys_openat+0x174/0x210 [ 1417.098594][T25091] ? __pfx___x64_sys_openat+0x10/0x10 [ 1417.098633][T25091] do_syscall_64+0xcd/0x490 [ 1417.098659][T25091] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1417.098679][T25091] RIP: 0033:0x7fa994d8eb69 [ 1417.098695][T25091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1417.098714][T25091] RSP: 002b:00007fa995cc9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1417.098733][T25091] RAX: ffffffffffffffda RBX: 00007fa994fb5fa0 RCX: 00007fa994d8eb69 [ 1417.098746][T25091] RDX: 0000000000129800 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1417.098758][T25091] RBP: 00007fa994e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1417.098769][T25091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1417.098780][T25091] R13: 0000000000000000 R14: 00007fa994fb5fa0 R15: 00007ffc9c90dce8 [ 1417.098803][T25091] [ 1417.098826][T25091] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1417.929660][T25104] nbd: must specify a size in bytes for the device [ 1420.589453][T25152] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸ [ 1421.020146][T25164] nbd: must specify a size in bytes for the device [ 1421.652576][T25177] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3902'. [ 1422.377737][T25185] nbd: must specify a size in bytes for the device [ 1425.547713][T25222] FAULT_INJECTION: forcing a failure. [ 1425.547713][T25222] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1425.641236][T25222] CPU: 0 UID: 0 PID: 25222 Comm: syz.3.3910 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1425.641268][T25222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1425.641279][T25222] Call Trace: [ 1425.641286][T25222] [ 1425.641294][T25222] dump_stack_lvl+0x16c/0x1f0 [ 1425.641318][T25222] should_fail_ex+0x512/0x640 [ 1425.641345][T25222] _copy_to_iter+0x463/0x16f0 [ 1425.641377][T25222] ? __pfx__copy_to_iter+0x10/0x10 [ 1425.641404][T25222] ? const_folio_flags+0x5b/0x100 [ 1425.641426][T25222] ? folio_mark_accessed+0xc1/0xc00 [ 1425.641451][T25222] ? __pfx_folio_mark_accessed+0x10/0x10 [ 1425.641481][T25222] copy_page_to_iter+0x12a/0x1e0 [ 1425.641513][T25222] filemap_read+0x6b1/0xe40 [ 1425.641547][T25222] ? __pfx_filemap_read+0x10/0x10 [ 1425.641587][T25222] ? __pfx_down_read+0x10/0x10 [ 1425.641609][T25222] ? __pfx__kstrtoull+0x10/0x10 [ 1425.641628][T25222] ? __pfx_aa_file_perm+0x10/0x10 [ 1425.641655][T25222] blkdev_read_iter+0x1ac/0x500 [ 1425.641680][T25222] do_iter_readv_writev+0x738/0x950 [ 1425.641703][T25222] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 1425.641727][T25222] ? bpf_lsm_file_permission+0x9/0x10 [ 1425.641754][T25222] ? security_file_permission+0x71/0x210 [ 1425.641784][T25222] ? rw_verify_area+0xcf/0x6c0 [ 1425.641804][T25222] vfs_readv+0x4cb/0x8b0 [ 1425.641828][T25222] ? __pfx_vfs_readv+0x10/0x10 [ 1425.641863][T25222] ? __fget_files+0x20e/0x3c0 [ 1425.641889][T25222] ? do_readv+0x132/0x340 [ 1425.641907][T25222] do_readv+0x132/0x340 [ 1425.641926][T25222] ? __pfx_do_readv+0x10/0x10 [ 1425.641945][T25222] ? ksys_write+0x1ac/0x250 [ 1425.641966][T25222] ? __pfx_ksys_write+0x10/0x10 [ 1425.641991][T25222] __x64_sys_preadv2+0x11f/0x160 [ 1425.642016][T25222] do_syscall_64+0xcd/0x490 [ 1425.642039][T25222] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1425.642058][T25222] RIP: 0033:0x7fa994d8eb69 [ 1425.642074][T25222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1425.642092][T25222] RSP: 002b:00007fa995ca8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000147 [ 1425.642111][T25222] RAX: ffffffffffffffda RBX: 00007fa994fb6080 RCX: 00007fa994d8eb69 [ 1425.642123][T25222] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000003 [ 1425.642135][T25222] RBP: 00007fa995ca8090 R08: 0000000000000004 R09: 000000000000002e [ 1425.642146][T25222] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1425.642158][T25222] R13: 0000000000000001 R14: 00007fa994fb6080 R15: 00007ffc9c90dce8 [ 1425.642180][T25222] [ 1426.790678][T25246] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸ [ 1427.675178][T25259] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3925'. [ 1429.801430][T25295] nbd: must specify at least one socket [ 1430.347574][T25307] random: crng reseeded on system resumption [ 1433.574881][T25362] random: crng reseeded on system resumption [ 1435.029995][T25382] random: crng reseeded on system resumption [ 1437.499423][T25413] random: crng reseeded on system resumption [ 1438.156537][T25424] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3951'. [ 1439.157699][T25439] block2mtd: illegal erase size [ 1440.227935][T25454] random: crng reseeded on system resumption [ 1441.237789][T25476] netlink: 17 bytes leftover after parsing attributes in process `syz.0.3971'. [ 1441.247369][T25476] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3971'. [ 1441.797999][T25480] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3964'. [ 1442.302465][T25493] delete_channel: no stack [ 1443.576057][T25516] nbd: must specify at least one socket [ 1444.638037][T25530] nvme_fabrics: missing parameter 'transport=%s' [ 1444.664078][T25530] nvme_fabrics: missing parameter 'nqn=%s' [ 1445.575685][T25549] FAULT_INJECTION: forcing a failure. [ 1445.575685][T25549] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1445.598496][T25549] CPU: 1 UID: 0 PID: 25549 Comm: syz.1.3975 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1445.598541][T25549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1445.598559][T25549] Call Trace: [ 1445.598569][T25549] [ 1445.598582][T25549] dump_stack_lvl+0x16c/0x1f0 [ 1445.598617][T25549] should_fail_ex+0x512/0x640 [ 1445.598644][T25549] _copy_to_user+0x32/0xd0 [ 1445.598671][T25549] simple_read_from_buffer+0xcb/0x170 [ 1445.598693][T25549] proc_fail_nth_read+0x197/0x240 [ 1445.598714][T25549] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1445.598736][T25549] ? rw_verify_area+0xcf/0x6c0 [ 1445.598754][T25549] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1445.598774][T25549] vfs_read+0x1e1/0xc60 [ 1445.598797][T25549] ? __pfx___mutex_lock+0x10/0x10 [ 1445.598825][T25549] ? __pfx_vfs_read+0x10/0x10 [ 1445.598852][T25549] ? __fget_files+0x20e/0x3c0 [ 1445.598871][T25549] ? rcu_watching_snap_stopped_since+0x50/0x110 [ 1445.598900][T25549] ksys_read+0x12a/0x250 [ 1445.598920][T25549] ? __pfx_ksys_read+0x10/0x10 [ 1445.598948][T25549] do_syscall_64+0xcd/0x490 [ 1445.598970][T25549] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1445.598988][T25549] RIP: 0033:0x7fec7738d57c [ 1445.599004][T25549] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1445.599022][T25549] RSP: 002b:00007fec7828c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1445.599041][T25549] RAX: ffffffffffffffda RBX: 00007fec775b6160 RCX: 00007fec7738d57c [ 1445.599053][T25549] RDX: 000000000000000f RSI: 00007fec7828c0a0 RDI: 0000000000000009 [ 1445.599065][T25549] RBP: 00007fec7828c090 R08: 0000000000000000 R09: 0000000000000000 [ 1445.599076][T25549] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000001 [ 1445.599087][T25549] R13: 0000000000000001 R14: 00007fec775b6160 R15: 00007ffdb7621c28 [ 1445.599117][T25549] [ 1445.943824][T25552] random: crng reseeded on system resumption [ 1446.166358][T25556] block2mtd: illegal erase size [ 1446.730421][T25568] openvswitch: netlink: nsh attribute has 2 unknown bytes. [ 1448.120754][T25599] random: crng reseeded on system resumption [ 1448.661555][T25606] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3986'. [ 1450.427107][T25631] random: crng reseeded on system resumption [ 1453.022221][T25660] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1453.043145][T25660] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1456.024732][T25718] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1457.093656][T25748] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4008'. [ 1458.805492][T25732] Bluetooth: hci4: Opcode 0x0c1a failed: -110 [ 1458.814389][T18447] Bluetooth: hci4: command 0x0406 tx timeout [ 1458.978050][T25732] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 1459.009029][T25732] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1459.018730][T25732] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 1459.032949][T25732] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 1459.056663][T25732] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 1459.069708][T25732] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1459.077609][T25732] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 1459.091575][T25732] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1459.098974][T25732] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 1460.474870][T25797] random: crng reseeded on system resumption [ 1460.884561][T18447] Bluetooth: hci4: command 0x0406 tx timeout [ 1461.046367][T18447] Bluetooth: hci2: command 0x0406 tx timeout [ 1461.061528][T25803] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4016'. [ 1461.124760][T18447] Bluetooth: hci1: command 0x0406 tx timeout [ 1461.132840][T18447] Bluetooth: hci3: command 0x0406 tx timeout [ 1462.474789][T25803] hsr_slave_0 (unregistering): left promiscuous mode [ 1462.887618][T25829] random: crng reseeded on system resumption [ 1463.123380][T25805] Bluetooth: hci2: command 0x0406 tx timeout [ 1463.212425][T25805] Bluetooth: hci3: command 0x0406 tx timeout [ 1463.212426][ T5876] Bluetooth: hci1: command 0x0406 tx timeout [ 1463.838800][T25840] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1463.858177][T25840] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1465.213437][T25805] Bluetooth: hci2: command 0x0406 tx timeout [ 1467.234052][T25884] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4030'. [ 1467.294248][T25805] Bluetooth: hci2: command 0x0406 tx timeout [ 1468.965105][T25927] FAULT_INJECTION: forcing a failure. [ 1468.965105][T25927] name failslab, interval 1, probability 0, space 0, times 0 [ 1468.978337][T25927] CPU: 0 UID: 0 PID: 25927 Comm: syz.0.4037 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1468.978392][T25927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1468.978412][T25927] Call Trace: [ 1468.978422][T25927] [ 1468.978434][T25927] dump_stack_lvl+0x16c/0x1f0 [ 1468.978471][T25927] should_fail_ex+0x512/0x640 [ 1468.978508][T25927] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1468.978549][T25927] should_failslab+0xc2/0x120 [ 1468.978587][T25927] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1468.978620][T25927] ? kasan_save_stack+0x33/0x60 [ 1468.978651][T25927] ? kasan_save_track+0x14/0x30 [ 1468.978682][T25927] ? kvm_vm_ioctl+0xc2e/0x4000 [ 1468.978717][T25927] kvm_vm_ioctl+0xc2e/0x4000 [ 1468.978759][T25927] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 1468.978801][T25927] ? kasan_quarantine_put+0x10a/0x240 [ 1468.978829][T25927] ? lockdep_hardirqs_on+0x7c/0x110 [ 1468.978858][T25927] ? find_held_lock+0x2b/0x80 [ 1468.978883][T25927] ? tomoyo_path_number_perm+0x295/0x580 [ 1468.978916][T25927] ? tomoyo_path_number_perm+0x18d/0x580 [ 1468.978944][T25927] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1468.979005][T25927] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1468.979052][T25927] ? do_vfs_ioctl+0x128/0x14f0 [ 1468.979101][T25927] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1468.979157][T25927] ? find_held_lock+0x2b/0x80 [ 1468.979186][T25927] ? hook_file_ioctl_common+0x145/0x410 [ 1468.979229][T25927] ? __fget_files+0x20e/0x3c0 [ 1468.979267][T25927] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 1468.979298][T25927] __x64_sys_ioctl+0x18b/0x210 [ 1468.979347][T25927] do_syscall_64+0xcd/0x490 [ 1468.979538][T25927] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1468.979571][T25927] RIP: 0033:0x7f4a2738eb69 [ 1468.979599][T25927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1468.979627][T25927] RSP: 002b:00007f4a28142038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1468.979657][T25927] RAX: ffffffffffffffda RBX: 00007f4a275b5fa0 RCX: 00007f4a2738eb69 [ 1468.979678][T25927] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 1468.979695][T25927] RBP: 00007f4a27411df1 R08: 0000000000000000 R09: 0000000000000000 [ 1468.979713][T25927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1468.979730][T25927] R13: 0000000000000000 R14: 00007f4a275b5fa0 R15: 00007ffd53d72178 [ 1468.979767][T25927] [ 1469.547901][T25937] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4040'. [ 1470.091027][T25944] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1470.108982][T25944] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1470.749871][T25955] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4041'. [ 1471.168215][T25964] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4044'. [ 1471.197581][T25965] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4043'. [ 1473.777598][T26004] random: crng reseeded on system resumption [ 1475.850789][T26019] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1476.666820][T26031] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1476.680311][T26031] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1478.112899][T26054] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4062'. [ 1483.074623][T26127] FAULT_INJECTION: forcing a failure. [ 1483.074623][T26127] name failslab, interval 1, probability 0, space 0, times 0 [ 1483.124006][T26127] CPU: 0 UID: 0 PID: 26127 Comm: syz.3.4074 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1483.124050][T26127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1483.124067][T26127] Call Trace: [ 1483.124077][T26127] [ 1483.124089][T26127] dump_stack_lvl+0x16c/0x1f0 [ 1483.124124][T26127] should_fail_ex+0x512/0x640 [ 1483.124156][T26127] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1483.124185][T26127] should_failslab+0xc2/0x120 [ 1483.124210][T26127] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1483.124231][T26127] ? __pfx_acct_collect+0x10/0x10 [ 1483.124260][T26127] ? taskstats_exit+0x654/0xbe0 [ 1483.124289][T26127] taskstats_exit+0x654/0xbe0 [ 1483.124325][T26127] ? __pfx_taskstats_exit+0x10/0x10 [ 1483.124357][T26127] do_exit+0x5dc/0x2bf0 [ 1483.124388][T26127] ? __pfx_do_exit+0x10/0x10 [ 1483.124413][T26127] ? do_raw_spin_lock+0x12c/0x2b0 [ 1483.124441][T26127] ? find_held_lock+0x2b/0x80 [ 1483.124463][T26127] do_group_exit+0xd3/0x2a0 [ 1483.124491][T26127] get_signal+0x2673/0x26d0 [ 1483.124520][T26127] ? __pfx_get_signal+0x10/0x10 [ 1483.124541][T26127] ? do_futex+0x122/0x350 [ 1483.124565][T26127] ? __pfx_do_futex+0x10/0x10 [ 1483.124590][T26127] arch_do_signal_or_restart+0x8f/0x790 [ 1483.124617][T26127] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1483.124647][T26127] ? dnotify_flush+0x79/0x4c0 [ 1483.124676][T26127] exit_to_user_mode_loop+0x84/0x110 [ 1483.124705][T26127] do_syscall_64+0x3f6/0x490 [ 1483.124727][T26127] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1483.124746][T26127] RIP: 0033:0x7fa994d8eb69 [ 1483.124762][T26127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1483.124781][T26127] RSP: 002b:00007fa995cc90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1483.124799][T26127] RAX: fffffffffffffe00 RBX: 00007fa994fb5fa8 RCX: 00007fa994d8eb69 [ 1483.124812][T26127] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa994fb5fa8 [ 1483.124823][T26127] RBP: 00007fa994fb5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1483.124833][T26127] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa994fb5fac [ 1483.124845][T26127] R13: 0000000000000000 R14: 00007ffc9c90dc00 R15: 00007ffc9c90dce8 [ 1483.124866][T26127] [ 1485.592962][T26176] FAULT_INJECTION: forcing a failure. [ 1485.592962][T26176] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1485.693376][T26176] CPU: 0 UID: 0 PID: 26176 Comm: syz.1.4083 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1485.693408][T26176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1485.693419][T26176] Call Trace: [ 1485.693427][T26176] [ 1485.693435][T26176] dump_stack_lvl+0x16c/0x1f0 [ 1485.693461][T26176] should_fail_ex+0x512/0x640 [ 1485.693488][T26176] should_fail_alloc_page+0xe7/0x130 [ 1485.693515][T26176] prepare_alloc_pages+0x3c2/0x610 [ 1485.693547][T26176] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1485.693572][T26176] ? __lock_acquire+0x62e/0x1ce0 [ 1485.693604][T26176] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1485.693630][T26176] ? find_held_lock+0x2b/0x80 [ 1485.693655][T26176] ? find_held_lock+0x2b/0x80 [ 1485.693674][T26176] ? rcu_read_unlock+0x17/0x60 [ 1485.693697][T26176] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1485.693734][T26176] ? policy_nodemask+0xea/0x4e0 [ 1485.693761][T26176] alloc_pages_mpol+0x1fb/0x550 [ 1485.693788][T26176] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1485.693813][T26176] ? rcu_is_watching+0x12/0xc0 [ 1485.693833][T26176] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1485.693861][T26176] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 1485.693887][T26176] alloc_pages_noprof+0x131/0x390 [ 1485.693913][T26176] kvm_vm_ioctl+0xc4b/0x4000 [ 1485.693940][T26176] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 1485.693979][T26176] ? kasan_quarantine_put+0x10a/0x240 [ 1485.694004][T26176] ? lockdep_hardirqs_on+0x7c/0x110 [ 1485.694027][T26176] ? find_held_lock+0x2b/0x80 [ 1485.694047][T26176] ? tomoyo_path_number_perm+0x295/0x580 [ 1485.694072][T26176] ? tomoyo_path_number_perm+0x18d/0x580 [ 1485.694103][T26176] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1485.694131][T26176] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1485.694162][T26176] ? do_vfs_ioctl+0x128/0x14f0 [ 1485.694192][T26176] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1485.694231][T26176] ? find_held_lock+0x2b/0x80 [ 1485.694249][T26176] ? hook_file_ioctl_common+0x145/0x410 [ 1485.694275][T26176] ? __fget_files+0x20e/0x3c0 [ 1485.694299][T26176] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 1485.694318][T26176] __x64_sys_ioctl+0x18b/0x210 [ 1485.694348][T26176] do_syscall_64+0xcd/0x490 [ 1485.694370][T26176] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1485.694389][T26176] RIP: 0033:0x7fec7738eb69 [ 1485.694407][T26176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1485.694425][T26176] RSP: 002b:00007fec782ce038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1485.694444][T26176] RAX: ffffffffffffffda RBX: 00007fec775b5fa0 RCX: 00007fec7738eb69 [ 1485.694457][T26176] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 1485.694468][T26176] RBP: 00007fec77411df1 R08: 0000000000000000 R09: 0000000000000000 [ 1485.694479][T26176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1485.694490][T26176] R13: 0000000000000000 R14: 00007fec775b5fa0 R15: 00007ffdb7621c28 [ 1485.694512][T26176] [ 1487.139326][T26191] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1487.165851][T26191] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1490.282432][T26234] random: crng reseeded on system resumption [ 1490.462053][T26238] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1490.551763][T26238] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1491.328339][T26256] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4099'. [ 1491.652527][T26260] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1491.722147][T26260] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1495.986861][T26318] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4108'. [ 1496.711607][T26333] HfR: entered promiscuous mode [ 1496.864531][T26337] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4111'. [ 1496.907704][T26337] openvswitch: HfR: Dropping previously announced user features [ 1497.116507][T26340] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4113'. [ 1497.234899][T26344] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4113'. [ 1500.237761][T26402] random: crng reseeded on system resumption [ 1503.445358][T26436] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4128'. [ 1506.867364][T26483] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1507.032203][T26486] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4139'. [ 1509.603856][T26529] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1509.703657][T26529] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1510.112416][T26536] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4149'. [ 1513.689531][T26602] ERROR: Out of memory at tomoyo_memory_ok. [ 1514.639359][T26612] random: crng reseeded on system resumption [ 1516.255623][T26620] random: crng reseeded on system resumption [ 1516.471861][T26620] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1516.481452][T26620] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1517.028148][T26629] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1519.413398][T26664] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1519.422589][T26664] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1520.571463][T26682] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1520.580825][T26682] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1522.244815][T26698] FAULT_INJECTION: forcing a failure. [ 1522.244815][T26698] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1522.334990][T26698] CPU: 1 UID: 0 PID: 26698 Comm: syz.3.4181 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1522.335021][T26698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1522.335032][T26698] Call Trace: [ 1522.335039][T26698] [ 1522.335046][T26698] dump_stack_lvl+0x16c/0x1f0 [ 1522.335071][T26698] should_fail_ex+0x512/0x640 [ 1522.335097][T26698] _copy_to_iter+0x463/0x16f0 [ 1522.335129][T26698] ? __pfx__copy_to_iter+0x10/0x10 [ 1522.335155][T26698] ? const_folio_flags+0x5b/0x100 [ 1522.335183][T26698] ? folio_mark_accessed+0xc1/0xc00 [ 1522.335208][T26698] ? __pfx_folio_mark_accessed+0x10/0x10 [ 1522.335237][T26698] copy_page_to_iter+0x12a/0x1e0 [ 1522.335267][T26698] filemap_read+0x6b1/0xe40 [ 1522.335301][T26698] ? __pfx_filemap_read+0x10/0x10 [ 1522.335342][T26698] ? __pfx_down_read+0x10/0x10 [ 1522.335363][T26698] ? __pfx__kstrtoull+0x10/0x10 [ 1522.335382][T26698] ? __pfx_aa_file_perm+0x10/0x10 [ 1522.335409][T26698] blkdev_read_iter+0x1ac/0x500 [ 1522.335433][T26698] do_iter_readv_writev+0x738/0x950 [ 1522.335456][T26698] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 1522.335480][T26698] ? bpf_lsm_file_permission+0x9/0x10 [ 1522.335506][T26698] ? security_file_permission+0x71/0x210 [ 1522.335529][T26698] ? rw_verify_area+0xcf/0x6c0 [ 1522.335549][T26698] vfs_readv+0x4cb/0x8b0 [ 1522.335573][T26698] ? __pfx_vfs_readv+0x10/0x10 [ 1522.335608][T26698] ? __fget_files+0x20e/0x3c0 [ 1522.335633][T26698] ? do_readv+0x132/0x340 [ 1522.335651][T26698] do_readv+0x132/0x340 [ 1522.335670][T26698] ? __pfx_do_readv+0x10/0x10 [ 1522.335689][T26698] ? ksys_write+0x1ac/0x250 [ 1522.335715][T26698] ? __pfx_ksys_write+0x10/0x10 [ 1522.335739][T26698] __x64_sys_preadv2+0x11f/0x160 [ 1522.335765][T26698] do_syscall_64+0xcd/0x490 [ 1522.335787][T26698] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1522.335805][T26698] RIP: 0033:0x7fa994d8eb69 [ 1522.335821][T26698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1522.335839][T26698] RSP: 002b:00007fa995ca8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000147 [ 1522.335857][T26698] RAX: ffffffffffffffda RBX: 00007fa994fb6080 RCX: 00007fa994d8eb69 [ 1522.335869][T26698] RDX: 0000000000000006 RSI: 0000200000000080 RDI: 0000000000000003 [ 1522.335880][T26698] RBP: 00007fa995ca8090 R08: 0000000000000004 R09: 000000000000002e [ 1522.335890][T26698] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000002 [ 1522.335901][T26698] R13: 0000000000000001 R14: 00007fa994fb6080 R15: 00007ffc9c90dce8 [ 1522.335924][T26698] [ 1522.609635][ C1] vkms_vblank_simulate: vblank timer overrun [ 1523.439391][T26724] ACPI: Can not change Invalid GPE/Fixed Event status [ 1525.974402][T26759] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4190'. [ 1526.422287][T26774] BUG: kernel NULL pointer dereference, address: 0000000000000000 [ 1526.430142][T26774] #PF: supervisor instruction fetch in kernel mode [ 1526.437261][T26774] #PF: error_code(0x0010) - not-present page [ 1526.443453][T26774] PGD 80000000556de067 P4D 80000000556de067 PUD 0 [ 1526.450190][T26774] Oops: Oops: 0010 [#1] SMP KASAN PTI [ 1526.455692][T26774] CPU: 0 UID: 0 PID: 26774 Comm: syz.3.4192 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1526.467453][T26774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1526.477816][T26774] RIP: 0010:0x0 [ 1526.481328][T26774] Code: Unable to access opcode bytes at 0xffffffffffffffd6. [ 1526.489326][T26774] RSP: 0018:ffffc900037c79c8 EFLAGS: 00010287 [ 1526.495649][T26774] RAX: 0000000000001d1d RBX: 0000000000000000 RCX: ffffc90017f8d000 [ 1526.504799][T26774] RDX: 0000000000080000 RSI: ffffea0001009e00 RDI: ffff888067125dc0 [ 1526.513713][T26774] RBP: ffffea0001009e00 R08: 0000000000000007 R09: 0000000000000000 [ 1526.521901][T26774] R10: 0000000000000000 R11: 0000000000000001 R12: 1ffff920006f8f3a [ 1526.530122][T26774] R13: ffff888067125dc0 R14: 0000000000000000 R15: dffffc0000000000 [ 1526.538428][T26774] FS: 00007fa995cc96c0(0000) GS:ffff8881246ce000(0000) knlGS:0000000000000000 [ 1526.547496][T26774] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1526.554296][T26774] CR2: ffffffffffffffd6 CR3: 000000007761a000 CR4: 00000000003526f0 [ 1526.562471][T26774] Call Trace: [ 1526.565956][T26774] [ 1526.568894][T26774] filemap_read_folio+0xc5/0x2a0 [ 1526.573865][T26774] ? __pfx_filemap_read_folio+0x10/0x10 [ 1526.579656][T26774] ? __filemap_get_folio+0x32b/0xc30 [ 1526.584967][T26774] ? down_read+0x13d/0x480 [ 1526.589553][T26774] do_read_cache_folio+0x263/0x5c0 [ 1526.594892][T26774] freader_get_folio+0x337/0x930 [ 1526.600045][T26774] freader_fetch+0xc2/0x5e0 [ 1526.604681][T26774] ? mt_find+0x3ef/0xa30 [ 1526.609304][T26774] __build_id_parse.isra.0+0xec/0x7a0 [ 1526.615173][T26774] ? __pfx___build_id_parse.isra.0+0x10/0x10 [ 1526.621626][T26774] ? __pfx_find_vma+0x10/0x10 [ 1526.626428][T26774] do_procmap_query+0xd96/0x1090 [ 1526.631400][T26774] ? __pfx_do_procmap_query+0x10/0x10 [ 1526.636809][T26774] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1526.642813][T26774] ? do_vfs_ioctl+0x128/0x14f0 [ 1526.647664][T26774] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1526.652856][T26774] ? __fget_files+0x20e/0x3c0 [ 1526.657768][T26774] procfs_procmap_ioctl+0x7d/0xb0 [ 1526.662945][T26774] ? __pfx_procfs_procmap_ioctl+0x10/0x10 [ 1526.668777][T26774] __x64_sys_ioctl+0x18b/0x210 [ 1526.673565][T26774] do_syscall_64+0xcd/0x490 [ 1526.678311][T26774] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1526.684240][T26774] RIP: 0033:0x7fa994d8eb69 [ 1526.688839][T26774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1526.709273][T26774] RSP: 002b:00007fa995cc9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1526.717882][T26774] RAX: ffffffffffffffda RBX: 00007fa994fb5fa0 RCX: 00007fa994d8eb69 [ 1526.725990][T26774] RDX: 0000200000000080 RSI: 00000000c0686611 RDI: 0000000000000009 [ 1526.734067][T26774] RBP: 00007fa994e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1526.742061][T26774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1526.750326][T26774] R13: 0000000000000000 R14: 00007fa994fb5fa0 R15: 00007ffc9c90dce8 [ 1526.758387][T26774] [ 1526.761422][T26774] Modules linked in: [ 1526.765319][T26774] CR2: 0000000000000000 [ 1526.769555][T26774] ---[ end trace 0000000000000000 ]--- [ 1526.775399][T26774] RIP: 0010:0x0 [ 1526.779062][T26774] Code: Unable to access opcode bytes at 0xffffffffffffffd6. [ 1526.786603][T26774] RSP: 0018:ffffc900037c79c8 EFLAGS: 00010287 [ 1526.792902][T26774] RAX: 0000000000001d1d RBX: 0000000000000000 RCX: ffffc90017f8d000 [ 1526.801241][T26774] RDX: 0000000000080000 RSI: ffffea0001009e00 RDI: ffff888067125dc0 [ 1526.809228][T26774] RBP: ffffea0001009e00 R08: 0000000000000007 R09: 0000000000000000 [ 1526.817304][T26774] R10: 0000000000000000 R11: 0000000000000001 R12: 1ffff920006f8f3a [ 1526.825818][T26774] R13: ffff888067125dc0 R14: 0000000000000000 R15: dffffc0000000000 [ 1526.834196][T26774] FS: 00007fa995cc96c0(0000) GS:ffff8881246ce000(0000) knlGS:0000000000000000 [ 1526.843238][T26774] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1526.849859][T26774] CR2: ffffffffffffffd6 CR3: 000000007761a000 CR4: 00000000003526f0 [ 1526.858217][T26774] Kernel panic - not syncing: Fatal exception [ 1526.864712][T26774] Kernel Offset: disabled [ 1526.869054][T26774] Rebooting in 86400 seconds..