last executing test programs: 14.66794437s ago: executing program 3 (id=785): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) socket(0x8, 0x800, 0x7) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x4, 0x40000001ff, 0x49, 0x6) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r0 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f00000002c0), 0x50000, 0x0) read$auto_dev_fops_plock(r0, &(0x7f00000001c0)=""/132, 0x84) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x300, 0x0) mmap$auto(0x4, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/net/rpc/auth.rpcsec.context/channel\x00', 0x80, 0x0) pread64$auto(r1, 0x0, 0x1ff, 0xf4) adjtimex$auto(&(0x7f00000004c0)={0xf33ab6e, 0x0, 0x0, 0xfffffffffffffffd, 0x1, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10000}, 0x3, 0x20000000006, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x83, 0x0, 0xa746, 0xdeb5, 0x1800}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) bpf$auto(0x17, &(0x7f0000000040)=@bpf_attr_7={@btf_id=0x200003, 0xe, 0xed12000}, 0x35) socket$nl_generic(0x10, 0x3, 0x10) setuid$auto(0x800000000008) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/devices/virtual/net/rose2/addr_len\x00', 0x2000, 0x0) memfd_secret$auto(0x0) ioctl$auto_IMADDTIMER(0xffffffffffffffff, 0x80044940, 0x0) select$auto(0x1, &(0x7f0000000040)={[0xffffffff00000001, 0xfffffffffffffff7, 0x100, 0x7fff, 0x79, 0x3, 0x9, 0x6, 0xa80d, 0x8000000010000, 0x0, 0x0, 0x9, 0x0, 0x8, 0xd133]}, 0x0, 0x0, &(0x7f00000000c0)={0x100}) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/conf/batadv0/disable_policy\x00', 0x101000, 0x0) preadv$auto(r3, &(0x7f0000000240)={0x0, 0x6}, 0xc, 0x9, 0x400) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000002140), 0xa002, 0x0) select$auto(0x1, &(0x7f0000000340)={[0x6, 0x8, 0x4, 0x2, 0x3, 0x3ff, 0x100000001, 0x5, 0x9, 0xfffffffffffffff7, 0xfffffffffffffff8, 0x3, 0x0, 0x0, 0x5, 0xffff]}, &(0x7f0000000440)={[0x1, 0xb, 0x1, 0xfffffffffffffff7, 0x1000, 0x0, 0xe, 0x800, 0x101, 0x10000, 0x3, 0x3, 0x5, 0xbc, 0x6, 0x1]}, &(0x7f00000006c0)={[0x7, 0x3384, 0x8, 0x6, 0x8, 0x1, 0x8000000000000000, 0x2, 0xffffffffffffffff, 0x80000000, 0xc18, 0x100000000, 0x3, 0x9, 0x1, 0x1]}, &(0x7f0000000180)={0x9c, 0x19b}) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff) madvise$auto_MADV_UNMERGEABLE(0x7, 0x10000b5, 0xd) write$auto(0x3, 0x0, 0xfffffdef) write$auto(0x3, 0x0, 0xfffffdef) 11.468415103s ago: executing program 3 (id=792): openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x96141, 0x0) r0 = socket(0x1b, 0x3, 0x76) madvise$auto(0x0, 0x2000040080000003, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000040)='//\xf2\x00', 0x80000000) getsockopt$auto_SO_RCVPRIORITY(r0, 0x2, 0x52, 0x0, &(0x7f0000000240)=0x7) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r4 = socket(0x2, 0x801, 0x106) r5 = socket(0xa, 0x2, 0x0) setsockopt$auto(r5, 0x2000, 0x4, 0x0, 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socketpair$auto(0xfffffffc, 0x2, 0x2006, 0x0) r6 = socket(0x11, 0x80003, 0x200300) setsockopt$auto(r6, 0x107, 0x18, 0x0, 0x9) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$auto(r4, 0x11c, 0x2, 0x0, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x100}, 0x1) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), r3) socket(0x10, 0x2, 0x0) socket(0x18, 0x5, 0x2) connect$auto(0x3, &(0x7f00000000c0), 0x52) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card2/midi0\x00', 0x121040, 0x0) 7.969999174s ago: executing program 1 (id=798): mmap$auto(0x0, 0x400008, 0x1000, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x6, 0x100000000, 0xfffffffffffffffc, 0xa) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000080), r1) sendmsg$auto_IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x805}, 0x40850) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/self/status\x00', 0x40000, 0x0) socket(0x11, 0x80003, 0x300) sendmsg$auto_NLBL_MGMT_C_REMOVE(r0, 0x0, 0x4000) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) syz_genetlink_get_family_id$auto_nfsd(0x0, r0) sendmsg$auto_NFSD_CMD_RPC_STATUS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x4044001}, 0x80) close_range$auto(0x2, 0x8, 0x0) r2 = io_uring_setup$auto(0x10000, 0x0) sendmsg$auto_HSR_C_GET_NODE_LIST(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x3c, 0x0, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@HSR_A_IF2_AGE={0x8, 0x4, 0x8}, @HSR_A_IF1_SEQ={0x6, 0x6, 0xe}, @HSR_A_IF1_AGE={0x8, 0x3, 0xbc5}, @HSR_A_IF2_AGE={0x8, 0x4, 0x7}, @HSR_A_IF1_SEQ={0x6}]}, 0x3c}, 0x1, 0x0, 0x0, 0x810}, 0x8000) r3 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) socket(0x11, 0xa, 0x300) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd8/queue/iosched/async_depth\x00', 0x40800, 0x0) sendmmsg$auto(0x4, 0x0, 0xffffff01, 0xa) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00) close_range$auto(r2, r3, 0x4) ioctl$auto(0xffffffffffffffff, 0x400454c9, 0xffffffffffffffff) fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0) 6.822109008s ago: executing program 1 (id=800): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) socket(0x8, 0x800, 0x7) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x4, 0x40000001ff, 0x49, 0x6) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r0 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f00000002c0), 0x50000, 0x0) read$auto_dev_fops_plock(r0, &(0x7f00000001c0)=""/132, 0x84) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x300, 0x0) mmap$auto(0x4, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/net/rpc/auth.rpcsec.context/channel\x00', 0x80, 0x0) pread64$auto(r1, 0x0, 0x1ff, 0xf4) adjtimex$auto(&(0x7f00000004c0)={0xf33ab6e, 0x0, 0x0, 0xfffffffffffffffd, 0x1, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10000}, 0x3, 0x20000000006, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x83, 0x0, 0xa746, 0xdeb5, 0x1800}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) bpf$auto(0x17, &(0x7f0000000040)=@bpf_attr_7={@btf_id=0x200003, 0xe, 0xed12000}, 0x35) socket$nl_generic(0x10, 0x3, 0x10) setuid$auto(0x800000000008) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/devices/virtual/net/rose2/addr_len\x00', 0x2000, 0x0) memfd_secret$auto(0x0) ioctl$auto_IMADDTIMER(0xffffffffffffffff, 0x80044940, 0x0) select$auto(0x1, &(0x7f0000000040)={[0xffffffff00000001, 0xfffffffffffffff7, 0x100, 0x7fff, 0x79, 0x3, 0x9, 0x6, 0xa80d, 0x8000000010000, 0x0, 0x0, 0x9, 0x0, 0x8, 0xd133]}, 0x0, 0x0, &(0x7f00000000c0)={0x100}) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/conf/batadv0/disable_policy\x00', 0x101000, 0x0) preadv$auto(r3, &(0x7f0000000240)={0x0, 0x6}, 0xc, 0x9, 0x400) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000002140), 0xa002, 0x0) select$auto(0x1, &(0x7f0000000340)={[0x6, 0x8, 0x4, 0x2, 0x3, 0x3ff, 0x100000001, 0x5, 0x9, 0xfffffffffffffff7, 0xfffffffffffffff8, 0x3, 0x0, 0x0, 0x5, 0xffff]}, &(0x7f0000000440)={[0x1, 0xb, 0x1, 0xfffffffffffffff7, 0x1000, 0x0, 0xe, 0x800, 0x101, 0x10000, 0x3, 0x3, 0x5, 0xbc, 0x6, 0x1]}, &(0x7f00000006c0)={[0x7, 0x3384, 0x8, 0x6, 0x8, 0x1, 0x8000000000000000, 0x2, 0xffffffffffffffff, 0x80000000, 0xc18, 0x100000000, 0x3, 0x9, 0x1, 0x1]}, &(0x7f0000000180)={0x9c, 0x19b}) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff) madvise$auto_MADV_UNMERGEABLE(0x7, 0x10000b5, 0xd) write$auto(0x3, 0x0, 0xfffffdef) write$auto(0x3, 0x0, 0xfffffdef) 5.853267886s ago: executing program 0 (id=801): r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0xc4600, 0x0) ioprio_set$auto(0x3, 0x0, 0x4b34) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xfffffffffffefffd, 0x17) flock$auto(0x6, 0x1) sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="770e0000", @ANYRES16=0x0, @ANYBLOB="080028bd7000fddbdf250300000008000600020000000c0014"], 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x405b) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc005}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa507}, 0x800}, 0x7, 0x8) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2) read$auto_proc_pid_maps_operations_internal(r0, &(0x7f00000010c0)=""/4096, 0x1000) close_range$auto(0x2, 0x8000, 0x0) 5.850126925s ago: executing program 3 (id=802): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40005, 0xdf, 0x9b72, 0x7, 0x28000) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000380), 0x400, 0x0) ioctl$auto_UI_SET_LEDBIT(r0, 0x40045569, 0x0) socket(0x25, 0x800, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = getpgid(0xffffffffffffffff) prctl$auto(0x3e, 0x1, r2, 0x100000000000001, 0xb6f) open(0x0, 0x14d27e, 0x72) socket(0x1e, 0x1, 0x0) socket(0x1f, 0x6, 0x2) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x42080, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x5, 0x0) r3 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) getsockopt$auto(r3, 0x84, 0x1d, 0x0, 0x0) close_range$auto(0x2, 0xa, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xffff, 0x0, 0x0, 0x0, 0x0) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/smaps_rollup\x00', 0x56cc3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) settimeofday$auto(0x0, 0x0) madvise$auto(0xffffffffffffff7f, 0x8031ca, 0x9) socket(0x1d, 0x3, 0x1) r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x149441, 0x0) write$auto_proc_reg_file_ops_compat_inode(r4, 0x0, 0x0) 5.416330977s ago: executing program 2 (id=803): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(&(0x7f0000000000)="3b50ea6b7e3e528300dadce21e9b8ac6c95dce63d9019ff0401db82a5aa63540b6516f93e4cb399e9e7f69bebdb28d589344eaa6856fd56504c238f4a9d46c2b29bfb14602bdd9e71f1e639ef8f205c443811c04595b40d1ecb58d9736d5c219e55d5c790d42b2649f14025cf077707cfbb4183f0a9518f218a2f53baebd4d3b5b1ad9034957426449775c1145dbc34aad7864c82c2f", 0x10000, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0x0, 0x0) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = socket(0x11, 0x3, 0x9) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80302, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0xcfd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'hsr0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r3, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r3, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="1b4088b31e2e70afbf6b1de2615de930907d82f981f040d25bc756d966d6f8dac3d963250d391d09004a2ccd13f2101cc51732b9f9b4c9fd5d81ae198311801e5c94cf5fc3ca7045b18443014d37bb5faa9970363c37cc", @ANYRES16=0x0, @ANYBLOB="28062cbd7000fedbdf25100000000800090009000000080006000900000005000d006f000000"], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x40080c4) close_range$auto(0x2, 0x8, 0x0) socket(0x2b, 0x1, 0x1) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_XFS_IOC_FSBULKSTAT_SINGLE(0xffffffffffffffff, 0xc0205866, &(0x7f0000000100)={&(0x7f00000000c0)=0xffffffffffffffff, 0x7fff, 0x0, 0x0}) 4.928462981s ago: executing program 1 (id=804): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x400, 0x2000000000004, 0x0, 0xfffffffffd, 0xd) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000180)=""/68, 0x44) syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r1) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0) pread64$auto(r2, 0x0, 0x8, 0x26c) sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r1, 0x0, 0x20000000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f0000000140)) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) ioctl$auto(r1, 0x57, r0) getgid() mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r4 = getpid() openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0) process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x80000000000000a, 0x2, 0x0) socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90) 4.154633889s ago: executing program 2 (id=805): capset$auto(0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, 0x0, 0x44) socket(0x29, 0x2, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0) listen$auto(r0, 0x611e) r1 = socket(0xa, 0x2, 0x73) getsockname$auto(r1, 0x0, &(0x7f0000000280)=0xaea) syz_genetlink_get_family_id$auto_net_dm(&(0x7f0000000000), r1) memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5) socketpair$auto(0x20, 0x1005, 0x1b, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x200007, 0x19) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) madvise$auto(0x0, 0xffffffffffff0001, 0x15) io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0xffffffffffffffbc, 0xffb, 0x8000000008012, 0x3, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0x4010ae68, 0x38) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/self/net/kcm_stats\x00', 0x8282, 0x0) read$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000040)=""/19, 0x13) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/addr_gen_mode\x00', 0xa0202, 0x0) ioctl$auto(0xffffffffffffffff, 0x4b68, r4) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0) 4.116883267s ago: executing program 0 (id=806): mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000080)={0x0, 0x4}, 0xb) bpf$auto(0x1, 0x0, 0x4) unshare$auto(0x40000080) r2 = socket(0x2b, 0x1, 0x1) getsockopt$auto(r2, 0x0, 0xb, &(0x7f0000000000)='\x00', &(0x7f0000000040)=0x1) 3.623522516s ago: executing program 3 (id=807): close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/net/erspan0/queues/tx-0/byte_queue_limits/hold_time\x00', 0x2, 0x0) unshare$auto(0x40000080) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f000000c380)={0x60, 0x1, 0x87, 0x7fffffffefff, 0x0, 0x9, 0x54906bd6, 0xfffffffffffffffb, 0xffffffffffffffff, 0x8, 0x0, 0x9}) open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(0x3, 0x400, 0x9ec0000000000000) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x12d83, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0) r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x20282, 0x0) ioctl$auto_UI_DEV_SETUP(r1, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x9, 0x80}, "6a034a07c7b8edb8fc3b39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x6}) ioctl$auto_UI_DEV_CREATE(r1, 0x5501, 0x0) r2 = dup$auto(0xffffffffffffffff) unshare$auto(0x40000080) openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x0, 0x0) mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x9, 0xdf, 0x517b, r2, 0x1000) r3 = socket(0x15, 0x1, 0x3) close_range$auto(0x2, 0xa, 0x0) getsockopt$auto(r3, 0x0, 0xd0, 0x0, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0) read$auto(r4, 0x0, 0x20) close_range$auto(0x2, 0x8, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vbi21\x00', 0x149800, 0x0) openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x2, 0x0) write$auto(0x3, 0x0, 0x6) 3.440313516s ago: executing program 1 (id=808): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_NEW(r0, &(0x7f0000001280)={0x0, 0x300, &(0x7f0000001240)={&(0x7f0000000080)={0x20, r1, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_UFID_FLAGS={0x8, 0xa, 0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x40) 3.363845758s ago: executing program 1 (id=809): sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) socket(0xa, 0x1, 0x100) ioperm$auto(0x7, 0x5ad2, 0x8) open(0x0, 0x161342, 0x100) modify_ldt$auto(0x1, 0x0, 0x10) socket(0xb497b5eebe3a9d0, 0xa, 0xd7) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x9c, 0xf4, 0xb0, @raw=0x89de}}) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x21, 0x3, 0x6) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1f7, 0x100000000000007, 0xd, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x401, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0x101, 0x0, 0x0, &(0x7f00000002c0)={[0x2, 0xa, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x7, 0xffffffffffffffff, 0x62, 0x8000201f, 0x7, 0x6d3d, 0x9, 0x2, 0x8000006]}, 0x0) recvfrom$auto(0xffffffffffffffff, &(0x7f0000000180), 0x3ff, 0x73, &(0x7f0000000200)=@l2tp={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x39}}, &(0x7f0000000240)=0xd0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x60800, 0x0) read$auto_vmwgfx_driver_fops_vmwgfx_drv(r2, &(0x7f0000000280)=""/49, 0x31) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2a, 0x5, 0x0) socketpair$auto(0x1e, 0x1, 0x0, 0x0) r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0xa200, 0x0) ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0) ioctl$auto_TCFLSH2(r3, 0x8924, 0x0) 3.091699727s ago: executing program 0 (id=810): syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) r0 = set_tid_address$auto(0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/acpi/parameters/ec_event_clearing\x00', 0x129882, 0x0) sendfile$auto(r1, r1, 0x0, 0x3) listen$auto(r1, 0x46) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/memfd_noexec\x00', 0x1883df202e4c8e0b, 0x0) pwrite64$auto(0xffffffffffffffff, &(0x7f0000000340)='\xfcA8\xdc\xe8\x04\x93\x86d\xb3\xeb/\x8b\xea:@\xc8`O*\xb1y\x13\xd2,`\xf1\xdf\xd2\x82a\xbb\xc8\x10\x12\x98\x03\x81\x8aI\xc4z+\xa7\x91\xc5\xd8\xce5O\xdf\x99j\x17\xed\xf9\xc3\\*\xc6(\xed/\xee\xee\x9a\xbe\xc3\xce[\x01sf\x01\xf9\xd0T\xaf\x9dW\x10\xe4\xf3\x8f\x14F\r;\x19\x8a2N\xc3\xf5i0L^\x9b\x91\x14-\x96\xf0\xdc\x83\x16\xfa\xac\xf9\xcf\t\xd6\xe15\x99,\xcbd\aYGE\xfe\xf3\xa4\x01\x8f\xd6\xcf(O\xad\xdbj\xc0\xdb\xa3\x9e\x86^\xe9\xdb\x8f\xf5\xff\xee\xd7\xa4\xecJD)1\x96\xf7\xf8\x1bm\xb9\x90\xdbgK\xbf\x95o\xe0\xd9_\x92\xa7\xb4*\x86\xe5\xb1\x0f\x01\xe1\x83\xe5.\xe2\xde1\xe7\x99\xe7\b\xa1\x92\xd4\xd9\xf2\x04Jf\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'hsr0\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r3, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r3, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="1b4088b31e2e70afbf6b1de2615de930907d82f981f040d25bc756d966d6f8dac3d963250d391d09004a2ccd13f2101cc51732b9f9b4c9fd5d81ae198311801e5c94cf5fc3ca7045b18443014d37bb5faa9970363c37cc", @ANYRES16=0x0, @ANYBLOB="28062cbd7000fedbdf25100000000800090009000000080006000900000005000d006f000000"], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x40080c4) close_range$auto(0x2, 0x8, 0x0) socket(0x2b, 0x1, 0x1) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_XFS_IOC_FSBULKSTAT_SINGLE(0xffffffffffffffff, 0xc0205866, &(0x7f0000000100)={&(0x7f00000000c0)=0xffffffffffffffff, 0x7fff, 0x0, 0x0}) 1.718483873s ago: executing program 2 (id=815): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) socket(0x8, 0x800, 0x7) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x4, 0x40000001ff, 0x49, 0x6) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r0 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f00000002c0), 0x50000, 0x0) read$auto_dev_fops_plock(r0, &(0x7f00000001c0)=""/132, 0x84) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x300, 0x0) mmap$auto(0x4, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/net/rpc/auth.rpcsec.context/channel\x00', 0x80, 0x0) pread64$auto(r1, 0x0, 0x1ff, 0xf4) adjtimex$auto(&(0x7f00000004c0)={0xf33ab6e, 0x0, 0x0, 0xfffffffffffffffd, 0x1, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10000}, 0x3, 0x20000000006, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x83, 0x0, 0xa746, 0xdeb5, 0x1800}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) bpf$auto(0x17, &(0x7f0000000040)=@bpf_attr_7={@btf_id=0x200003, 0xe, 0xed12000}, 0x35) socket$nl_generic(0x10, 0x3, 0x10) setuid$auto(0x800000000008) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/devices/virtual/net/rose2/addr_len\x00', 0x2000, 0x0) memfd_secret$auto(0x0) ioctl$auto_IMADDTIMER(0xffffffffffffffff, 0x80044940, 0x0) select$auto(0x1, &(0x7f0000000040)={[0xffffffff00000001, 0xfffffffffffffff7, 0x100, 0x7fff, 0x79, 0x3, 0x9, 0x6, 0xa80d, 0x8000000010000, 0x0, 0x0, 0x9, 0x0, 0x8, 0xd133]}, 0x0, &(0x7f00000001c0)={[0x800000000, 0x2, 0x80000012, 0x2, 0x4e4bcd3b, 0x8, 0x8, 0x1, 0x5, 0x3, 0xfffffffffffffffe, 0x1, 0xffffffff00000001, 0xe25, 0x48, 0x8]}, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/conf/batadv0/disable_policy\x00', 0x101000, 0x0) preadv$auto(r3, &(0x7f0000000240)={0x0, 0x6}, 0xc, 0x9, 0x400) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000002140), 0xa002, 0x0) select$auto(0x1, &(0x7f0000000340)={[0x6, 0x8, 0x4, 0x2, 0x3, 0x3ff, 0x100000001, 0x5, 0x9, 0xfffffffffffffff7, 0xfffffffffffffff8, 0x3, 0x0, 0x0, 0x5, 0xffff]}, &(0x7f0000000440)={[0x1, 0xb, 0x1, 0xfffffffffffffff7, 0x1000, 0x0, 0xe, 0x800, 0x101, 0x10000, 0x3, 0x3, 0x5, 0xbc, 0x6, 0x1]}, &(0x7f00000006c0)={[0x7, 0x3384, 0x8, 0x6, 0x8, 0x1, 0x8000000000000000, 0x2, 0xffffffffffffffff, 0x80000000, 0xc18, 0x100000000, 0x3, 0x9, 0x1, 0x1]}, &(0x7f0000000180)={0x9c, 0x19b}) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff) madvise$auto_MADV_UNMERGEABLE(0x7, 0x10000b5, 0xd) write$auto(0x3, 0x0, 0xfffffdef) write$auto(0x3, 0x0, 0xfffffdef) 1.550144349s ago: executing program 3 (id=816): openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0xa8200, 0x0) mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'vcan0\x00'}) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) r0 = socket(0x1d, 0x2, 0x7) r1 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r0, &(0x7f0000000000)=@can={0x1d, r2}, 0x6a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r3}, 0x18) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xe, 0x940, 0x1ffde, 0x3, 0x2000000000000006, 0x3, 0x8, 0x5, 0x2, 0x7, 0x1, 0x9, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x3bc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x1fe, 0x5) open(&(0x7f00000000c0)='./file0\x00', 0x161342, 0x130) r4 = open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31) mmap$auto(0xf000, 0x1, 0x3ff, 0x12, r4, 0x0) r5 = open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0xfd) mmap$auto(0xf000, 0x1, 0x3ff, 0x12, r5, 0x0) socket(0x10, 0x3, 0x6) syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vxcan1\x00'}) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r6 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0xffffff9e}, 0x40000) r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/tasks\x00', 0x63102, 0x0) sendfile$auto(r7, r7, 0x0, 0x2) fsconfig$auto_SHMEM_HUGE_DENY(r7, 0xcd, &(0x7f0000000040)='%\x00', &(0x7f0000000380)="642cfadfcad841bc016ed82cd56c2f646dd63cae33b004c1dfb62bfe361a1f1f517fc57dc5310dbfc75d837f7bf360a9edb63a51f489c46454952c754cf6d9575388fd774837867ae2d9e925919530a5dc9a0be5a7e8b0bbbe51228383d3a60e8b7058998ab58b1899ec5213f446a2242f2fac656ea18d85fdfa491157db6530783cfb6963a1c6e51c1caaa60fe311afe91adb9515ae197d3b2d4de1a4c548b7253b7bcc4c2ab84089164d8d816a75c978eccffb94704d8972752754c9ed5504e9dd606c8d6bd7208f15ebb5f601759f3eda8f772ee2d5a0d768a52bf2e3", 0xffffffffffffffff) 462.005971ms ago: executing program 0 (id=817): r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x3000, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) socket(0xa, 0x1, 0x100) r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0) ioctl$auto_SW_SYNC_GET_DEADLINE(r1, 0xc0105702, &(0x7f0000000000)={0x0, 0x0, r1}) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x2000, 0x0) ioctl$auto(r4, 0x5410, r4) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0xffffffffffffffff, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) syz_genetlink_get_family_id$auto_psample(0x0, 0xffffffffffffffff) sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r3, 0x0, 0x801) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x7, 0x20009, 0x5, 0xffffffff, 0x405, 0x8000) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0) get_robust_list$auto(0x0, &(0x7f0000000200)=&(0x7f00000001c0)={{}, 0x8, &(0x7f0000000180)={&(0x7f0000000140)}}, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) r5 = socket(0xa, 0x5, 0x84) setsockopt$auto(r5, 0x10000000084, 0x23, 0x0, 0x8) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) io_uring_setup$auto(0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x2, 0x2, 0x1) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @local}, 0x55) (fail_nth: 1) 184.272835ms ago: executing program 3 (id=818): r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) read$auto_force_wakeup_fops_hci_vhci(r0, &(0x7f0000000080)=""/216, 0xd8) r1 = prctl$auto(0x59616d61, 0x7, 0x1, 0x8, 0xfffffffffffffffb) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x200000c4) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1) msgctl$auto_IPC_STAT(0x25, 0x2, &(0x7f0000000180)={{0x7, 0xee00, 0x0, 0x7ffffffd, 0x7fff, 0x5}, &(0x7f0000000000)=0x6, 0x0, 0x3, 0xff, 0x506, 0x2, 0x10001, 0x3b5d, 0x7ff, 0x2, @raw=0x8}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800) readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400) set_mempolicy$auto(0x6, &(0x7f0000000000)=0x3, 0x21) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) writev$auto(r2, &(0x7f0000000080)={0x0, 0x1000}, 0x3) socket(0x1e, 0x4, 0x0) 143.182649ms ago: executing program 2 (id=819): madvise$auto(0x0, 0x8000000000000000, 0x15) openat$auto_minstrel_ht_stat_fops_rc80211_minstrel_ht_debugfs(0xffffffffffffff9c, &(0x7f0000000800)='/sys/kernel/debug/ieee80211/phy3/netdev:wlan0/stations/08:02:11:00:00:01/rc_stats\x00', 0x201, 0x0) epoll_create1$auto(0x181) epoll_create1$auto(0x42) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) r0 = set_tid_address$auto(0x0) ioprio_get$auto_IOPRIO_WHO_PROCESS(0x1, r0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000180)='/:$]\x00', 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x3) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x40009, 0x3, 0x19, 0xffffffffffffffff, 0x28000) write$auto(0x3, 0x0, 0x100082) migrate_pages$auto(0x0, 0x3, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtd0ro\x00', 0x40, 0x0) ioctl$auto_BLKPG2(r2, 0x1269, 0x0) r3 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0) ioctl$auto_RTC_WKALM_SET(r3, 0x4028700f, &(0x7f0000000040)={0x0, 0xfe, {0xfffffe00, 0x46904f51, 0x7fffffff, 0x5, 0x24ca, 0x4471, 0x9, 0x1ff, 0xd63b}}) r4 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) write$auto(r4, 0x0, 0xe) 0s ago: executing program 0 (id=820): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) socket(0x8, 0x800, 0x7) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x4, 0x40000001ff, 0x49, 0x6) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r0 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f00000002c0), 0x50000, 0x0) read$auto_dev_fops_plock(r0, &(0x7f00000001c0)=""/132, 0x84) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x300, 0x0) mmap$auto(0x4, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/net/rpc/auth.rpcsec.context/channel\x00', 0x80, 0x0) pread64$auto(r1, 0x0, 0x1ff, 0xf4) adjtimex$auto(&(0x7f00000004c0)={0xf33ab6e, 0x0, 0x0, 0xfffffffffffffffd, 0x1, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10000}, 0x3, 0x20000000006, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x83, 0x0, 0xa746, 0xdeb5, 0x1800}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) bpf$auto(0x17, &(0x7f0000000040)=@bpf_attr_7={@btf_id=0x200003, 0xe, 0xed12000}, 0x35) socket$nl_generic(0x10, 0x3, 0x10) setuid$auto(0x800000000008) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/devices/virtual/net/rose2/addr_len\x00', 0x2000, 0x0) memfd_secret$auto(0x0) ioctl$auto_IMADDTIMER(0xffffffffffffffff, 0x80044940, 0x0) select$auto(0x1, &(0x7f0000000040)={[0xffffffff00000001, 0xfffffffffffffff7, 0x100, 0x7fff, 0x79, 0x3, 0x9, 0x6, 0xa80d, 0x8000000010000, 0x0, 0x0, 0x9, 0x0, 0x8, 0xd133]}, 0x0, &(0x7f00000001c0)={[0x800000000, 0x2, 0x80000012, 0x2, 0x4e4bcd3b, 0x8, 0x8, 0x1, 0x5, 0x3, 0xfffffffffffffffe, 0x1, 0xffffffff00000001, 0xe25, 0x48, 0x8]}, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/conf/batadv0/disable_policy\x00', 0x101000, 0x0) preadv$auto(r3, &(0x7f0000000240)={0x0, 0x6}, 0xc, 0x9, 0x400) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000002140), 0xa002, 0x0) select$auto(0x1, &(0x7f0000000340)={[0x6, 0x8, 0x4, 0x2, 0x3, 0x3ff, 0x100000001, 0x5, 0x9, 0xfffffffffffffff7, 0xfffffffffffffff8, 0x3, 0x0, 0x0, 0x5, 0xffff]}, &(0x7f0000000440)={[0x1, 0xb, 0x1, 0xfffffffffffffff7, 0x1000, 0x0, 0xe, 0x800, 0x101, 0x10000, 0x3, 0x3, 0x5, 0xbc, 0x6, 0x1]}, &(0x7f00000006c0)={[0x7, 0x3384, 0x8, 0x6, 0x8, 0x1, 0x8000000000000000, 0x2, 0xffffffffffffffff, 0x80000000, 0xc18, 0x100000000, 0x3, 0x9, 0x1, 0x1]}, &(0x7f0000000180)={0x9c, 0x19b}) madvise$auto_MADV_UNMERGEABLE(0x7, 0x10000b5, 0xd) write$auto(0x3, 0x0, 0xfffffdef) write$auto(0x3, 0x0, 0xfffffdef) kernel console output (not intermixed with test programs): 0][ T7749] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 260.373757][ T7749] ? __asan_memset+0x23/0x50 [ 260.373808][ T7749] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 260.373854][ T7749] snd_pcm_oss_change_params_locked+0x1432/0x3a30 [ 260.373916][ T7749] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 260.373959][ T7749] ? snd_pcm_oss_sync+0x30c/0x840 [ 260.374026][ T7749] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 260.374068][ T7749] snd_pcm_oss_sync+0x32e/0x840 [ 260.374108][ T7749] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 260.374143][ T7749] snd_pcm_oss_release+0x28b/0x310 [ 260.374182][ T7749] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 260.374218][ T7749] __fput+0x402/0xb70 [ 260.374262][ T7749] task_work_run+0x14d/0x240 [ 260.374317][ T7749] ? __pfx_task_work_run+0x10/0x10 [ 260.374370][ T7749] ? __pfx___do_sys_close_range+0x10/0x10 [ 260.374431][ T7749] exit_to_user_mode_loop+0xeb/0x110 [ 260.374485][ T7749] do_syscall_64+0x3f6/0x490 [ 260.374542][ T7749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 260.374576][ T7749] RIP: 0033:0x7f3e1278e929 [ 260.374603][ T7749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 260.374634][ T7749] RSP: 002b:00007f3e1352c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 260.374666][ T7749] RAX: 0000000000000000 RBX: 00007f3e129b5fa0 RCX: 00007f3e1278e929 [ 260.374687][ T7749] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 260.374707][ T7749] RBP: 00007f3e12810b39 R08: 0000000000000000 R09: 0000000000000000 [ 260.374726][ T7749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 260.374803][ T7749] R13: 0000000000000000 R14: 00007f3e129b5fa0 R15: 00007ffde170d7e8 [ 260.374847][ T7749] [ 260.699332][ T7749] Mem-Info: [ 260.703409][ T7749] active_anon:11902 inactive_anon:0 isolated_anon:0 [ 260.703409][ T7749] active_file:3754 inactive_file:39704 isolated_file:0 [ 260.703409][ T7749] unevictable:768 dirty:501 writeback:0 [ 260.703409][ T7749] slab_reclaimable:10416 slab_unreclaimable:98616 [ 260.703409][ T7749] mapped:24844 shmem:1365 pagetables:1026 [ 260.703409][ T7749] sec_pagetables:0 bounce:0 [ 260.703409][ T7749] kernel_misc_reclaimable:0 [ 260.703409][ T7749] free:1326268 free_pcp:15687 free_cma:0 [ 260.750496][ T7749] Node 0 active_anon:47608kB inactive_anon:0kB active_file:15016kB inactive_file:158676kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:99376kB dirty:2000kB writeback:0kB shmem:3924kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11504kB pagetables:3960kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 260.784702][ T7749] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 260.816867][ T7749] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 260.846692][ T7749] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 260.852565][ T7749] Node 0 DMA32 free:1391980kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:47560kB inactive_anon:0kB active_file:15016kB inactive_file:157364kB unevictable:1536kB writepending:2000kB present:3129332kB managed:2540344kB mlocked:0kB bounce:0kB free_pcp:40560kB local_pcp:20684kB free_cma:0kB [ 260.885863][ T7749] lowmem_reserve[]: 0 0 1 1 1 [ 260.890696][ T7749] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:12kB free_cma:0kB [ 260.921111][ T7749] lowmem_reserve[]: 0 0 0 0 0 [ 260.926729][ T7749] Node 1 Normal free:3897724kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:22036kB local_pcp:16168kB free_cma:0kB [ 260.958277][ T7749] lowmem_reserve[]: 0 0 0 0 0 [ 260.963092][ T7749] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 260.976552][ T7749] Node 0 DMA32: 1*4kB (E) 397*8kB (UM) 132*16kB (U) 304*32kB (UME) 43*64kB (UME) 6*128kB (UM) 5*256kB (UE) 2*512kB (UE) 7*1024kB (UM) 4*2048kB (M) 331*4096kB (UM) = 1391980kB [ 260.994439][ T7749] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 261.006615][ T7749] Node 1 Normal: 131*4kB (UME) 26*8kB (UME) 36*16kB (UE) 111*32kB (UE) 24*64kB (UE) 9*128kB (UE) 4*256kB (UME) 2*512kB (U) 1*1024kB (E) 2*2048kB (ME) 948*4096kB (M) = 3897724kB [ 261.025584][ T7749] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 261.035278][ T7749] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 261.044893][ T7749] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 261.070982][ T7749] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 261.080542][ T7749] 45457 total pagecache pages [ 261.085577][ T7749] 0 pages in swap cache [ 261.089780][ T7749] Free swap = 124996kB [ 261.093981][ T7749] Total swap = 124996kB [ 261.098264][ T7749] 2097051 pages RAM [ 261.102114][ T7749] 0 pages HighMem/MovableOnly [ 261.106956][ T7749] 429987 pages reserved [ 261.112151][ T7749] 0 pages cma reserved [ 261.289563][ T59] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 261.449284][ T59] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 261.561424][ T59] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 261.699642][ T59] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 262.064603][ T59] bridge_slave_1: left allmulticast mode [ 262.070354][ T59] bridge_slave_1: left promiscuous mode [ 262.088402][ T59] bridge0: port 2(bridge_slave_1) entered disabled state [ 262.143388][ T59] bridge_slave_0: left allmulticast mode [ 262.163972][ T59] bridge_slave_0: left promiscuous mode [ 262.179861][ T59] bridge0: port 1(bridge_slave_0) entered disabled state [ 262.839040][ T5861] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 262.850421][ T5861] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 262.867492][ T5861] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 262.879379][ T5861] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 262.888546][ T5861] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 263.201792][ T5856] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 263.214241][ T5856] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 263.239410][ T5856] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 263.269186][ T5856] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 263.292904][ T5856] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 263.737941][ T59] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 263.778981][ T59] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 263.799225][ T59] bond0 (unregistering): Released all slaves [ 264.282127][ T7782] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input66 [ 264.568791][ T7792] nfsd: Unknown parameter 'Zwһh' [ 264.964220][ T5861] Bluetooth: hci2: command tx timeout [ 265.149290][ T7804] hub 8-0:1.0: USB hub found [ 265.164331][ T7804] hub 8-0:1.0: 1 port detected [ 265.358705][ T7767] chnl_net:caif_netlink_parms(): no params data found [ 265.365706][ T5861] Bluetooth: hci4: command tx timeout [ 265.722352][ T59] hsr_slave_0: left promiscuous mode [ 265.728777][ T59] hsr_slave_1: left promiscuous mode [ 265.734927][ T59] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 265.742519][ T59] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 265.750833][ T59] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 265.759253][ T59] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 265.792888][ T59] veth1_macvtap: left promiscuous mode [ 265.798790][ T59] veth0_macvtap: left promiscuous mode [ 265.805062][ T59] veth1_vlan: left promiscuous mode [ 265.810696][ T59] veth0_vlan: left promiscuous mode [ 266.600627][ T59] team0 (unregistering): Port device team_slave_1 removed [ 266.666759][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 266.673230][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 266.681666][ T59] team0 (unregistering): Port device team_slave_0 removed [ 267.044166][ T5861] Bluetooth: hci2: command tx timeout [ 267.103830][ T7767] bridge0: port 1(bridge_slave_0) entered blocking state [ 267.125520][ T7767] bridge0: port 1(bridge_slave_0) entered disabled state [ 267.136324][ T7767] bridge_slave_0: entered allmulticast mode [ 267.156023][ T7767] bridge_slave_0: entered promiscuous mode [ 267.186451][ T7767] bridge0: port 2(bridge_slave_1) entered blocking state [ 267.195015][ T7767] bridge0: port 2(bridge_slave_1) entered disabled state [ 267.202242][ T7767] bridge_slave_1: entered allmulticast mode [ 267.231504][ T7767] bridge_slave_1: entered promiscuous mode [ 267.245833][ T7773] chnl_net:caif_netlink_parms(): no params data found [ 267.399359][ T7767] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 267.448129][ T5861] Bluetooth: hci4: command tx timeout [ 267.471544][ T7767] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 267.813910][ T7767] team0: Port device team_slave_0 added [ 267.895405][ T7767] team0: Port device team_slave_1 added [ 268.226334][ T7773] bridge0: port 1(bridge_slave_0) entered blocking state [ 268.253807][ T7773] bridge0: port 1(bridge_slave_0) entered disabled state [ 268.287838][ T7773] bridge_slave_0: entered allmulticast mode [ 268.374656][ T7773] bridge_slave_0: entered promiscuous mode [ 268.485138][ T7773] bridge0: port 2(bridge_slave_1) entered blocking state [ 268.493050][ T7773] bridge0: port 2(bridge_slave_1) entered disabled state [ 268.503917][ T7773] bridge_slave_1: entered allmulticast mode [ 268.512873][ T7773] bridge_slave_1: entered promiscuous mode [ 268.528292][ T7767] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 268.536635][ T7767] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 268.567213][ T7767] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 268.840847][ T59] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 268.871255][ T7767] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 268.906050][ T7767] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 269.000689][ T7767] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 269.056563][ T7861] nfsd: Unknown parameter 'Zwһh' [ 269.088938][ T7773] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 269.124600][ T5861] Bluetooth: hci2: command tx timeout [ 269.422114][ T59] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 269.534191][ T5861] Bluetooth: hci4: command tx timeout [ 269.547364][ T7773] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 269.656622][ T59] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 269.807230][ T7767] hsr_slave_0: entered promiscuous mode [ 269.820839][ T7767] hsr_slave_1: entered promiscuous mode [ 269.840258][ T7767] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 269.864010][ T7767] Cannot create hsr debugfs directory [ 270.023565][ T59] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 270.313886][ T7773] team0: Port device team_slave_0 added [ 270.379426][ T7773] team0: Port device team_slave_1 added [ 270.623405][ T7773] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 270.652522][ T7773] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 270.689149][ T7773] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 270.882605][ T7773] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 270.898926][ T7773] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 270.935096][ T7773] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 271.215759][ T5861] Bluetooth: hci2: command tx timeout [ 271.237714][ T59] bridge_slave_1: left allmulticast mode [ 271.248432][ T59] bridge_slave_1: left promiscuous mode [ 271.269641][ T59] bridge0: port 2(bridge_slave_1) entered disabled state [ 271.300245][ T59] bridge_slave_0: left allmulticast mode [ 271.310768][ T59] bridge_slave_0: left promiscuous mode [ 271.326079][ T59] bridge0: port 1(bridge_slave_0) entered disabled state [ 271.604516][ T5861] Bluetooth: hci4: command tx timeout [ 271.729968][ T59] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 271.741370][ T59] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 271.752605][ T59] bond0 (unregistering): Released all slaves [ 271.878269][ T7773] hsr_slave_0: entered promiscuous mode [ 271.885238][ T7773] hsr_slave_1: entered promiscuous mode [ 271.891945][ T7773] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 271.903534][ T7773] Cannot create hsr debugfs directory [ 274.982176][ T7915] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input68 [ 275.020666][ T7913] nfsd: Unknown parameter 'Z' [ 275.669211][ T7924] hub 8-0:1.0: USB hub found [ 275.674543][ T7924] hub 8-0:1.0: 1 port detected [ 275.742516][ T59] hsr_slave_0: left promiscuous mode [ 275.759367][ T59] hsr_slave_1: left promiscuous mode [ 275.773404][ T59] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 275.804284][ T59] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 275.836544][ T59] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 275.863517][ T59] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 275.920988][ T59] veth1_macvtap: left promiscuous mode [ 275.944265][ T59] veth0_macvtap: left promiscuous mode [ 275.950264][ T59] veth1_vlan: left promiscuous mode [ 275.956431][ T59] veth0_vlan: left promiscuous mode [ 277.221698][ T7940] nfsd: Unknown parameter 'Z' [ 277.952797][ T59] team0 (unregistering): Port device team_slave_1 removed [ 278.090544][ T59] team0 (unregistering): Port device team_slave_0 removed [ 279.159440][ T7767] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 279.207683][ T7767] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 279.230002][ T7767] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 279.348544][ T7767] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 279.520958][ T7956] nfsd: Unknown parameter 'Zwһh' [ 279.633139][ T7773] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 279.759676][ T7773] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 279.773364][ T7773] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 279.819309][ T7773] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 280.527547][ T7767] 8021q: adding VLAN 0 to HW filter on device bond0 [ 280.781143][ T7767] 8021q: adding VLAN 0 to HW filter on device team0 [ 280.837822][ T7773] 8021q: adding VLAN 0 to HW filter on device bond0 [ 280.871262][ T3494] bridge0: port 1(bridge_slave_0) entered blocking state [ 280.878548][ T3494] bridge0: port 1(bridge_slave_0) entered forwarding state [ 280.917644][ T3494] bridge0: port 2(bridge_slave_1) entered blocking state [ 280.924942][ T3494] bridge0: port 2(bridge_slave_1) entered forwarding state [ 280.959998][ T7773] 8021q: adding VLAN 0 to HW filter on device team0 [ 281.028290][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 281.035615][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 281.063823][ T59] bridge0: port 2(bridge_slave_1) entered blocking state [ 281.071043][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state [ 281.158102][ T7767] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 281.929155][ T7767] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 282.215323][ T7767] veth0_vlan: entered promiscuous mode [ 282.284004][ T7773] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 282.327716][ T7767] veth1_vlan: entered promiscuous mode [ 282.553146][ T7773] veth0_vlan: entered promiscuous mode [ 282.626004][ T7767] veth0_macvtap: entered promiscuous mode [ 282.674284][ T8019] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input69 [ 282.718823][ T7773] veth1_vlan: entered promiscuous mode [ 282.866101][ T7767] veth1_macvtap: entered promiscuous mode [ 282.968413][ T7767] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 283.101628][ T7767] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 283.178253][ T7767] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 283.214258][ T7767] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 283.223053][ T7767] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 283.284792][ T7767] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 283.399082][ T7773] veth0_macvtap: entered promiscuous mode [ 283.542107][ T7773] veth1_macvtap: entered promiscuous mode [ 283.702249][ T145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 283.727027][ T7773] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 283.727272][ T145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 283.812829][ T7773] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 283.896293][ T8042] nfsd: Unknown parameter 'Zwһh' [ 283.907860][ T7773] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 283.920796][ T8034] hub 8-0:1.0: USB hub found [ 283.928878][ T7773] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 283.943997][ T8034] hub 8-0:1.0: 1 port detected [ 283.949269][ T7773] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 283.966420][ T7773] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 284.061257][ T3494] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 284.097463][ T3494] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 284.572122][ T145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 284.600067][ T145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 284.869256][ T145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 284.895552][ T145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 284.905274][ T8064] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input70 [ 285.378628][ T8077] random: crng reseeded on system resumption [ 285.751579][ T8087] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input71 [ 285.897599][ T8090] warn_alloc: 1 callbacks suppressed [ 285.897623][ T8090] syz.0.380: vmalloc error: size 1900544, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 286.042989][ T8084] Unrecognized hibernate image header format! [ 286.051850][ T8084] PM: hibernation: Image mismatch: architecture specific data [ 286.104299][ T8090] CPU: 1 UID: 0 PID: 8090 Comm: syz.0.380 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 286.104346][ T8090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 286.104365][ T8090] Call Trace: [ 286.104376][ T8090] [ 286.104388][ T8090] dump_stack_lvl+0x16c/0x1f0 [ 286.104446][ T8090] warn_alloc+0x248/0x3a0 [ 286.104502][ T8090] ? __pfx_warn_alloc+0x10/0x10 [ 286.104558][ T8090] ? alloc_pages_mpol+0x25a/0x550 [ 286.104594][ T8090] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 286.104647][ T8090] __vmalloc_node_range_noprof+0x11d4/0x14b0 [ 286.104708][ T8090] ? __snd_dma_alloc_pages+0x53/0x90 [ 286.104764][ T8090] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 286.104819][ T8090] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 286.104880][ T8090] ? __snd_dma_alloc_pages+0x53/0x90 [ 286.104923][ T8090] __vmalloc_node_noprof+0xad/0xf0 [ 286.104967][ T8090] ? __snd_dma_alloc_pages+0x53/0x90 [ 286.105010][ T8090] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 286.105068][ T8090] __snd_dma_alloc_pages+0x53/0x90 [ 286.105115][ T8090] snd_dma_alloc_dir_pages+0x151/0x240 [ 286.105165][ T8090] do_alloc_pages+0x115/0x280 [ 286.105213][ T8090] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 286.105265][ T8090] snd_pcm_hw_params+0x15e1/0x1b40 [ 286.105317][ T8090] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 286.105362][ T8090] ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0 [ 286.105407][ T8090] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 286.105447][ T8090] ? __asan_memset+0x23/0x50 [ 286.105498][ T8090] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 286.105544][ T8090] snd_pcm_oss_change_params_locked+0x1432/0x3a30 [ 286.105605][ T8090] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 286.105647][ T8090] ? snd_pcm_oss_sync+0x30c/0x840 [ 286.105711][ T8090] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 286.105752][ T8090] snd_pcm_oss_sync+0x32e/0x840 [ 286.105793][ T8090] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 286.105830][ T8090] snd_pcm_oss_release+0x28b/0x310 [ 286.105870][ T8090] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 286.105906][ T8090] __fput+0x402/0xb70 [ 286.105952][ T8090] task_work_run+0x14d/0x240 [ 286.106005][ T8090] ? __pfx_task_work_run+0x10/0x10 [ 286.106066][ T8090] ? __pfx___do_sys_close_range+0x10/0x10 [ 286.106129][ T8090] exit_to_user_mode_loop+0xeb/0x110 [ 286.106186][ T8090] do_syscall_64+0x3f6/0x490 [ 286.106242][ T8090] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.106276][ T8090] RIP: 0033:0x7f3e1278e929 [ 286.106301][ T8090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 286.106333][ T8090] RSP: 002b:00007f3e1352c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 286.106364][ T8090] RAX: 0000000000000000 RBX: 00007f3e129b5fa0 RCX: 00007f3e1278e929 [ 286.106384][ T8090] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 286.106404][ T8090] RBP: 00007f3e12810b39 R08: 0000000000000000 R09: 0000000000000000 [ 286.106424][ T8090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 286.106444][ T8090] R13: 0000000000000000 R14: 00007f3e129b5fa0 R15: 00007ffde170d7e8 [ 286.106485][ T8090] [ 286.106498][ T8090] Mem-Info: [ 286.459868][ T8099] nfsd: Unknown parameter 'Z' [ 286.503520][ T8084] Restarting kernel threads ... [ 286.512513][ T8090] active_anon:11610 inactive_anon:0 isolated_anon:0 [ 286.512513][ T8090] active_file:4904 inactive_file:39721 isolated_file:0 [ 286.512513][ T8090] unevictable:768 dirty:769 writeback:0 [ 286.512513][ T8090] slab_reclaimable:10788 slab_unreclaimable:96581 [ 286.512513][ T8090] mapped:26011 shmem:1388 pagetables:1156 [ 286.512513][ T8090] sec_pagetables:0 bounce:0 [ 286.512513][ T8090] kernel_misc_reclaimable:0 [ 286.512513][ T8090] free:1330310 free_pcp:12851 free_cma:0 [ 286.559742][ T8090] Node 0 active_anon:47236kB inactive_anon:0kB active_file:21152kB inactive_file:158744kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:105428kB dirty:3072kB writeback:0kB shmem:4012kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11732kB pagetables:4476kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 286.614648][ T8084] Done restarting kernel threads. [ 286.626113][ T8090] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 286.733785][ T8090] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 286.766964][ T8090] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 286.780715][ T8090] Node 0 DMA32 free:1398880kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:51284kB inactive_anon:0kB active_file:23780kB inactive_file:157432kB unevictable:1536kB writepending:3124kB present:3129332kB managed:2540344kB mlocked:0kB bounce:0kB free_pcp:29372kB local_pcp:13960kB free_cma:0kB [ 286.855090][ T8090] lowmem_reserve[]: 0 0 1 1 1 [ 286.859944][ T8090] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:12kB free_cma:0kB [ 286.951426][ T8090] lowmem_reserve[]: 0 0 0 0 0 [ 286.965377][ T8090] Node 1 Normal free:3899492kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:20256kB local_pcp:4888kB free_cma:0kB [ 286.998565][ T8090] lowmem_reserve[]: 0 0 0 0 0 [ 287.047416][ T8090] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 287.070028][ T8090] Node 0 DMA32: 19*4kB (UME) 0*8kB 40*16kB (UME) 365*32kB (UME) 34*64kB (UME) 19*128kB (UM) 2*256kB (ME) 5*512kB (UME) 10*1024kB (UME) 7*2048kB (UME) 330*4096kB (UM) = 1396332kB [ 287.089974][ T8090] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 287.112912][ T8090] Node 1 Normal: 73*4kB (UME) 34*8kB (UME) 43*16kB (UME) 120*32kB (UME) 34*64kB (UME) 14*128kB (UME) 5*256kB (UME) 2*512kB (U) 1*1024kB (E) 2*2048kB (ME) 948*4096kB (M) = 3899492kB [ 287.141412][ T8090] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 287.151696][ T8090] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 287.162384][ T8090] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 287.172515][ T8090] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 287.316838][ T8090] 47060 total pagecache pages [ 287.323037][ T8090] 0 pages in swap cache [ 287.328151][ T8090] Free swap = 124996kB [ 287.333016][ T8090] Total swap = 124996kB [ 287.339818][ T8090] 2097051 pages RAM [ 287.345620][ T8090] 0 pages HighMem/MovableOnly [ 287.351487][ T8090] 429987 pages reserved [ 287.356278][ T8090] 0 pages cma reserved [ 288.333792][ T8127] hub 8-0:1.0: USB hub found [ 288.343026][ T8127] hub 8-0:1.0: 1 port detected [ 288.993235][ T8158] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input72 [ 289.052243][ T8155] nfsd: Unknown parameter 'Zwһh' [ 290.408271][ T1318] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 0 with max blocks 1 with error 117 [ 290.494177][ T1318] EXT4-fs (sda1): This should not happen!! Data will be lost [ 290.494177][ T1318] [ 290.538711][ T1318] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117 [ 290.615053][ T1318] EXT4-fs (sda1): This should not happen!! Data will be lost [ 290.615053][ T1318] [ 290.642344][ T8177] nfsd: Unknown parameter 'Z' [ 290.669051][ T1318] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 0 with max blocks 1 with error 117 [ 290.728914][ T1318] EXT4-fs (sda1): This should not happen!! Data will be lost [ 290.728914][ T1318] [ 291.457847][ T8184] random: crng reseeded on system resumption [ 291.941906][ T8184] Unrecognized hibernate image header format! [ 291.952259][ T8193] Invalid ELF header magic: != ELF [ 291.965114][ T8184] PM: hibernation: Image mismatch: architecture specific data [ 292.252874][ T8199] netlink: 338 bytes leftover after parsing attributes in process `syz.3.396'. [ 292.336177][ T8184] Restarting kernel threads ... [ 292.350704][ T8184] Done restarting kernel threads. [ 293.528668][ T8212] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input73 [ 293.656714][ T8214] hub 8-0:1.0: USB hub found [ 293.661798][ T8214] hub 8-0:1.0: 1 port detected [ 294.320178][ T8229] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input74 [ 295.011661][ T8238] nfsd: Unknown parameter 'Zwһh' [ 295.621828][ T8252] Invalid ELF header magic: != ELF [ 295.951219][ T8258] netlink: 338 bytes leftover after parsing attributes in process `syz.3.411'. [ 295.972904][ T8257] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input75 [ 296.039931][ T8259] random: crng reseeded on system resumption [ 296.794847][ T8259] Unrecognized hibernate image header format! [ 296.814102][ T8259] PM: hibernation: Image mismatch: architecture specific data [ 297.280420][ T8259] Restarting kernel threads ... [ 297.299753][ T8259] Done restarting kernel threads. [ 298.423772][ T8289] nfsd: Unknown parameter 'Zwһh' [ 298.969396][ T8304] Invalid ELF header magic: != ELF [ 299.058793][ T8306] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input76 [ 299.948393][ T8319] random: crng reseeded on system resumption [ 300.131968][ T8322] syz.0.428: vmalloc error: size 1908736, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 300.174234][ T8322] CPU: 1 UID: 0 PID: 8322 Comm: syz.0.428 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 300.174280][ T8322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 300.174300][ T8322] Call Trace: [ 300.174311][ T8322] [ 300.174323][ T8322] dump_stack_lvl+0x16c/0x1f0 [ 300.174382][ T8322] warn_alloc+0x248/0x3a0 [ 300.174438][ T8322] ? __pfx_warn_alloc+0x10/0x10 [ 300.174493][ T8322] ? alloc_pages_mpol+0x25a/0x550 [ 300.174530][ T8322] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 300.174583][ T8322] __vmalloc_node_range_noprof+0x11d4/0x14b0 [ 300.174645][ T8322] ? __snd_dma_alloc_pages+0x53/0x90 [ 300.174701][ T8322] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 300.174757][ T8322] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 300.174818][ T8322] ? __snd_dma_alloc_pages+0x53/0x90 [ 300.174861][ T8322] __vmalloc_node_noprof+0xad/0xf0 [ 300.174905][ T8322] ? __snd_dma_alloc_pages+0x53/0x90 [ 300.174965][ T8322] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 300.175016][ T8322] __snd_dma_alloc_pages+0x53/0x90 [ 300.175062][ T8322] snd_dma_alloc_dir_pages+0x151/0x240 [ 300.175112][ T8322] do_alloc_pages+0x115/0x280 [ 300.175158][ T8322] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 300.175208][ T8322] snd_pcm_hw_params+0x15e1/0x1b40 [ 300.175260][ T8322] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 300.175304][ T8322] ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0 [ 300.175349][ T8322] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 300.175410][ T8322] ? __asan_memset+0x23/0x50 [ 300.175461][ T8322] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 300.175508][ T8322] snd_pcm_oss_change_params_locked+0x1432/0x3a30 [ 300.175568][ T8322] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 300.175610][ T8322] ? snd_pcm_oss_sync+0x30c/0x840 [ 300.175676][ T8322] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 300.175733][ T8322] snd_pcm_oss_sync+0x32e/0x840 [ 300.175772][ T8322] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 300.175811][ T8322] snd_pcm_oss_release+0x28b/0x310 [ 300.175850][ T8322] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 300.175886][ T8322] __fput+0x402/0xb70 [ 300.175930][ T8322] task_work_run+0x14d/0x240 [ 300.175996][ T8322] ? __pfx_task_work_run+0x10/0x10 [ 300.176052][ T8322] ? __pfx___do_sys_close_range+0x10/0x10 [ 300.176115][ T8322] exit_to_user_mode_loop+0xeb/0x110 [ 300.176173][ T8322] do_syscall_64+0x3f6/0x490 [ 300.176232][ T8322] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.176268][ T8322] RIP: 0033:0x7f3e1278e929 [ 300.176296][ T8322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 300.176327][ T8322] RSP: 002b:00007f3e1352c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 300.176359][ T8322] RAX: 0000000000000000 RBX: 00007f3e129b5fa0 RCX: 00007f3e1278e929 [ 300.176380][ T8322] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 300.176400][ T8322] RBP: 00007f3e12810b39 R08: 0000000000000000 R09: 0000000000000000 [ 300.176420][ T8322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 300.176439][ T8322] R13: 0000000000000000 R14: 00007f3e129b5fa0 R15: 00007ffde170d7e8 [ 300.176482][ T8322] [ 300.176494][ T8322] Mem-Info: [ 300.440682][ T8319] Unrecognized hibernate image header format! [ 300.616889][ T8322] active_anon:12277 inactive_anon:0 isolated_anon:0 [ 300.616889][ T8322] active_file:4923 inactive_file:39613 isolated_file:0 [ 300.616889][ T8322] unevictable:768 dirty:847 writeback:0 [ 300.616889][ T8322] slab_reclaimable:10572 slab_unreclaimable:97765 [ 300.616889][ T8322] mapped:29784 shmem:1364 pagetables:1112 [ 300.616889][ T8322] sec_pagetables:0 bounce:0 [ 300.616889][ T8322] kernel_misc_reclaimable:0 [ 300.616889][ T8322] free:1329057 free_pcp:12719 free_cma:0 [ 300.676526][ T8319] PM: hibernation: Image mismatch: architecture specific data [ 300.701482][ T8322] Node 0 active_anon:50208kB inactive_anon:0kB active_file:19820kB inactive_file:158512kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:119264kB dirty:3384kB writeback:0kB shmem:3920kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11696kB pagetables:4304kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 300.742247][ T8322] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 300.799599][ T8322] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 300.842150][ T8322] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 300.850531][ T8322] Node 0 DMA32 free:1396032kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:55460kB inactive_anon:0kB active_file:20844kB inactive_file:157400kB unevictable:1536kB writepending:3384kB present:3129332kB managed:2540344kB mlocked:0kB bounce:0kB free_pcp:28000kB local_pcp:16280kB free_cma:0kB [ 300.902149][ T8322] lowmem_reserve[]: 0 0 1 1 1 [ 300.953038][ T8319] Restarting kernel threads ... [ 300.972048][ T8322] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:12kB free_cma:0kB [ 301.002873][ T8319] Done restarting kernel threads. [ 301.099364][ T8322] lowmem_reserve[]: 0 0 0 0 0 [ 301.114834][ T8322] Node 1 Normal free:3902040kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:17724kB local_pcp:3616kB free_cma:0kB [ 301.185300][ T8322] lowmem_reserve[]: 0 0 0 0 0 [ 301.207652][ T8322] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 301.273969][ T8322] Node 0 DMA32: 528*4kB (UE) 160*8kB (UM) 135*16kB (UME) 249*32kB (UME) 21*64kB (UME) 0*128kB 3*256kB (UME) 6*512kB (UME) 10*1024kB (UME) 7*2048kB (UME) 330*4096kB (UM) = 1394960kB [ 301.309487][ T8322] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 301.366614][ T8322] Node 1 Normal: 198*4kB (UME) 28*8kB (UME) 46*16kB (UME) 122*32kB (UME) 27*64kB (UME) 11*128kB (UME) 4*256kB (UME) 4*512kB (UM) 3*1024kB (ME) 2*2048kB (ME) 948*4096kB (M) = 3902040kB [ 301.395883][ T8322] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 301.441790][ T8322] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 301.503525][ T8322] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 301.540670][ T8322] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 301.562652][ T8322] 46285 total pagecache pages [ 301.572903][ T8322] 0 pages in swap cache [ 301.583359][ T8322] Free swap = 124996kB [ 301.594309][ T8342] nfsd: Unknown parameter 'Zwһh' [ 301.633634][ T8322] Total swap = 124996kB [ 301.651839][ T8322] 2097051 pages RAM [ 301.657039][ T8322] 0 pages HighMem/MovableOnly [ 301.663990][ T8322] 429987 pages reserved [ 301.688941][ T8322] 0 pages cma reserved [ 302.421748][ T8350] nfsd: Unknown parameter 'Zwһh' [ 302.549498][ T8349] ptrace attach of ""[8354] was attempted by "./syz-executor exec"[8349] [ 302.549569][ T8360] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input77 /[ 303.040279][ T8370] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input78 [ 303.177961][ T8378] random: crng reseeded on system resumption [ 303.662164][ T8382] Unrecognized hibernate image header format! [ 303.694210][ T8382] PM: hibernation: Image mismatch: architecture specific data [ 303.928990][ T8386] Restarting kernel threads ... [ 303.972428][ T8386] Done restarting kernel threads. [ 304.143060][ T8398] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input80 [ 304.431239][ T8406] nfsd: Unknown parameter 'Zwһh' [ 304.537642][ T8409] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input81 [ 304.783358][ T8414] Invalid ELF header magic: != ELF /[ 306.089096][ T8433] random: crng reseeded on system resumption [ 306.794492][ T8433] Unrecognized hibernate image header format! [ 306.800936][ T8433] PM: hibernation: Image mismatch: architecture specific data [ 307.064685][ T8433] Restarting kernel threads ... [ 307.084763][ T8433] Done restarting kernel threads. [ 307.224542][ T8448] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input82 [ 307.635503][ T8454] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input83 [ 308.292553][ T8468] Invalid ELF header magic: != ELF [ 308.853796][ T8467] hub 8-0:1.0: USB hub found [ 309.039647][ T8467] hub 8-0:1.0: 1 port detected [ 309.629745][ T8488] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input84 [ 309.883043][ T8481] hub 8-0:1.0: USB hub found [ 309.909710][ T8374] udevd[8374]: setting mode of /dev/input/event4 to 020660 failed: No such file or directory [ 309.956846][ T8481] hub 8-0:1.0: 1 port detected [ 310.001698][ T8374] udevd[8374]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory [ 311.837190][ T8513] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input85 [ 313.515723][ T8525] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input86 [ 314.862736][ T8536] nfsd: Unknown parameter 'Zwһh' [ 314.887977][ T8545] warn_alloc: 1 callbacks suppressed [ 314.887996][ T8545] syz.1.479: vmalloc error: size 1896448, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 315.027445][ T8545] CPU: 0 UID: 0 PID: 8545 Comm: syz.1.479 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 315.027492][ T8545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 315.027528][ T8545] Call Trace: [ 315.027539][ T8545] [ 315.027551][ T8545] dump_stack_lvl+0x16c/0x1f0 [ 315.027609][ T8545] warn_alloc+0x248/0x3a0 [ 315.027665][ T8545] ? __pfx_warn_alloc+0x10/0x10 [ 315.027721][ T8545] ? alloc_pages_mpol+0x25a/0x550 [ 315.027759][ T8545] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 315.027812][ T8545] __vmalloc_node_range_noprof+0x11d4/0x14b0 [ 315.027874][ T8545] ? __snd_dma_alloc_pages+0x53/0x90 [ 315.027939][ T8545] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 315.027993][ T8545] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 315.028053][ T8545] ? __snd_dma_alloc_pages+0x53/0x90 [ 315.028096][ T8545] __vmalloc_node_noprof+0xad/0xf0 [ 315.028146][ T8545] ? __snd_dma_alloc_pages+0x53/0x90 [ 315.028190][ T8545] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 315.028241][ T8545] __snd_dma_alloc_pages+0x53/0x90 [ 315.028286][ T8545] snd_dma_alloc_dir_pages+0x151/0x240 [ 315.028336][ T8545] do_alloc_pages+0x115/0x280 [ 315.028383][ T8545] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 315.028433][ T8545] snd_pcm_hw_params+0x15e1/0x1b40 [ 315.028483][ T8545] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 315.028529][ T8545] ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0 [ 315.028574][ T8545] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 315.028613][ T8545] ? __asan_memset+0x23/0x50 [ 315.028664][ T8545] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 315.028711][ T8545] snd_pcm_oss_change_params_locked+0x1432/0x3a30 [ 315.028771][ T8545] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 315.028814][ T8545] ? snd_pcm_oss_sync+0x30c/0x840 [ 315.028878][ T8545] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 315.028927][ T8545] snd_pcm_oss_sync+0x32e/0x840 [ 315.028970][ T8545] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 315.029010][ T8545] snd_pcm_oss_release+0x28b/0x310 [ 315.029050][ T8545] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 315.029087][ T8545] __fput+0x402/0xb70 [ 315.029133][ T8545] task_work_run+0x14d/0x240 [ 315.029190][ T8545] ? __pfx_task_work_run+0x10/0x10 [ 315.029246][ T8545] ? __pfx___do_sys_close_range+0x10/0x10 [ 315.029309][ T8545] exit_to_user_mode_loop+0xeb/0x110 [ 315.029366][ T8545] do_syscall_64+0x3f6/0x490 [ 315.029424][ T8545] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 315.029459][ T8545] RIP: 0033:0x7faf62b8e929 [ 315.029487][ T8545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 315.029521][ T8545] RSP: 002b:00007faf63a61038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 315.029552][ T8545] RAX: 0000000000000000 RBX: 00007faf62db5fa0 RCX: 00007faf62b8e929 [ 315.029574][ T8545] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 315.029593][ T8545] RBP: 00007faf62c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 315.029613][ T8545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 315.029632][ T8545] R13: 0000000000000000 R14: 00007faf62db5fa0 R15: 00007ffc1bde0cd8 [ 315.029676][ T8545] [ 315.029688][ T8545] Mem-Info: [ 315.324512][ T8551] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input87 [ 315.437683][ T8545] active_anon:11889 inactive_anon:0 isolated_anon:0 [ 315.437683][ T8545] active_file:4059 inactive_file:39602 isolated_file:0 [ 315.437683][ T8545] unevictable:768 dirty:897 writeback:0 [ 315.437683][ T8545] slab_reclaimable:10514 slab_unreclaimable:97954 [ 315.437683][ T8545] mapped:27946 shmem:1367 pagetables:1183 [ 315.437683][ T8545] sec_pagetables:0 bounce:0 [ 315.437683][ T8545] kernel_misc_reclaimable:0 [ 315.437683][ T8545] free:1328241 free_pcp:14354 free_cma:0 [ 315.595767][ T8545] Node 0 active_anon:47116kB inactive_anon:0kB active_file:16236kB inactive_file:158268kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:107812kB dirty:3588kB writeback:0kB shmem:3928kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11676kB pagetables:4548kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 315.780535][ T8545] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 315.875481][ T8545] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 315.913980][ T8545] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 315.948024][ T8545] Node 0 DMA32 free:1398152kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48096kB inactive_anon:0kB active_file:16364kB inactive_file:156968kB unevictable:1536kB writepending:3620kB present:3129332kB managed:2540344kB mlocked:0kB bounce:0kB free_pcp:35084kB local_pcp:19784kB free_cma:0kB [ 315.995930][ T8545] lowmem_reserve[]: 0 0 1 1 1 [ 316.053181][ T8545] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:8kB free_cma:0kB [ 316.126821][ T8545] lowmem_reserve[]: 0 0 0 0 0 [ 316.131678][ T8545] Node 1 Normal free:3899516kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:20280kB local_pcp:13624kB free_cma:0kB [ 316.214180][ T8545] lowmem_reserve[]: 0 0 0 0 0 [ 316.221631][ T8545] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 316.234976][ T8545] Node 0 DMA32: 407*4kB (UME) 350*8kB (UM) 251*16kB (UME) 178*32kB (UE) 35*64kB (UE) 1*128kB (M) 2*256kB (ME) 15*512kB (UE) 7*1024kB (UME) 7*2048kB (UME) 330*4096kB (UM) = 1397884kB [ 316.254536][ T8545] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 316.268094][ T8545] Node 1 Normal: 199*4kB (UME) 8*8kB (UME) 46*16kB (UME) 124*32kB (UME) 29*64kB (UME) 13*128kB (UME) 3*256kB (UME) 3*512kB (UM) 1*1024kB (E) 2*2048kB (ME) 948*4096kB (M) = 3899516kB [ 316.294207][ T8545] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 316.330620][ T8545] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 316.408157][ T8545] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 316.423149][ T8545] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 316.552548][ T8545] 45235 total pagecache pages [ 316.574141][ T8545] 0 pages in swap cache [ 316.578387][ T8545] Free swap = 124996kB [ 316.589684][ T8545] Total swap = 124996kB [ 316.694981][ T8545] 2097051 pages RAM [ 316.722577][ T8545] 0 pages HighMem/MovableOnly [ 316.728586][ T8545] 429987 pages reserved [ 316.732821][ T8545] 0 pages cma reserved [ 320.716112][ T8602] random: crng reseeded on system resumption [ 320.943416][ T8600] mkiss: ax0: crc mode is auto. [ 321.386441][ T1318] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 0 with max blocks 1 with error 117 [ 321.445687][ T1318] EXT4-fs (sda1): This should not happen!! Data will be lost [ 321.445687][ T1318] [ 321.472177][ T8602] Unrecognized hibernate image header format! [ 321.496686][ T8602] PM: hibernation: Image mismatch: architecture specific data [ 321.524973][ T1318] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117 [ 321.540169][ T1318] EXT4-fs (sda1): This should not happen!! Data will be lost [ 321.540169][ T1318] [ 321.550931][ T1318] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 0 with max blocks 1 with error 117 [ 321.563545][ T1318] EXT4-fs (sda1): This should not happen!! Data will be lost [ 321.563545][ T1318] [ 321.684668][ T8606] Restarting kernel threads ... [ 321.710115][ T8606] Done restarting kernel threads. [ 322.433910][ T8618] hub 8-0:1.0: USB hub found [ 322.457746][ T8618] hub 8-0:1.0: 1 port detected [ 323.467550][ T8640] Invalid ELF header magic: != ELF [ 325.367941][ T8657] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input88 [ 326.228523][ T8668] nfsd: Unknown parameter 'Zwһh' [ 326.305364][ T8675] warn_alloc: 1 callbacks suppressed [ 326.305390][ T8675] syz.1.510: vmalloc error: size 1904640, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 326.326715][ T8675] CPU: 0 UID: 0 PID: 8675 Comm: syz.1.510 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 326.326761][ T8675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 326.326789][ T8675] Call Trace: [ 326.326800][ T8675] [ 326.326813][ T8675] dump_stack_lvl+0x16c/0x1f0 [ 326.326870][ T8675] warn_alloc+0x248/0x3a0 [ 326.326925][ T8675] ? __pfx_warn_alloc+0x10/0x10 [ 326.326979][ T8675] ? alloc_pages_mpol+0x25a/0x550 [ 326.327016][ T8675] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 326.327068][ T8675] __vmalloc_node_range_noprof+0x11d4/0x14b0 [ 326.327127][ T8675] ? __snd_dma_alloc_pages+0x53/0x90 [ 326.327182][ T8675] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 326.327237][ T8675] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 326.327296][ T8675] ? __snd_dma_alloc_pages+0x53/0x90 [ 326.327338][ T8675] __vmalloc_node_noprof+0xad/0xf0 [ 326.327382][ T8675] ? __snd_dma_alloc_pages+0x53/0x90 [ 326.327424][ T8675] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 326.327473][ T8675] __snd_dma_alloc_pages+0x53/0x90 [ 326.327516][ T8675] snd_dma_alloc_dir_pages+0x151/0x240 [ 326.327566][ T8675] do_alloc_pages+0x115/0x280 [ 326.327612][ T8675] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 326.327664][ T8675] snd_pcm_hw_params+0x15e1/0x1b40 [ 326.327714][ T8675] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 326.327759][ T8675] ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0 [ 326.327811][ T8675] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 326.327851][ T8675] ? __asan_memset+0x23/0x50 [ 326.327901][ T8675] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 326.327946][ T8675] snd_pcm_oss_change_params_locked+0x1432/0x3a30 [ 326.328006][ T8675] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 326.328047][ T8675] ? snd_pcm_oss_sync+0x30c/0x840 [ 326.328112][ T8675] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 326.328153][ T8675] snd_pcm_oss_sync+0x32e/0x840 [ 326.328196][ T8675] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 326.328233][ T8675] snd_pcm_oss_release+0x28b/0x310 [ 326.328273][ T8675] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 326.328308][ T8675] __fput+0x402/0xb70 [ 326.328354][ T8675] task_work_run+0x14d/0x240 [ 326.328409][ T8675] ? __pfx_task_work_run+0x10/0x10 [ 326.328463][ T8675] ? __pfx___do_sys_close_range+0x10/0x10 [ 326.328525][ T8675] exit_to_user_mode_loop+0xeb/0x110 [ 326.328581][ T8675] do_syscall_64+0x3f6/0x490 [ 326.328635][ T8675] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 326.328667][ T8675] RIP: 0033:0x7faf62b8e929 [ 326.328695][ T8675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 326.328728][ T8675] RSP: 002b:00007faf63a61038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 326.328761][ T8675] RAX: 0000000000000000 RBX: 00007faf62db5fa0 RCX: 00007faf62b8e929 [ 326.328789][ T8675] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 326.328808][ T8675] RBP: 00007faf62c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 326.328828][ T8675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 326.328846][ T8675] R13: 0000000000000000 R14: 00007faf62db5fa0 R15: 00007ffc1bde0cd8 [ 326.328889][ T8675] [ 326.328901][ T8675] Mem-Info: [ 326.695215][ T8675] active_anon:12883 inactive_anon:0 isolated_anon:0 [ 326.695215][ T8675] active_file:4539 inactive_file:39739 isolated_file:0 [ 326.695215][ T8675] unevictable:768 dirty:667 writeback:0 [ 326.695215][ T8675] slab_reclaimable:10565 slab_unreclaimable:100480 [ 326.695215][ T8675] mapped:25602 shmem:1370 pagetables:1213 [ 326.695215][ T8675] sec_pagetables:0 bounce:0 [ 326.695215][ T8675] kernel_misc_reclaimable:0 [ 326.695215][ T8675] free:1326026 free_pcp:12219 free_cma:0 [ 326.740764][ C1] vkms_vblank_simulate: vblank timer overrun [ 326.794234][ T8675] Node 0 active_anon:51532kB inactive_anon:0kB active_file:23788kB inactive_file:158816kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:108168kB dirty:2664kB writeback:0kB shmem:3944kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11816kB pagetables:4708kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 326.843104][ T8675] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 326.947443][ T8675] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 326.976614][ T8675] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 326.982479][ T8675] Node 0 DMA32 free:1381564kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48184kB inactive_anon:0kB active_file:23916kB inactive_file:157504kB unevictable:1536kB writepending:2664kB present:3129332kB managed:2540344kB mlocked:0kB bounce:0kB free_pcp:33920kB local_pcp:16048kB free_cma:0kB [ 327.019911][ T8675] lowmem_reserve[]: 0 0 1 1 1 [ 327.026435][ T8675] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:8kB free_cma:0kB [ 327.212303][ T8675] lowmem_reserve[]: 0 0 0 0 0 [ 327.223723][ T8675] Node 1 Normal free:3901316kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:18480kB local_pcp:5648kB free_cma:0kB [ 327.271895][ T8675] lowmem_reserve[]: 0 0 0 0 0 [ 327.277452][ T8675] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 327.293789][ T8675] Node 0 DMA32: 989*4kB (UME) 491*8kB (UM) 73*16kB (UME) 17*32kB (ME) 17*64kB (UME) 2*128kB (UM) 2*256kB (ME) 2*512kB (UE) 3*1024kB (UME) 7*2048kB (UME) 330*4096kB (UM) = 1381564kB [ 327.312544][ T8675] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 327.332622][ T8675] Node 1 Normal: 199*4kB (UME) 39*8kB (UME) 43*16kB (UME) 130*32kB (UME) 29*64kB (UME) 12*128kB (UME) 3*256kB (UME) 2*512kB (U) 3*1024kB (ME) 2*2048kB (ME) 948*4096kB (M) = 3901316kB [ 327.356914][ T8675] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 327.372133][ T8675] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 327.381986][ T8675] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 327.392081][ T8675] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 327.401786][ T8675] 47085 total pagecache pages [ 327.406726][ T8675] 1 pages in swap cache [ 327.411612][ T8675] Free swap = 124996kB [ 327.433314][ T8675] Total swap = 124996kB [ 327.441486][ T8675] 2097051 pages RAM [ 327.468054][ T8675] 0 pages HighMem/MovableOnly [ 327.510716][ T8675] 429987 pages reserved [ 327.515855][ T8675] 0 pages cma reserved [ 328.088388][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 328.117449][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 330.584563][ T8721] nfsd: Unknown parameter 'Zwһh' [ 331.376097][ T8716] nfsd: Unknown parameter 'Zwһh' [ 332.042929][ T8742] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input89 [ 332.200005][ T8749] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117 [ 332.266078][ T8749] EXT4-fs (sda1): This should not happen!! Data will be lost [ 332.266078][ T8749] [ 335.270424][ T8786] nfsd: Unknown parameter 'Zwһh' [ 335.729227][ T8800] Invalid ELF header magic: != ELF [ 337.070780][ T8821] nfsd: Unknown parameter 'Zwһh' [ 337.272100][ T8823] Invalid ELF header magic: != ELF [ 337.981358][ T8830] syz.2.543: vmalloc error: size 1896448, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 338.047594][ T8830] CPU: 1 UID: 0 PID: 8830 Comm: syz.2.543 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 338.047636][ T8830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 338.047651][ T8830] Call Trace: [ 338.047659][ T8830] [ 338.047669][ T8830] dump_stack_lvl+0x16c/0x1f0 [ 338.047711][ T8830] warn_alloc+0x248/0x3a0 [ 338.047752][ T8830] ? __pfx_warn_alloc+0x10/0x10 [ 338.047791][ T8830] ? alloc_pages_mpol+0x25a/0x550 [ 338.047822][ T8830] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 338.047859][ T8830] __vmalloc_node_range_noprof+0x11d4/0x14b0 [ 338.047902][ T8830] ? __snd_dma_alloc_pages+0x53/0x90 [ 338.047947][ T8830] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 338.047986][ T8830] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 338.048028][ T8830] ? __snd_dma_alloc_pages+0x53/0x90 [ 338.048058][ T8830] __vmalloc_node_noprof+0xad/0xf0 [ 338.048089][ T8830] ? __snd_dma_alloc_pages+0x53/0x90 [ 338.048120][ T8830] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 338.048155][ T8830] __snd_dma_alloc_pages+0x53/0x90 [ 338.048189][ T8830] snd_dma_alloc_dir_pages+0x151/0x240 [ 338.048224][ T8830] do_alloc_pages+0x115/0x280 [ 338.048257][ T8830] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 338.048294][ T8830] snd_pcm_hw_params+0x15e1/0x1b40 [ 338.048330][ T8830] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 338.048362][ T8830] ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0 [ 338.048397][ T8830] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 338.048436][ T8830] ? __asan_memset+0x23/0x50 [ 338.048485][ T8830] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 338.048530][ T8830] snd_pcm_oss_change_params_locked+0x1432/0x3a30 [ 338.048592][ T8830] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 338.048634][ T8830] ? snd_pcm_oss_sync+0x30c/0x840 [ 338.048702][ T8830] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 338.048747][ T8830] snd_pcm_oss_sync+0x32e/0x840 [ 338.048790][ T8830] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 338.048829][ T8830] snd_pcm_oss_release+0x28b/0x310 [ 338.048871][ T8830] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 338.048909][ T8830] __fput+0x402/0xb70 [ 338.048964][ T8830] task_work_run+0x14d/0x240 [ 338.049020][ T8830] ? __pfx_task_work_run+0x10/0x10 [ 338.049076][ T8830] ? __pfx___do_sys_close_range+0x10/0x10 [ 338.049140][ T8830] exit_to_user_mode_loop+0xeb/0x110 [ 338.049198][ T8830] do_syscall_64+0x3f6/0x490 [ 338.049255][ T8830] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.049289][ T8830] RIP: 0033:0x7fbf2a18e929 [ 338.049316][ T8830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 338.049349][ T8830] RSP: 002b:00007fbf27ff6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 338.049372][ T8830] RAX: 0000000000000000 RBX: 00007fbf2a3b5fa0 RCX: 00007fbf2a18e929 [ 338.049388][ T8830] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 338.049402][ T8830] RBP: 00007fbf2a210b39 R08: 0000000000000000 R09: 0000000000000000 [ 338.049416][ T8830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 338.049431][ T8830] R13: 0000000000000000 R14: 00007fbf2a3b5fa0 R15: 00007fff60b4cfe8 [ 338.049461][ T8830] [ 338.373927][ T8830] Mem-Info: [ 338.377266][ T8830] active_anon:11776 inactive_anon:0 isolated_anon:0 [ 338.377266][ T8830] active_file:4508 inactive_file:39746 isolated_file:0 [ 338.377266][ T8830] unevictable:768 dirty:1426 writeback:32 [ 338.377266][ T8830] slab_reclaimable:10571 slab_unreclaimable:99555 [ 338.377266][ T8830] mapped:26023 shmem:1364 pagetables:1188 [ 338.377266][ T8830] sec_pagetables:0 bounce:0 [ 338.377266][ T8830] kernel_misc_reclaimable:0 [ 338.377266][ T8830] free:1323159 free_pcp:16650 free_cma:0 [ 338.571684][ T8830] Node 0 active_anon:47284kB inactive_anon:0kB active_file:15728kB inactive_file:158844kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:101400kB dirty:2888kB writeback:0kB shmem:3920kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11756kB pagetables:4680kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 338.627751][ T8830] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 338.659896][ T8830] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 338.689783][ T8830] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 338.696292][ T8830] Node 0 DMA32 free:1380116kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:47308kB inactive_anon:0kB active_file:19312kB inactive_file:157532kB unevictable:1536kB writepending:2900kB present:3129332kB managed:2540344kB mlocked:0kB bounce:0kB free_pcp:38520kB local_pcp:19728kB free_cma:0kB [ 338.729050][ T8830] lowmem_reserve[]: 0 0 1 1 1 [ 338.733966][ T8830] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:12kB free_cma:0kB [ 338.763541][ T8830] lowmem_reserve[]: 0 0 0 0 0 [ 338.768480][ T8830] Node 1 Normal free:3893856kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:25868kB local_pcp:18308kB free_cma:0kB [ 338.800689][ T8830] lowmem_reserve[]: 0 0 0 0 0 [ 338.806653][ T8830] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 338.819873][ T8830] Node 0 DMA32: 34*4kB (UME) 71*8kB (UM) 102*16kB (ME) 26*32kB (ME) 12*64kB (UME) 9*128kB (UM) 3*256kB (ME) 2*512kB (UE) 7*1024kB (UME) 7*2048kB (UME) 330*4096kB (UM) = 1380064kB [ 338.844432][ T8830] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 338.856655][ T8830] Node 1 Normal: 129*4kB (UME) 4*8kB (E) 41*16kB (UME) 129*32kB (UME) 29*64kB (UE) 9*128kB (UE) 2*256kB (UE) 2*512kB (U) 1*1024kB (E) 2*2048kB (ME) 947*4096kB (M) = 3893908kB [ 338.888986][ T8830] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 338.902707][ T8830] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 338.934314][ T8830] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 339.024305][ T8830] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 339.044362][ T8830] 46701 total pagecache pages [ 339.049157][ T8830] 0 pages in swap cache [ 339.117527][ T8830] Free swap = 124996kB [ 339.129345][ T8830] Total swap = 124996kB [ 339.133797][ T8830] 2097051 pages RAM [ 339.137960][ T8830] 0 pages HighMem/MovableOnly [ 339.142859][ T8830] 429987 pages reserved [ 339.147315][ T8830] 0 pages cma reserved [ 339.257661][ T8837] nfsd: Unknown parameter 'Zwһh' [ 339.390416][ T8860] nfsd: Unknown parameter 'Zwһh' [ 339.594272][ T8854] ptrace attach of ""[8859] was attempted by "./syz-executor exec"[8854] [ 339.782759][ T8868] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input90 [ 341.994366][ T8888] Invalid ELF header magic: != ELF [ 346.131269][ T8921] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input91 [ 346.284737][ T8925] random: crng reseeded on system resumption [ 347.069437][ T8925] Unrecognized hibernate image header format! [ 347.088466][ T8925] PM: hibernation: Image mismatch: architecture specific data [ 347.217489][ T8941] Invalid ELF header magic: != ELF [ 348.195451][ T8954] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input92 [ 348.233447][ T8953] warn_alloc: 1 callbacks suppressed [ 348.233472][ T8953] syz.0.570: vmalloc error: size 1908736, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 348.340294][ T8953] CPU: 0 UID: 0 PID: 8953 Comm: syz.0.570 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 348.340343][ T8953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 348.340365][ T8953] Call Trace: [ 348.340375][ T8953] [ 348.340397][ T8953] dump_stack_lvl+0x16c/0x1f0 [ 348.340454][ T8953] warn_alloc+0x248/0x3a0 [ 348.340508][ T8953] ? __pfx_warn_alloc+0x10/0x10 [ 348.340564][ T8953] ? alloc_pages_mpol+0x25a/0x550 [ 348.340600][ T8953] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 348.340655][ T8953] __vmalloc_node_range_noprof+0x11d4/0x14b0 [ 348.340717][ T8953] ? __snd_dma_alloc_pages+0x53/0x90 [ 348.340774][ T8953] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 348.340828][ T8953] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 348.340885][ T8953] ? __snd_dma_alloc_pages+0x53/0x90 [ 348.340929][ T8953] __vmalloc_node_noprof+0xad/0xf0 [ 348.340973][ T8953] ? __snd_dma_alloc_pages+0x53/0x90 [ 348.341016][ T8953] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 348.341065][ T8953] __snd_dma_alloc_pages+0x53/0x90 [ 348.341110][ T8953] snd_dma_alloc_dir_pages+0x151/0x240 [ 348.341160][ T8953] do_alloc_pages+0x115/0x280 [ 348.341206][ T8953] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 348.341258][ T8953] snd_pcm_hw_params+0x15e1/0x1b40 [ 348.341309][ T8953] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 348.341354][ T8953] ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0 [ 348.341408][ T8953] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 348.341448][ T8953] ? __asan_memset+0x23/0x50 [ 348.341498][ T8953] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 348.341543][ T8953] snd_pcm_oss_change_params_locked+0x1432/0x3a30 [ 348.341603][ T8953] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 348.341646][ T8953] ? snd_pcm_oss_sync+0x30c/0x840 [ 348.341711][ T8953] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 348.341753][ T8953] snd_pcm_oss_sync+0x32e/0x840 [ 348.341796][ T8953] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 348.341833][ T8953] snd_pcm_oss_release+0x28b/0x310 [ 348.341874][ T8953] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 348.341910][ T8953] __fput+0x402/0xb70 [ 348.341955][ T8953] task_work_run+0x14d/0x240 [ 348.342012][ T8953] ? __pfx_task_work_run+0x10/0x10 [ 348.342066][ T8953] ? __pfx___do_sys_close_range+0x10/0x10 [ 348.342128][ T8953] exit_to_user_mode_loop+0xeb/0x110 [ 348.342184][ T8953] do_syscall_64+0x3f6/0x490 [ 348.342240][ T8953] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 348.342276][ T8953] RIP: 0033:0x7f3e1278e929 [ 348.342302][ T8953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 348.342335][ T8953] RSP: 002b:00007f3e1352c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 348.342367][ T8953] RAX: 0000000000000000 RBX: 00007f3e129b5fa0 RCX: 00007f3e1278e929 [ 348.342394][ T8953] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 348.342414][ T8953] RBP: 00007f3e12810b39 R08: 0000000000000000 R09: 0000000000000000 [ 348.342433][ T8953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 348.342451][ T8953] R13: 0000000000000000 R14: 00007f3e129b5fa0 R15: 00007ffde170d7e8 [ 348.342492][ T8953] [ 348.342503][ T8953] Mem-Info: [ 348.699353][ T8953] active_anon:12813 inactive_anon:0 isolated_anon:0 [ 348.699353][ T8953] active_file:5851 inactive_file:39754 isolated_file:0 [ 348.699353][ T8953] unevictable:768 dirty:821 writeback:0 [ 348.699353][ T8953] slab_reclaimable:10643 slab_unreclaimable:98871 [ 348.699353][ T8953] mapped:28949 shmem:1365 pagetables:1186 [ 348.699353][ T8953] sec_pagetables:0 bounce:0 [ 348.699353][ T8953] kernel_misc_reclaimable:0 [ 348.699353][ T8953] free:1323151 free_pcp:13790 free_cma:0 [ 348.749192][ T8953] Node 0 active_anon:49264kB inactive_anon:0kB active_file:23404kB inactive_file:158876kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:116996kB dirty:3284kB writeback:0kB shmem:3920kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11812kB pagetables:4688kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 348.852498][ T8953] Node 1 active_anon:2188kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:96kB pagetables:156kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 348.913394][ T8953] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 348.959736][ T8953] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 348.986638][ T8953] Node 0 DMA32 free:1382072kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:52676kB inactive_anon:0kB active_file:23916kB inactive_file:157564kB unevictable:1536kB writepending:3324kB present:3129332kB managed:2540344kB mlocked:0kB bounce:0kB free_pcp:28020kB local_pcp:17016kB free_cma:0kB [ 349.071921][ T8953] lowmem_reserve[]: 0 0 1 1 1 [ 349.131113][ T8953] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:12kB free_cma:0kB [ 349.169360][ T8953] lowmem_reserve[]: 0 0 0 0 0 [ 349.224874][ T8953] Node 1 Normal free:3893780kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4048kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:21860kB local_pcp:4552kB free_cma:0kB [ 349.257962][ T8953] lowmem_reserve[]: 0 0 0 0 0 [ 349.280350][ T8953] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 349.377469][ T8953] Node 0 DMA32: 243*4kB (UME) 158*8kB (UM) 316*16kB (UME) 201*32kB (UME) 17*64kB (UME) 10*128kB (UME) 4*256kB (UME) 2*512kB (UE) 2*1024kB (ME) 6*2048kB (ME) 329*4096kB (M) = 1380060kB [ 349.640191][ T8953] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 349.662791][ T8977] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input93 [ 349.699312][ T8953] Node 1 Normal: 65*4kB (UME) 6*8kB (ME) 40*16kB (UE) 131*32kB (UME) 30*64kB (UME) 9*128kB (UE) 2*256kB (UE) 2*512kB (U) 1*1024kB (E) 2*2048kB (ME) 947*4096kB (M) = 3893780kB [ 349.717354][ T8953] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 349.727420][ T8953] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 349.744444][ T8953] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 349.755013][ T8953] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 349.771395][ T8953] 47106 total pagecache pages [ 349.783842][ T8953] 0 pages in swap cache [ 349.788261][ T8953] Free swap = 124996kB [ 349.795780][ T8953] Total swap = 124996kB [ 349.800140][ T8953] 2097051 pages RAM [ 349.804219][ T8953] 0 pages HighMem/MovableOnly [ 349.808966][ T8953] 429987 pages reserved [ 349.813267][ T8953] 0 pages cma reserved [ 350.228782][ T8983] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input94 [ 350.600837][ T8996] Invalid ELF header magic: != ELF [ 351.025586][ T8996] netlink: 338 bytes leftover after parsing attributes in process `syz.1.579'. [ 351.530551][ T9006] Invalid ELF header magic: != ELF [ 351.845083][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 0 with max blocks 1 with error 117 [ 352.318160][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 352.318160][ T13] [ 352.447029][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117 [ 352.482174][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 352.482174][ T13] [ 352.501265][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 0 with max blocks 1 with error 117 [ 352.521047][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 352.521047][ T13] /[ 355.350567][ T9043] nfsd: Unknown parameter 'Zwһh' [ 355.562442][ T9040] ptrace attach of ""[9042] was attempted by "./syz-executor exec"[9040] //[ 357.904925][ T9076] random: crng reseeded on system resumption [ 358.228342][ T9082] Invalid ELF header magic: != ELF [ 358.351979][ T9078] Unrecognized hibernate image header format! [ 358.377785][ T9078] PM: hibernation: Image mismatch: architecture specific data [ 358.432317][ T9088] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input96 [ 358.469679][ T9090] netlink: 338 bytes leftover after parsing attributes in process `syz.3.598'. [ 358.750943][ T9076] Restarting kernel threads ... [ 358.839389][ T9076] Done restarting kernel threads. [ 358.983930][ T9092] nfsd: Unknown parameter 'Zwһh' /[ 359.661120][ T9110] nfsd: Unknown parameter 'Zwһh' [ 359.778103][ T9111] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input97 /[ 362.557501][ T9144] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input98 [ 362.903162][ T9150] warn_alloc: 3 callbacks suppressed [ 362.903190][ T9150] syz.0.612: vmalloc error: size 1904640, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 363.006400][ T9150] CPU: 0 UID: 0 PID: 9150 Comm: syz.0.612 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 363.006448][ T9150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 363.006469][ T9150] Call Trace: [ 363.006480][ T9150] [ 363.006493][ T9150] dump_stack_lvl+0x16c/0x1f0 [ 363.006549][ T9150] warn_alloc+0x248/0x3a0 [ 363.006602][ T9150] ? __pfx_warn_alloc+0x10/0x10 [ 363.006660][ T9150] ? alloc_pages_mpol+0x25a/0x550 [ 363.006698][ T9150] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 363.006750][ T9150] __vmalloc_node_range_noprof+0x11d4/0x14b0 [ 363.006808][ T9150] ? __snd_dma_alloc_pages+0x53/0x90 [ 363.006863][ T9150] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 363.006915][ T9150] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 363.006971][ T9150] ? __snd_dma_alloc_pages+0x53/0x90 [ 363.007025][ T9150] __vmalloc_node_noprof+0xad/0xf0 [ 363.007068][ T9150] ? __snd_dma_alloc_pages+0x53/0x90 [ 363.007110][ T9150] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 363.007159][ T9150] __snd_dma_alloc_pages+0x53/0x90 [ 363.007203][ T9150] snd_dma_alloc_dir_pages+0x151/0x240 [ 363.007251][ T9150] do_alloc_pages+0x115/0x280 [ 363.007291][ T9150] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 363.007337][ T9150] snd_pcm_hw_params+0x15e1/0x1b40 [ 363.007386][ T9150] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 363.007428][ T9150] ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0 [ 363.007473][ T9150] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 363.007511][ T9150] ? __asan_memset+0x23/0x50 [ 363.007560][ T9150] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 363.007604][ T9150] snd_pcm_oss_change_params_locked+0x1432/0x3a30 [ 363.007660][ T9150] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 363.007701][ T9150] ? snd_pcm_oss_sync+0x30c/0x840 [ 363.007765][ T9150] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 363.007808][ T9150] snd_pcm_oss_sync+0x32e/0x840 [ 363.007849][ T9150] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 363.007886][ T9150] snd_pcm_oss_release+0x28b/0x310 [ 363.007926][ T9150] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 363.007962][ T9150] __fput+0x402/0xb70 [ 363.008018][ T9150] task_work_run+0x14d/0x240 [ 363.008076][ T9150] ? __pfx_task_work_run+0x10/0x10 [ 363.008128][ T9150] ? __pfx___do_sys_close_range+0x10/0x10 [ 363.008191][ T9150] exit_to_user_mode_loop+0xeb/0x110 [ 363.008247][ T9150] do_syscall_64+0x3f6/0x490 [ 363.008304][ T9150] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 363.008338][ T9150] RIP: 0033:0x7f3e1278e929 [ 363.008364][ T9150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 363.008397][ T9150] RSP: 002b:00007f3e1352c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 363.008428][ T9150] RAX: 0000000000000000 RBX: 00007f3e129b5fa0 RCX: 00007f3e1278e929 [ 363.008448][ T9150] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 363.008467][ T9150] RBP: 00007f3e12810b39 R08: 0000000000000000 R09: 0000000000000000 [ 363.008485][ T9150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 363.008503][ T9150] R13: 0000000000000000 R14: 00007f3e129b5fa0 R15: 00007ffde170d7e8 [ 363.008545][ T9150] [ 363.008557][ T9150] Mem-Info: [ 363.032862][ T9151] nfsd: Unknown parameter 'Zwһh' [ 363.051914][ T9150] active_anon:11993 inactive_anon:0 isolated_anon:0 [ 363.051914][ T9150] active_file:3902 inactive_file:39678 isolated_file:0 [ 363.051914][ T9150] unevictable:768 dirty:841 writeback:0 [ 363.051914][ T9150] slab_reclaimable:10655 slab_unreclaimable:98104 [ 363.051914][ T9150] mapped:27991 shmem:1363 pagetables:1189 [ 363.051914][ T9150] sec_pagetables:0 bounce:0 [ 363.051914][ T9150] kernel_misc_reclaimable:0 [ 363.051914][ T9150] free:1325920 free_pcp:15200 free_cma:0 [ 363.052016][ T9150] Node 0 active_anon:47972kB inactive_anon:0kB active_file:15608kB inactive_file:158572kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:111964kB dirty:3360kB writeback:0kB shmem:3916kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11792kB pagetables:4612kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 363.479799][ T9150] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 363.963914][ T9150] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 364.004879][ T9150] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 364.010957][ T9150] Node 0 DMA32 free:1385512kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:47928kB inactive_anon:0kB active_file:24916kB inactive_file:157064kB unevictable:1536kB writepending:3552kB present:3129332kB managed:2540344kB mlocked:0kB bounce:0kB free_pcp:33720kB local_pcp:19916kB free_cma:0kB [ 364.043687][ T9150] lowmem_reserve[]: 0 0 1 1 1 [ 364.048627][ T9150] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:12kB free_cma:0kB [ 364.086147][ T9150] lowmem_reserve[]: 0 0 0 0 0 [ 364.091364][ T9150] Node 1 Normal free:3894392kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:25368kB local_pcp:16516kB free_cma:0kB [ 364.297243][ T9150] lowmem_reserve[]: 0 0 0 0 0 [ 364.334208][ T9150] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 364.430098][ T9150] Node 0 DMA32: 811*4kB (UME) 451*8kB (UME) 152*16kB (UME) 179*32kB (UME) 14*64kB (UME) 9*128kB (ME) 3*256kB (UM) 0*512kB 2*1024kB (UM) 6*2048kB (UM) 330*4096kB (ME) = 1383844kB [ 364.461135][ T9150] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 364.485496][ T9150] Node 1 Normal: 190*4kB (UME) 6*8kB (ME) 41*16kB (UME) 130*32kB (UME) 30*64kB (UME) 10*128kB (UME) 2*256kB (UE) 2*512kB (U) 1*1024kB (E) 2*2048kB (ME) 947*4096kB (M) = 3894392kB [ 364.534237][ T9150] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 364.554083][ T9150] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 364.614256][ T9150] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 364.623873][ T9150] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 364.677655][ T9150] 46415 total pagecache pages [ 364.682421][ T9150] 0 pages in swap cache [ 364.693307][ T9150] Free swap = 124996kB [ 364.702136][ T9150] Total swap = 124996kB [ 364.721756][ T9150] 2097051 pages RAM [ 364.776960][ T9150] 0 pages HighMem/MovableOnly [ 364.928728][ T9150] 429987 pages reserved [ 364.933070][ T9150] 0 pages cma reserved [ 366.752341][ T9187] mkiss: ax0: crc mode is auto. [ 367.300174][ T9196] Invalid ELF header magic: != ELF [ 367.991715][ T9202] Invalid ELF header magic: != ELF [ 369.837251][ T9229] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input99 [ 369.937503][ T9223] nfsd: Unknown parameter 'Zwһh' [ 370.567858][ T9236] Invalid ELF header magic: != ELF [ 373.834966][ T9267] Invalid ELF header magic: != ELF [ 374.478960][ T9280] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input100 [ 375.135478][ T9287] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input101 [ 375.183438][ T9281] ptrace attach of ""[9283] was attempted by "./syz-executor exec"[9281] [ 375.256857][ T9279] nfsd: Unknown parameter 'Zwһh' [ 375.603096][ T9292] nfsd: Unknown parameter 'Zwһh' /[ 377.104206][ T9316] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input102 [ 377.542312][ T9325] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input103 [ 378.762399][ T9335] Invalid ELF header magic: != ELF [ 380.603896][ T9360] mkiss: ax0: crc mode is auto. [ 380.707967][ T9356] nfsd: Unknown parameter 'Zwһh' [ 381.374869][ T9371] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input104 [ 381.953721][ T9381] Invalid ELF header magic: != ELF [ 382.661914][ T9390] syz.3.664: vmalloc error: size 1892352, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 382.734171][ T9390] CPU: 0 UID: 0 PID: 9390 Comm: syz.3.664 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 382.734223][ T9390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 382.734244][ T9390] Call Trace: [ 382.734255][ T9390] [ 382.734267][ T9390] dump_stack_lvl+0x16c/0x1f0 [ 382.734326][ T9390] warn_alloc+0x248/0x3a0 [ 382.734406][ T9390] ? __pfx_warn_alloc+0x10/0x10 [ 382.734462][ T9390] ? alloc_pages_mpol+0x25a/0x550 [ 382.734499][ T9390] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 382.734552][ T9390] __vmalloc_node_range_noprof+0x11d4/0x14b0 [ 382.734611][ T9390] ? __snd_dma_alloc_pages+0x53/0x90 [ 382.734665][ T9390] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 382.734719][ T9390] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 382.734787][ T9390] ? __snd_dma_alloc_pages+0x53/0x90 [ 382.734829][ T9390] __vmalloc_node_noprof+0xad/0xf0 [ 382.734874][ T9390] ? __snd_dma_alloc_pages+0x53/0x90 [ 382.734916][ T9390] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 382.734969][ T9390] __snd_dma_alloc_pages+0x53/0x90 [ 382.735014][ T9390] snd_dma_alloc_dir_pages+0x151/0x240 [ 382.735064][ T9390] do_alloc_pages+0x115/0x280 [ 382.735109][ T9390] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 382.735158][ T9390] snd_pcm_hw_params+0x15e1/0x1b40 [ 382.735196][ T9390] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 382.735228][ T9390] ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0 [ 382.735260][ T9390] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 382.735299][ T9390] ? __asan_memset+0x23/0x50 [ 382.735336][ T9390] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 382.735369][ T9390] snd_pcm_oss_change_params_locked+0x1432/0x3a30 [ 382.735411][ T9390] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 382.735441][ T9390] ? snd_pcm_oss_sync+0x30c/0x840 [ 382.735488][ T9390] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 382.735518][ T9390] snd_pcm_oss_sync+0x32e/0x840 [ 382.735548][ T9390] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 382.735575][ T9390] snd_pcm_oss_release+0x28b/0x310 [ 382.735603][ T9390] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 382.735628][ T9390] __fput+0x402/0xb70 [ 382.735660][ T9390] task_work_run+0x14d/0x240 [ 382.735699][ T9390] ? __pfx_task_work_run+0x10/0x10 [ 382.735744][ T9390] ? __pfx___do_sys_close_range+0x10/0x10 [ 382.735788][ T9390] exit_to_user_mode_loop+0xeb/0x110 [ 382.735835][ T9390] do_syscall_64+0x3f6/0x490 [ 382.735876][ T9390] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 382.735900][ T9390] RIP: 0033:0x7fc63ad8e929 [ 382.735921][ T9390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 382.735945][ T9390] RSP: 002b:00007fc638bf6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 382.735967][ T9390] RAX: 0000000000000000 RBX: 00007fc63afb5fa0 RCX: 00007fc63ad8e929 [ 382.735982][ T9390] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 382.735996][ T9390] RBP: 00007fc63ae10b39 R08: 0000000000000000 R09: 0000000000000000 [ 382.736012][ T9390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 382.736026][ T9390] R13: 0000000000000000 R14: 00007fc63afb5fa0 R15: 00007ffc842a1628 [ 382.736057][ T9390] [ 382.740360][ T9390] Mem-Info: [ 383.128908][ T9390] active_anon:12303 inactive_anon:1 isolated_anon:16 [ 383.128908][ T9390] active_file:5534 inactive_file:39768 isolated_file:0 [ 383.128908][ T9390] unevictable:752 dirty:995 writeback:0 [ 383.128908][ T9390] slab_reclaimable:10645 slab_unreclaimable:98876 [ 383.128908][ T9390] mapped:27458 shmem:1372 pagetables:1188 [ 383.128908][ T9390] sec_pagetables:0 bounce:0 [ 383.128908][ T9390] kernel_misc_reclaimable:0 [ 383.128908][ T9390] free:1322501 free_pcp:15784 free_cma:0 [ 383.358146][ T9390] Node 0 active_anon:48964kB inactive_anon:4kB active_file:23032kB inactive_file:158932kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:107136kB dirty:3976kB writeback:0kB shmem:3952kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11584kB pagetables:4600kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 383.392777][ C0] vkms_vblank_simulate: vblank timer overrun [ 383.399869][ T36] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 0 with max blocks 1 with error 117 [ 383.424321][ T36] EXT4-fs (sda1): This should not happen!! Data will be lost [ 383.424321][ T36] [ 383.439409][ T36] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117 [ 383.485820][ T9390] Node 1 active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1472kB isolated(anon):64kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:152kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 383.488818][ T36] EXT4-fs (sda1): This should not happen!! Data will be lost [ 383.488818][ T36] [ 383.517866][ C0] vkms_vblank_simulate: vblank timer overrun [ 383.564861][ T36] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 0 with max blocks 2 with error 117 [ 383.582749][ T36] EXT4-fs (sda1): This should not happen!! Data will be lost [ 383.582749][ T36] [ 383.597753][ T9390] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 383.782972][ T9390] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 383.867847][ T9390] Node 0 DMA32 free:1388272kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:53308kB inactive_anon:0kB active_file:16120kB inactive_file:157120kB unevictable:1536kB writepending:3732kB present:3129332kB managed:2540344kB mlocked:0kB bounce:0kB free_pcp:32776kB local_pcp:20552kB free_cma:0kB [ 383.900412][ C0] vkms_vblank_simulate: vblank timer overrun [ 383.977730][ T9390] lowmem_reserve[]: 0 0 1 1 1 [ 384.008678][ T9390] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:12kB free_cma:0kB [ 384.058046][ C0] vkms_vblank_simulate: vblank timer overrun [ 384.234466][ T9390] lowmem_reserve[]: 0 0 0 0 0 [ 384.239735][ T9390] Node 1 Normal free:3889916kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:2000kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:27624kB local_pcp:9116kB free_cma:0kB [ 384.406251][ T9390] lowmem_reserve[]: 0 0 0 0 0 [ 384.475012][ T9390] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 384.491607][ T9390] Node 0 DMA32: 18*4kB (ME) 351*8kB (UME) 157*16kB (UME) 165*32kB (UME) 25*64kB (UME) 10*128kB (ME) 12*256kB (UM) 4*512kB (U) 3*1024kB (UM) 6*2048kB (UM) 330*4096kB (ME) = 1385712kB [ 384.511277][ T9390] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 384.543645][ T9390] Node 1 Normal: 63*4kB (UE) 4*8kB (E) 40*16kB (UE) 129*32kB (UME) 31*64kB (UME) 9*128kB (UE) 2*256kB (UE) 2*512kB (U) 1*1024kB (E) 2*2048kB (ME) 946*4096kB (M) = 3889660kB [ 384.571824][ T9390] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 384.581684][ T9390] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 384.591849][ T9390] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 384.602461][ T9390] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 384.611962][ T9390] 47043 total pagecache pages [ 384.616846][ T9390] 0 pages in swap cache [ 384.621044][ T9390] Free swap = 124996kB [ 384.625413][ T9390] Total swap = 124996kB [ 384.629717][ T9390] 2097051 pages RAM [ 384.633598][ T9390] 0 pages HighMem/MovableOnly [ 384.644927][ T9390] 429987 pages reserved [ 384.649286][ T9390] 0 pages cma reserved [ 385.097697][ T9420] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input105 /[ 386.192859][ T9432] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input106 [ 386.485769][ T5850] Bluetooth: hci4: command 0x0406 tx timeout [ 386.486998][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 388.972919][ T9468] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input107 [ 389.528897][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 389.535525][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 389.755694][ T9479] ubi: mtd0 is already attached to ubi0 /[ 390.335698][ T9492] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input108 [ 390.372378][ T9497] Invalid ELF header magic: != ELF [ 390.694311][ T9506] FAULT_INJECTION: forcing a failure. [ 390.694311][ T9506] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 390.710898][ T9506] CPU: 0 UID: 0 PID: 9506 Comm: syz.3.688 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 390.710936][ T9506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 390.710952][ T9506] Call Trace: [ 390.710959][ T9506] [ 390.710969][ T9506] dump_stack_lvl+0x16c/0x1f0 [ 390.711010][ T9506] should_fail_ex+0x512/0x640 [ 390.711052][ T9506] should_fail_alloc_page+0xe7/0x130 [ 390.711079][ T9506] prepare_alloc_pages+0x3c2/0x610 [ 390.711115][ T9506] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 390.711161][ T9506] ? __lock_acquire+0x622/0x1c90 [ 390.711201][ T9506] ? __lock_acquire+0x622/0x1c90 [ 390.711235][ T9506] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 390.711283][ T9506] ? find_held_lock+0x2b/0x80 [ 390.711308][ T9506] ? is_bpf_text_address+0x8a/0x1a0 [ 390.711342][ T9506] ? bpf_ksym_find+0x124/0x1c0 [ 390.711369][ T9506] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 390.711396][ T9506] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 390.711435][ T9506] ? policy_nodemask+0xea/0x4e0 [ 390.711461][ T9506] alloc_pages_mpol+0x1fb/0x550 [ 390.711486][ T9506] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 390.711518][ T9506] folio_alloc_mpol_noprof+0x36/0x2f0 [ 390.711549][ T9506] shmem_alloc_folio+0x135/0x160 [ 390.711581][ T9506] shmem_alloc_and_add_folio+0x499/0xc20 [ 390.711622][ T9506] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 390.711661][ T9506] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 390.711702][ T9506] shmem_get_folio_gfp+0x67f/0x1600 [ 390.711749][ T9506] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 390.711793][ T9506] shmem_fault+0x1fe/0xa30 [ 390.711830][ T9506] ? __pfx_shmem_fault+0x10/0x10 [ 390.711863][ T9506] ? mod_memcg_lruvec_state+0x394/0x610 [ 390.711899][ T9506] ? find_held_lock+0x2b/0x80 [ 390.711928][ T9506] ? pte_alloc_one+0x2b6/0x3a0 [ 390.711953][ T9506] __do_fault+0x10a/0x490 [ 390.711988][ T9506] ? find_held_lock+0x2b/0x80 [ 390.712011][ T9506] ? __pfx_filemap_map_pages+0x10/0x10 [ 390.712049][ T9506] __handle_mm_fault+0x374c/0x5490 [ 390.712089][ T9506] ? __pfx___handle_mm_fault+0x10/0x10 [ 390.712120][ T9506] ? __pfx_mt_find+0x10/0x10 [ 390.712179][ T9506] ? find_vma+0xbf/0x140 [ 390.712203][ T9506] ? __pfx_find_vma+0x10/0x10 [ 390.712231][ T9506] handle_mm_fault+0x589/0xd10 [ 390.712264][ T9506] ? __pkru_allows_pkey+0x41/0xb0 [ 390.712299][ T9506] do_user_addr_fault+0x7a6/0x1370 [ 390.712336][ T9506] ? rcu_is_watching+0x12/0xc0 [ 390.712364][ T9506] exc_page_fault+0x5c/0xb0 [ 390.712398][ T9506] asm_exc_page_fault+0x26/0x30 [ 390.712421][ T9506] RIP: 0010:__put_user_4+0xd/0x20 [ 390.712455][ T9506] Code: 66 89 01 31 c9 0f 01 ca e9 d0 5a 03 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 80 00 00 00 00 90 90 90 [ 390.712477][ T9506] RSP: 0018:ffffc9000b97fbf0 EFLAGS: 00050202 [ 390.712495][ T9506] RAX: 0000000000000300 RBX: 0000000000000000 RCX: 0000000000000004 [ 390.712509][ T9506] RDX: ffff888036571e00 RSI: ffffffff8734d19b RDI: ffffffff8c156a60 [ 390.712524][ T9506] RBP: 0000000000000000 R08: b6458f99736bf2f2 R09: 0000000000000000 [ 390.712537][ T9506] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88805a3fb900 [ 390.712551][ T9506] R13: 0000000000000000 R14: ffff888063c48b00 R15: ffff8880299e0130 [ 390.712575][ T9506] ? processcompl_compat+0x54b/0x660 [ 390.712602][ T9506] processcompl_compat+0x558/0x660 [ 390.712631][ T9506] usbdev_ioctl+0x254/0x4070 [ 390.712660][ T9506] ? __pfx_usbdev_ioctl+0x10/0x10 [ 390.712684][ T9506] ? do_vfs_ioctl+0x523/0x1a60 [ 390.712714][ T9506] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 390.712764][ T9506] ? find_held_lock+0x2b/0x80 [ 390.712787][ T9506] ? hook_file_ioctl_common+0x145/0x410 [ 390.712822][ T9506] ? __fget_files+0x20e/0x3c0 [ 390.712861][ T9506] ? __pfx_usbdev_ioctl+0x10/0x10 [ 390.712887][ T9506] __x64_sys_ioctl+0x18b/0x210 [ 390.712921][ T9506] do_syscall_64+0xcd/0x490 [ 390.712958][ T9506] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 390.712982][ T9506] RIP: 0033:0x7fc63ad8e929 [ 390.713000][ T9506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 390.713022][ T9506] RSP: 002b:00007fc638bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 390.713042][ T9506] RAX: ffffffffffffffda RBX: 00007fc63afb5fa0 RCX: 00007fc63ad8e929 [ 390.713057][ T9506] RDX: 0000000000000004 RSI: 000000004004550c RDI: 0000000000000004 [ 390.713071][ T9506] RBP: 00007fc638bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 390.713084][ T9506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 390.713103][ T9506] R13: 0000000000000000 R14: 00007fc63afb5fa0 R15: 00007ffc842a1628 [ 390.713134][ T9506] [ 391.168512][ C0] vkms_vblank_simulate: vblank timer overrun [ 391.757018][ T9517] random: crng reseeded on system resumption [ 392.336061][ T5856] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 392.336107][ T5856] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 392.353116][ T5856] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 392.353192][ T5856] Bluetooth: hci2: adv larger than maximum supported [ 392.355916][ T9532] Unrecognized hibernate image header format! [ 392.361199][ T5856] Bluetooth: hci2: adv larger than maximum supported [ 392.373587][ T5856] Bluetooth: hci2: Malformed LE Event: 0x0d [ 392.379562][ T9532] PM: hibernation: Image mismatch: architecture specific data [ 392.775614][ T9530] Restarting kernel threads ... [ 392.781132][ T9530] Done restarting kernel threads. [ 393.437611][ T9543] nfsd: Unknown parameter 'Zwһh' [ 394.203788][ T9558] usbcore.quirks: string doesn't fit in 127 chars. [ 395.805389][ T9581] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input109 [ 399.562288][ T9624] process 'syz.1.717' launched './file0' with NULL argv: empty string added [ 401.068749][ T9650] syz.2.723 uses obsolete (PF_INET,SOCK_PACKET) [ 404.142952][ T9682] warn_alloc: 3 callbacks suppressed [ 404.142981][ T9682] syz.0.729: vmalloc error: size 1892352, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 404.324202][ T9682] CPU: 0 UID: 0 PID: 9682 Comm: syz.0.729 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 404.324252][ T9682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 404.324272][ T9682] Call Trace: [ 404.324284][ T9682] [ 404.324297][ T9682] dump_stack_lvl+0x16c/0x1f0 [ 404.324356][ T9682] warn_alloc+0x248/0x3a0 [ 404.324418][ T9682] ? __pfx_warn_alloc+0x10/0x10 [ 404.324475][ T9682] ? alloc_pages_mpol+0x25a/0x550 [ 404.324513][ T9682] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 404.324566][ T9682] __vmalloc_node_range_noprof+0x11d4/0x14b0 [ 404.324629][ T9682] ? __snd_dma_alloc_pages+0x53/0x90 [ 404.324686][ T9682] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 404.324741][ T9682] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 404.324802][ T9682] ? __snd_dma_alloc_pages+0x53/0x90 [ 404.324845][ T9682] __vmalloc_node_noprof+0xad/0xf0 [ 404.324890][ T9682] ? __snd_dma_alloc_pages+0x53/0x90 [ 404.324941][ T9682] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 404.324992][ T9682] __snd_dma_alloc_pages+0x53/0x90 [ 404.325038][ T9682] snd_dma_alloc_dir_pages+0x151/0x240 [ 404.325090][ T9682] do_alloc_pages+0x115/0x280 [ 404.325138][ T9682] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 404.325191][ T9682] snd_pcm_hw_params+0x15e1/0x1b40 [ 404.325243][ T9682] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 404.325288][ T9682] ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0 [ 404.325334][ T9682] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 404.325375][ T9682] ? __asan_memset+0x23/0x50 [ 404.325425][ T9682] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 404.325471][ T9682] snd_pcm_oss_change_params_locked+0x1432/0x3a30 [ 404.325531][ T9682] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 404.325575][ T9682] ? snd_pcm_oss_sync+0x30c/0x840 [ 404.325641][ T9682] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 404.325684][ T9682] snd_pcm_oss_sync+0x32e/0x840 [ 404.325727][ T9682] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 404.325765][ T9682] snd_pcm_oss_release+0x28b/0x310 [ 404.325806][ T9682] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 404.325843][ T9682] __fput+0x402/0xb70 [ 404.325890][ T9682] task_work_run+0x14d/0x240 [ 404.325954][ T9682] ? __pfx_task_work_run+0x10/0x10 [ 404.326009][ T9682] ? __pfx___do_sys_close_range+0x10/0x10 [ 404.326073][ T9682] exit_to_user_mode_loop+0xeb/0x110 [ 404.326130][ T9682] do_syscall_64+0x3f6/0x490 [ 404.326188][ T9682] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.326222][ T9682] RIP: 0033:0x7f3e1278e929 [ 404.326251][ T9682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 404.326285][ T9682] RSP: 002b:00007f3e1352c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 404.326317][ T9682] RAX: 0000000000000000 RBX: 00007f3e129b5fa0 RCX: 00007f3e1278e929 [ 404.326338][ T9682] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 404.326358][ T9682] RBP: 00007f3e12810b39 R08: 0000000000000000 R09: 0000000000000000 [ 404.326379][ T9682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 404.326399][ T9682] R13: 0000000000000000 R14: 00007f3e129b5fa0 R15: 00007ffde170d7e8 [ 404.326444][ T9682] [ 404.674461][ T9682] Mem-Info: [ 404.677679][ T9682] active_anon:12843 inactive_anon:0 isolated_anon:0 [ 404.677679][ T9682] active_file:13011 inactive_file:39651 isolated_file:0 [ 404.677679][ T9682] unevictable:768 dirty:982 writeback:0 [ 404.677679][ T9682] slab_reclaimable:10765 slab_unreclaimable:99829 [ 404.677679][ T9682] mapped:29105 shmem:1387 pagetables:1202 [ 404.677679][ T9682] sec_pagetables:0 bounce:0 [ 404.677679][ T9682] kernel_misc_reclaimable:0 [ 404.677679][ T9682] free:1308491 free_pcp:19146 free_cma:0 [ 404.723311][ C1] vkms_vblank_simulate: vblank timer overrun [ 404.789989][ T9682] Node 0 active_anon:51288kB inactive_anon:0kB active_file:52044kB inactive_file:158448kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:112912kB dirty:3928kB writeback:0kB shmem:3916kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11536kB pagetables:4568kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 404.823553][ C1] vkms_vblank_simulate: vblank timer overrun [ 404.905413][ T9682] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 404.937010][ T9682] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 405.045219][ T9682] lowmem_reserve[]: 0 2480 2482 2482 2482 [ 405.093823][ T9682] Node 0 DMA32 free:1328188kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:49540kB inactive_anon:0kB active_file:52044kB inactive_file:157136kB unevictable:1536kB writepending:3928kB present:3129332kB managed:2540344kB mlocked:0kB bounce:0kB free_pcp:45600kB local_pcp:19436kB free_cma:0kB [ 405.140266][ T9682] lowmem_reserve[]: 0 0 1 1 1 [ 405.150430][ T9682] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1312kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:12kB free_cma:0kB [ 405.196950][ T9682] lowmem_reserve[]: 0 0 0 0 0 [ 405.201806][ T9682] Node 1 Normal free:3891928kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:27864kB local_pcp:17432kB free_cma:0kB [ 405.233481][ T9682] lowmem_reserve[]: 0 0 0 0 0 [ 405.276003][ T9682] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 405.314038][ T9682] Node 0 DMA32: 1555*4kB (M) 650*8kB (UM) 376*16kB (ME) 264*32kB (UME) 151*64kB (UME) 42*128kB (UME) 21*256kB (M) 6*512kB (M) 1*1024kB (M) 2*2048kB (U) 311*4096kB (ME) = 1328348kB [ 405.374524][ T9682] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 405.434352][ T9682] Node 1 Normal: 196*4kB (UME) 11*8kB (ME) 47*16kB (UME) 134*32kB (UME) 33*64kB (UME) 11*128kB (UME) 2*256kB (UE) 4*512kB (UM) 1*1024kB (E) 2*2048kB (ME) 946*4096kB (M) = 3891928kB [ 405.461552][ T9682] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 405.478762][ T9682] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 405.498681][ T9682] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 405.515641][ T9682] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 405.562587][ T9682] 52962 total pagecache pages [ 405.567758][ T9682] 0 pages in swap cache [ 405.571971][ T9682] Free swap = 124996kB [ 405.611534][ T9682] Total swap = 124996kB [ 405.638229][ T9682] 2097051 pages RAM [ 405.658546][ T9682] 0 pages HighMem/MovableOnly [ 405.696907][ T9682] 429987 pages reserved [ 405.704107][ T9682] 0 pages cma reserved [ 407.772689][ T9738] nfsd: Unknown parameter 'Zwһh' [ 408.237962][ T9749] hub 8-0:1.0: USB hub found [ 408.263902][ T9749] hub 8-0:1.0: 1 port detected [ 412.490845][ T9818] FAULT_INJECTION: forcing a failure. [ 412.490845][ T9818] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 412.585010][ T9818] CPU: 1 UID: 0 PID: 9818 Comm: syz.3.757 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 412.585044][ T9818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 412.585058][ T9818] Call Trace: [ 412.585066][ T9818] [ 412.585075][ T9818] dump_stack_lvl+0x16c/0x1f0 [ 412.585117][ T9818] should_fail_ex+0x512/0x640 [ 412.585157][ T9818] should_fail_alloc_page+0xe7/0x130 [ 412.585184][ T9818] prepare_alloc_pages+0x3c2/0x610 [ 412.585219][ T9818] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 412.585260][ T9818] ? __lock_acquire+0x622/0x1c90 [ 412.585302][ T9818] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 412.585359][ T9818] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 412.585398][ T9818] ? policy_nodemask+0xea/0x4e0 [ 412.585424][ T9818] alloc_pages_mpol+0x1fb/0x550 [ 412.585449][ T9818] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 412.585486][ T9818] alloc_pages_noprof+0x131/0x390 [ 412.585511][ T9818] __pmd_alloc+0x3b/0x930 [ 412.585537][ T9818] ? find_held_lock+0x2b/0x80 [ 412.585563][ T9818] __handle_mm_fault+0xaac/0x5490 [ 412.585603][ T9818] ? __pfx___handle_mm_fault+0x10/0x10 [ 412.585633][ T9818] ? __pfx_mt_find+0x10/0x10 [ 412.585671][ T9818] ? find_vma+0xbf/0x140 [ 412.585694][ T9818] ? __pfx_find_vma+0x10/0x10 [ 412.585722][ T9818] handle_mm_fault+0x589/0xd10 [ 412.585756][ T9818] ? __pkru_allows_pkey+0x41/0xb0 [ 412.585790][ T9818] do_user_addr_fault+0x7a6/0x1370 [ 412.585827][ T9818] ? rcu_is_watching+0x12/0xc0 [ 412.585855][ T9818] exc_page_fault+0x5c/0xb0 [ 412.585892][ T9818] asm_exc_page_fault+0x26/0x30 [ 412.585914][ T9818] RIP: 0010:rep_movs_alternative+0x4a/0x90 [ 412.585943][ T9818] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48 [ 412.585964][ T9818] RSP: 0018:ffffc900045cf7d0 EFLAGS: 00050206 [ 412.585982][ T9818] RAX: 0000000000000001 RBX: 00000000000000c7 RCX: 00000000000000c7 [ 412.585996][ T9818] RDX: ffffed100b8f90e9 RSI: 0000000000000000 RDI: ffff88805c7c8680 [ 412.586010][ T9818] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100b8f90e8 [ 412.586024][ T9818] R10: ffff88805c7c8746 R11: 0000000000000000 R12: ffffc900045cfd60 [ 412.586038][ T9818] R13: 00000000000000c7 R14: ffff88805c7c8680 R15: 00007ffffffff000 [ 412.586067][ T9818] _copy_from_iter+0x383/0x16f0 [ 412.586108][ T9818] ? __alloc_skb+0x200/0x380 [ 412.586141][ T9818] ? __pfx__copy_from_iter+0x10/0x10 [ 412.586180][ T9818] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 412.586213][ T9818] netlink_sendmsg+0x829/0xdd0 [ 412.586243][ T9818] ? __pfx_netlink_sendmsg+0x10/0x10 [ 412.586278][ T9818] ____sys_sendmsg+0xa98/0xc70 [ 412.586305][ T9818] ? copy_msghdr_from_user+0x10a/0x160 [ 412.586339][ T9818] ? __pfx_____sys_sendmsg+0x10/0x10 [ 412.586369][ T9818] ? __pfx__kstrtoull+0x10/0x10 [ 412.586403][ T9818] ___sys_sendmsg+0x134/0x1d0 [ 412.586439][ T9818] ? __pfx____sys_sendmsg+0x10/0x10 [ 412.586494][ T9818] ? find_held_lock+0x2b/0x80 [ 412.586537][ T9818] __sys_sendmmsg+0x200/0x420 [ 412.586576][ T9818] ? __pfx___sys_sendmmsg+0x10/0x10 [ 412.586621][ T9818] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 412.586671][ T9818] ? fput+0x70/0xf0 [ 412.586694][ T9818] ? ksys_write+0x1ac/0x250 [ 412.586728][ T9818] ? __pfx_ksys_write+0x10/0x10 [ 412.586767][ T9818] __x64_sys_sendmmsg+0x9c/0x100 [ 412.586803][ T9818] ? lockdep_hardirqs_on+0x7c/0x110 [ 412.586836][ T9818] do_syscall_64+0xcd/0x490 [ 412.586874][ T9818] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 412.586897][ T9818] RIP: 0033:0x7fc63ad8e929 [ 412.586915][ T9818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 412.586937][ T9818] RSP: 002b:00007fc638bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 412.586957][ T9818] RAX: ffffffffffffffda RBX: 00007fc63afb5fa0 RCX: 00007fc63ad8e929 [ 412.586972][ T9818] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 412.586986][ T9818] RBP: 00007fc638bf6090 R08: 0000000000000000 R09: 0000000000000000 [ 412.586999][ T9818] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 412.587013][ T9818] R13: 0000000000000000 R14: 00007fc63afb5fa0 R15: 00007ffc842a1628 [ 412.587042][ T9818] [ 413.899108][ T9829] netlink: 24 bytes leftover after parsing attributes in process `syz.0.761'. [ 414.324644][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 0 with max blocks 1 with error 117 [ 414.369210][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 414.369210][ T13] [ 414.408589][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117 [ 414.452909][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 414.452909][ T13] [ 414.497454][ T13] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 0 with max blocks 2 with error 117 [ 414.550875][ T13] EXT4-fs (sda1): This should not happen!! Data will be lost [ 414.550875][ T13] [ 414.928070][ T9852] random: crng reseeded on system resumption [ 415.199627][ T9853] nfsd: Unknown parameter 'Zwһh' [ 415.815898][ T9852] Restarting kernel threads ... [ 415.827839][ T9852] Done restarting kernel threads. [ 416.650391][ T9882] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input112 [ 416.738428][ T9888] netlink: 16 bytes leftover after parsing attributes in process `syz.3.775'. [ 416.801840][ T9888] bridge0: port 2(bridge_slave_1) entered disabled state [ 416.845165][ T9888] bridge_slave_1 (unregistering): left allmulticast mode [ 416.852465][ T9888] bridge_slave_1 (unregistering): left promiscuous mode [ 416.863141][ T9888] bridge0: port 2(bridge_slave_1) entered disabled state [ 421.826564][ T9946] FAULT_INJECTION: forcing a failure. [ 421.826564][ T9946] name failslab, interval 1, probability 0, space 0, times 0 [ 421.851031][ T9946] CPU: 1 UID: 0 PID: 9946 Comm: syz.1.790 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 421.851073][ T9946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 421.851087][ T9946] Call Trace: [ 421.851094][ T9946] [ 421.851110][ T9946] dump_stack_lvl+0x16c/0x1f0 [ 421.851151][ T9946] should_fail_ex+0x512/0x640 [ 421.851186][ T9946] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 421.851226][ T9946] should_failslab+0xc2/0x120 [ 421.851249][ T9946] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 421.851285][ T9946] ? __pmd_alloc+0xbf/0x930 [ 421.851315][ T9946] __pmd_alloc+0xbf/0x930 [ 421.851345][ T9946] __handle_mm_fault+0xaac/0x5490 [ 421.851396][ T9946] ? __pfx___handle_mm_fault+0x10/0x10 [ 421.851453][ T9946] handle_mm_fault+0x589/0xd10 [ 421.851492][ T9946] __get_user_pages+0x589/0x3b80 [ 421.851528][ T9946] ? __pfx_mt_find+0x10/0x10 [ 421.851559][ T9946] ? __pfx___get_user_pages+0x10/0x10 [ 421.851598][ T9946] populate_vma_page_range+0x278/0x3a0 [ 421.851630][ T9946] ? __pfx_populate_vma_page_range+0x10/0x10 [ 421.851659][ T9946] ? __pfx_find_vma_intersection+0x10/0x10 [ 421.851689][ T9946] ? do_mmap+0x69c/0x1210 [ 421.851718][ T9946] __mm_populate+0x1d8/0x380 [ 421.851749][ T9946] ? __pfx___mm_populate+0x10/0x10 [ 421.851781][ T9946] ? up_write+0x1b2/0x520 [ 421.851821][ T9946] vm_mmap_pgoff+0x362/0x450 [ 421.851850][ T9946] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 421.851878][ T9946] ? __fget_files+0x20e/0x3c0 [ 421.851919][ T9946] ksys_mmap_pgoff+0x7d/0x5c0 [ 421.851946][ T9946] ? __pfx_ksys_write+0x10/0x10 [ 421.851984][ T9946] __x64_sys_mmap+0x125/0x190 [ 421.852021][ T9946] do_syscall_64+0xcd/0x490 [ 421.852060][ T9946] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 421.852084][ T9946] RIP: 0033:0x7faf62b8e929 [ 421.852102][ T9946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 421.852125][ T9946] RSP: 002b:00007faf63a61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 421.852146][ T9946] RAX: ffffffffffffffda RBX: 00007faf62db5fa0 RCX: 00007faf62b8e929 [ 421.852161][ T9946] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 421.852175][ T9946] RBP: 00007faf63a61090 R08: 0000000000000002 R09: 0000000000008000 [ 421.852189][ T9946] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 421.852203][ T9946] R13: 0000000000000000 R14: 00007faf62db5fa0 R15: 00007ffc1bde0cd8 [ 421.852232][ T9946] [ 422.264379][ T9948] ubi: mtd0 is already attached to ubi0 [ 422.386356][ T9947] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117 [ 422.405169][ T9947] EXT4-fs (sda1): This should not happen!! Data will be lost [ 422.405169][ T9947] [ 423.216882][ T9975] FAULT_INJECTION: forcing a failure. [ 423.216882][ T9975] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 423.230293][ T9975] CPU: 1 UID: 0 PID: 9975 Comm: syz.0.794 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 423.230334][ T9975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 423.230354][ T9975] Call Trace: [ 423.230365][ T9975] [ 423.230376][ T9975] dump_stack_lvl+0x16c/0x1f0 [ 423.230430][ T9975] should_fail_ex+0x512/0x640 [ 423.230487][ T9975] _copy_from_user+0x2e/0xd0 [ 423.230519][ T9975] __x64_sys_settimeofday+0x1b1/0x2b0 [ 423.230569][ T9975] ? __pfx___x64_sys_settimeofday+0x10/0x10 [ 423.230614][ T9975] ? ksys_write+0x1ac/0x250 [ 423.230663][ T9975] ? __pfx_ksys_write+0x10/0x10 [ 423.230723][ T9975] do_syscall_64+0xcd/0x490 [ 423.230785][ T9975] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 423.230818][ T9975] RIP: 0033:0x7f3e1278e929 [ 423.230848][ T9975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 423.230886][ T9975] RSP: 002b:00007f3e105d5038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a4 [ 423.230917][ T9975] RAX: ffffffffffffffda RBX: 00007f3e129b6160 RCX: 00007f3e1278e929 [ 423.230937][ T9975] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000200000000180 [ 423.230956][ T9975] RBP: 00007f3e105d5090 R08: 0000000000000000 R09: 0000000000000000 [ 423.230973][ T9975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 423.230990][ T9975] R13: 0000000000000001 R14: 00007f3e129b6160 R15: 00007ffde170d7e8 [ 423.231029][ T9975] [ 425.486128][ T1318] EXT4-fs (sda1): Delayed block allocation failed for inode 2030 at logical offset 0 with max blocks 1 with error 117 [ 425.504180][ T1318] EXT4-fs (sda1): This should not happen!! Data will be lost [ 425.504180][ T1318] [ 425.523064][ T1318] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 0 with max blocks 1 with error 117 [ 425.542057][ T1318] EXT4-fs (sda1): This should not happen!! Data will be lost [ 425.542057][ T1318] [ 425.552757][ T1318] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 0 with max blocks 1 with error 117 [ 425.604376][ T1318] EXT4-fs (sda1): This should not happen!! Data will be lost [ 425.604376][ T1318] [ 425.652730][ T1318] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 63 with max blocks 1 with error 117 [ 425.703176][ T1318] EXT4-fs (sda1): This should not happen!! Data will be lost [ 425.703176][ T1318] /[ 428.326353][T10022] netlink: 330 bytes leftover after parsing attributes in process `syz.0.801'. [ 428.438334][T10024] Invalid ELF header magic: != ELF /[ 429.653074][T10039] FAULT_INJECTION: forcing a failure. [ 429.653074][T10039] name failslab, interval 1, probability 0, space 0, times 0 [ 429.723300][T10039] CPU: 0 UID: 0 PID: 10039 Comm: syz.0.806 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 429.723351][T10039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 429.723371][T10039] Call Trace: [ 429.723383][T10039] [ 429.723396][T10039] dump_stack_lvl+0x16c/0x1f0 [ 429.723455][T10039] should_fail_ex+0x512/0x640 [ 429.723507][T10039] ? __kvmalloc_node_noprof+0x124/0x620 [ 429.723565][T10039] should_failslab+0xc2/0x120 [ 429.723604][T10039] __kvmalloc_node_noprof+0x137/0x620 [ 429.723659][T10039] ? bucket_table_alloc.isra.0+0x83/0x460 [ 429.723719][T10039] ? bucket_table_alloc.isra.0+0x83/0x460 [ 429.723768][T10039] bucket_table_alloc.isra.0+0x83/0x460 [ 429.723823][T10039] rhashtable_init_noprof+0x41a/0x7e0 [ 429.723877][T10039] ? __pfx_ipmr_new_table_set+0x10/0x10 [ 429.723934][T10039] rhltable_init_noprof+0x20/0x60 [ 429.723983][T10039] mr_table_alloc+0x116/0x2e0 [ 429.724018][T10039] ? __pfx_ipmr_expire_process+0x10/0x10 [ 429.724051][T10039] ? __pfx_ipmr_net_init+0x10/0x10 [ 429.724086][T10039] ipmr_net_init+0x3c4/0x4e0 [ 429.724124][T10039] ? __pfx_ipmr_net_init+0x10/0x10 [ 429.724159][T10039] ops_init+0x1df/0x5f0 [ 429.724197][T10039] setup_net+0x1ff/0x510 [ 429.724225][T10039] ? lockdep_init_map_type+0x5c/0x280 [ 429.724285][T10039] ? __pfx_setup_net+0x10/0x10 [ 429.724321][T10039] ? debug_mutex_init+0x37/0x70 [ 429.724360][T10039] copy_net_ns+0x2a6/0x5f0 [ 429.724401][T10039] create_new_namespaces+0x3ea/0xa90 [ 429.724452][T10039] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 429.724497][T10039] ksys_unshare+0x45b/0xa40 [ 429.724545][T10039] ? __pfx_ksys_unshare+0x10/0x10 [ 429.724594][T10039] ? xfd_validate_state+0x61/0x180 [ 429.724653][T10039] __x64_sys_unshare+0x31/0x40 [ 429.724699][T10039] do_syscall_64+0xcd/0x490 [ 429.724756][T10039] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 429.724790][T10039] RIP: 0033:0x7f3e1278e929 [ 429.724819][T10039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 429.724853][T10039] RSP: 002b:00007f3e1352c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 429.724885][T10039] RAX: ffffffffffffffda RBX: 00007f3e129b5fa0 RCX: 00007f3e1278e929 [ 429.724907][T10039] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 429.724926][T10039] RBP: 00007f3e12810b39 R08: 0000000000000000 R09: 0000000000000000 [ 429.724946][T10039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 429.724966][T10039] R13: 0000000000000000 R14: 00007f3e129b5fa0 R15: 00007ffde170d7e8 [ 429.725008][T10039] [ 430.257489][T10047] openvswitch: netlink: Flow key attr not present in new flow. [ 430.322616][T10045] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input115 [ 431.277903][T10063] netlink: 8 bytes leftover after parsing attributes in process `syz.2.811'. [ 431.303726][T10063] openvswitch: netlink: Flow key attr not present in new flow. [ 431.825890][T10070] netlink: 4 bytes leftover after parsing attributes in process `syz.2.813'. [ 431.837171][T10073] Invalid ELF header magic: != ELF [ 431.862047][T10070] netlink: 25 bytes leftover after parsing attributes in process `syz.2.813'. [ 432.629437][ T30] audit: type=1804 audit(17221.610:2): pid=10083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.816" name="/newroot/103/file0" dev="tmpfs" ino=564 res=1 errno=0 [ 432.773531][ T30] audit: type=1800 audit(17221.710:3): pid=10083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.816" name="file0" dev="tmpfs" ino=564 res=0 errno=0 [ 432.793619][ C0] vkms_vblank_simulate: vblank timer overrun [ 432.858388][T10088] netlink: 28 bytes leftover after parsing attributes in process `syz.3.816'. [ 432.932058][ T30] audit: type=1800 audit(17221.710:4): pid=10085 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.816" name="file0" dev="tmpfs" ino=564 res=0 errno=0 [ 434.286116][T10097] ================================================================== [ 434.294269][T10097] BUG: KASAN: slab-use-after-free in force_devcd_write+0x312/0x340 [ 434.302233][T10097] Read of size 8 at addr ffff888024b4b800 by task syz.2.819/10097 [ 434.310087][T10097] [ 434.312461][T10097] CPU: 0 UID: 0 PID: 10097 Comm: syz.2.819 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 434.312505][T10097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 434.312526][T10097] Call Trace: [ 434.312537][T10097] [ 434.312549][T10097] dump_stack_lvl+0x116/0x1f0 [ 434.312606][T10097] print_report+0xcd/0x680 [ 434.312639][T10097] ? __virt_addr_valid+0x81/0x610 [ 434.312676][T10097] ? __phys_addr+0xe8/0x180 [ 434.312713][T10097] ? force_devcd_write+0x312/0x340 [ 434.312743][T10097] kasan_report+0xe0/0x110 [ 434.312776][T10097] ? force_devcd_write+0x312/0x340 [ 434.312812][T10097] force_devcd_write+0x312/0x340 [ 434.312850][T10097] ? __pfx_force_devcd_write+0x10/0x10 [ 434.312882][T10097] ? __debugfs_file_get+0x1fe/0x840 [ 434.312916][T10097] ? __pfx___debugfs_file_get+0x10/0x10 [ 434.312956][T10097] full_proxy_write+0x13c/0x200 [ 434.312990][T10097] ? __pfx_full_proxy_write+0x10/0x10 [ 434.313024][T10097] vfs_write+0x29d/0x1150 [ 434.313077][T10097] ? __pfx___mutex_lock+0x10/0x10 [ 434.313130][T10097] ? __pfx_vfs_write+0x10/0x10 [ 434.313185][T10097] ? __fget_files+0x20e/0x3c0 [ 434.313238][T10097] ksys_write+0x12a/0x250 [ 434.313287][T10097] ? __pfx_ksys_write+0x10/0x10 [ 434.313345][T10097] do_syscall_64+0xcd/0x490 [ 434.313398][T10097] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 434.313432][T10097] RIP: 0033:0x7fbf2a18e929 [ 434.313459][T10097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 434.313493][T10097] RSP: 002b:00007fbf27ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 434.313522][T10097] RAX: ffffffffffffffda RBX: 00007fbf2a3b5fa0 RCX: 00007fbf2a18e929 [ 434.313546][T10097] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000008 [ 434.313565][T10097] RBP: 00007fbf2a210b39 R08: 0000000000000000 R09: 0000000000000000 [ 434.313584][T10097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 434.313604][T10097] R13: 0000000000000000 R14: 00007fbf2a3b5fa0 R15: 00007fff60b4cfe8 [ 434.313636][T10097] [ 434.313647][T10097] [ 434.523026][T10097] Allocated by task 13: [ 434.527206][T10097] kasan_save_stack+0x33/0x60 [ 434.531937][T10097] kasan_save_track+0x14/0x30 [ 434.536669][T10097] __kasan_kmalloc+0xaa/0xb0 [ 434.541312][T10097] __kmalloc_noprof+0x223/0x510 [ 434.546205][T10097] ieee802_11_parse_elems_full+0x1d7/0x3780 [ 434.552144][T10097] ieee80211_inform_bss+0x10b/0x1140 [ 434.557475][T10097] cfg80211_inform_single_bss_data+0x8e7/0x1df0 [ 434.563776][T10097] cfg80211_inform_bss_data+0x224/0x3bc0 [ 434.569463][T10097] cfg80211_inform_bss_frame_data+0x26f/0x750 [ 434.575596][T10097] ieee80211_bss_info_update+0x310/0xab0 [ 434.581267][T10097] ieee80211_ibss_rx_queued_mgmt+0x1905/0x2fd0 [ 434.587469][T10097] ieee80211_iface_work+0xbf4/0x1020 [ 434.592800][T10097] cfg80211_wiphy_work+0x3dc/0x550 [ 434.597955][T10097] process_one_work+0x9cf/0x1b70 [ 434.602944][T10097] worker_thread+0x6c8/0xf10 [ 434.607581][T10097] kthread+0x3c5/0x780 [ 434.611700][T10097] ret_from_fork+0x5d4/0x6f0 [ 434.616334][T10097] ret_from_fork_asm+0x1a/0x30 [ 434.621162][T10097] [ 434.623507][T10097] Freed by task 13: [ 434.627332][T10097] kasan_save_stack+0x33/0x60 [ 434.632069][T10097] kasan_save_track+0x14/0x30 [ 434.636802][T10097] kasan_save_free_info+0x3b/0x60 [ 434.641885][T10097] __kasan_slab_free+0x51/0x70 [ 434.646700][T10097] kfree+0x2b4/0x4d0 [ 434.650653][T10097] ieee80211_inform_bss+0x77c/0x1140 [ 434.655978][T10097] cfg80211_inform_single_bss_data+0x8e7/0x1df0 [ 434.662270][T10097] cfg80211_inform_bss_data+0x224/0x3bc0 [ 434.667956][T10097] cfg80211_inform_bss_frame_data+0x26f/0x750 [ 434.674074][T10097] ieee80211_bss_info_update+0x310/0xab0 [ 434.679763][T10097] ieee80211_ibss_rx_queued_mgmt+0x1905/0x2fd0 [ 434.685957][T10097] ieee80211_iface_work+0xbf4/0x1020 [ 434.691293][T10097] cfg80211_wiphy_work+0x3dc/0x550 [ 434.696439][T10097] process_one_work+0x9cf/0x1b70 [ 434.701432][T10097] worker_thread+0x6c8/0xf10 [ 434.706098][T10097] kthread+0x3c5/0x780 [ 434.710212][T10097] ret_from_fork+0x5d4/0x6f0 [ 434.714849][T10097] ret_from_fork_asm+0x1a/0x30 [ 434.719645][T10097] [ 434.721985][T10097] The buggy address belongs to the object at ffff888024b4b800 [ 434.721985][T10097] which belongs to the cache kmalloc-1k of size 1024 [ 434.736072][T10097] The buggy address is located 0 bytes inside of [ 434.736072][T10097] freed 1024-byte region [ffff888024b4b800, ffff888024b4bc00) [ 434.749832][T10097] [ 434.752186][T10097] The buggy address belongs to the physical page: [ 434.758644][T10097] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x24b48 [ 434.767452][T10097] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 434.775978][T10097] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 434.783560][T10097] page_type: f5(slab) [ 434.787602][T10097] raw: 00fff00000000040 ffff88801b841dc0 dead000000000100 dead000000000122 [ 434.796219][T10097] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 434.804840][T10097] head: 00fff00000000040 ffff88801b841dc0 dead000000000100 dead000000000122 [ 434.813544][T10097] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 434.822258][T10097] head: 00fff00000000003 ffffea000092d201 00000000ffffffff 00000000ffffffff [ 434.830982][T10097] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 434.839683][T10097] page dumped because: kasan: bad access detected [ 434.846139][T10097] page_owner tracks the page as allocated [ 434.851878][T10097] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 2937, tgid 2937 (kworker/u8:7), ts 123455108226, free_ts 123364718664 [ 434.871373][T10097] post_alloc_hook+0x1c0/0x230 [ 434.876187][T10097] get_page_from_freelist+0x1321/0x3890 [ 434.881776][T10097] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 434.887721][T10097] alloc_pages_mpol+0x1fb/0x550 [ 434.892611][T10097] new_slab+0x23b/0x330 [ 434.896806][T10097] ___slab_alloc+0xd9c/0x1940 [ 434.901521][T10097] __slab_alloc.constprop.0+0x56/0xb0 [ 434.907027][T10097] __kmalloc_noprof+0x2f2/0x510 [ 434.911927][T10097] ieee802_11_parse_elems_full+0x1d7/0x3780 [ 434.917871][T10097] ieee80211_ibss_rx_queued_mgmt+0xc69/0x2fd0 [ 434.923992][T10097] ieee80211_iface_work+0xbf4/0x1020 [ 434.929351][T10097] cfg80211_wiphy_work+0x3dc/0x550 [ 434.934507][T10097] process_one_work+0x9cf/0x1b70 [ 434.939496][T10097] worker_thread+0x6c8/0xf10 [ 434.944140][T10097] kthread+0x3c5/0x780 [ 434.948268][T10097] ret_from_fork+0x5d4/0x6f0 [ 434.952914][T10097] page last free pid 6046 tgid 6046 stack trace: [ 434.959273][T10097] __free_frozen_pages+0x7fe/0x1180 [ 434.964523][T10097] __put_partials+0x16d/0x1c0 [ 434.969241][T10097] qlist_free_all+0x4d/0x120 [ 434.973876][T10097] kasan_quarantine_reduce+0x195/0x1e0 [ 434.979383][T10097] __kasan_slab_alloc+0x69/0x90 [ 434.984267][T10097] __kmalloc_noprof+0x1d4/0x510 [ 434.989164][T10097] tomoyo_realpath_from_path+0xc2/0x6e0 [ 434.994759][T10097] tomoyo_path_perm+0x274/0x460 [ 434.999645][T10097] security_inode_getattr+0x116/0x290 [ 435.005054][T10097] vfs_fstat+0x4b/0xe0 [ 435.009158][T10097] __do_sys_newfstat+0x87/0x100 [ 435.014047][T10097] do_syscall_64+0xcd/0x490 [ 435.018600][T10097] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 435.024525][T10097] [ 435.026953][T10097] Memory state around the buggy address: [ 435.032609][T10097] ffff888024b4b700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 435.040705][T10097] ffff888024b4b780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 435.048801][T10097] >ffff888024b4b800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 435.056896][T10097] ^ [ 435.060991][T10097] ffff888024b4b880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 435.069082][T10097] ffff888024b4b900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 435.077168][T10097] ================================================================== [ 435.085315][ C0] vkms_vblank_simulate: vblank timer overrun [ 435.152066][T10097] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 435.159361][T10097] CPU: 0 UID: 0 PID: 10097 Comm: syz.2.819 Not tainted 6.16.0-rc4-syzkaller-00123-g4c06e63b9203 #0 PREEMPT(full) [ 435.171407][T10097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 435.181519][T10097] Call Trace: [ 435.184854][T10097] [ 435.187817][T10097] dump_stack_lvl+0x3d/0x1f0 [ 435.192468][T10097] panic+0x71c/0x800 [ 435.196419][T10097] ? __pfx_panic+0x10/0x10 [ 435.200886][T10097] ? mark_held_locks+0x49/0x80 [ 435.205724][T10097] ? preempt_schedule_thunk+0x16/0x30 [ 435.211145][T10097] ? force_devcd_write+0x312/0x340 [ 435.216294][T10097] ? preempt_schedule_common+0x44/0xc0 [ 435.221808][T10097] ? force_devcd_write+0x312/0x340 [ 435.226961][T10097] check_panic_on_warn+0xab/0xb0 [ 435.231969][T10097] end_report+0x107/0x170 [ 435.236335][T10097] kasan_report+0xee/0x110 [ 435.240796][T10097] ? force_devcd_write+0x312/0x340 [ 435.245948][T10097] force_devcd_write+0x312/0x340 [ 435.250919][T10097] ? __pfx_force_devcd_write+0x10/0x10 [ 435.256422][T10097] ? __debugfs_file_get+0x1fe/0x840 [ 435.261678][T10097] ? __pfx___debugfs_file_get+0x10/0x10 [ 435.267269][T10097] full_proxy_write+0x13c/0x200 [ 435.272162][T10097] ? __pfx_full_proxy_write+0x10/0x10 [ 435.277572][T10097] vfs_write+0x29d/0x1150 [ 435.281958][T10097] ? __pfx___mutex_lock+0x10/0x10 [ 435.287036][T10097] ? __pfx_vfs_write+0x10/0x10 [ 435.291861][T10097] ? __fget_files+0x20e/0x3c0 [ 435.296597][T10097] ksys_write+0x12a/0x250 [ 435.300979][T10097] ? __pfx_ksys_write+0x10/0x10 [ 435.305897][T10097] do_syscall_64+0xcd/0x490 [ 435.310454][T10097] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 435.316387][T10097] RIP: 0033:0x7fbf2a18e929 [ 435.320840][T10097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 435.340494][T10097] RSP: 002b:00007fbf27ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 435.348991][T10097] RAX: ffffffffffffffda RBX: 00007fbf2a3b5fa0 RCX: 00007fbf2a18e929 [ 435.357001][T10097] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000008 [ 435.365008][T10097] RBP: 00007fbf2a210b39 R08: 0000000000000000 R09: 0000000000000000 [ 435.373026][T10097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 435.381026][T10097] R13: 0000000000000000 R14: 00007fbf2a3b5fa0 R15: 00007fff60b4cfe8 [ 435.389043][T10097] [ 435.392416][T10097] Kernel Offset: disabled [ 435.396763][T10097] Rebooting in 86400 seconds..