last executing test programs: 9m3.574920763s ago: executing program 1 (id=163): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r0 = openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/buffer_subbuf_size_kb\x00', 0x40000, 0x0) readv$auto(r0, &(0x7f0000004d80)={&(0x7f0000004cc0), 0x73a5}, 0x4) r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) socket(0x2, 0x1, 0x106) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0xc0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000", @ANYBLOB="69b5"], 0x14}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) socket(0x1d, 0x2, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000580)='/dev/audio\x00', 0x0, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r5) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)={0x1c, r6, 0xd0d58b333228212f, 0x70bd2c, 0x25dfdbfd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r7}]}, 0x1c}}, 0x20000040) sendmsg$auto_NL80211_CMD_SET_BEACON(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)={0x168, r6, 0x300, 0x70bd25, 0x25dfdbfd, {}, [@NL80211_ATTR_EMA_RNR_ELEMS={0x14b, 0x145, 0x0, 0x1, [@nested={0xdd, 0x40, 0x0, 0x1, [@generic="08dc1d6bac53377a67f8d1387506abf67cae353e65b7d945cf6835098581509c627586ccc30d80fdc22bc4ccedf06fbe17227da94338ca54940afe629ceaabb1fee11d5d149774a139fe24c6c4a0d34f8b93f76fc3166d462520e2f249e67e6946287139012afe323cca102e4aabd05b5490087c91687ea872f4b6d4c7ab38298eb508226de8dfc3574bb6d830e8344e90c6f6ced55f47a34bf320e2a2af9c63cbf1d4710e93c637747673badc4a5b27d8a7edd831296d61b6e687c66a57523cf5f3b0a9f881c9860103bb19c624177a9554d707160e6a9500"]}, @generic="8d6f5bd90488bc782e9201c3752c38e5f35ad8d9f6d2c8d2e9f158b6f4f550adc5f8cc9d2d59e65596142434154ce81a69e27a78a31f7c51ffc5988fa46aaa0823283b", @nested={0x24, 0xbb, 0x0, 0x1, [@nested={0x4, 0xf3}, @nested={0x4, 0x19}, @typed={0x8, 0x11e, 0x0, 0x0, @fd=r2}, @nested={0x4, 0xbc}, @nested={0x4, 0x74}, @typed={0x8, 0xa5, 0x0, 0x0, @u32=0xff}]}]}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x8000}]}, 0x168}, 0x1, 0x0, 0x0, 0x8015}, 0x4000000) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x5, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7fffffffffffffff, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) ioctl$auto_UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000040)={{0x0, 0xf2cf, 0x1ff, 0x4}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x8}) ioctl$auto_UI_DEV_CREATE(r1, 0x5501, 0x0) write$auto(r1, 0x0, 0x5) r8 = openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/trigger\x00', 0x1, 0x0) write$auto(r8, &(0x7f0000001080)='\xcb:\x00', 0x2) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x48, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {}, [@L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0xb}, @L2TP_ATTR_MRU={0x6, 0x1d, 0x9}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0xff}, @L2TP_ATTR_COOKIE={0xc, 0xf, 0x6}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0xfff}]}, 0x48}, 0x1, 0x0, 0x0, 0x88c4}, 0x4000040) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/module/pvrusb2/parameters/vbi_nr\x00', 0x200, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) 9m2.360230949s ago: executing program 1 (id=166): rt_sigtimedwait$auto(0x0, 0x0, 0x0, 0x8) (async) mmap$auto(0x0, 0xf90, 0x4000000000cf, 0xeb1, 0x404, 0x2000000000008000) (async, rerun: 32) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x8000, 0x0) (rerun: 32) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0) (async, rerun: 32) read$auto(r0, 0x0, 0xcefbce6) (async, rerun: 32) read$auto_nsim_dev_trap_fa_cookie_fops_dev(r0, &(0x7f0000000000)=""/156, 0x9c) (async) shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xdffffffa) (async, rerun: 64) kill$auto(0x0, 0x11) (async, rerun: 64) syz_clone3(&(0x7f0000000500)={0x400, 0x0, 0x0, 0x0, {0x2c}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000) (async, rerun: 32) socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async, rerun: 64) madvise$auto(0xfff, 0x7, 0xab8) (async, rerun: 64) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000300)='/dev/audio1\x00\xf8\xda\xaf\xc3}\x1a\x9e\xf3\xe0\xe4U*\x01\xc6\x7fd\x84\xe3@}9\xe3\x1cP\xaa\x84&\xfa]Z\x88H\xaa\x82\x86\x98\xe0!blA\xca\xb1\xd2\xadU\xa9\xbb\x7f\x00\x00\x00\x00\x00\x00\x00\x93\x02z6\xac\xf3\xf4\x94=\xab\xf43\x7f,\xb6\x7f*T\xfb\xe8\xcc\xc1:\xc2v\xe5\xb4R%\xebi\xc7\xea3@\xa8\xbe)\xd0\xbfN\x82`G|\xf3\x00\x95\x11\x06u\xfa\a\x1d\xbd\xa5\xd1\xf8b\xdc3\xbbX\xf1\x81hFC\xe3\xd7<\x00\xb6\x15\xb5\x1794x\xa2\xc3\xbcp\xb6z\x9b20\xcbA\t/X9Pc\x01\x01\x00\x00\xb00\xfc\xfd#\xe4\x8c\xc0@\x9a$f\xd3\xb24\xb4,\xd6\a\xef\x92\xda\x87\xbf\x1fC\\\x0f\xbd\xf7\x01\xc8\x80\x83\xefP\x898\xb0rx\xa2\xea \xd6\x81\x84\x85\x8e\xf8B\xa4\xf8/\xe6a\xc8o0\x1e\x7f\xe3\xdf\x12\x13!j\x8eT\xbf,\xe4\xe6\x9c~\xa1\xde\x84\xcf\x89\xdae\xe1!\xc60\xb3\x857\xa7\xa0 \xbcn,\x9d\xbd$\x01', 0x2) (async, rerun: 64) r2 = socket(0x1e, 0x1, 0x0) (async, rerun: 64) setsockopt$auto(0x3, 0x6, 0x100000000, 0xfffffffffffffffc, 0xa) socket(0x29, 0x801, 0x100) (async) io_uring_register$auto_IORING_REGISTER_EVENTFD_ASYNC(r2, 0x7, &(0x7f0000000140)="92f5b6d429e0ea2a4c97b31ef789fd555acfff756a6ddec6766e42cef1270e8cbc51c5f9e8f21d850b3d9ea1d0e1696765035381aa2abc1d8444971a96b79c11a4868a99e2bb7a8d57dc4174ab434c3803232696dd1e76a82db428ac5f853d91bd418b167d44f92ab9cb309d32d1e141b130eb16ee7fd4e1be204c3feff3f6278ae2b00e582c04ef3966bf12ce5af6fe2dfac002951b", 0x9) (async) mmap$auto(0x1, 0x3, 0x3, 0x55, r1, 0x8001) (async) mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000001680)="a7", 0x80000) (async) pselect6$auto(0x9, &(0x7f0000000000)={[0x8, 0x4, 0x0, 0x6, 0x8001, 0x4000000000002bc8, 0xfff, 0x9, 0x3, 0xffffffff, 0x8000000000000001, 0x0, 0x2f, 0x2, 0x8, 0xfffffffffffffffe]}, 0x0, 0x0, 0x0, 0x0) (async, rerun: 32) semctl$auto(0x1ff, 0x2, 0x13, 0x4) (rerun: 32) 9m1.920815071s ago: executing program 1 (id=169): unshare$auto(0x40000080) mount_setattr$auto(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000640)={0x10002c, 0x7f, 0x0, @raw=0xce8}, 0x287) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x60342, 0x0) r0 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) readv$auto(r0, &(0x7f0000000680)={&(0x7f0000000540), 0x40200}, 0x3) read$auto(0x3, 0x0, 0x7fffffff) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) mmap$auto(0x7, 0x400009, 0xdf, 0x1c, 0x8000000000000003, 0x8000) mremap$auto(0x0, 0x2, 0x8, 0x3, 0x7effffffb000) ioctl$auto(r1, 0x4, r0) 8m59.992964081s ago: executing program 1 (id=176): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000080), r0) r1 = prctl$auto(0x3e, 0x9, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) pivot_root$auto(0x0, 0x0) open(0x0, 0x7ffd, 0x12) kexec_load$auto(0x5, 0x0, 0x0, 0x1003e0000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff) connect$auto(0x3, 0x0, 0x10) unshare$auto(0x40000080) madvise$auto(0x101, 0xffffffffffff0005, 0x15) read$auto_mISDN_fops_timerdev(r1, &(0x7f0000000180)=""/66, 0x42) ioctl$auto_TUNSETVNETHDRSZ2(r1, 0x400454d8, &(0x7f0000000040)=0x6) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/ip6_vti0/stable_secret\x00', 0x2, 0x0) pwrite64$auto(r2, 0x0, 0x1, 0x27) move_pages$auto(0x0, 0xa, &(0x7f00000000c0)=&(0x7f0000000200)="4d0b4d822f0cc2e8f8baa725765ea5c50b9b291a594ed4780cb3d1a8f5c2a2650c7f10358373f10a0cfb92d94e731894eb467d07cffc87599f3fe41810115159efd974c901d74b52db7bbd54fa807095270769a788efdc3c9af0b22b055f68cccf1c849d7863964720dacc16814cecb18a43e5616d79927f811cf9046160815a2e271da30b09e792dc94fe18d588019c4864092e96d85011fd152ccdb9a2596cc165528ba0bdfe01c66632502d98a09ea2fd501888bc4105ca3eae1e1220b8bfd093", &(0x7f0000000100)=0xfffffe00, &(0x7f0000000140)=0xffffff00, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) move_pages$auto(0x0, 0x91, 0x0, 0x0, 0x0, 0x0) madvise$auto(0x3, 0x7fff, 0x800) socket(0x0, 0xc, 0x5) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/uvcvideo/parameters/clock\x00', 0x80, 0x0) close_range$auto(0x2, 0x8, 0x0) 8m58.393640424s ago: executing program 1 (id=180): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) prctl$auto(0x29, 0x17000000, 0x0, 0x0, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video14\x00', 0x802, 0x0) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) socket(0xa, 0x1, 0x100) syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, 0xffffffffffffffff) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0xbb, 0x400008, 0x5000df, 0x7fff, 0xffffffffffffffff, 0x1000000000080) memfd_secret$auto(0x0) mmap$auto(0x0, 0x5c, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff001, 0x2) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) madvise$auto(0x7, 0x7fffffffffffffff, 0x0) mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x6c0142, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r2 = socket(0x10, 0x2, 0x0) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0) ioctl$auto(r3, 0xc0205649, r2) 8m57.005754582s ago: executing program 1 (id=183): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mknod$auto(0x0, 0xc9, 0xfffffffa) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff) landlock_restrict_self$auto(0xffffffffffffffff, 0x2) futimesat$auto(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x6143, 0x10}) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/ram14/inflight\x00', 0x0, 0x0) setreuid$auto(0x3, 0x7) bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_3={0x8, 0xffffffff, 0x18c, 0x6a, 0x0, 0x8, 0x3, 0x9, 0xfffffff8, "63acf0e05b2d33ebc15774e816ef77cf", 0x0, 0x541, 0x4, 0x7, 0x3, 0x1009, 0x4, 0x2, 0xe, 0x5, @attach_btf_obj_fd=0x3, 0x166, 0x7ff, 0x6, 0x6, 0x48000000, 0xa7c2}, 0x7) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) 8m41.283623397s ago: executing program 32 (id=183): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mknod$auto(0x0, 0xc9, 0xfffffffa) mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff) landlock_restrict_self$auto(0xffffffffffffffff, 0x2) futimesat$auto(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x6143, 0x10}) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/ram14/inflight\x00', 0x0, 0x0) setreuid$auto(0x3, 0x7) bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_3={0x8, 0xffffffff, 0x18c, 0x6a, 0x0, 0x8, 0x3, 0x9, 0xfffffff8, "63acf0e05b2d33ebc15774e816ef77cf", 0x0, 0x541, 0x4, 0x7, 0x3, 0x1009, 0x4, 0x2, 0xe, 0x5, @attach_btf_obj_fd=0x3, 0x166, 0x7ff, 0x6, 0x6, 0x48000000, 0xa7c2}, 0x7) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) 5m16.362863253s ago: executing program 0 (id=1007): mmap$auto(0x0, 0x2020009, 0x3, 0xeb4, 0xffffffffffffffff, 0x8000) (async) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), 0xffffffffffffffff) (async) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NET_SHAPER_CMD_GROUP(0xffffffffffffffff, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2004c804}, 0x14) (async) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async) recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0) (async) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), r0) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) (async) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0xca, &(0x7f0000000040)='\x04\x1c\xdc\xec7z\xdf3\xf2\xd3!\v\xb0M\xf8Q\x15\f', 0x2d8) socket(0x2, 0x1, 0x0) (async) ioctl$auto(0x3, 0x5411, 0x10000000000402) (async) sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="1903736ea3616764d055459e19c5f65225538d4ffab1d450d6af057c7c978aeab5f839ceb6063f2716e53e3f1ba38fdce10e07d3b0eb66df7cc631a90fc44a41f3cd779533ae456d88f7a920626e04ba1b0ab12f779e3497bb4981eb76e07bf5d44c590b3fbed6470c8bc8b29799f21c0c94ba34db396bc37e30834dc3b974c070a72aa9e7914c07a6c1a89d33616fca61f989294cd54b9e899dc0a31a69e89e8d3007e6c7a456e662fa9796fe27d83b4d9f56d7a4d154c8ce0c70c652cc4b2ca401a44ac56bfd79e95996a6aa57d1d0213c017ec3d93ca674fd81be551ff3c2c1d64e5085dbbf7c2add09e9d9bd395602a45a879aad9aa8", @ANYRES16=r1, @ANYBLOB="00032dbd700002dcdf2503000000"], 0x14}, 0x1, 0x0, 0x0, 0x200000f0}, 0x40811) (async) madvise$auto(0x0, 0x2003f0, 0x15) madvise$auto(0x3, 0x200007, 0x1d) timerfd_create$auto(0x9, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) (async) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) socketpair$auto(0x714, 0xd771, 0x80, &(0x7f0000000280)) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async) inotify_add_watch$auto(0xffffffffffffffff, 0x0, 0x0) (async) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x0, 0x0) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x200, 0x3, 0x8, 0xc, 0x2e, 0x0, 0x3}, 0x6f4) 5m13.103056842s ago: executing program 0 (id=1016): r0 = socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x800, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001180)='/sys/devices/virtual/block/zram0/compact\x00', 0x20001, 0x0) bpf$auto(0x0, 0x0, 0x6f4) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000000)="b2", 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) socket(0xa, 0x2, 0x0) r2 = socket(0xa, 0x3, 0xff) connect$auto(r2, 0x0, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) ioctl$auto(0xffffffffffffffff, 0xb21064a7, 0x20000a) getsockopt$auto_SO_MEMINFO(r0, 0x1, 0x37, &(0x7f0000000100)='/dev/kvm\x00', &(0x7f0000000180)=0x7) 5m9.927604776s ago: executing program 0 (id=1024): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/arch_status\x00', 0x240, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0xc01) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) r1 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000003fc0)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20a02, 0x0) ppoll$auto(&(0x7f0000000040)={r1, 0x4, 0xa7}, 0x1c, &(0x7f0000000080)={0x2, 0x6}, 0x0, 0x8) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/exception_policy\x00', 0x101800, 0x0) recvmmsg$auto(r0, &(0x7f00000000c0)={{&(0x7f0000000380), 0x80, 0x0, 0x2, &(0x7f0000000080), 0x8bed, 0x3}, 0x765}, 0xfffffffa, 0xc, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x38000, &(0x7f0000000100)={0x0, 0xc4}, 0x4, 0x0, 0x2, 0x9}, 0xcad}, 0x6387c6c6, 0x1) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r0, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000002}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xe8, 0x0, 0x400, 0x70bd28, 0x25dfdbff, {}, "ac52032e03e113bdf92f9dbfa6e4be8bae3591b4882c68acdcca9b44b67dd3227a33122cd025322efd0d6ce8102cc0279b0cc3b59ac732672338470186b0db210cdb7de4e1046dbb93b09dc9fdc9a009fd79e586504a49407ae44eacc39b93e4078e664a0890ad0b4dc18fef209e8930da2658d5c48b0306c5df1fca7da7c56bbc72b48972fb74bbde71eb5503717ddb023b3b10f9038612caf5fc4d4b90581c9e0b5c46cf8462899efeb573529c958c9ea14c39a81a7c41c7fdd7423e07babbf51663f04fd7a4260cc51ce9799f580daff0"}, 0xe8}, 0x1, 0x0, 0x0, 0x44004}, 0x48000) 5m9.112686069s ago: executing program 0 (id=1027): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) recvmmsg$auto(r0, &(0x7f00000000c0)={{&(0x7f0000000380), 0x80, 0x0, 0x2, &(0x7f0000000080), 0x8bed, 0x3}, 0x765}, 0xfffffffa, 0xc, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x38000, &(0x7f0000000100)={0x0, 0xc4}, 0x4, 0x0, 0x2, 0x9}, 0xcad}, 0x6387c6c6, 0x1) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r0, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x4002, 0x0, 0x80000002}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xe8, 0x0, 0x400, 0x70bd28, 0x25dfdbff, {}, "ac52032e03e113bdf92f9dbfa6e4be8bae3591b4882c68acdcca9b44b67dd3227a33122cd025322efd0d6ce8102cc0279b0cc3b59ac732672338470186b0db210cdb7de4e1046dbb93b09dc9fdc9a009fd79e586504a49407ae44eacc39b93e4078e664a0890ad0b4dc18fef209e8930da2658d5c48b0306c5df1fca7da7c56bbc72b48972fb74bbde71eb5503717ddb023b3b10f9038612caf5fc4d4b90581c9e0b5c46cf8462899efeb573529c958c9ea14c39a81a7c41c7fdd7423e07babbf51663f04fd7a4260cc51ce9799f580daff0"}, 0xe8}, 0x1, 0x0, 0x0, 0x44004}, 0x48000) 5m2.810046425s ago: executing program 0 (id=1046): mmap$auto(0x0, 0x4020009, 0xdf, 0x400000000e31, 0xffffffffffffffff, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xc, &(0x7f0000000140)=';') ioctl$auto(0x3, 0x40086203, 0x38) r1 = open(&(0x7f0000000000)='./file0\x00', 0xa61c2, 0x84) ioctl$auto_FS_IOC_GETFLAGS(r1, 0x80086601, 0x7fffffffbfffffff) 5m2.425018483s ago: executing program 0 (id=1048): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x8000, 0xfa9d, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/radio26\x00', 0xc0400, 0x0) ioctl$auto(r0, 0x4020565a, 0x38) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000100)='/dev/binderfs/binder0\x00', 0x800, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x101, 0x0) socket(0x21, 0x3, 0x9) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x7fff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da4c, 0x3, 0x3, 0x3739aae3, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x2, 0xd, 0x1, 0x40000948b, 0x0, 0x150, 0x1, 0xffffffffd09d8d67, 0x62, 0x80000023, 0x7, 0x6d3e, 0x9, 0x4, 0xfff]}, 0x0) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_BLKBSZSET(0xffffffffffffffff, 0x40081271, 0x0) unshare$auto(0x40000080) mmap$auto(0x8000000000000000, 0xffffffff, 0x4000000000df, 0x40eb1, 0xffffffffffffffff, 0x300000000000) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/can/rcvlist_sff\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000140)=""/103, 0x67) r3 = getsockopt$auto(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r4 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) mmap$auto(0x4, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x40002, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) syz_clone3(&(0x7f0000000200)={0x1e2905180, 0x0, 0x0, 0x0, {0xe}, 0x0, 0x0, 0x0, 0x0, 0x0, {r3}}, 0x58) 4m47.117914181s ago: executing program 33 (id=1048): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x8000, 0xfa9d, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/radio26\x00', 0xc0400, 0x0) ioctl$auto(r0, 0x4020565a, 0x38) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000100)='/dev/binderfs/binder0\x00', 0x800, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) socket(0x1e, 0x1, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x101, 0x0) socket(0x21, 0x3, 0x9) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x7fff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da4c, 0x3, 0x3, 0x3739aae3, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x2, 0xd, 0x1, 0x40000948b, 0x0, 0x150, 0x1, 0xffffffffd09d8d67, 0x62, 0x80000023, 0x7, 0x6d3e, 0x9, 0x4, 0xfff]}, 0x0) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_BLKBSZSET(0xffffffffffffffff, 0x40081271, 0x0) unshare$auto(0x40000080) mmap$auto(0x8000000000000000, 0xffffffff, 0x4000000000df, 0x40eb1, 0xffffffffffffffff, 0x300000000000) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/can/rcvlist_sff\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000140)=""/103, 0x67) r3 = getsockopt$auto(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r4 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) mmap$auto(0x4, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x40002, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) syz_clone3(&(0x7f0000000200)={0x1e2905180, 0x0, 0x0, 0x0, {0xe}, 0x0, 0x0, 0x0, 0x0, 0x0, {r3}}, 0x58) 9.557500516s ago: executing program 5 (id=2036): close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000040)={0x2, 0x179, [{0x40000010, 0x400, 0x9}]}) 9.365500406s ago: executing program 5 (id=2038): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) recvmmsg$auto(r0, &(0x7f00000000c0)={{&(0x7f0000000380), 0x80, 0x0, 0x2, &(0x7f0000000080), 0x8bed, 0x3}, 0x765}, 0xfffffffa, 0xc, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x38000, &(0x7f0000000100)={0x0, 0xc4}, 0x4, 0x0, 0x2, 0x9}, 0xcad}, 0x6387c6c6, 0x1) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r0, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000002}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xe8, 0x0, 0x400, 0x70bd28, 0x25dfdbff, {}, "ac52032e03e113bdf92f9dbfa6e4be8bae3591b4882c68acdcca9b44b67dd3227a33122cd025322efd0d6ce8102cc0279b0cc3b59ac732672338470186b0db210cdb7de4e1046dbb93b09dc9fdc9a009fd79e586504a49407ae44eacc39b93e4078e664a0890ad0b4dc18fef209e8930da2658d5c48b0306c5df1fca7da7c56bbc72b48972fb74bbde71eb5503717ddb023b3b10f9038612caf5fc4d4b90581c9e0b5c46cf8462899efeb573529c958c9ea14c39a81a7c41c7fdd7423e07babbf51663f04fd7a4260cc51ce9799f580daff0"}, 0xe8}, 0x1, 0x4002, 0x0, 0x44004}, 0x48000) 6.674457235s ago: executing program 4 (id=2043): unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4000000000db, 0x12, 0x400, 0x18002) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000040)='{\x00', 0xfff) io_uring_setup$auto(0x101, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) socket(0xf, 0x3, 0x2) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r4 = open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72) socket(0x2, 0x1, 0x0) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0xfffffffffffffffe, 0x3, 0xfff, 0x1, 0x948b, 0x403, 0x95b4da2d, 0xc, 0x6, 0x62, 0x7, 0x7, 0x6d3f, 0xa, 0x5, 0x5]}, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x4, 0x400008, 0x3, 0x9b72, r4, 0x8000) select$auto(0xe, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x6, 0x1, 0xfffffffffffffff7, 0x948b, 0x4, 0x15f4da06, 0x3, 0x3, 0x62, 0x80000021, 0x7, 0x6d3e, 0x7fff, 0x2, 0x6]}, 0x0) socket(0x1d, 0x2, 0x3) ioctl$auto_PROCMAP_QUERY(0xffffffffffffffff, 0xc0686611, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) sendfile$auto(r0, r2, &(0x7f0000000080)=0x7fffffffffffffff, 0x6) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vivid.0/video4linux/video30/dev_debug\x00', 0x129102, 0x0) 6.319082232s ago: executing program 3 (id=2046): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) unshare$auto(0x40000080) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x41c03, 0x0, 0x1, 0x0, 0xfffffffffffffffe, 0x9}, 0x8}, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x400) ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000080)) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000004c0), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_LINK_GET(r2, &(0x7f0000003e80)={0x0, 0x0, &(0x7f0000003e40)={&(0x7f0000003300)={0x1c, r1, 0x1, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0x8, 0x4, 0x0, 0x1, [@nested={0x4, 0x1}]}]}, 0x1c}}, 0x8040) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x80202, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x19) fchown$auto(0xffffffffffffffff, 0x0, 0x0) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) setresgid$auto(0x81, 0x800000a0, 0x8) setgroups$auto(0xc00000000, 0xfffffffffffffffc) setresuid$auto(0x0, 0x8, 0x8000) shmget$auto(0x8, 0x10563, 0x568d1af2) 5.596879195s ago: executing program 4 (id=2048): prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) socket(0x10, 0x4, 0xffffffc0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0x0, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x4000000000005, 0x6, 0x62, 0x8, 0x7, 0x1, 0xb, 0x100, 0x18]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r1, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) socket(0x10, 0x2, 0xffffffff) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x109500, 0x0) pread64$auto(r2, 0x0, 0x8, 0xffff) setresuid$auto(0x2, 0x7, 0x8080) socket(0x2b, 0x2, 0x20a) syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff) socket(0x2, 0x3, 0xa) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) r3 = socket(0x15, 0x5, 0x0) getsockopt$auto(r3, 0x114, 0x2721, 0xfffffffffffffffc, 0x0) 4.882586102s ago: executing program 3 (id=2049): close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) socket(0x11, 0x3, 0x9) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r1 = socket(0xa, 0x1, 0x84) io_uring_setup$auto(0x2, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0x8) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x10054) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x1d, 0x2, 0x4) r3 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r3, 0x29, 0x11, 0x0, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x0, 0x3, 0x0, 0xf90, 0xffffffff7fffffff) close_range$auto(0x2, r0, 0x4) unshare$auto(0x40000080) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv6/conf/veth0_to_bridge/regen_min_advance\x00', 0x701382, 0x0) r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/ip_local_port_range\x00', 0x20202, 0x0) sendfile$auto(r4, r5, 0x0, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) close_range$auto(r2, r1, 0x3) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x801, 0x100) connect$auto(0x3, &(0x7f0000000500)=@in={0x2, 0x0, @local}, 0x55) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) 4.35567024s ago: executing program 4 (id=2051): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r0 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x2446c0, 0x0) readv$auto(r0, &(0x7f0000003dc0)={0x0, 0x1}, 0x3) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/ptyq3\x00', 0x40001, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) ioctl$auto_TCFLSH2(r1, 0x540b, &(0x7f0000000040)="a8edae77fc32e1efe0b6e682333b753537d5625d23ba02bddfc280386f031a64ef3806175736a7feb89bc262820fe41391f5dae0d4127fac324effecd273ce0f6647e07d3a8d99d2ef169740de8723a13b97a5fc12630d65ff650086be37de43bea2d297423c14f1386ca4b0bbd7c3a261b92bf2ac") madvise$auto(0x0, 0xffffffffffff0001, 0x15) write$auto(0x3, 0x0, 0x100082) 4.262870373s ago: executing program 3 (id=2052): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) setsockopt$auto(0x3, 0x6, 0x100000000, 0xfffffffffffffffc, 0xa) socket(0x2, 0x801, 0x100) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x22100, 0x0) read$auto_check_wx_fops_(r0, &(0x7f0000000080)=""/228, 0xe4) mlockall$auto(0x5) mmap$auto(0x2, 0x40000a, 0x2bb, 0x14, 0x2, 0x3) syz_genetlink_get_family_id$auto_nlbl_mgmt(0x0, 0xffffffffffffffff) io_uring_setup$auto(0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0xa, 0x2, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2b, 0x1, 0x1) r2 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r3 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) r4 = socket(0x10, 0x2, 0xc) sendmsg$auto_TIPC_NL_BEARER_ENABLE(r1, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="01002dbd7000fddbdf25030000000c0001"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES8=r4, @ANYBLOB="18000000", @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x40000f0) write$auto(r3, &(0x7f0000000000)='-\x00', 0xfdef) unshare$auto(0x40000080) socket(0x28, 0x80000, 0x300) io_uring_setup$auto(0x6, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) 3.854937507s ago: executing program 4 (id=2054): close_range$auto(0x2, 0x8, 0x0) 3.599045375s ago: executing program 4 (id=2056): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) setpgid$auto(0x0, 0xffffffffffffffff) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/neigh/veth1_to_bridge/base_reachable_time\x00', 0x101202, 0x0) sendfile$auto(r1, r1, 0x0, 0x4) read$auto(r0, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) syz_clone(0x2360411, 0x0, 0x0, 0x0, 0x0, 0x0) 3.586572076s ago: executing program 5 (id=2057): unshare$auto(0x40000080) r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r1 = open(&(0x7f00000000c0)='./file0\x00', 0x40000, 0x31) fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d) r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x11, r2, 0x4, 0x0) ptrace$auto(0x9, r2, 0xfffffffffffffffa, 0x9) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'pim6reg1\x00'}) mmap$auto(0xf000, 0x1, 0x3ff, 0x12, r1, 0x0) openat$auto_dfs_sched_itmt_fops_itmt(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim4/udp_ports_open_only\x00', 0x2008c2, 0x0) writev$auto(0x3, &(0x7f0000004100)={0x0, 0xb}, 0x3ff) read$auto_ptdump_fops_(r1, &(0x7f00000005c0)=""/4096, 0x1000) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x8002, 0x2) mmap$auto(0x0, 0x9, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket$nl_generic(0x10, 0x3, 0x10) r3 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec18\x00', 0x0, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r3, 0xc05c6104, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/workqueue/nvme_tcp_wq/max_active\x00', 0x182b02, 0x0) sendfile$auto(r4, r4, 0x0, 0x3) close_range$auto(0x2, 0x8, 0x0) 3.455621025s ago: executing program 2 (id=2058): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) keyctl$auto_KEYCTL_CAPABILITIES(0x1f, 0xee01, 0xffffffffffffffff, 0x0, 0x8000000000000000) r1 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace_options\x00', 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, r1, 0x8400) ioperm$auto(0x7, 0x5ad2, 0x8) modify_ldt$auto(0x1, 0x0, 0x10) r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0) pread64$auto(r2, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400) socket(0x1e, 0x1, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) pwrite64$auto(0xffffffffffffffff, &(0x7f0000000180)='/sys/kernel/tracing/trace_options\x00', 0xa, 0x10000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) syz_genetlink_get_family_id$auto_ovs_vport(0xfffffffffffffffe, 0xffffffffffffffff) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/self/net/ip_vs_conn\x00', 0x0, 0x0) pread64$auto(r4, 0x0, 0x8, 0xffff) unshare$auto(0x40000080) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mincore$auto(0x1000, 0x6, 0x0) r5 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff) openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/filter\x00', 0x0, 0x0) sendmsg$auto_SEG6_CMD_SETHMAC(r0, &(0x7f0000001440)={0x0, 0xf0, &(0x7f0000000380)={&(0x7f0000000240)={0x34, r5, 0x6c5679fc7dece1a9, 0x70bd27, 0x25dfdbff, {0x1, 0x0, 0x3f}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x7}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x10001}, @SEG6_ATTR_SECRET={0x7, 0x4, "96e300"}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000014}, 0x400c810) 2.772499798s ago: executing program 3 (id=2059): mmap$auto(0xffffffffffffffff, 0x400008, 0x2000000000000df, 0x11, 0x2, 0x7fff) r0 = socket(0x23, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x6e) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) r1 = io_uring_setup$auto(0x1, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_STATUS322(0xffffffffffffffff, 0x806c4120, &(0x7f0000000100)={0x0, 0x6, 0x95d7, 0x7f, 0x3, 0x1, 0x9, 0x2, 0x0, 0x7, 0xb, 0x8, 0x100, 0x2, 0x3, 0x3ff, 0x400, 0x80000000, "0c1056e3480805f935e214e44f620fa9eba8238cacc3d9e6fc45cf541e509fc2457ae4ae"}) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, &(0x7f00000002c0)="f618deadf7e888b1ff8bff71", 0xc) write$auto(0x3, 0x0, 0xfffffdef) unshare$auto(0x40000080) r2 = creat$auto(&(0x7f0000000000)='++\x00', 0xfff6) r3 = pidfd_open$auto(0x1, 0x0) open_by_handle_at$auto(r3, 0x0, 0x1000) write$auto(r2, &(0x7f0000000040)='/dev/v4l-subdev7\x00', 0x5) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3b87, 0xa) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x1, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyd3\x00', 0x101e81, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TCFLSH2(r4, 0x5401, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r5 = openat$dir(0xffffffffffffff9c, 0x0, 0x381000, 0x100) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) writev$auto(r6, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3) mmap$auto(0xdc, 0x1, 0x8, 0xfffffffffffffffc, r1, 0xfffffffffffffc65) close_range$auto(r5, 0x8, 0x9) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0) 2.595342071s ago: executing program 4 (id=2060): r0 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/uprobe_events\x00', 0xc4040, 0x0) r1 = fcntl$auto_F_UNLCK(r0, 0x1000, 0x2) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r2 = socket(0xa, 0x5, 0x3b) connect$auto(0x3, &(0x7f0000000040)=@generic={0xa}, 0x59) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) getpid() clock_nanosleep$auto(0x9, 0x0, 0x0, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x400, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xf7, 0x1, 0x948f, 0x3, 0x15f4da0a, 0x5, 0x1000, 0x62, 0x4000008000001f, 0x80007, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0x2, 0x9b72, 0x2, 0x8000) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x1c8300, 0x0) ioctl$auto(r3, 0x8004510b, 0x3) ioctl$auto_VHOST_SET_FEATURES2(0xffffffffffffffff, 0x4008af00, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) mmap$auto(0x8000, 0x20009, 0x8, 0x1000eb1, r2, 0x48000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x84c, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004) mmap$auto(0x0, 0x71, 0x10000, 0x9b7d, r1, 0x13) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) madvise$auto(0xfffffffffffffffd, 0x200007, 0x16) 2.410575926s ago: executing program 5 (id=2061): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) fanotify_init$auto(0x6a1, 0x2000000000002) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/bus/pci/drivers/ci_hdrc_pci/unbind\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000140)=""/122, 0x7a) mmap$auto(0x0, 0x810004, 0x2, 0x8000000008011, 0x3, 0x8000) open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000540), r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'netdevsim0\x00'}) sendmsg$auto_NET_SHAPER_CMD_DELETE(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44000}, 0xc050) 1.847875893s ago: executing program 5 (id=2062): mmap$auto(0xffffffffffffffff, 0x400008, 0x2000000000000df, 0x11, 0x2, 0x7fff) r0 = socket(0x23, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x6e) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) r1 = io_uring_setup$auto(0x1, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_STATUS322(0xffffffffffffffff, 0x806c4120, &(0x7f0000000100)={0x0, 0x6, 0x95d7, 0x7f, 0x3, 0x1, 0x9, 0x2, 0x0, 0x7, 0xb, 0x8, 0x100, 0x2, 0x3, 0x3ff, 0x400, 0x80000000, "0c1056e3480805f935e214e44f620fa9eba8238cacc3d9e6fc45cf541e509fc2457ae4ae"}) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, &(0x7f00000002c0)="f618deadf7e888b1ff8bff71", 0xc) write$auto(0x3, 0x0, 0xfffffdef) unshare$auto(0x40000080) r2 = creat$auto(&(0x7f0000000000)='++\x00', 0xfff6) r3 = pidfd_open$auto(0x1, 0x0) open_by_handle_at$auto(r3, 0x0, 0x1000) write$auto(r2, &(0x7f0000000040)='/dev/v4l-subdev7\x00', 0x5) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3b87, 0xa) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x1, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyd3\x00', 0x101e81, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TCFLSH2(r4, 0x5401, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) r5 = openat$dir(0xffffffffffffff9c, 0x0, 0x381000, 0x100) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) writev$auto(r6, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3) mmap$auto(0xdc, 0x1, 0x8, 0xfffffffffffffffc, r1, 0xfffffffffffffc65) close_range$auto(r5, 0x8, 0x9) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0) 1.530411964s ago: executing program 3 (id=2063): mmap$auto(0x0, 0x400008, 0xdb, 0x9b72, 0xffffffffffffffff, 0x0) (async) mmap$auto(0x0, 0x400008, 0xdb, 0x9b72, 0xffffffffffffffff, 0x0) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000) r0 = clone3$auto(&(0x7f0000000080)={0x1e60832d, 0x9, 0xbc, 0x0, 0x7, 0x4, 0x4, 0x5, 0x0, 0xfff, 0x7}, 0x6) prctl$auto_PR_SET_MM_START_DATA(0xfa52, 0x3, r0, 0x0, 0x4) (async) r1 = prctl$auto_PR_SET_MM_START_DATA(0xfa52, 0x3, r0, 0x0, 0x4) getsockopt$auto_SO_ACCEPTCONN(r1, 0xa, 0x1e, &(0x7f0000000000)='^:-:\x00', &(0x7f0000000040)=0x4) munmap$auto(0x8000, 0xffffffff) 1.347207519s ago: executing program 2 (id=2064): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) fanotify_init$auto(0x6a1, 0x2000000000002) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/bus/pci/drivers/ci_hdrc_pci/unbind\x00', 0x0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000140)=""/122, 0x7a) mmap$auto(0x0, 0x810004, 0x2, 0x8000000008011, 0x3, 0x8000) open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000540), r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'netdevsim0\x00'}) sendmsg$auto_NET_SHAPER_CMD_DELETE(r1, 0x0, 0xc050) 906.990885ms ago: executing program 3 (id=2065): socket(0x2, 0x5, 0x0) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="13002cbd7000dddbdf250200000008000300", @ANYRES32=r2, @ANYBLOB="0800400003000001e0ed03e23a47ed0ea7c7870d3836218dbcfd1f6ab13768413a884924eb26fc06eaf6a40293a093decf79a12351806820f7db4820bb933d2ee01995ddf8dbf977793b637c84594515328ce1d2fe38c89a9b09fd1ad69360b46bd6adc49458402d7475b3bd93480241d4403e6a842d3d26d61c05755467b92fe28243e1f91aab414087b0d28fe636baab3d9d4042636671b11275d2e6c0b8104c3086692163d6d85cfa17958ba56fd5ab811b2a89c0894fdfbda55ab3888cbb41c340e988f6810d15d3dc097d87af51dcdcf11e7876662d29921300528c471553535352e73fe1"], 0x24}, 0x1, 0x0, 0x0, 0x2400c884}, 0x20040894) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r3, &(0x7f0000000080)='7\x00\\\xa0\x04|3\x1ck\x00'/24, 0x5) r4 = openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f00000000c0), 0x70440, 0x0) sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f00000004c0)="84c0ab0bfa88af9c6adee4776dfcf8a68bff6d711250f84470ce722e07c851a8d7eaea9a1603d57880527cbcc00ac5820120080b282c3c98cea3cf78559ba20936652f9b8ae0ded125b235c8ff05891bb34d8354d208abcfb2e7acacf03a7c51ba7472210ce4a347f3227baabf80425dc66242fdc98946a1e558ad9e5894b25097a70601535f7b3194faddf4d61c949411be6f388b8b130f65e4de19b819524c33aaf6674e8e38c585e6d8948168ac20c8d6990b58758c7f5d74b489684e6212733b26184d248356c671035b8562d1804bf8bf475bc3984f1362f5e21993f5fb8061b8f5e699214baf445ff7fd84c7eac0922922b8c6989cdd2fdad991374909fb9a3715b3f4ab08b09356184c6e28aa3d6db850e36ddc6465591bdc2d6cf0539b2d5d527363d83b9bad5fe52a4fe6887250989c2e9f1026279d9aa6504d79e9d558e177c5d172360fa59a07545b5183f73a476ae377ee8699adc06efe21934619d3b8348b3a49e658fc0b97d2ec4066485f7606c2a0c273c19445cc2a27a03a390f82fd9106b827ba7a36a57a510c2b8bfb238a5b9975adbd75cddc2c9eb72f9d0ed945cbec3f7fe513a87372f946c6c2e66889b051cf0d05c4515dc1bf8e823ccd4cee7312a56e02a155aea31490a39a240db5fe84de2e9363b145beecd48293c1cba60813d4e57f9acb1745f06b52f598f7449a556fcdcdca6fe9b886d4a7a765ecdcaa4482d9601e1863cf12445fddd8a4b49c624688e4a1b1ce8fb29b523d506d0bdd2b832fb7b8ac021c0feff50d3d15c2531a3d48736bf149a4162b6b3b6d48678ecced91992ecd79dbcf2dd62b048d632e7bddf210e658415d13ccd544a24541f3931459647e242d6af7c81e468645ca84847fbab4ca2a13602395185032f98d09971843c53d5106d6f0aaa25b411aab2acd9f86cb89f28c401c5b4291bb96ad6b3a6b9b60f33dcde1b6ba6a7d2162ab4d77bbf26791bf99aeee4b013b3508756d5398c22f816e10dd041d55e57fcb1578bab38ac7af3fae435565274aa026611579b57229705788615381e54102f957321c2339c95eb38331983d9ffceb0045d2d31bf4b3a65ff05164a69d7d4171455236c4df4d15a781b13225b89a03f0f2d920b80df9e7fc37306033e74bfc98c9ce767b9691ad9bc595110a6f57c632fc5c7566ed8dd362eecd6c00ebfd648f002e2669cbc073075fb025d9297163194058da838d8566fea4af86bd0942fcf329aecff779b3805a529a5b4b634ca3d8b82d5dc01b6714b0556346ac0869e9cf272d1abd40e160e4a25450da7ffb3cb9e07c9c04ae2b659047e891a0527dd8267a255ac0054820613cee74fcd33e3556eee6975d13ee73299286ef559360b23bca1530c65a57754d99387e3e5664677d5c1b30e26d04fd55b9ff4f81f1226e2b81fa8b2773e7f74c842619831ff31a48c543719b094c72d1267d775eff856575b096a1e121b8050321b0e0e7e36bc930e558f7a4c780a3c34b9541d5bfdca8b9ee76b74f4c71ab2cbb2304e2c6a916a3a0dda25bfa305cc4e0b6016300074e0acd51cb4233b8fcbc1b75a113a851ea413a45b000c9ead9d6d771f584b7021618b6a39e63682f37358d574bd8fa5ab008d05531ffaf325f8377618a5158a162652cd36ba53486585d546c8fb1e775b2505df31aab576eaed9c0728127058388a0e85b5a8f149584a6ee5ab567e4f5c219190d39b325836d4ecc34b79342598300db72665112de19868ab61b07a6c5594045612d738c98a87b2489e32099977f13a72abbb7adf6f78995d65a9112acb91c97bb6626876625c42e3ae184004055c6953dfe63039b0c0c7f14c8799a348edae3042f6410a22716e125cd35cc6236dea89f0b816c76c05106a1fa692060020ace682b2a78bcc9338e0ea5e924c9a36ed5bc00dc2558e4e0f678f3a05feb0894dca16dc0f6da17ed0e7f1c3e91e9c230937109904ede925a880997ad1fbaf209f1d65cac5d4f2b6e65ee8b3323f7f279d646d0c8915ccd2419886cf9a91ed45ec2a13a593207e9472ac06c7aaf4c05b37e845ce56cca750e8ae54bab99689dc8f8c3dee8157b9429567418bfaae1e8ecc8e905b367a5debfe8287f1ae0e6323c2e383381b8268e6eead06223718f95816d5f1f6e55ec7c4bcf7563621bd6515f8f442f6ae312873e722776ac0eebd33441f17c6b6fa7c861b3a337b4c2369643ac2d9b125276c49e926e695cd94d7058ef13ca8abb86f0c04f5f64239a33df93fad982788669cc79515522eb8c8e8b8405598f9f126f084d5aa892c4dd3e1168b147580929982a0a5e6ed7f326c461b82b7d828e78fbdd389dee66ffa95a19a7888a16d010f1a2ddf0cadf568ac874e17fa925a81d087ce6926ad152dc3a9b935779a2cbf9ee21adda1aeb6c01f728a2b08de36e112fc404bdccd415cc9a8d40f82f8426d045a14c7f806a02adb081536b972646174cb02280a14c13195ae9b941fae8b4e5c6295521727ad8bc424c5e1099de67081183e3da7982499923dff275880a76dc04c63cbd519d69e6a37639baead344ff67b97599278f5ba2d104ec427ba5a1efddf595956a377a0e453671b6137eadf16bfd4e55ae761022328db5ba1d875722640215493280feba194686beb6902f6f7df36150abe7359846ab223f6b801705373437883b2c93043205a7a5b0ab5ca535a4aa1f26e77228b49f44bc5be193319f12be5e6a243261e039c247940c8247d143a87eeb3400b68dd3424aabd49e64e63c0bf53754f51b7fa870505756c823dece1726cebb4b58098c05431d4dda48281cd284d90a65ff8ecb20b102bfd20562a02a56162e8abda0b97229c743839642bb16100cd46f0a0cd4c00012c37911b2eb42de8d6c23f790a10eff4af2116ef159aea347f432969fd65e77d26e77415112502209fd37d1836c6ffc99d2e8bf94910feab2e6393c8abecdd5472f0c47ce9cdebd15851760418264aae99537d37fdae71fb7d2e79fb7b3fb14da8bdc439fafd28bac949bd40c79d6cbee207342f7bc6589c758f6206b7aed14bcd7f0bfce99e7dac0f0efc99b76b2d440c3fdd269d436198983c0bf980d8f5887e59d192160611ec28dbf664174349bc90c92eb144b95fea1d6c08f4211d89cda4ae60e6d3396b388fc31342de859b7a9617f604ee92d85fdc1e110b9c2b783c6acc6d62561b9c1ead8b4c0183553abc7d3d0c4a73f91f4366db8523282391b4f70608c13294d81e15eb1a9a5a02c39a3ddbc673260c55dcaf96e1a2032529ce3b8044032f6167a785dc0cc23e0ce8dfcf83ebde39d91d08d0caae752d6d80623e0ea3570b611b036c50094264400c7befc14d27024be5138ed415aac9f92fe88509d495762b561a2016c0a7faa28841f5168e009dc6d2329157b3f4b4534c09e3220dbfc6d568d1822fac82558bc68b95dc6cdb4642e51113afe35000d2cc553eeb469d0b829e58f99a5f34d4dc8addfde07011b37a9949ec048d9adc833ea2cf87c10df759b41e5d76f073a6551431df1501e42a4bcd2e01b016439d48e0a620506b504f808536c70e996affe7e126459dd66e8e4c023e51d3a95f9db7ce7b8491ba1084fbe7c283624452575cce5efeed447c91f1f85d5d679305216f0838f6b019a3649879418155177a7257670e9bd002d5c057aef85dd5c4e974491d14dcffda05d0df4a8ff17ca4ba1c5009f4aa7772df086c61e85a6d00c69e645128a370dc7bdb3024bbd5be4d2fcbb9fdcf199bf8fa20606fd56d4970be1de21fbf29692b9f25afe762160e7ffabba42ce9387f1b46c0b570873515f8586f22e0498c5a5946a932243d6299a3fb765b8165a8bc23443b8d8e1b777385ca64962a338bb21a7b1eec255283a9554528393210aa03b74cd44fe6299dcf7db8127790d1a0db01fb72a7f7cc2cfe49cdaeba9cecd60d7708a3b1292d62d2f81a43f5605f80273fec64a0383b0a5837b092e7745f44a352fec9e4e5f53e9c56756fe11a630d6fc427a60d2a781070ba618abcd99e50ecb4f8363cf8555fa260b395ea83c1cb093268e15c665c8399d7584ebef59a41d94a4e0ee012a16b76afccddae1500fab338a563e08a87c365076ad951fe8ef479f40288310cc452c7604044e578395f5daf285b8807f5a16a1baebb06c1df330537657842b8b82cb483ad583c166ae7dbc626a7ebc8ecd73e685ca87baec01ac9816b828e45a31188347df49634067f8d51997f8197ae22382b806cfcd82f4a09c2b831e12eb6ba47ae19a864431532a7b37e123d1168594a41c333e90326be1da6583e67b91b6c104e5aa07b0fdbd81c9a729b320a12c7c207ccf6dec35e400038f3670dea244f87e31433c18a33e715b14a488df3336c2f000cca8412e9881f43fe73732b3c2826c447ba6b6309eecc4d0488cb73cf53e91d609b8710d96f9177b0b4f39ac8202ce975001d3a7a3bfbf9cf49e6b2a603afd90719ac0d13ee4f2fda976c3dd7ef567a28c9d19af54f0e1d58aaf1728e297a31d2a7bbf4140952237f700a7055cb66538ff7d81b9ecf1d1b1834b2d2aa34d17eaffd6230b0d26aaade9319c42349e804f6c0f9944230e7455c9bb74a2b516ea80037f2655da278877209df56f4f7a2f639627cabf18875a8f858194334c52a3269cdd55d8b945dfe842392b4568e51a2b0f614328f8107645f8a52a52ba5101bc4a621e0b887fb50c5f0194d71964d8c7c6311025f105a7b57df8c507ddd94dd0b5d75e234379e52859a3ea78102e9d722846b55c3c48a0ac6a67b3f582a71f462f25758390765d4e0b5a1f8e6924c036155fbe690f09f8ddc60ed2e951067ed8c5c746c8f2d8eeac3b42febe1326a2548e8341f0a73b276c5d7c1e45e58a9c804e5a37febe1f40653959346c2309a2dd7bd2b8dbf1d4bcb14cbd656f3ffa2be924eed725d78096b1a0857644e20d49e5c5e12633b741b001ebf1d9187885142de48cf8898bc24f9dd8d988bace2b1befcf5a02bb4bb5190e2fa01c4f86f0341a130245bef06cfdb214b00d17ff948d79aa5e43035575a74a66ffc7f9b84e6ae5b2c94e44d590262f6ddd005c6b3e99e106aea385045d994c05797c77fa9b1dde9693b305c58e312ad38fe431ab57bbe757fa09b14ebfb0c74b2bba700db44bd1b1b978203e16ad2493e6f86ab6878dc94ee02233055a1e86022cfc4b0a89a18fa30195a26a13982e4da4b016e2cf37c215de6a85394ded93341a76358004276efcd0b1d9719c7b0ea3902fe0c751ce1827048bd5eb82f089f2f0962aabb4dfac96eddf4ed50850c7008669e7720d927bebf7967ae4961d8a500bb0d67fdf9dbb8085b26518a93e5a78afcf580ee027a0cbfd3b4c7a6d98d94df0026b517248456a8e9b43516dec100ed7a67906ec29339894bb32afc11e81fd42dab065167f8d50ce6a50290023907b0341fc97399ed7f54c0e72534ae5efeae280b57255bf9c602c037ead8cd5b9eafae9cbf129ffb3066152cc8c201db6ab68c230844e7e57c4acd2c2f72da7f3007770235528e05a33f4e17131b45ba6cabd38b3bbb743d72c6decabb2bb667d88970315b0e25067c0b42686a811c8152713ab8df030a0ed997301aeff1f7646361f9386631e764fb4b12ced221249e5755785b288e698fe3d9d881c4c48d1fce3117eff4f6bebf40c5457ee57cee616d6d370baeef0e5574332c08952d34258cd4ecac4fd21332b3ec17559a03f159cd796f4b4e2ab6076fb02fcfa6cbad3d133815d2574f450c417236a8d170d1f39ce7347e57331d64d", 0x6, &(0x7f0000000100)={&(0x7f0000000300)="077386bcbdaffc446e76022192da020f82551bba81ac668263edd59935a2e7bec9739c4ee18d458ef763e84e33c69a055a074a6fbc264413b64b2042398ad23266b980c1c511c828b508b028389e770df2c8712971c00e93238138b70157e3c984ca1aa3f255984a86cff3f0094c086bf7050efeb1cdc1e7fa74b9ec14d93b9ba50b4556e5ab18f8e7a2244f6dafe7c172f18fa03baef028082dd26b04d036dccb6ec13b3a15b0e7df5fd08e766acfd328e05d8889f0fa8ef6a1f7c102f0", 0x5}, 0x7, &(0x7f00000014c0)="fad73f66777343834bc8248f30fbf09ae7f61c4eb92c0776bc06b1c4877b86d8e87d5c43c5c2c9ac08da53a1e6b2f7713f9667d520bf385bb9f305adc145b9e99f2ad1d0c3cab84a059c5a6a7cc920dc1acad0357abe51ad2a9aa94d32809f3a5007cd7b35afcbdeeec12ad3b01c93a639bc1fd7a9dd0081505be55adda8727ed004570cd0744169e5d8449e18f71f58da285b2ff31034c40962109703df31f38c02e747cdac04808cf9b1f1f976894da07dde05f366e0", 0x15, 0x307}, 0x20}, 0x9, 0x2) mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x20e9, 0x103) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mlockall$auto(0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) tee$auto(0x2000000000000, 0x3, 0x402, 0xd) mq_timedsend$auto(0xffffffffffffffff, 0x0, 0x1, 0x8, 0x0) r5 = socket(0x15, 0x5, 0x0) getsockopt$auto(r5, 0x114, 0x271c, 0xfffffffffffffffc, 0x0) 682.99525ms ago: executing program 2 (id=2066): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x802, 0x0) (async) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x802, 0x0) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000780), 0x20000, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x4}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"}) ioctl$auto_SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_STOP(r0, 0x54a1, 0x0) socket(0xa, 0x1, 0x100) (async) socket(0xa, 0x1, 0x100) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/lru_gen_full\x00', 0x2000, 0x0) (async) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/lru_gen_full\x00', 0x2000, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x381000, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x1, 0xd, 0x6, 0x948b, 0x1, 0x15f4da0a, 0x114c655, 0x3, 0x62, 0x80000001, 0x7, 0x1c5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) (async) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x1, 0xd, 0x6, 0x948b, 0x1, 0x15f4da0a, 0x114c655, 0x3, 0x62, 0x80000001, 0x7, 0x1c5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) mmap$auto(0x0, 0x400000000000, 0xffffffff, 0x9b72, 0x2, 0xd655) r2 = socket(0x15, 0x800, 0x84) listen$auto(r2, 0x3) (async) listen$auto(r2, 0x3) getsockopt$auto(r2, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) (async) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer\x00', 0x109000, 0x0) mmap$auto(0x4, 0x400008, 0x800e2, 0x9b7c, 0x2, 0x8000) read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x4d) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, 0x0) (async) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, 0x0) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[], 0x14}, 0x1, 0x68, 0x0, 0x4040000}, 0x20000800) (async) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[], 0x14}, 0x1, 0x68, 0x0, 0x4040000}, 0x20000800) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) gettid() 492.060189ms ago: executing program 2 (id=2067): mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0xfffffffffffffffb) socket(0x2, 0x1, 0x800106) setsockopt$auto(0x3, 0x6, 0x100000000, 0xfffffffffffffffc, 0xa) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/default/forwarding\x00', 0x141241, 0x0) (async) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/default/forwarding\x00', 0x141241, 0x0) pwrite64$auto(r0, &(0x7f0000000000)='./cgroup/memory.pressure\x00', 0x6bc, 0x5) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/team0/bc_forwarding\x00', 0x2102, 0x0) (async) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/team0/bc_forwarding\x00', 0x2102, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv6/conf/vlan0/max_desync_factor\x00', 0x20202, 0x0) (async) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv6/conf/vlan0/max_desync_factor\x00', 0x20202, 0x0) sendfile$auto(r1, r2, 0x0, 0x1) socket$nl_generic(0x10, 0x3, 0x10) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), r3) (async) r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), r3) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="036c25bd04ce8f0025b6f26a6239"], 0x14}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890) (async) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="036c25bd04ce8f0025b6f26a6239"], 0x14}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890) readahead$auto(r0, 0x4, 0x0) sysfs$auto(0x3, 0x401, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) setgroups$auto(0xc00000000, 0xfffffffffffffffc) (async) setgroups$auto(0xc00000000, 0xfffffffffffffffc) setresgid$auto(0x81, 0x800000a0, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) keyctl$auto(0x5, 0xffffeffffffffffe, 0x107, 0x803, 0x800000000000c) setresuid$auto(0x2, 0x7, 0x8080) keyctl$auto(0x6, 0xfffffbfffffffffe, 0x2, 0x32, 0xfff) madvise$auto(0x0, 0x8000000000000000, 0x15) madvise$auto(0x0, 0x2000000080000001, 0x3) semget$auto(0x0, 0x13c, 0x1ff) recvmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x1c, &(0x7f00000000c0)={0x0, 0x8001}, 0x400000000000002, 0x0, 0x5, 0xfff}}, 0x7, 0x5, 0x0) semtimedop$auto(0x0, &(0x7f0000000140)={0x7, 0x81, 0x70}, 0x1f4, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0xa, 0x0) (async) sysfs$auto(0x2, 0xa, 0x0) fsopen$auto(0x0, 0x8) (async) fsopen$auto(0x0, 0x8) 391.899935ms ago: executing program 5 (id=2068): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) readv$auto(0x3, &(0x7f0000000040)={0x0, 0x36a}, 0x6) r0 = mq_open$auto(&(0x7f00000000c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\xbb\x192\x1c4\x86\xc0\xc1-\xd5\x10\xc3\xfc*[8\x89h\xc5\xba\xff\xc8u5r1, 0x0, 0x7fff, 0x7f, 0xc13, 0x9}, 0x7, 0x2, 0x5, 0x0, @inferred, @raw=0x8, 0x5, 0x0, &(0x7f0000000000)="0e1bad137f0bf2e3dab89c171b2c810f63c4f0", &(0x7f0000000180)="5ca1190dd76dbe52b744c55b11d17fd5f0358cc8c5867fa4cbff5319c34e297f326154076b70f714491cbca8395fbf90a047d1a509f67446b5f187c9118517934f3ddea6d6dd8d459197567c17"}) setfsuid$auto(r2) fchown$auto(0xffffffffffffffff, 0xee00, 0x0) socket$nl_generic(0x10, 0x3, 0x10) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51) prctl$auto(0x35, 0x0, 0x4000000008, 0x0, 0x0) socket(0xf, 0x3, 0x2) socket(0x1e, 0x1, 0x0) ioctl$auto_PROCMAP_QUERY(0xffffffffffffffff, 0xc0686611, &(0x7f0000000340)={0x8000000000000004, 0x5, 0xfffffffffffffffb, 0x5103, 0x6, 0xa, 0x2, 0x5, 0x10000000000062, 0x1fd, 0xe223, 0x80000000, 0x200000c, 0x7, 0xfffffffffffffff7}) 158.935038ms ago: executing program 2 (id=2069): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async) writev$auto(0xffffffffffffffff, 0x0, 0x8) (async) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\r\x05\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\t\x00\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4UQ;\xcf\xf6\xb9\x03\xaf\xec\x953.O\xab\"4\x8a\xbbZ`#\x8c\xed<\a@Y8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x8001) (async) mmap$auto(0x7b925ee5, 0x20000000003, 0x0, 0x18, 0x2, 0x5) (async) madvise$auto(0x0, 0x2003f0, 0x15) (async) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/rpc/use-gss-proxy\x00', 0x0, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000000)=""/220, 0xdc) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) (async) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) mount$auto(&(0x7f0000000180)='pimreg0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='#\x00', 0x5, &(0x7f0000000240)='<') (async) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth0\x00'}) (async) close_range$auto(0x0, 0xffffffffffffffff, 0x2) (async) socket(0xa, 0x2, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) r4 = socket(0x18, 0x5, 0x1) connect$auto(r4, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) (async) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async) bpf$auto_BPF_MAP_DELETE_BATCH(0x1b, &(0x7f0000000280)=@bpf_attr_11={0x0, 0x0, 0xffff, 0xb24, 0x8001, 0x0, 0x1, r2}, 0x5) (async) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) getpid() openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) write$auto(0x3, 0x0, 0xb4d3) 0s ago: executing program 2 (id=2070): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) socket(0xa, 0x3, 0x3b) move_pages$auto(0x1, 0xf55, 0x0, 0x0, 0x0, 0x8000000000000000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1, 0x101}, 0x8}, 0xa, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x102, 0x0, 0xfffffffffffffffd) socket(0x1d, 0x2, 0x6) socket(0x22, 0x3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/addr_prefs\x00', 0x102, 0x0) writev$auto(r1, &(0x7f0000000080)={&(0x7f0000000040), 0x6}, 0x3) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) mmap$auto(0xfffffffffffffff8, 0xef3f, 0x0, 0x17, r2, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r3, 0x4b47, 0x1) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/usbmon6\x00', 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r4 = socket(0x2, 0x5, 0x0) connect$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55) sendto$auto(0x3, 0x0, 0x2000f, 0x13f, &(0x7f0000000000)=@in={0x2, 0x4e22, @loopback}, 0x1c) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000700), 0xffffffffffffffff) sendmsg$auto_WG_CMD_SET_DEVICE(r5, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000180)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="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"/287], 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'veth1_macvtap\x00'}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'vlan0\x00'}) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) kernel console output (not intermixed with test programs): 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 443.140255][T11401] RSP: 002b:00007fb75175a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 443.140279][T11401] RAX: ffffffffffffffda RBX: 00007fb750bb6080 RCX: 00007fb75098e929 [ 443.140296][T11401] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 443.140311][T11401] RBP: 00007fb75175a090 R08: 0000000000000000 R09: 0000000000000000 [ 443.140327][T11401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 443.140342][T11401] R13: 0000000000000000 R14: 00007fb750bb6080 R15: 00007ffdd4677d68 [ 443.140375][T11401] [ 444.254514][T11406] FAULT_INJECTION: forcing a failure. [ 444.254514][T11406] name fail_futex, interval 1, probability 0, space 0, times 0 [ 444.355360][T11406] CPU: 1 UID: 0 PID: 11406 Comm: syz.2.1140 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 444.355402][T11406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 444.355419][T11406] Call Trace: [ 444.355428][T11406] [ 444.355438][T11406] dump_stack_lvl+0x16c/0x1f0 [ 444.355486][T11406] should_fail_ex+0x512/0x640 [ 444.355534][T11406] ? kasan_save_stack+0x42/0x60 [ 444.355581][T11406] get_futex_key+0x1d0/0x1540 [ 444.355618][T11406] ? __pfx_get_futex_key+0x10/0x10 [ 444.355665][T11406] futex_wake+0xea/0x530 [ 444.355714][T11406] ? __pfx_futex_wake+0x10/0x10 [ 444.355767][T11406] ? rcu_is_watching+0x12/0xc0 [ 444.355801][T11406] do_futex+0x1e3/0x350 [ 444.355836][T11406] ? __pfx_do_futex+0x10/0x10 [ 444.355870][T11406] ? putname+0x154/0x1a0 [ 444.355904][T11406] __x64_sys_futex+0x1e0/0x4c0 [ 444.355945][T11406] ? __pfx___x64_sys_futex+0x10/0x10 [ 444.355986][T11406] ? getname_flags.part.0+0x1c5/0x550 [ 444.356032][T11406] do_syscall_64+0xcd/0x490 [ 444.356080][T11406] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 444.356108][T11406] RIP: 0033:0x7f630e38e929 [ 444.356130][T11406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 444.356158][T11406] RSP: 002b:00007f630f2420e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 444.356185][T11406] RAX: ffffffffffffffda RBX: 00007f630e5b5fa8 RCX: 00007f630e38e929 [ 444.356203][T11406] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f630e5b5fac [ 444.356220][T11406] RBP: 00007f630e5b5fa0 R08: 00007f630f243000 R09: 0000000000000000 [ 444.356237][T11406] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f630e5b5fac [ 444.356253][T11406] R13: 0000000000000000 R14: 00007ffd77504f70 R15: 00007ffd77505058 [ 444.356287][T11406] [ 445.064533][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.071434][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 447.496514][T11453] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input128 [ 447.506944][T11453] FAULT_INJECTION: forcing a failure. [ 447.506944][T11453] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 447.589672][T11453] CPU: 1 UID: 0 PID: 11453 Comm: syz.5.1152 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 447.589709][T11453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 447.589730][T11453] Call Trace: [ 447.589739][T11453] [ 447.589748][T11453] dump_stack_lvl+0x16c/0x1f0 [ 447.589796][T11453] should_fail_ex+0x512/0x640 [ 447.589841][T11453] _copy_from_user+0x2e/0xd0 [ 447.589886][T11453] input_event_from_user+0xb9/0x290 [ 447.589927][T11453] ? __pfx_input_event_from_user+0x10/0x10 [ 447.589967][T11453] ? __pfx___might_resched+0x10/0x10 [ 447.589994][T11453] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 447.590033][T11453] ? input_event+0x98/0xb0 [ 447.590071][T11453] uinput_write+0xbe7/0xff0 [ 447.590121][T11453] ? __pfx_uinput_write+0x10/0x10 [ 447.590168][T11453] ? bpf_lsm_file_permission+0x9/0x10 [ 447.590195][T11453] ? security_file_permission+0x71/0x210 [ 447.590230][T11453] ? rw_verify_area+0xcf/0x680 [ 447.590266][T11453] ? __pfx_uinput_write+0x10/0x10 [ 447.590306][T11453] vfs_writev+0x5df/0xde0 [ 447.590352][T11453] ? __pfx_vfs_writev+0x10/0x10 [ 447.590415][T11453] ? __fget_files+0x20e/0x3c0 [ 447.590450][T11453] ? __fget_files+0x120/0x3c0 [ 447.590494][T11453] ? do_writev+0x28c/0x340 [ 447.590528][T11453] do_writev+0x28c/0x340 [ 447.590564][T11453] ? __pfx_do_writev+0x10/0x10 [ 447.590610][T11453] do_syscall_64+0xcd/0x490 [ 447.590656][T11453] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 447.590684][T11453] RIP: 0033:0x7f6b67b8e929 [ 447.590705][T11453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 447.590738][T11453] RSP: 002b:00007f6b68ace038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 447.590763][T11453] RAX: ffffffffffffffda RBX: 00007f6b67db5fa0 RCX: 00007f6b67b8e929 [ 447.590780][T11453] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 447.590795][T11453] RBP: 00007f6b68ace090 R08: 0000000000000000 R09: 0000000000000000 [ 447.590810][T11453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 447.590824][T11453] R13: 0000000000000000 R14: 00007f6b67db5fa0 R15: 00007fffa97c96c8 [ 447.590859][T11453] [ 447.816345][ C1] vkms_vblank_simulate: vblank timer overrun [ 452.175802][T11489] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input130 [ 452.356061][T11490] FAULT_INJECTION: forcing a failure. [ 452.356061][T11490] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 452.369519][T11490] CPU: 1 UID: 0 PID: 11490 Comm: syz.5.1161 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 452.369563][T11490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 452.369575][T11490] Call Trace: [ 452.369581][T11490] [ 452.369588][T11490] dump_stack_lvl+0x16c/0x1f0 [ 452.369623][T11490] should_fail_ex+0x512/0x640 [ 452.369657][T11490] _copy_from_user+0x2e/0xd0 [ 452.369689][T11490] input_event_from_user+0xb9/0x290 [ 452.369720][T11490] ? __pfx_input_event_from_user+0x10/0x10 [ 452.369752][T11490] ? __pfx___might_resched+0x10/0x10 [ 452.369775][T11490] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 452.369821][T11490] ? input_event+0x98/0xb0 [ 452.369852][T11490] uinput_write+0xbe7/0xff0 [ 452.369893][T11490] ? __pfx_uinput_write+0x10/0x10 [ 452.369929][T11490] ? bpf_lsm_file_permission+0x9/0x10 [ 452.369952][T11490] ? security_file_permission+0x71/0x210 [ 452.369982][T11490] ? rw_verify_area+0xcf/0x680 [ 452.370012][T11490] ? __pfx_uinput_write+0x10/0x10 [ 452.370045][T11490] vfs_writev+0x5df/0xde0 [ 452.370087][T11490] ? __pfx_vfs_writev+0x10/0x10 [ 452.370134][T11490] ? __fget_files+0x20e/0x3c0 [ 452.370163][T11490] ? __fget_files+0x120/0x3c0 [ 452.370198][T11490] ? do_writev+0x28c/0x340 [ 452.370224][T11490] do_writev+0x28c/0x340 [ 452.370253][T11490] ? __pfx_do_writev+0x10/0x10 [ 452.370295][T11490] do_syscall_64+0xcd/0x490 [ 452.370331][T11490] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 452.370354][T11490] RIP: 0033:0x7f6b67b8e929 [ 452.370387][T11490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 452.370409][T11490] RSP: 002b:00007f6b68aad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 452.370430][T11490] RAX: ffffffffffffffda RBX: 00007f6b67db6080 RCX: 00007f6b67b8e929 [ 452.370444][T11490] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 452.370458][T11490] RBP: 00007f6b68aad090 R08: 0000000000000000 R09: 0000000000000000 [ 452.370471][T11490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 452.370484][T11490] R13: 0000000000000001 R14: 00007f6b67db6080 R15: 00007fffa97c96c8 [ 452.370512][T11490] [ 455.866559][T11528] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input131 [ 455.988324][T11527] FAULT_INJECTION: forcing a failure. [ 455.988324][T11527] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 456.046801][T11527] CPU: 1 UID: 0 PID: 11527 Comm: syz.3.1170 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 456.046837][T11527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 456.046853][T11527] Call Trace: [ 456.046861][T11527] [ 456.046871][T11527] dump_stack_lvl+0x16c/0x1f0 [ 456.046918][T11527] should_fail_ex+0x512/0x640 [ 456.046969][T11527] _copy_from_user+0x2e/0xd0 [ 456.047012][T11527] input_event_from_user+0xb9/0x290 [ 456.047055][T11527] ? __pfx_input_event_from_user+0x10/0x10 [ 456.047096][T11527] ? __pfx___might_resched+0x10/0x10 [ 456.047125][T11527] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 456.047165][T11527] ? input_event+0x98/0xb0 [ 456.047205][T11527] uinput_write+0xbe7/0xff0 [ 456.047257][T11527] ? __pfx_uinput_write+0x10/0x10 [ 456.047304][T11527] ? bpf_lsm_file_permission+0x9/0x10 [ 456.047332][T11527] ? security_file_permission+0x71/0x210 [ 456.047368][T11527] ? rw_verify_area+0xcf/0x680 [ 456.047404][T11527] ? __pfx_uinput_write+0x10/0x10 [ 456.047445][T11527] vfs_writev+0x5df/0xde0 [ 456.047489][T11527] ? __pfx_vfs_writev+0x10/0x10 [ 456.047551][T11527] ? __fget_files+0x20e/0x3c0 [ 456.047587][T11527] ? __fget_files+0x120/0x3c0 [ 456.047632][T11527] ? do_writev+0x28c/0x340 [ 456.047666][T11527] do_writev+0x28c/0x340 [ 456.047701][T11527] ? __pfx_do_writev+0x10/0x10 [ 456.047751][T11527] do_syscall_64+0xcd/0x490 [ 456.047791][T11527] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 456.047815][T11527] RIP: 0033:0x7f602bb8e929 [ 456.047833][T11527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 456.047855][T11527] RSP: 002b:00007f602ca52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 456.047882][T11527] RAX: ffffffffffffffda RBX: 00007f602bdb5fa0 RCX: 00007f602bb8e929 [ 456.047897][T11527] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 456.047911][T11527] RBP: 00007f602ca52090 R08: 0000000000000000 R09: 0000000000000000 [ 456.047925][T11527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 456.047939][T11527] R13: 0000000000000000 R14: 00007f602bdb5fa0 R15: 00007ffcaf2531d8 [ 456.047973][T11527] [ 457.988740][T11551] vivid-007: ================= START STATUS ================= [ 458.042757][T11551] vivid-007: Generate PTS: true [ 458.109883][T11551] vivid-007: Generate SCR: true [ 458.149567][T11551] tpg source WxH: 320x240 (Y'CbCr) [ 458.177116][T11551] tpg field: 1 [ 458.199542][T11551] tpg crop: (0,0)/320x240 [ 458.203987][T11551] tpg compose: (0,0)/320x240 [ 458.235283][T11551] tpg colorspace: 8 [ 458.241764][T11551] tpg transfer function: 0/0 [ 458.248251][T11551] tpg Y'CbCr encoding: 0/0 [ 458.279122][T11551] tpg quantization: 0/0 [ 458.283446][T11551] tpg RGB range: 0/2 [ 458.287456][T11551] vivid-007: ================== END STATUS ================== [ 458.666386][T11551] can: request_module (can-proto-3) failed. [ 459.220485][T11573] FAULT_INJECTION: forcing a failure. [ 459.220485][T11573] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 459.236894][T11573] CPU: 0 UID: 0 PID: 11573 Comm: syz.4.1181 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 459.236922][T11573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 459.236934][T11573] Call Trace: [ 459.236940][T11573] [ 459.236947][T11573] dump_stack_lvl+0x16c/0x1f0 [ 459.236981][T11573] should_fail_ex+0x512/0x640 [ 459.237015][T11573] _copy_to_user+0x32/0xd0 [ 459.237047][T11573] __x64_sys_rt_sigprocmask+0x1e4/0x290 [ 459.237067][T11573] ? __pfx___x64_sys_rt_sigprocmask+0x10/0x10 [ 459.237097][T11573] do_syscall_64+0xcd/0x490 [ 459.237130][T11573] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 459.237151][T11573] RIP: 0033:0x7fb750945ecd [ 459.237166][T11573] Code: 23 00 4c 8d 7c 24 58 c6 44 24 56 00 41 ba 08 00 00 00 31 ff c6 44 24 57 00 4c 89 fa b8 0e 00 00 00 48 8d 35 35 74 0e 00 0f 05 <49> 8b 44 24 28 48 85 c0 0f 84 65 02 00 00 80 b8 90 00 00 00 00 0f [ 459.237186][T11573] RSP: 002b:00007ffdd4677d10 EFLAGS: 00000246 ORIG_RAX: 000000000000000e [ 459.237204][T11573] RAX: ffffffffffffffda RBX: 00007fb75175a6c0 RCX: 00007fb750945ecd [ 459.237217][T11573] RDX: 00007ffdd4677d68 RSI: 00007fb750a2d300 RDI: 0000000000000000 [ 459.237230][T11573] RBP: 0000000000000000 R08: 00000000000201c0 R09: 0000000000000000 [ 459.237242][T11573] R10: 0000000000000008 R11: 0000000000000246 R12: 00007ffdd4677e60 [ 459.237254][T11573] R13: 00007fb75173a000 R14: 00007fb75175a6c0 R15: 00007ffdd4677d68 [ 459.237279][T11573] [ 459.729039][T11581] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input132 [ 459.741235][T11581] FAULT_INJECTION: forcing a failure. [ 459.741235][T11581] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 459.778645][T11581] CPU: 1 UID: 0 PID: 11581 Comm: syz.4.1182 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 459.778679][T11581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 459.778691][T11581] Call Trace: [ 459.778698][T11581] [ 459.778706][T11581] dump_stack_lvl+0x16c/0x1f0 [ 459.778741][T11581] should_fail_ex+0x512/0x640 [ 459.778775][T11581] _copy_from_user+0x2e/0xd0 [ 459.778807][T11581] input_event_from_user+0xb9/0x290 [ 459.778839][T11581] ? __pfx_input_event_from_user+0x10/0x10 [ 459.778869][T11581] ? __pfx___might_resched+0x10/0x10 [ 459.778890][T11581] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 459.778920][T11581] ? input_event+0x98/0xb0 [ 459.778949][T11581] uinput_write+0xbe7/0xff0 [ 459.778988][T11581] ? __pfx_uinput_write+0x10/0x10 [ 459.779023][T11581] ? bpf_lsm_file_permission+0x9/0x10 [ 459.779045][T11581] ? security_file_permission+0x71/0x210 [ 459.779073][T11581] ? rw_verify_area+0xcf/0x680 [ 459.779100][T11581] ? __pfx_uinput_write+0x10/0x10 [ 459.779132][T11581] vfs_writev+0x5df/0xde0 [ 459.779166][T11581] ? __pfx_vfs_writev+0x10/0x10 [ 459.779210][T11581] ? __fget_files+0x20e/0x3c0 [ 459.779236][T11581] ? __fget_files+0x120/0x3c0 [ 459.779269][T11581] ? do_writev+0x28c/0x340 [ 459.779294][T11581] do_writev+0x28c/0x340 [ 459.779321][T11581] ? __pfx_do_writev+0x10/0x10 [ 459.779355][T11581] do_syscall_64+0xcd/0x490 [ 459.779394][T11581] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 459.779415][T11581] RIP: 0033:0x7fb75098e929 [ 459.779430][T11581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 459.779463][T11581] RSP: 002b:00007fb75177b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 459.779487][T11581] RAX: ffffffffffffffda RBX: 00007fb750bb5fa0 RCX: 00007fb75098e929 [ 459.779504][T11581] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 459.779519][T11581] RBP: 00007fb75177b090 R08: 0000000000000000 R09: 0000000000000000 [ 459.779534][T11581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 459.779549][T11581] R13: 0000000000000000 R14: 00007fb750bb5fa0 R15: 00007ffdd4677d68 [ 459.779583][T11581] [ 460.603565][T11592] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input133 [ 462.233080][T11613] zswap: compressor not available [ 465.103525][T11640] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1196'. [ 465.577587][T11647] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input134 [ 465.679690][T11651] FAULT_INJECTION: forcing a failure. [ 465.679690][T11651] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 465.726351][T11651] CPU: 0 UID: 0 PID: 11651 Comm: syz.3.1198 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 465.726386][T11651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 465.726401][T11651] Call Trace: [ 465.726410][T11651] [ 465.726420][T11651] dump_stack_lvl+0x16c/0x1f0 [ 465.726466][T11651] should_fail_ex+0x512/0x640 [ 465.726510][T11651] _copy_from_user+0x2e/0xd0 [ 465.726554][T11651] input_event_from_user+0xb9/0x290 [ 465.726594][T11651] ? __pfx_input_event_from_user+0x10/0x10 [ 465.726631][T11651] ? __pfx___might_resched+0x10/0x10 [ 465.726654][T11651] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 465.726687][T11651] ? input_event+0x98/0xb0 [ 465.726719][T11651] uinput_write+0xbe7/0xff0 [ 465.726762][T11651] ? __pfx_uinput_write+0x10/0x10 [ 465.726800][T11651] ? bpf_lsm_file_permission+0x9/0x10 [ 465.726825][T11651] ? security_file_permission+0x71/0x210 [ 465.726857][T11651] ? rw_verify_area+0xcf/0x680 [ 465.726888][T11651] ? __pfx_uinput_write+0x10/0x10 [ 465.726922][T11651] vfs_writev+0x5df/0xde0 [ 465.726958][T11651] ? __pfx_vfs_writev+0x10/0x10 [ 465.727008][T11651] ? __fget_files+0x20e/0x3c0 [ 465.727036][T11651] ? __fget_files+0x120/0x3c0 [ 465.727073][T11651] ? do_writev+0x28c/0x340 [ 465.727106][T11651] do_writev+0x28c/0x340 [ 465.727136][T11651] ? __pfx_do_writev+0x10/0x10 [ 465.727173][T11651] do_syscall_64+0xcd/0x490 [ 465.727212][T11651] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 465.727236][T11651] RIP: 0033:0x7f602bb8e929 [ 465.727253][T11651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 465.727276][T11651] RSP: 002b:00007f602ca31038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 465.727297][T11651] RAX: ffffffffffffffda RBX: 00007f602bdb6080 RCX: 00007f602bb8e929 [ 465.727313][T11651] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 465.727327][T11651] RBP: 00007f602ca31090 R08: 0000000000000000 R09: 0000000000000000 [ 465.727340][T11651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 465.727354][T11651] R13: 0000000000000001 R14: 00007f602bdb6080 R15: 00007ffcaf2531d8 [ 465.727382][T11651] [ 471.831795][T11711] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input135 [ 471.850388][T11711] FAULT_INJECTION: forcing a failure. [ 471.850388][T11711] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 471.907747][T11711] CPU: 0 UID: 0 PID: 11711 Comm: syz.5.1211 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 471.907787][T11711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 471.907806][T11711] Call Trace: [ 471.907817][T11711] [ 471.907828][T11711] dump_stack_lvl+0x16c/0x1f0 [ 471.907883][T11711] should_fail_ex+0x512/0x640 [ 471.907936][T11711] _copy_from_user+0x2e/0xd0 [ 471.907986][T11711] input_event_from_user+0xb9/0x290 [ 471.908036][T11711] ? __pfx_input_event_from_user+0x10/0x10 [ 471.908085][T11711] ? __pfx___might_resched+0x10/0x10 [ 471.908119][T11711] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 471.908165][T11711] ? input_event+0x98/0xb0 [ 471.908212][T11711] uinput_write+0xbe7/0xff0 [ 471.908274][T11711] ? __pfx_uinput_write+0x10/0x10 [ 471.908327][T11711] ? bpf_lsm_file_permission+0x9/0x10 [ 471.908358][T11711] ? security_file_permission+0x71/0x210 [ 471.908400][T11711] ? rw_verify_area+0xcf/0x680 [ 471.908441][T11711] ? __pfx_uinput_write+0x10/0x10 [ 471.908487][T11711] vfs_writev+0x5df/0xde0 [ 471.908557][T11711] ? __pfx_vfs_writev+0x10/0x10 [ 471.908625][T11711] ? __fget_files+0x20e/0x3c0 [ 471.908665][T11711] ? __fget_files+0x120/0x3c0 [ 471.908716][T11711] ? do_writev+0x28c/0x340 [ 471.908754][T11711] do_writev+0x28c/0x340 [ 471.908796][T11711] ? __pfx_do_writev+0x10/0x10 [ 471.908849][T11711] do_syscall_64+0xcd/0x490 [ 471.908901][T11711] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 471.908933][T11711] RIP: 0033:0x7f6b67b8e929 [ 471.908957][T11711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 471.908986][T11711] RSP: 002b:00007f6b68ace038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 471.909014][T11711] RAX: ffffffffffffffda RBX: 00007f6b67db5fa0 RCX: 00007f6b67b8e929 [ 471.909032][T11711] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 471.909048][T11711] RBP: 00007f6b68ace090 R08: 0000000000000000 R09: 0000000000000000 [ 471.909065][T11711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 471.909080][T11711] R13: 0000000000000000 R14: 00007f6b67db5fa0 R15: 00007fffa97c96c8 [ 471.909118][T11711] [ 474.118043][T11724] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input136 [ 474.580329][T11729] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1216'. [ 474.868898][T11732] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1216'. [ 474.904129][T11734] hub 8-0:1.0: USB hub found [ 474.979607][T11734] hub 8-0:1.0: 1 port detected [ 483.106682][ T8992] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 483.470490][ T8992] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 483.753892][ T8992] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 484.292582][ T8992] netdevsim netdevsim15 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 484.854367][T11848] input: f as /devices/virtual/input/input137 [ 485.522340][T11859] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input138 [ 485.534113][T11859] FAULT_INJECTION: forcing a failure. [ 485.534113][T11859] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 485.656109][T11859] CPU: 0 UID: 0 PID: 11859 Comm: syz.3.1246 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 485.656146][T11859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 485.656161][T11859] Call Trace: [ 485.656170][T11859] [ 485.656180][T11859] dump_stack_lvl+0x16c/0x1f0 [ 485.656271][T11859] should_fail_ex+0x512/0x640 [ 485.656311][T11859] _copy_from_user+0x2e/0xd0 [ 485.656343][T11859] input_event_from_user+0xb9/0x290 [ 485.656375][T11859] ? __pfx_input_event_from_user+0x10/0x10 [ 485.656406][T11859] ? __pfx___might_resched+0x10/0x10 [ 485.656434][T11859] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 485.656463][T11859] ? input_event+0x98/0xb0 [ 485.656489][T11859] uinput_write+0xbe7/0xff0 [ 485.656526][T11859] ? __pfx_uinput_write+0x10/0x10 [ 485.656558][T11859] ? bpf_lsm_file_permission+0x9/0x10 [ 485.656578][T11859] ? security_file_permission+0x71/0x210 [ 485.656605][T11859] ? rw_verify_area+0xcf/0x680 [ 485.656638][T11859] ? __pfx_uinput_write+0x10/0x10 [ 485.656669][T11859] vfs_writev+0x5df/0xde0 [ 485.656703][T11859] ? __pfx_vfs_writev+0x10/0x10 [ 485.656748][T11859] ? __fget_files+0x20e/0x3c0 [ 485.656774][T11859] ? __fget_files+0x120/0x3c0 [ 485.656807][T11859] ? do_writev+0x28c/0x340 [ 485.656832][T11859] do_writev+0x28c/0x340 [ 485.656859][T11859] ? __pfx_do_writev+0x10/0x10 [ 485.656893][T11859] do_syscall_64+0xcd/0x490 [ 485.656927][T11859] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 485.656948][T11859] RIP: 0033:0x7f602bb8e929 [ 485.656968][T11859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 485.656988][T11859] RSP: 002b:00007f602ca52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 485.657007][T11859] RAX: ffffffffffffffda RBX: 00007f602bdb5fa0 RCX: 00007f602bb8e929 [ 485.657020][T11859] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 485.657032][T11859] RBP: 00007f602ca52090 R08: 0000000000000000 R09: 0000000000000000 [ 485.657045][T11859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 485.657056][T11859] R13: 0000000000000000 R14: 00007f602bdb5fa0 R15: 00007ffcaf2531d8 [ 485.657095][T11859] [ 486.774775][T11877] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1248'. [ 487.190125][ T8992] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 487.217279][ T8992] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 487.308734][ T8992] bond0 (unregistering): Released all slaves [ 488.461220][T11911] FAULT_INJECTION: forcing a failure. [ 488.461220][T11911] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 488.567144][T11911] CPU: 1 UID: 0 PID: 11911 Comm: syz.4.1255 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 488.567185][T11911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 488.567220][T11911] Call Trace: [ 488.567231][T11911] [ 488.567243][T11911] dump_stack_lvl+0x16c/0x1f0 [ 488.567298][T11911] should_fail_ex+0x512/0x640 [ 488.567350][T11911] should_fail_alloc_page+0xe7/0x130 [ 488.567384][T11911] prepare_alloc_pages+0x3c2/0x610 [ 488.567421][T11911] ? rcu_is_watching+0x12/0xc0 [ 488.567458][T11911] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 488.567514][T11911] ? rcu_is_watching+0x12/0xc0 [ 488.567550][T11911] ? trace_mm_page_alloc+0x11f/0x1a0 [ 488.567587][T11911] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 488.567639][T11911] ? __pfx_stack_trace_save+0x10/0x10 [ 488.567675][T11911] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 488.567739][T11911] ? alloc_vmap_area+0x645/0x29c0 [ 488.567771][T11911] ? __vmalloc_node_range_noprof+0x271/0x14b0 [ 488.567813][T11911] ? __do_sys_listmount+0x1c2/0xec0 [ 488.567849][T11911] ? do_syscall_64+0xcd/0x490 [ 488.567897][T11911] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.567947][T11911] alloc_pages_bulk_noprof+0x71c/0x1410 [ 488.568015][T11911] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 488.568163][T11911] ? policy_nodemask+0xea/0x4e0 [ 488.568231][T11911] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 488.568285][T11911] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 488.568337][T11911] kasan_populate_vmalloc+0xf1/0x1f0 [ 488.568396][T11911] alloc_vmap_area+0x959/0x29c0 [ 488.568451][T11911] ? __pfx_alloc_vmap_area+0x10/0x10 [ 488.568495][T11911] __get_vm_area_node+0x1ca/0x330 [ 488.568543][T11911] __vmalloc_node_range_noprof+0x271/0x14b0 [ 488.568589][T11911] ? __do_sys_listmount+0x1c2/0xec0 [ 488.568643][T11911] ? __lock_acquire+0xb8a/0x1c90 [ 488.568688][T11911] ? __do_sys_listmount+0x1c2/0xec0 [ 488.568743][T11911] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 488.568790][T11911] ? __alloc_pages_noprof+0xb/0x1b0 [ 488.568839][T11911] ? ___kmalloc_large_node+0x84/0x1e0 [ 488.568891][T11911] ? find_held_lock+0x2b/0x80 [ 488.568934][T11911] __kvmalloc_node_noprof+0x30a/0x620 [ 488.568984][T11911] ? __do_sys_listmount+0x1c2/0xec0 [ 488.569030][T11911] ? __do_sys_listmount+0x1c2/0xec0 [ 488.569082][T11911] ? __do_sys_listmount+0x1c2/0xec0 [ 488.569179][T11911] __do_sys_listmount+0x1c2/0xec0 [ 488.569237][T11911] ? __x64_sys_futex+0x1e0/0x4c0 [ 488.569277][T11911] ? __x64_sys_futex+0x1e9/0x4c0 [ 488.569319][T11911] ? __pfx___do_sys_listmount+0x10/0x10 [ 488.569383][T11911] do_syscall_64+0xcd/0x490 [ 488.569438][T11911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.569471][T11911] RIP: 0033:0x7fb75098e929 [ 488.569497][T11911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 488.569533][T11911] RSP: 002b:00007fb75175a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 488.569564][T11911] RAX: ffffffffffffffda RBX: 00007fb750bb6080 RCX: 00007fb75098e929 [ 488.569587][T11911] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 488.569608][T11911] RBP: 00007fb750a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 488.569629][T11911] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 488.569651][T11911] R13: 0000000000000000 R14: 00007fb750bb6080 R15: 00007ffdd4677d68 [ 488.569694][T11911] [ 488.956688][T11911] syz.4.1255: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 489.044499][T11911] CPU: 0 UID: 0 PID: 11911 Comm: syz.4.1255 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 489.044541][T11911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 489.044558][T11911] Call Trace: [ 489.044567][T11911] [ 489.044579][T11911] dump_stack_lvl+0x16c/0x1f0 [ 489.044628][T11911] warn_alloc+0x248/0x3a0 [ 489.044673][T11911] ? __pfx_warn_alloc+0x10/0x10 [ 489.044717][T11911] ? kfree+0x2b4/0x4d0 [ 489.044760][T11911] ? __get_vm_area_node+0x208/0x330 [ 489.044801][T11911] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 489.044847][T11911] ? __lock_acquire+0xb8a/0x1c90 [ 489.044885][T11911] ? __do_sys_listmount+0x1c2/0xec0 [ 489.044931][T11911] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 489.044969][T11911] ? __alloc_pages_noprof+0xb/0x1b0 [ 489.045011][T11911] ? ___kmalloc_large_node+0x84/0x1e0 [ 489.045041][T11911] ? find_held_lock+0x2b/0x80 [ 489.045075][T11911] __kvmalloc_node_noprof+0x30a/0x620 [ 489.045117][T11911] ? __do_sys_listmount+0x1c2/0xec0 [ 489.045163][T11911] ? __do_sys_listmount+0x1c2/0xec0 [ 489.045205][T11911] ? __do_sys_listmount+0x1c2/0xec0 [ 489.045242][T11911] __do_sys_listmount+0x1c2/0xec0 [ 489.045285][T11911] ? __x64_sys_futex+0x1e0/0x4c0 [ 489.045319][T11911] ? __x64_sys_futex+0x1e9/0x4c0 [ 489.045355][T11911] ? __pfx___do_sys_listmount+0x10/0x10 [ 489.045409][T11911] do_syscall_64+0xcd/0x490 [ 489.045456][T11911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 489.045486][T11911] RIP: 0033:0x7fb75098e929 [ 489.045509][T11911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 489.045537][T11911] RSP: 002b:00007fb75175a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 489.045564][T11911] RAX: ffffffffffffffda RBX: 00007fb750bb6080 RCX: 00007fb75098e929 [ 489.045583][T11911] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 489.045599][T11911] RBP: 00007fb750a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 489.045615][T11911] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 489.045632][T11911] R13: 0000000000000000 R14: 00007fb750bb6080 R15: 00007ffdd4677d68 [ 489.045666][T11911] [ 489.340261][T11916] FAULT_INJECTION: forcing a failure. [ 489.340261][T11916] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 489.341289][T11911] Mem-Info: [ 489.357882][T11911] active_anon:29547 inactive_anon:24 isolated_anon:0 [ 489.357882][T11911] active_file:20832 inactive_file:40187 isolated_file:0 [ 489.357882][T11911] unevictable:768 dirty:456 writeback:0 [ 489.357882][T11911] slab_reclaimable:11325 slab_unreclaimable:97990 [ 489.357882][T11911] mapped:39898 shmem:12894 pagetables:1396 [ 489.357882][T11911] sec_pagetables:0 bounce:0 [ 489.357882][T11911] kernel_misc_reclaimable:0 [ 489.357882][T11911] free:1290175 free_pcp:14032 free_cma:0 [ 489.359890][T11916] CPU: 1 UID: 0 PID: 11916 Comm: syz.5.1250 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 489.359933][T11916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 489.359953][T11916] Call Trace: [ 489.359963][T11916] [ 489.359973][T11916] dump_stack_lvl+0x16c/0x1f0 [ 489.360025][T11916] should_fail_ex+0x512/0x640 [ 489.360075][T11916] should_fail_alloc_page+0xe7/0x130 [ 489.360109][T11916] prepare_alloc_pages+0x3c2/0x610 [ 489.360161][T11916] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 489.360214][T11916] ? mas_next_slot+0x12d3/0x21b0 [ 489.360246][T11916] ? __up_read+0x1f8/0x750 [ 489.360298][T11916] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 489.360348][T11916] ? mas_find+0x2f6/0x530 [ 489.360376][T11916] ? validate_mm+0x40a/0x570 [ 489.360422][T11916] ? __pfx_validate_mm+0x10/0x10 [ 489.360469][T11916] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 489.360519][T11916] ? policy_nodemask+0xea/0x4e0 [ 489.360571][T11916] alloc_pages_mpol+0x1fb/0x550 [ 489.360602][T11916] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 489.360641][T11916] alloc_pages_noprof+0x131/0x390 [ 489.360673][T11916] __pud_alloc+0x3b/0x750 [ 489.360709][T11916] alloc_new_pud+0x267/0x320 [ 489.360763][T11916] move_page_tables+0x6b6/0x4070 [ 489.360816][T11916] ? __pfx_copy_vma+0x10/0x10 [ 489.360862][T11916] ? lockdep_hardirqs_on+0x7c/0x110 [ 489.360917][T11916] ? __pfx_move_page_tables+0x10/0x10 [ 489.360963][T11916] ? register_lock_class+0x41/0x4c0 [ 489.361004][T11916] ? __schedule+0x1181/0x5de0 [ 489.361059][T11916] ? __lock_acquire+0x622/0x1c90 [ 489.361105][T11916] copy_vma_and_data+0x216/0x750 [ 489.361155][T11916] ? __pfx_copy_vma_and_data+0x10/0x10 [ 489.361208][T11916] ? __vma_enter_locked+0x163/0x3f0 [ 489.361253][T11916] ? find_held_lock+0x2b/0x80 [ 489.361282][T11916] ? move_vma+0x536/0x1740 [ 489.361334][T11916] move_vma+0x548/0x1740 [ 489.361385][T11916] ? __pfx_move_vma+0x10/0x10 [ 489.361427][T11916] ? mm_get_unmapped_area+0x95/0xe0 [ 489.361463][T11916] ? shmem_get_unmapped_area+0x170/0xa00 [ 489.361503][T11916] ? cap_mmap_addr+0x4b/0x120 [ 489.361530][T11916] ? bpf_lsm_mmap_addr+0x9/0x10 [ 489.361562][T11916] ? security_mmap_addr+0x6c/0x1e0 [ 489.361602][T11916] ? __get_unmapped_area+0x267/0x440 [ 489.361641][T11916] ? vrm_set_new_addr+0x208/0x290 [ 489.361689][T11916] __do_sys_mremap+0xe07/0x1590 [ 489.361740][T11916] ? __pfx___do_sys_mremap+0x10/0x10 [ 489.361802][T11916] ? __fget_files+0x204/0x3c0 [ 489.361852][T11916] ? __x64_sys_futex+0x1e0/0x4c0 [ 489.361916][T11916] do_syscall_64+0xcd/0x490 [ 489.361965][T11916] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 489.361998][T11916] RIP: 0033:0x7f6b67b8e929 [ 489.362020][T11916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 489.362050][T11916] RSP: 002b:00007f6b68a4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 489.362081][T11916] RAX: ffffffffffffffda RBX: 00007f6b67db6320 RCX: 00007f6b67b8e929 [ 489.362101][T11916] RDX: 0000000000000008 RSI: 0000000000000002 RDI: 0000000000000000 [ 489.362120][T11916] RBP: 00007f6b67c10b39 R08: 00007effffffb000 R09: 0000000000000000 [ 489.362141][T11916] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 489.362160][T11916] R13: 0000000000000000 R14: 00007f6b67db6320 R15: 00007fffa97c96c8 [ 489.362199][T11916] [ 489.867367][T11911] Node 0 active_anon:120480kB inactive_anon:96kB active_file:83328kB inactive_file:160616kB unevictable:1536kB isolated(anon):800kB isolated(file):0kB mapped:159684kB dirty:1960kB writeback:0kB shmem:53640kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13116kB pagetables:5472kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 490.064794][T11911] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:112kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 490.169767][T11911] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 490.259662][T11911] lowmem_reserve[]: 0 2481 2482 2482 2482 [ 490.276678][T11911] Node 0 DMA32 free:1228324kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:125884kB inactive_anon:96kB active_file:83328kB inactive_file:159296kB unevictable:1536kB writepending:2060kB present:3129332kB managed:2540848kB mlocked:0kB bounce:0kB free_pcp:48268kB local_pcp:28836kB free_cma:0kB [ 490.355442][T11911] lowmem_reserve[]: 0 0 1 1 1 [ 490.384901][ T8992] hsr_slave_1: left promiscuous mode [ 490.386148][T11911] Node 0 [ 490.394774][ T8992] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 490.403546][T11911] Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 490.415790][ T8992] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 490.471099][ T8992] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 490.478529][ T8992] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 490.515515][ T8992] veth1_macvtap: left promiscuous mode [ 490.521239][ T8992] veth0_macvtap: left promiscuous mode [ 490.526912][T11911] lowmem_reserve[]: 0 0 0 0 0 [ 490.532214][ T8992] veth1_vlan: left promiscuous mode [ 490.537974][ T8992] veth0_vlan: left promiscuous mode [ 490.550680][T11911] Node 1 Normal free:3913744kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:4996kB local_pcp:4996kB free_cma:0kB [ 490.633534][T11911] lowmem_reserve[]: 0 0 0 0 0 [ 490.648319][T11911] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 490.703567][T11911] Node 0 DMA32: 1163*4kB (U) 335*8kB (UM) 122*16kB (U) 1069*32kB (UM) 569*64kB (UM) 258*128kB (UME) 83*256kB (UM) 37*512kB (UM) 36*1024kB (UM) 3*2048kB (UE) 252*4096kB (M) = 1228324kB [ 490.764643][T11911] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 490.796506][T11911] Node 1 Normal: 191*4kB (UE) 47*8kB (UME) 17*16kB (U) 212*32kB (U) 105*64kB (UE) 28*128kB (UME) 12*256kB (UME) 6*512kB (U) 2*1024kB (UE) 2*2048kB (UE) 948*4096kB (UM) = 3913796kB [ 490.829480][T11911] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 490.869535][T11911] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 490.889201][T11911] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 490.909256][T11911] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 490.935503][T11911] 77747 total pagecache pages [ 490.942618][T11911] 24 pages in swap cache [ 490.947662][T11911] Free swap = 124896kB [ 490.959120][T11911] Total swap = 124996kB [ 490.965797][T11911] 2097051 pages RAM [ 490.977604][T11911] 0 pages HighMem/MovableOnly [ 490.997320][T11911] 429861 pages reserved [ 491.013885][T11911] 0 pages cma reserved [ 491.514891][ T8992] team0 (unregistering): Port device team_slave_1 removed [ 491.680086][ T8992] team0 (unregistering): Port device team_slave_0 removed [ 495.745262][ T9003] Bluetooth: hci1: Frame reassembly failed (-84) [ 496.270496][T12022] random: crng reseeded on system resumption [ 496.426055][T12026] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1272'. [ 497.769730][ T51] Bluetooth: hci1: command 0x1003 tx timeout [ 497.777156][ T5842] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 499.149300][T12044] sp0: Synchronizing with TNC [ 500.016716][T12065] kexec: Could not allocate control_code_buffer [ 500.429350][T12088] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input139 [ 500.481055][T12088] FAULT_INJECTION: forcing a failure. [ 500.481055][T12088] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 500.529054][T12088] CPU: 0 UID: 0 PID: 12088 Comm: syz.3.1283 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 500.529095][T12088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 500.529113][T12088] Call Trace: [ 500.529123][T12088] [ 500.529134][T12088] dump_stack_lvl+0x16c/0x1f0 [ 500.529186][T12088] should_fail_ex+0x512/0x640 [ 500.529247][T12088] _copy_from_user+0x2e/0xd0 [ 500.529292][T12088] input_event_from_user+0xb9/0x290 [ 500.529350][T12088] ? __pfx_input_event_from_user+0x10/0x10 [ 500.529391][T12088] ? __pfx___might_resched+0x10/0x10 [ 500.529419][T12088] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 500.529459][T12088] ? input_event+0x98/0xb0 [ 500.529497][T12088] uinput_write+0xbe7/0xff0 [ 500.529547][T12088] ? __pfx_uinput_write+0x10/0x10 [ 500.529593][T12088] ? bpf_lsm_file_permission+0x9/0x10 [ 500.529621][T12088] ? security_file_permission+0x71/0x210 [ 500.529658][T12088] ? rw_verify_area+0xcf/0x680 [ 500.529697][T12088] ? __pfx_uinput_write+0x10/0x10 [ 500.529737][T12088] vfs_writev+0x5df/0xde0 [ 500.529819][T12088] ? __pfx_vfs_writev+0x10/0x10 [ 500.529887][T12088] ? __fget_files+0x20e/0x3c0 [ 500.529932][T12088] ? do_writev+0x28c/0x340 [ 500.529965][T12088] do_writev+0x28c/0x340 [ 500.530002][T12088] ? __pfx_do_writev+0x10/0x10 [ 500.530063][T12088] do_syscall_64+0xcd/0x490 [ 500.530109][T12088] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 500.530137][T12088] RIP: 0033:0x7f602bb8e929 [ 500.530158][T12088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 500.530182][T12088] RSP: 002b:00007f602ca52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 500.530206][T12088] RAX: ffffffffffffffda RBX: 00007f602bdb5fa0 RCX: 00007f602bb8e929 [ 500.530223][T12088] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 500.530238][T12088] RBP: 00007f602ca52090 R08: 0000000000000000 R09: 0000000000000000 [ 500.530253][T12088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 500.530267][T12088] R13: 0000000000000000 R14: 00007f602bdb5fa0 R15: 00007ffcaf2531d8 [ 500.530300][T12088] [ 500.742218][ C0] vkms_vblank_simulate: vblank timer overrun [ 502.139832][T12111] can: request_module (can-proto-3) failed. [ 502.913932][T12129] kvm: kvm [12127]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001f) [ 503.451012][T12144] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input140 [ 503.535701][T12148] FAULT_INJECTION: forcing a failure. [ 503.535701][T12148] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 503.601631][T12148] CPU: 0 UID: 0 PID: 12148 Comm: syz.4.1293 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 503.601669][T12148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 503.601685][T12148] Call Trace: [ 503.601695][T12148] [ 503.601705][T12148] dump_stack_lvl+0x16c/0x1f0 [ 503.601755][T12148] should_fail_ex+0x512/0x640 [ 503.601811][T12148] _copy_from_user+0x2e/0xd0 [ 503.601858][T12148] input_event_from_user+0xb9/0x290 [ 503.601902][T12148] ? __pfx_input_event_from_user+0x10/0x10 [ 503.601947][T12148] ? __pfx___might_resched+0x10/0x10 [ 503.601977][T12148] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 503.602019][T12148] ? input_event+0x98/0xb0 [ 503.602060][T12148] uinput_write+0xbe7/0xff0 [ 503.602117][T12148] ? __pfx_uinput_write+0x10/0x10 [ 503.602180][T12148] ? bpf_lsm_file_permission+0x9/0x10 [ 503.602209][T12148] ? security_file_permission+0x71/0x210 [ 503.602246][T12148] ? rw_verify_area+0xcf/0x680 [ 503.602285][T12148] ? __pfx_uinput_write+0x10/0x10 [ 503.602326][T12148] vfs_writev+0x5df/0xde0 [ 503.602372][T12148] ? __pfx_vfs_writev+0x10/0x10 [ 503.602435][T12148] ? __fget_files+0x20e/0x3c0 [ 503.602471][T12148] ? __fget_files+0x120/0x3c0 [ 503.602517][T12148] ? do_writev+0x28c/0x340 [ 503.602550][T12148] do_writev+0x28c/0x340 [ 503.602587][T12148] ? __pfx_do_writev+0x10/0x10 [ 503.602634][T12148] do_syscall_64+0xcd/0x490 [ 503.602681][T12148] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.602710][T12148] RIP: 0033:0x7fb75098e929 [ 503.602731][T12148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 503.602757][T12148] RSP: 002b:00007fb751739038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 503.602782][T12148] RAX: ffffffffffffffda RBX: 00007fb750bb6160 RCX: 00007fb75098e929 [ 503.602806][T12148] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 503.602823][T12148] RBP: 00007fb751739090 R08: 0000000000000000 R09: 0000000000000000 [ 503.602839][T12148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 503.602854][T12148] R13: 0000000000000001 R14: 00007fb750bb6160 R15: 00007ffdd4677d68 [ 503.602888][T12148] [ 506.097852][T12185] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1300'. [ 506.371403][T12173] ubi: mtd0 is already attached to ubi0 [ 506.507728][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 506.514928][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 506.748369][T12194] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input141 [ 506.825258][T12204] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1303'. [ 506.917661][T12198] FAULT_INJECTION: forcing a failure. [ 506.917661][T12198] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 506.935332][T12198] CPU: 0 UID: 0 PID: 12198 Comm: syz.4.1302 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 506.935378][T12198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 506.935394][T12198] Call Trace: [ 506.935403][T12198] [ 506.935413][T12198] dump_stack_lvl+0x16c/0x1f0 [ 506.935457][T12198] should_fail_ex+0x512/0x640 [ 506.935490][T12198] _copy_from_user+0x2e/0xd0 [ 506.935522][T12198] input_event_from_user+0xb9/0x290 [ 506.935554][T12198] ? __pfx_input_event_from_user+0x10/0x10 [ 506.935584][T12198] ? __pfx___might_resched+0x10/0x10 [ 506.935605][T12198] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 506.935635][T12198] ? input_event+0x98/0xb0 [ 506.935664][T12198] uinput_write+0xbe7/0xff0 [ 506.935703][T12198] ? __pfx_uinput_write+0x10/0x10 [ 506.935738][T12198] ? bpf_lsm_file_permission+0x9/0x10 [ 506.935760][T12198] ? security_file_permission+0x71/0x210 [ 506.935787][T12198] ? rw_verify_area+0xcf/0x680 [ 506.935814][T12198] ? __pfx_uinput_write+0x10/0x10 [ 506.935846][T12198] vfs_writev+0x5df/0xde0 [ 506.935879][T12198] ? __pfx_vfs_writev+0x10/0x10 [ 506.935923][T12198] ? __fget_files+0x20e/0x3c0 [ 506.935950][T12198] ? __fget_files+0x120/0x3c0 [ 506.935982][T12198] ? do_writev+0x28c/0x340 [ 506.936007][T12198] do_writev+0x28c/0x340 [ 506.936033][T12198] ? __pfx_do_writev+0x10/0x10 [ 506.936067][T12198] do_syscall_64+0xcd/0x490 [ 506.936102][T12198] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.936122][T12198] RIP: 0033:0x7fb75098e929 [ 506.936137][T12198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 506.936156][T12198] RSP: 002b:00007fb75175a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 506.936175][T12198] RAX: ffffffffffffffda RBX: 00007fb750bb6080 RCX: 00007fb75098e929 [ 506.936188][T12198] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 506.936200][T12198] RBP: 00007fb75175a090 R08: 0000000000000000 R09: 0000000000000000 [ 506.936213][T12198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 506.936225][T12198] R13: 0000000000000000 R14: 00007fb750bb6080 R15: 00007ffdd4677d68 [ 506.936250][T12198] [ 511.416370][T12289] program syz.4.1316 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 511.517231][T12289] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 513.551306][ T30] audit: type=1800 audit(6046163881.445:11): pid=12322 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1322" name="lu_gp_id" dev="configfs" ino=38637 res=0 errno=0 [ 513.666078][T12293] sysfs_service_op_show: Client not running :-5: [ 514.165532][T12328] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1323'. [ 514.287526][T12338] random: crng reseeded on system resumption [ 514.312523][T12340] ptrace attach of "./syz-executor exec"[7260] was attempted by "./syz-executor exec"[12340] [ 514.916832][T12351] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input142 [ 514.928145][T12351] FAULT_INJECTION: forcing a failure. [ 514.928145][T12351] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 514.948005][T12351] CPU: 0 UID: 0 PID: 12351 Comm: syz.2.1328 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 514.948037][T12351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 514.948049][T12351] Call Trace: [ 514.948055][T12351] [ 514.948062][T12351] dump_stack_lvl+0x16c/0x1f0 [ 514.948098][T12351] should_fail_ex+0x512/0x640 [ 514.948132][T12351] _copy_from_user+0x2e/0xd0 [ 514.948165][T12351] input_event_from_user+0xb9/0x290 [ 514.948196][T12351] ? __pfx_input_event_from_user+0x10/0x10 [ 514.948227][T12351] ? __pfx___might_resched+0x10/0x10 [ 514.948249][T12351] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 514.948279][T12351] ? input_event+0x98/0xb0 [ 514.948308][T12351] uinput_write+0xbe7/0xff0 [ 514.948347][T12351] ? __pfx_uinput_write+0x10/0x10 [ 514.948382][T12351] ? bpf_lsm_file_permission+0x9/0x10 [ 514.948404][T12351] ? security_file_permission+0x71/0x210 [ 514.948431][T12351] ? rw_verify_area+0xcf/0x680 [ 514.948459][T12351] ? __pfx_uinput_write+0x10/0x10 [ 514.948490][T12351] vfs_writev+0x5df/0xde0 [ 514.948530][T12351] ? __pfx_vfs_writev+0x10/0x10 [ 514.948574][T12351] ? __fget_files+0x20e/0x3c0 [ 514.948601][T12351] ? __fget_files+0x120/0x3c0 [ 514.948634][T12351] ? do_writev+0x28c/0x340 [ 514.948658][T12351] do_writev+0x28c/0x340 [ 514.948685][T12351] ? __pfx_do_writev+0x10/0x10 [ 514.948719][T12351] do_syscall_64+0xcd/0x490 [ 514.948755][T12351] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 514.948776][T12351] RIP: 0033:0x7f630e38e929 [ 514.948791][T12351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 514.948811][T12351] RSP: 002b:00007f630f242038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 514.948829][T12351] RAX: ffffffffffffffda RBX: 00007f630e5b5fa0 RCX: 00007f630e38e929 [ 514.948843][T12351] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 514.948855][T12351] RBP: 00007f630f242090 R08: 0000000000000000 R09: 0000000000000000 [ 514.948867][T12351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 514.948879][T12351] R13: 0000000000000000 R14: 00007f630e5b5fa0 R15: 00007ffd77505058 [ 514.948905][T12351] [ 515.250212][T12354] ubi: mtd0 is already attached to ubi0 [ 516.282698][T12368] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 516.306798][T12368] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 516.329099][T12368] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 516.379838][T12368] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 517.536558][T12434] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input144 [ 517.652921][T12421] can: request_module (can-proto-0) failed. [ 518.169816][ T5842] Bluetooth: hci2: command 0x0406 tx timeout [ 518.336085][ T5842] Bluetooth: hci3: command 0x0406 tx timeout [ 518.409517][ T5842] Bluetooth: hci0: command 0x040f tx timeout [ 518.415628][ T5842] Bluetooth: hci4: command 0x0c1a tx timeout [ 520.868762][T12500] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input145 [ 524.701818][T12576] blktrace: Concurrent blktraces are not allowed on loop2 [ 525.303293][T12583] netlink: 306 bytes leftover after parsing attributes in process `syz.3.1361'. [ 526.044011][T12608] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input146 [ 526.122213][T12611] FAULT_INJECTION: forcing a failure. [ 526.122213][T12611] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 526.242839][T12611] CPU: 0 UID: 0 PID: 12611 Comm: syz.3.1365 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 526.242868][T12611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 526.242881][T12611] Call Trace: [ 526.242887][T12611] [ 526.242894][T12611] dump_stack_lvl+0x16c/0x1f0 [ 526.242929][T12611] should_fail_ex+0x512/0x640 [ 526.242962][T12611] _copy_from_user+0x2e/0xd0 [ 526.242994][T12611] input_event_from_user+0xb9/0x290 [ 526.243024][T12611] ? __pfx_input_event_from_user+0x10/0x10 [ 526.243055][T12611] ? __pfx___might_resched+0x10/0x10 [ 526.243075][T12611] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 526.243105][T12611] ? input_event+0x98/0xb0 [ 526.243134][T12611] uinput_write+0xbe7/0xff0 [ 526.243173][T12611] ? __pfx_uinput_write+0x10/0x10 [ 526.243208][T12611] ? bpf_lsm_file_permission+0x9/0x10 [ 526.243248][T12611] ? security_file_permission+0x71/0x210 [ 526.243281][T12611] ? rw_verify_area+0xcf/0x680 [ 526.243313][T12611] ? __pfx_uinput_write+0x10/0x10 [ 526.243350][T12611] vfs_writev+0x5df/0xde0 [ 526.243390][T12611] ? __pfx_vfs_writev+0x10/0x10 [ 526.243442][T12611] ? __fget_files+0x20e/0x3c0 [ 526.243473][T12611] ? __fget_files+0x120/0x3c0 [ 526.243519][T12611] ? do_writev+0x28c/0x340 [ 526.243548][T12611] do_writev+0x28c/0x340 [ 526.243579][T12611] ? __pfx_do_writev+0x10/0x10 [ 526.243619][T12611] do_syscall_64+0xcd/0x490 [ 526.243658][T12611] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.243683][T12611] RIP: 0033:0x7f602bb8e929 [ 526.243700][T12611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 526.243724][T12611] RSP: 002b:00007f602ca10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 526.243746][T12611] RAX: ffffffffffffffda RBX: 00007f602bdb6160 RCX: 00007f602bb8e929 [ 526.243762][T12611] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 526.243777][T12611] RBP: 00007f602ca10090 R08: 0000000000000000 R09: 0000000000000000 [ 526.243792][T12611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 526.243806][T12611] R13: 0000000000000001 R14: 00007f602bdb6160 R15: 00007ffcaf2531d8 [ 526.243836][T12611] [ 527.569135][T12645] can: request_module (can-proto-0) failed. [ 527.716316][T12656] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input147 [ 528.782790][T12676] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input148 [ 528.795583][T12673] FAULT_INJECTION: forcing a failure. [ 528.795583][T12673] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 528.844853][T12673] CPU: 1 UID: 0 PID: 12673 Comm: syz.4.1376 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 528.844887][T12673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 528.844903][T12673] Call Trace: [ 528.844912][T12673] [ 528.844923][T12673] dump_stack_lvl+0x16c/0x1f0 [ 528.844969][T12673] should_fail_ex+0x512/0x640 [ 528.845012][T12673] _copy_from_user+0x2e/0xd0 [ 528.845056][T12673] input_event_from_user+0xb9/0x290 [ 528.845096][T12673] ? __pfx_input_event_from_user+0x10/0x10 [ 528.845139][T12673] ? __pfx___might_resched+0x10/0x10 [ 528.845167][T12673] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 528.845208][T12673] ? input_event+0x98/0xb0 [ 528.845247][T12673] uinput_write+0xbe7/0xff0 [ 528.845299][T12673] ? __pfx_uinput_write+0x10/0x10 [ 528.845346][T12673] ? bpf_lsm_file_permission+0x9/0x10 [ 528.845384][T12673] ? security_file_permission+0x71/0x210 [ 528.845421][T12673] ? rw_verify_area+0xcf/0x680 [ 528.845459][T12673] ? __pfx_uinput_write+0x10/0x10 [ 528.845500][T12673] vfs_writev+0x5df/0xde0 [ 528.845547][T12673] ? __pfx_vfs_writev+0x10/0x10 [ 528.845610][T12673] ? __fget_files+0x20e/0x3c0 [ 528.845646][T12673] ? __fget_files+0x120/0x3c0 [ 528.845692][T12673] ? do_writev+0x28c/0x340 [ 528.845725][T12673] do_writev+0x28c/0x340 [ 528.845762][T12673] ? __pfx_do_writev+0x10/0x10 [ 528.845809][T12673] do_syscall_64+0xcd/0x490 [ 528.845855][T12673] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 528.845884][T12673] RIP: 0033:0x7fb75098e929 [ 528.845905][T12673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 528.845929][T12673] RSP: 002b:00007fb75177b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 528.845954][T12673] RAX: ffffffffffffffda RBX: 00007fb750bb5fa0 RCX: 00007fb75098e929 [ 528.845970][T12673] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 528.845985][T12673] RBP: 00007fb75177b090 R08: 0000000000000000 R09: 0000000000000000 [ 528.845999][T12673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 528.846014][T12673] R13: 0000000000000000 R14: 00007fb750bb5fa0 R15: 00007ffdd4677d68 [ 528.846048][T12673] [ 529.066777][ C1] vkms_vblank_simulate: vblank timer overrun [ 529.225138][T12682] block2mtd: illegal erase size [ 531.255227][T12736] FAULT_INJECTION: forcing a failure. [ 531.255227][T12736] name failslab, interval 1, probability 0, space 0, times 0 [ 531.268424][T12736] CPU: 0 UID: 0 PID: 12736 Comm: syz.2.1386 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 531.268461][T12736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 531.268477][T12736] Call Trace: [ 531.268485][T12736] [ 531.268496][T12736] dump_stack_lvl+0x16c/0x1f0 [ 531.268544][T12736] should_fail_ex+0x512/0x640 [ 531.268584][T12736] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 531.268630][T12736] should_failslab+0xc2/0x120 [ 531.268652][T12736] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 531.268695][T12736] ? mas_alloc_nodes+0x18b/0x8b0 [ 531.268742][T12736] mas_alloc_nodes+0x18b/0x8b0 [ 531.268790][T12736] mas_node_count_gfp+0x105/0x130 [ 531.268834][T12736] mas_preallocate+0x7e0/0xde0 [ 531.268872][T12736] ? __pfx_mas_preallocate+0x10/0x10 [ 531.268919][T12736] ? __pfx___might_resched+0x10/0x10 [ 531.268956][T12736] vma_link+0x135/0x6a0 [ 531.268997][T12736] ? anon_vma_clone+0x3fe/0x5c0 [ 531.269042][T12736] ? __pfx_vma_link+0x10/0x10 [ 531.269104][T12736] ? anon_vma_clone+0x405/0x5c0 [ 531.269155][T12736] copy_vma+0x6c2/0xaa0 [ 531.269204][T12736] ? __pfx_copy_vma+0x10/0x10 [ 531.269247][T12736] ? lockdep_hardirqs_on+0x7c/0x110 [ 531.269300][T12736] ? register_lock_class+0x41/0x4c0 [ 531.269341][T12736] ? __schedule+0x1181/0x5de0 [ 531.269395][T12736] ? __lock_acquire+0x622/0x1c90 [ 531.269447][T12736] copy_vma_and_data+0x1cf/0x750 [ 531.269496][T12736] ? __pfx_copy_vma_and_data+0x10/0x10 [ 531.269551][T12736] ? __vma_enter_locked+0x163/0x3f0 [ 531.269594][T12736] ? find_held_lock+0x2b/0x80 [ 531.269624][T12736] ? move_vma+0x536/0x1740 [ 531.269664][T12736] ? __vm_enough_memory+0x184/0x3f0 [ 531.269704][T12736] move_vma+0x548/0x1740 [ 531.269755][T12736] ? __pfx_move_vma+0x10/0x10 [ 531.269806][T12736] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 531.269841][T12736] ? cap_mmap_addr+0x4b/0x120 [ 531.269868][T12736] ? bpf_lsm_mmap_addr+0x9/0x10 [ 531.269900][T12736] ? security_mmap_addr+0x6c/0x1e0 [ 531.269938][T12736] ? __get_unmapped_area+0x267/0x440 [ 531.269976][T12736] ? vrm_set_new_addr+0x208/0x290 [ 531.270023][T12736] __do_sys_mremap+0xe07/0x1590 [ 531.270080][T12736] ? __pfx___do_sys_mremap+0x10/0x10 [ 531.270146][T12736] ? __x64_sys_futex+0x1e0/0x4c0 [ 531.270208][T12736] do_syscall_64+0xcd/0x490 [ 531.270259][T12736] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 531.270290][T12736] RIP: 0033:0x7f630e38e929 [ 531.270314][T12736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 531.270345][T12736] RSP: 002b:00007f630f221038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 531.270375][T12736] RAX: ffffffffffffffda RBX: 00007f630e5b6080 RCX: 00007f630e38e929 [ 531.270397][T12736] RDX: 0000000000400008 RSI: 0000000000000002 RDI: 0000000000000000 [ 531.270415][T12736] RBP: 00007f630e410b39 R08: 00007effffffb000 R09: 0000000000000000 [ 531.270435][T12736] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 531.270453][T12736] R13: 0000000000000000 R14: 00007f630e5b6080 R15: 00007ffd77505058 [ 531.270492][T12736] [ 533.509896][T12780] openvswitch: netlink: Flow actions attr not present in new flow. [ 537.656384][T12915] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1419'. [ 537.956195][T12923] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1423'. [ 538.807999][T12944] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1427'. [ 544.808134][T13040] random: crng reseeded on system resumption [ 547.566236][T13080] random: crng reseeded on system resumption [ 548.443642][T13064] kexec: Could not allocate control_code_buffer [ 548.578047][T13087] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1457'. [ 548.948806][T13099] netlink: 186 bytes leftover after parsing attributes in process `syz.5.1461'. [ 549.139805][T13105] random: crng reseeded on system resumption [ 550.854083][T13133] random: crng reseeded on system resumption [ 551.495017][T13144] .SR: entered promiscuous mode [ 551.495603][T13145] Invalid ELF header magic: != ELF [ 554.318194][T13194] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1481'. [ 555.834400][T13218] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input149 [ 555.880205][T13223] FAULT_INJECTION: forcing a failure. [ 555.880205][T13223] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 555.979631][T13223] CPU: 1 UID: 0 PID: 13223 Comm: syz.5.1499 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 555.979669][T13223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 555.979685][T13223] Call Trace: [ 555.979694][T13223] [ 555.979705][T13223] dump_stack_lvl+0x16c/0x1f0 [ 555.979754][T13223] should_fail_ex+0x512/0x640 [ 555.979802][T13223] _copy_from_user+0x2e/0xd0 [ 555.979847][T13223] input_event_from_user+0xb9/0x290 [ 555.979900][T13223] ? __pfx_input_event_from_user+0x10/0x10 [ 555.979943][T13223] ? __pfx___might_resched+0x10/0x10 [ 555.979973][T13223] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 555.980015][T13223] ? input_event+0x98/0xb0 [ 555.980057][T13223] uinput_write+0xbe7/0xff0 [ 555.980113][T13223] ? __pfx_uinput_write+0x10/0x10 [ 555.980163][T13223] ? bpf_lsm_file_permission+0x9/0x10 [ 555.980195][T13223] ? security_file_permission+0x71/0x210 [ 555.980235][T13223] ? rw_verify_area+0xcf/0x680 [ 555.980273][T13223] ? __pfx_uinput_write+0x10/0x10 [ 555.980319][T13223] vfs_writev+0x5df/0xde0 [ 555.980366][T13223] ? __pfx_vfs_writev+0x10/0x10 [ 555.980424][T13223] ? __fget_files+0x20e/0x3c0 [ 555.980449][T13223] ? __fget_files+0x120/0x3c0 [ 555.980482][T13223] ? do_writev+0x28c/0x340 [ 555.980507][T13223] do_writev+0x28c/0x340 [ 555.980533][T13223] ? __pfx_do_writev+0x10/0x10 [ 555.980568][T13223] do_syscall_64+0xcd/0x490 [ 555.980601][T13223] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 555.980622][T13223] RIP: 0033:0x7f6b67b8e929 [ 555.980638][T13223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 555.980657][T13223] RSP: 002b:00007f6b68aad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 555.980676][T13223] RAX: ffffffffffffffda RBX: 00007f6b67db6080 RCX: 00007f6b67b8e929 [ 555.980689][T13223] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 555.980701][T13223] RBP: 00007f6b68aad090 R08: 0000000000000000 R09: 0000000000000000 [ 555.980714][T13223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 555.980726][T13223] R13: 0000000000000001 R14: 00007f6b67db6080 R15: 00007fffa97c96c8 [ 555.980750][T13223] [ 557.651147][T13253] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1494'. [ 558.203516][ T30] audit: type=1804 audit(4294968366.631:12): pid=13264 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1502" name="/newroot/sys/kernel/debug/tracing/error_log" dev="tracefs" ino=178 res=1 errno=0 [ 558.334263][T13262] Process accounting resumed [ 559.872480][T13297] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 560.682942][T13316] FAULT_INJECTION: forcing a failure. [ 560.682942][T13316] name failslab, interval 1, probability 0, space 0, times 0 syzkaller syzkaller login: [ 560.738337][T13316] CPU: 1 UID: 0 PID: 13316 Comm: syz.5.1509 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 560.738377][T13316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 560.738394][T13316] Call Trace: [ 560.738403][T13316] [ 560.738414][T13316] dump_stack_lvl+0x16c/0x1f0 [ 560.738471][T13316] should_fail_ex+0x512/0x640 [ 560.738512][T13316] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 560.738559][T13316] should_failslab+0xc2/0x120 [ 560.738587][T13316] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 560.738631][T13316] ? d_instantiate+0x77/0x90 [ 560.738673][T13316] ? alloc_empty_file+0x55/0x1e0 [ 560.738708][T13316] alloc_empty_file+0x55/0x1e0 [ 560.738739][T13316] alloc_file_pseudo+0x13a/0x230 [ 560.738772][T13316] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 560.738804][T13316] ? __pfx_unix_socketpair+0x10/0x10 [ 560.738850][T13316] sock_alloc_file+0x50/0x210 [ 560.738879][T13316] __sys_socketpair+0x31c/0x5a0 [ 560.738917][T13316] ? __pfx___sys_socketpair+0x10/0x10 [ 560.738951][T13316] ? __pfx_blkcg_maybe_throttle_current+0x10/0x10 [ 560.738991][T13316] ? xfd_validate_state+0x61/0x180 [ 560.739036][T13316] __x64_sys_socketpair+0x96/0x100 [ 560.739071][T13316] ? lockdep_hardirqs_on+0x7c/0x110 [ 560.739112][T13316] do_syscall_64+0xcd/0x490 [ 560.739159][T13316] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.739188][T13316] RIP: 0033:0x7f6b67b8e929 [ 560.739209][T13316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 560.739233][T13316] RSP: 002b:00007f6b68ace038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 560.739261][T13316] RAX: ffffffffffffffda RBX: 00007f6b67db5fa0 RCX: 00007f6b67b8e929 [ 560.739279][T13316] RDX: 8000000000000000 RSI: 0000000000000005 RDI: 0000000000000001 [ 560.739296][T13316] RBP: 00007f6b67c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 560.739313][T13316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 560.739330][T13316] R13: 0000000000000000 R14: 00007f6b67db5fa0 R15: 00007fffa97c96c8 [ 560.739364][T13316] [ 560.945743][T13318] zswap: compressor 000 not available [ 561.192600][T13334] FAULT_INJECTION: forcing a failure. [ 561.192600][T13334] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 561.205939][T13334] CPU: 1 UID: 0 PID: 13334 Comm: syz.4.1513 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 561.205973][T13334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 561.205988][T13334] Call Trace: [ 561.205997][T13334] [ 561.206007][T13334] dump_stack_lvl+0x16c/0x1f0 [ 561.206052][T13334] should_fail_ex+0x512/0x640 [ 561.206095][T13334] _copy_from_user+0x2e/0xd0 [ 561.206137][T13334] ? __pfx_do_get_msr+0x10/0x10 [ 561.206177][T13334] memdup_user+0x6b/0xe0 [ 561.206220][T13334] msr_io+0xea/0x2a0 [ 561.206250][T13334] ? __pfx_msr_io+0x10/0x10 [ 561.206277][T13334] ? arch_stack_walk+0xa6/0x100 [ 561.206328][T13334] kvm_arch_vcpu_ioctl+0x7fb/0x5120 [ 561.206353][T13334] ? kvm_arch_vcpu_ioctl+0x7d2/0x5120 [ 561.206384][T13334] ? stack_trace_save+0x8e/0xc0 [ 561.206415][T13334] ? stack_depot_save_flags+0x28/0xa40 [ 561.206455][T13334] ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10 [ 561.206481][T13334] ? __lock_acquire+0xb8a/0x1c90 [ 561.206519][T13334] ? kasan_save_stack+0x42/0x60 [ 561.206557][T13334] ? kasan_save_stack+0x33/0x60 [ 561.206595][T13334] ? kasan_save_track+0x14/0x30 [ 561.206632][T13334] ? kasan_save_free_info+0x3b/0x60 [ 561.206665][T13334] ? __kasan_slab_free+0x51/0x70 [ 561.206717][T13334] ? kfree+0x2b4/0x4d0 [ 561.206749][T13334] ? tomoyo_path_number_perm+0x470/0x580 [ 561.206779][T13334] ? security_file_ioctl+0x9b/0x240 [ 561.206811][T13334] ? __x64_sys_ioctl+0xb7/0x210 [ 561.206842][T13334] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 561.206874][T13334] ? __lock_acquire+0xb8a/0x1c90 [ 561.206922][T13334] ? __mutex_trylock_common+0xe9/0x250 [ 561.206962][T13334] ? __pfx___mutex_trylock_common+0x10/0x10 [ 561.207000][T13334] ? __pfx___might_resched+0x10/0x10 [ 561.207030][T13334] ? rcu_is_watching+0x12/0xc0 [ 561.207058][T13334] ? trace_contention_end+0xdd/0x130 [ 561.207097][T13334] ? __mutex_lock+0x1ca/0xb90 [ 561.207143][T13334] ? kvm_vcpu_ioctl+0x280/0x1690 [ 561.207177][T13334] ? __pfx___mutex_lock+0x10/0x10 [ 561.207233][T13334] ? tomoyo_path_number_perm+0x18d/0x580 [ 561.207270][T13334] ? kvm_vcpu_ioctl+0x1236/0x1690 [ 561.207298][T13334] kvm_vcpu_ioctl+0x1236/0x1690 [ 561.207335][T13334] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 561.207392][T13334] ? find_held_lock+0x2b/0x80 [ 561.207417][T13334] ? hook_file_ioctl_common+0x145/0x410 [ 561.207453][T13334] ? __fget_files+0x20e/0x3c0 [ 561.207495][T13334] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 561.207529][T13334] __x64_sys_ioctl+0x18e/0x210 [ 561.207563][T13334] do_syscall_64+0xcd/0x490 [ 561.207609][T13334] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 561.207635][T13334] RIP: 0033:0x7fb75098e929 [ 561.207656][T13334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 561.207688][T13334] RSP: 002b:00007fb75177b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 561.207715][T13334] RAX: ffffffffffffffda RBX: 00007fb750bb5fa0 RCX: 00007fb75098e929 [ 561.207734][T13334] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000004 [ 561.207750][T13334] RBP: 00007fb75177b090 R08: 0000000000000000 R09: 0000000000000000 [ 561.207766][T13334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 561.207780][T13334] R13: 0000000000000000 R14: 00007fb750bb5fa0 R15: 00007ffdd4677d68 [ 561.207816][T13334] [ 563.570462][T13356] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1517'. [ 564.260962][T13373] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input151 [ 564.344811][T13374] FAULT_INJECTION: forcing a failure. [ 564.344811][T13374] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 564.379548][T13374] CPU: 1 UID: 0 PID: 13374 Comm: syz.2.1519 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 564.379585][T13374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 564.379598][T13374] Call Trace: [ 564.379604][T13374] [ 564.379611][T13374] dump_stack_lvl+0x16c/0x1f0 [ 564.379647][T13374] should_fail_ex+0x512/0x640 [ 564.379679][T13374] _copy_from_user+0x2e/0xd0 [ 564.379709][T13374] input_event_from_user+0xb9/0x290 [ 564.379739][T13374] ? __pfx_input_event_from_user+0x10/0x10 [ 564.379767][T13374] ? __pfx___might_resched+0x10/0x10 [ 564.379786][T13374] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 564.379813][T13374] ? input_event+0x98/0xb0 [ 564.379840][T13374] uinput_write+0xbe7/0xff0 [ 564.379877][T13374] ? __pfx_uinput_write+0x10/0x10 [ 564.379909][T13374] ? bpf_lsm_file_permission+0x9/0x10 [ 564.379929][T13374] ? security_file_permission+0x71/0x210 [ 564.379955][T13374] ? rw_verify_area+0xcf/0x680 [ 564.379980][T13374] ? __pfx_uinput_write+0x10/0x10 [ 564.380009][T13374] vfs_writev+0x5df/0xde0 [ 564.380040][T13374] ? __pfx_vfs_writev+0x10/0x10 [ 564.380083][T13374] ? __fget_files+0x20e/0x3c0 [ 564.380107][T13374] ? __fget_files+0x120/0x3c0 [ 564.380144][T13374] ? do_writev+0x28c/0x340 [ 564.380168][T13374] do_writev+0x28c/0x340 [ 564.380195][T13374] ? __pfx_do_writev+0x10/0x10 [ 564.380229][T13374] do_syscall_64+0xcd/0x490 [ 564.380263][T13374] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 564.380284][T13374] RIP: 0033:0x7f630e38e929 [ 564.380300][T13374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 564.380320][T13374] RSP: 002b:00007f630f221038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 564.380339][T13374] RAX: ffffffffffffffda RBX: 00007f630e5b6080 RCX: 00007f630e38e929 [ 564.380352][T13374] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000004 [ 564.380365][T13374] RBP: 00007f630f221090 R08: 0000000000000000 R09: 0000000000000000 [ 564.380382][T13374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 564.380394][T13374] R13: 0000000000000000 R14: 00007f630e5b6080 R15: 00007ffd77505058 [ 564.380419][T13374] [ 565.054865][T13382] .SR: entered promiscuous mode [ 565.168404][T13382] Invalid ELF header magic: != ELF [ 565.689555][T13391] FAULT_INJECTION: forcing a failure. [ 565.689555][T13391] name failslab, interval 1, probability 0, space 0, times 0 [ 565.759512][T13391] CPU: 1 UID: 0 PID: 13391 Comm: syz.2.1524 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 565.759554][T13391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 565.759571][T13391] Call Trace: [ 565.759580][T13391] [ 565.759591][T13391] dump_stack_lvl+0x16c/0x1f0 [ 565.759642][T13391] should_fail_ex+0x512/0x640 [ 565.759686][T13391] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 565.759751][T13391] should_failslab+0xc2/0x120 [ 565.759781][T13391] __kmalloc_cache_noprof+0x6a/0x3e0 [ 565.759825][T13391] ? kvm_hv_vcpu_init+0xa4/0x7a0 [ 565.759869][T13391] kvm_hv_vcpu_init+0xa4/0x7a0 [ 565.759911][T13391] kvm_hv_get_msr_common+0xfe/0x1a90 [ 565.759958][T13391] ? __pfx_kvm_hv_get_msr_common+0x10/0x10 [ 565.760016][T13391] kvm_get_msr_common+0x13bf/0x2370 [ 565.760071][T13391] vmx_get_msr+0x7c0/0x1330 [ 565.760112][T13391] __kvm_get_msr+0x23b/0x310 [ 565.760166][T13391] ? __pfx___kvm_get_msr+0x10/0x10 [ 565.760229][T13391] kvm_get_msr_ignored_check+0x30/0x430 [ 565.760285][T13391] ? __pfx_do_get_msr+0x10/0x10 [ 565.760333][T13391] msr_io+0x181/0x2a0 [ 565.760369][T13391] ? __pfx_msr_io+0x10/0x10 [ 565.760400][T13391] ? arch_stack_walk+0xa6/0x100 [ 565.760460][T13391] kvm_arch_vcpu_ioctl+0x7fb/0x5120 [ 565.760492][T13391] ? kvm_arch_vcpu_ioctl+0x7d2/0x5120 [ 565.760527][T13391] ? stack_trace_save+0x8e/0xc0 [ 565.760565][T13391] ? stack_depot_save_flags+0x28/0xa40 [ 565.760613][T13391] ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10 [ 565.760645][T13391] ? __lock_acquire+0xb8a/0x1c90 [ 565.760693][T13391] ? kasan_save_stack+0x42/0x60 [ 565.760736][T13391] ? kasan_save_stack+0x33/0x60 [ 565.760780][T13391] ? kasan_save_track+0x14/0x30 [ 565.760824][T13391] ? kasan_save_free_info+0x3b/0x60 [ 565.760861][T13391] ? __kasan_slab_free+0x51/0x70 [ 565.760908][T13391] ? kfree+0x2b4/0x4d0 [ 565.760945][T13391] ? tomoyo_path_number_perm+0x470/0x580 [ 565.760981][T13391] ? security_file_ioctl+0x9b/0x240 [ 565.761026][T13391] ? __x64_sys_ioctl+0xb7/0x210 [ 565.761064][T13391] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 565.761103][T13391] ? __lock_acquire+0xb8a/0x1c90 [ 565.761160][T13391] ? __mutex_trylock_common+0xe9/0x250 [ 565.761208][T13391] ? __pfx___mutex_trylock_common+0x10/0x10 [ 565.761257][T13391] ? __pfx___might_resched+0x10/0x10 [ 565.761294][T13391] ? rcu_is_watching+0x12/0xc0 [ 565.761327][T13391] ? trace_contention_end+0xdd/0x130 [ 565.761372][T13391] ? __mutex_lock+0x1ca/0xb90 [ 565.761428][T13391] ? kvm_vcpu_ioctl+0x280/0x1690 [ 565.761469][T13391] ? __pfx___mutex_lock+0x10/0x10 [ 565.761537][T13391] ? tomoyo_path_number_perm+0x18d/0x580 [ 565.761583][T13391] ? kvm_vcpu_ioctl+0x1236/0x1690 [ 565.761619][T13391] kvm_vcpu_ioctl+0x1236/0x1690 [ 565.761662][T13391] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 565.761742][T13391] ? find_held_lock+0x2b/0x80 [ 565.761772][T13391] ? hook_file_ioctl_common+0x145/0x410 [ 565.761816][T13391] ? __fget_files+0x20e/0x3c0 [ 565.761866][T13391] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 565.761926][T13391] __x64_sys_ioctl+0x18e/0x210 [ 565.761967][T13391] do_syscall_64+0xcd/0x490 [ 565.762028][T13391] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 565.762062][T13391] RIP: 0033:0x7f630e38e929 [ 565.762086][T13391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 565.762117][T13391] RSP: 002b:00007f630f242038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 565.762147][T13391] RAX: ffffffffffffffda RBX: 00007f630e5b5fa0 RCX: 00007f630e38e929 [ 565.762168][T13391] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000004 [ 565.762187][T13391] RBP: 00007f630f242090 R08: 0000000000000000 R09: 0000000000000000 [ 565.762207][T13391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 565.762225][T13391] R13: 0000000000000000 R14: 00007f630e5b5fa0 R15: 00007ffd77505058 [ 565.762267][T13391] [ 567.934305][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 567.940724][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 568.849481][T13412] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 569.017764][T13412] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 569.033438][T13412] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 569.050338][T13412] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 569.368528][T13436] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input152 [ 569.622446][T13439] kvm: kvm [13437]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001f) [ 569.734107][T13439] FAULT_INJECTION: forcing a failure. [ 569.734107][T13439] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 569.787755][T13439] CPU: 1 UID: 0 PID: 13439 Comm: syz.2.1537 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 569.787791][T13439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 569.787808][T13439] Call Trace: [ 569.787818][T13439] [ 569.787828][T13439] dump_stack_lvl+0x16c/0x1f0 [ 569.787874][T13439] should_fail_ex+0x512/0x640 [ 569.787924][T13439] ? __pfx_do_get_msr+0x10/0x10 [ 569.787966][T13439] _copy_to_user+0x32/0xd0 [ 569.788010][T13439] ? __pfx_do_get_msr+0x10/0x10 [ 569.788052][T13439] msr_io+0x21f/0x2a0 [ 569.788082][T13439] ? __pfx_msr_io+0x10/0x10 [ 569.788108][T13439] ? arch_stack_walk+0xa6/0x100 [ 569.788159][T13439] kvm_arch_vcpu_ioctl+0x7fb/0x5120 [ 569.788187][T13439] ? kvm_arch_vcpu_ioctl+0x7d2/0x5120 [ 569.788219][T13439] ? stack_trace_save+0x8e/0xc0 [ 569.788251][T13439] ? stack_depot_save_flags+0x28/0xa40 [ 569.788294][T13439] ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10 [ 569.788321][T13439] ? __lock_acquire+0xb8a/0x1c90 [ 569.788362][T13439] ? kasan_save_stack+0x42/0x60 [ 569.788401][T13439] ? kasan_save_stack+0x33/0x60 [ 569.788441][T13439] ? kasan_save_track+0x14/0x30 [ 569.788480][T13439] ? kasan_save_free_info+0x3b/0x60 [ 569.788513][T13439] ? __kasan_slab_free+0x51/0x70 [ 569.788555][T13439] ? kfree+0x2b4/0x4d0 [ 569.788590][T13439] ? tomoyo_path_number_perm+0x470/0x580 [ 569.788621][T13439] ? security_file_ioctl+0x9b/0x240 [ 569.788654][T13439] ? __x64_sys_ioctl+0xb7/0x210 [ 569.788686][T13439] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 569.788721][T13439] ? __lock_acquire+0xb8a/0x1c90 [ 569.788770][T13439] ? __mutex_trylock_common+0xe9/0x250 [ 569.788811][T13439] ? __pfx___mutex_trylock_common+0x10/0x10 [ 569.788854][T13439] ? __pfx___might_resched+0x10/0x10 [ 569.788885][T13439] ? rcu_is_watching+0x12/0xc0 [ 569.788920][T13439] ? trace_contention_end+0xdd/0x130 [ 569.788960][T13439] ? __mutex_lock+0x1ca/0xb90 [ 569.789008][T13439] ? kvm_vcpu_ioctl+0x280/0x1690 [ 569.789050][T13439] ? __pfx___mutex_lock+0x10/0x10 [ 569.789108][T13439] ? tomoyo_path_number_perm+0x18d/0x580 [ 569.789148][T13439] ? kvm_vcpu_ioctl+0x1236/0x1690 [ 569.789178][T13439] kvm_vcpu_ioctl+0x1236/0x1690 [ 569.789216][T13439] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 569.789274][T13439] ? find_held_lock+0x2b/0x80 [ 569.789302][T13439] ? hook_file_ioctl_common+0x145/0x410 [ 569.789341][T13439] ? __fget_files+0x20e/0x3c0 [ 569.789384][T13439] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 569.789419][T13439] __x64_sys_ioctl+0x18e/0x210 [ 569.789455][T13439] do_syscall_64+0xcd/0x490 [ 569.789501][T13439] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 569.789530][T13439] RIP: 0033:0x7f630e38e929 [ 569.789552][T13439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 569.789579][T13439] RSP: 002b:00007f630f242038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 569.789604][T13439] RAX: ffffffffffffffda RBX: 00007f630e5b5fa0 RCX: 00007f630e38e929 [ 569.789622][T13439] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000004 [ 569.789639][T13439] RBP: 00007f630f242090 R08: 0000000000000000 R09: 0000000000000000 [ 569.789655][T13439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 569.789671][T13439] R13: 0000000000000000 R14: 00007f630e5b5fa0 R15: 00007ffd77505058 [ 569.789706][T13439] [ 570.115665][T12887] Bluetooth: hci2: command 0x0406 tx timeout [ 570.747751][T13458] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 570.889590][T12887] Bluetooth: hci3: command 0x0406 tx timeout [ 571.050191][T12887] Bluetooth: hci4: command 0x0c1a tx timeout [ 571.129621][T12887] Bluetooth: hci0: command 0x040f tx timeout [ 572.857827][T13504] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input153 [ 573.854005][T13506] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input154 [ 575.728928][T13566] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input155 [ 575.970508][T13556] ubi: mtd0 is already attached to ubi0 [ 576.263794][T13570] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input156 [ 576.577141][T13582] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input157 [ 576.592454][T13577] ubi: mtd0 is already attached to ubi0 [ 577.015995][T13583] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input158 [ 577.358655][T13587] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input159 [ 578.267719][T13596] can: request_module (can-proto-0) failed. [ 578.412508][T13612] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input160 [ 579.727165][T13603] sysfs_service_op_show: Client not running :-5: [ 580.139284][T13628] kexec: Could not allocate control_code_buffer [ 580.419517][T13639] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input161 [ 582.403738][T13673] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1579'. [ 582.855004][T13679] sd 0:0:1:0: PR command failed: 1026 [ 582.860610][T13679] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 582.867362][T13679] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 584.039110][T13700] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input162 [ 584.711199][T13701] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input163 [ 587.324257][T13748] can: request_module (can-proto-0) failed. [ 587.581661][T13748] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input164 [ 587.962572][T13775] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input165 [ 588.461695][T13778] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input166 [ 590.145775][T13788] Process accounting paused [ 591.691183][T13866] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input167 [ 591.912238][T13867] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input168 [ 592.040236][T13862] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1614'. [ 592.186703][T13878] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 593.645143][T13891] raw_sendmsg: syz.5.1621 forgot to set AF_INET. Fix it! [ 594.296018][T13910] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input169 [ 594.957647][T13912] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input170 [ 595.582907][T13932] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input171 [ 596.156330][T13934] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input172 [ 596.528983][T13965] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input173 [ 596.595269][T13945] can: request_module (can-proto-0) failed. [ 597.358544][T13979] FAULT_INJECTION: forcing a failure. [ 597.358544][T13979] name failslab, interval 1, probability 0, space 0, times 0 [ 597.415297][T13979] CPU: 1 UID: 0 PID: 13979 Comm: syz.3.1635 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 597.415353][T13979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 597.415372][T13979] Call Trace: [ 597.415383][T13979] [ 597.415395][T13979] dump_stack_lvl+0x16c/0x1f0 [ 597.415458][T13979] should_fail_ex+0x512/0x640 [ 597.415508][T13979] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 597.415556][T13979] should_failslab+0xc2/0x120 [ 597.415584][T13979] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 597.415628][T13979] ? alloc_empty_file+0x55/0x1e0 [ 597.415664][T13979] alloc_empty_file+0x55/0x1e0 [ 597.415696][T13979] path_openat+0xda/0x2cb0 [ 597.415735][T13979] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 597.415778][T13979] ? __pfx_path_openat+0x10/0x10 [ 597.415822][T13979] ? __lock_acquire+0xb8a/0x1c90 [ 597.415867][T13979] do_filp_open+0x20b/0x470 [ 597.415909][T13979] ? __pfx_do_filp_open+0x10/0x10 [ 597.415976][T13979] ? alloc_fd+0x471/0x7d0 [ 597.416024][T13979] do_sys_openat2+0x11b/0x1d0 [ 597.416056][T13979] ? __pfx_do_sys_openat2+0x10/0x10 [ 597.416102][T13979] __x64_sys_openat+0x174/0x210 [ 597.416140][T13979] ? __pfx___x64_sys_openat+0x10/0x10 [ 597.416189][T13979] do_syscall_64+0xcd/0x490 [ 597.416237][T13979] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 597.416266][T13979] RIP: 0033:0x7f602bb8e929 [ 597.416289][T13979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 597.416318][T13979] RSP: 002b:00007f602ca52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 597.416345][T13979] RAX: ffffffffffffffda RBX: 00007f602bdb5fa0 RCX: 00007f602bb8e929 [ 597.416364][T13979] RDX: 0000000000022b80 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 597.416382][T13979] RBP: 00007f602bc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 597.416400][T13979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 597.416418][T13979] R13: 0000000000000000 R14: 00007f602bdb5fa0 R15: 00007ffcaf2531d8 [ 597.416454][T13979] [ 600.102046][T14022] can: request_module (can-proto-0) failed. [ 600.306116][T14036] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input174 [ 602.150320][T14068] netlink: 326 bytes leftover after parsing attributes in process `syz.5.1654'. [ 603.364189][T14094] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input175 [ 604.128949][T14095] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input176 [ 604.608130][T14118] netlink: 350 bytes leftover after parsing attributes in process `syz.2.1664'. [ 607.035137][T14166] can: request_module (can-proto-3) failed. [ 607.805507][T14170] can: request_module (can-proto-3) failed. [ 609.999341][T14201] FAULT_INJECTION: forcing a failure. [ 609.999341][T14201] name failslab, interval 1, probability 0, space 0, times 0 [ 610.080102][T14201] CPU: 0 UID: 0 PID: 14201 Comm: syz.5.1687 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 610.080135][T14201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 610.080148][T14201] Call Trace: [ 610.080156][T14201] [ 610.080164][T14201] dump_stack_lvl+0x16c/0x1f0 [ 610.080202][T14201] should_fail_ex+0x512/0x640 [ 610.080232][T14201] ? fs_reclaim_acquire+0xae/0x150 [ 610.080259][T14201] ? tomoyo_encode2+0x100/0x3e0 [ 610.080286][T14201] should_failslab+0xc2/0x120 [ 610.080306][T14201] __kmalloc_noprof+0xd2/0x510 [ 610.080343][T14201] tomoyo_encode2+0x100/0x3e0 [ 610.080381][T14201] tomoyo_encode+0x29/0x50 [ 610.080409][T14201] tomoyo_realpath_from_path+0x18f/0x6e0 [ 610.080443][T14201] ? tomoyo_profile+0x47/0x60 [ 610.080479][T14201] tomoyo_path_number_perm+0x245/0x580 [ 610.080504][T14201] ? tomoyo_path_number_perm+0x237/0x580 [ 610.080532][T14201] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 610.080559][T14201] ? find_held_lock+0x2b/0x80 [ 610.080603][T14201] ? find_held_lock+0x2b/0x80 [ 610.080624][T14201] ? hook_file_ioctl_common+0x145/0x410 [ 610.080653][T14201] ? __fget_files+0x20e/0x3c0 [ 610.080687][T14201] security_file_ioctl+0x9b/0x240 [ 610.080716][T14201] __x64_sys_ioctl+0xb7/0x210 [ 610.080743][T14201] do_syscall_64+0xcd/0x490 [ 610.080780][T14201] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 610.080802][T14201] RIP: 0033:0x7f6b67b8e929 [ 610.080820][T14201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 610.080841][T14201] RSP: 002b:00007f6b68ace038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 610.080862][T14201] RAX: ffffffffffffffda RBX: 00007f6b67db5fa0 RCX: 00007f6b67b8e929 [ 610.080877][T14201] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000004 [ 610.080891][T14201] RBP: 00007f6b68ace090 R08: 0000000000000000 R09: 0000000000000000 [ 610.080905][T14201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 610.080918][T14201] R13: 0000000000000000 R14: 00007f6b67db5fa0 R15: 00007fffa97c96c8 [ 610.080945][T14201] [ 610.080962][T14201] ERROR: Out of memory at tomoyo_realpath_from_path. [ 610.085120][T14204] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input177 [ 611.101905][T14206] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input178 [ 611.902403][T14216] Invalid ELF header magic: != ELF [ 615.261311][T14270] can: request_module (can-proto-3) failed. [ 616.516986][T14293] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1703'. [ 617.203880][T14304] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1705'. [ 617.566867][T14328] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input179 [ 617.848240][T14312] can: request_module (can-proto-0) failed. [ 618.054832][T14333] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input180 [ 618.322527][T14329] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input181 [ 618.384934][T14349] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input182 [ 618.399961][T14348] netlink: 350 bytes leftover after parsing attributes in process `syz.2.1711'. [ 618.668251][T14355] FAULT_INJECTION: forcing a failure. [ 618.668251][T14355] name failslab, interval 1, probability 0, space 0, times 0 [ 618.719504][T14355] CPU: 0 UID: 0 PID: 14355 Comm: syz.3.1713 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 618.719540][T14355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 618.719556][T14355] Call Trace: [ 618.719565][T14355] [ 618.719577][T14355] dump_stack_lvl+0x16c/0x1f0 [ 618.719637][T14355] should_fail_ex+0x512/0x640 [ 618.719676][T14355] ? fs_reclaim_acquire+0xae/0x150 [ 618.719708][T14355] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 618.719740][T14355] should_failslab+0xc2/0x120 [ 618.719763][T14355] __kmalloc_noprof+0xd2/0x510 [ 618.719803][T14355] tomoyo_realpath_from_path+0xc2/0x6e0 [ 618.719838][T14355] ? tomoyo_profile+0x47/0x60 [ 618.719876][T14355] tomoyo_path_number_perm+0x245/0x580 [ 618.719903][T14355] ? tomoyo_path_number_perm+0x237/0x580 [ 618.719933][T14355] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 618.719962][T14355] ? find_held_lock+0x2b/0x80 [ 618.720010][T14355] ? find_held_lock+0x2b/0x80 [ 618.720032][T14355] ? hook_file_ioctl_common+0x145/0x410 [ 618.720063][T14355] ? __fget_files+0x20e/0x3c0 [ 618.720099][T14355] security_file_ioctl+0x9b/0x240 [ 618.720130][T14355] __x64_sys_ioctl+0xb7/0x210 [ 618.720159][T14355] do_syscall_64+0xcd/0x490 [ 618.720198][T14355] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 618.720222][T14355] RIP: 0033:0x7f602bb8e929 [ 618.720240][T14355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 618.720263][T14355] RSP: 002b:00007f602ca52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 618.720285][T14355] RAX: ffffffffffffffda RBX: 00007f602bdb5fa0 RCX: 00007f602bb8e929 [ 618.720301][T14355] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000003 [ 618.720317][T14355] RBP: 00007f602ca52090 R08: 0000000000000000 R09: 0000000000000000 [ 618.720332][T14355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 618.720347][T14355] R13: 0000000000000000 R14: 00007f602bdb5fa0 R15: 00007ffcaf2531d8 [ 618.720378][T14355] [ 618.720393][T14355] ERROR: Out of memory at tomoyo_realpath_from_path. [ 620.432650][T14389] netlink: 350 bytes leftover after parsing attributes in process `syz.4.1720'. [ 620.720621][T14394] can: request_module (can-proto-0) failed. [ 620.856698][T14379] Process accounting resumed [ 621.066591][T14402] can: request_module (can-proto-3) failed. [ 621.390542][T14394] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input183 [ 621.603036][T14410] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1725'. [ 621.720147][T14410] HfR: entered promiscuous mode [ 621.904930][T14417] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1726'. [ 622.607968][T14431] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1731'. [ 623.710085][T14448] can: request_module (can-proto-0) failed. [ 623.760838][T14448] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input184 [ 624.567228][T14477] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input185 [ 624.616033][T14472] can: request_module (can-proto-3) failed. [ 624.644611][T14479] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1742'. [ 624.968898][T14481] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input186 [ 625.836162][T14487] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input187 [ 626.122606][T14489] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input188 [ 626.804245][T14516] netlink: 350 bytes leftover after parsing attributes in process `syz.2.1751'. [ 626.815542][T14510] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1749'. [ 626.815573][T14517] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1749'. [ 626.840418][T14510] hsr_slave_1: left promiscuous mode [ 627.725208][T14554] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1760'. [ 629.400835][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 629.409169][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 630.976001][T14605] random: crng reseeded on system resumption [ 631.285796][T14606] can: request_module (can-proto-3) failed. [ 632.436708][T14639] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input189 [ 632.980807][T14641] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input190 [ 633.831340][T14673] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1783'. [ 633.904043][T14673] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1783'. [ 634.237852][T14682] vhci_hcd: invalid port number 16 [ 634.247475][T14682] vhci_hcd: invalid port number 16 [ 634.813661][T14693] can: request_module (can-proto-3) failed. [ 635.777569][ T30] audit: type=1806 audit(4294968444.201:13): xattr="." res=0 [ 636.260450][T14724] netlink: 266 bytes leftover after parsing attributes in process `syz.4.1792'. [ 636.319529][T14724] IPv6: NLM_F_CREATE should be specified when creating new route [ 636.982826][T14762] program syz.3.1801 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 637.009843][T14758] can: request_module (can-proto-3) failed. [ 637.938216][T14789] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input191 [ 639.429588][T14825] can: request_module (can-proto-3) failed. [ 639.474320][T14817] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1812'. [ 639.524234][T14817] openvswitch: HfR: Dropping previously announced user features [ 639.741359][T14847] FAULT_INJECTION: forcing a failure. [ 639.741359][T14847] name failslab, interval 1, probability 0, space 0, times 0 [ 639.799734][T14847] CPU: 1 UID: 0 PID: 14847 Comm: syz.5.1817 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 639.799783][T14847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 639.799801][T14847] Call Trace: [ 639.799810][T14847] [ 639.799822][T14847] dump_stack_lvl+0x16c/0x1f0 [ 639.799871][T14847] should_fail_ex+0x512/0x640 [ 639.799913][T14847] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 639.799964][T14847] should_failslab+0xc2/0x120 [ 639.799992][T14847] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 639.800035][T14847] ? __lock_acquire+0xb8a/0x1c90 [ 639.800074][T14847] ? __d_alloc+0x31/0xaa0 [ 639.800123][T14847] __d_alloc+0x31/0xaa0 [ 639.800170][T14847] d_alloc_pseudo+0x1c/0xc0 [ 639.800202][T14847] alloc_file_pseudo+0xcf/0x230 [ 639.800240][T14847] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 639.800275][T14847] ? do_raw_spin_unlock+0x172/0x230 [ 639.800328][T14847] __anon_inode_getfile+0xf7/0x3a0 [ 639.800378][T14847] do_epoll_create+0x31b/0x470 [ 639.800415][T14847] __x64_sys_epoll_create+0x45/0x70 [ 639.800451][T14847] do_syscall_64+0xcd/0x490 [ 639.800500][T14847] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 639.800530][T14847] RIP: 0033:0x7f6b67b8e929 [ 639.800552][T14847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 639.800582][T14847] RSP: 002b:00007f6b68ace038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d5 [ 639.800610][T14847] RAX: ffffffffffffffda RBX: 00007f6b67db5fa0 RCX: 00007f6b67b8e929 [ 639.800628][T14847] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 639.800645][T14847] RBP: 00007f6b67c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 639.800662][T14847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 639.800678][T14847] R13: 0000000000000000 R14: 00007f6b67db5fa0 R15: 00007fffa97c96c8 [ 639.800714][T14847] [ 639.997487][ C1] vkms_vblank_simulate: vblank timer overrun [ 641.276874][T14860] FAULT_INJECTION: forcing a failure. [ 641.276874][T14860] name failslab, interval 1, probability 0, space 0, times 0 [ 641.299689][T14860] CPU: 1 UID: 0 PID: 14860 Comm: syz.3.1814 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 641.299727][T14860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 641.299743][T14860] Call Trace: [ 641.299755][T14860] [ 641.299766][T14860] dump_stack_lvl+0x16c/0x1f0 [ 641.299814][T14860] should_fail_ex+0x512/0x640 [ 641.299861][T14860] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 641.299910][T14860] should_failslab+0xc2/0x120 [ 641.299937][T14860] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 641.299979][T14860] ? trace_cap_capable+0x18d/0x200 [ 641.300006][T14860] ? vm_area_dup+0x27/0x8d0 [ 641.300050][T14860] vm_area_dup+0x27/0x8d0 [ 641.300091][T14860] dup_mmap+0x877/0x21d0 [ 641.300139][T14860] ? __pfx_dup_mmap+0x10/0x10 [ 641.300199][T14860] copy_process+0x4081/0x76a0 [ 641.300234][T14860] ? __pfx___futex_wait+0x10/0x10 [ 641.300290][T14860] ? __pfx_copy_process+0x10/0x10 [ 641.300345][T14860] kernel_clone+0xfc/0x960 [ 641.300394][T14860] ? __pfx_kernel_clone+0x10/0x10 [ 641.300452][T14860] __do_sys_clone+0xce/0x120 [ 641.300488][T14860] ? __pfx___do_sys_clone+0x10/0x10 [ 641.300522][T14860] ? ksys_unshare+0x687/0xa40 [ 641.300575][T14860] ? xfd_validate_state+0x61/0x180 [ 641.300627][T14860] do_syscall_64+0xcd/0x490 [ 641.300675][T14860] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 641.300705][T14860] RIP: 0033:0x7f602bb8e929 [ 641.300728][T14860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 641.300757][T14860] RSP: 002b:00007f602ca0ffe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 641.300784][T14860] RAX: ffffffffffffffda RBX: 00007f602bdb6160 RCX: 00007f602bb8e929 [ 641.300802][T14860] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 641.300819][T14860] RBP: 00007f602bc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 641.300836][T14860] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 641.300853][T14860] R13: 0000000000000000 R14: 00007f602bdb6160 R15: 00007ffcaf2531d8 [ 641.300889][T14860] [ 641.514786][ C1] vkms_vblank_simulate: vblank timer overrun [ 643.949746][T14937] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input192 [ 645.111290][T14957] cougar: G6 mapped to space [ 645.301032][T14966] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1841'. [ 646.866846][T15000] can: request_module (can-proto-3) failed. [ 647.191394][T15004] can: request_module (can-proto-3) failed. [ 647.785703][T15017] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input193 [ 647.973425][ T30] audit: type=1800 audit(4294968456.401:14): pid=15022 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1852" name="dmabuf" dev="dmabuf" ino=7 res=0 errno=0 [ 648.084899][T15018] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input194 [ 649.196111][T15047] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1859'. [ 649.387911][T15048] [ 649.938518][T15064] can: request_module (can-proto-3) failed. [ 650.334731][T15070] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input195 [ 650.931406][T15075] Process accounting paused [ 651.033160][T15090] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 651.083124][T15090] CIFS mount error: No usable UNC path provided in device string! [ 651.083124][T15090] [ 651.094189][T15090] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 651.116543][T15071] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input196 [ 651.239281][T15093] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1868'. [ 652.632524][T15110] can: request_module (can-proto-0) failed. [ 652.851861][T15110] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input197 [ 653.148791][T15125] can: request_module (can-proto-3) failed. [ 653.438205][T15138] kAFS: No cell specified [ 653.703417][T15147] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1878'. [ 655.074154][T15181] can: request_module (can-proto-3) failed. [ 655.773188][T15201] can: request_module (can-proto-3) failed. [ 656.299600][T15204] can: request_module (can-proto-0) failed. [ 656.462196][T15218] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input198 [ 658.260448][T15251] FAULT_INJECTION: forcing a failure. [ 658.260448][T15251] name failslab, interval 1, probability 0, space 0, times 0 [ 658.296883][T15251] CPU: 0 UID: 0 PID: 15251 Comm: syz.5.1902 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 658.296926][T15251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 658.296943][T15251] Call Trace: [ 658.296953][T15251] [ 658.296964][T15251] dump_stack_lvl+0x16c/0x1f0 [ 658.297014][T15251] should_fail_ex+0x512/0x640 [ 658.297054][T15251] ? __kmalloc_noprof+0xbf/0x510 [ 658.297101][T15251] ? sk_prot_alloc+0x1a8/0x2a0 [ 658.297130][T15251] should_failslab+0xc2/0x120 [ 658.297158][T15251] __kmalloc_noprof+0xd2/0x510 [ 658.297207][T15251] sk_prot_alloc+0x1a8/0x2a0 [ 658.297242][T15251] sk_alloc+0x36/0xc20 [ 658.297284][T15251] mISDN_sock_create+0x275/0x410 [ 658.297331][T15251] __sock_create+0x335/0x8d0 [ 658.297373][T15251] __sys_socket+0x14d/0x260 [ 658.297407][T15251] ? __pfx___sys_socket+0x10/0x10 [ 658.297441][T15251] ? xfd_validate_state+0x61/0x180 [ 658.297476][T15251] ? __task_pid_nr_ns+0x17c/0x500 [ 658.297522][T15251] __x64_sys_socket+0x72/0xb0 [ 658.297556][T15251] ? lockdep_hardirqs_on+0x7c/0x110 [ 658.297599][T15251] do_syscall_64+0xcd/0x490 [ 658.297647][T15251] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 658.297677][T15251] RIP: 0033:0x7f6b67b8e929 [ 658.297700][T15251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 658.297731][T15251] RSP: 002b:00007f6b68ace038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 658.297758][T15251] RAX: ffffffffffffffda RBX: 00007f6b67db5fa0 RCX: 00007f6b67b8e929 [ 658.297777][T15251] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 0000000000000022 [ 658.297794][T15251] RBP: 00007f6b67c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 658.297811][T15251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 658.297828][T15251] R13: 0000000000000000 R14: 00007f6b67db5fa0 R15: 00007fffa97c96c8 [ 658.297873][T15251] syzkaller syzkaller login: [ 661.499758][T15348] can: request_module (can-proto-0) failed. [ 663.307339][T15377] can: request_module (can-proto-3) failed. [ 663.915048][T15390] CIFS mount error: No usable UNC path provided in device string! [ 663.915048][T15390] [ 663.939114][T15390] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 664.400195][T15398] futex_wake_op: syz.3.1922 tries to shift op by -9; fix this program [ 667.374692][T15449] can: request_module (can-proto-0) failed. [ 667.519766][T15459] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input199 [ 667.661849][T15469] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 668.515902][T15479] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1931'. [ 669.205063][ C1] vcan0: j1939_tp_rxtimer: 0xffff888069a37c00: rx timeout, send abort [ 669.245789][T15495] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1935'. [ 669.420601][T15499] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1936'. [ 669.496397][T15499] bond0: entered promiscuous mode [ 669.534107][T15499] bond_slave_0: entered promiscuous mode [ 669.560210][T15499] bond_slave_1: entered promiscuous mode [ 669.714225][ C1] vcan0: j1939_tp_rxtimer: 0xffff888069a37c00: abort rx timeout. Force session deactivation [ 670.348222][ T30] audit: type=1326 audit(4294968478.771:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15516 comm="syz.3.1942" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f602bb8e929 code=0x0 [ 670.424792][T15521] FAULT_INJECTION: forcing a failure. [ 670.424792][T15521] name failslab, interval 1, probability 0, space 0, times 0 [ 670.448044][T15521] CPU: 1 UID: 0 PID: 15521 Comm: syz.3.1942 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 670.448084][T15521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 670.448101][T15521] Call Trace: [ 670.448111][T15521] [ 670.448122][T15521] dump_stack_lvl+0x16c/0x1f0 [ 670.448171][T15521] should_fail_ex+0x512/0x640 [ 670.448213][T15521] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 670.448255][T15521] should_failslab+0xc2/0x120 [ 670.448284][T15521] __kmalloc_cache_noprof+0x6a/0x3e0 [ 670.448324][T15521] ? snd_pcm_oss_change_params_locked+0x211/0x3a30 [ 670.448360][T15521] ? kasan_save_track+0x14/0x30 [ 670.448406][T15521] snd_pcm_oss_change_params_locked+0x211/0x3a30 [ 670.448444][T15521] ? rcu_is_watching+0x12/0xc0 [ 670.448478][T15521] ? __mutex_lock+0x1ca/0xb90 [ 670.448527][T15521] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 670.448564][T15521] ? __pfx___mutex_lock+0x10/0x10 [ 670.448616][T15521] ? __fsnotify_parent+0x24b/0xc40 [ 670.448663][T15521] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 670.448698][T15521] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 670.448730][T15521] snd_pcm_oss_sync+0x1de/0x840 [ 670.448767][T15521] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 670.448811][T15521] snd_pcm_oss_release+0x28b/0x310 [ 670.448848][T15521] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 670.448882][T15521] __fput+0x3ff/0xb70 [ 670.448920][T15521] task_work_run+0x14d/0x240 [ 670.448967][T15521] ? __pfx_task_work_run+0x10/0x10 [ 670.449012][T15521] ? __pfx___do_sys_close_range+0x10/0x10 [ 670.449064][T15521] exit_to_user_mode_loop+0xeb/0x110 [ 670.449112][T15521] do_syscall_64+0x3f6/0x490 [ 670.449161][T15521] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 670.449193][T15521] RIP: 0033:0x7f602bb8e929 [ 670.449216][T15521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 670.449245][T15521] RSP: 002b:00007f602ca31038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 670.449272][T15521] RAX: 0000000000000000 RBX: 00007f602bdb6080 RCX: 00007f602bb8e929 [ 670.449290][T15521] RDX: 0000000000000000 RSI: fffffffffffff000 RDI: 0000000000000000 [ 670.449309][T15521] RBP: 00007f602bc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 670.449326][T15521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 670.449345][T15521] R13: 0000000000000000 R14: 00007f602bdb6080 R15: 00007ffcaf2531d8 [ 670.449380][T15521] [ 671.203913][T15524] ptrace attach of "./syz-executor exec"[7260] was attempted by ""[15524] [ 672.428678][T15560] tipc: Started in network mode [ 672.449553][T15560] tipc: Node identity 416ed536, cluster identity 4711 [ 672.456367][T15560] tipc: Node number set to 1097782582 [ 673.151538][T15574] can: request_module (can-proto-3) failed. [ 677.509729][T15670] can: request_module (can-proto-0) failed. [ 678.328279][T15682] can: request_module (can-proto-0) failed. [ 678.499659][T15682] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input200 [ 679.524283][T15698] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1969'. [ 680.613838][T15712] can: request_module (can-proto-3) failed. [ 681.456549][T15735] Process accounting resumed [ 685.875846][T15798] warn_alloc: 1 callbacks suppressed [ 685.875862][T15798] syz.3.1991: vmalloc error: size 20480, failed to allocate pages, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 686.085779][T15798] CPU: 0 UID: 0 PID: 15798 Comm: syz.3.1991 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 686.085819][T15798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 686.085833][T15798] Call Trace: [ 686.085840][T15798] [ 686.085848][T15798] dump_stack_lvl+0x16c/0x1f0 [ 686.085885][T15798] warn_alloc+0x248/0x3a0 [ 686.085919][T15798] ? __pfx_warn_alloc+0x10/0x10 [ 686.085950][T15798] ? css_rstat_updated+0x9d/0xd30 [ 686.085976][T15798] ? find_held_lock+0x2b/0x80 [ 686.085997][T15798] ? mod_memcg_page_state.part.0.constprop.0+0x1a5/0x580 [ 686.086030][T15798] __vmalloc_node_range_noprof+0x11d4/0x14b0 [ 686.086070][T15798] ? kvm_dev_ioctl+0x153/0x1ad0 [ 686.086110][T15798] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 686.086138][T15798] ? snprintf+0xc7/0x100 [ 686.086171][T15798] ? _raw_spin_unlock+0x28/0x50 [ 686.086202][T15798] ? kvm_dev_ioctl+0x153/0x1ad0 [ 686.086252][T15798] __vmalloc_node_noprof+0xad/0xf0 [ 686.086280][T15798] ? kvm_dev_ioctl+0x153/0x1ad0 [ 686.086318][T15798] kvm_dev_ioctl+0x153/0x1ad0 [ 686.086358][T15798] ? find_held_lock+0x2b/0x80 [ 686.086379][T15798] ? hook_file_ioctl_common+0x145/0x410 [ 686.086410][T15798] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 686.086459][T15798] ? __fget_files+0x20e/0x3c0 [ 686.086492][T15798] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 686.086528][T15798] __x64_sys_ioctl+0x18e/0x210 [ 686.086555][T15798] do_syscall_64+0xcd/0x490 [ 686.086590][T15798] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 686.086612][T15798] RIP: 0033:0x7f602bb8e929 [ 686.086628][T15798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 686.086648][T15798] RSP: 002b:00007f602ca31038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 686.086669][T15798] RAX: ffffffffffffffda RBX: 00007f602bdb6080 RCX: 00007f602bb8e929 [ 686.086684][T15798] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002 [ 686.086697][T15798] RBP: 00007f602bc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 686.086710][T15798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 686.086723][T15798] R13: 0000000000000000 R14: 00007f602bdb6080 R15: 00007ffcaf2531d8 [ 686.086749][T15798] [ 686.087905][T15798] Mem-Info: [ 686.355216][T15798] active_anon:48905 inactive_anon:24 isolated_anon:0 [ 686.355216][T15798] active_file:22529 inactive_file:41432 isolated_file:0 [ 686.355216][T15798] unevictable:768 dirty:359 writeback:0 [ 686.355216][T15798] slab_reclaimable:11669 slab_unreclaimable:97380 [ 686.355216][T15798] mapped:58784 shmem:31094 pagetables:1641 [ 686.355216][T15798] sec_pagetables:0 bounce:0 [ 686.355216][T15798] kernel_misc_reclaimable:0 [ 686.355216][T15798] free:1251523 free_pcp:26448 free_cma:0 [ 686.479414][T15798] Node 0 active_anon:200920kB inactive_anon:96kB active_file:90116kB inactive_file:165596kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:236136kB dirty:1536kB writeback:0kB shmem:128240kB shmem_thp:2048kB shmem_pmdmapped:2048kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12452kB pagetables:6452kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 686.549904][T15798] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:112kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 686.622719][T15798] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 686.669423][T15798] lowmem_reserve[]: 0 2481 2482 2482 2482 [ 686.706897][T15798] Node 0 DMA32 free:1088456kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:200176kB inactive_anon:96kB active_file:90116kB inactive_file:164276kB unevictable:1536kB writepending:1536kB present:3129332kB managed:2540848kB mlocked:0kB bounce:0kB free_pcp:88692kB local_pcp:48380kB free_cma:0kB [ 686.796561][T15798] lowmem_reserve[]: 0 0 1 1 1 [ 686.822179][T15798] Node 0 Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 686.882874][T15798] lowmem_reserve[]: 0 0 0 0 0 [ 686.919455][T15798] Node 1 Normal free:3896260kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:22552kB local_pcp:5228kB free_cma:0kB [ 686.976629][T15798] lowmem_reserve[]: 0 0 0 0 0 [ 686.982807][T15798] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 687.006393][T15798] Node 0 DMA32: 1375*4kB (UME) 626*8kB (UME) 807*16kB (UME) 232*32kB (UME) 30*64kB (UME) 17*128kB (UM) 7*256kB (UME) 35*512kB (UME) 38*1024kB (UME) 13*2048kB (UME) 238*4096kB (UM) = 1095036kB [ 687.067841][T15798] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 687.130515][T15798] Node 1 Normal: 131*4kB (UME) 22*8kB (UME) 10*16kB (UM) 219*32kB (UM) 113*64kB (UME) 32*128kB (UME) 16*256kB (UME) 10*512kB (UM) 5*1024kB (UME) 2*2048kB (UE) 942*4096kB (UM) = 3896060kB [ 687.179413][T15798] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 687.192708][T15798] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 687.219475][T15798] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 687.259392][T15798] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 687.280961][T15806] can: request_module (can-proto-0) failed. [ 687.314533][T15798] 94080 total pagecache pages [ 687.319257][T15798] 51 pages in swap cache [ 687.344915][T15798] Free swap = 124792kB [ 687.349269][T15798] Total swap = 124996kB [ 687.380877][T15798] 2097051 pages RAM [ 687.384729][T15798] 0 pages HighMem/MovableOnly [ 687.419430][T15798] 429861 pages reserved [ 687.423640][T15798] 0 pages cma reserved [ 687.627911][T15809] svc: failed to register nfsdv3 RPC service (errno 111). [ 687.687781][T15809] svc: failed to register nfsaclv3 RPC service (errno 111). [ 688.941454][T15814] can: request_module (can-proto-3) failed. [ 689.975306][T15853] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input202 [ 690.460836][T15854] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input203 [ 690.814811][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 690.821445][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 690.830531][T15856] can: request_module (can-proto-0) failed. [ 690.853844][T15856] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input204 [ 691.590731][T15885] can: request_module (can-proto-0) failed. [ 692.994006][T15913] can: request_module (can-proto-3) failed. [ 693.707039][T15928] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input205 [ 694.162636][T15937] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input206 [ 694.804942][T15952] can: request_module (can-proto-0) failed. [ 695.293819][T15963] vhci_hcd: invalid port number 16 [ 695.309598][T15963] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 696.097777][T15983] can: request_module (can-proto-3) failed. [ 698.379202][T16025] can: request_module (can-proto-3) failed. [ 698.701734][T16035] netlink: 350 bytes leftover after parsing attributes in process `syz.5.2031'. [ 699.434614][T16007] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 702.684947][T16106] netlink: 'syz.2.2045': attribute type 1 has an invalid length. [ 702.766852][T16102] can: request_module (can-proto-3) failed. [ 703.456821][T16117] can: request_module (can-proto-0) failed. [ 703.517836][T16122] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input207 [ 703.576528][T16110] hugetlbfs: syz.3.2046 (16110): Using mlock ulimits for SHM_HUGETLB is obsolete [ 703.848828][T16124] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input208 [ 703.855432][T16129] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input209 [ 704.348341][T16131] can: request_module (can-proto-4) failed. [ 705.739748][T16160] FAULT_INJECTION: forcing a failure. [ 705.739748][T16160] name fail_futex, interval 1, probability 0, space 0, times 0 [ 705.828296][T16160] CPU: 1 UID: 0 PID: 16160 Comm: syz.4.2056 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 705.828334][T16160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 705.828351][T16160] Call Trace: [ 705.828360][T16160] [ 705.828371][T16160] dump_stack_lvl+0x16c/0x1f0 [ 705.828415][T16160] should_fail_ex+0x512/0x640 [ 705.828460][T16160] get_futex_key+0x293/0x1540 [ 705.828496][T16160] ? find_held_lock+0x2b/0x80 [ 705.828523][T16160] ? __pfx_get_futex_key+0x10/0x10 [ 705.828558][T16160] ? __mutex_trylock_common+0xe9/0x250 [ 705.828605][T16160] futex_wake+0xea/0x530 [ 705.828649][T16160] ? __pfx_futex_wake+0x10/0x10 [ 705.828686][T16160] ? __lock_acquire+0xb8a/0x1c90 [ 705.828737][T16160] do_futex+0x1e3/0x350 [ 705.828772][T16160] ? __pfx_do_futex+0x10/0x10 [ 705.828804][T16160] ? __might_fault+0xe3/0x190 [ 705.828854][T16160] mm_release+0x24e/0x300 [ 705.828887][T16160] do_exit+0x68b/0x2bd0 [ 705.828939][T16160] ? __pfx_do_exit+0x10/0x10 [ 705.828976][T16160] ? do_raw_spin_lock+0x12c/0x2b0 [ 705.829017][T16160] ? find_held_lock+0x2b/0x80 [ 705.829050][T16160] do_group_exit+0xd3/0x2a0 [ 705.829091][T16160] get_signal+0x2673/0x26d0 [ 705.829135][T16160] ? __pfx_get_signal+0x10/0x10 [ 705.829166][T16160] ? do_futex+0x122/0x350 [ 705.829200][T16160] ? __pfx_do_futex+0x10/0x10 [ 705.829238][T16160] arch_do_signal_or_restart+0x8f/0x790 [ 705.829276][T16160] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 705.829318][T16160] ? xfd_validate_state+0x61/0x180 [ 705.829353][T16160] ? __pfx_do_writev+0x10/0x10 [ 705.829398][T16160] exit_to_user_mode_loop+0x84/0x110 [ 705.829444][T16160] do_syscall_64+0x3f6/0x490 [ 705.829491][T16160] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 705.829521][T16160] RIP: 0033:0x7fb75098e929 [ 705.829542][T16160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 705.829570][T16160] RSP: 002b:00007fb75177b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 705.829596][T16160] RAX: fffffffffffffe00 RBX: 00007fb750bb5fa8 RCX: 00007fb75098e929 [ 705.829614][T16160] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb750bb5fa8 [ 705.829631][T16160] RBP: 00007fb750bb5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 705.829647][T16160] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb750bb5fac [ 705.829663][T16160] R13: 0000000000000000 R14: 00007ffdd4677c80 R15: 00007ffdd4677d68 [ 705.829698][T16160] [ 706.116288][T16143] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 706.207920][ T30] audit: type=1804 audit(4294968520.575:16): pid=16171 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.2057" name="/newroot/227/file0" dev="tmpfs" ino=1198 res=1 errno=0 [ 708.055530][T16206] FAULT_INJECTION: forcing a failure. [ 708.055530][T16206] name failslab, interval 1, probability 0, space 0, times 0 [ 708.078763][T16206] CPU: 1 UID: 0 PID: 16206 Comm: syz.3.2065 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 708.078800][T16206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 708.078815][T16206] Call Trace: [ 708.078823][T16206] [ 708.078832][T16206] dump_stack_lvl+0x16c/0x1f0 [ 708.078875][T16206] should_fail_ex+0x512/0x640 [ 708.078911][T16206] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 708.078953][T16206] should_failslab+0xc2/0x120 [ 708.078976][T16206] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 708.079012][T16206] ? __x64_sys_futex+0x1e9/0x4c0 [ 708.079043][T16206] ? getname_flags.part.0+0x4c/0x550 [ 708.079075][T16206] getname_flags.part.0+0x4c/0x550 [ 708.079108][T16206] getname_flags+0x93/0xf0 [ 708.079141][T16206] __x64_sys_mknod+0x74/0xb0 [ 708.079178][T16206] do_syscall_64+0xcd/0x490 [ 708.079220][T16206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 708.079245][T16206] RIP: 0033:0x7f602bb8e929 [ 708.079267][T16206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 708.079305][T16206] RSP: 002b:00007f602ca52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 708.079344][T16206] RAX: ffffffffffffffda RBX: 00007f602bdb5fa0 RCX: 00007f602bb8e929 [ 708.079367][T16206] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 708.079389][T16206] RBP: 00007f602bc10b39 R08: 0000000000000000 R09: 0000000000000000 [ 708.079410][T16206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 708.079430][T16206] R13: 0000000000000000 R14: 00007f602bdb5fa0 R15: 00007ffcaf2531d8 [ 708.079482][T16206] [ 708.589073][T16214] Invalid ELF header magic: != ELF [ 709.458954][T16233] ================================================================== [ 709.467073][T16233] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 709.475816][T16233] Read of size 1 at addr ffff888061d5b087 by task syz.2.2070/16233 [ 709.483767][T16233] [ 709.486127][T16233] CPU: 1 UID: 0 PID: 16233 Comm: syz.2.2070 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 709.486166][T16233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 709.486184][T16233] Call Trace: [ 709.486195][T16233] [ 709.486206][T16233] dump_stack_lvl+0x116/0x1f0 [ 709.486256][T16233] print_report+0xcd/0x680 [ 709.486302][T16233] ? __virt_addr_valid+0x81/0x610 [ 709.486332][T16233] ? __phys_addr+0xe8/0x180 [ 709.486362][T16233] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 709.486394][T16233] kasan_report+0xe0/0x110 [ 709.486421][T16233] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 709.486457][T16233] afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 709.486489][T16233] ? __lock_acquire+0xb8a/0x1c90 [ 709.486532][T16233] ? __pfx_afs_proc_addr_prefs_write+0x10/0x10 [ 709.486567][T16233] ? find_held_lock+0x2b/0x80 [ 709.486593][T16233] ? __might_fault+0xe3/0x190 [ 709.486642][T16233] ? __might_fault+0xe3/0x190 [ 709.486683][T16233] ? __might_fault+0x13b/0x190 [ 709.486733][T16233] ? proc_simple_write+0x114/0x1b0 [ 709.486763][T16233] proc_simple_write+0x114/0x1b0 [ 709.486793][T16233] ? __pfx_proc_simple_write+0x10/0x10 [ 709.486822][T16233] proc_reg_write+0x240/0x330 [ 709.486866][T16233] ? __pfx_proc_reg_write+0x10/0x10 [ 709.486908][T16233] vfs_writev+0x5df/0xde0 [ 709.486944][T16233] ? __pfx___mutex_trylock_common+0x10/0x10 [ 709.486990][T16233] ? __pfx_vfs_writev+0x10/0x10 [ 709.487028][T16233] ? __mutex_lock+0x1ca/0xb90 [ 709.487073][T16233] ? kmem_cache_free+0x2d1/0x4d0 [ 709.487118][T16233] ? __pfx___mutex_lock+0x10/0x10 [ 709.487171][T16233] ? __fget_files+0x20e/0x3c0 [ 709.487214][T16233] ? do_writev+0x132/0x340 [ 709.487251][T16233] do_writev+0x132/0x340 [ 709.487290][T16233] ? __pfx_do_writev+0x10/0x10 [ 709.487334][T16233] do_syscall_64+0xcd/0x490 [ 709.487381][T16233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 709.487412][T16233] RIP: 0033:0x7f630e38e929 [ 709.487435][T16233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 709.487465][T16233] RSP: 002b:00007f630f200038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 709.487494][T16233] RAX: ffffffffffffffda RBX: 00007f630e5b6160 RCX: 00007f630e38e929 [ 709.487514][T16233] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000007 [ 709.487532][T16233] RBP: 00007f630e410b39 R08: 0000000000000000 R09: 0000000000000000 [ 709.487549][T16233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 709.487567][T16233] R13: 0000000000000000 R14: 00007f630e5b6160 R15: 00007ffd77505058 [ 709.487595][T16233] [ 709.487614][T16233] [ 709.747677][T16233] Allocated by task 16233: [ 709.752111][T16233] kasan_save_stack+0x33/0x60 [ 709.756822][T16233] kasan_save_track+0x14/0x30 [ 709.761528][T16233] __kasan_kmalloc+0xaa/0xb0 [ 709.766145][T16233] __kmalloc_node_track_caller_noprof+0x221/0x510 [ 709.772593][T16233] memdup_user_nul+0x2b/0x120 [ 709.777288][T16233] proc_simple_write+0xc7/0x1b0 [ 709.782164][T16233] proc_reg_write+0x240/0x330 [ 709.786865][T16233] vfs_writev+0x5df/0xde0 [ 709.791213][T16233] do_writev+0x132/0x340 [ 709.795474][T16233] do_syscall_64+0xcd/0x490 [ 709.800008][T16233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 709.805917][T16233] [ 709.808248][T16233] The buggy address belongs to the object at ffff888061d5b080 [ 709.808248][T16233] which belongs to the cache kmalloc-8 of size 8 [ 709.821964][T16233] The buggy address is located 0 bytes to the right of [ 709.821964][T16233] allocated 7-byte region [ffff888061d5b080, ffff888061d5b087) [ 709.836293][T16233] [ 709.838624][T16233] The buggy address belongs to the physical page: [ 709.845050][T16233] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x61d5b [ 709.853829][T16233] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 709.860972][T16233] page_type: f5(slab) [ 709.864965][T16233] raw: 00fff00000000000 ffff88801b841500 dead000000000100 dead000000000122 [ 709.873571][T16233] raw: 0000000000000000 0000000080800080 00000000f5000000 0000000000000000 [ 709.882168][T16233] page dumped because: kasan: bad access detected [ 709.888587][T16233] page_owner tracks the page as allocated [ 709.894313][T16233] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 9091, tgid 9090 (syz.3.580), ts 287057652544, free_ts 286370393491 [ 709.913542][T16233] post_alloc_hook+0x1c0/0x230 [ 709.918348][T16233] get_page_from_freelist+0x1321/0x3890 [ 709.923929][T16233] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 709.929866][T16233] alloc_pages_mpol+0x1fb/0x550 [ 709.934730][T16233] new_slab+0x23b/0x330 [ 709.938902][T16233] ___slab_alloc+0xd9c/0x1940 [ 709.943601][T16233] __slab_alloc.constprop.0+0x56/0xb0 [ 709.949002][T16233] __kmalloc_node_track_caller_noprof+0x2ee/0x510 [ 709.955454][T16233] kstrdup+0x53/0x100 [ 709.959471][T16233] kstrdup_const+0x63/0x80 [ 709.963933][T16233] __kernfs_new_node+0x9b/0x8e0 [ 709.968831][T16233] kernfs_new_node+0x13c/0x1e0 [ 709.973634][T16233] kernfs_create_link+0xcc/0x240 [ 709.978602][T16233] sysfs_do_create_link_sd+0x90/0x140 [ 709.984005][T16233] sysfs_create_link+0x61/0xc0 [ 709.988800][T16233] device_add+0x62c/0x1a70 [ 709.993230][T16233] page last free pid 15 tgid 15 stack trace: [ 709.999218][T16233] __free_frozen_pages+0x7fe/0x1180 [ 710.004461][T16233] tlb_remove_table_rcu+0x116/0x1a0 [ 710.009690][T16233] rcu_core+0x799/0x14e0 [ 710.013965][T16233] handle_softirqs+0x216/0x8e0 [ 710.018753][T16233] run_ksoftirqd+0x3a/0x60 [ 710.023200][T16233] smpboot_thread_fn+0x3f4/0xae0 [ 710.028162][T16233] kthread+0x3c5/0x780 [ 710.032255][T16233] ret_from_fork+0x5d4/0x6f0 [ 710.036870][T16233] ret_from_fork_asm+0x1a/0x30 [ 710.041650][T16233] [ 710.043985][T16233] Memory state around the buggy address: [ 710.049627][T16233] ffff888061d5af80: fb fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc [ 710.057707][T16233] ffff888061d5b000: 00 fc fc fc 05 fc fc fc fa fc fc fc fa fc fc fc [ 710.065782][T16233] >ffff888061d5b080: 07 fc fc fc fa fc fc fc 01 fc fc fc fa fc fc fc [ 710.073856][T16233] ^ [ 710.077941][T16233] ffff888061d5b100: 05 fc fc fc 00 fc fc fc fa fc fc fc fa fc fc fc [ 710.086017][T16233] ffff888061d5b180: fa fc fc fc 01 fc fc fc 05 fc fc fc 00 fc fc fc [ 710.094097][T16233] ================================================================== [ 710.170373][T16233] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 710.177616][T16233] CPU: 0 UID: 0 PID: 16233 Comm: syz.2.2070 Not tainted 6.16.0-rc3-syzkaller-00329-gdfba48a70cb6 #0 PREEMPT(full) [ 710.189708][T16233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 710.199777][T16233] Call Trace: [ 710.203067][T16233] [ 710.206010][T16233] dump_stack_lvl+0x3d/0x1f0 [ 710.210635][T16233] panic+0x71c/0x800 [ 710.214570][T16233] ? __pfx_panic+0x10/0x10 [ 710.219010][T16233] ? mark_held_locks+0x49/0x80 [ 710.223821][T16233] ? preempt_schedule_thunk+0x16/0x30 [ 710.229228][T16233] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 710.235235][T16233] ? preempt_schedule_common+0x44/0xc0 [ 710.240746][T16233] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 710.246759][T16233] check_panic_on_warn+0xab/0xb0 [ 710.251729][T16233] end_report+0x107/0x170 [ 710.256090][T16233] kasan_report+0xee/0x110 [ 710.260525][T16233] ? afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 710.266528][T16233] afs_proc_addr_prefs_write+0x13a9/0x15f0 [ 710.272354][T16233] ? __lock_acquire+0xb8a/0x1c90 [ 710.277344][T16233] ? __pfx_afs_proc_addr_prefs_write+0x10/0x10 [ 710.283529][T16233] ? find_held_lock+0x2b/0x80 [ 710.288232][T16233] ? __might_fault+0xe3/0x190 [ 710.292947][T16233] ? __might_fault+0xe3/0x190 [ 710.297653][T16233] ? __might_fault+0x13b/0x190 [ 710.302456][T16233] ? proc_simple_write+0x114/0x1b0 [ 710.307594][T16233] proc_simple_write+0x114/0x1b0 [ 710.312552][T16233] ? __pfx_proc_simple_write+0x10/0x10 [ 710.318027][T16233] proc_reg_write+0x240/0x330 [ 710.322737][T16233] ? __pfx_proc_reg_write+0x10/0x10 [ 710.327965][T16233] vfs_writev+0x5df/0xde0 [ 710.332319][T16233] ? __pfx___mutex_trylock_common+0x10/0x10 [ 710.338256][T16233] ? __pfx_vfs_writev+0x10/0x10 [ 710.343159][T16233] ? __mutex_lock+0x1ca/0xb90 [ 710.347878][T16233] ? kmem_cache_free+0x2d1/0x4d0 [ 710.352844][T16233] ? __pfx___mutex_lock+0x10/0x10 [ 710.357906][T16233] ? __fget_files+0x20e/0x3c0 [ 710.362614][T16233] ? do_writev+0x132/0x340 [ 710.367053][T16233] do_writev+0x132/0x340 [ 710.371324][T16233] ? __pfx_do_writev+0x10/0x10 [ 710.376117][T16233] do_syscall_64+0xcd/0x490 [ 710.380657][T16233] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 710.386572][T16233] RIP: 0033:0x7f630e38e929 [ 710.391005][T16233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 710.410641][T16233] RSP: 002b:00007f630f200038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 710.419081][T16233] RAX: ffffffffffffffda RBX: 00007f630e5b6160 RCX: 00007f630e38e929 [ 710.427068][T16233] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000007 [ 710.435061][T16233] RBP: 00007f630e410b39 R08: 0000000000000000 R09: 0000000000000000 [ 710.443052][T16233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 710.451035][T16233] R13: 0000000000000000 R14: 00007f630e5b6160 R15: 00007ffd77505058 [ 710.459026][T16233] [ 710.462410][T16233] Kernel Offset: disabled [ 710.466748][T16233] Rebooting in 86400 seconds..