last executing test programs: 6.109120488s ago: executing program 0 (id=301): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x345, 0x400, 0x2}]}) 5.87440278s ago: executing program 0 (id=304): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) syz_open_procfs$namespace(0x0, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) 5.394695065s ago: executing program 1 (id=306): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x101300, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2a, 0x2, 0x1) connect$auto(r0, &(0x7f00000000c0)=@qipcrtr={0x2a, 0x1, 0xfffffffe}, 0x55) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x10002}, 0x1) close_range$auto(0x2, 0xa, 0x0) 5.145648916s ago: executing program 1 (id=310): socket(0x21, 0x2, 0x2) write$auto(0x3, 0x0, 0x81) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) socket(0x21, 0x2, 0x2) write$auto(0x3, 0x0, 0x81) close_range$auto(0x0, 0xfffffffffffff000, 0x2) 5.01321226s ago: executing program 1 (id=311): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000080)={0x2, 0x0, [{0xc0000080, 0x400, 0x9}]}) 4.72807367s ago: executing program 1 (id=314): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_ABORT_SCAN(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) write$auto_tty_fops_tty_io(r0, &(0x7f0000000580)="7fd0a917413f68eb6b28d5eea7d1553f6595c094f1f855eb8d8776e6bd8f81c440da3fe3433f8243402fc2752caac5da7a03bbb5adf685740635a6bc231c6cf093b7cf0e4dd07f10b2dc12791aa3ebded3cfe2e4befc0e02d2e064b1db3adc8b2ec1c0378efff268086d6cb998b8dedfb7f20d06b7b091e974de1c1a4ce3d378d91b7639d914ba86b1f18337bb06e3619af99e68dfac380ab153fc75a2159d8efbbf7436752c964490346cf1558249979fc61ee71509560d14bdd0922e50904f3a4b2ae1bfc4f6bb9e08f16afd6baa53cf87077be5bcca2829dd4133da071a6fd072ed5568670a5d171e3deee5576bf571a016c162ca369182f202dbe49839df8d4c438dacdd6cdd67c21e2ed9be20baeff5e5019313d5e6e5a0e93eab61be5dec2c7e144cf9d73fd945c25ff11d5d5aa26bf8ab2e06098b8aeb05c1f29c1a30d268d82768b3350c3efcdac39334de0f6406a1aed635e0c55412ff73b0222d67be6bdd185478d502b492c41696ce6f88609795409aa0841dbc7cb222f0cb239b19d9499fdc45988f0290af0666c37b93f047d45b17cbe7c9332c63ad46c6aa871e4b351efa4fbfb88cfa0281f465d1a970939c2d6c45c50ade06f0bb98ed66623b887de325c0f42ab530b649ea29757af9464c18dea186a0bbc62ce209a3be8e86e8f710323cb899d806caf575cb73a419c0804afd4c8a329a2afaebb87291e9fdfd2ca0edebfc4fb7b1e281fa3e6ac387aebfc92107f4251aa8c96a4c6d7599933c2c489a7696e8e42d88b572fa46bead2c96f619030ab70026f14f91bbf0a4c1b3ed74c564d6ae3eefeef94d37e19701513ff7713a52ebfd8f251dc303455de00d1ee3ed3e204bed2901a644056193fc7e00ce10aa6463892a7881a51893af629f7bd8801ce4c44c7ff2decdb6a69d9ed48ff79661ba9ec4a84dd222d3b40e4abf56222b97db9aa646a67e5031a57d570030f41b09529298f1acddbcd1f0ff6a30cb2a2d5eaecd774bbf897477cc1e55488f3493b6aa6908d24b032cbda24f956f7f262d992838923efde7e8ed0558872451d7bd6a4769ecd47c6d0a125a6e638df6f67793901a67071c506d010930b01ce541aa43f9110d874311d18a8ea50fb1907e8d17c3932e0c12c7d6f7c145209ab81105649fc0c5266063bd8c6a16319a82ff5d236122d53e15d6a7fcb16245d7754f3ffbf659a141cbd29286176fe445deebd5dd18baae1bbdfedbe4bd3453c50fb2f6c22505ecd768ad0703624ebf7b924dc7e8e93ea94c8a6a9f0372351b5a4aaadf89a86faf5241e47be7e6790676fbf8abcc6ef89b9f6ce10600e21815ec6d2c580b5c30ada6b956a07d9964e93419856df00b06245d0743ac2b595097007165cbb17c6a492a6eb0559712e5f89ee86b7a2c46acf9b8d8b2c7a85092966aca97f114635c64f6eb44ad927423a3bc434b267c23d364ee5671d3dcbcca02ffbb633b3c9e6f", 0xfdef) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) 4.727420655s ago: executing program 0 (id=322): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0xa, 0x73) socket(0x2, 0x1, 0x84) unshare$auto(0x40000080) io_uring_setup$auto(0x1, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) shutdown$auto(0x200000003, 0x2) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 4.185837862s ago: executing program 0 (id=315): mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0) clock_gettime$auto(0x6, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xc00, 0x2c, 0x2c, 0x3, 0x2}) 3.492811789s ago: executing program 3 (id=318): socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000229bd7000fbdbdf2502000000070003000000000008000100050004"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) socket(0x15, 0x5, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf250200000005002a0001000000080017"], 0x24}, 0x1, 0x0, 0x0, 0xc045}, 0x4) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\a'], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00'], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 3.243685338s ago: executing program 3 (id=319): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x801, 0x0) socket(0xf, 0x3, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) fallocate$auto(0x8000000000000003, 0x0, 0xd, 0x9) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfff, 0x1, 0x5, 0x3, 0x95f4da2d, 0xc, 0x6, 0x62, 0x7, 0x7, 0x6d3f, 0xa, 0x4, 0x5]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) 3.221308434s ago: executing program 0 (id=320): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) connect$auto(0x3, 0x0, 0x55) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0xa02, 0x0) writev$auto(r1, &(0x7f0000000100)={0x0, 0x7}, 0x3) unshare$auto(0x40000080) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x2203, 0x0) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) 2.56735096s ago: executing program 2 (id=323): unshare$auto(0x40000080) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0xa, 0x5, 0x0) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x92000, 0x0) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_GET(r0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x64004090}, 0x24004854) r1 = openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x103700, 0x0) read$auto(r1, 0x0, 0x4000000081) 2.203816097s ago: executing program 0 (id=324): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x73) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0) write$auto(0x3, 0x0, 0x100082) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/system/cpu/cpu1/hotplug/state\x00', 0x109100, 0x0) read$auto(r1, 0x0, 0x20) write$auto(0x3, 0x0, 0x100082) ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, 0x0) 2.052521466s ago: executing program 3 (id=325): unshare$auto(0x40000080) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x40, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xc6) close_range$auto(0x2, 0x8, 0x0) fanotify_init$auto(0x5, 0x2000000000002) socket(0x2, 0x801, 0x100) connect$auto(0x3, &(0x7f00000000c0), 0x55) listen$auto(0x3, 0x81) 1.273955962s ago: executing program 2 (id=326): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x804, 0x0) ioctl$auto_RTC_ALM_SET(r0, 0x40247007, &(0x7f00000000c0)={0x5, 0x9, 0x8, 0xa, 0xb828, 0xffffffff, 0x7, 0x4, 0x400}) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x1ff, 0x20000000) semget$auto(0x0, 0x13c, 0x1ff) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(0x0, 0xffffffffffffffff) semtimedop$auto(0x0, &(0x7f00000000c0)={0xa, 0x81, 0x70}, 0x1f4, 0x0) semtimedop$auto(0x3, &(0x7f0000000000)={0x7, 0x8000, 0x36ec}, 0x41, 0x0) 1.272865537s ago: executing program 3 (id=327): close_range$auto(0x2, 0x8, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x403c6f2b, 0x0) ioctl$auto(0x3, 0x6f29, 0x10000000000402) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0) newfstatat$auto(0xffffffffffffff9c, 0x0, &(0x7f0000000380)={0x5, 0x6, 0xa9, 0x4, 0x0, 0xee01, 0x0, 0x6, 0x3, 0x0, 0x4, 0x8, 0xbc, 0x1, 0x4, 0x0, 0x53}, 0x1) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8) 1.072972374s ago: executing program 2 (id=328): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000080)={0x2, 0x0, [{0x179, 0x400, 0x9}]}) 849.752463ms ago: executing program 2 (id=329): close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x20) pipe$auto(0x0) r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0) r2 = socket(0x22, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x80044943, 0x0) ioctl$auto_I2C_SMBUS(r1, 0x720, 0x0) 704.025727ms ago: executing program 2 (id=330): mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0) clock_gettime$auto(0x6, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, 0x0, 0x100000a3d9) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xc00, 0x2c, 0x2c, 0x3, 0x2}) 268.266287ms ago: executing program 3 (id=331): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x10, 0x2, 0x14) socket(0x18, 0x5, 0x2) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/sem\x00', 0x80401, 0x0) r0 = socket(0x1d, 0x2, 0x7) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000040)=ANY=[@ANYRES16, @ANYBLOB="010027bd7000ffdbdf25100000000c00018008000100", @ANYRES32, @ANYBLOB="080006"], 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x0) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}}, 0x20008041) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0xd}, 0x2}, 0x3, 0x0) 262.173661ms ago: executing program 2 (id=332): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socket(0x2, 0x801, 0x106) mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) 203.833022ms ago: executing program 1 (id=333): mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0xa, 0x2, 0x88) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r2, r1, 0x8, 0x1, r0, @relative_id=0x13, 0xe600}, 0xf) r3 = open(0x0, 0x261c2, 0x84) bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r3, 0x0, 0x3}, 0xc) 81.172942ms ago: executing program 3 (id=334): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x4) r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010027bd7000fcdbdf250a"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 0s ago: executing program 1 (id=335): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) shutdown$auto(0x200000003, 0x2) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) kill$auto(0x0, 0x11) sendmmsg$auto(r0, 0x0, 0xfffff848, 0xfff) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) kernel console output (not intermixed with test programs): no interfaces have a carrier [ 66.568042][ T5529] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.586338][ T5529] eql: remember to turn off Van-Jacobson compression on your slave devices Starting crond: OK Starting sshd: OK syzkaller Warning: Permanently added '10.128.1.73' (ED25519) to the list of known hosts. syzkaller login: [ 89.956666][ T5852] cgroup: Unknown subsys name 'net' [ 90.113041][ T5852] cgroup: Unknown subsys name 'cpuset' [ 90.122888][ T5852] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 91.803003][ T5852] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 93.980540][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 93.989470][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 94.009298][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 94.017591][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 94.025575][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 94.068731][ T5184] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 94.080921][ T5871] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 94.088445][ T5871] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 94.140413][ T5872] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 94.148649][ T5872] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 94.156339][ T5872] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 94.162765][ T5864] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 94.171936][ T5864] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 94.180934][ T5875] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 94.189604][ T5875] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 94.196709][ T5875] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 94.210620][ T5875] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 94.218130][ T51] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 94.218549][ T5875] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 94.235160][ T5875] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 94.623268][ T5867] chnl_net:caif_netlink_parms(): no params data found [ 94.781877][ T5861] chnl_net:caif_netlink_parms(): no params data found [ 94.892475][ T5867] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.900348][ T5867] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.907799][ T5867] bridge_slave_0: entered allmulticast mode [ 94.918813][ T5867] bridge_slave_0: entered promiscuous mode [ 94.947292][ T5867] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.954608][ T5867] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.962239][ T5867] bridge_slave_1: entered allmulticast mode [ 94.970078][ T5867] bridge_slave_1: entered promiscuous mode [ 94.987581][ T5865] chnl_net:caif_netlink_parms(): no params data found [ 95.056712][ T5873] chnl_net:caif_netlink_parms(): no params data found [ 95.106353][ T5867] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.142364][ T5861] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.149677][ T5861] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.156950][ T5861] bridge_slave_0: entered allmulticast mode [ 95.164604][ T5861] bridge_slave_0: entered promiscuous mode [ 95.174957][ T5867] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 95.213622][ T5861] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.220884][ T5861] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.228032][ T5861] bridge_slave_1: entered allmulticast mode [ 95.235924][ T5861] bridge_slave_1: entered promiscuous mode [ 95.297464][ T5867] team0: Port device team_slave_0 added [ 95.336291][ T5867] team0: Port device team_slave_1 added [ 95.363261][ T5861] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.376586][ T5861] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 95.412960][ T5865] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.420612][ T5865] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.427759][ T5865] bridge_slave_0: entered allmulticast mode [ 95.435685][ T5865] bridge_slave_0: entered promiscuous mode [ 95.480439][ T5865] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.487644][ T5865] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.495706][ T5865] bridge_slave_1: entered allmulticast mode [ 95.502943][ T5865] bridge_slave_1: entered promiscuous mode [ 95.535441][ T5867] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 95.542728][ T5867] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 95.568932][ T5867] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 95.580786][ T5873] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.587901][ T5873] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.595180][ T5873] bridge_slave_0: entered allmulticast mode [ 95.602517][ T5873] bridge_slave_0: entered promiscuous mode [ 95.627680][ T5861] team0: Port device team_slave_0 added [ 95.634361][ T5867] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 95.641405][ T5867] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 95.667810][ T5867] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 95.686115][ T5873] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.693522][ T5873] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.700751][ T5873] bridge_slave_1: entered allmulticast mode [ 95.707830][ T5873] bridge_slave_1: entered promiscuous mode [ 95.717508][ T5865] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.731105][ T5865] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 95.742222][ T5861] team0: Port device team_slave_1 added [ 95.816274][ T5861] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 95.823619][ T5861] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 95.851086][ T5861] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 95.889371][ T5865] team0: Port device team_slave_0 added [ 95.895905][ T5861] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 95.903919][ T5861] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 95.930252][ T5861] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 95.943686][ T5873] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.956736][ T5873] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 95.979630][ T5865] team0: Port device team_slave_1 added [ 96.011076][ T5867] hsr_slave_0: entered promiscuous mode [ 96.017464][ T5867] hsr_slave_1: entered promiscuous mode [ 96.069603][ T5871] Bluetooth: hci0: command tx timeout [ 96.103009][ T5865] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.110158][ T5865] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.136547][ T5865] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.149342][ T5873] team0: Port device team_slave_0 added [ 96.180128][ T5865] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 96.187084][ T5865] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.213400][ T5865] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.219731][ T5871] Bluetooth: hci1: command tx timeout [ 96.228734][ T5873] team0: Port device team_slave_1 added [ 96.260224][ T5861] hsr_slave_0: entered promiscuous mode [ 96.266585][ T5861] hsr_slave_1: entered promiscuous mode [ 96.273027][ T5861] debugfs: 'hsr0' already exists in 'hsr' [ 96.278809][ T5861] Cannot create hsr debugfs directory [ 96.299568][ T5871] Bluetooth: hci2: command tx timeout [ 96.299591][ T51] Bluetooth: hci3: command tx timeout [ 96.357996][ T5873] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 96.365295][ T5873] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.392432][ T5873] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 96.442337][ T5873] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 96.449423][ T5873] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 96.475541][ T5873] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 96.504469][ T5865] hsr_slave_0: entered promiscuous mode [ 96.511022][ T5865] hsr_slave_1: entered promiscuous mode [ 96.517058][ T5865] debugfs: 'hsr0' already exists in 'hsr' [ 96.522829][ T5865] Cannot create hsr debugfs directory [ 96.651614][ T5873] hsr_slave_0: entered promiscuous mode [ 96.657916][ T5873] hsr_slave_1: entered promiscuous mode [ 96.665363][ T5873] debugfs: 'hsr0' already exists in 'hsr' [ 96.671548][ T5873] Cannot create hsr debugfs directory [ 96.884768][ T5867] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 96.896820][ T5867] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 96.925873][ T5867] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 96.941427][ T2155] cfg80211: failed to load regulatory.db [ 96.964603][ T5867] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 97.069630][ T5861] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 97.091568][ T5861] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 97.117301][ T5861] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 97.134976][ T5861] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 97.193183][ T5865] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 97.232123][ T5865] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 97.259358][ T5865] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 97.272523][ T5865] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 97.331128][ T5873] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 97.345609][ T5873] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 97.366149][ T5873] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 97.377017][ T5873] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 97.506869][ T5867] 8021q: adding VLAN 0 to HW filter on device bond0 [ 97.556026][ T5861] 8021q: adding VLAN 0 to HW filter on device bond0 [ 97.578238][ T5867] 8021q: adding VLAN 0 to HW filter on device team0 [ 97.606708][ T37] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.613919][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.642092][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.649253][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.662922][ T5861] 8021q: adding VLAN 0 to HW filter on device team0 [ 97.682773][ T5865] 8021q: adding VLAN 0 to HW filter on device bond0 [ 97.708691][ T3070] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.715813][ T3070] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.757249][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.764380][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.808053][ T5865] 8021q: adding VLAN 0 to HW filter on device team0 [ 97.826041][ T5873] 8021q: adding VLAN 0 to HW filter on device bond0 [ 97.853758][ T3070] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.860927][ T3070] bridge0: port 1(bridge_slave_0) entered forwarding state [ 97.878537][ T5867] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 97.904871][ T59] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.912218][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.935429][ T5873] 8021q: adding VLAN 0 to HW filter on device team0 [ 97.991474][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.998621][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.033844][ T37] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.041240][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.141794][ T5871] Bluetooth: hci0: command tx timeout [ 98.313762][ T5871] Bluetooth: hci1: command tx timeout [ 98.344379][ T5867] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.379193][ T5871] Bluetooth: hci3: command tx timeout [ 98.390812][ T5871] Bluetooth: hci2: command tx timeout [ 98.452106][ T5867] veth0_vlan: entered promiscuous mode [ 98.482193][ T5867] veth1_vlan: entered promiscuous mode [ 98.547780][ T5867] veth0_macvtap: entered promiscuous mode [ 98.573951][ T5867] veth1_macvtap: entered promiscuous mode [ 98.626581][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 98.655290][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 98.718633][ T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.745994][ T5861] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.762960][ T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.774556][ T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.798516][ T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.825880][ T5865] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.943402][ T5873] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.954968][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.974662][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.039927][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.040162][ T5861] veth0_vlan: entered promiscuous mode [ 99.053443][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.063513][ T5861] veth1_vlan: entered promiscuous mode [ 99.092728][ T5865] veth0_vlan: entered promiscuous mode [ 99.137828][ T5873] veth0_vlan: entered promiscuous mode [ 99.161666][ T5867] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 99.164147][ T5865] veth1_vlan: entered promiscuous mode [ 99.196267][ T5873] veth1_vlan: entered promiscuous mode [ 99.231966][ T5861] veth0_macvtap: entered promiscuous mode [ 99.291572][ T5861] veth1_macvtap: entered promiscuous mode [ 99.297715][ T5953] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 99.363081][ T5865] veth0_macvtap: entered promiscuous mode [ 99.374032][ T5873] veth0_macvtap: entered promiscuous mode [ 99.383924][ T5861] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.398289][ T5865] veth1_macvtap: entered promiscuous mode [ 99.430260][ T5861] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.468019][ T5873] veth1_macvtap: entered promiscuous mode [ 99.476575][ T5865] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.488097][ T3070] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.497091][ T3070] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.545127][ T5865] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.572905][ T3070] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.586095][ T3070] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.606341][ T3070] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.628185][ T3070] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.637685][ T3070] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.648565][ T5873] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.662723][ T5873] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.681487][ T3070] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.726362][ T3070] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.738259][ T3070] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.762837][ T3070] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.772227][ T37] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.804822][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.813888][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.896595][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.914852][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.957141][ T37] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.985271][ T37] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.018763][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.038077][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.118413][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.138003][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.153520][ T1136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 100.161907][ T1136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.219421][ T5871] Bluetooth: hci0: command tx timeout [ 100.348581][ T5961] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 100.379586][ T5871] Bluetooth: hci1: command tx timeout [ 100.460372][ T5871] Bluetooth: hci2: command tx timeout [ 100.460384][ T51] Bluetooth: hci3: command tx timeout [ 100.578724][ T5972] Zero length message leads to an empty skb [ 100.616168][ T5974] FAULT_INJECTION: forcing a failure. [ 100.616168][ T5974] name failslab, interval 1, probability 0, space 0, times 1 [ 100.634383][ T5974] CPU: 0 UID: 0 PID: 5974 Comm: syz.3.8 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 100.634425][ T5974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 100.634449][ T5974] Call Trace: [ 100.634459][ T5974] [ 100.634470][ T5974] dump_stack_lvl+0x16c/0x1f0 [ 100.634512][ T5974] should_fail_ex+0x512/0x640 [ 100.634549][ T5974] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 100.634586][ T5974] should_failslab+0xc2/0x120 [ 100.634628][ T5974] __kmalloc_cache_noprof+0x6a/0x3e0 [ 100.634660][ T5974] ? seq_create_client1+0x4d/0x5e0 [ 100.634699][ T5974] ? __pfx_snd_seq_open+0x10/0x10 [ 100.634736][ T5974] seq_create_client1+0x4d/0x5e0 [ 100.634776][ T5974] ? __pfx_snd_seq_open+0x10/0x10 [ 100.634811][ T5974] snd_seq_open+0x59/0x550 [ 100.634858][ T5974] ? __pfx_snd_seq_open+0x10/0x10 [ 100.634889][ T5974] snd_open+0x22d/0x4c0 [ 100.634930][ T5974] ? __pfx_snd_open+0x10/0x10 [ 100.634963][ T5974] chrdev_open+0x234/0x6a0 [ 100.635002][ T5974] ? __pfx_chrdev_open+0x10/0x10 [ 100.635041][ T5974] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 100.635081][ T5974] do_dentry_open+0x982/0x1530 [ 100.635117][ T5974] ? __pfx_chrdev_open+0x10/0x10 [ 100.635162][ T5974] vfs_open+0x82/0x3f0 [ 100.635208][ T5974] path_openat+0x1de4/0x2cb0 [ 100.635254][ T5974] ? __pfx_path_openat+0x10/0x10 [ 100.635298][ T5974] do_filp_open+0x20b/0x470 [ 100.635332][ T5974] ? __pfx_do_filp_open+0x10/0x10 [ 100.635393][ T5974] ? alloc_fd+0x471/0x7d0 [ 100.635433][ T5974] do_sys_openat2+0x11b/0x1d0 [ 100.635476][ T5974] ? __pfx_do_sys_openat2+0x10/0x10 [ 100.635535][ T5974] __x64_sys_openat+0x174/0x210 [ 100.635580][ T5974] ? __pfx___x64_sys_openat+0x10/0x10 [ 100.635640][ T5974] do_syscall_64+0xcd/0x490 [ 100.635676][ T5974] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 100.635705][ T5974] RIP: 0033:0x7f1b18b8eb69 [ 100.635735][ T5974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 100.635763][ T5974] RSP: 002b:00007f1b19a54038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 100.635791][ T5974] RAX: ffffffffffffffda RBX: 00007f1b18db5fa0 RCX: 00007f1b18b8eb69 [ 100.635810][ T5974] RDX: 0000000000000100 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 100.635829][ T5974] RBP: 00007f1b18c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 100.635846][ T5974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 100.635862][ T5974] R13: 0000000000000000 R14: 00007f1b18db5fa0 R15: 00007ffcf979b658 [ 100.635898][ T5974] [ 101.129797][ T5978] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10'. [ 101.162881][ T5980] syz.3.11 uses obsolete (PF_INET,SOCK_PACKET) [ 101.173666][ T5978] netlink: 354 bytes leftover after parsing attributes in process `syz.2.10'. [ 101.253519][ T5871] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 101.372465][ T5985] netlink: 4 bytes leftover after parsing attributes in process `syz.2.14'. [ 101.402204][ T5985] netlink: 354 bytes leftover after parsing attributes in process `syz.2.14'. [ 101.580192][ T5990] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 101.629537][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 102.309311][ T51] Bluetooth: hci0: command tx timeout [ 102.472233][ T51] Bluetooth: hci1: command tx timeout [ 102.540659][ T51] Bluetooth: hci3: command tx timeout [ 102.550601][ T51] Bluetooth: hci2: command tx timeout [ 104.702733][ T6067] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 105.286475][ T6083] sp0: Synchronizing with TNC [ 105.961878][ T6101] netlink: 20 bytes leftover after parsing attributes in process `syz.1.55'. [ 106.032433][ T6101] hsr_slave_0 (unregistering): left promiscuous mode [ 106.159529][ T6103] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 106.227511][ T6105] FAULT_INJECTION: forcing a failure. [ 106.227511][ T6105] name failslab, interval 1, probability 0, space 0, times 0 [ 106.252492][ T6105] CPU: 0 UID: 0 PID: 6105 Comm: syz.3.58 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 106.252534][ T6105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 106.252551][ T6105] Call Trace: [ 106.252561][ T6105] [ 106.252572][ T6105] dump_stack_lvl+0x16c/0x1f0 [ 106.252608][ T6105] should_fail_ex+0x512/0x640 [ 106.252643][ T6105] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 106.252683][ T6105] should_failslab+0xc2/0x120 [ 106.252722][ T6105] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 106.252757][ T6105] ? fasync_helper+0x3d/0xd0 [ 106.252806][ T6105] fasync_helper+0x3d/0xd0 [ 106.252849][ T6105] sock_fasync+0x92/0x140 [ 106.252887][ T6105] ? __pfx_sock_fasync+0x10/0x10 [ 106.252920][ T6105] do_fcntl+0xa3d/0x15a0 [ 106.252962][ T6105] ? __pfx_do_fcntl+0x10/0x10 [ 106.253012][ T6105] ? tomoyo_file_fcntl+0xa5/0xc0 [ 106.253059][ T6105] __x64_sys_fcntl+0x163/0x200 [ 106.253105][ T6105] do_syscall_64+0xcd/0x490 [ 106.253138][ T6105] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.253181][ T6105] RIP: 0033:0x7f1b18b8eb69 [ 106.253204][ T6105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 106.253252][ T6105] RSP: 002b:00007f1b19a54038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 106.253284][ T6105] RAX: ffffffffffffffda RBX: 00007f1b18db5fa0 RCX: 00007f1b18b8eb69 [ 106.253305][ T6105] RDX: 000000000000a553 RSI: 0000000000000004 RDI: 0000000000000003 [ 106.253328][ T6105] RBP: 00007f1b18c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 106.253347][ T6105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 106.253366][ T6105] R13: 0000000000000000 R14: 00007f1b18db5fa0 R15: 00007ffcf979b658 [ 106.253408][ T6105] [ 106.434206][ C0] vkms_vblank_simulate: vblank timer overrun [ 106.865621][ T6120] netlink: 25 bytes leftover after parsing attributes in process `syz.2.64'. [ 107.256018][ T6136] netlink: 330 bytes leftover after parsing attributes in process `syz.0.68'. [ 107.265153][ T6136] : renamed from lo (while UP) [ 107.538126][ T6139] netlink: 'syz.1.69': attribute type 4 has an invalid length. [ 107.575404][ T6139] netlink: 314 bytes leftover after parsing attributes in process `syz.1.69'. [ 107.584656][ T6139] IPv6: NLM_F_CREATE should be specified when creating new route [ 107.592839][ T6139] IPv6: Can't replace route, no match found [ 108.351516][ T6161] FAULT_INJECTION: forcing a failure. [ 108.351516][ T6161] name failslab, interval 1, probability 0, space 0, times 0 [ 108.379762][ T6161] CPU: 0 UID: 0 PID: 6161 Comm: syz.2.79 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 108.379809][ T6161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 108.379828][ T6161] Call Trace: [ 108.379839][ T6161] [ 108.379851][ T6161] dump_stack_lvl+0x16c/0x1f0 [ 108.379892][ T6161] should_fail_ex+0x512/0x640 [ 108.379942][ T6161] ? fs_reclaim_acquire+0xae/0x150 [ 108.380004][ T6161] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 108.380061][ T6161] should_failslab+0xc2/0x120 [ 108.380105][ T6161] __kmalloc_noprof+0xd2/0x510 [ 108.380164][ T6161] tomoyo_realpath_from_path+0xc2/0x6e0 [ 108.380213][ T6161] ? tomoyo_profile+0x47/0x60 [ 108.380269][ T6161] tomoyo_path_perm+0x274/0x460 [ 108.380299][ T6161] ? tomoyo_path_perm+0x260/0x460 [ 108.380334][ T6161] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 108.380406][ T6161] ? __pfx_ima_file_check+0x10/0x10 [ 108.380451][ T6161] ? hook_file_truncate+0xc7/0x250 [ 108.380496][ T6161] security_file_truncate+0x84/0x1e0 [ 108.380534][ T6161] path_openat+0xc10/0x2cb0 [ 108.380590][ T6161] ? __pfx_path_openat+0x10/0x10 [ 108.380633][ T6161] do_filp_open+0x20b/0x470 [ 108.380667][ T6161] ? __pfx_do_filp_open+0x10/0x10 [ 108.380728][ T6161] ? alloc_fd+0x471/0x7d0 [ 108.380770][ T6161] do_sys_openat2+0x11b/0x1d0 [ 108.380813][ T6161] ? __pfx_do_sys_openat2+0x10/0x10 [ 108.380872][ T6161] __x64_sys_openat+0x174/0x210 [ 108.380917][ T6161] ? __pfx___x64_sys_openat+0x10/0x10 [ 108.380973][ T6161] do_syscall_64+0xcd/0x490 [ 108.381007][ T6161] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 108.381035][ T6161] RIP: 0033:0x7f805678eb69 [ 108.381057][ T6161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 108.381083][ T6161] RSP: 002b:00007f8057530038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 108.381109][ T6161] RAX: ffffffffffffffda RBX: 00007f80569b5fa0 RCX: 00007f805678eb69 [ 108.381127][ T6161] RDX: 0000000000080302 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 108.381145][ T6161] RBP: 00007f8056811df1 R08: 0000000000000000 R09: 0000000000000000 [ 108.381162][ T6161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 108.381178][ T6161] R13: 0000000000000000 R14: 00007f80569b5fa0 R15: 00007ffdc5ac4108 [ 108.381215][ T6161] [ 108.381226][ T6161] ERROR: Out of memory at tomoyo_realpath_from_path. [ 108.729324][ T6163] netlink: 346 bytes leftover after parsing attributes in process `syz.1.80'. [ 108.795928][ T6173] netlink: 4 bytes leftover after parsing attributes in process `syz.0.84'. [ 108.831722][ T6173] netlink: 13 bytes leftover after parsing attributes in process `syz.0.84'. [ 109.114287][ T6178] netlink: 326 bytes leftover after parsing attributes in process `syz.1.86'. [ 110.340815][ T6201] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 110.781254][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 110.790097][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 110.831009][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 110.933670][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 111.281024][ T6223] kvm: kvm [6222]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001f) [ 111.507031][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 112.066174][ T6232] FAULT_INJECTION: forcing a failure. [ 112.066174][ T6232] name failslab, interval 1, probability 0, space 0, times 0 [ 112.108160][ T6232] CPU: 0 UID: 0 PID: 6232 Comm: syz.0.107 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 112.108199][ T6232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 112.108215][ T6232] Call Trace: [ 112.108224][ T6232] [ 112.108235][ T6232] dump_stack_lvl+0x16c/0x1f0 [ 112.108271][ T6232] should_fail_ex+0x512/0x640 [ 112.108307][ T6232] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 112.108339][ T6232] should_failslab+0xc2/0x120 [ 112.108378][ T6232] __kmalloc_cache_noprof+0x6a/0x3e0 [ 112.108405][ T6232] ? fib_net_init+0x1a4/0x3f0 [ 112.108444][ T6232] fib_net_init+0x1a4/0x3f0 [ 112.108475][ T6232] ? __pfx___register_sysctl_table+0x10/0x10 [ 112.108517][ T6232] ? __pfx_fib_net_init+0x10/0x10 [ 112.108549][ T6232] ? lockdep_init_map_type+0x5c/0x280 [ 112.108592][ T6232] ? do_init_timer+0xc9/0x110 [ 112.108623][ T6232] ? devinet_init_net+0x5c2/0x910 [ 112.108658][ T6232] ? __pfx_fib_net_init+0x10/0x10 [ 112.108703][ T6232] ops_init+0x1df/0x5f0 [ 112.108751][ T6232] setup_net+0x10f/0x380 [ 112.108783][ T6232] ? lockdep_init_map_type+0x5c/0x280 [ 112.108828][ T6232] ? __pfx_setup_net+0x10/0x10 [ 112.108865][ T6232] ? debug_mutex_init+0x37/0x70 [ 112.108902][ T6232] copy_net_ns+0x2a6/0x5f0 [ 112.108946][ T6232] create_new_namespaces+0x3ea/0xa90 [ 112.109001][ T6232] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 112.109044][ T6232] ksys_unshare+0x45b/0xa40 [ 112.109091][ T6232] ? __pfx_ksys_unshare+0x10/0x10 [ 112.109140][ T6232] ? xfd_validate_state+0x61/0x180 [ 112.109203][ T6232] __x64_sys_unshare+0x31/0x40 [ 112.109250][ T6232] do_syscall_64+0xcd/0x490 [ 112.109289][ T6232] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.109323][ T6232] RIP: 0033:0x7fb07358eb69 [ 112.109349][ T6232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 112.109381][ T6232] RSP: 002b:00007fb074333038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 112.109412][ T6232] RAX: ffffffffffffffda RBX: 00007fb0737b5fa0 RCX: 00007fb07358eb69 [ 112.109434][ T6232] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 112.109455][ T6232] RBP: 00007fb073611df1 R08: 0000000000000000 R09: 0000000000000000 [ 112.109475][ T6232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 112.109495][ T6232] R13: 0000000000000000 R14: 00007fb0737b5fa0 R15: 00007ffe0095be18 [ 112.109539][ T6232] [ 112.347578][ C0] vkms_vblank_simulate: vblank timer overrun [ 113.343849][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805d0afc00: rx timeout, send abort [ 113.353533][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805d0afc00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session. [ 113.391140][ T6262] FAULT_INJECTION: forcing a failure. [ 113.391140][ T6262] name failslab, interval 1, probability 0, space 0, times 0 [ 113.422532][ T6262] CPU: 0 UID: 0 PID: 6262 Comm: syz.2.119 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 113.422571][ T6262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 113.422589][ T6262] Call Trace: [ 113.422597][ T6262] [ 113.422607][ T6262] dump_stack_lvl+0x16c/0x1f0 [ 113.422642][ T6262] should_fail_ex+0x512/0x640 [ 113.422676][ T6262] ? __kmalloc_noprof+0xbf/0x510 [ 113.422712][ T6262] ? __register_sysctl_table+0xb3/0x1900 [ 113.422754][ T6262] should_failslab+0xc2/0x120 [ 113.422791][ T6262] __kmalloc_noprof+0xd2/0x510 [ 113.422844][ T6262] __register_sysctl_table+0xb3/0x1900 [ 113.422888][ T6262] ? is_module_address+0x5f/0xf0 [ 113.422935][ T6262] ? __pfx___register_sysctl_table+0x10/0x10 [ 113.422977][ T6262] ? is_module_address+0x69/0xf0 [ 113.423016][ T6262] ? register_net_sysctl_sz+0x228/0x3e0 [ 113.423059][ T6262] __devinet_sysctl_register+0x1b9/0x360 [ 113.423102][ T6262] ? __pfx___devinet_sysctl_register+0x10/0x10 [ 113.423142][ T6262] ? devinet_init_net+0xeb/0x910 [ 113.423178][ T6262] ? __asan_memcpy+0x3c/0x60 [ 113.423211][ T6262] devinet_init_net+0x315/0x910 [ 113.423249][ T6262] ? __pfx_devinet_init_net+0x10/0x10 [ 113.423284][ T6262] ops_init+0x1df/0x5f0 [ 113.423320][ T6262] setup_net+0x10f/0x380 [ 113.423348][ T6262] ? lockdep_init_map_type+0x5c/0x280 [ 113.423389][ T6262] ? __pfx_setup_net+0x10/0x10 [ 113.423422][ T6262] ? debug_mutex_init+0x37/0x70 [ 113.423455][ T6262] copy_net_ns+0x2a6/0x5f0 [ 113.423493][ T6262] create_new_namespaces+0x3ea/0xa90 [ 113.423535][ T6262] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 113.423572][ T6262] ksys_unshare+0x45b/0xa40 [ 113.423613][ T6262] ? __pfx_ksys_unshare+0x10/0x10 [ 113.423654][ T6262] ? xfd_validate_state+0x61/0x180 [ 113.423708][ T6262] __x64_sys_unshare+0x31/0x40 [ 113.423747][ T6262] do_syscall_64+0xcd/0x490 [ 113.423789][ T6262] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.423817][ T6262] RIP: 0033:0x7f805678eb69 [ 113.423845][ T6262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 113.423872][ T6262] RSP: 002b:00007f8057530038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 113.423899][ T6262] RAX: ffffffffffffffda RBX: 00007f80569b5fa0 RCX: 00007f805678eb69 [ 113.423917][ T6262] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 113.423935][ T6262] RBP: 00007f8056811df1 R08: 0000000000000000 R09: 0000000000000000 [ 113.423951][ T6262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 113.423968][ T6262] R13: 0000000000000000 R14: 00007f80569b5fa0 R15: 00007ffdc5ac4108 [ 113.424003][ T6262] [ 113.691147][ C0] vkms_vblank_simulate: vblank timer overrun [ 114.080380][ T6272] netlink: 338 bytes leftover after parsing attributes in process `syz.2.123'. [ 114.102974][ T6272] netlink: 338 bytes leftover after parsing attributes in process `syz.2.123'. [ 114.127428][ T6272] netlink: 134 bytes leftover after parsing attributes in process `syz.2.123'. [ 114.186945][ T51] Bluetooth: hci0: unexpected event 0x03 length: 17 > 11 [ 114.301283][ T6283] netlink: 12 bytes leftover after parsing attributes in process `syz.0.128'. [ 114.321606][ T6283] unsupported nlmsg_type 40 [ 114.396873][ T6288] netlink: 354 bytes leftover after parsing attributes in process `syz.0.129'. [ 115.198359][ T6308] netlink: 146 bytes leftover after parsing attributes in process `syz.1.137'. [ 115.341106][ C0] vcan0: j1939_tp_rxtimer: 0xffff888031812000: rx timeout, send abort [ 115.349720][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888031812000: 0x0ffff: (3) A timeout occurred and this is the connection abort to close the session. [ 116.286772][ T51] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 116.334263][ T6334] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 116.572798][ T6337] FAULT_INJECTION: forcing a failure. [ 116.572798][ T6337] name failslab, interval 1, probability 0, space 0, times 0 [ 116.718118][ T6337] CPU: 1 UID: 0 PID: 6337 Comm: syz.2.147 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 116.718164][ T6337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 116.718183][ T6337] Call Trace: [ 116.718192][ T6337] [ 116.718204][ T6337] dump_stack_lvl+0x16c/0x1f0 [ 116.718243][ T6337] should_fail_ex+0x512/0x640 [ 116.718280][ T6337] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 116.718327][ T6337] should_failslab+0xc2/0x120 [ 116.718369][ T6337] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 116.718412][ T6337] ? drm_atomic_get_connector_state+0x231/0x740 [ 116.718467][ T6337] krealloc_noprof+0x1ff/0x3a0 [ 116.718510][ T6337] drm_atomic_get_connector_state+0x231/0x740 [ 116.718575][ T6337] drm_atomic_add_affected_connectors+0x2e0/0x3f0 [ 116.718630][ T6337] ? __pfx_drm_atomic_add_affected_connectors+0x10/0x10 [ 116.718707][ T6337] ? ww_mutex_lock+0x37/0x160 [ 116.718745][ T6337] ? modeset_lock+0x114/0x6e0 [ 116.718796][ T6337] __drm_atomic_helper_set_config+0x5ef/0xea0 [ 116.718856][ T6337] ? __pfx___drm_atomic_helper_set_config+0x10/0x10 [ 116.718918][ T6337] ? drm_client_rotation+0x4da/0x6a0 [ 116.718977][ T6337] drm_client_modeset_commit_atomic+0x53d/0x7e0 [ 116.719047][ T6337] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 116.719104][ T6337] ? rcu_is_watching+0x12/0xc0 [ 116.719182][ T6337] drm_client_modeset_commit_locked+0x14d/0x580 [ 116.719249][ T6337] drm_client_modeset_commit+0x4f/0x80 [ 116.719306][ T6337] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 116.719362][ T6337] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 116.719406][ T6337] drm_fbdev_client_restore+0x2c/0x40 [ 116.719448][ T6337] drm_client_dev_restore+0x1f3/0x2a0 [ 116.719509][ T6337] drm_release+0x2c4/0x360 [ 116.719573][ T6337] ? __pfx_drm_release+0x10/0x10 [ 116.719621][ T6337] __fput+0x402/0xb70 [ 116.719683][ T6337] task_work_run+0x150/0x240 [ 116.719741][ T6337] ? __pfx_task_work_run+0x10/0x10 [ 116.719797][ T6337] ? __pfx___do_sys_close_range+0x10/0x10 [ 116.719848][ T6337] exit_to_user_mode_loop+0xeb/0x110 [ 116.719913][ T6337] do_syscall_64+0x3f6/0x490 [ 116.719951][ T6337] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.719982][ T6337] RIP: 0033:0x7f805678eb69 [ 116.720007][ T6337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 116.720037][ T6337] RSP: 002b:00007f8057530038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 116.720065][ T6337] RAX: 0000000000000000 RBX: 00007f80569b5fa0 RCX: 00007f805678eb69 [ 116.720085][ T6337] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 116.720103][ T6337] RBP: 00007f8056811df1 R08: 0000000000000000 R09: 0000000000000000 [ 116.720121][ T6337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 116.720139][ T6337] R13: 0000000000000000 R14: 00007f80569b5fa0 R15: 00007ffdc5ac4108 [ 116.720180][ T6337] [ 117.656905][ T6348] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 119.907718][ T6383] serio: Serial port pty238 [ 120.886860][ T6394] FAULT_INJECTION: forcing a failure. [ 120.886860][ T6394] name failslab, interval 1, probability 0, space 0, times 0 [ 120.920345][ T6394] CPU: 0 UID: 0 PID: 6394 Comm: syz.1.167 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 120.920389][ T6394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 120.920411][ T6394] Call Trace: [ 120.920421][ T6394] [ 120.920433][ T6394] dump_stack_lvl+0x16c/0x1f0 [ 120.920469][ T6394] should_fail_ex+0x512/0x640 [ 120.920506][ T6394] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 120.920542][ T6394] should_failslab+0xc2/0x120 [ 120.920583][ T6394] __kmalloc_cache_noprof+0x6a/0x3e0 [ 120.920615][ T6394] ? userio_char_open+0x45/0x210 [ 120.920651][ T6394] ? __pfx_userio_char_open+0x10/0x10 [ 120.920698][ T6394] userio_char_open+0x45/0x210 [ 120.920730][ T6394] ? __pfx_userio_char_open+0x10/0x10 [ 120.920761][ T6394] misc_open+0x35a/0x420 [ 120.920812][ T6394] ? __pfx_misc_open+0x10/0x10 [ 120.920859][ T6394] chrdev_open+0x234/0x6a0 [ 120.920904][ T6394] ? __pfx_chrdev_open+0x10/0x10 [ 120.920948][ T6394] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 120.920990][ T6394] do_dentry_open+0x982/0x1530 [ 120.921032][ T6394] ? __pfx_chrdev_open+0x10/0x10 [ 120.921081][ T6394] vfs_open+0x82/0x3f0 [ 120.921129][ T6394] path_openat+0x1de4/0x2cb0 [ 120.921171][ T6394] ? __pfx_path_openat+0x10/0x10 [ 120.921229][ T6394] do_filp_open+0x20b/0x470 [ 120.921260][ T6394] ? __pfx_do_filp_open+0x10/0x10 [ 120.921313][ T6394] ? alloc_fd+0x471/0x7d0 [ 120.921350][ T6394] do_sys_openat2+0x11b/0x1d0 [ 120.921390][ T6394] ? __pfx_do_sys_openat2+0x10/0x10 [ 120.921443][ T6394] __x64_sys_openat+0x174/0x210 [ 120.921485][ T6394] ? __pfx___x64_sys_openat+0x10/0x10 [ 120.921538][ T6394] do_syscall_64+0xcd/0x490 [ 120.921568][ T6394] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 120.921593][ T6394] RIP: 0033:0x7f71a4d8eb69 [ 120.921614][ T6394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 120.921656][ T6394] RSP: 002b:00007f71a5b8c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 120.921687][ T6394] RAX: ffffffffffffffda RBX: 00007f71a4fb5fa0 RCX: 00007f71a4d8eb69 [ 120.921705][ T6394] RDX: 0000000000002000 RSI: 0000200000000340 RDI: ffffffffffffff9c [ 120.921721][ T6394] RBP: 00007f71a4e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 120.921737][ T6394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 120.921753][ T6394] R13: 0000000000000000 R14: 00007f71a4fb5fa0 R15: 00007ffe5b77bf08 [ 120.921796][ T6394] [ 122.658670][ T6424] FAULT_INJECTION: forcing a failure. [ 122.658670][ T6424] name failslab, interval 1, probability 0, space 0, times 0 [ 122.766883][ T6424] CPU: 1 UID: 0 PID: 6424 Comm: syz.0.179 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 122.766925][ T6424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 122.766941][ T6424] Call Trace: [ 122.766949][ T6424] [ 122.766960][ T6424] dump_stack_lvl+0x16c/0x1f0 [ 122.766995][ T6424] should_fail_ex+0x512/0x640 [ 122.767030][ T6424] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 122.767071][ T6424] should_failslab+0xc2/0x120 [ 122.767110][ T6424] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 122.767146][ T6424] ? acpi_ut_create_generic_state+0x5c/0xb0 [ 122.767199][ T6424] acpi_ut_create_generic_state+0x5c/0xb0 [ 122.767246][ T6424] acpi_ps_push_scope+0x22/0x230 [ 122.767280][ T6424] acpi_ps_parse_loop+0x9f3/0x1d00 [ 122.767320][ T6424] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 122.767350][ T6424] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 122.767385][ T6424] ? acpi_ut_create_thread_state+0x63/0x170 [ 122.767440][ T6424] acpi_ps_parse_aml+0x3c1/0xcb0 [ 122.767494][ T6424] acpi_ps_execute_method+0x55a/0xb30 [ 122.767534][ T6424] ? acpi_ut_acquire_mutex+0x125/0x1d0 [ 122.767580][ T6424] acpi_ns_evaluate+0x76c/0xca0 [ 122.767620][ T6424] ? kasan_save_track+0x14/0x30 [ 122.767659][ T6424] acpi_evaluate_object+0x1fa/0xa90 [ 122.767713][ T6424] ? do_syscall_64+0xcd/0x490 [ 122.767744][ T6424] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.767776][ T6424] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 122.767836][ T6424] ? __mutex_trylock_common+0xe9/0x250 [ 122.767889][ T6424] acpi_evaluate_integer+0xdd/0x200 [ 122.767935][ T6424] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 122.767999][ T6424] ? __pfx_status_show+0x10/0x10 [ 122.768033][ T6424] status_show+0xa0/0x120 [ 122.768073][ T6424] ? __pfx_status_show+0x10/0x10 [ 122.768113][ T6424] dev_attr_show+0x53/0xe0 [ 122.768153][ T6424] ? __pfx_dev_attr_show+0x10/0x10 [ 122.768188][ T6424] sysfs_kf_seq_show+0x213/0x3e0 [ 122.768229][ T6424] seq_read_iter+0x509/0x12c0 [ 122.768258][ T6424] ? __mutex_trylock_common+0xe9/0x250 [ 122.768329][ T6424] kernfs_fop_read_iter+0x40f/0x5a0 [ 122.768355][ T6424] ? rw_verify_area+0xcf/0x6c0 [ 122.768390][ T6424] vfs_read+0x8bf/0xc60 [ 122.768430][ T6424] ? __pfx___mutex_lock+0x10/0x10 [ 122.768465][ T6424] ? __pfx_vfs_read+0x10/0x10 [ 122.768527][ T6424] ksys_read+0x12a/0x250 [ 122.768561][ T6424] ? __pfx_ksys_read+0x10/0x10 [ 122.768608][ T6424] do_syscall_64+0xcd/0x490 [ 122.768643][ T6424] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.768674][ T6424] RIP: 0033:0x7fb07358eb69 [ 122.768716][ T6424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 122.768748][ T6424] RSP: 002b:00007fb074333038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 122.768778][ T6424] RAX: ffffffffffffffda RBX: 00007fb0737b5fa0 RCX: 00007fb07358eb69 [ 122.768809][ T6424] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000003 [ 122.768829][ T6424] RBP: 00007fb073611df1 R08: 0000000000000000 R09: 0000000000000000 [ 122.768850][ T6424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 122.768870][ T6424] R13: 0000000000000000 R14: 00007fb0737b5fa0 R15: 00007ffe0095be18 [ 122.768916][ T6424] [ 122.769051][ T6424] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20250404/psparse-529) [ 123.489935][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805d0f6800: rx timeout, send abort [ 123.498361][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88805d0f6800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session. [ 123.683168][ T6432] FAULT_INJECTION: forcing a failure. [ 123.683168][ T6432] name failslab, interval 1, probability 0, space 0, times 0 [ 123.710839][ T6432] CPU: 1 UID: 0 PID: 6432 Comm: syz.1.182 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 123.710885][ T6432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 123.710904][ T6432] Call Trace: [ 123.710915][ T6432] [ 123.710927][ T6432] dump_stack_lvl+0x16c/0x1f0 [ 123.710974][ T6432] should_fail_ex+0x512/0x640 [ 123.711015][ T6432] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 123.711055][ T6432] should_failslab+0xc2/0x120 [ 123.711101][ T6432] __kmalloc_cache_noprof+0x6a/0x3e0 [ 123.711135][ T6432] ? down_write_killable+0x154/0x250 [ 123.711176][ T6432] ? alloc_ldt_struct+0x5d/0x1a0 [ 123.711217][ T6432] alloc_ldt_struct+0x5d/0x1a0 [ 123.711251][ T6432] write_ldt+0x852/0xd20 [ 123.711295][ T6432] ? __pfx_write_ldt+0x10/0x10 [ 123.711338][ T6432] ? up_write+0x1b2/0x520 [ 123.711396][ T6432] __x64_sys_modify_ldt+0xb1/0x170 [ 123.711435][ T6432] do_syscall_64+0xcd/0x490 [ 123.711475][ T6432] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 123.711508][ T6432] RIP: 0033:0x7f71a4d8eb69 [ 123.711533][ T6432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 123.711565][ T6432] RSP: 002b:00007f71a5b8c038 EFLAGS: 00000246 ORIG_RAX: 000000000000009a [ 123.711595][ T6432] RAX: ffffffffffffffda RBX: 00007f71a4fb5fa0 RCX: 00007f71a4d8eb69 [ 123.711617][ T6432] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000001 [ 123.711637][ T6432] RBP: 00007f71a4e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 123.711657][ T6432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 123.711676][ T6432] R13: 0000000000000000 R14: 00007f71a4fb5fa0 R15: 00007ffe5b77bf08 [ 123.711739][ T6432] [ 124.120418][ T6440] netlink: 130 bytes leftover after parsing attributes in process `syz.3.187'. [ 125.414440][ T6465] sctp: [Deprecated]: syz.2.191 (pid 6465) Use of struct sctp_assoc_value in delayed_ack socket option. [ 125.414440][ T6465] Use struct sctp_sack_info instead [ 125.735676][ T6464] vivid-009: ================= START STATUS ================= [ 125.755543][ T6464] vivid-009: Enable Output Cropping: true [ 125.762591][ T6464] vivid-009: Enable Output Composing: true [ 125.769518][ T6464] vivid-009: Enable Output Scaler: true [ 125.775584][ T6464] vivid-009: Tx RGB Quantization Range: Automatic [ 125.782972][ T6464] vivid-009: Transmit Mode: HDMI [ 125.786457][ T6466] FAULT_INJECTION: forcing a failure. [ 125.786457][ T6466] name failslab, interval 1, probability 0, space 0, times 0 [ 125.793872][ T6464] vivid-009: Hotplug Present: 0x00000000 [ 125.806613][ T6464] vivid-009: RxSense Present: 0x00000000 [ 125.827909][ T6464] vivid-009: EDID Present: 0x00000000 [ 125.855364][ T6464] vivid-009: ================== END STATUS ================== [ 125.865740][ T6466] CPU: 0 UID: 0 PID: 6466 Comm: syz.0.192 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 125.865779][ T6466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 125.865797][ T6466] Call Trace: [ 125.865806][ T6466] [ 125.865823][ T6466] dump_stack_lvl+0x16c/0x1f0 [ 125.865861][ T6466] should_fail_ex+0x512/0x640 [ 125.865897][ T6466] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 125.865933][ T6466] should_failslab+0xc2/0x120 [ 125.865974][ T6466] __kmalloc_cache_noprof+0x6a/0x3e0 [ 125.866005][ T6466] ? v4l2_fh_open+0x4c/0xc0 [ 125.866044][ T6466] v4l2_fh_open+0x4c/0xc0 [ 125.866078][ T6466] v4l2_open+0x222/0x490 [ 125.866124][ T6466] ? __pfx_v4l2_open+0x10/0x10 [ 125.866154][ T6466] chrdev_open+0x234/0x6a0 [ 125.866195][ T6466] ? __pfx_apparmor_file_open+0x10/0x10 [ 125.866256][ T6466] ? __pfx_chrdev_open+0x10/0x10 [ 125.866295][ T6466] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 125.866335][ T6466] do_dentry_open+0x982/0x1530 [ 125.866369][ T6466] ? __pfx_chrdev_open+0x10/0x10 [ 125.866409][ T6466] vfs_open+0x82/0x3f0 [ 125.866452][ T6466] path_openat+0x1de4/0x2cb0 [ 125.866493][ T6466] ? __pfx_path_openat+0x10/0x10 [ 125.866532][ T6466] do_filp_open+0x20b/0x470 [ 125.866564][ T6466] ? __pfx_do_filp_open+0x10/0x10 [ 125.866622][ T6466] ? alloc_fd+0x471/0x7d0 [ 125.866667][ T6466] do_sys_openat2+0x11b/0x1d0 [ 125.866742][ T6466] ? __pfx_do_sys_openat2+0x10/0x10 [ 125.866788][ T6466] ? find_held_lock+0x2b/0x80 [ 125.866825][ T6466] ? handle_mm_fault+0x2ab/0xd10 [ 125.866867][ T6466] __x64_sys_openat+0x174/0x210 [ 125.866915][ T6466] ? __pfx___x64_sys_openat+0x10/0x10 [ 125.866976][ T6466] do_syscall_64+0xcd/0x490 [ 125.867011][ T6466] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 125.867042][ T6466] RIP: 0033:0x7fb07358eb69 [ 125.867082][ T6466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 125.867111][ T6466] RSP: 002b:00007fb074312038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 125.867141][ T6466] RAX: ffffffffffffffda RBX: 00007fb0737b6080 RCX: 00007fb07358eb69 [ 125.867161][ T6466] RDX: 00000000000c0400 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 125.867181][ T6466] RBP: 00007fb073611df1 R08: 0000000000000000 R09: 0000000000000000 [ 125.867200][ T6466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 125.867219][ T6466] R13: 0000000000000000 R14: 00007fb0737b6080 R15: 00007ffe0095be18 [ 125.867258][ T6466] [ 125.884578][ T6471] FAULT_INJECTION: forcing a failure. [ 125.884578][ T6471] name failslab, interval 1, probability 0, space 0, times 0 [ 126.200547][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 126.218714][ T6471] CPU: 0 UID: 0 PID: 6471 Comm: syz.2.194 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 126.218748][ T6471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 126.218764][ T6471] Call Trace: [ 126.218771][ T6471] [ 126.218780][ T6471] dump_stack_lvl+0x16c/0x1f0 [ 126.218809][ T6471] should_fail_ex+0x512/0x640 [ 126.218838][ T6471] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 126.218870][ T6471] should_failslab+0xc2/0x120 [ 126.218902][ T6471] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 126.218930][ T6471] ? __proc_create+0xc3/0x8e0 [ 126.218964][ T6471] ? __proc_create+0x2ce/0x8e0 [ 126.219002][ T6471] __proc_create+0x2ce/0x8e0 [ 126.219038][ T6471] ? __pfx___proc_create+0x10/0x10 [ 126.219073][ T6471] ? lockdep_hardirqs_on+0x7c/0x110 [ 126.219098][ T6471] ? __mod_timer+0x8f2/0xd30 [ 126.219152][ T6471] _proc_mkdir+0xb9/0x210 [ 126.219203][ T6471] ? __pfx__proc_mkdir+0x10/0x10 [ 126.219253][ T6471] can_init_proc+0x5b/0x4d0 [ 126.219278][ T6471] can_pernet_init+0x1e4/0x370 [ 126.219317][ T6471] ? __pfx_can_pernet_init+0x10/0x10 [ 126.219360][ T6471] ops_init+0x1df/0x5f0 [ 126.219390][ T6471] setup_net+0x10f/0x380 [ 126.219414][ T6471] ? lockdep_init_map_type+0x5c/0x280 [ 126.219449][ T6471] ? __pfx_setup_net+0x10/0x10 [ 126.219477][ T6471] ? debug_mutex_init+0x37/0x70 [ 126.219509][ T6471] copy_net_ns+0x2a6/0x5f0 [ 126.219542][ T6471] create_new_namespaces+0x3ea/0xa90 [ 126.219578][ T6471] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 126.219608][ T6471] ksys_unshare+0x45b/0xa40 [ 126.219642][ T6471] ? __pfx_ksys_unshare+0x10/0x10 [ 126.219680][ T6471] ? xfd_validate_state+0x61/0x180 [ 126.219726][ T6471] __x64_sys_unshare+0x31/0x40 [ 126.219758][ T6471] do_syscall_64+0xcd/0x490 [ 126.219786][ T6471] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.219809][ T6471] RIP: 0033:0x7f805678eb69 [ 126.219828][ T6471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 126.219850][ T6471] RSP: 002b:00007f8057530038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 126.219883][ T6471] RAX: ffffffffffffffda RBX: 00007f80569b5fa0 RCX: 00007f805678eb69 [ 126.219898][ T6471] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 126.219922][ T6471] RBP: 00007f8056811df1 R08: 0000000000000000 R09: 0000000000000000 [ 126.219934][ T6471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 126.219947][ T6471] R13: 0000000000000000 R14: 00007f80569b5fa0 R15: 00007ffdc5ac4108 [ 126.219973][ T6471] [ 126.220017][ T6471] can: failed to create /proc/net/can . CONFIG_PROC_FS missing? [ 126.529881][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 126.728621][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 126.951716][ T6481] i2c i2c-0: new_device: Extra parameters [ 127.090535][ T6484] netlink: 17 bytes leftover after parsing attributes in process `syz.1.199'. [ 127.099880][ T6486] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 127.128135][ T6484] netlink: 4 bytes leftover after parsing attributes in process `syz.1.199'. [ 127.690978][ T6494] mkiss: ax0: crc mode is auto. [ 128.159845][ T6513] FAULT_INJECTION: forcing a failure. [ 128.159845][ T6513] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 128.179560][ T6513] CPU: 0 UID: 0 PID: 6513 Comm: syz.1.209 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 128.179607][ T6513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 128.179634][ T6513] Call Trace: [ 128.179645][ T6513] [ 128.179658][ T6513] dump_stack_lvl+0x16c/0x1f0 [ 128.179698][ T6513] should_fail_ex+0x512/0x640 [ 128.179747][ T6513] _copy_from_user+0x2e/0xd0 [ 128.179797][ T6513] snd_pcm_oss_write2+0x1c2/0x410 [ 128.179846][ T6513] ? __pfx_snd_pcm_oss_write2+0x10/0x10 [ 128.179909][ T6513] ? iovec_from_user+0xbb/0x140 [ 128.179963][ T6513] snd_pcm_oss_write+0x711/0xa10 [ 128.180013][ T6513] ? security_file_permission+0x71/0x210 [ 128.180061][ T6513] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 128.180107][ T6513] vfs_writev+0x5df/0xde0 [ 128.180154][ T6513] ? __pfx_vfs_writev+0x10/0x10 [ 128.180191][ T6513] ? kmem_cache_free+0x2d1/0x4d0 [ 128.180250][ T6513] ? __fget_files+0x20e/0x3c0 [ 128.180297][ T6513] ? do_writev+0x132/0x340 [ 128.180328][ T6513] do_writev+0x132/0x340 [ 128.180363][ T6513] ? __pfx_do_writev+0x10/0x10 [ 128.180411][ T6513] do_syscall_64+0xcd/0x490 [ 128.180450][ T6513] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.180482][ T6513] RIP: 0033:0x7f71a4d8eb69 [ 128.180506][ T6513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 128.180536][ T6513] RSP: 002b:00007f71a5b8c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 128.180567][ T6513] RAX: ffffffffffffffda RBX: 00007f71a4fb5fa0 RCX: 00007f71a4d8eb69 [ 128.180588][ T6513] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 128.180607][ T6513] RBP: 00007f71a4e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 128.180633][ T6513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 128.180652][ T6513] R13: 0000000000000000 R14: 00007f71a4fb5fa0 R15: 00007ffe5b77bf08 [ 128.180694][ T6513] [ 128.546370][ T6516] serio: Serial port pty233 [ 129.009224][ T6529] netlink: 17 bytes leftover after parsing attributes in process `syz.0.214'. [ 129.025124][ T6529] netlink: 4 bytes leftover after parsing attributes in process `syz.0.214'. [ 129.128931][ T6533] netlink: 4 bytes leftover after parsing attributes in process `syz.0.216'. [ 129.144417][ T6533] netlink: 4 bytes leftover after parsing attributes in process `syz.0.216'. [ 129.343179][ T6540] [U] - [ 129.346580][ T6540] [U] [ 129.418235][ T6539] [U] [ 129.750409][ T6546] FAULT_INJECTION: forcing a failure. [ 129.750409][ T6546] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 129.767360][ T6546] CPU: 1 UID: 0 PID: 6546 Comm: syz.0.221 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 129.767388][ T6546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 129.767400][ T6546] Call Trace: [ 129.767407][ T6546] [ 129.767414][ T6546] dump_stack_lvl+0x16c/0x1f0 [ 129.767439][ T6546] should_fail_ex+0x512/0x640 [ 129.767468][ T6546] should_fail_alloc_page+0xe7/0x130 [ 129.767508][ T6546] prepare_alloc_pages+0x3c2/0x610 [ 129.767540][ T6546] ? rcu_is_watching+0x12/0xc0 [ 129.767563][ T6546] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 129.767592][ T6546] ? rcu_is_watching+0x12/0xc0 [ 129.767613][ T6546] ? trace_mm_page_alloc+0x11f/0x1a0 [ 129.767645][ T6546] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 129.767669][ T6546] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 129.767702][ T6546] ? lockdep_hardirqs_on+0x7c/0x110 [ 129.767723][ T6546] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 129.767747][ T6546] ? stack_depot_save_flags+0x3de/0x9c0 [ 129.767780][ T6546] ? alloc_vmap_area+0x645/0x29c0 [ 129.767808][ T6546] ? __vmalloc_node_range_noprof+0x271/0x14b0 [ 129.767827][ T6546] ? __do_sys_listmount+0x1c2/0xf80 [ 129.767846][ T6546] ? do_syscall_64+0xcd/0x490 [ 129.767866][ T6546] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.767898][ T6546] alloc_pages_bulk_noprof+0x71c/0x1410 [ 129.767922][ T6546] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 129.767955][ T6546] ? policy_nodemask+0xea/0x4e0 [ 129.767985][ T6546] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 129.768011][ T6546] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 129.768049][ T6546] kasan_populate_vmalloc+0xf1/0x1f0 [ 129.768076][ T6546] alloc_vmap_area+0x959/0x29c0 [ 129.768117][ T6546] ? __pfx_alloc_vmap_area+0x10/0x10 [ 129.768153][ T6546] __get_vm_area_node+0x1ca/0x330 [ 129.768190][ T6546] __vmalloc_node_range_noprof+0x271/0x14b0 [ 129.768210][ T6546] ? __do_sys_listmount+0x1c2/0xf80 [ 129.768229][ T6546] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 129.768261][ T6546] ? policy_nodemask+0xea/0x4e0 [ 129.768290][ T6546] ? __do_sys_listmount+0x1c2/0xf80 [ 129.768315][ T6546] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 129.768342][ T6546] ? ___kmalloc_large_node+0xed/0x160 [ 129.768378][ T6546] __kvmalloc_node_noprof+0x30a/0x620 [ 129.768401][ T6546] ? __do_sys_listmount+0x1c2/0xf80 [ 129.768422][ T6546] ? __do_sys_listmount+0x1c2/0xf80 [ 129.768445][ T6546] ? __do_sys_listmount+0x1c2/0xf80 [ 129.768463][ T6546] __do_sys_listmount+0x1c2/0xf80 [ 129.768492][ T6546] ? __x64_sys_futex+0x1e0/0x4c0 [ 129.768518][ T6546] ? __x64_sys_futex+0x1e9/0x4c0 [ 129.768545][ T6546] ? __pfx___do_sys_listmount+0x10/0x10 [ 129.768577][ T6546] do_syscall_64+0xcd/0x490 [ 129.768601][ T6546] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.768620][ T6546] RIP: 0033:0x7fb07358eb69 [ 129.768636][ T6546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 129.768659][ T6546] RSP: 002b:00007fb074312038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 129.768678][ T6546] RAX: ffffffffffffffda RBX: 00007fb0737b6080 RCX: 00007fb07358eb69 [ 129.768710][ T6546] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 129.768724][ T6546] RBP: 00007fb073611df1 R08: 0000000000000000 R09: 0000000000000000 [ 129.768738][ T6546] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 129.768751][ T6546] R13: 0000000000000000 R14: 00007fb0737b6080 R15: 00007ffe0095be18 [ 129.768780][ T6546] [ 129.771697][ T6546] syz.0.221: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 129.771939][ T6546] CPU: 1 UID: 0 PID: 6546 Comm: syz.0.221 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 129.771978][ T6546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 129.771996][ T6546] Call Trace: [ 129.772005][ T6546] [ 129.772016][ T6546] dump_stack_lvl+0x16c/0x1f0 [ 129.772052][ T6546] warn_alloc+0x248/0x3a0 [ 129.772109][ T6546] ? __pfx_warn_alloc+0x10/0x10 [ 129.772159][ T6546] ? kfree+0x2b4/0x4d0 [ 129.772201][ T6546] ? __get_vm_area_node+0x208/0x330 [ 129.772261][ T6546] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 129.772295][ T6546] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 129.772349][ T6546] ? policy_nodemask+0xea/0x4e0 [ 129.772396][ T6546] ? __do_sys_listmount+0x1c2/0xf80 [ 129.772449][ T6546] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 129.772502][ T6546] ? ___kmalloc_large_node+0xed/0x160 [ 129.772555][ T6546] __kvmalloc_node_noprof+0x30a/0x620 [ 129.772589][ T6546] ? __do_sys_listmount+0x1c2/0xf80 [ 129.772618][ T6546] ? __do_sys_listmount+0x1c2/0xf80 [ 129.772652][ T6546] ? __do_sys_listmount+0x1c2/0xf80 [ 129.772678][ T6546] __do_sys_listmount+0x1c2/0xf80 [ 129.772712][ T6546] ? __x64_sys_futex+0x1e0/0x4c0 [ 129.772749][ T6546] ? __x64_sys_futex+0x1e9/0x4c0 [ 129.772785][ T6546] ? __pfx___do_sys_listmount+0x10/0x10 [ 129.772832][ T6546] do_syscall_64+0xcd/0x490 [ 129.772866][ T6546] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.772894][ T6546] RIP: 0033:0x7fb07358eb69 [ 129.772916][ T6546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 129.772944][ T6546] RSP: 002b:00007fb074312038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 129.772970][ T6546] RAX: ffffffffffffffda RBX: 00007fb0737b6080 RCX: 00007fb07358eb69 [ 129.772990][ T6546] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 129.773008][ T6546] RBP: 00007fb073611df1 R08: 0000000000000000 R09: 0000000000000000 [ 129.773026][ T6546] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 129.773043][ T6546] R13: 0000000000000000 R14: 00007fb0737b6080 R15: 00007ffe0095be18 [ 129.773079][ T6546] [ 129.773160][ T6546] Mem-Info: [ 129.773307][ T6546] active_anon:6233 inactive_anon:0 isolated_anon:0 [ 129.773307][ T6546] active_file:7730 inactive_file:49610 isolated_file:0 [ 129.773307][ T6546] unevictable:768 dirty:348 writeback:0 [ 129.773307][ T6546] slab_reclaimable:10719 slab_unreclaimable:91397 [ 129.773307][ T6546] mapped:24492 shmem:1361 pagetables:1060 [ 129.773307][ T6546] sec_pagetables:0 bounce:0 [ 129.773307][ T6546] kernel_misc_reclaimable:0 [ 129.773307][ T6546] free:1314610 free_pcp:33110 free_cma:0 [ 129.773373][ T6546] Node 0 active_anon:24932kB inactive_anon:0kB active_file:30920kB inactive_file:198240kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:97968kB dirty:1388kB writeback:0kB shmem:3908kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11372kB pagetables:4116kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 129.773425][ T6546] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 129.773474][ T6546] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 129.773537][ T6546] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 129.773575][ T6546] Node 0 DMA32 free:1357660kB boost:0kB min:34320kB low:42900kB high:51480kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24884kB inactive_anon:0kB active_file:30920kB inactive_file:196924kB unevictable:1536kB writepending:1388kB present:3129332kB managed:2539676kB mlocked:0kB bounce:0kB free_pcp:113296kB local_pcp:68528kB free_cma:0kB [ 129.773635][ T6546] lowmem_reserve[]: 0 0 1 1 1 [ 129.773672][ T6546] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1316kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB [ 129.773727][ T6546] lowmem_reserve[]: 0 0 0 0 0 [ 129.773762][ T6546] Node 1 Normal free:3885412kB boost:0kB min:55560kB low:69448kB high:83336kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:19128kB local_pcp:9720kB free_cma:0kB [ 129.773820][ T6546] lowmem_reserve[]: 0 0 0 0 0 [ 129.773855][ T6546] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 129.773976][ T6546] Node 0 DMA32: 1452*4kB (ME) 1083*8kB (UM) 663*16kB (UM) 625*32kB (UM) 369*64kB (UME) 196*128kB (UME) 117*256kB (UME) 68*512kB (UM) 29*1024kB (M) 9*2048kB (UM) 281*4096kB (UM) = 1357656kB [ 129.774143][ T6546] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 129.775526][ T6546] Node 1 Normal: 153*4kB (UME) 54*8kB (UME) 41*16kB (UME) 68*32kB (UME) 25*64kB (UME) 8*128kB (UME) 4*256kB (UME) 2*512kB (M) 2*1024kB (ME) 2*2048kB (UE) 945*4096kB (M) = 3885412kB [ 129.775777][ T6546] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 129.775802][ T6546] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 129.775827][ T6546] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 129.775852][ T6546] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 129.775876][ T6546] 58697 total pagecache pages [ 129.775888][ T6546] 0 pages in swap cache [ 129.775898][ T6546] Free swap = 124996kB [ 129.775909][ T6546] Total swap = 124996kB [ 129.775921][ T6546] 2097051 pages RAM [ 129.775931][ T6546] 0 pages HighMem/MovableOnly [ 129.775942][ T6546] 430170 pages reserved [ 129.775953][ T6546] 0 pages cma reserved [ 130.231774][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 130.705577][ T6558] bridge0: port 3(dummy0) entered blocking state [ 131.005338][ T6561] FAULT_INJECTION: forcing a failure. [ 131.005338][ T6561] name failslab, interval 1, probability 0, space 0, times 0 [ 131.037003][ T6558] bridge0: port 3(dummy0) entered disabled state [ 131.070596][ T6561] CPU: 1 UID: 0 PID: 6561 Comm: syz.1.225 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 131.070639][ T6561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 131.070659][ T6561] Call Trace: [ 131.070669][ T6561] [ 131.070679][ T6561] dump_stack_lvl+0x16c/0x1f0 [ 131.070719][ T6561] should_fail_ex+0x512/0x640 [ 131.070758][ T6561] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 131.070803][ T6561] should_failslab+0xc2/0x120 [ 131.070845][ T6561] __kmalloc_cache_noprof+0x6a/0x3e0 [ 131.070879][ T6561] ? __debugfs_file_get+0x2ad/0x840 [ 131.070931][ T6561] __debugfs_file_get+0x2ad/0x840 [ 131.070975][ T6561] ? __pfx___debugfs_file_get+0x10/0x10 [ 131.071018][ T6561] ? __pfx_apparmor_file_open+0x10/0x10 [ 131.071081][ T6561] full_proxy_open_short+0x4b/0x180 [ 131.071148][ T6561] do_dentry_open+0x982/0x1530 [ 131.071191][ T6561] ? __pfx_full_proxy_open_short+0x10/0x10 [ 131.071249][ T6561] vfs_open+0x82/0x3f0 [ 131.071302][ T6561] path_openat+0x1de4/0x2cb0 [ 131.071354][ T6561] ? __pfx_path_openat+0x10/0x10 [ 131.071407][ T6561] do_filp_open+0x20b/0x470 [ 131.071446][ T6561] ? __pfx_do_filp_open+0x10/0x10 [ 131.071513][ T6561] ? alloc_fd+0x471/0x7d0 [ 131.071560][ T6561] do_sys_openat2+0x11b/0x1d0 [ 131.071613][ T6561] ? __pfx_do_sys_openat2+0x10/0x10 [ 131.071678][ T6561] __x64_sys_openat+0x174/0x210 [ 131.071728][ T6561] ? __pfx___x64_sys_openat+0x10/0x10 [ 131.071795][ T6561] do_syscall_64+0xcd/0x490 [ 131.071832][ T6561] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.071864][ T6561] RIP: 0033:0x7f71a4d8eb69 [ 131.071889][ T6561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.071919][ T6561] RSP: 002b:00007f71a5b6b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 131.071949][ T6561] RAX: ffffffffffffffda RBX: 00007f71a4fb6080 RCX: 00007f71a4d8eb69 [ 131.071970][ T6561] RDX: 0000000000080000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 131.071990][ T6561] RBP: 00007f71a4e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 131.072010][ T6561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 131.072029][ T6561] R13: 0000000000000000 R14: 00007f71a4fb6080 R15: 00007ffe5b77bf08 [ 131.072069][ T6561] [ 131.500366][ T6558] dummy0: entered allmulticast mode [ 131.563331][ T6558] dummy0: entered promiscuous mode [ 131.569494][ T6558] bridge0: port 3(dummy0) entered blocking state [ 131.576148][ T6558] bridge0: port 3(dummy0) entered forwarding state [ 131.737010][ T6567] FAULT_INJECTION: forcing a failure. [ 131.737010][ T6567] name failslab, interval 1, probability 0, space 0, times 0 [ 131.738614][ T6563] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 131.749826][ T6567] CPU: 0 UID: 0 PID: 6567 Comm: syz.1.228 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 131.749881][ T6567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 131.749902][ T6567] Call Trace: [ 131.749925][ T6567] [ 131.749938][ T6567] dump_stack_lvl+0x16c/0x1f0 [ 131.749982][ T6567] should_fail_ex+0x512/0x640 [ 131.750024][ T6567] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 131.750086][ T6567] should_failslab+0xc2/0x120 [ 131.750136][ T6567] __kmalloc_cache_noprof+0x6a/0x3e0 [ 131.750177][ T6567] ? ipv4_inetpeer_init+0x3f/0xb0 [ 131.750223][ T6567] ? __pfx_ipv4_inetpeer_init+0x10/0x10 [ 131.750270][ T6567] ipv4_inetpeer_init+0x3f/0xb0 [ 131.750315][ T6567] ops_init+0x1df/0x5f0 [ 131.750370][ T6567] setup_net+0x10f/0x380 [ 131.750406][ T6567] ? lockdep_init_map_type+0x5c/0x280 [ 131.750460][ T6567] ? __pfx_setup_net+0x10/0x10 [ 131.750504][ T6567] ? debug_mutex_init+0x37/0x70 [ 131.750546][ T6567] copy_net_ns+0x2a6/0x5f0 [ 131.750596][ T6567] create_new_namespaces+0x3ea/0xa90 [ 131.750659][ T6567] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 131.750703][ T6567] ksys_unshare+0x45b/0xa40 [ 131.750770][ T6567] ? __pfx_ksys_unshare+0x10/0x10 [ 131.750822][ T6567] ? xfd_validate_state+0x61/0x180 [ 131.750891][ T6567] __x64_sys_unshare+0x31/0x40 [ 131.750942][ T6567] do_syscall_64+0xcd/0x490 [ 131.750985][ T6567] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.751022][ T6567] RIP: 0033:0x7f71a4d8eb69 [ 131.751062][ T6567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.751097][ T6567] RSP: 002b:00007f71a5b8c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 131.751130][ T6567] RAX: ffffffffffffffda RBX: 00007f71a4fb5fa0 RCX: 00007f71a4d8eb69 [ 131.751159][ T6567] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 131.751180][ T6567] RBP: 00007f71a4e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 131.751201][ T6567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 131.751223][ T6567] R13: 0000000000000000 R14: 00007f71a4fb5fa0 R15: 00007ffe5b77bf08 [ 131.751269][ T6567] [ 133.483156][ T6595] netlink: 330 bytes leftover after parsing attributes in process `syz.2.239'. [ 133.577972][ T6599] netlink: 330 bytes leftover after parsing attributes in process `syz.1.241'. [ 135.317584][ T6647] netlink: 326 bytes leftover after parsing attributes in process `syz.2.255'. [ 135.770857][ T6661] FAULT_INJECTION: forcing a failure. [ 135.770857][ T6661] name failslab, interval 1, probability 0, space 0, times 0 [ 135.847491][ T6661] CPU: 1 UID: 0 PID: 6661 Comm: syz.0.260 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 135.847530][ T6661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 135.847547][ T6661] Call Trace: [ 135.847556][ T6661] [ 135.847567][ T6661] dump_stack_lvl+0x16c/0x1f0 [ 135.847600][ T6661] should_fail_ex+0x512/0x640 [ 135.847635][ T6661] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 135.847668][ T6661] ? __pfx_dvb_frontend_thread+0x10/0x10 [ 135.847701][ T6661] should_failslab+0xc2/0x120 [ 135.847748][ T6661] __kmalloc_cache_noprof+0x6a/0x3e0 [ 135.847777][ T6661] ? lockdep_init_map_type+0x5c/0x280 [ 135.847816][ T6661] ? __kthread_create_on_node+0xce/0x3f0 [ 135.847856][ T6661] ? __pfx_dvb_frontend_thread+0x10/0x10 [ 135.847888][ T6661] __kthread_create_on_node+0xce/0x3f0 [ 135.847927][ T6661] ? __pfx___kthread_create_on_node+0x10/0x10 [ 135.847983][ T6661] ? __pfx_dvb_frontend_thread+0x10/0x10 [ 135.848018][ T6661] kthread_create_on_node+0xc7/0x100 [ 135.848056][ T6661] ? __pfx_kthread_create_on_node+0x10/0x10 [ 135.848102][ T6661] ? mark_held_locks+0x49/0x80 [ 135.848138][ T6661] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 135.848184][ T6661] ? lockdep_hardirqs_on+0x7c/0x110 [ 135.848218][ T6661] dvb_frontend_open+0xf47/0x1730 [ 135.848260][ T6661] ? __pfx_dvb_frontend_open+0x10/0x10 [ 135.848294][ T6661] dvb_device_open+0x26d/0x3b0 [ 135.848327][ T6661] ? __pfx_dvb_device_open+0x10/0x10 [ 135.848360][ T6661] chrdev_open+0x234/0x6a0 [ 135.848396][ T6661] ? __pfx_apparmor_file_open+0x10/0x10 [ 135.848443][ T6661] ? __pfx_chrdev_open+0x10/0x10 [ 135.848482][ T6661] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 135.848522][ T6661] do_dentry_open+0x982/0x1530 [ 135.848558][ T6661] ? __pfx_chrdev_open+0x10/0x10 [ 135.848602][ T6661] vfs_open+0x82/0x3f0 [ 135.848651][ T6661] path_openat+0x1de4/0x2cb0 [ 135.848698][ T6661] ? __pfx_path_openat+0x10/0x10 [ 135.848777][ T6661] do_filp_open+0x20b/0x470 [ 135.848819][ T6661] ? __pfx_do_filp_open+0x10/0x10 [ 135.848894][ T6661] ? alloc_fd+0x471/0x7d0 [ 135.848948][ T6661] do_sys_openat2+0x11b/0x1d0 [ 135.849006][ T6661] ? __pfx_do_sys_openat2+0x10/0x10 [ 135.849077][ T6661] __x64_sys_openat+0x174/0x210 [ 135.849130][ T6661] ? __pfx___x64_sys_openat+0x10/0x10 [ 135.849203][ T6661] do_syscall_64+0xcd/0x490 [ 135.849242][ T6661] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 135.849277][ T6661] RIP: 0033:0x7fb07358eb69 [ 135.849303][ T6661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 135.849334][ T6661] RSP: 002b:00007fb074333038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 135.849365][ T6661] RAX: ffffffffffffffda RBX: 00007fb0737b5fa0 RCX: 00007fb07358eb69 [ 135.849387][ T6661] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 135.849407][ T6661] RBP: 00007fb073611df1 R08: 0000000000000000 R09: 0000000000000000 [ 135.849427][ T6661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 135.849447][ T6661] R13: 0000000000000000 R14: 00007fb0737b5fa0 R15: 00007ffe0095be18 [ 135.849491][ T6661] [ 135.849562][ T6661] i2c i2c-0: dvb_frontend_start: failed to start kthread (-12) [ 136.711205][ T6682] FAULT_INJECTION: forcing a failure. [ 136.711205][ T6682] name failslab, interval 1, probability 0, space 0, times 0 [ 136.753573][ T6682] CPU: 1 UID: 0 PID: 6682 Comm: syz.2.263 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 136.753617][ T6682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 136.753640][ T6682] Call Trace: [ 136.753650][ T6682] [ 136.753662][ T6682] dump_stack_lvl+0x16c/0x1f0 [ 136.753699][ T6682] should_fail_ex+0x512/0x640 [ 136.753745][ T6682] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 136.753783][ T6682] should_failslab+0xc2/0x120 [ 136.753822][ T6682] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 136.753857][ T6682] ? __kernfs_new_node+0xd2/0x8e0 [ 136.753907][ T6682] __kernfs_new_node+0xd2/0x8e0 [ 136.753950][ T6682] ? __pfx___kernfs_new_node+0x10/0x10 [ 136.753998][ T6682] ? find_held_lock+0x2b/0x80 [ 136.754028][ T6682] ? kernfs_root+0xee/0x2a0 [ 136.754072][ T6682] kernfs_new_node+0x13c/0x1e0 [ 136.754121][ T6682] __kernfs_create_file+0x53/0x350 [ 136.754154][ T6682] sysfs_add_file_mode_ns+0x207/0x3c0 [ 136.754198][ T6682] internal_create_group+0x578/0xf30 [ 136.754247][ T6682] ? __pfx_internal_create_group+0x10/0x10 [ 136.754310][ T6682] ? kernfs_create_link+0x1bd/0x240 [ 136.754347][ T6682] internal_create_groups+0x9d/0x150 [ 136.754392][ T6682] device_add+0x6d1/0x1aa0 [ 136.754439][ T6682] ? __pfx_device_add+0x10/0x10 [ 136.754481][ T6682] ? lockdep_init_map_type+0x5c/0x280 [ 136.754525][ T6682] ? __init_waitqueue_head+0xca/0x150 [ 136.754582][ T6682] netdev_register_kobject+0x1a9/0x3d0 [ 136.754627][ T6682] register_netdevice+0x13dc/0x2270 [ 136.754671][ T6682] ? __pfx_register_netdevice+0x10/0x10 [ 136.754717][ T6682] ? __pfx_loopback_net_init+0x10/0x10 [ 136.754766][ T6682] register_netdev+0x34/0x50 [ 136.754800][ T6682] loopback_net_init+0x7a/0x170 [ 136.754848][ T6682] ? __pfx_loopback_net_init+0x10/0x10 [ 136.754903][ T6682] ops_init+0x1df/0x5f0 [ 136.754951][ T6682] setup_net+0x10f/0x380 [ 136.754980][ T6682] ? lockdep_init_map_type+0x5c/0x280 [ 136.755020][ T6682] ? __pfx_setup_net+0x10/0x10 [ 136.755054][ T6682] ? debug_mutex_init+0x37/0x70 [ 136.755086][ T6682] copy_net_ns+0x2a6/0x5f0 [ 136.755125][ T6682] create_new_namespaces+0x3ea/0xa90 [ 136.755167][ T6682] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 136.755204][ T6682] ksys_unshare+0x45b/0xa40 [ 136.755244][ T6682] ? __pfx_ksys_unshare+0x10/0x10 [ 136.755285][ T6682] ? xfd_validate_state+0x61/0x180 [ 136.755358][ T6682] __x64_sys_unshare+0x31/0x40 [ 136.755401][ T6682] do_syscall_64+0xcd/0x490 [ 136.755439][ T6682] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.755470][ T6682] RIP: 0033:0x7f805678eb69 [ 136.755493][ T6682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 136.755522][ T6682] RSP: 002b:00007f8057530038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 136.755549][ T6682] RAX: ffffffffffffffda RBX: 00007f80569b5fa0 RCX: 00007f805678eb69 [ 136.755568][ T6682] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 136.755586][ T6682] RBP: 00007f8056811df1 R08: 0000000000000000 R09: 0000000000000000 [ 136.755604][ T6682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 136.755621][ T6682] R13: 0000000000000000 R14: 00007f80569b5fa0 R15: 00007ffdc5ac4108 [ 136.755659][ T6682] [ 137.096312][ T6678] FAULT_INJECTION: forcing a failure. [ 137.096312][ T6678] name failslab, interval 1, probability 0, space 0, times 0 [ 137.109242][ T6678] CPU: 0 UID: 0 PID: 6678 Comm: syz.0.262 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 137.109289][ T6678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 137.109308][ T6678] Call Trace: [ 137.109318][ T6678] [ 137.109329][ T6678] dump_stack_lvl+0x16c/0x1f0 [ 137.109369][ T6678] should_fail_ex+0x512/0x640 [ 137.109409][ T6678] ? __kmalloc_noprof+0xbf/0x510 [ 137.109454][ T6678] ? drm_atomic_state_init+0x17b/0x320 [ 137.109505][ T6678] should_failslab+0xc2/0x120 [ 137.109550][ T6678] __kmalloc_noprof+0xd2/0x510 [ 137.109598][ T6678] drm_atomic_state_init+0x17b/0x320 [ 137.109648][ T6678] ? __kasan_kmalloc+0xaa/0xb0 [ 137.109689][ T6678] drm_atomic_state_alloc+0xd3/0x120 [ 137.109742][ T6678] drm_client_modeset_commit_atomic+0xcc/0x7e0 [ 137.109796][ T6678] ? __pfx___might_resched+0x10/0x10 [ 137.109843][ T6678] ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10 [ 137.109905][ T6678] ? __mutex_lock+0x1c4/0x10b0 [ 137.109949][ T6678] ? rcu_is_watching+0x12/0xc0 [ 137.110017][ T6678] drm_client_modeset_commit_locked+0x14d/0x580 [ 137.110073][ T6678] drm_client_modeset_commit+0x4f/0x80 [ 137.110121][ T6678] __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200 [ 137.110170][ T6678] ? __pfx_drm_fbdev_client_restore+0x10/0x10 [ 137.110208][ T6678] drm_fbdev_client_restore+0x2c/0x40 [ 137.110244][ T6678] drm_client_dev_restore+0x1f3/0x2a0 [ 137.110308][ T6678] drm_release+0x2c4/0x360 [ 137.110349][ T6678] ? __pfx_drm_release+0x10/0x10 [ 137.110385][ T6678] __fput+0x402/0xb70 [ 137.110431][ T6678] task_work_run+0x150/0x240 [ 137.110475][ T6678] ? __pfx_task_work_run+0x10/0x10 [ 137.110521][ T6678] ? __pfx___do_sys_close_range+0x10/0x10 [ 137.110564][ T6678] exit_to_user_mode_loop+0xeb/0x110 [ 137.110627][ T6678] do_syscall_64+0x3f6/0x490 [ 137.110681][ T6678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 137.110711][ T6678] RIP: 0033:0x7fb07358eb69 [ 137.110736][ T6678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 137.110766][ T6678] RSP: 002b:00007fb074333038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 137.110794][ T6678] RAX: 0000000000000000 RBX: 00007fb0737b5fa0 RCX: 00007fb07358eb69 [ 137.110813][ T6678] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 137.110830][ T6678] RBP: 00007fb073611df1 R08: 0000000000000000 R09: 0000000000000000 [ 137.110847][ T6678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 137.110865][ T6678] R13: 0000000000000000 R14: 00007fb0737b5fa0 R15: 00007ffe0095be18 [ 137.110910][ T6678] [ 137.721528][ T6697] FAULT_INJECTION: forcing a failure. [ 137.721528][ T6697] name fail_futex, interval 1, probability 0, space 0, times 1 [ 137.744604][ T6697] CPU: 0 UID: 0 PID: 6697 Comm: syz.3.266 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 137.744644][ T6697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 137.744660][ T6697] Call Trace: [ 137.744669][ T6697] [ 137.744679][ T6697] dump_stack_lvl+0x16c/0x1f0 [ 137.744713][ T6697] should_fail_ex+0x512/0x640 [ 137.744752][ T6697] get_futex_key+0x1d0/0x1560 [ 137.744793][ T6697] ? __pfx_get_futex_key+0x10/0x10 [ 137.744850][ T6697] futex_wake+0xea/0x530 [ 137.744892][ T6697] ? rcu_is_watching+0x12/0xc0 [ 137.744922][ T6697] ? __pfx_futex_wake+0x10/0x10 [ 137.744968][ T6697] ? kmem_cache_free+0x2d1/0x4d0 [ 137.744999][ T6697] ? fd_install+0x225/0x750 [ 137.745027][ T6697] ? putname+0x154/0x1a0 [ 137.745073][ T6697] do_futex+0x1e3/0x350 [ 137.745110][ T6697] ? __pfx_do_futex+0x10/0x10 [ 137.745157][ T6697] __x64_sys_futex+0x1e0/0x4c0 [ 137.745196][ T6697] ? __x64_sys_openat+0x174/0x210 [ 137.745241][ T6697] ? __pfx___x64_sys_futex+0x10/0x10 [ 137.745294][ T6697] do_syscall_64+0xcd/0x490 [ 137.745327][ T6697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 137.745355][ T6697] RIP: 0033:0x7f1b18b8eb69 [ 137.745376][ T6697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 137.745401][ T6697] RSP: 002b:00007f1b19a540e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 137.745428][ T6697] RAX: ffffffffffffffda RBX: 00007f1b18db5fa8 RCX: 00007f1b18b8eb69 [ 137.745446][ T6697] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1b18db5fac [ 137.745464][ T6697] RBP: 00007f1b18db5fa0 R08: 00007f1b19a55000 R09: 0000000000000000 [ 137.745481][ T6697] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f1b18db5fac [ 137.745498][ T6697] R13: 0000000000000000 R14: 00007ffcf979b570 R15: 00007ffcf979b658 [ 137.745535][ T6697] [ 137.979930][ T1304] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.005950][ T1304] ieee802154 phy1 wpan1: encryption failed: -22 [ 139.809386][ T6753] FAULT_INJECTION: forcing a failure. [ 139.809386][ T6753] name failslab, interval 1, probability 0, space 0, times 0 [ 139.859097][ T6753] CPU: 1 UID: 0 PID: 6753 Comm: syz.0.283 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 139.859144][ T6753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 139.859163][ T6753] Call Trace: [ 139.859172][ T6753] [ 139.859183][ T6753] dump_stack_lvl+0x16c/0x1f0 [ 139.859221][ T6753] should_fail_ex+0x512/0x640 [ 139.859256][ T6753] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 139.859291][ T6753] should_failslab+0xc2/0x120 [ 139.859332][ T6753] __kmalloc_cache_noprof+0x6a/0x3e0 [ 139.859360][ T6753] ? key_user_lookup+0x169/0x560 [ 139.859401][ T6753] ? key_user_lookup+0x195/0x560 [ 139.859441][ T6753] key_user_lookup+0x195/0x560 [ 139.859476][ T6753] ? __pfx_key_user_lookup+0x10/0x10 [ 139.859513][ T6753] ? bpf_lsm_capable+0x9/0x10 [ 139.859541][ T6753] ? security_capable+0x7e/0x260 [ 139.859589][ T6753] keyctl_chown_key+0x605/0xfb0 [ 139.859642][ T6753] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 139.859685][ T6753] ? __pfx_keyctl_chown_key+0x10/0x10 [ 139.859731][ T6753] ? xfd_validate_state+0x61/0x180 [ 139.859773][ T6753] ? __pfx_ksys_write+0x10/0x10 [ 139.859813][ T6753] __do_sys_keyctl+0x283/0x590 [ 139.859842][ T6753] do_syscall_64+0xcd/0x490 [ 139.859876][ T6753] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.859917][ T6753] RIP: 0033:0x7fb07358eb69 [ 139.859936][ T6753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 139.859960][ T6753] RSP: 002b:00007fb074333038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 139.859983][ T6753] RAX: ffffffffffffffda RBX: 00007fb0737b5fa0 RCX: 00007fb07358eb69 [ 139.859999][ T6753] RDX: 0000000000000006 RSI: 00000000fffffffe RDI: 0000000000000004 [ 139.860014][ T6753] RBP: 00007fb073611df1 R08: 000000000000000e R09: 0000000000000000 [ 139.860028][ T6753] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 139.860043][ T6753] R13: 0000000000000000 R14: 00007fb0737b5fa0 R15: 00007ffe0095be18 [ 139.860073][ T6753] [ 140.768847][ T6775] netlink: 342 bytes leftover after parsing attributes in process `syz.3.294'. [ 141.665344][ T6796] FAULT_INJECTION: forcing a failure. [ 141.665344][ T6796] name failslab, interval 1, probability 0, space 0, times 0 [ 141.691335][ T6796] CPU: 1 UID: 0 PID: 6796 Comm: syz.2.302 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 141.691383][ T6796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 141.691401][ T6796] Call Trace: [ 141.691412][ T6796] [ 141.691436][ T6796] dump_stack_lvl+0x16c/0x1f0 [ 141.691493][ T6796] should_fail_ex+0x512/0x640 [ 141.691532][ T6796] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 141.691583][ T6796] should_failslab+0xc2/0x120 [ 141.691627][ T6796] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 141.691672][ T6796] ? __kthread_create_on_node+0x186/0x3f0 [ 141.691722][ T6796] kvasprintf+0xbc/0x160 [ 141.691769][ T6796] ? __pfx_kvasprintf+0x10/0x10 [ 141.691832][ T6796] ? __pfx_dvb_frontend_thread+0x10/0x10 [ 141.691870][ T6796] __kthread_create_on_node+0x186/0x3f0 [ 141.691917][ T6796] ? __pfx___kthread_create_on_node+0x10/0x10 [ 141.691983][ T6796] ? __pfx_dvb_frontend_thread+0x10/0x10 [ 141.692022][ T6796] kthread_create_on_node+0xc7/0x100 [ 141.692066][ T6796] ? __pfx_kthread_create_on_node+0x10/0x10 [ 141.692120][ T6796] ? mark_held_locks+0x49/0x80 [ 141.692162][ T6796] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 141.692214][ T6796] ? lockdep_hardirqs_on+0x7c/0x110 [ 141.692261][ T6796] dvb_frontend_open+0xf47/0x1730 [ 141.692309][ T6796] ? __pfx_dvb_frontend_open+0x10/0x10 [ 141.692347][ T6796] dvb_device_open+0x26d/0x3b0 [ 141.692385][ T6796] ? __pfx_dvb_device_open+0x10/0x10 [ 141.692421][ T6796] chrdev_open+0x234/0x6a0 [ 141.692461][ T6796] ? __pfx_apparmor_file_open+0x10/0x10 [ 141.692512][ T6796] ? __pfx_chrdev_open+0x10/0x10 [ 141.692556][ T6796] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 141.692601][ T6796] do_dentry_open+0x982/0x1530 [ 141.692642][ T6796] ? __pfx_chrdev_open+0x10/0x10 [ 141.692694][ T6796] vfs_open+0x82/0x3f0 [ 141.692748][ T6796] path_openat+0x1de4/0x2cb0 [ 141.692800][ T6796] ? __pfx_path_openat+0x10/0x10 [ 141.692851][ T6796] do_filp_open+0x20b/0x470 [ 141.692891][ T6796] ? __pfx_do_filp_open+0x10/0x10 [ 141.692962][ T6796] ? alloc_fd+0x471/0x7d0 [ 141.693007][ T6796] do_sys_openat2+0x11b/0x1d0 [ 141.693057][ T6796] ? __pfx_do_sys_openat2+0x10/0x10 [ 141.693125][ T6796] __x64_sys_openat+0x174/0x210 [ 141.693176][ T6796] ? __pfx___x64_sys_openat+0x10/0x10 [ 141.693245][ T6796] do_syscall_64+0xcd/0x490 [ 141.693293][ T6796] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.693326][ T6796] RIP: 0033:0x7f805678eb69 [ 141.693349][ T6796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 141.693380][ T6796] RSP: 002b:00007f8057530038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 141.693410][ T6796] RAX: ffffffffffffffda RBX: 00007f80569b5fa0 RCX: 00007f805678eb69 [ 141.693430][ T6796] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 141.693450][ T6796] RBP: 00007f8056811df1 R08: 0000000000000000 R09: 0000000000000000 [ 141.693470][ T6796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 141.693489][ T6796] R13: 0000000000000000 R14: 00007f80569b5fa0 R15: 00007ffdc5ac4108 [ 141.693530][ T6796] [ 141.693567][ T6796] i2c i2c-0: dvb_frontend_start: failed to start kthread (-12) [ 143.360108][ T6832] FAULT_INJECTION: forcing a failure. [ 143.360108][ T6832] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 143.360140][ T6832] CPU: 1 UID: 0 PID: 6832 Comm: syz.1.314 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 143.360166][ T6832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 143.360177][ T6832] Call Trace: [ 143.360183][ T6832] [ 143.360190][ T6832] dump_stack_lvl+0x16c/0x1f0 [ 143.360214][ T6832] should_fail_ex+0x512/0x640 [ 143.360243][ T6832] should_fail_alloc_page+0xe7/0x130 [ 143.360274][ T6832] prepare_alloc_pages+0x3c2/0x610 [ 143.360306][ T6832] ? rcu_is_watching+0x12/0xc0 [ 143.360341][ T6832] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 143.360371][ T6832] ? rcu_is_watching+0x12/0xc0 [ 143.360391][ T6832] ? trace_mm_page_alloc+0x11f/0x1a0 [ 143.360453][ T6832] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 143.360493][ T6832] ? __pfx_stack_trace_save+0x10/0x10 [ 143.360528][ T6832] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 143.360563][ T6832] ? stack_depot_save_flags+0x29/0x9c0 [ 143.360613][ T6832] ? alloc_vmap_area+0x645/0x29c0 [ 143.360650][ T6832] ? __vmalloc_node_range_noprof+0x271/0x14b0 [ 143.360670][ T6832] ? __do_sys_listmount+0x1c2/0xf80 [ 143.360690][ T6832] ? do_syscall_64+0xcd/0x490 [ 143.360716][ T6832] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.360750][ T6832] alloc_pages_bulk_noprof+0x71c/0x1410 [ 143.360776][ T6832] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 143.360812][ T6832] ? policy_nodemask+0xea/0x4e0 [ 143.360843][ T6832] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 143.360871][ T6832] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 143.360911][ T6832] kasan_populate_vmalloc+0xf1/0x1f0 [ 143.360940][ T6832] alloc_vmap_area+0x959/0x29c0 [ 143.360982][ T6832] ? __pfx_alloc_vmap_area+0x10/0x10 [ 143.361020][ T6832] __get_vm_area_node+0x1ca/0x330 [ 143.361058][ T6832] __vmalloc_node_range_noprof+0x271/0x14b0 [ 143.361081][ T6832] ? __do_sys_listmount+0x1c2/0xf80 [ 143.361102][ T6832] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 143.361135][ T6832] ? policy_nodemask+0xea/0x4e0 [ 143.361165][ T6832] ? __do_sys_listmount+0x1c2/0xf80 [ 143.361202][ T6832] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 143.361225][ T6832] ? ___kmalloc_large_node+0xed/0x160 [ 143.361260][ T6832] __kvmalloc_node_noprof+0x30a/0x620 [ 143.361283][ T6832] ? __do_sys_listmount+0x1c2/0xf80 [ 143.361303][ T6832] ? __do_sys_listmount+0x1c2/0xf80 [ 143.361332][ T6832] ? __do_sys_listmount+0x1c2/0xf80 [ 143.361350][ T6832] __do_sys_listmount+0x1c2/0xf80 [ 143.361374][ T6832] ? __x64_sys_futex+0x1e0/0x4c0 [ 143.361399][ T6832] ? __x64_sys_futex+0x1e9/0x4c0 [ 143.361426][ T6832] ? __pfx___do_sys_listmount+0x10/0x10 [ 143.361457][ T6832] do_syscall_64+0xcd/0x490 [ 143.361481][ T6832] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.361500][ T6832] RIP: 0033:0x7f71a4d8eb69 [ 143.361515][ T6832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 143.361535][ T6832] RSP: 002b:00007f71a5b6b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 143.361561][ T6832] RAX: ffffffffffffffda RBX: 00007f71a4fb6080 RCX: 00007f71a4d8eb69 [ 143.361578][ T6832] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 143.361595][ T6832] RBP: 00007f71a4e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 143.361613][ T6832] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 143.361629][ T6832] R13: 0000000000000000 R14: 00007f71a4fb6080 R15: 00007ffe5b77bf08 [ 143.361663][ T6832] [ 143.455374][ T6832] syz.1.314: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 143.455447][ T6832] CPU: 1 UID: 0 PID: 6832 Comm: syz.1.314 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 143.455474][ T6832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 143.455486][ T6832] Call Trace: [ 143.455492][ T6832] [ 143.455500][ T6832] dump_stack_lvl+0x16c/0x1f0 [ 143.455526][ T6832] warn_alloc+0x248/0x3a0 [ 143.455553][ T6832] ? __pfx_warn_alloc+0x10/0x10 [ 143.455580][ T6832] ? kfree+0x2b4/0x4d0 [ 143.455606][ T6832] ? __get_vm_area_node+0x208/0x330 [ 143.455645][ T6832] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 143.455666][ T6832] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 143.455701][ T6832] ? policy_nodemask+0xea/0x4e0 [ 143.455731][ T6832] ? __do_sys_listmount+0x1c2/0xf80 [ 143.455758][ T6832] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 143.455783][ T6832] ? ___kmalloc_large_node+0xed/0x160 [ 143.455821][ T6832] __kvmalloc_node_noprof+0x30a/0x620 [ 143.455844][ T6832] ? __do_sys_listmount+0x1c2/0xf80 [ 143.455866][ T6832] ? __do_sys_listmount+0x1c2/0xf80 [ 143.455891][ T6832] ? __do_sys_listmount+0x1c2/0xf80 [ 143.455910][ T6832] __do_sys_listmount+0x1c2/0xf80 [ 143.455936][ T6832] ? __x64_sys_futex+0x1e0/0x4c0 [ 143.455974][ T6832] ? __x64_sys_futex+0x1e9/0x4c0 [ 143.456015][ T6832] ? __pfx___do_sys_listmount+0x10/0x10 [ 143.456063][ T6832] do_syscall_64+0xcd/0x490 [ 143.456099][ T6832] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.456131][ T6832] RIP: 0033:0x7f71a4d8eb69 [ 143.456154][ T6832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 143.456185][ T6832] RSP: 002b:00007f71a5b6b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 143.456212][ T6832] RAX: ffffffffffffffda RBX: 00007f71a4fb6080 RCX: 00007f71a4d8eb69 [ 143.456233][ T6832] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 143.456264][ T6832] RBP: 00007f71a4e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 143.456281][ T6832] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 143.456298][ T6832] R13: 0000000000000000 R14: 00007f71a4fb6080 R15: 00007ffe5b77bf08 [ 143.456347][ T6832] [ 143.462089][ T6832] Mem-Info: [ 143.462104][ T6832] active_anon:6230 inactive_anon:0 isolated_anon:0 [ 143.462104][ T6832] active_file:7715 inactive_file:49596 isolated_file:0 [ 143.462104][ T6832] unevictable:768 dirty:433 writeback:0 [ 143.462104][ T6832] slab_reclaimable:10878 slab_unreclaimable:92041 [ 143.462104][ T6832] mapped:24461 shmem:1359 pagetables:1043 [ 143.462104][ T6832] sec_pagetables:0 bounce:0 [ 143.462104][ T6832] kernel_misc_reclaimable:0 [ 143.462104][ T6832] free:1329778 free_pcp:15920 free_cma:0 [ 143.463164][ T6832] Node 0 active_anon:24920kB inactive_anon:0kB active_file:30860kB inactive_file:198184kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:97844kB dirty:1728kB writeback:0kB shmem:3900kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11360kB pagetables:4044kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 143.463395][ T6832] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 143.463469][ T6832] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 143.463552][ T6832] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 143.463609][ T6832] Node 0 DMA32 free:1417796kB boost:0kB min:34320kB low:42900kB high:51480kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24872kB inactive_anon:0kB active_file:30860kB inactive_file:196868kB unevictable:1536kB writepending:1728kB present:3129332kB managed:2539676kB mlocked:0kB bounce:0kB free_pcp:45020kB local_pcp:23128kB free_cma:0kB [ 143.463695][ T6832] lowmem_reserve[]: 0 0 1 1 1 [ 143.463747][ T6832] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1316kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB [ 143.465649][ T6832] lowmem_reserve[]: 0 0 0 0 0 [ 143.465780][ T6832] Node 1 Normal free:3885948kB boost:0kB min:55560kB low:69448kB high:83336kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:18624kB local_pcp:9216kB free_cma:0kB [ 143.465864][ T6832] lowmem_reserve[]: 0 0 0 0 0 [ 143.465918][ T6832] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 143.467140][ T6832] Node 0 DMA32: 119*4kB (UME) 547*8kB (UME) 670*16kB (UM) 727*32kB (UM) 424*64kB (UM) 195*128kB (UM) 141*256kB (UME) 67*512kB (UM) 39*1024kB (M) 16*2048kB (UM) 289*4096kB (UM) = 1417780kB [ 143.467311][ T6832] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 143.467426][ T6832] Node 1 Normal: 215*4kB (UME) 54*8kB (UME) 41*16kB (UME) 73*32kB (UME) 27*64kB (UME) 8*128kB (UME) 4*256kB (UME) 2*512kB (M) 2*1024kB (ME) 2*2048kB (UE) 945*4096kB (M) = 3885948kB [ 143.467594][ T6832] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 143.467610][ T6832] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 143.467626][ T6832] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 143.467642][ T6832] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 143.467658][ T6832] 58666 total pagecache pages [ 143.467665][ T6832] 0 pages in swap cache [ 143.467672][ T6832] Free swap = 124996kB [ 143.467679][ T6832] Total swap = 124996kB [ 143.467687][ T6832] 2097051 pages RAM [ 143.467693][ T6832] 0 pages HighMem/MovableOnly [ 143.467700][ T6832] 430170 pages reserved [ 143.467707][ T6832] 0 pages cma reserved [ 143.900166][ T6839] FAULT_INJECTION: forcing a failure. [ 143.900166][ T6839] name failslab, interval 1, probability 0, space 0, times 0 [ 143.900195][ T6839] CPU: 1 UID: 0 PID: 6839 Comm: syz.3.317 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 143.900220][ T6839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 143.900232][ T6839] Call Trace: [ 143.900238][ T6839] [ 143.900245][ T6839] dump_stack_lvl+0x16c/0x1f0 [ 143.900270][ T6839] should_fail_ex+0x512/0x640 [ 143.900302][ T6839] ? __kmalloc_noprof+0xbf/0x510 [ 143.900346][ T6839] ? xfrm_hash_alloc+0xd1/0x100 [ 143.900367][ T6839] should_failslab+0xc2/0x120 [ 143.900396][ T6839] __kmalloc_noprof+0xd2/0x510 [ 143.900421][ T6839] ? xfrm_state_init+0x377/0x630 [ 143.900441][ T6839] ? xfrm_state_init+0x3d3/0x630 [ 143.900463][ T6839] ? __pfx_xfrm_net_init+0x10/0x10 [ 143.900488][ T6839] xfrm_hash_alloc+0xd1/0x100 [ 143.900510][ T6839] xfrm_net_init+0x244/0xcc0 [ 143.900549][ T6839] ? __pfx_xfrm_net_init+0x10/0x10 [ 143.900572][ T6839] ops_init+0x1df/0x5f0 [ 143.900597][ T6839] setup_net+0x10f/0x380 [ 143.900617][ T6839] ? lockdep_init_map_type+0x5c/0x280 [ 143.900646][ T6839] ? __pfx_setup_net+0x10/0x10 [ 143.900669][ T6839] ? debug_mutex_init+0x37/0x70 [ 143.900692][ T6839] copy_net_ns+0x2a6/0x5f0 [ 143.900718][ T6839] create_new_namespaces+0x3ea/0xa90 [ 143.900747][ T6839] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 143.900773][ T6839] ksys_unshare+0x45b/0xa40 [ 143.900802][ T6839] ? __pfx_ksys_unshare+0x10/0x10 [ 143.900830][ T6839] ? xfd_validate_state+0x61/0x180 [ 143.900868][ T6839] __x64_sys_unshare+0x31/0x40 [ 143.900895][ T6839] do_syscall_64+0xcd/0x490 [ 143.900918][ T6839] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.900939][ T6839] RIP: 0033:0x7f1b18b8eb69 [ 143.900954][ T6839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 143.900973][ T6839] RSP: 002b:00007f1b19a54038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 143.900991][ T6839] RAX: ffffffffffffffda RBX: 00007f1b18db5fa0 RCX: 00007f1b18b8eb69 [ 143.901004][ T6839] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 143.901016][ T6839] RBP: 00007f1b18c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 143.901027][ T6839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 143.901040][ T6839] R13: 0000000000000000 R14: 00007f1b18db5fa0 R15: 00007ffcf979b658 [ 143.901065][ T6839] [ 144.195086][ T6847] netlink: 334 bytes leftover after parsing attributes in process `syz.3.318'. [ 144.560800][ T6853] FAULT_INJECTION: forcing a failure. [ 144.560800][ T6853] name failslab, interval 1, probability 0, space 0, times 0 [ 144.560852][ T6853] CPU: 1 UID: 0 PID: 6853 Comm: syz.0.320 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 144.560877][ T6853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 144.560889][ T6853] Call Trace: [ 144.560895][ T6853] [ 144.560903][ T6853] dump_stack_lvl+0x16c/0x1f0 [ 144.560927][ T6853] should_fail_ex+0x512/0x640 [ 144.560952][ T6853] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 144.560983][ T6853] should_failslab+0xc2/0x120 [ 144.561011][ T6853] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 144.561036][ T6853] ? __kernfs_new_node+0xd2/0x8e0 [ 144.561067][ T6853] __kernfs_new_node+0xd2/0x8e0 [ 144.561096][ T6853] ? __pfx___kernfs_new_node+0x10/0x10 [ 144.561128][ T6853] ? find_held_lock+0x2b/0x80 [ 144.561149][ T6853] ? kernfs_root+0xee/0x2a0 [ 144.561180][ T6853] kernfs_new_node+0x13c/0x1e0 [ 144.561213][ T6853] __kernfs_create_file+0x53/0x350 [ 144.561241][ T6853] sysfs_add_file_mode_ns+0x207/0x3c0 [ 144.561272][ T6853] internal_create_group+0x578/0xf30 [ 144.561305][ T6853] ? __pfx_internal_create_group+0x10/0x10 [ 144.561336][ T6853] ? kernfs_create_link+0x1bd/0x240 [ 144.561360][ T6853] internal_create_groups+0x9d/0x150 [ 144.561389][ T6853] device_add+0x6d1/0x1aa0 [ 144.561420][ T6853] ? __pfx_device_add+0x10/0x10 [ 144.561447][ T6853] ? lockdep_init_map_type+0x5c/0x280 [ 144.561476][ T6853] ? __init_waitqueue_head+0xca/0x150 [ 144.561514][ T6853] netdev_register_kobject+0x1a9/0x3d0 [ 144.561544][ T6853] register_netdevice+0x13dc/0x2270 [ 144.561573][ T6853] ? __pfx_register_netdevice+0x10/0x10 [ 144.561602][ T6853] ? __pfx_loopback_net_init+0x10/0x10 [ 144.561634][ T6853] register_netdev+0x34/0x50 [ 144.561657][ T6853] loopback_net_init+0x7a/0x170 [ 144.561689][ T6853] ? __pfx_loopback_net_init+0x10/0x10 [ 144.561719][ T6853] ops_init+0x1df/0x5f0 [ 144.561743][ T6853] setup_net+0x10f/0x380 [ 144.561763][ T6853] ? lockdep_init_map_type+0x5c/0x280 [ 144.561791][ T6853] ? __pfx_setup_net+0x10/0x10 [ 144.561814][ T6853] ? debug_mutex_init+0x37/0x70 [ 144.561837][ T6853] copy_net_ns+0x2a6/0x5f0 [ 144.561864][ T6853] create_new_namespaces+0x3ea/0xa90 [ 144.561893][ T6853] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 144.561918][ T6853] ksys_unshare+0x45b/0xa40 [ 144.561949][ T6853] ? __pfx_ksys_unshare+0x10/0x10 [ 144.561979][ T6853] ? xfd_validate_state+0x61/0x180 [ 144.562017][ T6853] __x64_sys_unshare+0x31/0x40 [ 144.562044][ T6853] do_syscall_64+0xcd/0x490 [ 144.562068][ T6853] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 144.562088][ T6853] RIP: 0033:0x7fb07358eb69 [ 144.562103][ T6853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 144.562122][ T6853] RSP: 002b:00007fb074333038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 144.562141][ T6853] RAX: ffffffffffffffda RBX: 00007fb0737b5fa0 RCX: 00007fb07358eb69 [ 144.562154][ T6853] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 144.562165][ T6853] RBP: 00007fb073611df1 R08: 0000000000000000 R09: 0000000000000000 [ 144.562177][ T6853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 144.562189][ T6853] R13: 0000000000000000 R14: 00007fb0737b5fa0 R15: 00007ffe0095be18 [ 144.562213][ T6853] [ 147.293766][ T6884] tty tty1: ldisc open failed (-12), clearing slot 0 [ 147.447161][ T6897] netlink: 'syz.3.331': attribute type 1 has an invalid length. [ 147.465209][ T6897] netlink: 'syz.3.331': attribute type 6 has an invalid length. [ 147.708652][ T6904] ================================================================== [ 147.716801][ T6904] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0 [ 147.724563][ T6904] Read of size 8 at addr ffff88802a49a618 by task syz.1.335/6904 [ 147.732310][ T6904] [ 147.734661][ T6904] CPU: 1 UID: 0 PID: 6904 Comm: syz.1.335 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 147.734702][ T6904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 147.734721][ T6904] Call Trace: [ 147.734731][ T6904] [ 147.734743][ T6904] dump_stack_lvl+0x116/0x1f0 [ 147.734785][ T6904] print_report+0xcd/0x630 [ 147.734824][ T6904] ? __virt_addr_valid+0x81/0x610 [ 147.734864][ T6904] ? __phys_addr+0xe8/0x180 [ 147.734904][ T6904] ? dvb_device_open+0x36a/0x3b0 [ 147.734940][ T6904] kasan_report+0xe0/0x110 [ 147.734981][ T6904] ? dvb_device_open+0x36a/0x3b0 [ 147.735019][ T6904] ? __pfx_dvb_device_open+0x10/0x10 [ 147.735055][ T6904] dvb_device_open+0x36a/0x3b0 [ 147.735090][ T6904] ? __pfx_dvb_device_open+0x10/0x10 [ 147.735126][ T6904] chrdev_open+0x234/0x6a0 [ 147.735164][ T6904] ? __pfx_apparmor_file_open+0x10/0x10 [ 147.735215][ T6904] ? __pfx_chrdev_open+0x10/0x10 [ 147.735266][ T6904] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 147.735303][ T6904] do_dentry_open+0x982/0x1530 [ 147.735338][ T6904] ? __pfx_chrdev_open+0x10/0x10 [ 147.735379][ T6904] vfs_open+0x82/0x3f0 [ 147.735423][ T6904] path_openat+0x1de4/0x2cb0 [ 147.735462][ T6904] ? __pfx_path_openat+0x10/0x10 [ 147.735501][ T6904] do_filp_open+0x20b/0x470 [ 147.735534][ T6904] ? __pfx_do_filp_open+0x10/0x10 [ 147.735581][ T6904] ? alloc_fd+0x471/0x7d0 [ 147.735616][ T6904] do_sys_openat2+0x11b/0x1d0 [ 147.735660][ T6904] ? __pfx_do_sys_openat2+0x10/0x10 [ 147.735731][ T6904] __x64_sys_openat+0x174/0x210 [ 147.735791][ T6904] ? __pfx___x64_sys_openat+0x10/0x10 [ 147.735848][ T6904] do_syscall_64+0xcd/0x490 [ 147.735884][ T6904] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 147.735915][ T6904] RIP: 0033:0x7f71a4d8eb69 [ 147.735939][ T6904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.735969][ T6904] RSP: 002b:00007f71a5b8c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 147.735997][ T6904] RAX: ffffffffffffffda RBX: 00007f71a4fb5fa0 RCX: 00007f71a4d8eb69 [ 147.736018][ T6904] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 147.736037][ T6904] RBP: 00007f71a4e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 147.736056][ T6904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 147.736074][ T6904] R13: 0000000000000000 R14: 00007f71a4fb5fa0 R15: 00007ffe5b77bf08 [ 147.736104][ T6904] [ 147.736114][ T6904] [ 147.978569][ T6904] Allocated by task 1: [ 147.982652][ T6904] kasan_save_stack+0x33/0x60 [ 147.987367][ T6904] kasan_save_track+0x14/0x30 [ 147.992076][ T6904] __kasan_kmalloc+0xaa/0xb0 [ 147.996697][ T6904] dvb_register_device+0x1e4/0x2370 [ 148.001928][ T6904] dvb_register_frontend+0x5a6/0x880 [ 148.007241][ T6904] vidtv_bridge_probe+0x459/0xa90 [ 148.012332][ T6904] platform_probe+0x106/0x1d0 [ 148.017037][ T6904] really_probe+0x23e/0xa90 [ 148.021572][ T6904] __driver_probe_device+0x1de/0x440 [ 148.026894][ T6904] driver_probe_device+0x4c/0x1b0 [ 148.031957][ T6904] __driver_attach+0x283/0x580 [ 148.036754][ T6904] bus_for_each_dev+0x13b/0x1d0 [ 148.041659][ T6904] bus_add_driver+0x2e9/0x690 [ 148.046359][ T6904] driver_register+0x15c/0x4b0 [ 148.051162][ T6904] vidtv_bridge_init+0x45/0x80 [ 148.055946][ T6904] do_one_initcall+0x120/0x6e0 [ 148.060745][ T6904] kernel_init_freeable+0x5c2/0x910 [ 148.065974][ T6904] kernel_init+0x1c/0x2b0 [ 148.070347][ T6904] ret_from_fork+0x5d4/0x6f0 [ 148.074986][ T6904] ret_from_fork_asm+0x1a/0x30 [ 148.079782][ T6904] [ 148.082137][ T6904] Freed by task 6796: [ 148.086123][ T6904] kasan_save_stack+0x33/0x60 [ 148.090831][ T6904] kasan_save_track+0x14/0x30 [ 148.095549][ T6904] kasan_save_free_info+0x3b/0x60 [ 148.100616][ T6904] __kasan_slab_free+0x51/0x70 [ 148.105405][ T6904] kfree+0x2b4/0x4d0 [ 148.109322][ T6904] dvb_device_put.part.0+0x60/0x90 [ 148.114476][ T6904] dvb_device_open+0x2a4/0x3b0 [ 148.119274][ T6904] chrdev_open+0x234/0x6a0 [ 148.123740][ T6904] do_dentry_open+0x982/0x1530 [ 148.128547][ T6904] vfs_open+0x82/0x3f0 [ 148.132648][ T6904] path_openat+0x1de4/0x2cb0 [ 148.137268][ T6904] do_filp_open+0x20b/0x470 [ 148.141814][ T6904] do_sys_openat2+0x11b/0x1d0 [ 148.146531][ T6904] __x64_sys_openat+0x174/0x210 [ 148.151413][ T6904] do_syscall_64+0xcd/0x490 [ 148.155944][ T6904] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.161866][ T6904] [ 148.164198][ T6904] The buggy address belongs to the object at ffff88802a49a600 [ 148.164198][ T6904] which belongs to the cache kmalloc-256 of size 256 [ 148.178268][ T6904] The buggy address is located 24 bytes inside of [ 148.178268][ T6904] freed 256-byte region [ffff88802a49a600, ffff88802a49a700) [ 148.191999][ T6904] [ 148.194333][ T6904] The buggy address belongs to the physical page: [ 148.200748][ T6904] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2a49a [ 148.209530][ T6904] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 148.218060][ T6904] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 148.225621][ T6904] page_type: f5(slab) [ 148.229660][ T6904] raw: 00fff00000000040 ffff88801b841b40 dead000000000122 0000000000000000 [ 148.238296][ T6904] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 148.246899][ T6904] head: 00fff00000000040 ffff88801b841b40 dead000000000122 0000000000000000 [ 148.255589][ T6904] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 148.264282][ T6904] head: 00fff00000000001 ffffea0000a92681 00000000ffffffff 00000000ffffffff [ 148.272972][ T6904] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 148.281653][ T6904] page dumped because: kasan: bad access detected [ 148.288086][ T6904] page_owner tracks the page as allocated [ 148.293818][ T6904] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 25090985997, free_ts 0 [ 148.313554][ T6904] post_alloc_hook+0x1c0/0x230 [ 148.318342][ T6904] get_page_from_freelist+0x132b/0x38e0 [ 148.323916][ T6904] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 148.329841][ T6904] alloc_pages_mpol+0x1fb/0x550 [ 148.334752][ T6904] new_slab+0x247/0x330 [ 148.338934][ T6904] ___slab_alloc+0xcf2/0x1740 [ 148.343645][ T6904] __slab_alloc.constprop.0+0x56/0xb0 [ 148.349046][ T6904] __kmalloc_cache_noprof+0xfb/0x3e0 [ 148.354362][ T6904] bus_add_driver+0x92/0x690 [ 148.358977][ T6904] driver_register+0x15c/0x4b0 [ 148.363781][ T6904] usb_register_driver+0x216/0x4d0 [ 148.368929][ T6904] do_one_initcall+0x120/0x6e0 [ 148.373735][ T6904] kernel_init_freeable+0x5c2/0x910 [ 148.378990][ T6904] kernel_init+0x1c/0x2b0 [ 148.383361][ T6904] ret_from_fork+0x5d4/0x6f0 [ 148.387993][ T6904] ret_from_fork_asm+0x1a/0x30 [ 148.392788][ T6904] page_owner free stack trace missing [ 148.398167][ T6904] [ 148.400499][ T6904] Memory state around the buggy address: [ 148.406138][ T6904] ffff88802a49a500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 148.414213][ T6904] ffff88802a49a580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 148.422293][ T6904] >ffff88802a49a600: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 148.430362][ T6904] ^ [ 148.435224][ T6904] ffff88802a49a680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 148.443304][ T6904] ffff88802a49a700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 148.451383][ T6904] ================================================================== [ 148.484153][ T6904] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 148.491389][ T6904] CPU: 1 UID: 0 PID: 6904 Comm: syz.1.335 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 148.502969][ T6904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 148.513041][ T6904] Call Trace: [ 148.516334][ T6904] [ 148.519283][ T6904] dump_stack_lvl+0x3d/0x1f0 [ 148.523922][ T6904] vpanic+0x6e8/0x7a0 [ 148.527947][ T6904] ? __pfx_vpanic+0x10/0x10 [ 148.532502][ T6904] ? __pfx_vprintk_emit+0x10/0x10 [ 148.537552][ T6904] ? dvb_device_open+0x36a/0x3b0 [ 148.542515][ T6904] panic+0xca/0xd0 [ 148.546268][ T6904] ? __pfx_panic+0x10/0x10 [ 148.550725][ T6904] ? dvb_device_open+0x36a/0x3b0 [ 148.555715][ T6904] ? preempt_schedule_common+0x44/0xc0 [ 148.561198][ T6904] ? preempt_schedule_thunk+0x16/0x30 [ 148.566640][ T6904] check_panic_on_warn+0xab/0xb0 [ 148.571620][ T6904] end_report+0x107/0x170 [ 148.575983][ T6904] kasan_report+0xee/0x110 [ 148.580441][ T6904] ? dvb_device_open+0x36a/0x3b0 [ 148.585398][ T6904] ? __pfx_dvb_device_open+0x10/0x10 [ 148.590706][ T6904] dvb_device_open+0x36a/0x3b0 [ 148.595494][ T6904] ? __pfx_dvb_device_open+0x10/0x10 [ 148.600792][ T6904] chrdev_open+0x234/0x6a0 [ 148.605226][ T6904] ? __pfx_apparmor_file_open+0x10/0x10 [ 148.610797][ T6904] ? __pfx_chrdev_open+0x10/0x10 [ 148.615754][ T6904] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 148.622102][ T6904] do_dentry_open+0x982/0x1530 [ 148.626879][ T6904] ? __pfx_chrdev_open+0x10/0x10 [ 148.631846][ T6904] vfs_open+0x82/0x3f0 [ 148.635938][ T6904] path_openat+0x1de4/0x2cb0 [ 148.640547][ T6904] ? __pfx_path_openat+0x10/0x10 [ 148.645500][ T6904] do_filp_open+0x20b/0x470 [ 148.650015][ T6904] ? __pfx_do_filp_open+0x10/0x10 [ 148.655066][ T6904] ? alloc_fd+0x471/0x7d0 [ 148.659430][ T6904] do_sys_openat2+0x11b/0x1d0 [ 148.664138][ T6904] ? __pfx_do_sys_openat2+0x10/0x10 [ 148.669366][ T6904] __x64_sys_openat+0x174/0x210 [ 148.674249][ T6904] ? __pfx___x64_sys_openat+0x10/0x10 [ 148.679654][ T6904] do_syscall_64+0xcd/0x490 [ 148.684182][ T6904] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.690084][ T6904] RIP: 0033:0x7f71a4d8eb69 [ 148.694519][ T6904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 148.714135][ T6904] RSP: 002b:00007f71a5b8c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 148.722559][ T6904] RAX: ffffffffffffffda RBX: 00007f71a4fb5fa0 RCX: 00007f71a4d8eb69 [ 148.730540][ T6904] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 148.738526][ T6904] RBP: 00007f71a4e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 148.746502][ T6904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 148.754477][ T6904] R13: 0000000000000000 R14: 00007f71a4fb5fa0 R15: 00007ffe5b77bf08 [ 148.762486][ T6904] [ 148.765821][ T6904] Kernel Offset: disabled [ 148.770150][ T6904] Rebooting in 86400 seconds..