last executing test programs: 5m32.651655722s ago: executing program 0 (id=306): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x106) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) r0 = socket(0xa, 0x5, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, r0, 0x8000) setsockopt$auto(r0, 0x10000000084, 0x7d, 0x0, 0x8) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x5, 0x1ff, 0x7fa, 0x22104, 0x9, 0x7, 0x7ff, 0x20010180, 0x4000000f}, 0x198) 5m32.215796032s ago: executing program 0 (id=311): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) mmap$auto(0x0, 0x400008, 0x1000df, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x4, 0x2020009, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000) msync$auto(0x10000000000000, 0xe0, 0x6) write$auto(0xffffffffffffffff, 0x0, 0x4) 5m31.600725776s ago: executing program 0 (id=317): mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x400, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x2b, 0x0) socket(0x2, 0x5, 0x0) setsockopt$auto(0x3, 0x0, 0x21, 0x0, 0x28) 5m31.440212084s ago: executing program 0 (id=318): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 5m31.018249475s ago: executing program 0 (id=323): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) r0 = socket(0x2, 0x1, 0x84) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x2000000000000000) setsockopt$auto(r0, 0x10000000084, 0x19, 0x0, 0x8) 5m30.130712445s ago: executing program 3 (id=328): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = fanotify_init$auto(0x5, 0x0) fanotify_mark$auto(r0, 0x205, 0xa, 0x4, 0x0) r1 = socket(0x10, 0x2, 0x4) write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb) 5m30.076555008s ago: executing program 0 (id=329): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000100)=@link_update={r0, @new_prog_fd=0x4, 0x4, @old_map_fd=r1}, 0xa3) bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0x3, 0x0, 0x3}, 0x4) 5m29.860792732s ago: executing program 32 (id=329): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) bpf$auto(0x0, &(0x7f0000000100)=@link_update={r0, @new_prog_fd=0x4, 0x4, @old_map_fd=r1}, 0xa3) bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0x3, 0x0, 0x3}, 0x4) 5m29.840230661s ago: executing program 3 (id=331): r0 = socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003900), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f00000039c0)={0x0, 0x0, &(0x7f0000003980)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="01032ebd7000fddbdf250a00000008000200ec"], 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0xc4) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000), 0xfc2}, 0x5, 0x0, 0x5}, 0x800}, 0x7, 0x8) 5m29.777676695s ago: executing program 3 (id=332): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x24, 0x0, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@nested={0x7, 0x14, 0x0, 0x1, [@generic="1c551b"]}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00211459a600fbdbdf250200000008000300000000001b0004"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) futex_requeue$auto(&(0x7f0000000040)={0xb, 0x6, 0x2, 0x2000000}, 0x0, 0xf, 0x9) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40400) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 5m29.452940156s ago: executing program 3 (id=340): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 5m28.998453813s ago: executing program 3 (id=336): socket(0x2, 0x3, 0x6) setresuid$auto(0x8, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x106) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) fchown$auto(0x5, 0x8, 0x3) 5m27.544566401s ago: executing program 3 (id=350): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x800) bpf$auto(0x6, &(0x7f00000001c0)=@test={r0, 0x10004, 0x0, 0x1000, 0x106, 0x0, 0x0, 0xfff, 0x10000, 0x9, 0x0, 0x4, 0x7, 0x2, 0xfffeffff}, 0x1) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 5m27.154863653s ago: executing program 33 (id=350): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x800) bpf$auto(0x6, &(0x7f00000001c0)=@test={r0, 0x10004, 0x0, 0x1000, 0x106, 0x0, 0x0, 0xfff, 0x10000, 0x9, 0x0, 0x4, 0x7, 0x2, 0xfffeffff}, 0x1) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3m4.045666567s ago: executing program 5 (id=1286): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x4, 0x0) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) r1 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, 0x0, 0xad80, 0x0) readv$auto(r1, 0x0, 0x3) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0) write$auto(0x3, 0x0, 0xfdef) ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc) 3m3.088107732s ago: executing program 5 (id=1293): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) nanosleep$auto(0x0, 0x0) clock_nanosleep$auto(0x9, 0x0, 0x0, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) 3m2.055833316s ago: executing program 5 (id=1297): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/system/node/node1/hugepages/hugepages-1048576kB/demote\x00', 0x183841, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0xffffffffffffffff, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket(0x11, 0x3, 0x8) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x20, 0xf1, 0xb0, @raw=0x68e8}}) write$auto(r0, 0x0, 0x4) 3m1.925164424s ago: executing program 5 (id=1300): close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x1, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8) 3m0.857574654s ago: executing program 5 (id=1307): mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0xa, 0x0) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x8643, 0x15e) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) rename$auto(&(0x7f0000000480)='./file0\x00', 0x0) 3m0.679175323s ago: executing program 5 (id=1308): r0 = socketcall$auto(0x8000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, r0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) close_range$auto(0x2, 0x8, 0x0) 2m45.566917098s ago: executing program 34 (id=1308): r0 = socketcall$auto(0x8000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, r0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) close_range$auto(0x2, 0x8, 0x0) 5.103836978s ago: executing program 2 (id=2297): unshare$auto(0x40000080) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto_BLKTRACESTART2(r1, 0x1274, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xfff) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) read$auto(r2, &(0x7f0000002300)='MAC802154_HWSIM\x00', 0xfdef) 4.049906383s ago: executing program 1 (id=2307): close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x202002, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r0, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x4}, 0x2000c082) write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef) 3.991995937s ago: executing program 2 (id=2308): mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) io_uring_setup$auto(0x6, 0x0) open(0x0, 0x22240, 0x155) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x28, 0x805, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0xffffffff, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) bind$auto(r0, &(0x7f0000000080)=@in={0x28, 0x0, @rand_addr=0xffffffff}, 0x68) listen$auto(0x3, 0x81) accept$auto(0x3, 0x0, 0x0) 3.826086424s ago: executing program 1 (id=2309): fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x3, 0x6) r0 = socket(0x10, 0x2, 0x0) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xfffff4a4, 0x0, 0xfffffffffffffffd) setsockopt$auto(0x3, 0x1, 0x3c, 0x0, 0x9) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1b000000", @ANYBLOB="1a00279e"], 0x1ac}, 0x1, 0x0, 0x0, 0x20000001}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) 3.800161395s ago: executing program 2 (id=2310): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ram0\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto_tomoyo_operations_securityfs_if(0xffffffffffffffff, 0x0, 0x0) mlockall$auto(0x7) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) 3.754313962s ago: executing program 6 (id=2311): r0 = openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x440, 0x0) read$auto_tracing_cpumask_fops_trace(r0, &(0x7f0000000580)=""/4096, 0x1000) sendmsg$auto_MACSEC_CMD_UPD_OFFLOAD(0xffffffffffffffff, 0x0, 0x40080) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) bpf$auto_BPF_LINK_DETACH(0x22, &(0x7f0000000000)=@link_detach, 0x8) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sg0\x00', 0x82082, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8081, 0x0) close_range$auto(0x2, 0x8, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) arch_prctl$auto_ARCH_MAP_VDSO_32(0x2002, 0x3) 3.035555272s ago: executing program 2 (id=2312): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) unshare$auto(0x40000080) vmsplice$auto(r1, 0x0, 0xffffffffffffffff, 0x7) clone$auto(0x0, 0x3, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) 3.031695763s ago: executing program 1 (id=2313): openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, 0x0, 0x0, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf}) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0) ioctl$auto(r1, 0x540a, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2003f0, 0x15) 2.815769343s ago: executing program 6 (id=2314): mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0xa, 0x1, 0x100) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x5, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="72010000", @ANYBLOB="120039b30bea2462fa9b22cfb3e23046d894d71554dd87accdbd84ddd99ac07df6741ecfc7142cdcbadea61d259cd94d9ccb8a487811adf6e7d9139317e99a42caf5f87d02403a3953259e864e09ed871413f4b290c4274a72d76a6f54ea"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.518432538s ago: executing program 6 (id=2316): openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/nfsd.fh/channel\x00', 0x8f3b7a51b80ebd01, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x4, 0x4000000000e3, 0x40eb1, 0x401, 0x300000000000) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) chmod$auto(&(0x7f0000000140)='./file0\x00', 0x3ff) 1.868306089s ago: executing program 1 (id=2317): r0 = epoll_create$auto(0x2) epoll_pwait2$auto(r0, 0x0, 0x8, &(0x7f0000002780)={0x10000000000, 0x5}, 0x0, 0x8) r1 = epoll_create$auto(0x8) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) syz_clone3(&(0x7f0000000200)={0x40004200, 0x0, 0x0, 0x0, {0x2f}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$auto_SG_GET_COMMAND_Q(r1, 0x2270, &(0x7f0000000240)="ff1c77e3e0c75de3e4b5b406551a5767a5356c9bd9de5c773f2e75e6819101f051269dc09510f21d26b8a47ea44ff3011466be44ee87e992ae7b381f46f7e8880f1e4e52a3aa37892fbbcee374327f019f5d1866ce7ce150a42b0a07517071aa68e5997c2bc1062a9b033ba7bfba2572aaa306a2725c16886e383a0973673e3ea024667ff4d2d10e01fd145039fbc221dcd97c590000000000000000005b0d5646bec3cc3e72e128b447ddfe9f9109d94bbbeeb889959201af3ee76e59ecacbc6cd4db93f60abb9223cbd86cb4ea79e84ec9c9bc05390d61c270dd5ea2a3334fd5db6942929d02c50bc254ecb9989258c9e074a6917a36f0") ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x48e, 0x0, 0x9}]}) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/vxcan1/forwarding\x00', 0x82002, 0x0) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/virt_wifi0/ra_defrtr_metric\x00', 0x0, 0x0) sendfile$auto(r2, r3, 0x0, 0x1) 1.764835151s ago: executing program 4 (id=2318): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x1, 0x0) r0 = io_uring_setup$auto(0x7, 0x0) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x7, 0x0, 0xfb48dd26, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyte\x00', 0xc7f16bff2a10b203, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0) 1.674029883s ago: executing program 6 (id=2319): mmap$auto(0x0, 0x20009, 0x804000000000df, 0xeb1, 0xffffffffffffffff, 0x1000000008000) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) read$auto(r0, &(0x7f00000001c0)='\\\x00', 0x8000) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r0) sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="1254ca199926185e6d0f67a9a89891"], 0x14}, 0x1, 0x0, 0x0, 0x8800}, 0x240008d0) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000af"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x1, 0x9}, 0xfffffff7}, 0x3, 0x4000000) 1.438386163s ago: executing program 4 (id=2320): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2d, 0x2, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x40, 0x10, 0xc}, 0x18) io_uring_setup$auto(0x6, 0x0) socket(0x23, 0x80805, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/mnt\x00') socketpair$auto(0x1, 0x1, 0x0, 0x0) r0 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r0, 0x0, 0xc3) 1.285833418s ago: executing program 4 (id=2321): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000) sendfile$auto(0x1, 0x3, 0x0, 0x7ff) sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c) 1.073238913s ago: executing program 4 (id=2322): swapoff$auto(&(0x7f0000000040)='/sys/ker\x02\x00\x00\x00\xd0n\xbd\b\x00\x00\x00\x00\x00\x00\x00S\n\x00\x00\x00\xcaprin|\x00\x00\x00\x00\x00\x00\xc70\xf7\x9c\xf7;0\xe8K2A]L?0|\xbd\xab~\x82\xd1N\xa8eQ\r\x84m\xd7\xe7\xa2xs\x8a\b\x9e#\xb2M\xff\xd8>\x1e\x84\xcd\\\x0eD\xb7X(\x00\xe1\xd8\xf4\\\xd6\xb3\fR\xc9\vO\x1d\x7f\xd5\xd6\xe8\f\xf8%\xd9\x8d\xfd\x17\xdc2p;\xfb\xd8\xb0\xda\xfc(,(D\xae9k0j\xca\xcc\x9f\xd3\x9aU0\x9f\x06\x01\xe0\x9cG\xab\xc1\xec\xe9\xf9h\xdf4\xd1\xd7\xc0\x8d\n^\xad]\xd4\x98\xb1\xcc|\xfb\b\xda\xa3\x1d\xcd\xa9\xc1\xa6\xdeB\xb4\xa0\xcc\x835\x9d\x95\x84)\xc9\xfc\x85\x87\xf3p\x1aRL\xaa\x97C7\xfdU\x9c\xd75&d9\xe7iy\xab\xdd\xef\x11@cJ\x89\xd9C\x036\x92\xc4nQ\x11\x7f\xd5e~~\x1d\x80\x81G\xa4\xbdH\xbc\x1e\xfbf\xb1>\xd7h\v\xda\xd8k\xa2\xda\xef|\t\x82\xfb\xd02x[\xcd\xb3\xab\xc8mI)m\xa85L\xe5\x1b\xc0\xec8\x1d\xb1E\b\xc8\r\x8d\xeb\x88\xbe\x02W1\xd4\x15Z\x8a\x8c\x8e\x823\x1f\x87k\x12\xf8\x85\xaf\xd6^&\xed\xf6\xc9)\x129;\xdc\xd9\xa2\x92\x93\x87\xd4\xa1\x0e\x068\x00\x807\x9d\xf2;\xbc}\xbcM\x97\x13!mqJ\xa0\x82\\\x8a\xbdV\xba\xc86\x15\xeb\xa7H8\x93') syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x1, 0x0) ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(0xffffffffffffffff, 0x4018bc13, 0x0) write$auto(0xca, &(0x7f00000001c0)='\x04\x13\xac\x04\x00\x00\x00\x00\x00\x00\x00\x01\n\xdc\x10\x00\x00\xef\xab\xe1ME:\xab \x87|\xe0Z\x1b\x9eZ\xa8\xff\x92+\xc9\x9fs\xbf\xd8\f\x00\x00\x00\xa5V\b\xf1Ne\xc6l\xd0\xdd7\x96gf\xb2\xa0\xf2cN\x8b\x95\xeb\xf3(\x9eM-\xdc\x84N\xc3\tts%\xe9\xbf<\xf1\xdav\xe0n\x04\xb33\x97\xd5\xb4\x02\x94B\xbb\x995\x1e\xf7@\xd8\xca\x8d\a0 \xfa\x87V\xeb1\xe4M%\xdd\xfd\xf6\x8d\xb4\xc7\x9b\x9d\xf5\xd9^\xcdL@\x0f\xd4\x15F,\xc1\xd1i\xa4f/{\xfa\xd5\n\xe1\x95l[\x91\xbfX\xea2\x1b\x8a\x85\t\x00\x05m\x1e\x9b\xca\xfb\x81\x9d{\x19S\xff\xe4\xd2k\x1b/wJ&\x03+{\x84R\xa8\x92\xad\xec\x1b\xb1\xe9\xa7XUo\x93\xd5\xfb\x94\xc4\xdf\x8e\xdd\x97\xfc\x00\x13\xd6\x80g\x7fR;\x88\xf7bm\x8f\xb5\x89\x1a\xb63\x98\xaa\xcc\xbf\x94\xbf#u\xb9', 0x2b) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vlan1\x00'}) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000840)="13") swapoff$auto(&(0x7f00000001c0)='/sys/ker\x02\x00\x00\x00\xd0n\xbd\b\x00\x00\x00\x00\x00\x00\x00S\n\x00\x00\x00\xcaprin|\x00\x00\x00\x00\x00\x00\xc70\xf7\x9c\xf7;0\xe8K2A]L?0|\xbd\xab~\x82\xd1N\xa8eQ\r\x84m\xd7\xe7\xa2xs\x8a\b\x9e#\xb2M\xff\xd8>\x1e\x84\xcd\\\x0eD\xb7X(\x00\xe1\xd8\xf4\\\xd6\xb3\fR\xc9\vO\x1d\x7f\xd5\xd6\xe8\f\xf8%\xd9\x8d\xfd\x17\xdc2p;\xfb\xd8\xb0\xda\xfc(,(D\xae9k0j\xca\xcc\x9f\xd3\x9aU0\x9f\x06\x01\xe0\x9cG\xab\xc1\xec\xe9\xf9h\xdf4\xd1\xd7\xc0\x8d\n^\xad]\xd4\x98\xb1\xcc|\xfb\b\xda\xa3\x1d\xcd\xa9\xc1\xa6\xdeB\xb4\xa0\xcc\x835\x9d\x95\x84)\xc9\xfc\x85\x87\xf3p\x1aRL\xaa\x97C7\xfdU\x9c\xd75&d9\xe7iy\xab\xdd\xef\x11@cJ\x89\xd9C\x036\x92\xc4nQ\x11\x7f\xd5e~~\x1d\x80\x81G\xa4\xbdH\xbc\x1e\xfbf\xb1>\xd7h\v\xda\xd8k\xa2\xda\xef|\t\x82\xfb\xd02x[\xcd\xb3\xab\xc8mI)m\xa85L\xe5\x1b\xc0\xec8\x1d\xb1E\b\xc8\r\x8d\xeb\x88\xbe\x02W1\xd4\x15Z\x8a\x8c\x8e\x823\x1f\x87k\x12\xf8\x85\xaf\xd6^&\xed\xf6\xc9)\x129;\xdc\xd9\xa2\x92\x93\x87\xd4\xa1\x0e\x068\x00\x807\x9d\xf2;\xbc}\xbcM\x97\x13!mqJ\xa0\x82\\\x8a\xbdV\xba\xc86\x15\xeb\xa7H8\x93') 1.012543431s ago: executing program 6 (id=2323): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x3}, 0x3) accept$auto(r1, 0x0, 0x0) connect$auto(0x3, 0x0, 0x54) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, 0x0, 0x24008010) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7114}, 0x8) 583.224972ms ago: executing program 1 (id=2324): r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x288202, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) 574.21071ms ago: executing program 4 (id=2326): openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dri/card0\x00', 0x440, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) socket(0x11, 0x80003, 0x300) socket(0x10, 0x2, 0x4) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) timer_create$auto(0x3, 0x0, 0x0) openat$auto_proc_timers_operations_base(0xffffffffffffff9c, &(0x7f0000000040), 0x1a3540, 0x0) 488.586726ms ago: executing program 2 (id=2327): socket(0xa, 0x3, 0x87) mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x0) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000240)={{&(0x7f0000000100)="c9a19b9bd45daf8d1e42325618d266e9b4d29346a538f4501870f63224261ea46d2048306cb48caaa96d8e74944fe4311b40ed00640d041ca43967b3a4f18b86c38c26c9df10a988d1f2c1c69262f1908a4880ba65a9fca956c49dc5990384089f8c005c64f32d9bbba6f289964068a8ced940397118c0aa87e26591cfeead8827333219be3c55", 0x10000, 0x0, 0x2, 0x0, 0x3, 0xfffff2cf}, 0x6}, 0x2319, 0x5) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "00800000ffefffffff0200000001"}, 0x55) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 209.521487ms ago: executing program 2 (id=2328): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x3, 0x100000000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) mremap$auto(0x0, 0xbfffffffffffffff, 0x401, 0x0, 0x7fffffffb000) bind$auto(0xffffffffffffffff, &(0x7f0000000200)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x10}, 0xfff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) read$auto(0x3, 0x0, 0x7) 209.407852ms ago: executing program 6 (id=2329): openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cpu/0/msr\x00', 0x400, 0x0) write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x1f42) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f00000000c0)={0x0, 0x7}, 0x3) shmctl$auto(0x7ff, 0x7270, 0x0) msgctl$auto_IPC_SET(0xfffffffc, 0x1, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x1001, 0x0) 208.056132ms ago: executing program 4 (id=2336): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker_raw\x00', 0xc05, 0x0) write$auto_tracing_mark_raw_fops_trace(r0, &(0x7f0000000080)="717424d0", 0x4) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) write$auto_tracing_mark_raw_fops_trace(r0, &(0x7f0000000040)="8b5c05724aef20d30e09f8e9912172776f587bbc8ad3068e036ccaa4dc5644", 0x1f) unshare$auto(0x40000080) 0s ago: executing program 1 (id=2330): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) mmap$auto(0x0, 0x8, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) shutdown$auto(0x200000003, 0x2) kernel console output (not intermixed with test programs):                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                       [ 419.420871][ T49] ERROR: Out of memory at tomoyo_memory_ok. [ 419.442310][ T3030] ERROR: Out of memory at tomoyo_memory_ok. [ 419.460166][T13012] netlink: 338 bytes leftover after parsing attributes in process `syz.6.2096'. [ 419.497589][T13012] netlink: 338 bytes leftover after parsing attributes in process `syz.6.2096'. [ 419.521659][T13012] netlink: 250 bytes leftover after parsing attributes in process `syz.6.2096'. syzkaller syzkaller login: [ 420.242057][T13010] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 420.255190][T13010] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 420.269395][T13010] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 420.283411][T13010] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 420.290981][T13010] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 420.315614][T13010] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 420.334912][T13010] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 420.340991][T13010] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 420.343031][T13031] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2103'. [ 420.369950][T13010] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 420.380377][T13010] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 420.388380][T13010] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 421.142926][T13059] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 421.178828][T13061] FAULT_INJECTION: forcing a failure. [ 421.178828][T13061] name failslab, interval 1, probability 0, space 0, times 0 [ 421.250167][T13061] CPU: 1 UID: 0 PID: 13061 Comm: syz.2.2113 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 421.250197][T13061] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 421.250203][T13061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 421.250211][T13061] Call Trace: [ 421.250217][T13061] [ 421.250223][T13061] dump_stack_lvl+0x16c/0x1f0 [ 421.250243][T13061] should_fail_ex+0x512/0x640 [ 421.250261][T13061] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 421.250279][T13061] should_failslab+0xc2/0x120 [ 421.250297][T13061] __kmalloc_cache_noprof+0x6a/0x3e0 [ 421.250312][T13061] ? ptp_open+0xe4/0x550 [ 421.250333][T13061] ptp_open+0xe4/0x550 [ 421.250354][T13061] ? __pfx_ptp_open+0x10/0x10 [ 421.250377][T13061] ? __pfx_ptp_open+0x10/0x10 [ 421.250395][T13061] posix_clock_open+0x178/0x290 [ 421.250413][T13061] ? __pfx_posix_clock_open+0x10/0x10 [ 421.250428][T13061] chrdev_open+0x234/0x6a0 [ 421.250445][T13061] ? __pfx_apparmor_file_open+0x10/0x10 [ 421.250467][T13061] ? __pfx_chrdev_open+0x10/0x10 [ 421.250485][T13061] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 421.250504][T13061] do_dentry_open+0x982/0x1530 [ 421.250522][T13061] ? __pfx_chrdev_open+0x10/0x10 [ 421.250543][T13061] vfs_open+0x82/0x3f0 [ 421.250564][T13061] path_openat+0x1de4/0x2cb0 [ 421.250586][T13061] ? __pfx_path_openat+0x10/0x10 [ 421.250606][T13061] do_filp_open+0x20b/0x470 [ 421.250628][T13061] ? __pfx_do_filp_open+0x10/0x10 [ 421.250658][T13061] ? alloc_fd+0x471/0x7d0 [ 421.250687][T13061] do_sys_openat2+0x11b/0x1d0 [ 421.250707][T13061] ? __pfx_do_sys_openat2+0x10/0x10 [ 421.250735][T13061] __x64_sys_openat+0x174/0x210 [ 421.250757][T13061] ? __pfx___x64_sys_openat+0x10/0x10 [ 421.250785][T13061] do_syscall_64+0xcd/0x490 [ 421.250802][T13061] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 421.250816][T13061] RIP: 0033:0x7f47d318eb69 [ 421.250828][T13061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 421.250841][T13061] RSP: 002b:00007f47d4052038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 421.250854][T13061] RAX: ffffffffffffffda RBX: 00007f47d33b6080 RCX: 00007f47d318eb69 [ 421.250864][T13061] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 421.250873][T13061] RBP: 00007f47d3211df1 R08: 0000000000000000 R09: 0000000000000000 [ 421.250882][T13061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 421.250890][T13061] R13: 0000000000000000 R14: 00007f47d33b6080 R15: 00007ffee4b381c8 [ 421.250908][T13061] [ 421.578657][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 421.908880][T13065] netlink: 186 bytes leftover after parsing attributes in process `syz.4.2116'. [ 422.285514][ T51] Bluetooth: hci3: command 0x0406 tx timeout [ 422.364788][ T51] Bluetooth: hci0: command 0x0406 tx timeout [ 422.454361][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 422.502948][T13087] sp0: Synchronizing with TNC [ 422.737072][T13091] sp0: Synchronizing with TNC [ 422.927791][T13098] netlink: 354 bytes leftover after parsing attributes in process `syz.4.2126'. [ 423.130803][T13104] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 423.443287][T13111] FAULT_INJECTION: forcing a failure. [ 423.443287][T13111] name failslab, interval 1, probability 0, space 0, times 0 [ 423.509873][T13111] CPU: 1 UID: 0 PID: 13111 Comm: syz.4.2133 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 423.509923][T13111] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 423.509933][T13111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 423.509949][T13111] Call Trace: [ 423.509959][T13111] [ 423.509969][T13111] dump_stack_lvl+0x16c/0x1f0 [ 423.510003][T13111] should_fail_ex+0x512/0x640 [ 423.510033][T13111] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 423.510070][T13111] should_failslab+0xc2/0x120 [ 423.510100][T13111] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 423.510127][T13111] ? __d_alloc+0x32/0xae0 [ 423.510160][T13111] __d_alloc+0x32/0xae0 [ 423.510194][T13111] d_alloc_parallel+0x111/0x1480 [ 423.510238][T13111] ? kasan_save_stack+0x42/0x60 [ 423.510264][T13111] ? kasan_save_stack+0x33/0x60 [ 423.510288][T13111] ? kasan_save_track+0x14/0x30 [ 423.510313][T13111] ? __kasan_kmalloc+0xaa/0xb0 [ 423.510337][T13111] ? __kmalloc_node_track_caller_noprof+0x221/0x510 [ 423.510367][T13111] ? kstrdup+0x53/0x100 [ 423.510394][T13111] ? __pfx_d_alloc_parallel+0x10/0x10 [ 423.510433][T13111] ? lockdep_init_map_type+0x5c/0x280 [ 423.510475][T13111] ? lockdep_init_map_type+0x5c/0x280 [ 423.510516][T13111] __lookup_slow+0x193/0x460 [ 423.510551][T13111] ? __pfx___lookup_slow+0x10/0x10 [ 423.510587][T13111] ? perf_trace_mm_compaction_suitable_template+0x1d0/0x5e0 [ 423.510631][T13111] ? perf_trace_mm_compaction_suitable_template+0x1d0/0x5e0 [ 423.510667][T13111] ? d_lookup+0xe7/0x190 [ 423.510707][T13111] lookup_noperm+0xe1/0x110 [ 423.510742][T13111] simple_start_creating+0xd1/0x1b0 [ 423.510772][T13111] start_creating.part.0+0x82/0x190 [ 423.510798][T13111] debugfs_create_symlink+0x81/0x320 [ 423.510825][T13111] ref_tracker_dir_symlink+0x255/0x360 [ 423.510861][T13111] ? __pfx_ref_tracker_dir_symlink+0x10/0x10 [ 423.510947][T13111] net_ns_net_init+0x19a/0x220 [ 423.510976][T13111] ? __pfx_net_ns_net_init+0x10/0x10 [ 423.511000][T13111] ops_init+0x1df/0x5f0 [ 423.511029][T13111] setup_net+0x10f/0x380 [ 423.511053][T13111] ? lockdep_init_map_type+0x5c/0x280 [ 423.511086][T13111] ? __pfx_setup_net+0x10/0x10 [ 423.511115][T13111] ? debug_mutex_init+0x37/0x70 [ 423.511144][T13111] copy_net_ns+0x2a6/0x5f0 [ 423.511177][T13111] create_new_namespaces+0x3ea/0xa90 [ 423.511214][T13111] copy_namespaces+0x468/0x560 [ 423.511244][T13111] copy_process+0x2822/0x7690 [ 423.511291][T13111] ? __pfx_copy_process+0x10/0x10 [ 423.511321][T13111] ? futex_private_hash_put+0x176/0x300 [ 423.511355][T13111] ? futex_private_hash_put+0x18a/0x300 [ 423.511391][T13111] kernel_clone+0xfc/0x930 [ 423.511424][T13111] ? __pfx_kernel_clone+0x10/0x10 [ 423.511482][T13111] __do_sys_clone+0xce/0x120 [ 423.511516][T13111] ? __pfx___do_sys_clone+0x10/0x10 [ 423.511568][T13111] ? __pfx_do_writev+0x10/0x10 [ 423.511609][T13111] do_syscall_64+0xcd/0x490 [ 423.511640][T13111] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 423.511666][T13111] RIP: 0033:0x7f48ddb8eb69 [ 423.511689][T13111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 423.511714][T13111] RSP: 002b:00007f48db9f5fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 423.511739][T13111] RAX: ffffffffffffffda RBX: 00007f48dddb5fa0 RCX: 00007f48ddb8eb69 [ 423.511757][T13111] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000042ae1411 [ 423.511773][T13111] RBP: 00007f48ddc11df1 R08: 0000000000000000 R09: 0000000000000000 [ 423.511789][T13111] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 423.511805][T13111] R13: 0000000000000000 R14: 00007f48dddb5fa0 R15: 00007ffc1c4eafd8 [ 423.511837][T13111] [ 423.541347][T13119] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2137'. [ 423.712732][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 423.835422][T13123] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2137'. [ 423.860213][T13119] IPv6: NLM_F_CREATE should be specified when creating new route [ 423.941218][T13119] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 423.949373][T13119] IPv6: NLM_F_CREATE should be set when creating new route [ 423.956725][T13119] IPv6: NLM_F_CREATE should be set when creating new route [ 424.360022][ T51] Bluetooth: hci3: command 0x0406 tx timeout [ 424.440292][ T51] Bluetooth: hci0: command 0x0406 tx timeout [ 424.516016][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 425.868489][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 426.214135][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805ff86c00: rx timeout, send abort [ 426.222945][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805ff84800: rx timeout, send abort [ 426.232564][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805ff86c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 426.247458][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805ff84800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 426.267021][ T5217] ERROR: Out of memory at tomoyo_memory_ok. [ 426.363330][T13170] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2151'. [ 426.397146][T13170] : renamed from bond_slave_1 (while UP) [ 426.425702][ T51] Bluetooth: hci3: command 0x0406 tx timeout [ 426.505887][ T51] Bluetooth: hci0: command 0x0406 tx timeout [ 426.569669][T13182] netlink: 306 bytes leftover after parsing attributes in process `syz.4.2156'. [ 426.609787][T13182] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2156'. [ 426.641077][T13182] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2156'. [ 426.774749][T13188] netlink: 'syz.4.2160': attribute type 4 has an invalid length. [ 426.783753][T13188] netlink: 314 bytes leftover after parsing attributes in process `syz.4.2160'. [ 427.538645][T13215] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2168'. [ 427.802595][T13226] FAULT_INJECTION: forcing a failure. [ 427.802595][T13226] name failslab, interval 1, probability 0, space 0, times 0 [ 427.820415][T13226] CPU: 0 UID: 0 PID: 13226 Comm: syz.2.2172 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 427.820463][T13226] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 427.820475][T13226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 427.820490][T13226] Call Trace: [ 427.820499][T13226] [ 427.820510][T13226] dump_stack_lvl+0x16c/0x1f0 [ 427.820544][T13226] should_fail_ex+0x512/0x640 [ 427.820578][T13226] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 427.820618][T13226] should_failslab+0xc2/0x120 [ 427.820652][T13226] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 427.820681][T13226] ? can_rx_register+0x582/0x6f0 [ 427.820722][T13226] can_rx_register+0x582/0x6f0 [ 427.820755][T13226] ? __pfx_raw_rcv+0x10/0x10 [ 427.820782][T13226] ? __pfx_can_rx_register+0x10/0x10 [ 427.820833][T13226] raw_enable_filters+0xe0/0x210 [ 427.820866][T13226] raw_enable_allfilters+0x8b/0x2b0 [ 427.820891][T13226] ? __local_bh_enable_ip+0xa4/0x120 [ 427.820926][T13226] raw_bind+0x48a/0xe50 [ 427.820948][T13226] ? apparmor_socket_bind+0x105/0x200 [ 427.820999][T13226] __sys_bind+0x1a4/0x260 [ 427.821038][T13226] ? __pfx___sys_bind+0x10/0x10 [ 427.821087][T13226] ? xfd_validate_state+0x61/0x180 [ 427.821121][T13226] ? __sys_setsockopt+0x140/0x1a0 [ 427.821153][T13226] __x64_sys_bind+0x72/0xb0 [ 427.821185][T13226] ? lockdep_hardirqs_on+0x7c/0x110 [ 427.821209][T13226] do_syscall_64+0xcd/0x490 [ 427.821236][T13226] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 427.821261][T13226] RIP: 0033:0x7f47d318eb69 [ 427.821281][T13226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 427.821306][T13226] RSP: 002b:00007f47d4073038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 427.821330][T13226] RAX: ffffffffffffffda RBX: 00007f47d33b5fa0 RCX: 00007f47d318eb69 [ 427.821347][T13226] RDX: 000000000000006a RSI: 0000200000000040 RDI: 0000000000000003 [ 427.821362][T13226] RBP: 00007f47d3211df1 R08: 0000000000000000 R09: 0000000000000000 [ 427.821377][T13226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 427.821392][T13226] R13: 0000000000000000 R14: 00007f47d33b5fa0 R15: 00007ffee4b381c8 [ 427.821422][T13226] [ 428.156439][T13233] FAULT_INJECTION: forcing a failure. [ 428.156439][T13233] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 428.188992][T13233] CPU: 0 UID: 0 PID: 13233 Comm: syz.2.2176 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 428.189043][T13233] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 428.189055][T13233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 428.189070][T13233] Call Trace: [ 428.189079][T13233] [ 428.189091][T13233] dump_stack_lvl+0x16c/0x1f0 [ 428.189125][T13233] should_fail_ex+0x512/0x640 [ 428.189171][T13233] should_fail_alloc_page+0xe7/0x130 [ 428.189208][T13233] prepare_alloc_pages+0x3c2/0x610 [ 428.189250][T13233] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 428.189281][T13233] ? do_sys_poll+0x24a/0xdf0 [ 428.189307][T13233] ? stack_trace_save+0x8e/0xc0 [ 428.189335][T13233] ? __pfx_stack_trace_save+0x10/0x10 [ 428.189363][T13233] ? stack_depot_save_flags+0x29/0x9c0 [ 428.189398][T13233] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 428.189427][T13233] ? do_sys_poll+0x24a/0xdf0 [ 428.189450][T13233] ? kasan_save_stack+0x33/0x60 [ 428.189477][T13233] ? __kasan_kmalloc+0xaa/0xb0 [ 428.189502][T13233] ? __kmalloc_noprof+0x223/0x510 [ 428.189528][T13233] ? do_sys_poll+0x24a/0xdf0 [ 428.189551][T13233] ? __x64_sys_poll+0x1a6/0x450 [ 428.189577][T13233] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 428.189609][T13233] ? __lock_acquire+0xb97/0x1ce0 [ 428.189645][T13233] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 428.189683][T13233] ? policy_nodemask+0xea/0x4e0 [ 428.189717][T13233] alloc_pages_mpol+0x1fb/0x550 [ 428.189751][T13233] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 428.189792][T13233] alloc_pages_noprof+0x131/0x390 [ 428.189825][T13233] get_free_pages_noprof+0x10/0xb0 [ 428.189858][T13233] __pollwait+0x295/0x490 [ 428.189887][T13233] pipe_poll+0x239/0x660 [ 428.189918][T13233] ? __pfx___pollwait+0x10/0x10 [ 428.189944][T13233] ? __pfx_pipe_poll+0x10/0x10 [ 428.189967][T13233] do_sys_poll+0x559/0xdf0 [ 428.190005][T13233] ? __pfx_do_sys_poll+0x10/0x10 [ 428.190032][T13233] ? __pfx___schedule+0x10/0x10 [ 428.190084][T13233] ? __futex_wait+0x24c/0x2f0 [ 428.190112][T13233] ? __pfx___pollwait+0x10/0x10 [ 428.190134][T13233] ? __pfx_pollwake+0x10/0x10 [ 428.190164][T13233] ? __pfx_pollwake+0x10/0x10 [ 428.190187][T13233] ? __pfx_pollwake+0x10/0x10 [ 428.190210][T13233] ? __pfx_pollwake+0x10/0x10 [ 428.190233][T13233] ? __pfx_pollwake+0x10/0x10 [ 428.190255][T13233] ? __pfx_pollwake+0x10/0x10 [ 428.190278][T13233] ? __pfx_pollwake+0x10/0x10 [ 428.190300][T13233] ? __pfx_pollwake+0x10/0x10 [ 428.190323][T13233] ? __pfx_pollwake+0x10/0x10 [ 428.190344][T13233] ? __pfx_timespec64_add_safe+0x10/0x10 [ 428.190374][T13233] ? ktime_get_ts64+0x2d2/0x400 [ 428.190398][T13233] ? read_tsc+0x9/0x20 [ 428.190420][T13233] ? ktime_get_ts64+0x256/0x400 [ 428.190450][T13233] __x64_sys_poll+0x1a6/0x450 [ 428.190471][T13233] ? __pfx___x64_sys_poll+0x10/0x10 [ 428.190499][T13233] do_syscall_64+0xcd/0x490 [ 428.190521][T13233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 428.190542][T13233] RIP: 0033:0x7f47d318eb69 [ 428.190559][T13233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 428.190582][T13233] RSP: 002b:00007f47d4073038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 428.190602][T13233] RAX: ffffffffffffffda RBX: 00007f47d33b5fa0 RCX: 00007f47d318eb69 [ 428.190615][T13233] RDX: 000000000000800a RSI: 000000000000007f RDI: 0000200000000180 [ 428.190627][T13233] RBP: 00007f47d3211df1 R08: 0000000000000000 R09: 0000000000000000 [ 428.190641][T13233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 428.190654][T13233] R13: 0000000000000000 R14: 00007f47d33b5fa0 R15: 00007ffee4b381c8 [ 428.190680][T13233] [ 428.835887][T13242] FAULT_INJECTION: forcing a failure. [ 428.835887][T13242] name failslab, interval 1, probability 0, space 0, times 0 [ 428.936171][T13242] CPU: 1 UID: 0 PID: 13242 Comm: syz.1.2179 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 428.936221][T13242] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 428.936232][T13242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 428.936248][T13242] Call Trace: [ 428.936258][T13242] [ 428.936268][T13242] dump_stack_lvl+0x16c/0x1f0 [ 428.936302][T13242] should_fail_ex+0x512/0x640 [ 428.936334][T13242] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 428.936371][T13242] should_failslab+0xc2/0x120 [ 428.936403][T13242] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 428.936432][T13242] ? __proc_create+0xc3/0x8e0 [ 428.936465][T13242] ? __proc_create+0x2ce/0x8e0 [ 428.936503][T13242] __proc_create+0x2ce/0x8e0 [ 428.936538][T13242] ? __pfx___proc_create+0x10/0x10 [ 428.936578][T13242] ? _raw_write_unlock+0x28/0x50 [ 428.936602][T13242] ? proc_register+0x314/0x5f0 [ 428.936639][T13242] proc_create_reg+0x7d/0x180 [ 428.936678][T13242] proc_create_data+0x86/0x110 [ 428.936714][T13242] ? __pfx_proc_create_data+0x10/0x10 [ 428.936752][T13242] ? cache_register_net+0x137/0x5e0 [ 428.936782][T13242] cache_register_net+0x25a/0x5e0 [ 428.936811][T13242] nfsd_export_init+0xb6/0x250 [ 428.936847][T13242] ? __pfx_nfsd_net_init+0x10/0x10 [ 428.936872][T13242] nfsd_net_init+0x33/0x3d0 [ 428.936900][T13242] ? __pfx_nfsd_net_init+0x10/0x10 [ 428.936925][T13242] ops_init+0x1df/0x5f0 [ 428.936958][T13242] setup_net+0x10f/0x380 [ 428.936982][T13242] ? lockdep_init_map_type+0x5c/0x280 [ 428.937018][T13242] ? __pfx_setup_net+0x10/0x10 [ 428.937047][T13242] ? debug_mutex_init+0x37/0x70 [ 428.937076][T13242] copy_net_ns+0x2a6/0x5f0 [ 428.937109][T13242] create_new_namespaces+0x3ea/0xa90 [ 428.937151][T13242] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 428.937184][T13242] ksys_unshare+0x45b/0xa40 [ 428.937220][T13242] ? __pfx_ksys_unshare+0x10/0x10 [ 428.937254][T13242] ? xfd_validate_state+0x61/0x180 [ 428.937300][T13242] __x64_sys_unshare+0x31/0x40 [ 428.937332][T13242] do_syscall_64+0xcd/0x490 [ 428.937362][T13242] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 428.937388][T13242] RIP: 0033:0x7f0debb8eb69 [ 428.937410][T13242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 428.937436][T13242] RSP: 002b:00007f0dec972038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 428.937462][T13242] RAX: ffffffffffffffda RBX: 00007f0debdb5fa0 RCX: 00007f0debb8eb69 [ 428.937480][T13242] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 428.937496][T13242] RBP: 00007f0debc11df1 R08: 0000000000000000 R09: 0000000000000000 [ 428.937513][T13242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 428.937528][T13242] R13: 0000000000000000 R14: 00007f0debdb5fa0 R15: 00007ffe319113b8 [ 428.937562][T13242] [ 430.412298][T13254] zswap: compressor 000 not available [ 430.426469][T13263] netlink: 'syz.6.2185': attribute type 29 has an invalid length. [ 430.788044][T13275] FAULT_INJECTION: forcing a failure. [ 430.788044][T13275] name failslab, interval 1, probability 0, space 0, times 0 [ 430.889123][T13275] CPU: 1 UID: 0 PID: 13275 Comm: syz.2.2190 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 430.889170][T13275] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 430.889182][T13275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 430.889197][T13275] Call Trace: [ 430.889206][T13275] [ 430.889217][T13275] dump_stack_lvl+0x16c/0x1f0 [ 430.889249][T13275] should_fail_ex+0x512/0x640 [ 430.889279][T13275] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 430.889318][T13275] should_failslab+0xc2/0x120 [ 430.889352][T13275] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 430.889386][T13275] ? debugfs_create_symlink+0x29/0x320 [ 430.889418][T13275] kstrdup+0x53/0x100 [ 430.889449][T13275] debugfs_create_symlink+0x29/0x320 [ 430.889478][T13275] ref_tracker_dir_symlink+0x255/0x360 [ 430.889512][T13275] ? __pfx_ref_tracker_dir_symlink+0x10/0x10 [ 430.889596][T13275] net_ns_net_init+0x140/0x220 [ 430.889635][T13275] ? __pfx_net_ns_net_init+0x10/0x10 [ 430.889663][T13275] ops_init+0x1df/0x5f0 [ 430.889695][T13275] setup_net+0x10f/0x380 [ 430.889720][T13275] ? lockdep_init_map_type+0x5c/0x280 [ 430.889754][T13275] ? __pfx_setup_net+0x10/0x10 [ 430.889785][T13275] ? debug_mutex_init+0x37/0x70 [ 430.889815][T13275] copy_net_ns+0x2a6/0x5f0 [ 430.889849][T13275] create_new_namespaces+0x3ea/0xa90 [ 430.889887][T13275] copy_namespaces+0x468/0x560 [ 430.889917][T13275] copy_process+0x2822/0x7690 [ 430.889964][T13275] ? __pfx_copy_process+0x10/0x10 [ 430.889993][T13275] ? futex_private_hash_put+0x176/0x300 [ 430.890028][T13275] ? futex_private_hash_put+0x18a/0x300 [ 430.890064][T13275] kernel_clone+0xfc/0x930 [ 430.890097][T13275] ? __pfx_kernel_clone+0x10/0x10 [ 430.890153][T13275] __do_sys_clone+0xce/0x120 [ 430.890185][T13275] ? __pfx___do_sys_clone+0x10/0x10 [ 430.890235][T13275] ? xfd_validate_state+0x61/0x180 [ 430.890267][T13275] ? __pfx_do_writev+0x10/0x10 [ 430.890305][T13275] do_syscall_64+0xcd/0x490 [ 430.890335][T13275] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.890360][T13275] RIP: 0033:0x7f47d318eb69 [ 430.890382][T13275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 430.890407][T13275] RSP: 002b:00007f47d4072fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 430.890433][T13275] RAX: ffffffffffffffda RBX: 00007f47d33b5fa0 RCX: 00007f47d318eb69 [ 430.890451][T13275] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000042ae1411 [ 430.890469][T13275] RBP: 00007f47d3211df1 R08: 0000000000000000 R09: 0000000000000000 [ 430.890486][T13275] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 430.890503][T13275] R13: 0000000000000000 R14: 00007f47d33b5fa0 R15: 00007ffee4b381c8 [ 430.890539][T13275] [ 431.826115][T13293] vivid-003: ================= START STATUS ================= [ 431.936645][T13293] vivid-003: Radio HW Seek Mode: Bounded [ 432.019910][T13293] vivid-003: Radio Programmable HW Seek: false [ 432.027177][T13293] vivid-003: RDS Rx I/O Mode: Block I/O [ 432.033435][T13293] vivid-003: Generate RBDS Instead of RDS: false [ 432.041236][T13293] vivid-003: RDS Reception: true [ 432.047062][T13293] vivid-003: RDS Program Type: 0 inactive [ 432.054650][T13293] vivid-003: RDS PS Name: inactive [ 432.062286][T13293] vivid-003: RDS Radio Text: inactive [ 432.068641][T13293] vivid-003: RDS Traffic Announcement: false inactive [ 432.077574][T13293] vivid-003: RDS Traffic Program: false inactive [ 432.085972][T13293] vivid-003: RDS Music: false inactive [ 432.114418][T13293] vivid-003: ================== END STATUS ================== [ 432.452787][T13299] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 432.499971][T13302] __vm_enough_memory: pid: 13302, comm: syz.6.2198, bytes: 4398046511104 not enough memory for the allocation [ 432.663480][T13306] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2201'. [ 432.709589][T13306] netlink: 'syz.4.2201': attribute type 1 has an invalid length. [ 432.717952][T13306] netlink: 'syz.4.2201': attribute type 2 has an invalid length. [ 432.734159][T13306] netlink: 'syz.4.2201': attribute type 7 has an invalid length. [ 432.751555][T13306] netlink: 214 bytes leftover after parsing attributes in process `syz.4.2201'. [ 433.012486][T13312] tipc: Started in network mode [ 433.045236][T13312] tipc: Node identity ee00, cluster identity 4711 [ 433.051806][T13312] tipc: Node number set to 60928 [ 433.093108][T13311] delete_channel: no stack [ 433.112759][T13317] ERROR: Out of memory at tomoyo_memory_ok. [ 433.202464][T13320] __vm_enough_memory: pid: 13320, comm: syz.6.2206, bytes: 4398046511104 not enough memory for the allocation [ 433.499228][T13330] vivid-003: ================= START STATUS ================= [ 433.517557][T13330] vivid-003: Radio HW Seek Mode: Bounded [ 433.527659][T13330] vivid-003: Radio Programmable HW Seek: false [ 433.537768][T13330] vivid-003: RDS Rx I/O Mode: Block I/O [ 433.552124][T13330] vivid-003: Generate RBDS Instead of RDS: false [ 433.558780][T13330] vivid-003: RDS Reception: true [ 433.583951][T13330] vivid-003: RDS Program Type: 0 inactive [ 433.600524][T13330] vivid-003: RDS PS Name: inactive [ 433.609781][T13330] vivid-003: RDS Radio Text: inactive [ 433.627580][T13330] vivid-003: RDS Traffic Announcement: false inactive [ 433.665740][T13330] vivid-003: RDS Traffic Program: false inactive [ 433.687121][T13330] vivid-003: RDS Music: false inactive [ 433.687413][T13333] netlink: 18 bytes leftover after parsing attributes in process `syz.4.2209'. [ 433.707377][T13330] vivid-003: ================== END STATUS ================== [ 433.951470][T13341] netlink: 17 bytes leftover after parsing attributes in process `syz.1.2213'. [ 433.960826][T13341] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2213'. [ 434.514154][T13360] lo: entered allmulticast mode [ 434.602285][T13363] lo: left allmulticast mode [ 435.272846][T13380] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11 [ 435.691647][ T5220] ERROR: Out of memory at tomoyo_memory_ok. [ 436.029510][T13381] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 436.601752][T13395] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 438.317486][T13442] netlink: 252 bytes leftover after parsing attributes in process `syz.6.2243'. [ 438.724453][ T3030] ERROR: Out of memory at tomoyo_memory_ok. [ 438.750276][ T12] ERROR: Out of memory at tomoyo_memory_ok. [ 440.077062][T13480] __vm_enough_memory: pid: 13480, comm: syz.4.2251, bytes: 4398046511104 not enough memory for the allocation [ 440.141809][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.148992][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.838258][T13453] Bluetooth: hci2: Opcode 0x0c1a failed: -110 [ 440.845140][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 440.880722][T13488] FAULT_INJECTION: forcing a failure. [ 440.880722][T13488] name failslab, interval 1, probability 0, space 0, times 0 [ 440.922942][T13488] CPU: 1 UID: 0 PID: 13488 Comm: syz.4.2262 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 440.922994][T13488] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 440.923005][T13488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 440.923020][T13488] Call Trace: [ 440.923030][T13488] [ 440.923041][T13488] dump_stack_lvl+0x16c/0x1f0 [ 440.923076][T13488] should_fail_ex+0x512/0x640 [ 440.923105][T13488] ? __kmalloc_noprof+0xbf/0x510 [ 440.923139][T13488] ? cache_create_net+0x9d/0x220 [ 440.923172][T13488] should_failslab+0xc2/0x120 [ 440.923203][T13488] __kmalloc_noprof+0xd2/0x510 [ 440.923238][T13488] cache_create_net+0x9d/0x220 [ 440.923274][T13488] ? __pfx_nfsd_net_init+0x10/0x10 [ 440.923300][T13488] nfsd_export_init+0x62/0x250 [ 440.923326][T13488] ? __pfx_nfsd_net_init+0x10/0x10 [ 440.923349][T13488] nfsd_net_init+0x33/0x3d0 [ 440.923375][T13488] ? __pfx_nfsd_net_init+0x10/0x10 [ 440.923400][T13488] ops_init+0x1df/0x5f0 [ 440.923431][T13488] setup_net+0x10f/0x380 [ 440.923456][T13488] ? lockdep_init_map_type+0x5c/0x280 [ 440.923489][T13488] ? __pfx_setup_net+0x10/0x10 [ 440.923518][T13488] ? debug_mutex_init+0x37/0x70 [ 440.923547][T13488] copy_net_ns+0x2a6/0x5f0 [ 440.923580][T13488] create_new_namespaces+0x3ea/0xa90 [ 440.923618][T13488] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 440.923650][T13488] ksys_unshare+0x45b/0xa40 [ 440.923684][T13488] ? __pfx_ksys_unshare+0x10/0x10 [ 440.923717][T13488] ? xfd_validate_state+0x61/0x180 [ 440.923763][T13488] __x64_sys_unshare+0x31/0x40 [ 440.923802][T13488] do_syscall_64+0xcd/0x490 [ 440.923834][T13488] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 440.923860][T13488] RIP: 0033:0x7f48ddb8eb69 [ 440.923881][T13488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 440.923908][T13488] RSP: 002b:00007f48db9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 440.923933][T13488] RAX: ffffffffffffffda RBX: 00007f48dddb5fa0 RCX: 00007f48ddb8eb69 [ 440.923951][T13488] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 440.923970][T13488] RBP: 00007f48ddc11df1 R08: 0000000000000000 R09: 0000000000000000 [ 440.923986][T13488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 440.924001][T13488] R13: 0000000000000000 R14: 00007f48dddb5fa0 R15: 00007ffc1c4eafd8 [ 440.924037][T13488] [ 441.480921][T13453] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 441.488516][T13453] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 441.506452][T13453] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 441.589464][T13495] FAULT_INJECTION: forcing a failure. [ 441.589464][T13495] name failslab, interval 1, probability 0, space 0, times 0 [ 441.623657][T13495] CPU: 1 UID: 0 PID: 13495 Comm: syz.4.2254 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 441.623705][T13495] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 441.623716][T13495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 441.623731][T13495] Call Trace: [ 441.623740][T13495] [ 441.623751][T13495] dump_stack_lvl+0x16c/0x1f0 [ 441.623786][T13495] should_fail_ex+0x512/0x640 [ 441.623818][T13495] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 441.623856][T13495] should_failslab+0xc2/0x120 [ 441.623890][T13495] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 441.623924][T13495] ? alloc_inode+0x64/0x240 [ 441.623963][T13495] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 441.624001][T13495] alloc_inode+0x64/0x240 [ 441.624034][T13495] new_inode+0x22/0x1c0 [ 441.624073][T13495] debugfs_create_dir+0xdd/0x5f0 [ 441.624101][T13495] ptp_open+0x334/0x550 [ 441.624138][T13495] ? __pfx_ptp_open+0x10/0x10 [ 441.624180][T13495] ? __pfx_ptp_open+0x10/0x10 [ 441.624211][T13495] posix_clock_open+0x178/0x290 [ 441.624242][T13495] ? __pfx_posix_clock_open+0x10/0x10 [ 441.624270][T13495] chrdev_open+0x234/0x6a0 [ 441.624301][T13495] ? __pfx_apparmor_file_open+0x10/0x10 [ 441.624340][T13495] ? __pfx_chrdev_open+0x10/0x10 [ 441.624372][T13495] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 441.624408][T13495] do_dentry_open+0x982/0x1530 [ 441.624440][T13495] ? __pfx_chrdev_open+0x10/0x10 [ 441.624488][T13495] vfs_open+0x82/0x3f0 [ 441.624532][T13495] path_openat+0x1de4/0x2cb0 [ 441.624573][T13495] ? __pfx_path_openat+0x10/0x10 [ 441.624610][T13495] do_filp_open+0x20b/0x470 [ 441.624640][T13495] ? __pfx_do_filp_open+0x10/0x10 [ 441.624695][T13495] ? alloc_fd+0x471/0x7d0 [ 441.624733][T13495] do_sys_openat2+0x11b/0x1d0 [ 441.624768][T13495] ? __pfx_do_sys_openat2+0x10/0x10 [ 441.624819][T13495] __x64_sys_openat+0x174/0x210 [ 441.624856][T13495] ? __pfx___x64_sys_openat+0x10/0x10 [ 441.624908][T13495] do_syscall_64+0xcd/0x490 [ 441.624946][T13495] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 441.624973][T13495] RIP: 0033:0x7f48ddb8eb69 [ 441.624996][T13495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 441.625022][T13495] RSP: 002b:00007f48db9d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 441.625048][T13495] RAX: ffffffffffffffda RBX: 00007f48dddb6080 RCX: 00007f48ddb8eb69 [ 441.625068][T13495] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 441.625085][T13495] RBP: 00007f48ddc11df1 R08: 0000000000000000 R09: 0000000000000000 [ 441.625101][T13495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 441.625117][T13495] R13: 0000000000000000 R14: 00007f48dddb6080 R15: 00007ffc1c4eafd8 [ 441.625152][T13495] [ 442.033229][T13495] debugfs: out of free dentries, can not create directory '0xffff88805e9a4000' [ 442.351990][T13507] netlink: 17 bytes leftover after parsing attributes in process `syz.6.2259'. [ 442.371829][T13507] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2259'. [ 442.908168][ T51] Bluetooth: hci3: command 0x0406 tx timeout [ 442.968885][T13511] zswap: compressor not available [ 443.545307][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 443.552296][ T51] Bluetooth: hci0: command 0x0406 tx timeout [ 443.820477][T13525] tipc: Started in network mode [ 443.841069][T13525] tipc: Node identity ee00, cluster identity 4711 [ 443.853786][T13525] tipc: Node number set to 60928 [ 443.890298][T13524] delete_channel: no stack [ 444.741311][T13545] FAULT_INJECTION: forcing a failure. [ 444.741311][T13545] name failslab, interval 1, probability 0, space 0, times 0 [ 444.808980][T13547] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2271'. [ 444.822897][T13545] CPU: 1 UID: 0 PID: 13545 Comm: syz.1.2270 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 444.822943][T13545] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 444.822954][T13545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 444.822970][T13545] Call Trace: [ 444.822983][T13545] [ 444.822993][T13545] dump_stack_lvl+0x16c/0x1f0 [ 444.823026][T13545] should_fail_ex+0x512/0x640 [ 444.823056][T13545] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 444.823088][T13545] should_failslab+0xc2/0x120 [ 444.823122][T13545] __kmalloc_cache_noprof+0x6a/0x3e0 [ 444.823148][T13545] ? ptp_open+0xe4/0x550 [ 444.823194][T13545] ptp_open+0xe4/0x550 [ 444.823231][T13545] ? __pfx_ptp_open+0x10/0x10 [ 444.823275][T13545] ? __pfx_ptp_open+0x10/0x10 [ 444.823307][T13545] posix_clock_open+0x178/0x290 [ 444.823337][T13545] ? __pfx_posix_clock_open+0x10/0x10 [ 444.823364][T13545] chrdev_open+0x234/0x6a0 [ 444.823394][T13545] ? __pfx_apparmor_file_open+0x10/0x10 [ 444.823429][T13545] ? __pfx_chrdev_open+0x10/0x10 [ 444.823468][T13545] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 444.823504][T13545] do_dentry_open+0x982/0x1530 [ 444.823535][T13545] ? __pfx_chrdev_open+0x10/0x10 [ 444.823573][T13545] vfs_open+0x82/0x3f0 [ 444.823611][T13545] path_openat+0x1de4/0x2cb0 [ 444.823653][T13545] ? __pfx_path_openat+0x10/0x10 [ 444.823692][T13545] do_filp_open+0x20b/0x470 [ 444.823723][T13545] ? __pfx_do_filp_open+0x10/0x10 [ 444.823780][T13545] ? alloc_fd+0x471/0x7d0 [ 444.823819][T13545] do_sys_openat2+0x11b/0x1d0 [ 444.823854][T13545] ? __pfx_do_sys_openat2+0x10/0x10 [ 444.823905][T13545] __x64_sys_openat+0x174/0x210 [ 444.823949][T13545] ? __pfx___x64_sys_openat+0x10/0x10 [ 444.824004][T13545] do_syscall_64+0xcd/0x490 [ 444.824034][T13545] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 444.824061][T13545] RIP: 0033:0x7f0debb8eb69 [ 444.824083][T13545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 444.824109][T13545] RSP: 002b:00007f0dec951038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 444.824135][T13545] RAX: ffffffffffffffda RBX: 00007f0debdb6080 RCX: 00007f0debb8eb69 [ 444.824153][T13545] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 444.824184][T13545] RBP: 00007f0debc11df1 R08: 0000000000000000 R09: 0000000000000000 [ 444.824200][T13545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 444.824217][T13545] R13: 0000000000000000 R14: 00007f0debdb6080 R15: 00007ffe319113b8 [ 444.824254][T13545] [ 445.539941][T13552] FAULT_INJECTION: forcing a failure. [ 445.539941][T13552] name failslab, interval 1, probability 0, space 0, times 0 [ 445.557072][T13552] CPU: 1 UID: 0 PID: 13552 Comm: syz.4.2273 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 445.557110][T13552] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 445.557116][T13552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 445.557127][T13552] Call Trace: [ 445.557135][T13552] [ 445.557142][T13552] dump_stack_lvl+0x16c/0x1f0 [ 445.557163][T13552] should_fail_ex+0x512/0x640 [ 445.557184][T13552] should_failslab+0xc2/0x120 [ 445.557206][T13552] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 445.557223][T13552] ? skb_clone+0x190/0x3f0 [ 445.557242][T13552] skb_clone+0x190/0x3f0 [ 445.557257][T13552] neigh_probe+0x5d/0x110 [ 445.557271][T13552] __neigh_event_send+0xac5/0x13c0 [ 445.557320][T13552] neigh_resolve_output+0x56b/0x940 [ 445.557347][T13552] ip_finish_output2+0x7f5/0x21a0 [ 445.557366][T13552] ? ip_skb_dst_mtu+0x5a7/0xc70 [ 445.557384][T13552] ? __pfx_ip_finish_output2+0x10/0x10 [ 445.557399][T13552] ? ip_skb_dst_mtu+0x5b6/0xc70 [ 445.557413][T13552] ? __pfx_ip_skb_dst_mtu+0x10/0x10 [ 445.557428][T13552] ? __pfx_ip_finish_output+0x10/0x10 [ 445.557805][T13552] __ip_finish_output.part.0+0x1b4/0x350 [ 445.557831][T13552] ip_output+0x247/0x900 [ 445.557854][T13552] __ip_queue_xmit+0x1d30/0x2620 [ 445.557887][T13552] sctp_v4_xmit+0x897/0xf10 [ 445.557916][T13552] sctp_packet_transmit+0x1ef9/0x3040 [ 445.557949][T13552] sctp_packet_singleton+0x19e/0x370 [ 445.557967][T13552] ? __pfx_sctp_packet_singleton+0x10/0x10 [ 445.557991][T13552] ? sctp_outq_select_transport+0x208/0x740 [ 445.558011][T13552] sctp_outq_flush+0x53d/0x3350 [ 445.558026][T13552] ? _raw_spin_unlock_bh+0x11/0x30 [ 445.558054][T13552] ? __pfx_sctp_outq_flush+0x10/0x10 [ 445.558076][T13552] ? __pfx_sctp_sm_lookup_event+0x10/0x10 [ 445.558097][T13552] ? sctp_outq_tail+0x671/0xa30 [ 445.558116][T13552] ? sctp_endpoint_add_asoc+0x1db/0x2f0 [ 445.558136][T13552] sctp_do_sm+0x1792/0x5c80 [ 445.558158][T13552] ? kasan_save_stack+0x42/0x60 [ 445.558174][T13552] ? kasan_save_stack+0x33/0x60 [ 445.558189][T13552] ? kasan_save_track+0x14/0x30 [ 445.558205][T13552] ? __pfx_sctp_do_sm+0x10/0x10 [ 445.558220][T13552] ? sctp_sendmsg+0xea2/0x1e10 [ 445.558236][T13552] ? ____sys_sendmsg+0x973/0xc70 [ 445.558256][T13552] ? __x64_sys_sendmmsg+0x9c/0x100 [ 445.558270][T13552] ? do_syscall_64+0xcd/0x490 [ 445.558304][T13552] ? sk_leave_memory_pressure+0xdd/0x130 [ 445.558324][T13552] ? __sk_mem_raise_allocated+0x94d/0x1670 [ 445.558344][T13552] sctp_primitive_ASSOCIATE+0x9c/0xd0 [ 445.558396][T13552] sctp_sendmsg_to_asoc+0xa45/0x1bf0 [ 445.558414][T13552] ? sctp_assoc_set_primary+0x177/0x300 [ 445.558431][T13552] ? sctp_assoc_add_peer+0x252/0x1550 [ 445.558453][T13552] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 445.558469][T13552] ? sctp_connect_new_asoc+0x41e/0x770 [ 445.558490][T13552] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 445.558512][T13552] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 445.558539][T13552] sctp_sendmsg+0xea2/0x1e10 [ 445.558562][T13552] ? __pfx_sctp_sendmsg+0x10/0x10 [ 445.558580][T13552] ? __pfx___might_resched+0x10/0x10 [ 445.558601][T13552] ? aa_sk_perm+0x2f4/0xb10 [ 445.558620][T13552] ? __pfx_aa_sk_perm+0x10/0x10 [ 445.558642][T13552] ? __pfx_sctp_sendmsg+0x10/0x10 [ 445.558663][T13552] inet_sendmsg+0x11c/0x140 [ 445.558687][T13552] ____sys_sendmsg+0x973/0xc70 [ 445.558710][T13552] ? __pfx_____sys_sendmsg+0x10/0x10 [ 445.558731][T13552] ? trace_pid_list_is_set+0x100/0x150 [ 445.558751][T13552] ? trace_ignore_this_task+0xc3/0x100 [ 445.558776][T13552] ___sys_sendmsg+0x134/0x1d0 [ 445.558792][T13552] ? __pfx____sys_sendmsg+0x10/0x10 [ 445.558817][T13552] ? find_held_lock+0x2b/0x80 [ 445.558844][T13552] __sys_sendmmsg+0x200/0x420 [ 445.558862][T13552] ? __pfx___sys_sendmmsg+0x10/0x10 [ 445.558883][T13552] ? __pfx_do_futex+0x10/0x10 [ 445.558912][T13552] ? xfd_validate_state+0x61/0x180 [ 445.558931][T13552] ? __pfx___do_sys_close_range+0x10/0x10 [ 445.558955][T13552] __x64_sys_sendmmsg+0x9c/0x100 [ 445.558969][T13552] ? lockdep_hardirqs_on+0x7c/0x110 [ 445.558984][T13552] do_syscall_64+0xcd/0x490 [ 445.559001][T13552] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 445.559017][T13552] RIP: 0033:0x7f48ddb8eb69 [ 445.559032][T13552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 445.559047][T13552] RSP: 002b:00007f48db9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 445.559062][T13552] RAX: ffffffffffffffda RBX: 00007f48dddb5fa0 RCX: 00007f48ddb8eb69 [ 445.559072][T13552] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000002 [ 445.559082][T13552] RBP: 00007f48ddc11df1 R08: 0000000000000000 R09: 0000000000000000 [ 445.559091][T13552] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000000 [ 445.559101][T13552] R13: 0000000000000000 R14: 00007f48dddb5fa0 R15: 00007ffc1c4eafd8 [ 445.559123][T13552] [ 447.943354][ T30] audit: type=1800 audit(4294972604.666:11): pid=13585 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2284" name="lu_gp_id" dev="configfs" ino=59651 res=0 errno=0 [ 448.308871][T13585] ALUA LU Group already has a valid ID, ignoring request [ 452.023174][T13651] netlink: 25 bytes leftover after parsing attributes in process `syz.4.2301'. [ 452.047392][T13651] ima: policy update failed [ 452.052149][ T30] audit: type=1802 audit(4294972608.795:12): pid=13651 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.2301" res=0 errno=0 [ 452.888929][T13664] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2307'. [ 452.927645][T13664] ima: policy update failed [ 452.932643][ T30] audit: type=1802 audit(4294972609.689:13): pid=13664 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2307" res=0 errno=0 [ 453.175074][T13672] FAULT_INJECTION: forcing a failure. [ 453.175074][T13672] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 453.213068][T13672] CPU: 0 UID: 0 PID: 13672 Comm: syz.2.2310 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 453.213117][T13672] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 453.213128][T13672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 453.213141][T13672] Call Trace: [ 453.213151][T13672] [ 453.213162][T13672] dump_stack_lvl+0x16c/0x1f0 [ 453.213196][T13672] should_fail_ex+0x512/0x640 [ 453.213232][T13672] should_fail_alloc_page+0xe7/0x130 [ 453.213277][T13672] prepare_alloc_pages+0x3c2/0x610 [ 453.213314][T13672] ? rcu_is_watching+0x12/0xc0 [ 453.213342][T13672] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 453.213372][T13672] ? kmem_cache_alloc_lru_noprof+0x223/0x3b0 [ 453.213398][T13672] ? find_held_lock+0x2b/0x80 [ 453.213418][T13672] ? xas_alloc+0x34f/0x460 [ 453.213448][T13672] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 453.213478][T13672] ? __lock_acquire+0x62e/0x1ce0 [ 453.213522][T13672] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 453.213555][T13672] ? policy_nodemask+0xea/0x4e0 [ 453.213585][T13672] alloc_pages_mpol+0x1fb/0x550 [ 453.213616][T13672] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 453.213649][T13672] ? find_held_lock+0x2b/0x80 [ 453.213678][T13672] alloc_pages_noprof+0x131/0x390 [ 453.213708][T13672] ? brd_submit_bio+0x92c/0x1180 [ 453.213736][T13672] brd_submit_bio+0x942/0x1180 [ 453.213782][T13672] __submit_bio+0x301/0x690 [ 453.213806][T13672] ? __pfx___submit_bio+0x10/0x10 [ 453.213844][T13672] ? submit_bio_noacct_nocheck+0x852/0xd30 [ 453.213866][T13672] submit_bio_noacct_nocheck+0x852/0xd30 [ 453.213894][T13672] ? __pfx_submit_bio_noacct_nocheck+0x10/0x10 [ 453.213922][T13672] ? __pfx___might_resched+0x10/0x10 [ 453.213953][T13672] submit_bio_noacct+0xb49/0x1eb0 [ 453.213983][T13672] blkdev_direct_IO+0x163f/0x1fe0 [ 453.214023][T13672] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 453.214050][T13672] ? filemap_check_errors+0xa9/0x160 [ 453.214090][T13672] blkdev_write_iter+0x703/0xe00 [ 453.214122][T13672] vfs_write+0x6c7/0x1150 [ 453.214151][T13672] ? __pfx_blkdev_write_iter+0x10/0x10 [ 453.214182][T13672] ? __pfx_vfs_write+0x10/0x10 [ 453.214205][T13672] ? find_held_lock+0x2b/0x80 [ 453.214242][T13672] ksys_write+0x12a/0x250 [ 453.214281][T13672] ? __pfx_ksys_write+0x10/0x10 [ 453.214317][T13672] do_syscall_64+0xcd/0x490 [ 453.214344][T13672] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 453.214369][T13672] RIP: 0033:0x7f47d318eb69 [ 453.214392][T13672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 453.214415][T13672] RSP: 002b:00007f47d4073038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 453.214438][T13672] RAX: ffffffffffffffda RBX: 00007f47d33b5fa0 RCX: 00007f47d318eb69 [ 453.214454][T13672] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 453.214468][T13672] RBP: 00007f47d3211df1 R08: 0000000000000000 R09: 0000000000000000 [ 453.214483][T13672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 453.214498][T13672] R13: 0000000000000000 R14: 00007f47d33b5fa0 R15: 00007ffee4b381c8 [ 453.214531][T13672] [ 453.961516][T13683] zswap: compressor not available [ 454.129854][T13694] netlink: 146 bytes leftover after parsing attributes in process `syz.6.2314'. [ 455.322863][T13713] netlink: 'syz.6.2319': attribute type 16 has an invalid length. [ 455.356161][T13713] netlink: 'syz.6.2319': attribute type 17 has an invalid length. [ 455.436732][T13713] netlink: 'syz.6.2319': attribute type 19 has an invalid length. [ 455.491147][T13713] netlink: 102 bytes leftover after parsing attributes in process `syz.6.2319'. [ 455.867757][T13725] FAULT_INJECTION: forcing a failure. [ 455.867757][T13725] name failslab, interval 1, probability 0, space 0, times 0 [ 455.916307][T13725] CPU: 1 UID: 0 PID: 13725 Comm: syz.6.2323 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 455.916357][T13725] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 455.916368][T13725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 455.916384][T13725] Call Trace: [ 455.916394][T13725] [ 455.916403][T13725] dump_stack_lvl+0x16c/0x1f0 [ 455.916436][T13725] should_fail_ex+0x512/0x640 [ 455.916466][T13725] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 455.916503][T13725] should_failslab+0xc2/0x120 [ 455.916535][T13725] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 455.916567][T13725] ? __alloc_skb+0x2b2/0x380 [ 455.916597][T13725] __alloc_skb+0x2b2/0x380 [ 455.916621][T13725] ? __pfx___alloc_skb+0x10/0x10 [ 455.916660][T13725] tipc_buf_acquire+0x26/0xe0 [ 455.916694][T13725] tipc_msg_build+0x112/0x1150 [ 455.916735][T13725] ? __pfx_tipc_msg_build+0x10/0x10 [ 455.916775][T13725] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 455.916812][T13725] __tipc_sendmsg+0xa30/0x19a0 [ 455.916855][T13725] ? __pfx___tipc_sendmsg+0x10/0x10 [ 455.916889][T13725] ? __lock_acquire+0xb97/0x1ce0 [ 455.916926][T13725] ? __pfx_woken_wake_function+0x10/0x10 [ 455.916993][T13725] ? __local_bh_enable_ip+0xa4/0x120 [ 455.917030][T13725] tipc_sendmsg+0x4f/0x70 [ 455.917064][T13725] sock_write_iter+0x4fc/0x5b0 [ 455.917099][T13725] ? __pfx_sock_write_iter+0x10/0x10 [ 455.917145][T13725] ? __futex_wait+0x24c/0x2f0 [ 455.917180][T13725] ? copy_iovec_from_user+0x131/0x170 [ 455.917216][T13725] do_iter_readv_writev+0x654/0x950 [ 455.917247][T13725] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 455.917281][T13725] ? bpf_lsm_file_permission+0x9/0x10 [ 455.917315][T13725] ? security_file_permission+0x71/0x210 [ 455.917345][T13725] ? rw_verify_area+0xcf/0x6c0 [ 455.917374][T13725] vfs_writev+0x35f/0xde0 [ 455.917404][T13725] ? __lock_acquire+0x62e/0x1ce0 [ 455.917436][T13725] ? __pfx_vfs_writev+0x10/0x10 [ 455.917488][T13725] ? __fget_files+0x20e/0x3c0 [ 455.917524][T13725] ? do_writev+0x28c/0x340 [ 455.917548][T13725] do_writev+0x28c/0x340 [ 455.917574][T13725] ? __pfx_do_writev+0x10/0x10 [ 455.917611][T13725] do_syscall_64+0xcd/0x490 [ 455.917641][T13725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 455.917668][T13725] RIP: 0033:0x7f424ab8eb69 [ 455.917689][T13725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 455.917713][T13725] RSP: 002b:00007f42489f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 455.917738][T13725] RAX: ffffffffffffffda RBX: 00007f424adb5fa0 RCX: 00007f424ab8eb69 [ 455.917756][T13725] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 455.917772][T13725] RBP: 00007f424ac11df1 R08: 0000000000000000 R09: 0000000000000000 [ 455.917788][T13725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 455.917802][T13725] R13: 0000000000000000 R14: 00007f424adb5fa0 R15: 00007fff785504a8 [ 455.917837][T13725] [ 456.742562][T13740] random: crng reseeded on system resumption [ 456.762272][T13740] FAULT_INJECTION: forcing a failure. [ 456.762272][T13740] name failslab, interval 1, probability 0, space 0, times 0 [ 456.768130][T13736] FAULT_INJECTION: forcing a failure. [ 456.768130][T13736] name failslab, interval 1, probability 0, space 0, times 0 [ 456.810025][T13740] CPU: 0 UID: 0 PID: 13740 Comm: syz.6.2329 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 456.810075][T13740] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 456.810086][T13740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 456.810101][T13740] Call Trace: [ 456.810111][T13740] [ 456.810121][T13740] dump_stack_lvl+0x16c/0x1f0 [ 456.810153][T13740] should_fail_ex+0x512/0x640 [ 456.810189][T13740] should_failslab+0xc2/0x120 [ 456.810221][T13740] __kmalloc_cache_noprof+0x6a/0x3e0 [ 456.810248][T13740] ? do_raw_spin_lock+0x12c/0x2b0 [ 456.810283][T13740] ? find_held_lock+0x2b/0x80 [ 456.810306][T13740] ? async_schedule_node_domain+0x54/0x120 [ 456.810340][T13740] ? __pfx___async_dev_cache_fw_image+0x10/0x10 [ 456.810367][T13740] async_schedule_node_domain+0x54/0x120 [ 456.810402][T13740] dev_cache_fw_image+0x38e/0x490 [ 456.810429][T13740] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 456.810460][T13740] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 456.810484][T13740] dpm_for_each_dev+0x5d/0xb0 [ 456.810522][T13740] fw_pm_notify+0x81/0x150 [ 456.810555][T13740] notifier_call_chain+0xbc/0x410 [ 456.810584][T13740] ? __pfx_fw_pm_notify+0x10/0x10 [ 456.810627][T13740] blocking_notifier_call_chain_robust+0xc8/0x160 [ 456.810662][T13740] ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10 [ 456.810708][T13740] pm_notifier_call_chain_robust+0x27/0x60 [ 456.810742][T13740] snapshot_open+0x218/0x2b0 [ 456.810770][T13740] ? __pfx_snapshot_open+0x10/0x10 [ 456.810799][T13740] misc_open+0x35a/0x420 [ 456.810847][T13740] ? __pfx_misc_open+0x10/0x10 [ 456.810880][T13740] chrdev_open+0x234/0x6a0 [ 456.810910][T13740] ? __pfx_apparmor_file_open+0x10/0x10 [ 456.810948][T13740] ? __pfx_chrdev_open+0x10/0x10 [ 456.810979][T13740] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 456.811010][T13740] do_dentry_open+0x982/0x1530 [ 456.811042][T13740] ? __pfx_chrdev_open+0x10/0x10 [ 456.811080][T13740] vfs_open+0x82/0x3f0 [ 456.811118][T13740] path_openat+0x1de4/0x2cb0 [ 456.811157][T13740] ? __pfx_path_openat+0x10/0x10 [ 456.811197][T13740] do_filp_open+0x20b/0x470 [ 456.811229][T13740] ? __pfx_do_filp_open+0x10/0x10 [ 456.811285][T13740] ? alloc_fd+0x471/0x7d0 [ 456.811320][T13740] do_sys_openat2+0x11b/0x1d0 [ 456.811355][T13740] ? __pfx_do_sys_openat2+0x10/0x10 [ 456.811405][T13740] __x64_sys_openat+0x174/0x210 [ 456.811441][T13740] ? __pfx___x64_sys_openat+0x10/0x10 [ 456.811492][T13740] do_syscall_64+0xcd/0x490 [ 456.811523][T13740] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 456.811548][T13740] RIP: 0033:0x7f424ab8eb69 [ 456.811569][T13740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 456.811593][T13740] RSP: 002b:00007f42489f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 456.811616][T13740] RAX: ffffffffffffffda RBX: 00007f424adb5fa0 RCX: 00007f424ab8eb69 [ 456.811631][T13740] RDX: 0000000000001001 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 456.811645][T13740] RBP: 00007f424ac11df1 R08: 0000000000000000 R09: 0000000000000000 [ 456.811658][T13740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 456.811672][T13740] R13: 0000000000000000 R14: 00007f424adb5fa0 R15: 00007fff785504a8 [ 456.811707][T13740] [ 457.141529][T13736] CPU: 1 UID: 0 PID: 13736 Comm: syz.4.2336 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 457.141580][T13736] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 457.141591][T13736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 457.141608][T13736] Call Trace: [ 457.141618][T13736] [ 457.141629][T13736] dump_stack_lvl+0x16c/0x1f0 [ 457.141662][T13736] should_fail_ex+0x512/0x640 [ 457.141691][T13736] ? __kmalloc_noprof+0xbf/0x510 [ 457.141724][T13736] ? __register_sysctl_table+0xb3/0x1900 [ 457.141759][T13736] should_failslab+0xc2/0x120 [ 457.141793][T13736] __kmalloc_noprof+0xd2/0x510 [ 457.141830][T13736] __register_sysctl_table+0xb3/0x1900 [ 457.141864][T13736] ? is_module_address+0x5f/0xf0 [ 457.141903][T13736] ? __pfx___register_sysctl_table+0x10/0x10 [ 457.141936][T13736] ? is_module_address+0x69/0xf0 [ 457.141968][T13736] ? register_net_sysctl_sz+0x228/0x3e0 [ 457.141999][T13736] ? __asan_memcpy+0x3c/0x60 [ 457.142028][T13736] xfrm4_net_init+0xf0/0x1c0 [ 457.142055][T13736] ? __pfx_xfrm4_net_init+0x10/0x10 [ 457.142089][T13736] ops_init+0x1df/0x5f0 [ 457.142123][T13736] setup_net+0x10f/0x380 [ 457.142149][T13736] ? lockdep_init_map_type+0x5c/0x280 [ 457.142186][T13736] ? __pfx_setup_net+0x10/0x10 [ 457.142215][T13736] ? debug_mutex_init+0x37/0x70 [ 457.142245][T13736] copy_net_ns+0x2a6/0x5f0 [ 457.142276][T13736] create_new_namespaces+0x3ea/0xa90 [ 457.142309][T13736] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 457.142339][T13736] ksys_unshare+0x45b/0xa40 [ 457.142371][T13736] ? __pfx_ksys_unshare+0x10/0x10 [ 457.142404][T13736] ? xfd_validate_state+0x61/0x180 [ 457.142445][T13736] __x64_sys_unshare+0x31/0x40 [ 457.142476][T13736] do_syscall_64+0xcd/0x490 [ 457.142502][T13736] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 457.142525][T13736] RIP: 0033:0x7f48ddb8eb69 [ 457.142546][T13736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 457.142571][T13736] RSP: 002b:00007f48db9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 457.142596][T13736] RAX: ffffffffffffffda RBX: 00007f48dddb5fa0 RCX: 00007f48ddb8eb69 [ 457.142614][T13736] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 457.142630][T13736] RBP: 00007f48ddc11df1 R08: 0000000000000000 R09: 0000000000000000 [ 457.142645][T13736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 457.142659][T13736] R13: 0000000000000000 R14: 00007f48dddb5fa0 R15: 00007ffc1c4eafd8 [ 457.142691][T13736] [ 457.433208][T13740] [ 457.435586][T13740] ====================================================== [ 457.442637][T13740] WARNING: possible circular locking dependency detected [ 457.450452][T13740] 6.16.0-syzkaller-11741-g5998f2bca43e #0 Tainted: GF R [ 457.459575][T13740] ------------------------------------------------------ [ 457.466834][T13740] syz.6.2329/13740 is trying to acquire lock: [ 457.472954][T13740] ffff888032ce58e8 (&ima_iint_mutex_key[depth]){+.+.}-{4:4}, at: process_measurement+0x7e0/0x23e0 [ 457.484387][T13740] [ 457.484387][T13740] but task is already holding lock: [ 457.492383][T13740] ffffffff8f513b08 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2d/0xb0 [ 457.501730][T13740] [ 457.501730][T13740] which lock already depends on the new lock. [ 457.501730][T13740] [ 457.512660][T13740] [ 457.512660][T13740] the existing dependency chain (in reverse order) is: [ 457.521918][T13740] [ 457.521918][T13740] -> #4 (dpm_list_mtx){+.+.}-{4:4}: [ 457.529765][T13740] __mutex_lock+0x193/0x10b0 [ 457.534909][T13740] device_pm_add+0x87/0x3e0 [ 457.540069][T13740] device_add+0x9cd/0x1aa0 [ 457.545188][T13740] device_create_groups_vargs+0x1f8/0x270 [ 457.551452][T13740] device_create+0xed/0x130 [ 457.556837][T13740] msr_device_create+0x31/0x70 [ 457.562240][T13740] cpuhp_invoke_callback+0x3d5/0xa10 [ 457.568147][T13740] cpuhp_thread_fun+0x47e/0x6f0 [ 457.573804][T13740] smpboot_thread_fn+0x3f4/0xae0 [ 457.579453][T13740] kthread+0x3c5/0x780 [ 457.584137][T13740] ret_from_fork+0x5d7/0x6f0 [ 457.589423][T13740] ret_from_fork_asm+0x1a/0x30 [ 457.594764][T13740] [ 457.594764][T13740] -> #3 (cpuhp_state-up){+.+.}-{0:0}: [ 457.602332][T13740] cpuhp_thread_fun+0x193/0x6f0 [ 457.608054][T13740] smpboot_thread_fn+0x3f4/0xae0 [ 457.613780][T13740] kthread+0x3c5/0x780 [ 457.618370][T13740] ret_from_fork+0x5d7/0x6f0 [ 457.623751][T13740] ret_from_fork_asm+0x1a/0x30 [ 457.629558][T13740] [ 457.629558][T13740] -> #2 (cpu_hotplug_lock){++++}-{0:0}: [ 457.637822][T13740] cpus_read_lock+0x42/0x160 [ 457.643224][T13740] ring_buffer_resize+0x105/0x15c0 [ 457.650122][T13740] tracing_update_buffers+0x15e/0x1f0 [ 457.656328][T13740] event_pid_write.isra.0+0xf8/0x7f0 [ 457.662678][T13740] vfs_writev+0x5df/0xde0 [ 457.667539][T13740] do_writev+0x132/0x340 [ 457.672412][T13740] do_syscall_64+0xcd/0x490 [ 457.677531][T13740] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 457.684294][T13740] [ 457.684294][T13740] -> #1 (trace_types_lock){+.+.}-{4:4}: [ 457.692305][T13740] __mutex_lock+0x193/0x10b0 [ 457.697431][T13740] tracing_check_open_get_tr.part.0+0x49/0x190 [ 457.704417][T13740] tracing_open_generic_tr+0x66/0xf0 [ 457.710936][T13740] do_dentry_open+0x982/0x1530 [ 457.716318][T13740] vfs_open+0x82/0x3f0 [ 457.720997][T13740] dentry_open+0x71/0xd0 [ 457.725937][T13740] ima_calc_file_hash+0x2b6/0x490 [ 457.731909][T13740] ima_collect_measurement+0x899/0xa40 [ 457.738350][T13740] process_measurement+0x11fa/0x23e0 [ 457.744452][T13740] ima_file_check+0xc5/0x110 [ 457.749669][T13740] security_file_post_open+0x8e/0x210 [ 457.755770][T13740] path_openat+0x1404/0x2cb0 [ 457.761060][T13740] do_filp_open+0x20b/0x470 [ 457.766432][T13740] do_sys_openat2+0x11b/0x1d0 [ 457.771932][T13740] __x64_sys_openat+0x174/0x210 [ 457.777482][T13740] do_syscall_64+0xcd/0x490 [ 457.782515][T13740] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 457.789374][T13740] [ 457.789374][T13740] -> #0 (&ima_iint_mutex_key[depth]){+.+.}-{4:4}: [ 457.798160][T13740] __lock_acquire+0x12a6/0x1ce0 [ 457.803815][T13740] lock_acquire+0x179/0x350 [ 457.808936][T13740] __mutex_lock+0x193/0x10b0 [ 457.814142][T13740] process_measurement+0x7e0/0x23e0 [ 457.820092][T13740] ima_file_check+0xc5/0x110 [ 457.825288][T13740] security_file_post_open+0x8e/0x210 [ 457.831384][T13740] path_openat+0x1404/0x2cb0 [ 457.837032][T13740] do_file_open_root+0x322/0x610 [ 457.842806][T13740] file_open_root+0x2a7/0x450 [ 457.848238][T13740] kernel_read_file_from_path_initns+0x189/0x260 [ 457.855300][T13740] _request_firmware+0x744/0x1470 [ 457.861019][T13740] __async_dev_cache_fw_image+0xb1/0x340 [ 457.867268][T13740] async_schedule_node_domain+0xd1/0x120 [ 457.875039][T13740] dev_cache_fw_image+0x38e/0x490 [ 457.880592][T13740] dpm_for_each_dev+0x5d/0xb0 [ 457.886240][T13740] fw_pm_notify+0x81/0x150 [ 457.891397][T13740] notifier_call_chain+0xbc/0x410 [ 457.897146][T13740] blocking_notifier_call_chain_robust+0xc8/0x160 [ 457.904395][T13740] pm_notifier_call_chain_robust+0x27/0x60 [ 457.910837][T13740] snapshot_open+0x218/0x2b0 [ 457.915964][T13740] misc_open+0x35a/0x420 [ 457.920873][T13740] chrdev_open+0x234/0x6a0 [ 457.927477][T13740] do_dentry_open+0x982/0x1530 [ 457.932939][T13740] vfs_open+0x82/0x3f0 [ 457.937541][T13740] path_openat+0x1de4/0x2cb0 [ 457.942933][T13740] do_filp_open+0x20b/0x470 [ 457.947969][T13740] do_sys_openat2+0x11b/0x1d0 [ 457.953296][T13740] __x64_sys_openat+0x174/0x210 [ 457.958861][T13740] do_syscall_64+0xcd/0x490 [ 457.963914][T13740] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 457.970382][T13740] [ 457.970382][T13740] other info that might help us debug this: [ 457.970382][T13740] [ 457.980638][T13740] Chain exists of: [ 457.980638][T13740] &ima_iint_mutex_key[depth] --> cpuhp_state-up --> dpm_list_mtx [ 457.980638][T13740] [ 457.994631][T13740] Possible unsafe locking scenario: [ 457.994631][T13740] [ 458.002111][T13740] CPU0 CPU1 [ 458.007561][T13740] ---- ---- [ 458.012913][T13740] lock(dpm_list_mtx); [ 458.017243][T13740] lock(cpuhp_state-up); [ 458.024106][T13740] lock(dpm_list_mtx); [ 458.030918][T13740] lock(&ima_iint_mutex_key[depth]); [ 458.036462][T13740] [ 458.036462][T13740] *** DEADLOCK *** [ 458.036462][T13740] [ 458.045079][T13740] 5 locks held by syz.6.2329/13740: [ 458.050638][T13740] #0: ffffffff8f303688 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420 [ 458.059209][T13740] #1: ffffffff8e484768 (system_transition_mutex){+.+.}-{4:4}, at: lock_system_sleep+0x87/0xa0 [ 458.070038][T13740] #2: ffffffff8e4c4bd0 ((pm_chain_head).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain_robust+0xa8/0x160 [ 458.082164][T13740] #3: ffffffff8f519108 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x69/0x150 [ 458.090887][T13740] #4: ffffffff8f513b08 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2d/0xb0 [ 458.100232][T13740] [ 458.100232][T13740] stack backtrace: [ 458.106117][T13740] CPU: 1 UID: 0 PID: 13740 Comm: syz.6.2329 Tainted: GF R 6.16.0-syzkaller-11741-g5998f2bca43e #0 PREEMPT(full) [ 458.106151][T13740] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 458.106159][T13740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 458.106171][T13740] Call Trace: [ 458.106177][T13740] [ 458.106185][T13740] dump_stack_lvl+0x116/0x1f0 [ 458.106206][T13740] print_circular_bug+0x275/0x350 [ 458.106231][T13740] check_noncircular+0x14c/0x170 [ 458.106257][T13740] __lock_acquire+0x12a6/0x1ce0 [ 458.106284][T13740] lock_acquire+0x179/0x350 [ 458.106307][T13740] ? process_measurement+0x7e0/0x23e0 [ 458.106336][T13740] ? __pfx___might_resched+0x10/0x10 [ 458.106355][T13740] ? lockdep_hardirqs_on+0x7c/0x110 [ 458.106374][T13740] ? process_measurement+0x7e0/0x23e0 [ 458.106399][T13740] __mutex_lock+0x193/0x10b0 [ 458.106418][T13740] ? process_measurement+0x7e0/0x23e0 [ 458.106446][T13740] ? lock_acquire+0x62/0x350 [ 458.106469][T13740] ? __pfx___mutex_lock+0x10/0x10 [ 458.106488][T13740] ? __pfx___might_resched+0x10/0x10 [ 458.106506][T13740] ? find_held_lock+0x2b/0x80 [ 458.106524][T13740] ? down_write+0x14d/0x200 [ 458.106547][T13740] ? process_measurement+0x7e0/0x23e0 [ 458.106573][T13740] process_measurement+0x7e0/0x23e0 [ 458.106603][T13740] ? __pfx_process_measurement+0x10/0x10 [ 458.106634][T13740] ? find_held_lock+0x2b/0x80 [ 458.106654][T13740] ? fscrypt_file_open+0x47c/0x590 [ 458.106691][T13740] ? __pfx___fsnotify_parent+0x10/0x10 [ 458.106713][T13740] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 458.106740][T13740] ima_file_check+0xc5/0x110 [ 458.106770][T13740] ? __pfx_ima_file_check+0x10/0x10 [ 458.106798][T13740] ? vfs_open+0x2e3/0x3f0 [ 458.106825][T13740] security_file_post_open+0x8e/0x210 [ 458.106847][T13740] path_openat+0x1404/0x2cb0 [ 458.106871][T13740] ? trace_kmem_cache_alloc+0x28/0xc0 [ 458.106897][T13740] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 458.106920][T13740] ? __pfx_path_openat+0x10/0x10 [ 458.106941][T13740] ? __asan_memcpy+0x3c/0x60 [ 458.106960][T13740] do_file_open_root+0x322/0x610 [ 458.106989][T13740] ? __pfx_do_file_open_root+0x10/0x10 [ 458.107020][T13740] ? vsnprintf+0x318/0x1160 [ 458.107039][T13740] file_open_root+0x2a7/0x450 [ 458.107061][T13740] ? __pfx_file_open_root+0x10/0x10 [ 458.107082][T13740] ? find_held_lock+0x2b/0x80 [ 458.107100][T13740] ? kernel_read_file_from_path_initns+0x17a/0x260 [ 458.107129][T13740] kernel_read_file_from_path_initns+0x189/0x260 [ 458.107157][T13740] ? __pfx_kernel_read_file_from_path_initns+0x10/0x10 [ 458.107183][T13740] ? trace_kmem_cache_alloc+0x28/0xc0 [ 458.107210][T13740] ? _request_firmware+0x503/0x1470 [ 458.107230][T13740] _request_firmware+0x744/0x1470 [ 458.107252][T13740] ? __pfx__request_firmware+0x10/0x10 [ 458.107272][T13740] ? dump_stack_lvl+0x1a3/0x1f0 [ 458.107291][T13740] __async_dev_cache_fw_image+0xb1/0x340 [ 458.107311][T13740] ? __pfx___async_dev_cache_fw_image+0x10/0x10 [ 458.107331][T13740] ? mark_held_locks+0x49/0x80 [ 458.107353][T13740] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 458.107382][T13740] ? __pfx___async_dev_cache_fw_image+0x10/0x10 [ 458.107402][T13740] async_schedule_node_domain+0xd1/0x120 [ 458.107425][T13740] dev_cache_fw_image+0x38e/0x490 [ 458.107443][T13740] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 458.107462][T13740] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 458.107479][T13740] dpm_for_each_dev+0x5d/0xb0 [ 458.107506][T13740] fw_pm_notify+0x81/0x150 [ 458.107533][T13740] notifier_call_chain+0xbc/0x410 [ 458.107556][T13740] ? __pfx_fw_pm_notify+0x10/0x10 [ 458.107584][T13740] blocking_notifier_call_chain_robust+0xc8/0x160 [ 458.107610][T13740] ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10 [ 458.107638][T13740] pm_notifier_call_chain_robust+0x27/0x60 [ 458.107663][T13740] snapshot_open+0x218/0x2b0 [ 458.107684][T13740] ? __pfx_snapshot_open+0x10/0x10 [ 458.107706][T13740] misc_open+0x35a/0x420 [ 458.107734][T13740] ? __pfx_misc_open+0x10/0x10 [ 458.107761][T13740] chrdev_open+0x234/0x6a0 [ 458.107783][T13740] ? __pfx_apparmor_file_open+0x10/0x10 [ 458.107812][T13740] ? __pfx_chrdev_open+0x10/0x10 [ 458.107835][T13740] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 458.107857][T13740] do_dentry_open+0x982/0x1530 [ 458.107879][T13740] ? __pfx_chrdev_open+0x10/0x10 [ 458.107904][T13740] vfs_open+0x82/0x3f0 [ 458.107930][T13740] path_openat+0x1de4/0x2cb0 [ 458.107954][T13740] ? __pfx_path_openat+0x10/0x10 [ 458.107982][T13740] do_filp_open+0x20b/0x470 [ 458.108003][T13740] ? __pfx_do_filp_open+0x10/0x10 [ 458.108031][T13740] ? alloc_fd+0x471/0x7d0 [ 458.108053][T13740] do_sys_openat2+0x11b/0x1d0 [ 458.108079][T13740] ? __pfx_do_sys_openat2+0x10/0x10 [ 458.108110][T13740] __x64_sys_openat+0x174/0x210 [ 458.108137][T13740] ? __pfx___x64_sys_openat+0x10/0x10 [ 458.108168][T13740] do_syscall_64+0xcd/0x490 [ 458.108189][T13740] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 458.108207][T13740] RIP: 0033:0x7f424ab8eb69 [ 458.108223][T13740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 458.108241][T13740] RSP: 002b:00007f42489f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 458.108258][T13740] RAX: ffffffffffffffda RBX: 00007f424adb5fa0 RCX: 00007f424ab8eb69 [ 458.108271][T13740] RDX: 0000000000001001 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 458.108284][T13740] RBP: 00007f424ac11df1 R08: 0000000000000000 R09: 0000000000000000 [ 458.108296][T13740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 458.108307][T13740] R13: 0000000000000000 R14: 00007f424adb5fa0 R15: 00007fff785504a8 [ 458.108324][T13740] [ 458.697303][T13741] __vm_enough_memory: pid: 13741, comm: syz.2.2328, bytes: 4398046511104 not enough memory for the allocation