last executing test programs: 9.016653476s ago: executing program 0 (id=140): mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xffffffffffffff6a, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4000009}, 0x24004880) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010600bd7000fbdbdf250a"], 0x1c}}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=':'], 0x1ac}}, 0x40000) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/ip_vs\x00', 0x100, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000400)=""/89, 0x59) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0) 8.514777122s ago: executing program 2 (id=142): unshare$auto(0x40000080) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x1, 0x100) setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f00000003c0)) syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x5, 0x4, 0x4000000000df, 0x17, 0x401, 0x300000000002) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) openat$auto_autofs_root_operations_autofs_i(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/bluetooth/hci4\x00', 0x101000, 0x0) getpgid(0x0) ioctl$auto_TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f0000000280)=0x1) r1 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) pread64$auto(r1, 0x0, 0x20000000001, 0x7fff) 8.346298579s ago: executing program 0 (id=143): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000001900), 0xffffffffffffffff) syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0) statmount$auto(&(0x7f0000000040)={0x1, @inferred=r0, 0x7f, 0xe, 0xfffffffffffffffa}, &(0x7f0000000080)={0x1, 0x3, 0xfffffffffffffff8, 0x5, 0x3, 0x8, 0x8, 0x401, 0x401, 0x400, 0x5, 0x830, 0x8, 0xfffffffffffffff9, 0x8, 0x2e, 0x10000, 0x0, 0xf, 0x10000, 0xffffffc0, 0xade, 0x5, 0x10000, 0x8, 0x7, 0xb9, 0x1000, 0xdec, 0x8, 0xe0c, [0xbf, 0x7, 0x401, 0xff, 0x8, 0x8, 0x80000001, 0x6, 0x2, 0x9, 0x5, 0xffffffffffffffd5, 0x1000000000000000, 0x5, 0xffff, 0x0, 0x665, 0x1513cd8, 0x40, 0x3, 0x7ff, 0x4, 0x9, 0x7, 0x3, 0x7, 0x16, 0x64a8, 0x3, 0xffffffff00000000, 0x4, 0x1, 0x400, 0x98b, 0x10001, 0xffffffffffff0000, 0x6f9bf0b, 0x8, 0xfffffffffffffff8, 0x79d2f983, 0x7, 0x200, 0x20e1ec75], "d1a2e37f007e54844dde09c26b81b67b2a0cac8912bc92e4d6954eef18af6c78b5836a76bceb134f72eafdd0d31f46fec691ad15161a58a12b45a8cd70eb8e5d145f93e6ee0338096e2156868df58ceef4f7822aed7ab8a0fa83bb2b4d3430ad314cae9a82eb3c4a6323814429d15968bd72e8c13ab7ab89ec6921debb8ee761e43c9a97c29e4eb1860e9afff8ff0af4bda5942d4ca050269403b1f458598494aeaa50529e0cba5ba45f33f0ac9326bac9f8dd25af87a30763f3eab0bbc864b57b68131c144a400c900d21e4"}, 0x2, 0x1498) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/bus/pci/drivers/amd5536udc-pci/remove_id\x00', 0x18b941, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/wakeup/wakeup7/wakeup_count\x00', 0xc0000, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r2, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_SET_NOTIFY(r2, 0x7cb, 0x0) r3 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x102, 0x0) ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(r3, 0x40095505, 0x0) 7.719900488s ago: executing program 0 (id=144): r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x101480, 0x0) socket(0x2, 0x1, 0x84) connect$auto(0x3, &(0x7f0000000280)=@in={0x2, 0x0, @rand_addr=0xa9fe0000}, 0x55) shutdown$auto(0x200000003, 0x2) shutdown$auto(0x200000003, 0x0) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r2, &(0x7f0000000580)={0x0, 0x2100, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r1, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0) sendmsg$auto_NL80211_CMD_START_NAN(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="10002abda56fa0df697000ffdbdf25730000000400e20008003501fdffffff0800570000ffffff05005300050000fc0400200109000000a361c110f2d3950b19d657fab2b11d513be0d77fb020277a89d06909e40ab4ba7edd990085b09e4ec7312e79c392b449fbcd024d7ab1836058393a9048493d04d94d5b75732a29d9790c11a799b0a6fbfc00000000000000000000000000000000000000000000d45c89d8e92297cb2563"], 0x38}, 0x1, 0x0, 0x0, 0x2004c085}, 0x4084) socket(0xa, 0x5, 0x0) mmap$auto(0x0, 0x40005, 0xdf, 0x9b72, 0x7, 0x28000) msgctl$auto_IPC_STAT(0x4, 0x2, &(0x7f0000000080)={{0x3, 0x0, 0xee00, 0x6, 0x6, 0x100}, &(0x7f0000000000)=0x3, &(0x7f0000000040)=0x8, 0xffffffff, 0xff, 0x2, 0xffffffffeffffc00, 0x52, 0x4, 0x5, 0x86a5}) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r3 = socket(0x2, 0x3, 0x6) ioctl$sock_SIOCGIFINDEX(r3, 0x401c5820, 0x0) r4 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x1, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r5, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) mmap$auto(0x0, 0x400008, 0xfffffffffffffbff, 0x9b70, 0x2, 0x200008000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(r4, 0x8, 0x0) brk$auto(0xffffffffffffff66) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/pci0000:00/0000:00:00.0/driver_override\x00', 0xa000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) unshare$auto(0x4) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) 6.720760705s ago: executing program 1 (id=147): sendmsg$auto_NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000240)={0x224, 0x0, 0x400, 0x70bd2c, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_MLSLVL={0x4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x9}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x6244dba}, @NLBL_CIPSOV4_A_MLSLVLLST={0x1ad, 0x8, 0x0, 0x1, [@typed={0x14, 0x4, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @generic="4b355a7d87f7b4f825a4a32d7dfa4ee030a8ba8339836473c6adba8b7388e7f88d51c075f83f22a245691267852d736f73b58f947976a14944c5f83e3de059bd70c89a7d2c62db2b6f455e5749a8814a762bc1f104ffec1a139bb0679c984bef", @generic="83", @generic="47332d48ff772a0af2bf248adab10c5040d1af4a74769649db6c36f033c580991b176adb52448ed07ad8a08b7702a852", @nested={0xf1, 0xc, 0x0, 0x1, [@generic="ac3e30a94c5b0434db050d91bd33fad83a5fb91445bed981a2c4498e92b08be4b372be3c7a78d712f5a27dbb7f6a9f4eb03809", @nested={0x4, 0x2}, @typed={0x8, 0x116, 0x0, 0x0, @u32=0x6}, @typed={0x8, 0x12b, 0x0, 0x0, @fd}, @generic="68a8105d08ce306178305fb4613924c9e754c150257c028dcb51de1fcccdce0696066efcdae939f778a147bda713ffe2a9f3f267b71b6fb15c748d05d1cbaa37757798b91f63f6f92d2f6d3322ccb4238f20945854c197e4e02431baeb82189b9b8df92443e8af715b967afb9f2ca7e823aec8aef56f85a48e711ca58408739186a4bfbb9f819de994b628151ae6e9067dc860584ac9fe7c3aa9b2b970026e9581d7e9aa4e69"]}, @nested={0x10, 0x89, 0x0, 0x1, [@nested={0x4, 0x7d}, @typed={0x8, 0xf1, 0x0, 0x0, @fd}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x7}, @NLBL_CIPSOV4_A_MLSCAT={0x41, 0xb, 0x0, 0x1, [@generic="d6a878d8fe755a7537a430b0b07684800e6eb252478fd4ea56aa568a157040b88fa8824641bb79f0a9846f9304ade1006e72eafe1e10f09de86f2422f3"]}]}, 0x224}, 0x1, 0x0, 0x0, 0x801}, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="2f212dbd7000fcdbdf252100000008000300", @ANYRES32=r2, @ANYBLOB="08009e00"], 0x24}}, 0x4000000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (fail_nth: 6) 6.71900773s ago: executing program 2 (id=148): bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x700, 0x1001, 0x28, 0xf, 0x66b, 0x0, 0x5}, 0x4f4) 6.536785287s ago: executing program 2 (id=149): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/hid_steam/parameters/lizard_mode\x00', 0xc0481, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91) read$auto(r1, 0x0, 0x1) write$auto(r0, 0x0, 0xfdeb) 6.095935646s ago: executing program 2 (id=150): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) ioctl$auto_NVRAM_SETCKS(r0, 0x7041, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) select$auto(0x6, 0x0, 0x0, &(0x7f0000000100)={[0x5, 0x20007fff, 0x6, 0x0, 0xa00000000000000, 0x2, 0x6, 0x4, 0x6, 0x9, 0x7, 0xef24, 0xfff, 0x1, 0x1, 0x102]}, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) socket(0xa, 0x1, 0x100) ioperm$auto(0x7, 0x5ad2, 0x8) modify_ldt$auto(0x3, 0x0, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) pread64$auto(r1, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0xc, 0x20009, 0x5, 0xeb1, 0x405, 0x8000) write$auto(0x3, 0x0, 0xffd8) unshare$auto(0x40000080) process_mrelease$auto(0xffffffffffffffff, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x8800) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) 5.793505363s ago: executing program 1 (id=151): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000980)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="2f212cbd7000fc39ad872c00000008000300", @ANYRES32=r2], 0x40}}, 0x4000000) mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) ioctl$auto_XFS_IOC_EXCHANGE_RANGE(0xffffffffffffffff, 0x40285881, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0xfffffffffffffff7, 0x4, 0x40d, 0x5}) close_range$auto(r3, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x17, &(0x7f00000000c0), 0x40001) r4 = socket(0x21, 0x2, 0xa) sendmsg$auto_MACSEC_CMD_ADD_TXSA(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x4000005) fcntl$auto(0xffffffffffffffff, 0x409, 0x40003f) io_uring_setup$auto(0x8000, 0x0) capset$auto(0x0, &(0x7f00000000c0)={0x1, 0x44, 0x4a}) unshare$auto(0x40000080) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x106) ioctl$auto(0x3, 0x800005411, 0x38) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x2, 0x2020009, 0x1, 0xeb1, r5, 0xfffffffffffffffa) flock$auto(r5, 0x800) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000005c0)={'veth0_to_bridge\x00', 0x0}) bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_ifindex=r7, 0x7f, 0x9c, 0x0, 0x1, @relative_id=0x4, 0x80}, 0x96) readv$auto(0x3, &(0x7f0000000040)={0x0, 0x36a}, 0x6) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) 5.105966619s ago: executing program 0 (id=153): r0 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/inject\x00', 0x2, 0x0) writev$auto(r0, &(0x7f0000000080)={&(0x7f0000000000), 0x4}, 0x2) 5.072915398s ago: executing program 3 (id=154): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) syz_genetlink_get_family_id$auto_nl80211(0x0, r0) read$auto(r0, &(0x7f0000000000)='\x00', 0x91e2) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 5.014000863s ago: executing program 1 (id=155): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r0) socket$nl_generic(0x10, 0x3, 0x10) getegid() mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x1, 0x8002, 0x1) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) write$auto(0xffffffffffffffff, 0x0, 0xe) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) shmctl$auto_IPC_RMID(0x8, 0x0, 0x0) write$auto_proc_mem_operations_base(r2, &(0x7f0000001680)="a7", 0x80000) ioctl$auto_UBI_IOCATT(0xffffffffffffffff, 0x40186f40, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x4000c, 0x9, 0x948b, 0x3, 0x15f4da0a, 0x8000003, 0x80000000, 0x5f, 0x80000001, 0xb, 0x6d3f, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0) openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002640)='/sys/kernel/debug/tracing/set_event_pid\x00', 0x2002, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mincore$auto(0x1000, 0x4000000, 0x0) write$auto(0x3, 0x0, 0xfdef) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0xd, 0x200000000000002, 0x948b, 0x2000000000005, 0x15f4da0a, 0x6, 0x7fffffffffffffff, 0x6, 0x8000001f, 0x800000000000007, 0x3, 0xfffffffffffffffc, 0x2, 0x3]}, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card2\x00', 0x34204, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) sysfs$auto(0x1, 0x7, 0xb) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL802154_CMD_SET_PAN_ID(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000002340)={0x1058, 0x0, 0x0, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_PEER={0x1024, 0x28, 0x0, 0x1, [@typed={0x35, 0xd9, 0x0, 0x0, @binary="9a4c40951d394159bded8518c29600807bd319edf0b36af50697aec056817a34bbe1e82212e0ace09e255d737a6430c526"}, @nested={0xbd, 0x110, 0x0, 0x1, [@generic="3f38b77cc9f282fbe30ce86cf808b6d99c0dc722358a20108e30baee0b02af71b9cb5f869f28d3c6373031e5bdb7a71492ffbaf2db1e761e6d1a7866da0446f41a5927101a5e53f72c1be7ae1ca3b1f3aaa8159bbd236f17c8f93a291c63c5090564ba4f3d165dace5bfef01010577b787e9ff8344bbfbc6b69cc09cc21d6865df063d56b808c3412edd92e3ae5a3a0b7cfed5891b3435e477321e93e55d29cd5df56ef6b3764e5e22bdfc4dcf643ba84e58ad682fae32232d"]}, @nested={0x15, 0x11d, 0x0, 0x1, [@generic="e3f254165501be008e0fd3767022f13a3d"]}, @nested={0xc, 0xbc, 0x0, 0x1, [@typed={0x8, 0xdd, 0x0, 0x0, @uid}]}, @typed={0xf01, 0x139, 0x0, 0x0, @binary="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"}]}, @NL802154_ATTR_SCAN_TYPE={0x5, 0x1f, 0x80}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0xc26e}, @NL802154_ATTR_MIN_BE={0x5, 0x11, 0xfd}, @NL802154_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x1058}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0x13, 0x401, 0x9) close_range$auto(0x2, 0x8, 0x0) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000040), 0x1000, 0x0) 4.722584403s ago: executing program 0 (id=156): r0 = socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) getcwd$auto(0x0, 0xffffffffffffffff) setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8) r1 = semctl$auto(0xffffffff, 0x10001, 0x5, 0xffffffff80000001) capget$auto(&(0x7f0000000100)={0x0, r1}, &(0x7f0000000180)={0x7, 0x8001, 0x825}) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_drm_crtc_crc_control_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0xa, 0x100073) socket(0x2, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/vlan/config\x00', 0x8000, 0x0) pread64$auto(r2, 0x0, 0xf429, 0xb) 3.940769624s ago: executing program 1 (id=157): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x24c802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0) ioperm$auto(0x3b, 0xf99b, 0x6) close_range$auto(0x0, 0xffffffffffffefff, 0x4000000000002) fanotify_init$auto(0x5, 0x2) open(&(0x7f00000000c0)='./file0\x00', 0x7ffd, 0x10e) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0) mmap$auto(0x0, 0x200006, 0x2, 0x40eb2, 0x602, 0x300000000002) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r2, 0x0, 0x7) mmap$auto(0x0, 0x2020009, 0x1, 0xeb1, 0xfffffffffffffff7, 0x8000) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) uname$auto(0x0) setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90) socket(0x2, 0x800, 0x106) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x169000, 0x0) socket(0x22, 0x3, 0x0) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2) r3 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r4, 0x5393, r3) 3.924056556s ago: executing program 3 (id=158): init_module$auto(&(0x7f0000000000), 0xfffff, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 3.786543417s ago: executing program 2 (id=159): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ram0\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto_tomoyo_operations_securityfs_if(0xffffffffffffffff, 0x0, 0x0) mlockall$auto(0x7) r0 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000440)='/proc/thread-self/clear_refs\x00', 0x20001, 0x0) ioctl$auto_FIDEDUPERANGE(r0, 0xc0189436, 0x8000000000000001) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) write$auto(0x3, 0x0, 0xfffffdef) 3.707438071s ago: executing program 0 (id=160): mmap$auto(0x0, 0xfffffffffffffffd, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x7, 0x0) r0 = socket(0xa, 0x5, 0x84) getsockopt$auto(r0, 0x84, 0x1f, 0x0, &(0x7f0000000080)=0x49b) socket$nl_generic(0x10, 0x3, 0x10) socket(0xf, 0x3, 0x2) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x2, 0x2, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), r3) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000001a80)={'wg2\x00', 0x0}) sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r3, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000000580)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002bbd7000fcdbdf251b0000000c00018008000100", @ANYRES32=r5, @ANYBLOB="04000280b6fe43b1aa4e5b088aa0ac961aedffffffff18540c22894a49613b5194385da421d4b3a5fd566ccd5a4daa98c0764b454de9"], 0x24}, 0x1, 0x0, 0x0, 0x24040000}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da06, 0xffffffffffffffff, 0x3, 0x62, 0x1, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x4, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x208000001f, 0x2, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/cmdline\x00', 0x481, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000640)={'wlan1\x00'}) mmap$auto(0x0, 0x8, 0xdc, 0xeb1, 0x0, 0x8002) socket(0xa, 0x5, 0x8) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/gpio/drivers_probe\x00', 0xa081, 0x0) waitid$auto_P_ALL(0x0, 0x468e, &(0x7f00000001c0)={@_si_pad}, 0x3, &(0x7f00000000c0)={{0x8, 0x8}, {0x7, 0xffe}, 0x7, 0x1af, 0xfffffffffffffffa, 0x2, 0xfffffffffffff5a2, 0x5, 0x402, 0x2, 0xe6, 0x8, 0x4e6033bf, 0x6, 0x101, 0x8}) r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/fib_trie\x00', 0x0, 0x0) pread64$auto(r6, 0x0, 0x8, 0x7fff) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, &(0x7f0000000440)={{@inferred, 0x80, 0x3, 0x1, "977d648a0881449f3ce8ba5b483e904dfacb519a28d0b90b462bf9ad3e3c7e488826dc0852829cf353806ac4"}, 0x0, 0x7, 0x4, @raw=0x9, @integer={0x5, 0xfffffffffffffff4, 0x4}, "b957b0168b84987d4211529b4bf24c25c2a1e7c1cbcff5c254d7954a4ffb435e9426e9c83a87cd49439334e9a0bf167595e50bfb2200e43a76fd8e68ce7be399"}) unshare$auto(0x40000080) 3.554542667s ago: executing program 3 (id=161): mmap$auto(0x0, 0xa020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x15, 0x5, 0x0) sendmsg$auto(r0, 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) remap_file_pages$auto(0x3, 0x1000, 0x0, 0x3, 0x4) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r1, 0xffffffffffdffe00, &(0x7f0000000140)=';') r2 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x40, 0x0) ioctl$auto(0x3, 0xc0086202, r2) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x5, 0x0) setsockopt$auto(0x3, 0x114, 0xa, 0x0, 0x4) mmap$auto(0x0, 0x40009, 0x6, 0x9b72, 0x7, 0x3) listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) r3 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_PARAMS(r3, 0x40505412, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0) unshare$auto(0x40000080) sendmsg$auto_NL802154_CMD_GET_SEC_LEVEL(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x38, 0x0, 0x2, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_MIN_BE={0x5, 0x11, 0xe0}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x7}, @NL802154_ATTR_CCA_MODE={0x8, 0xc, 0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000085}, 0x40) r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) ioctl$auto(r4, 0x5646, r4) read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f0000000280)=""/40, 0x28) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x48400, 0x0) 1.853977309s ago: executing program 3 (id=162): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000280)='/dev/input/event0\x00', 0x0, 0x0) ioctl$auto_EVIOCGVERSION(r0, 0x80044501, &(0x7f0000000040)=0xff) socket(0x1f, 0x3, 0x0) clone$auto(0x20003b46, 0x1, 0x0, 0x0, 0x7) setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x86, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x6) socket(0x28, 0x4, 0xffffffc0) write$auto(0xffffffffffffffff, 0x0, 0x81) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x60a42, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) writev$auto(r1, &(0x7f0000000180)={0x0, 0x10}, 0x3) close_range$auto(0x2, 0x8, 0x0) unshare$auto(0x20000080) mmap$auto(0x0, 0x100000000, 0x4000df, 0x9b72, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x428, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xffffeffe, 0x2) close_range$auto(0x0, 0x5, 0x0) pipe$auto(0x0) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000040000fdef}, 0x1) pipe$auto(0x0) tee$auto(0x2000000000000, 0x3, 0x402, 0x8) 892.745112ms ago: executing program 3 (id=163): r0 = socket(0x9, 0x800, 0x7) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/fs/ext4/sda1/err_ratelimit_burst\x00', 0x103841, 0x0) write$auto(r3, &(0x7f0000003080)='/sys/devices/virtual/tty/ptyw9/power/runtime_status\x00', 0x13) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/scsi/sg/def_reserved_size\x00', 0xc8000, 0x0) timer_create$auto(0xd, &(0x7f0000000140)={@sival_ptr=&(0x7f0000000500)="6268aa507228f77c1d0ac8595a9d4963746b2b0e4fbfa9246a55cb271cff38f48f796317bbe029b90ef0dfd9ba893984aa8f0e74b11d1659d8c4857745ebdb34b24d712e49d7933ace11dbd83368d519ca6f2d87dd18de9ebff4332c80940b7e75fa1c6c5e7b70559cfa76b4ae32e2a7c9c74136e55e939b8961d1e9987c01c7791ca414d69394cc8dc63ce849738394b14bf6ff059ee884719aaccd486dd066e5e07cc02e7ec2e7797a951c48eb40df754c7104729ec737803a61270399abfce9d83a59e6676ab2a81576b76e3eb0410a3540617d31b366b1f143656f9adbef87fac63a7c19b337a93da12f27", @inferred=r0, 0x100}, &(0x7f0000000600)=0xfff) fstat$auto(r1, &(0x7f0000000180)={0x9, 0x9, 0x7f, 0x5, 0x0, 0x0, 0x0, 0x0, 0xb20, 0x9, 0x7c5, 0x4fd, 0x101, 0x5, 0x1, 0x9, 0xfffffffffffffff0}) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="bc02e19b", @ANYRES16=r2, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB='\x00\x00'], 0x2bc}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000080)=""/144, 0x90) r5 = getpid() process_vm_readv$auto(r5, &(0x7f00000001c0)={0x0, 0xfff}, 0x3, &(0x7f0000000280)={&(0x7f0000000100), 0xffffffff}, 0x6, 0x0) getpgid(r5) 578.179245ms ago: executing program 1 (id=164): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/ip_vs\x00', 0x100, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000400)=""/89, 0x59) 457.110166ms ago: executing program 3 (id=165): mmap$auto(0x0, 0xa020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x15, 0x5, 0x0) sendmsg$auto(r0, 0x0, 0x0) madvise$auto(0x0, 0x200007, 0x19) remap_file_pages$auto(0x3, 0x1000, 0x0, 0x3, 0x4) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r1, 0xffffffffffdffe00, &(0x7f0000000140)=';') r2 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x40, 0x0) ioctl$auto(0x3, 0xc0086202, r2) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x15, 0x5, 0x0) setsockopt$auto(0x3, 0x114, 0xa, 0x0, 0x4) mmap$auto(0x0, 0x40009, 0x6, 0x9b72, 0x7, 0x3) listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) r3 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x4}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0) unshare$auto(0x40000080) sendmsg$auto_NL802154_CMD_GET_SEC_LEVEL(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x38, 0x0, 0x2, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_MIN_BE={0x5, 0x11, 0xe0}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x7}, @NL802154_ATTR_CCA_MODE={0x8, 0xc, 0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000085}, 0x40) r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0) ioctl$auto(r4, 0x5646, r4) read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f0000000280)=""/40, 0x28) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x48400, 0x0) 312.666669ms ago: executing program 2 (id=166): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/machinecheck/machinecheck1/check_interval\x00', 0x2062, 0x0) write$auto(r0, &(0x7f0000000440)='+\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) r1 = socket(0x2, 0x3, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x0, 0x5d77, 0x2) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptye9\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) open(0x0, 0x22240, 0x155) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/loop13/queue/wbt_lat_usec\x00', 0xa801, 0x0) write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) r4 = socket(0x2, 0x80802, 0x0) r5 = open(&(0x7f0000000100)='./cgroup\x00', 0x50800, 0x412) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x2, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}}) io_uring_setup$auto(0x6, 0x0) poll$auto(&(0x7f0000000040)={0x3, 0x1, 0x5}, 0x5, 0x80000000) close_range$auto(0x2, 0x8000, 0x0) getdents$auto(r5, 0x0, 0xde) setsockopt$auto(r4, 0x0, 0x20, 0x0, 0x20000b) connect$auto(r1, &(0x7f0000000000), 0x55) sendmmsg$auto(r1, &(0x7f0000000240)={{&(0x7f0000000100)="c9a19b9bd45daf8d1e42325618d266e9b4d29346a538f4501870f63224261ea46d2048306cb48caaa96d8e74944fe4311b40ed00640d041ca43967b3a4f18b86c38c26c9df10a988d1f2c1c69262f1908a4880ba65a9fca956c49dc5990384089f8c005c64f32d9bbba6f289964068a8ced940397118c0aa87e26591cfeead8827333219be3c55", 0x10000, 0x0, 0x2, 0x0, 0x3, 0xfffff2cf}, 0x6}, 0x2319, 0x5) 0s ago: executing program 1 (id=167): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/hid_steam/parameters/lizard_mode\x00', 0xc0481, 0x0) write$auto(r0, 0x0, 0xfdeb) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.4' (ED25519) to the list of known hosts. [ 108.065506][ T43] cfg80211: failed to load regulatory.db [ 112.134802][ T5836] cgroup: Unknown subsys name 'net' [ 112.288445][ T5836] cgroup: Unknown subsys name 'cpuset' [ 112.299082][ T5836] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 114.343327][ T5836] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 116.763633][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 116.773315][ T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 116.782250][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 116.790713][ T5857] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 116.800402][ T5857] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 116.809903][ T5857] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 116.818940][ T5857] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 116.855189][ T5858] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 116.865321][ T5857] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 116.865816][ T5858] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 116.883530][ T5858] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 116.892868][ T5168] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 116.916311][ T5858] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 116.926358][ T5857] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 116.936574][ T5858] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 116.943588][ T5857] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 116.952862][ T5858] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 116.960892][ T5857] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 116.972104][ T5854] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 116.980812][ T5854] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 117.652574][ T5855] chnl_net:caif_netlink_parms(): no params data found [ 117.700828][ T5859] chnl_net:caif_netlink_parms(): no params data found [ 117.747885][ T5852] chnl_net:caif_netlink_parms(): no params data found [ 117.856667][ T5860] chnl_net:caif_netlink_parms(): no params data found [ 117.975076][ T5855] bridge0: port 1(bridge_slave_0) entered blocking state [ 117.983280][ T5855] bridge0: port 1(bridge_slave_0) entered disabled state [ 117.991051][ T5855] bridge_slave_0: entered allmulticast mode [ 118.000090][ T5855] bridge_slave_0: entered promiscuous mode [ 118.057914][ T5855] bridge0: port 2(bridge_slave_1) entered blocking state [ 118.067658][ T5855] bridge0: port 2(bridge_slave_1) entered disabled state [ 118.077274][ T5855] bridge_slave_1: entered allmulticast mode [ 118.085730][ T5855] bridge_slave_1: entered promiscuous mode [ 118.093634][ T5859] bridge0: port 1(bridge_slave_0) entered blocking state [ 118.102112][ T5859] bridge0: port 1(bridge_slave_0) entered disabled state [ 118.110589][ T5859] bridge_slave_0: entered allmulticast mode [ 118.119556][ T5859] bridge_slave_0: entered promiscuous mode [ 118.181486][ T5859] bridge0: port 2(bridge_slave_1) entered blocking state [ 118.190512][ T5859] bridge0: port 2(bridge_slave_1) entered disabled state [ 118.198931][ T5859] bridge_slave_1: entered allmulticast mode [ 118.208135][ T5859] bridge_slave_1: entered promiscuous mode [ 118.230670][ T5852] bridge0: port 1(bridge_slave_0) entered blocking state [ 118.238397][ T5852] bridge0: port 1(bridge_slave_0) entered disabled state [ 118.247308][ T5852] bridge_slave_0: entered allmulticast mode [ 118.255567][ T5852] bridge_slave_0: entered promiscuous mode [ 118.321503][ T5852] bridge0: port 2(bridge_slave_1) entered blocking state [ 118.329077][ T5852] bridge0: port 2(bridge_slave_1) entered disabled state [ 118.337332][ T5852] bridge_slave_1: entered allmulticast mode [ 118.346464][ T5852] bridge_slave_1: entered promiscuous mode [ 118.373229][ T5855] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 118.387502][ T5859] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 118.414352][ T5860] bridge0: port 1(bridge_slave_0) entered blocking state [ 118.421863][ T5860] bridge0: port 1(bridge_slave_0) entered disabled state [ 118.429980][ T5860] bridge_slave_0: entered allmulticast mode [ 118.438710][ T5860] bridge_slave_0: entered promiscuous mode [ 118.468193][ T5852] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 118.481346][ T5855] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 118.494725][ T5859] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 118.505877][ T5860] bridge0: port 2(bridge_slave_1) entered blocking state [ 118.514023][ T5860] bridge0: port 2(bridge_slave_1) entered disabled state [ 118.521954][ T5860] bridge_slave_1: entered allmulticast mode [ 118.530089][ T5860] bridge_slave_1: entered promiscuous mode [ 118.549871][ T5852] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 118.643484][ T5855] team0: Port device team_slave_0 added [ 118.670632][ T5859] team0: Port device team_slave_0 added [ 118.711999][ T5855] team0: Port device team_slave_1 added [ 118.723682][ T5859] team0: Port device team_slave_1 added [ 118.733808][ T5860] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 118.747485][ T5852] team0: Port device team_slave_0 added [ 118.758658][ T5852] team0: Port device team_slave_1 added [ 118.817269][ T5860] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 118.859666][ T5859] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 118.868221][ T5854] Bluetooth: hci1: command tx timeout [ 118.878779][ T5859] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 118.910352][ T5859] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 118.943946][ T5854] Bluetooth: hci0: command tx timeout [ 118.982029][ T5852] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 118.989939][ T5852] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 119.018376][ T5852] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 119.031118][ T5855] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 119.039130][ T5854] Bluetooth: hci3: command tx timeout [ 119.039389][ T5854] Bluetooth: hci2: command tx timeout [ 119.050609][ T5855] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 119.079629][ T5855] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 119.093626][ T5859] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 119.101224][ T5859] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 119.129291][ T5859] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 119.145398][ T5860] team0: Port device team_slave_0 added [ 119.152884][ T5852] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 119.160499][ T5852] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 119.189806][ T5852] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 119.204885][ T5855] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 119.212442][ T5855] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 119.240364][ T5855] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 119.269985][ T5860] team0: Port device team_slave_1 added [ 119.427836][ T5852] hsr_slave_0: entered promiscuous mode [ 119.435965][ T5852] hsr_slave_1: entered promiscuous mode [ 119.445775][ T5860] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 119.453669][ T5860] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 119.483236][ T5860] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 119.502560][ T5859] hsr_slave_0: entered promiscuous mode [ 119.511060][ T5859] hsr_slave_1: entered promiscuous mode [ 119.518115][ T5859] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 119.526957][ T5859] Cannot create hsr debugfs directory [ 119.542022][ T5855] hsr_slave_0: entered promiscuous mode [ 119.551320][ T5855] hsr_slave_1: entered promiscuous mode [ 119.562733][ T5855] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 119.574793][ T5855] Cannot create hsr debugfs directory [ 119.583440][ T5860] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 119.596252][ T5860] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 119.628415][ T5860] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 119.839787][ T5860] hsr_slave_0: entered promiscuous mode [ 119.847979][ T5860] hsr_slave_1: entered promiscuous mode [ 119.856357][ T5860] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 119.866459][ T5860] Cannot create hsr debugfs directory [ 120.355909][ T5855] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 120.371612][ T5855] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 120.387554][ T5855] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 120.418467][ T5855] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 120.509719][ T5860] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 120.523512][ T5860] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 120.564001][ T5860] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 120.579449][ T5860] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 120.696872][ T5852] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 120.715866][ T5852] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 120.738640][ T5852] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 120.760975][ T5852] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 120.919281][ T5859] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 120.944373][ T5168] Bluetooth: hci1: command tx timeout [ 120.951432][ T5859] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 120.987336][ T5859] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 121.000254][ T5859] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 121.024633][ T5168] Bluetooth: hci0: command tx timeout [ 121.103316][ T5168] Bluetooth: hci2: command tx timeout [ 121.110391][ T5854] Bluetooth: hci3: command tx timeout [ 121.135777][ T5855] 8021q: adding VLAN 0 to HW filter on device bond0 [ 121.208227][ T5855] 8021q: adding VLAN 0 to HW filter on device team0 [ 121.224273][ T5860] 8021q: adding VLAN 0 to HW filter on device bond0 [ 121.261306][ T1165] bridge0: port 1(bridge_slave_0) entered blocking state [ 121.269156][ T1165] bridge0: port 1(bridge_slave_0) entered forwarding state [ 121.295202][ T5860] 8021q: adding VLAN 0 to HW filter on device team0 [ 121.329573][ T1165] bridge0: port 1(bridge_slave_0) entered blocking state [ 121.338178][ T1165] bridge0: port 1(bridge_slave_0) entered forwarding state [ 121.352097][ T1165] bridge0: port 2(bridge_slave_1) entered blocking state [ 121.360481][ T1165] bridge0: port 2(bridge_slave_1) entered forwarding state [ 121.421469][ T1165] bridge0: port 2(bridge_slave_1) entered blocking state [ 121.429234][ T1165] bridge0: port 2(bridge_slave_1) entered forwarding state [ 121.459991][ T5852] 8021q: adding VLAN 0 to HW filter on device bond0 [ 121.537609][ T5852] 8021q: adding VLAN 0 to HW filter on device team0 [ 121.595847][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 121.603381][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 121.662194][ T1337] bridge0: port 2(bridge_slave_1) entered blocking state [ 121.670127][ T1337] bridge0: port 2(bridge_slave_1) entered forwarding state [ 121.701346][ T5859] 8021q: adding VLAN 0 to HW filter on device bond0 [ 121.760616][ T5859] 8021q: adding VLAN 0 to HW filter on device team0 [ 121.801167][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 121.808762][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 121.872026][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 121.880118][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 122.084618][ T5855] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 122.107662][ T5859] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 122.248012][ T5860] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 122.372575][ T5855] veth0_vlan: entered promiscuous mode [ 122.450030][ T5855] veth1_vlan: entered promiscuous mode [ 122.576901][ T5860] veth0_vlan: entered promiscuous mode [ 122.625686][ T5855] veth0_macvtap: entered promiscuous mode [ 122.639606][ T5860] veth1_vlan: entered promiscuous mode [ 122.657707][ T5855] veth1_macvtap: entered promiscuous mode [ 122.689760][ T5852] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 122.737037][ T5859] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 122.770765][ T5855] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 122.805389][ T5855] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 122.821471][ T5860] veth0_macvtap: entered promiscuous mode [ 122.838492][ T5855] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.848931][ T5855] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.858484][ T5855] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.868576][ T5855] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.895777][ T5860] veth1_macvtap: entered promiscuous mode [ 122.964732][ T5860] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 123.024538][ T5854] Bluetooth: hci1: command tx timeout [ 123.049276][ T5860] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 123.066891][ T5859] veth0_vlan: entered promiscuous mode [ 123.080914][ T5852] veth0_vlan: entered promiscuous mode [ 123.100112][ T5860] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 123.104555][ T5854] Bluetooth: hci0: command tx timeout [ 123.117219][ T5860] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 123.127666][ T5860] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 123.136976][ T5860] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 123.183963][ T5854] Bluetooth: hci3: command tx timeout [ 123.189871][ T5854] Bluetooth: hci2: command tx timeout [ 123.210654][ T5852] veth1_vlan: entered promiscuous mode [ 123.231186][ T1337] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.244446][ T5859] veth1_vlan: entered promiscuous mode [ 123.254424][ T1337] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.355145][ T5852] veth0_macvtap: entered promiscuous mode [ 123.373197][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.381368][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.446406][ T5852] veth1_macvtap: entered promiscuous mode [ 123.461837][ T5859] veth0_macvtap: entered promiscuous mode [ 123.494069][ T1337] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.502487][ T1337] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.515572][ T5855] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 123.540604][ T5859] veth1_macvtap: entered promiscuous mode [ 123.618747][ T5852] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 123.662063][ T998] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.674177][ T998] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.710662][ T5852] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 123.745374][ T5859] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 123.780458][ T5859] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 123.814191][ T5852] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 123.827866][ T5852] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 123.853290][ T5852] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 123.864730][ T5852] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 123.930177][ T5859] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 123.959136][ T5859] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 123.971420][ T5859] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 123.982026][ T5859] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.112019][ T5936] ptrace attach of "./syz-executor exec"[5940] was attempted by "./syz-executor exec"[5936] [ 124.401821][ T1337] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.431733][ T1337] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.506959][ T998] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.561145][ T998] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.593813][ T5946] FAULT_INJECTION: forcing a failure. [ 124.593813][ T5946] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 124.611031][ T5946] CPU: 1 UID: 0 PID: 5946 Comm: syz.3.7 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 124.611072][ T5946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 124.611092][ T5946] Call Trace: [ 124.611101][ T5946] [ 124.611114][ T5946] dump_stack_lvl+0x16c/0x1f0 [ 124.611150][ T5946] should_fail_ex+0x512/0x640 [ 124.611180][ T5946] _copy_from_user+0x2e/0xd0 [ 124.611210][ T5946] move_addr_to_kernel+0x65/0x170 [ 124.611251][ T5946] __copy_msghdr+0x386/0x470 [ 124.611279][ T5946] copy_msghdr_from_user+0xc1/0x160 [ 124.611307][ T5946] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 124.611350][ T5946] ___sys_sendmsg+0xfe/0x1d0 [ 124.611382][ T5946] ? __pfx____sys_sendmsg+0x10/0x10 [ 124.611409][ T5946] ? __lock_acquire+0x622/0x1c90 [ 124.611488][ T5946] __sys_sendmsg+0x16d/0x220 [ 124.611518][ T5946] ? __pfx___sys_sendmsg+0x10/0x10 [ 124.611572][ T5946] do_syscall_64+0xcd/0x490 [ 124.611607][ T5946] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 124.611648][ T5946] RIP: 0033:0x7f5ce058e9a9 [ 124.611679][ T5946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 124.611706][ T5946] RSP: 002b:00007f5ce13a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 124.611735][ T5946] RAX: ffffffffffffffda RBX: 00007f5ce07b5fa0 RCX: 00007f5ce058e9a9 [ 124.611755][ T5946] RDX: 0000000000000040 RSI: 0000200000000100 RDI: 0000000000000003 [ 124.611774][ T5946] RBP: 00007f5ce13a6090 R08: 0000000000000000 R09: 0000000000000000 [ 124.611791][ T5946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 124.611809][ T5946] R13: 0000000000000000 R14: 00007f5ce07b5fa0 R15: 00007fff296dcd08 [ 124.611847][ T5946] [ 124.832301][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.840942][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.090120][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.105585][ T5854] Bluetooth: hci1: command tx timeout [ 125.136415][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.183916][ T5854] Bluetooth: hci0: command tx timeout [ 125.263546][ T5854] Bluetooth: hci2: command tx timeout [ 125.271694][ T5854] Bluetooth: hci3: command tx timeout [ 125.556073][ T5963] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 126.508862][ T5976] Zero length message leads to an empty skb [ 126.535665][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 126.545303][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 126.558162][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 126.707756][ T9] smpboot: CPU 1 is now offline [ 127.562344][ T5998] FAULT_INJECTION: forcing a failure. [ 127.562344][ T5998] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 127.562381][ T5998] CPU: 0 UID: 0 PID: 5998 Comm: syz.2.15 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 127.562408][ T5998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 127.562421][ T5998] Call Trace: [ 127.562428][ T5998] [ 127.562437][ T5998] dump_stack_lvl+0x16c/0x1f0 [ 127.562465][ T5998] should_fail_ex+0x512/0x640 [ 127.562493][ T5998] _copy_from_user+0x2e/0xd0 [ 127.562530][ T5998] do_sys_poll+0x1d5/0xdf0 [ 127.562568][ T5998] ? kernel_text_address+0x8d/0x100 [ 127.562610][ T5998] ? arch_stack_walk+0xa6/0x100 [ 127.562633][ T5998] ? __pfx_do_sys_poll+0x10/0x10 [ 127.562669][ T5998] ? __lock_acquire+0x622/0x1c90 [ 127.562727][ T5998] ? __lock_acquire+0x622/0x1c90 [ 127.562809][ T5998] ? __pfx_timespec64_add_safe+0x10/0x10 [ 127.562846][ T5998] ? ktime_get_ts64+0x2d2/0x400 [ 127.562876][ T5998] ? read_tsc+0x9/0x20 [ 127.562900][ T5998] ? ktime_get_ts64+0x256/0x400 [ 127.562940][ T5998] __x64_sys_poll+0x1a6/0x450 [ 127.562977][ T5998] ? __pfx___x64_sys_poll+0x10/0x10 [ 127.563023][ T5998] do_syscall_64+0xcd/0x490 [ 127.563049][ T5998] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.563072][ T5998] RIP: 0033:0x7f47b5d8e9a9 [ 127.563090][ T5998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 127.563111][ T5998] RSP: 002b:00007f47b3bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 127.563132][ T5998] RAX: ffffffffffffffda RBX: 00007f47b5fb5fa0 RCX: 00007f47b5d8e9a9 [ 127.563148][ T5998] RDX: 0000000000000020 RSI: 00000000000003fa RDI: 0000200000000f80 [ 127.563161][ T5998] RBP: 00007f47b3bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 127.563175][ T5998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 127.563188][ T5998] R13: 0000000000000000 R14: 00007f47b5fb5fa0 R15: 00007ffefe5cf6c8 [ 127.563217][ T5998] [ 128.793873][ T6017] netlink: 342 bytes leftover after parsing attributes in process `syz.3.20'. [ 129.031962][ T6018] netlink: 8 bytes leftover after parsing attributes in process `syz.0.19'. [ 129.524766][ T6016] syz.0.19 (6016) used greatest stack depth: 19784 bytes left [ 129.721971][ T6026] FAULT_INJECTION: forcing a failure. [ 129.721971][ T6026] name failslab, interval 1, probability 0, space 0, times 1 [ 129.722009][ T6026] CPU: 0 UID: 0 PID: 6026 Comm: syz.0.22 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 129.722042][ T6026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 129.722067][ T6026] Call Trace: [ 129.722074][ T6026] [ 129.722083][ T6026] dump_stack_lvl+0x16c/0x1f0 [ 129.722111][ T6026] should_fail_ex+0x512/0x640 [ 129.722135][ T6026] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 129.722163][ T6026] should_failslab+0xc2/0x120 [ 129.722191][ T6026] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 129.722216][ T6026] ? security_file_alloc+0x34/0x2b0 [ 129.722259][ T6026] security_file_alloc+0x34/0x2b0 [ 129.722297][ T6026] init_file+0x93/0x4c0 [ 129.722326][ T6026] alloc_empty_file+0x73/0x1e0 [ 129.722357][ T6026] path_openat+0xda/0x2cb0 [ 129.722377][ T6026] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.722411][ T6026] ? __pfx_path_openat+0x10/0x10 [ 129.722436][ T6026] ? __lock_acquire+0xb8a/0x1c90 [ 129.722472][ T6026] do_filp_open+0x20b/0x470 [ 129.722495][ T6026] ? __pfx_do_filp_open+0x10/0x10 [ 129.722538][ T6026] ? alloc_fd+0x471/0x7d0 [ 129.722583][ T6026] do_sys_openat2+0x11b/0x1d0 [ 129.722615][ T6026] ? __pfx_do_sys_openat2+0x10/0x10 [ 129.722648][ T6026] ? __sys_sendmsg+0x18c/0x220 [ 129.722680][ T6026] __x64_sys_openat+0x174/0x210 [ 129.722713][ T6026] ? __pfx___x64_sys_openat+0x10/0x10 [ 129.722757][ T6026] do_syscall_64+0xcd/0x490 [ 129.722784][ T6026] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.722807][ T6026] RIP: 0033:0x7f8271f8e9a9 [ 129.722825][ T6026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 129.722848][ T6026] RSP: 002b:00007f8272e9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 129.722869][ T6026] RAX: ffffffffffffffda RBX: 00007f82721b5fa0 RCX: 00007f8271f8e9a9 [ 129.722884][ T6026] RDX: 0000000000000202 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 129.722899][ T6026] RBP: 00007f8272010d69 R08: 0000000000000000 R09: 0000000000000000 [ 129.722913][ T6026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 129.722926][ T6026] R13: 0000000000000000 R14: 00007f82721b5fa0 R15: 00007ffe952c35f8 [ 129.722955][ T6026] [ 131.063930][ T6040] FAULT_INJECTION: forcing a failure. [ 131.063930][ T6040] name failslab, interval 1, probability 0, space 0, times 0 [ 131.063969][ T6040] CPU: 0 UID: 0 PID: 6040 Comm: syz.0.26 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 131.063998][ T6040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 131.064012][ T6040] Call Trace: [ 131.064019][ T6040] [ 131.064028][ T6040] dump_stack_lvl+0x16c/0x1f0 [ 131.064058][ T6040] should_fail_ex+0x512/0x640 [ 131.064082][ T6040] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 131.064124][ T6040] should_failslab+0xc2/0x120 [ 131.064153][ T6040] __kmalloc_cache_noprof+0x6a/0x3e0 [ 131.064202][ T6040] ? copy_net_ns+0x135/0x5f0 [ 131.064239][ T6040] copy_net_ns+0x135/0x5f0 [ 131.064267][ T6040] ? copy_cgroup_ns+0x71/0x700 [ 131.064296][ T6040] create_new_namespaces+0x3ea/0xa90 [ 131.064331][ T6040] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 131.064361][ T6040] ksys_unshare+0x45b/0xa40 [ 131.064394][ T6040] ? __pfx_ksys_unshare+0x10/0x10 [ 131.064428][ T6040] ? xfd_validate_state+0x61/0x180 [ 131.064468][ T6040] __x64_sys_unshare+0x31/0x40 [ 131.064501][ T6040] do_syscall_64+0xcd/0x490 [ 131.064527][ T6040] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.064551][ T6040] RIP: 0033:0x7f8271f8e9a9 [ 131.064569][ T6040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.064591][ T6040] RSP: 002b:00007f8272e9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 131.064613][ T6040] RAX: ffffffffffffffda RBX: 00007f82721b5fa0 RCX: 00007f8271f8e9a9 [ 131.064628][ T6040] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 131.064642][ T6040] RBP: 00007f8272010d69 R08: 0000000000000000 R09: 0000000000000000 [ 131.064656][ T6040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 131.064669][ T6040] R13: 0000000000000000 R14: 00007f82721b5fa0 R15: 00007ffe952c35f8 [ 131.064698][ T6040] [ 131.512409][ T6046] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd12 [ 132.185678][ T5995] tty tty12: ldisc open failed (-12), clearing slot 11 [ 132.219953][ T6007] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 132.262315][ T6004] ttyS ttyS2: ldisc open failed (-12), clearing slot 2 [ 132.311873][ T6012] tty tty1: ldisc open failed (-12), clearing slot 0 [ 133.086909][ T6064] FAULT_INJECTION: forcing a failure. [ 133.086909][ T6064] name failslab, interval 1, probability 0, space 0, times 0 [ 133.210231][ T6064] CPU: 0 UID: 0 PID: 6064 Comm: syz.3.33 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 133.210263][ T6064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 133.210276][ T6064] Call Trace: [ 133.210284][ T6064] [ 133.210292][ T6064] dump_stack_lvl+0x16c/0x1f0 [ 133.210321][ T6064] should_fail_ex+0x512/0x640 [ 133.210344][ T6064] ? __kmalloc_noprof+0xbf/0x510 [ 133.210370][ T6064] ? ethnl_default_notify+0x1a7/0x940 [ 133.210396][ T6064] should_failslab+0xc2/0x120 [ 133.210424][ T6064] __kmalloc_noprof+0xd2/0x510 [ 133.210445][ T6064] ? consume_skb+0x10/0x100 [ 133.210477][ T6064] ? __pfx_ethnl_default_notify+0x10/0x10 [ 133.210503][ T6064] ethnl_default_notify+0x1a7/0x940 [ 133.210531][ T6064] ? __pfx_ethnl_default_notify+0x10/0x10 [ 133.210569][ T6064] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 133.210611][ T6064] ? __pfx_ethnl_default_notify+0x10/0x10 [ 133.210636][ T6064] ethtool_notify+0xc2/0x200 [ 133.210660][ T6064] ethnl_netdev_event+0x10a/0x190 [ 133.210684][ T6064] notifier_call_chain+0xb9/0x410 [ 133.210712][ T6064] ? __pfx_ethnl_netdev_event+0x10/0x10 [ 133.210742][ T6064] call_netdevice_notifiers_info+0xbe/0x140 [ 133.210777][ T6064] netdev_update_features+0xca/0xe0 [ 133.210805][ T6064] ? __pfx_netdev_update_features+0x10/0x10 [ 133.210835][ T6064] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 133.210872][ T6064] __tun_chr_ioctl+0x5b0/0x47a0 [ 133.210906][ T6064] ? __pfx___tun_chr_ioctl+0x10/0x10 [ 133.210937][ T6064] ? hook_file_ioctl_common+0x145/0x410 [ 133.210980][ T6064] ? __fget_files+0x20e/0x3c0 [ 133.211022][ T6064] ? __pfx_tun_chr_ioctl+0x10/0x10 [ 133.211050][ T6064] __x64_sys_ioctl+0x18e/0x210 [ 133.211085][ T6064] do_syscall_64+0xcd/0x490 [ 133.211111][ T6064] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.211135][ T6064] RIP: 0033:0x7f5ce058e9a9 [ 133.211152][ T6064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.211174][ T6064] RSP: 002b:00007f5ce13a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 133.211195][ T6064] RAX: ffffffffffffffda RBX: 00007f5ce07b5fa0 RCX: 00007f5ce058e9a9 [ 133.211215][ T6064] RDX: 0000000000000001 RSI: 00000000400454d0 RDI: 04000000000000c8 [ 133.211229][ T6064] RBP: 00007f5ce13a6090 R08: 0000000000000000 R09: 0000000000000000 [ 133.211243][ T6064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 133.211256][ T6064] R13: 0000000000000001 R14: 00007f5ce07b5fa0 R15: 00007fff296dcd08 [ 133.211285][ T6064] [ 134.295439][ T6073] FAULT_INJECTION: forcing a failure. [ 134.295439][ T6073] name failslab, interval 1, probability 0, space 0, times 0 [ 134.393936][ T6073] CPU: 0 UID: 0 PID: 6073 Comm: syz.3.36 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 134.393969][ T6073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 134.393982][ T6073] Call Trace: [ 134.393990][ T6073] [ 134.393999][ T6073] dump_stack_lvl+0x16c/0x1f0 [ 134.394027][ T6073] should_fail_ex+0x512/0x640 [ 134.394050][ T6073] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 134.394077][ T6073] should_failslab+0xc2/0x120 [ 134.394104][ T6073] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 134.394128][ T6073] ? d_instantiate+0x77/0x90 [ 134.394153][ T6073] ? alloc_empty_file+0x55/0x1e0 [ 134.394186][ T6073] alloc_empty_file+0x55/0x1e0 [ 134.394216][ T6073] alloc_file_pseudo+0x13a/0x230 [ 134.394248][ T6073] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 134.394286][ T6073] __anon_inode_getfile+0xe8/0x280 [ 134.394324][ T6073] ? kasan_save_track+0x14/0x30 [ 134.394349][ T6073] sync_file_alloc+0x65/0x160 [ 134.394387][ T6073] sync_file_merge.constprop.0+0x82/0x2a0 [ 134.394426][ T6073] ? __pfx_sync_file_merge.constprop.0+0x10/0x10 [ 134.394464][ T6073] ? find_held_lock+0x2b/0x80 [ 134.394489][ T6073] ? __fget_files+0x204/0x3c0 [ 134.394530][ T6073] ? __fget_files+0x20e/0x3c0 [ 134.394571][ T6073] sync_file_ioctl+0xa2d/0xdb0 [ 134.394598][ T6073] ? __pfx_sync_file_ioctl+0x10/0x10 [ 134.394649][ T6073] ? __fget_files+0x20e/0x3c0 [ 134.394689][ T6073] ? __pfx_sync_file_ioctl+0x10/0x10 [ 134.394713][ T6073] __x64_sys_ioctl+0x18e/0x210 [ 134.394748][ T6073] do_syscall_64+0xcd/0x490 [ 134.394780][ T6073] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 134.394803][ T6073] RIP: 0033:0x7f5ce058e9a9 [ 134.394821][ T6073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 134.394843][ T6073] RSP: 002b:00007f5ce1385038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 134.394864][ T6073] RAX: ffffffffffffffda RBX: 00007f5ce07b6080 RCX: 00007f5ce058e9a9 [ 134.394879][ T6073] RDX: 0000000000000004 RSI: 00000000c0303e03 RDI: 0000000000000003 [ 134.394893][ T6073] RBP: 00007f5ce1385090 R08: 0000000000000000 R09: 0000000000000000 [ 134.394906][ T6073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 134.394920][ T6073] R13: 0000000000000000 R14: 00007f5ce07b6080 R15: 00007fff296dcd08 [ 134.394948][ T6073] [ 135.316650][ T6084] FAULT_INJECTION: forcing a failure. [ 135.316650][ T6084] name failslab, interval 1, probability 0, space 0, times 0 [ 135.481680][ T6084] CPU: 0 UID: 0 PID: 6084 Comm: syz.1.40 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 135.481712][ T6084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 135.481726][ T6084] Call Trace: [ 135.481734][ T6084] [ 135.481743][ T6084] dump_stack_lvl+0x16c/0x1f0 [ 135.481771][ T6084] should_fail_ex+0x512/0x640 [ 135.481795][ T6084] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 135.481823][ T6084] should_failslab+0xc2/0x120 [ 135.481850][ T6084] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 135.481874][ T6084] ? __alloc_skb+0x2b2/0x380 [ 135.481901][ T6084] __alloc_skb+0x2b2/0x380 [ 135.481923][ T6084] ? __pfx___alloc_skb+0x10/0x10 [ 135.481949][ T6084] ? __lock_acquire+0xb8a/0x1c90 [ 135.481986][ T6084] netlink_alloc_large_skb+0x69/0x130 [ 135.482018][ T6084] netlink_sendmsg+0x6a1/0xdd0 [ 135.482051][ T6084] ? __pfx_netlink_sendmsg+0x10/0x10 [ 135.482091][ T6084] ____sys_sendmsg+0xa95/0xc70 [ 135.482124][ T6084] ? copy_msghdr_from_user+0x10a/0x160 [ 135.482149][ T6084] ? __pfx_____sys_sendmsg+0x10/0x10 [ 135.482194][ T6084] ___sys_sendmsg+0x134/0x1d0 [ 135.482220][ T6084] ? __pfx____sys_sendmsg+0x10/0x10 [ 135.482242][ T6084] ? __lock_acquire+0x622/0x1c90 [ 135.482307][ T6084] __sys_sendmsg+0x16d/0x220 [ 135.482332][ T6084] ? __pfx___sys_sendmsg+0x10/0x10 [ 135.482375][ T6084] do_syscall_64+0xcd/0x490 [ 135.482401][ T6084] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 135.482424][ T6084] RIP: 0033:0x7fcc9038e9a9 [ 135.482442][ T6084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 135.482463][ T6084] RSP: 002b:00007fcc911d8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 135.482484][ T6084] RAX: ffffffffffffffda RBX: 00007fcc905b5fa0 RCX: 00007fcc9038e9a9 [ 135.482507][ T6084] RDX: 0000000004008000 RSI: 0000200000002ac0 RDI: 0000000000000003 [ 135.482521][ T6084] RBP: 00007fcc911d8090 R08: 0000000000000000 R09: 0000000000000000 [ 135.482534][ T6084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 135.482548][ T6084] R13: 0000000000000000 R14: 00007fcc905b5fa0 R15: 00007ffeef3961a8 [ 135.482576][ T6084] [ 135.747198][ T6090] netlink: 4 bytes leftover after parsing attributes in process `syz.1.41'. [ 138.276045][ T6117] netlink: 342 bytes leftover after parsing attributes in process `syz.1.49'. [ 138.971725][ T6123] netlink: 4 bytes leftover after parsing attributes in process `syz.1.51'. [ 139.086982][ T6126] netlink: 28 bytes leftover after parsing attributes in process `syz.2.53'. [ 140.195583][ T6118] FAULT_INJECTION: forcing a failure. [ 140.195583][ T6118] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 140.459587][ T6118] CPU: 0 UID: 0 PID: 6118 Comm: syz.0.47 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 140.459620][ T6118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 140.459635][ T6118] Call Trace: [ 140.459643][ T6118] [ 140.459652][ T6118] dump_stack_lvl+0x16c/0x1f0 [ 140.459681][ T6118] should_fail_ex+0x512/0x640 [ 140.459709][ T6118] strncpy_from_user+0x3b/0x2e0 [ 140.459752][ T6118] getname_flags.part.0+0x8f/0x550 [ 140.459789][ T6118] getname_flags+0x93/0xf0 [ 140.459827][ T6118] do_sys_openat2+0xb8/0x1d0 [ 140.459859][ T6118] ? __pfx_do_sys_openat2+0x10/0x10 [ 140.459901][ T6118] __x64_sys_openat+0x174/0x210 [ 140.459934][ T6118] ? __pfx___x64_sys_openat+0x10/0x10 [ 140.459978][ T6118] do_syscall_64+0xcd/0x490 [ 140.460004][ T6118] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.460028][ T6118] RIP: 0033:0x7f8271f8d310 [ 140.460046][ T6118] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 140.460069][ T6118] RSP: 002b:00007f8272e79f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 140.460090][ T6118] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f8271f8d310 [ 140.460105][ T6118] RDX: 0000000000000002 RSI: 00007f8272e79fa0 RDI: 00000000ffffff9c [ 140.460119][ T6118] RBP: 00007f8272e79fa0 R08: 0000000000000000 R09: 0000000000000000 [ 140.460133][ T6118] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 140.460147][ T6118] R13: 0000000000000000 R14: 00007f82721b6080 R15: 00007ffe952c35f8 [ 140.460175][ T6118] [ 140.460964][ T6139] netlink: 28 bytes leftover after parsing attributes in process `syz.2.56'. [ 142.193902][ T6152] netlink: 8 bytes leftover after parsing attributes in process `syz.3.60'. [ 143.910548][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 143.919743][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 144.402399][ T6182] mmap: syz.1.66 (6182) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 144.500501][ T6186] netlink: 4 bytes leftover after parsing attributes in process `syz.3.68'. [ 144.574002][ T6183] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x79000 [ 144.917916][ T6183] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 145.098569][ T6189] netlink: 330 bytes leftover after parsing attributes in process `syz.0.67'. [ 145.447893][ T6183] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 145.924463][ T6183] page_type: f5(slab) [ 146.054901][ T6183] raw: 00fff00000000040 ffff88801b891000 ffffea0001e5ff80 0000000000000005 [ 146.152685][ T6183] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 146.264885][ T6183] head: 00fff00000000040 ffff88801b891000 ffffea0001e5ff80 0000000000000005 [ 146.318671][ T6183] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 146.447782][ T6183] head: 00fff00000000001 ffffea0001e40001 00000000ffffffff 00000000ffffffff [ 146.533171][ T6183] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 146.592458][ T6183] page dumped because: unmovable page [ 146.633167][ T6183] page_owner tracks the page as allocated [ 146.639116][ T6183] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5808, tgid 5808 (sed), ts 99632614349, free_ts 44529821224 [ 146.835034][ T6183] post_alloc_hook+0x1c0/0x230 [ 146.839912][ T6183] get_page_from_freelist+0x1321/0x3890 [ 146.919968][ T6183] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 146.983042][ T6183] alloc_pages_mpol+0x1fb/0x550 [ 147.025327][ T6183] new_slab+0x23b/0x330 [ 147.093180][ T6183] ___slab_alloc+0xd9c/0x1940 [ 147.135435][ T6183] __slab_alloc.constprop.0+0x56/0xb0 [ 147.181618][ T6183] kmem_cache_alloc_noprof+0xef/0x3b0 [ 147.265850][ T6183] mas_alloc_nodes+0x18b/0x8b0 [ 147.303049][ T6183] mas_node_count_gfp+0x105/0x130 [ 147.353176][ T6183] mas_preallocate+0x7e0/0xde0 [ 147.407105][ T6183] __split_vma+0x34a/0x1070 [ 147.447040][ T6183] vms_gather_munmap_vmas+0x1c2/0x1310 [ 147.509656][ T6183] __mmap_region+0x3c7/0x25e0 [ 147.557757][ T6183] mmap_region+0x1ab/0x3f0 [ 147.608393][ T6183] do_mmap+0xa3e/0x1210 [ 147.651740][ T6183] page last free pid 1 tgid 1 stack trace: [ 147.719265][ T6183] __free_frozen_pages+0x7fe/0x1180 [ 147.784150][ T6183] free_contig_range+0x183/0x4b0 [ 147.833157][ T6183] destroy_args+0x7f6/0xa60 [ 147.886008][ T6183] debug_vm_pgtable+0x13b8/0x2d00 [ 147.936454][ T6183] do_one_initcall+0x120/0x6e0 [ 147.979517][ T6183] kernel_init_freeable+0x5c2/0x900 [ 148.044119][ T6183] kernel_init+0x1c/0x2b0 [ 148.083001][ T6183] ret_from_fork+0x5d4/0x6f0 [ 148.129761][ T6183] ret_from_fork_asm+0x1a/0x30 [ 150.390839][ T6221] lo: entered allmulticast mode [ 150.487255][ T6221] lo: left allmulticast mode [ 156.476283][ T6262] netlink: 4 bytes leftover after parsing attributes in process `syz.0.82'. [ 158.142791][ T6273] FAULT_INJECTION: forcing a failure. [ 158.142791][ T6273] name failslab, interval 1, probability 0, space 0, times 0 [ 158.286647][ T6273] CPU: 0 UID: 0 PID: 6273 Comm: syz.3.84 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 158.286696][ T6273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 158.286710][ T6273] Call Trace: [ 158.286717][ T6273] [ 158.286726][ T6273] dump_stack_lvl+0x16c/0x1f0 [ 158.286753][ T6273] should_fail_ex+0x512/0x640 [ 158.286776][ T6273] ? __kmalloc_noprof+0xbf/0x510 [ 158.286802][ T6273] ? parse+0x9b/0x160 [ 158.286831][ T6273] should_failslab+0xc2/0x120 [ 158.286858][ T6273] __kmalloc_noprof+0xd2/0x510 [ 158.286887][ T6273] parse+0x9b/0x160 [ 158.286919][ T6273] taskstats_user_cmd+0x8a1/0x11a0 [ 158.286951][ T6273] ? __pfx___nla_validate_parse+0x10/0x10 [ 158.286985][ T6273] ? __pfx_taskstats_user_cmd+0x10/0x10 [ 158.287025][ T6273] ? __nla_parse+0x40/0x60 [ 158.287058][ T6273] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 158.287095][ T6273] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 158.287136][ T6273] genl_family_rcv_msg_doit+0x209/0x2f0 [ 158.287172][ T6273] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 158.287205][ T6273] ? rcu_is_watching+0x12/0xc0 [ 158.287239][ T6273] ? bpf_lsm_capable+0x9/0x10 [ 158.287273][ T6273] ? security_capable+0x7e/0x260 [ 158.287307][ T6273] genl_rcv_msg+0x55c/0x800 [ 158.287350][ T6273] ? __pfx_genl_rcv_msg+0x10/0x10 [ 158.287384][ T6273] ? __pfx_taskstats_user_cmd+0x10/0x10 [ 158.287429][ T6273] netlink_rcv_skb+0x158/0x420 [ 158.287457][ T6273] ? __pfx_genl_rcv_msg+0x10/0x10 [ 158.287492][ T6273] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 158.287533][ T6273] ? netlink_deliver_tap+0x1ae/0xd30 [ 158.287565][ T6273] genl_rcv+0x28/0x40 [ 158.287594][ T6273] netlink_unicast+0x58a/0x850 [ 158.287627][ T6273] ? __pfx_netlink_unicast+0x10/0x10 [ 158.287664][ T6273] netlink_sendmsg+0x8d1/0xdd0 [ 158.287703][ T6273] ? __pfx_netlink_sendmsg+0x10/0x10 [ 158.287743][ T6273] ____sys_sendmsg+0xa95/0xc70 [ 158.287777][ T6273] ? copy_msghdr_from_user+0x10a/0x160 [ 158.287814][ T6273] ? __pfx_____sys_sendmsg+0x10/0x10 [ 158.287859][ T6273] ___sys_sendmsg+0x134/0x1d0 [ 158.287903][ T6273] ? __pfx____sys_sendmsg+0x10/0x10 [ 158.287940][ T6273] ? __lock_acquire+0x622/0x1c90 [ 158.288006][ T6273] __sys_sendmsg+0x16d/0x220 [ 158.288030][ T6273] ? __pfx___sys_sendmsg+0x10/0x10 [ 158.288073][ T6273] do_syscall_64+0xcd/0x490 [ 158.288098][ T6273] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 158.288121][ T6273] RIP: 0033:0x7f5ce058e9a9 [ 158.288138][ T6273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 158.288159][ T6273] RSP: 002b:00007f5ce13a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 158.288179][ T6273] RAX: ffffffffffffffda RBX: 00007f5ce07b5fa0 RCX: 00007f5ce058e9a9 [ 158.288194][ T6273] RDX: 0000000020000000 RSI: 0000200000000200 RDI: 0000000000000003 [ 158.288207][ T6273] RBP: 00007f5ce13a6090 R08: 0000000000000000 R09: 0000000000000000 [ 158.288220][ T6273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 158.288233][ T6273] R13: 0000000000000000 R14: 00007f5ce07b5fa0 R15: 00007fff296dcd08 [ 158.288261][ T6273] [ 159.317891][ T6283] Invalid ELF header magic: != ELF [ 163.638918][ T6322] syz.3.99 uses obsolete (PF_INET,SOCK_PACKET) [ 164.843782][ T6342] netlink: 8 bytes leftover after parsing attributes in process `syz.2.101'. [ 166.303197][ T6366] vivid-007: ================= START STATUS ================= [ 166.479587][ T6366] vivid-007: Generate PTS: true [ 166.505262][ T6366] vivid-007: Generate SCR: true [ 166.510203][ T6366] tpg source WxH: 320x240 (Y'CbCr) [ 166.600137][ T6366] tpg field: 1 [ 166.615556][ T6366] tpg crop: (0,0)/320x240 [ 166.666812][ T6366] tpg compose: (0,0)/320x240 [ 166.690814][ T6366] tpg colorspace: 8 [ 166.723077][ T6366] tpg transfer function: 0/0 [ 166.768540][ T6366] tpg Y'CbCr encoding: 0/0 [ 166.800595][ T6366] tpg quantization: 0/0 [ 166.833348][ T6366] tpg RGB range: 0/2 [ 166.855493][ T6366] vivid-007: ================== END STATUS ================== [ 166.986362][ T6380] FAULT_INJECTION: forcing a failure. [ 166.986362][ T6380] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 167.093778][ T6380] CPU: 0 UID: 0 PID: 6380 Comm: syz.1.111 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 167.093809][ T6380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 167.093823][ T6380] Call Trace: [ 167.093830][ T6380] [ 167.093838][ T6380] dump_stack_lvl+0x16c/0x1f0 [ 167.093867][ T6380] should_fail_ex+0x512/0x640 [ 167.093895][ T6380] _copy_from_user+0x2e/0xd0 [ 167.093922][ T6380] kstrtoul_from_user+0xc0/0x1b0 [ 167.093957][ T6380] ? __pfx_kstrtoul_from_user+0x10/0x10 [ 167.094002][ T6380] ? import_ubuf+0x1b6/0x220 [ 167.094031][ T6380] trace_options_core_write+0xd5/0x250 [ 167.094062][ T6380] ? __pfx_trace_options_core_write+0x10/0x10 [ 167.094100][ T6380] ? __pfx_trace_options_core_write+0x10/0x10 [ 167.094129][ T6380] vfs_writev+0x5dc/0xde0 [ 167.094164][ T6380] ? __pfx___mutex_trylock_common+0x10/0x10 [ 167.094207][ T6380] ? __pfx_vfs_writev+0x10/0x10 [ 167.094243][ T6380] ? __mutex_lock+0x1ca/0xb90 [ 167.094273][ T6380] ? __pfx___mutex_lock+0x10/0x10 [ 167.094307][ T6380] ? __fget_files+0x20e/0x3c0 [ 167.094343][ T6380] ? __fget_files+0x1b0/0x3c0 [ 167.094386][ T6380] ? do_writev+0x132/0x340 [ 167.094420][ T6380] do_writev+0x132/0x340 [ 167.094456][ T6380] ? __pfx_do_writev+0x10/0x10 [ 167.094508][ T6380] do_syscall_64+0xcd/0x490 [ 167.094534][ T6380] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.094557][ T6380] RIP: 0033:0x7fcc9038e9a9 [ 167.094575][ T6380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 167.094596][ T6380] RSP: 002b:00007fcc911b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 167.094617][ T6380] RAX: ffffffffffffffda RBX: 00007fcc905b6080 RCX: 00007fcc9038e9a9 [ 167.094632][ T6380] RDX: 0000000000000001 RSI: 0000200000000080 RDI: 0000000000000004 [ 167.094646][ T6380] RBP: 00007fcc911b7090 R08: 0000000000000000 R09: 0000000000000000 [ 167.094659][ T6380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 167.094672][ T6380] R13: 0000000000000000 R14: 00007fcc905b6080 R15: 00007ffeef3961a8 [ 167.094701][ T6380] [ 168.535832][ T6402] FAULT_INJECTION: forcing a failure. [ 168.535832][ T6402] name failslab, interval 1, probability 0, space 0, times 0 [ 168.632337][ T6398] FAULT_INJECTION: forcing a failure. [ 168.632337][ T6398] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 168.658723][ T6402] CPU: 0 UID: 0 PID: 6402 Comm: syz.0.120 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 168.658754][ T6402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 168.658767][ T6402] Call Trace: [ 168.658774][ T6402] [ 168.658782][ T6402] dump_stack_lvl+0x16c/0x1f0 [ 168.658820][ T6402] should_fail_ex+0x512/0x640 [ 168.658841][ T6402] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 168.658866][ T6402] should_failslab+0xc2/0x120 [ 168.658891][ T6402] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 168.658912][ T6402] ? __alloc_skb+0x2b2/0x380 [ 168.658956][ T6402] __alloc_skb+0x2b2/0x380 [ 168.658976][ T6402] ? __pfx___alloc_skb+0x10/0x10 [ 168.659002][ T6402] ? __lock_acquire+0xb8a/0x1c90 [ 168.659037][ T6402] netlink_alloc_large_skb+0x69/0x130 [ 168.659070][ T6402] netlink_sendmsg+0x6a1/0xdd0 [ 168.659102][ T6402] ? __pfx_netlink_sendmsg+0x10/0x10 [ 168.659141][ T6402] ____sys_sendmsg+0xa95/0xc70 [ 168.659172][ T6402] ? copy_msghdr_from_user+0x10a/0x160 [ 168.659196][ T6402] ? __pfx_____sys_sendmsg+0x10/0x10 [ 168.659231][ T6402] ? kfree+0x24f/0x4d0 [ 168.659261][ T6402] ? __pfx__kstrtoull+0x10/0x10 [ 168.659298][ T6402] ___sys_sendmsg+0x134/0x1d0 [ 168.659328][ T6402] ? __pfx____sys_sendmsg+0x10/0x10 [ 168.659377][ T6402] ? __pfx___might_resched+0x10/0x10 [ 168.659414][ T6402] __sys_sendmmsg+0x200/0x420 [ 168.659441][ T6402] ? __pfx___sys_sendmmsg+0x10/0x10 [ 168.659474][ T6402] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 168.659510][ T6402] ? fput+0x70/0xf0 [ 168.659555][ T6402] ? ksys_write+0x1ac/0x250 [ 168.659575][ T6402] ? __pfx_ksys_write+0x10/0x10 [ 168.659602][ T6402] __x64_sys_sendmmsg+0x9c/0x100 [ 168.659626][ T6402] ? lockdep_hardirqs_on+0x7c/0x110 [ 168.659648][ T6402] do_syscall_64+0xcd/0x490 [ 168.659674][ T6402] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.659697][ T6402] RIP: 0033:0x7f8271f8e9a9 [ 168.659714][ T6402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 168.659736][ T6402] RSP: 002b:00007f8272e9b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 168.659757][ T6402] RAX: ffffffffffffffda RBX: 00007f82721b5fa0 RCX: 00007f8271f8e9a9 [ 168.659772][ T6402] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 168.659785][ T6402] RBP: 00007f8272e9b090 R08: 0000000000000000 R09: 0000000000000000 [ 168.659799][ T6402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 168.659812][ T6402] R13: 0000000000000000 R14: 00007f82721b5fa0 R15: 00007ffe952c35f8 [ 168.659840][ T6402] [ 168.913372][ C0] vkms_vblank_simulate: vblank timer overrun [ 169.203071][ T6398] CPU: 0 UID: 0 PID: 6398 Comm: syz.3.118 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 169.203103][ T6398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 169.203117][ T6398] Call Trace: [ 169.203125][ T6398] [ 169.203134][ T6398] dump_stack_lvl+0x16c/0x1f0 [ 169.203161][ T6398] should_fail_ex+0x512/0x640 [ 169.203189][ T6398] should_fail_alloc_page+0xe7/0x130 [ 169.203219][ T6398] prepare_alloc_pages+0x3c2/0x610 [ 169.203251][ T6398] ? rcu_is_watching+0x12/0xc0 [ 169.203286][ T6398] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 169.203311][ T6398] ? kmem_cache_alloc_lru_noprof+0x223/0x3b0 [ 169.203334][ T6398] ? sanity_check_pinned_pages+0x3bf/0x1200 [ 169.203365][ T6398] ? xas_alloc+0x34f/0x460 [ 169.203396][ T6398] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 169.203423][ T6398] ? __lock_acquire+0x622/0x1c90 [ 169.203467][ T6398] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 169.203504][ T6398] ? policy_nodemask+0xea/0x4e0 [ 169.203532][ T6398] alloc_pages_mpol+0x1fb/0x550 [ 169.203560][ T6398] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 169.203588][ T6398] ? find_held_lock+0x2b/0x80 [ 169.203615][ T6398] alloc_pages_noprof+0x131/0x390 [ 169.203641][ T6398] ? brd_submit_bio+0x92c/0x1180 [ 169.203670][ T6398] brd_submit_bio+0x942/0x1180 [ 169.203711][ T6398] __submit_bio+0x304/0x690 [ 169.203746][ T6398] ? __pfx___submit_bio+0x10/0x10 [ 169.203796][ T6398] ? submit_bio_noacct_nocheck+0x852/0xd30 [ 169.203831][ T6398] submit_bio_noacct_nocheck+0x852/0xd30 [ 169.203869][ T6398] ? __pfx_submit_bio_noacct_nocheck+0x10/0x10 [ 169.203909][ T6398] ? __pfx___might_resched+0x10/0x10 [ 169.203941][ T6398] submit_bio_noacct+0x50d/0x1eb0 [ 169.203981][ T6398] blkdev_direct_IO+0x16f4/0x1ff0 [ 169.204017][ T6398] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 169.204044][ T6398] ? filemap_check_errors+0xa9/0x160 [ 169.204108][ T6398] blkdev_write_iter+0x6fd/0xdf0 [ 169.204138][ T6398] vfs_write+0x6c4/0x1150 [ 169.204171][ T6398] ? __pfx_blkdev_write_iter+0x10/0x10 [ 169.204197][ T6398] ? __pfx_vfs_write+0x10/0x10 [ 169.204216][ T6398] ? find_held_lock+0x2b/0x80 [ 169.204261][ T6398] ksys_write+0x12a/0x250 [ 169.204282][ T6398] ? __pfx_ksys_write+0x10/0x10 [ 169.204311][ T6398] do_syscall_64+0xcd/0x490 [ 169.204337][ T6398] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 169.204360][ T6398] RIP: 0033:0x7f5ce058e9a9 [ 169.204397][ T6398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 169.204419][ T6398] RSP: 002b:00007f5ce13a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 169.204441][ T6398] RAX: ffffffffffffffda RBX: 00007f5ce07b5fa0 RCX: 00007f5ce058e9a9 [ 169.204456][ T6398] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 169.204470][ T6398] RBP: 00007f5ce0610d69 R08: 0000000000000000 R09: 0000000000000000 [ 169.204483][ T6398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 169.204497][ T6398] R13: 0000000000000000 R14: 00007f5ce07b5fa0 R15: 00007fff296dcd08 [ 169.204526][ T6398] [ 169.509152][ C0] vkms_vblank_simulate: vblank timer overrun [ 169.632548][ T6408] Invalid ELF header magic: != ELF [ 169.741315][ T6412] FAULT_INJECTION: forcing a failure. [ 169.741315][ T6412] name failslab, interval 1, probability 0, space 0, times 0 [ 169.754324][ T6412] CPU: 0 UID: 0 PID: 6412 Comm: syz.3.124 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 169.754353][ T6412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 169.754366][ T6412] Call Trace: [ 169.754372][ T6412] [ 169.754380][ T6412] dump_stack_lvl+0x16c/0x1f0 [ 169.754407][ T6412] should_fail_ex+0x512/0x640 [ 169.754430][ T6412] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 169.754469][ T6412] should_failslab+0xc2/0x120 [ 169.754495][ T6412] __kmalloc_cache_noprof+0x6a/0x3e0 [ 169.754530][ T6412] ? ioam6_genl_addns+0x36d/0x820 [ 169.754556][ T6412] ? ioam6_genl_addns+0x3b1/0x820 [ 169.754586][ T6412] ioam6_genl_addns+0x3b1/0x820 [ 169.754615][ T6412] ? __pfx_ioam6_genl_addns+0x10/0x10 [ 169.754646][ T6412] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 169.754681][ T6412] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 169.754721][ T6412] genl_family_rcv_msg_doit+0x209/0x2f0 [ 169.754756][ T6412] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 169.754787][ T6412] ? rcu_is_watching+0x12/0xc0 [ 169.754821][ T6412] ? bpf_lsm_capable+0x9/0x10 [ 169.754853][ T6412] ? security_capable+0x7e/0x260 [ 169.754887][ T6412] genl_rcv_msg+0x55c/0x800 [ 169.754922][ T6412] ? __pfx_genl_rcv_msg+0x10/0x10 [ 169.754954][ T6412] ? __pfx_ioam6_genl_addns+0x10/0x10 [ 169.754992][ T6412] netlink_rcv_skb+0x158/0x420 [ 169.755020][ T6412] ? __pfx_genl_rcv_msg+0x10/0x10 [ 169.755053][ T6412] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 169.755094][ T6412] ? netlink_deliver_tap+0x1ae/0xd30 [ 169.755124][ T6412] genl_rcv+0x28/0x40 [ 169.755152][ T6412] netlink_unicast+0x58a/0x850 [ 169.755184][ T6412] ? __pfx_netlink_unicast+0x10/0x10 [ 169.755220][ T6412] netlink_sendmsg+0x8d1/0xdd0 [ 169.755295][ T6412] ? __pfx_netlink_sendmsg+0x10/0x10 [ 169.755334][ T6412] ____sys_sendmsg+0xa95/0xc70 [ 169.755366][ T6412] ? copy_msghdr_from_user+0x10a/0x160 [ 169.755392][ T6412] ? __pfx_____sys_sendmsg+0x10/0x10 [ 169.755456][ T6412] ___sys_sendmsg+0x134/0x1d0 [ 169.755482][ T6412] ? __pfx____sys_sendmsg+0x10/0x10 [ 169.755504][ T6412] ? __lock_acquire+0x622/0x1c90 [ 169.755573][ T6412] __sys_sendmsg+0x16d/0x220 [ 169.755598][ T6412] ? __pfx___sys_sendmsg+0x10/0x10 [ 169.755642][ T6412] do_syscall_64+0xcd/0x490 [ 169.755669][ T6412] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 169.755692][ T6412] RIP: 0033:0x7f5ce058e9a9 [ 169.755710][ T6412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 169.755732][ T6412] RSP: 002b:00007f5ce13a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 169.755752][ T6412] RAX: ffffffffffffffda RBX: 00007f5ce07b5fa0 RCX: 00007f5ce058e9a9 [ 169.755767][ T6412] RDX: 0000000000008840 RSI: 0000200000000480 RDI: 0000000000000003 [ 169.755781][ T6412] RBP: 00007f5ce13a6090 R08: 0000000000000000 R09: 0000000000000000 [ 169.755795][ T6412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 169.755808][ T6412] R13: 0000000000000000 R14: 00007f5ce07b5fa0 R15: 00007fff296dcd08 [ 169.755837][ T6412] [ 170.059718][ C0] vkms_vblank_simulate: vblank timer overrun [ 170.230883][ T5854] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 170.230915][ T5854] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 170.246582][ T5854] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 170.246640][ T5854] Bluetooth: hci0: adv larger than maximum supported [ 170.253855][ T5854] Bluetooth: hci0: adv larger than maximum supported [ 170.260880][ T5854] Bluetooth: hci0: Malformed LE Event: 0x0d [ 171.742912][ T6440] Invalid ELF header magic: != ELF [ 172.508241][ T6458] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 175.215976][ T31] audit: type=1326 audit(6048700754.087:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.3.145" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5ce058e9a9 code=0x0 [ 175.237397][ C0] vkms_vblank_simulate: vblank timer overrun [ 175.255119][ T6494] FAULT_INJECTION: forcing a failure. [ 175.255119][ T6494] name failslab, interval 1, probability 0, space 0, times 0 [ 175.298043][ T6493] FAULT_INJECTION: forcing a failure. [ 175.298043][ T6493] name failslab, interval 1, probability 0, space 0, times 0 [ 175.361590][ T6494] CPU: 0 UID: 0 PID: 6494 Comm: syz.3.145 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 175.361621][ T6494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 175.361635][ T6494] Call Trace: [ 175.361642][ T6494] [ 175.361651][ T6494] dump_stack_lvl+0x16c/0x1f0 [ 175.361689][ T6494] should_fail_ex+0x512/0x640 [ 175.361713][ T6494] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 175.361740][ T6494] should_failslab+0xc2/0x120 [ 175.361767][ T6494] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 175.361790][ T6494] ? taskstats_exit+0x654/0xbe0 [ 175.361828][ T6494] taskstats_exit+0x654/0xbe0 [ 175.361863][ T6494] ? __pfx_taskstats_exit+0x10/0x10 [ 175.361894][ T6494] ? rcu_is_watching+0x12/0xc0 [ 175.361918][ T6494] ? _raw_spin_unlock_irq+0x23/0x50 [ 175.361953][ T6494] ? lockdep_hardirqs_on+0x7c/0x110 [ 175.361975][ T6494] ? _raw_spin_unlock_irq+0x2e/0x50 [ 175.362013][ T6494] do_exit+0x5d9/0x2bd0 [ 175.362044][ T6494] ? audit_log_end+0x14a/0x2b0 [ 175.362077][ T6494] ? __pfx_do_exit+0x10/0x10 [ 175.362110][ T6494] ? audit_seccomp+0x194/0x1f0 [ 175.362140][ T6494] __secure_computing+0x2d3/0x320 [ 175.362169][ T6494] syscall_trace_enter+0x89/0x260 [ 175.362220][ T6494] do_syscall_64+0x347/0x490 [ 175.362246][ T6494] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.362269][ T6494] RIP: 0033:0x7f5ce058e9a9 [ 175.362286][ T6494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 175.362307][ T6494] RSP: 002b:00007f5ce13a59f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 175.362327][ T6494] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00007f5ce058e9a9 [ 175.362341][ T6494] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 000000000000000b [ 175.362354][ T6494] RBP: 00007f5ce13a6040 R08: 00007f5ce13a7000 R09: 000000000000000b [ 175.362367][ T6494] R10: 0000000000007f06 R11: 0000000000000246 R12: 0000000000000000 [ 175.362380][ T6494] R13: 0000000000000000 R14: 00007f5ce07b5fa0 R15: 00007fff296dcd08 [ 175.362407][ T6494] [ 175.564807][ C0] vkms_vblank_simulate: vblank timer overrun [ 175.599825][ T6493] CPU: 0 UID: 0 PID: 6493 Comm: syz.1.146 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 175.599857][ T6493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 175.599870][ T6493] Call Trace: [ 175.599877][ T6493] [ 175.599885][ T6493] dump_stack_lvl+0x16c/0x1f0 [ 175.599913][ T6493] should_fail_ex+0x512/0x640 [ 175.599936][ T6493] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 175.599963][ T6493] should_failslab+0xc2/0x120 [ 175.599989][ T6493] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 175.600012][ T6493] ? __alloc_skb+0x2b2/0x380 [ 175.600038][ T6493] __alloc_skb+0x2b2/0x380 [ 175.600059][ T6493] ? __pfx___alloc_skb+0x10/0x10 [ 175.600080][ T6493] ? genl_rcv_msg+0x510/0x800 [ 175.600110][ T6493] ? genl_rcv_msg+0x4bb/0x800 [ 175.600149][ T6493] netlink_ack+0x15d/0xb80 [ 175.600184][ T6493] netlink_rcv_skb+0x332/0x420 [ 175.600212][ T6493] ? __pfx_genl_rcv_msg+0x10/0x10 [ 175.600245][ T6493] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 175.600285][ T6493] ? netlink_deliver_tap+0x1ae/0xd30 [ 175.600315][ T6493] genl_rcv+0x28/0x40 [ 175.600343][ T6493] netlink_unicast+0x58a/0x850 [ 175.600374][ T6493] ? __pfx_netlink_unicast+0x10/0x10 [ 175.600410][ T6493] netlink_sendmsg+0x8d1/0xdd0 [ 175.600442][ T6493] ? __pfx_netlink_sendmsg+0x10/0x10 [ 175.600481][ T6493] ____sys_sendmsg+0xa95/0xc70 [ 175.600530][ T6493] ? copy_msghdr_from_user+0x10a/0x160 [ 175.600572][ T6493] ? __pfx_____sys_sendmsg+0x10/0x10 [ 175.600618][ T6493] ___sys_sendmsg+0x134/0x1d0 [ 175.600648][ T6493] ? __pfx____sys_sendmsg+0x10/0x10 [ 175.600670][ T6493] ? __lock_acquire+0x622/0x1c90 [ 175.600738][ T6493] __sys_sendmsg+0x16d/0x220 [ 175.600763][ T6493] ? __pfx___sys_sendmsg+0x10/0x10 [ 175.600807][ T6493] do_syscall_64+0xcd/0x490 [ 175.600839][ T6493] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 175.600862][ T6493] RIP: 0033:0x7fcc9038e9a9 [ 175.600880][ T6493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 175.600902][ T6493] RSP: 002b:00007fcc911d8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 175.600923][ T6493] RAX: ffffffffffffffda RBX: 00007fcc905b5fa0 RCX: 00007fcc9038e9a9 [ 175.600938][ T6493] RDX: 0000000000000890 RSI: 0000200000000340 RDI: 0000000000000004 [ 175.600952][ T6493] RBP: 00007fcc911d8090 R08: 0000000000000000 R09: 0000000000000000 [ 175.600965][ T6493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 175.600978][ T6493] R13: 0000000000000000 R14: 00007fcc905b5fa0 R15: 00007ffeef3961a8 [ 175.601007][ T6493] [ 175.852842][ C0] vkms_vblank_simulate: vblank timer overrun [ 176.128537][ T6505] FAULT_INJECTION: forcing a failure. [ 176.128537][ T6505] name failslab, interval 1, probability 0, space 0, times 0 [ 176.145342][ T6505] CPU: 0 UID: 0 PID: 6505 Comm: syz.1.147 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 176.145372][ T6505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 176.145388][ T6505] Call Trace: [ 176.145395][ T6505] [ 176.145416][ T6505] dump_stack_lvl+0x16c/0x1f0 [ 176.145443][ T6505] should_fail_ex+0x512/0x640 [ 176.145466][ T6505] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 176.145491][ T6505] should_failslab+0xc2/0x120 [ 176.145518][ T6505] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 176.145542][ T6505] ? __pmd_alloc+0xbf/0x930 [ 176.145581][ T6505] __pmd_alloc+0xbf/0x930 [ 176.145614][ T6505] huge_pte_alloc+0x41d/0x5b0 [ 176.145651][ T6505] hugetlb_fault+0x373/0x3070 [ 176.145690][ T6505] ? __pfx_hugetlb_fault+0x10/0x10 [ 176.145735][ T6505] ? find_vma+0xbf/0x140 [ 176.145762][ T6505] ? __pfx_find_vma+0x10/0x10 [ 176.145792][ T6505] handle_mm_fault+0xbfa/0xd10 [ 176.145829][ T6505] ? __pkru_allows_pkey+0x51/0xb0 [ 176.145862][ T6505] do_user_addr_fault+0x7a6/0x1370 [ 176.145897][ T6505] ? rcu_is_watching+0x12/0xc0 [ 176.145924][ T6505] exc_page_fault+0x5c/0xb0 [ 176.145945][ T6505] asm_exc_page_fault+0x26/0x30 [ 176.145967][ T6505] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 176.145999][ T6505] Code: 11 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 176.146019][ T6505] RSP: 0018:ffffc9000b9f77d0 EFLAGS: 00050206 [ 176.146036][ T6505] RAX: 0000000000000001 RBX: 00000000000000c4 RCX: 00000000000000c4 [ 176.146049][ T6505] RDX: ffffed100679d701 RSI: 0000000000000000 RDI: ffff888033ceb740 [ 176.146063][ T6505] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100679d700 [ 176.146076][ T6505] R10: ffff888033ceb803 R11: 0000000000000000 R12: ffffc9000b9f7d60 [ 176.146090][ T6505] R13: 00000000000000c4 R14: ffff888033ceb740 R15: 00007ffffffff000 [ 176.146118][ T6505] _copy_from_iter+0x383/0x16f0 [ 176.146147][ T6505] ? __alloc_skb+0x200/0x380 [ 176.146170][ T6505] ? __pfx__copy_from_iter+0x10/0x10 [ 176.146199][ T6505] ? __lock_acquire+0xb8a/0x1c90 [ 176.146237][ T6505] netlink_sendmsg+0x829/0xdd0 [ 176.146271][ T6505] ? __pfx_netlink_sendmsg+0x10/0x10 [ 176.146310][ T6505] ____sys_sendmsg+0xa95/0xc70 [ 176.146342][ T6505] ? copy_msghdr_from_user+0x10a/0x160 [ 176.146366][ T6505] ? __pfx_____sys_sendmsg+0x10/0x10 [ 176.146402][ T6505] ? __pfx__kstrtoull+0x10/0x10 [ 176.146440][ T6505] ___sys_sendmsg+0x134/0x1d0 [ 176.146465][ T6505] ? __pfx____sys_sendmsg+0x10/0x10 [ 176.146503][ T6505] ? find_held_lock+0x2b/0x80 [ 176.146544][ T6505] __sys_sendmmsg+0x200/0x420 [ 176.146588][ T6505] ? __pfx___sys_sendmmsg+0x10/0x10 [ 176.146620][ T6505] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 176.146671][ T6505] ? fput+0x70/0xf0 [ 176.146711][ T6505] ? ksys_write+0x1ac/0x250 [ 176.146730][ T6505] ? __pfx_ksys_write+0x10/0x10 [ 176.146754][ T6505] __x64_sys_sendmmsg+0x9c/0x100 [ 176.146776][ T6505] ? lockdep_hardirqs_on+0x7c/0x110 [ 176.146796][ T6505] do_syscall_64+0xcd/0x490 [ 176.146819][ T6505] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.146840][ T6505] RIP: 0033:0x7fcc9038e9a9 [ 176.146856][ T6505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 176.146874][ T6505] RSP: 002b:00007fcc911b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 176.146892][ T6505] RAX: ffffffffffffffda RBX: 00007fcc905b6080 RCX: 00007fcc9038e9a9 [ 176.146905][ T6505] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 176.146918][ T6505] RBP: 00007fcc911b7090 R08: 0000000000000000 R09: 0000000000000000 [ 176.146930][ T6505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 176.146942][ T6505] R13: 0000000000000001 R14: 00007fcc905b6080 R15: 00007ffeef3961a8 [ 176.146968][ T6505] [ 176.526054][ C0] vkms_vblank_simulate: vblank timer overrun [ 176.715766][ T6506] netlink: 8 bytes leftover after parsing attributes in process `syz.0.144'. [ 176.891607][ T6514] netlink: 36 bytes leftover after parsing attributes in process `syz.1.151'. [ 177.110913][ T6520] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„ [ 178.867596][ T6541] Invalid ELF header magic: != ELF [ 179.161947][ T6545] FAULT_INJECTION: forcing a failure. [ 179.161947][ T6545] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 179.236174][ T6549] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 179.275709][ T6545] CPU: 0 UID: 0 PID: 6545 Comm: syz.2.159 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 179.275743][ T6545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 179.275757][ T6545] Call Trace: [ 179.275764][ T6545] [ 179.275773][ T6545] dump_stack_lvl+0x16c/0x1f0 [ 179.275801][ T6545] should_fail_ex+0x512/0x640 [ 179.275830][ T6545] should_fail_alloc_page+0xe7/0x130 [ 179.275861][ T6545] prepare_alloc_pages+0x3c2/0x610 [ 179.275895][ T6545] ? rcu_is_watching+0x12/0xc0 [ 179.275923][ T6545] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 179.275950][ T6545] ? __lock_acquire+0xb8a/0x1c90 [ 179.275994][ T6545] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 179.276020][ T6545] ? do_raw_spin_lock+0x12c/0x2b0 [ 179.276058][ T6545] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 179.276097][ T6545] ? find_held_lock+0x2b/0x80 [ 179.276130][ T6545] ? __lock_acquire+0xb8a/0x1c90 [ 179.276162][ T6545] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 179.276201][ T6545] ? policy_nodemask+0xea/0x4e0 [ 179.276231][ T6545] alloc_pages_mpol+0x1fb/0x550 [ 179.276260][ T6545] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 179.276296][ T6545] folio_alloc_mpol_noprof+0x36/0x2f0 [ 179.276331][ T6545] shmem_alloc_folio+0x135/0x160 [ 179.276366][ T6545] shmem_alloc_and_add_folio+0x499/0xc20 [ 179.276413][ T6545] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 179.276456][ T6545] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 179.276485][ T6545] shmem_get_folio_gfp+0x67f/0x1600 [ 179.276514][ T6545] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 179.276540][ T6545] ? filemap_map_pages+0xf6f/0x1680 [ 179.276568][ T6545] shmem_fault+0x1fe/0xa30 [ 179.276591][ T6545] ? __pfx_shmem_fault+0x10/0x10 [ 179.276624][ T6545] ? __pfx_filemap_map_pages+0x10/0x10 [ 179.276670][ T6545] __do_fault+0x10d/0x490 [ 179.276697][ T6545] __handle_mm_fault+0x3c2a/0x5490 [ 179.276740][ T6545] ? __pfx___handle_mm_fault+0x10/0x10 [ 179.276777][ T6545] ? __pte_offset_map_lock+0x174/0x310 [ 179.276806][ T6545] ? find_held_lock+0x2b/0x80 [ 179.276828][ T6545] ? find_held_lock+0x2b/0x80 [ 179.276858][ T6545] ? follow_page_pte+0x3af/0x14c0 [ 179.276896][ T6545] handle_mm_fault+0x589/0xd10 [ 179.276937][ T6545] __get_user_pages+0x589/0x3b80 [ 179.276980][ T6545] ? __pfx___get_user_pages+0x10/0x10 [ 179.277011][ T6545] ? __pfx_down_read_killable+0x10/0x10 [ 179.277043][ T6545] ? __lock_acquire+0x622/0x1c90 [ 179.277077][ T6545] __gup_longterm_locked+0x20d/0x1840 [ 179.277116][ T6545] ? try_get_folio+0x1d2/0x730 [ 179.277144][ T6545] ? __pfx___gup_longterm_locked+0x10/0x10 [ 179.277179][ T6545] ? try_get_folio+0x255/0x730 [ 179.277206][ T6545] ? find_held_lock+0x2b/0x80 [ 179.277229][ T6545] ? sanity_check_pinned_pages+0x3bf/0x1200 [ 179.277266][ T6545] gup_fast_fallback+0x1ab3/0x29e0 [ 179.277318][ T6545] ? __pfx_gup_fast_fallback+0x10/0x10 [ 179.277349][ T6545] ? do_raw_spin_lock+0x12c/0x2b0 [ 179.277387][ T6545] ? find_held_lock+0x2b/0x80 [ 179.277411][ T6545] ? __debug_object_init+0x2de/0x3d0 [ 179.277444][ T6545] ? do_raw_spin_unlock+0x172/0x230 [ 179.277486][ T6545] pin_user_pages_fast+0xa7/0xf0 [ 179.277518][ T6545] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 179.277550][ T6545] ? __lock_acquire+0xb8a/0x1c90 [ 179.277587][ T6545] iov_iter_extract_pages+0x3a2/0x1ed0 [ 179.277626][ T6545] ? do_raw_spin_lock+0x12c/0x2b0 [ 179.277662][ T6545] ? find_held_lock+0x2b/0x80 [ 179.277686][ T6545] ? __pfx_iov_iter_extract_pages+0x10/0x10 [ 179.277718][ T6545] ? find_held_lock+0x2b/0x80 [ 179.277742][ T6545] ? bio_associate_blkg_from_css+0x394/0x13e0 [ 179.277785][ T6545] bio_iov_iter_get_pages+0x384/0x10d0 [ 179.277818][ T6545] ? bio_associate_blkg+0x137/0x2a0 [ 179.277863][ T6545] ? __pfx_bio_iov_iter_get_pages+0x10/0x10 [ 179.277895][ T6545] ? __pfx_bio_alloc_bioset+0x10/0x10 [ 179.277925][ T6545] ? rcu_is_watching+0x12/0xc0 [ 179.277949][ T6545] ? iov_iter_is_aligned+0xf2/0x5a0 [ 179.277969][ T6545] ? set_normalized_timespec64+0x69/0xc0 [ 179.278002][ T6545] blkdev_direct_IO+0x1409/0x1ff0 [ 179.278037][ T6545] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 179.278064][ T6545] ? filemap_check_errors+0xa9/0x160 [ 179.278105][ T6545] blkdev_write_iter+0x6fd/0xdf0 [ 179.278134][ T6545] vfs_write+0x6c4/0x1150 [ 179.278157][ T6545] ? __pfx_blkdev_write_iter+0x10/0x10 [ 179.278183][ T6545] ? __pfx_vfs_write+0x10/0x10 [ 179.278202][ T6545] ? find_held_lock+0x2b/0x80 [ 179.278242][ T6545] ksys_write+0x12a/0x250 [ 179.278263][ T6545] ? __pfx_ksys_write+0x10/0x10 [ 179.278293][ T6545] do_syscall_64+0xcd/0x490 [ 179.278319][ T6545] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.278343][ T6545] RIP: 0033:0x7f47b5d8e9a9 [ 179.278361][ T6545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.278382][ T6545] RSP: 002b:00007f47b3bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 179.278403][ T6545] RAX: ffffffffffffffda RBX: 00007f47b5fb5fa0 RCX: 00007f47b5d8e9a9 [ 179.278418][ T6545] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003 [ 179.278431][ T6545] RBP: 00007f47b5e10d69 R08: 0000000000000000 R09: 0000000000000000 [ 179.278444][ T6545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 179.278457][ T6545] R13: 0000000000000000 R14: 00007f47b5fb5fa0 R15: 00007ffefe5cf6c8 [ 179.278486][ T6545] [ 179.891385][ T6555] vivid-007: ================= START STATUS ================= [ 179.899202][ T6555] vivid-007: Generate PTS: true [ 179.904319][ T6555] vivid-007: Generate SCR: true [ 179.909205][ T6555] tpg source WxH: 320x240 (Y'CbCr) [ 179.914409][ T6555] tpg field: 1 [ 179.917790][ T6555] tpg crop: (0,0)/320x240 [ 179.922131][ T6555] tpg compose: (0,0)/320x240 [ 179.926830][ T6555] tpg colorspace: 8 [ 179.930647][ T6555] tpg transfer function: 0/0 [ 179.935314][ T6555] tpg Y'CbCr encoding: 0/0 [ 179.939838][ T6555] tpg quantization: 0/0 [ 179.944120][ T6555] tpg RGB range: 0/2 [ 179.948035][ T6555] vivid-007: ================== END STATUS ================== [ 180.907014][ T6565] FAULT_INJECTION: forcing a failure. [ 180.907014][ T6565] name fail_futex, interval 1, probability 0, space 0, times 1 [ 180.993118][ T6565] CPU: 0 UID: 0 PID: 6565 Comm: syz.3.162 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 180.993156][ T6565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 180.993170][ T6565] Call Trace: [ 180.993177][ T6565] [ 180.993186][ T6565] dump_stack_lvl+0x16c/0x1f0 [ 180.993213][ T6565] should_fail_ex+0x512/0x640 [ 180.993241][ T6565] should_fail_futex+0x4c/0x60 [ 180.993268][ T6565] __x64_sys_futex+0x25e/0x4c0 [ 180.993300][ T6565] ? __pfx___x64_sys_futex+0x10/0x10 [ 180.993329][ T6565] ? xfd_validate_state+0x61/0x180 [ 180.993370][ T6565] do_syscall_64+0xcd/0x490 [ 180.993397][ T6565] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.993420][ T6565] RIP: 0033:0x7f5ce058e9a9 [ 180.993438][ T6565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.993460][ T6565] RSP: 002b:00007fff296dce68 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 180.993481][ T6565] RAX: ffffffffffffffda RBX: 000000000002c262 RCX: 00007f5ce058e9a9 [ 180.993496][ T6565] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5ce07b5fac [ 180.993509][ T6565] RBP: 0000000000000032 R08: 00007f5ce13a7000 R09: 00000017296dd15f [ 180.993524][ T6565] R10: 00007fff296dcf60 R11: 0000000000000246 R12: 00007f5ce07b5fac [ 180.993538][ T6565] R13: 00007fff296dcf60 R14: 000000000002c294 R15: 00007fff296dcf80 [ 180.993566][ T6565] [ 182.870800][ T6577] [ 182.873177][ T6577] ====================================================== [ 182.880199][ T6577] WARNING: possible circular locking dependency detected [ 182.887222][ T6577] 6.16.0-syzkaller #0 Not tainted [ 182.892262][ T6577] ------------------------------------------------------ [ 182.899280][ T6577] syz.2.166/6577 is trying to acquire lock: [ 182.905176][ T6577] ffffffff8e72a5a8 (pcpu_alloc_mutex){+.+.}-{4:4}, at: pcpu_alloc_noprof+0xb4c/0x1470 [ 182.914766][ T6577] [ 182.914766][ T6577] but task is already holding lock: [ 182.922134][ T6577] ffff888142b400a8 (&q->q_usage_counter(io)#30){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 182.933405][ T6577] [ 182.933405][ T6577] which lock already depends on the new lock. [ 182.933405][ T6577] [ 182.943833][ T6577] [ 182.943833][ T6577] the existing dependency chain (in reverse order) is: [ 182.952847][ T6577] [ 182.952847][ T6577] -> #2 (&q->q_usage_counter(io)#30){++++}-{0:0}: [ 182.961477][ T6577] blk_alloc_queue+0x619/0x760 [ 182.966781][ T6577] blk_mq_alloc_queue+0x175/0x290 [ 182.972337][ T6577] __blk_mq_alloc_disk+0x29/0x120 [ 182.977893][ T6577] loop_add+0x49e/0xb70 [ 182.982594][ T6577] loop_init+0x164/0x270 [ 182.987393][ T6577] do_one_initcall+0x120/0x6e0 [ 182.992687][ T6577] kernel_init_freeable+0x5c2/0x900 [ 182.998424][ T6577] kernel_init+0x1c/0x2b0 [ 183.003309][ T6577] ret_from_fork+0x5d4/0x6f0 [ 183.008459][ T6577] ret_from_fork_asm+0x1a/0x30 [ 183.013758][ T6577] [ 183.013758][ T6577] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 183.021012][ T6577] fs_reclaim_acquire+0x102/0x150 [ 183.026586][ T6577] prepare_alloc_pages+0x162/0x610 [ 183.032250][ T6577] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 183.038678][ T6577] __alloc_pages_noprof+0xb/0x1b0 [ 183.044230][ T6577] pcpu_populate_chunk+0x110/0xb00 [ 183.049883][ T6577] pcpu_alloc_noprof+0x86a/0x1470 [ 183.055457][ T6577] xt_percpu_counter_alloc+0x13e/0x1b0 [ 183.061477][ T6577] find_check_entry.constprop.0+0xbc/0x9b0 [ 183.067828][ T6577] translate_table+0xc98/0x1720 [ 183.073214][ T6577] ipt_register_table+0x102/0x430 [ 183.078775][ T6577] iptable_security_table_init+0x40/0x60 [ 183.084941][ T6577] xt_find_table_lock+0x2e1/0x520 [ 183.090510][ T6577] xt_request_find_table_lock+0x28/0xf0 [ 183.096600][ T6577] get_info+0x190/0x610 [ 183.101304][ T6577] do_ipt_get_ctl+0x169/0xa10 [ 183.106518][ T6577] nf_getsockopt+0x79/0xe0 [ 183.111486][ T6577] ip_getsockopt+0x18c/0x1e0 [ 183.116630][ T6577] tcp_getsockopt+0x9e/0x100 [ 183.121750][ T6577] do_sock_getsockopt+0x34a/0x440 [ 183.127310][ T6577] __sys_getsockopt+0x123/0x1b0 [ 183.132693][ T6577] __x64_sys_getsockopt+0xbd/0x160 [ 183.138339][ T6577] do_syscall_64+0xcd/0x490 [ 183.143377][ T6577] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.149803][ T6577] [ 183.149803][ T6577] -> #0 (pcpu_alloc_mutex){+.+.}-{4:4}: [ 183.157557][ T6577] __lock_acquire+0x126f/0x1c90 [ 183.162967][ T6577] lock_acquire+0x179/0x350 [ 183.168009][ T6577] __mutex_lock+0x199/0xb90 [ 183.173043][ T6577] pcpu_alloc_noprof+0xb4c/0x1470 [ 183.178596][ T6577] blk_stat_alloc_callback+0xc8/0x280 [ 183.184517][ T6577] wbt_init+0xac/0x540 [ 183.189121][ T6577] queue_wb_lat_store+0x354/0x3d0 [ 183.194678][ T6577] queue_attr_store+0x276/0x320 [ 183.200074][ T6577] sysfs_kf_write+0xf2/0x150 [ 183.205221][ T6577] kernfs_fop_write_iter+0x354/0x510 [ 183.211062][ T6577] vfs_write+0x6c4/0x1150 [ 183.215953][ T6577] ksys_write+0x12a/0x250 [ 183.220826][ T6577] do_syscall_64+0xcd/0x490 [ 183.225876][ T6577] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.232326][ T6577] [ 183.232326][ T6577] other info that might help us debug this: [ 183.232326][ T6577] [ 183.242560][ T6577] Chain exists of: [ 183.242560][ T6577] pcpu_alloc_mutex --> fs_reclaim --> &q->q_usage_counter(io)#30 [ 183.242560][ T6577] [ 183.256255][ T6577] Possible unsafe locking scenario: [ 183.256255][ T6577] [ 183.263711][ T6577] CPU0 CPU1 [ 183.269083][ T6577] ---- ---- [ 183.274467][ T6577] lock(&q->q_usage_counter(io)#30); [ 183.279878][ T6577] lock(fs_reclaim); [ 183.286579][ T6577] lock(&q->q_usage_counter(io)#30); [ 183.294489][ T6577] lock(pcpu_alloc_mutex); [ 183.299019][ T6577] [ 183.299019][ T6577] *** DEADLOCK *** [ 183.299019][ T6577] [ 183.307164][ T6577] 6 locks held by syz.2.166/6577: [ 183.312190][ T6577] #0: ffff888029e830b8 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370 [ 183.321267][ T6577] #1: ffff88803189a428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 183.330271][ T6577] #2: ffff88806047fc88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 183.340051][ T6577] #3: ffff888141f951e8 (kn->active#93){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 183.350117][ T6577] #4: ffff888142b400a8 (&q->q_usage_counter(io)#30){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 183.361825][ T6577] #5: ffff888142b400e0 (&q->q_usage_counter(queue)#20){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 183.373792][ T6577] [ 183.373792][ T6577] stack backtrace: [ 183.379684][ T6577] CPU: 0 UID: 0 PID: 6577 Comm: syz.2.166 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 183.379711][ T6577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 183.379726][ T6577] Call Trace: [ 183.379737][ T6577] [ 183.379758][ T6577] dump_stack_lvl+0x116/0x1f0 [ 183.379782][ T6577] print_circular_bug+0x275/0x350 [ 183.379831][ T6577] check_noncircular+0x14c/0x170 [ 183.379866][ T6577] __lock_acquire+0x126f/0x1c90 [ 183.379908][ T6577] lock_acquire+0x179/0x350 [ 183.379939][ T6577] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 183.379962][ T6577] ? __pfx___might_resched+0x10/0x10 [ 183.379987][ T6577] ? ksys_write+0x12a/0x250 [ 183.380007][ T6577] ? do_syscall_64+0xcd/0x490 [ 183.380029][ T6577] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.380058][ T6577] __mutex_lock+0x199/0xb90 [ 183.380084][ T6577] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 183.380106][ T6577] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 183.380127][ T6577] ? __pfx___mutex_lock+0x10/0x10 [ 183.380159][ T6577] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 183.380179][ T6577] pcpu_alloc_noprof+0xb4c/0x1470 [ 183.380204][ T6577] ? __pfx_wbt_data_dir+0x10/0x10 [ 183.380227][ T6577] ? __pfx_wb_timer_fn+0x10/0x10 [ 183.380254][ T6577] blk_stat_alloc_callback+0xc8/0x280 [ 183.380282][ T6577] ? kasan_save_track+0x14/0x30 [ 183.380306][ T6577] wbt_init+0xac/0x540 [ 183.380336][ T6577] queue_wb_lat_store+0x354/0x3d0 [ 183.380362][ T6577] ? __pfx_queue_wb_lat_store+0x10/0x10 [ 183.380388][ T6577] ? __mutex_trylock_common+0xe9/0x250 [ 183.380423][ T6577] ? __pfx_queue_wb_lat_store+0x10/0x10 [ 183.380448][ T6577] queue_attr_store+0x276/0x320 [ 183.380474][ T6577] ? __pfx_queue_attr_store+0x10/0x10 [ 183.380499][ T6577] ? __lock_acquire+0x622/0x1c90 [ 183.380537][ T6577] ? find_held_lock+0x2b/0x80 [ 183.380560][ T6577] ? sysfs_file_kobj+0xe4/0x290 [ 183.380595][ T6577] ? __pfx_queue_attr_store+0x10/0x10 [ 183.380620][ T6577] sysfs_kf_write+0xf2/0x150 [ 183.380653][ T6577] kernfs_fop_write_iter+0x354/0x510 [ 183.380683][ T6577] ? __pfx_sysfs_kf_write+0x10/0x10 [ 183.380717][ T6577] vfs_write+0x6c4/0x1150 [ 183.380737][ T6577] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 183.380768][ T6577] ? __pfx___mutex_lock+0x10/0x10 [ 183.380793][ T6577] ? __pfx_vfs_write+0x10/0x10 [ 183.380823][ T6577] ksys_write+0x12a/0x250 [ 183.380844][ T6577] ? __pfx_ksys_write+0x10/0x10 [ 183.380869][ T6577] do_syscall_64+0xcd/0x490 [ 183.380900][ T6577] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.380923][ T6577] RIP: 0033:0x7f47b5d8e9a9 [ 183.380941][ T6577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.380963][ T6577] RSP: 002b:00007f47b3bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 183.380984][ T6577] RAX: ffffffffffffffda RBX: 00007f47b5fb5fa0 RCX: 00007f47b5d8e9a9 [ 183.380999][ T6577] RDX: 0000000000000081 RSI: 0000200000000040 RDI: 0000000000000004 [ 183.381013][ T6577] RBP: 00007f47b5e10d69 R08: 0000000000000000 R09: 0000000000000000 [ 183.381026][ T6577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 183.381040][ T6577] R13: 0000000000000000 R14: 00007f47b5fb5fa0 R15: 00007ffefe5cf6c8 [ 183.381061][ T6577]