last executing test programs: 53.703973692s ago: executing program 2 (id=2217): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0) pread64$auto(r0, 0x0, 0x8, 0x26c) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = getpid() ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0) unshare$auto(0x40000080) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) r3 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0x88900, 0x0) readv$auto(r3, &(0x7f0000000680)={&(0x7f0000000540), 0x40200}, 0x3) ppoll$auto(&(0x7f0000000240)={r2, 0x5, 0x2}, 0x68, 0x0, 0x0, 0x8) ioctl$auto_SNDCTL_DSP_SYNC(r2, 0x5001, 0xfffffffffffffffc) openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000100), 0x8880, 0x0) read$auto(0x3, 0x0, 0x7fffffff) modify_ldt$auto(0x1, 0x0, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) getpid() r5 = openat$auto_hpet_fops_hpet(0xffffffffffffff9c, &(0x7f00000001c0), 0x4060c2, 0x0) writev$auto(r5, &(0x7f00000002c0)={0x0, 0x5}, 0xffffffff) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0) r6 = geteuid() msgctl$auto_IPC_RMID(0x1, 0x0, &(0x7f0000000440)={{0x7, r6, 0xee01, 0x10001, 0x10000, 0x7, 0x2}, &(0x7f0000000340)=0xd1, &(0x7f0000000380)=0x80, 0x3ff, 0xfffffffffffffffc, 0x10000000000002b, 0x200, 0x3, 0x47, 0x8, 0x7, @raw=0x6, @inferred=r1}) statx$auto(r4, &(0x7f0000000180)='./file0\x00', 0x4c35, 0x1, &(0x7f0000002500)={0xc, 0x9, 0xfffffffffffffff8, 0x2, 0xffffffffffffffff, 0xee01, 0x800, 0x23c, 0x7, 0x5, 0x1000000000003, 0x8000000d65, {0x7, 0x7}, {0x3, 0xcc0}, {0x7, 0x8}, {0xa89f, 0xfffffffc}, 0x3, 0x43f, 0x6, 0x9, 0xc, 0x8, 0x1, 0x9882, 0x1ff, 0x7, 0x20001, 0x0, [0xc231, 0xed75, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x4, 0xb, 0x7fffffffffffffff, 0x20008, 0x8001]}) write$auto(0x3, 0x0, 0xffd8) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/nbd13/sched/batching\x00', 0x0, 0x0) futex$auto(&(0x7f0000000080)=0xfffffff7, 0x7ff, 0x8, &(0x7f00000000c0)={0x4, 0xe}, 0x0, 0xffffffff) 52.179807228s ago: executing program 2 (id=2222): socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) io_uring_setup$auto(0x6, 0x0) socket(0x28, 0x2, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x4) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/orangefs/perf_history_size\x00', 0x1182, 0x0) mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) io_uring_setup$auto(0x86, 0x0) socket(0x5, 0x5, 0xffffffc0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x0, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0xb, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x120e2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010325bd7040ffdbdf250a0000000c0002006e6c383032313100"], 0x28}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) r3 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) getsockopt$auto(r3, 0x84, 0x6c, 0x0, &(0x7f0000000280)=0x1000c0) 51.00988907s ago: executing program 2 (id=2230): lsm_get_self_attr$auto(0x155bb99d, 0x0, &(0x7f0000000080)=0x200000, 0x1) mmap$auto(0x3, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = socket(0xa, 0x5, 0x84) bpf$auto(0xfffffffd, 0x0, 0xa3) sendto$auto(r0, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe800000040100"}, 0x1c) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000) connect$auto(0x4, 0x0, 0x10) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) r1 = socket(0x2, 0x5, 0x0) bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a001}, 0x9, 0x0, 0x0, 0xb}, 0xfff}, 0x5, 0x311) setsockopt$auto(0x3, 0x1, 0xf, 0x0, 0x8) listen$auto(0x3, 0x83) close_range$auto(0x2, 0x8, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb5, 0x200, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x3, 0x7, 0x6}, 0x10) r2 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa\x00', 0x2a801, 0x0) openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001a80)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x2, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r3 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r3, 0xc0109207, &(0x7f0000000100)={0x0, 0x40001, 0x1}) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/010/001\x00', 0x0, 0x0) write$auto(r2, &(0x7f0000000000)='/dev/vcsa\x00', 0xffffffffffff7fff) 50.522653763s ago: executing program 2 (id=2232): mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r0 = openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000000), 0x20140, 0x0) ioctl$auto_IOCTL_STOP_ACCEL_DEV(r0, 0x40096101, &(0x7f0000000240)={@padding, 0xfe}) 50.128735445s ago: executing program 2 (id=2233): close_range$auto(0x2, 0x8, 0x0) writev$auto(0x8000, &(0x7f0000000040)={0x0, 0x1000000000004}, 0x2bc) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1) io_uring_register$auto(0x2, 0x1a, &(0x7f00000000c0), 0x1) 50.035586369s ago: executing program 0 (id=2234): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x40000c, 0xdf, 0x9b72, 0xffffffffffffffff, 0x7ffd) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) msgctl$auto_MSG_INFO(0x0, 0xc, &(0x7f0000000500)={{0xfffffffc, 0x0, 0x0, 0x5, 0x5f, 0x112, 0x5}, &(0x7f0000000100)=0xd, 0x0, 0x6, 0x2000000000007, 0x7, 0x3, 0x14cd21ec, 0x3, 0x5, 0x4, @inferred, @raw=0xa4}) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x40, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x10, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100aaaaaaaaaa35000008000200", @ANYRES32=r1, @ANYBLOB="060006000500dfff08000d"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r2 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec29\x00', 0x900, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000000100)={"fda256c4", 0x3, 0x6, 0x4, 0x9b4, 0x9, "0800aafc241cd010c7543bfbca2ce1", "0200", '\x00\x00 \x00', "2ff43123", ['\x00', "f8ffffffffffffff00000001", "0004154db00b0004000400", "5fe10eedab2c4b353c392a92"]}) r3 = socket(0x1e, 0x6, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x10001, 0x0) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x8800, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, &(0x7f0000000040)=0x5) ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, &(0x7f0000000180)) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r4, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) sendmsg$auto_HSR_C_GET_NODE_STATUS(r3, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x8000) mmap$auto(0x0, 0x2020009, 0x8000000007, 0x11, 0xfffffffffffffffa, 0x8000) msync$auto(0x7f, 0x6, 0x0) 50.001872319s ago: executing program 1 (id=2235): r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x121c40, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000000c0)={{0x0, 0x2, 0x200800, 0x9, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x40, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x406, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x2, 0x9) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) r2 = io_uring_setup$auto(0x59, &(0x7f0000000340)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x2, 0xffffffffffffffff, [0x0, 0x0, 0x1bc], {0xd74c, 0x6, 0x2, 0x7, 0x100, 0x107f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400008, 0x100000003}}) io_uring_enter$auto(r1, 0x9, 0x820e, 0x9, 0x0, 0x18) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x601, 0x0) prctl$auto(0xc2d, 0x3, 0x0, 0x39c1f094, 0xc) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x60102, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mincore$auto(0x1000, 0x4000000, 0x0) ioctl$auto_XFS_IOC_ALLOCSP(r3, 0x4030580a, &(0x7f0000000040)={0xffc0, 0x1ff, 0x3, 0x6, 0x40, 0xffffffffffffffff}) shmctl$auto_IPC_RMID(0x41, 0x0, &(0x7f0000000100)={{0x42, 0xee01, 0xee00, 0x10, 0x26, 0x40000008, 0x400}, 0x7fffffff, 0x5, 0x9, 0x6, @inferred=r4, @raw=0x66, 0x8, 0x0, &(0x7f0000000280)="5a70292100a78e32c4b9894ad64117bfde81c6b219084f9109031cb612a8bd8df2f6a6e0665433548d89d522f4fa8ff63c095fe723261d5cfb45868967330b1d3e217e7ff4d117360b304d1f2bb15ddc900f2924dc5e2c0d5256ba0216f3ae72e738df074a052423a6ff418ad7af746a9921cd132b095ff7f796226f396be40b065a239a6dc131fcf66b3a9839485402f2577ec7f3fa8ecd7ee9b83011c798e0bb9d276a7d8d329293852ee551756ae4bd", &(0x7f0000000400)="46cd507bb57795388354c94c888bf63215c1401695c791699b46ca0bd4574122d71ba3ee001a496995df18d228e1ad06ad5957fca538f82eb6b4a41bdb39db2cf3409f6e981ded30d3d6e7373892dc97e6c57f109f46c7d95ddd59dd72551ce1d9b0ba130da9084fad1fba9de330df7ade126a642166d123a66b5dbebda00e2e4823acdc45d613162b7b382a7a"}) fsconfig$auto(r2, 0x3, &(0x7f0000000000)='/dev/kvm\x00', &(0x7f00000001c0)="9f51a0b295fd6a4e95b0f7da7ff3724230005bd42742cff72a6ada1cbc526fc56f0a91bc9902e59e43cf584ffcfe53acb0b80f9bccb9402bab48eda3d476e11a76e083eca2b0c2dc4dfbcab348d86a1af6edb2ba21e5cce28bb0302bf96cf137102077772a15a9e1daa1c68adbe1fcdc030bf62915b265e9dcb14ff6f4fc1334b7", r5) 49.934395287s ago: executing program 2 (id=2236): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = io_uring_setup$auto(0x59, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/firmware/acpi/interrupts/ff_pmtimer\x00', 0x8802, 0x0) socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) r1 = socket(0x1d, 0x2, 0x6) r2 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r1, &(0x7f0000000040)=@can={0x1d, r3, 0xfd}, 0x6a) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x6c}, 0x1, 0x0, 0x0, 0x40084}, 0x40) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) ioctl$auto_SG_GET_REQUEST_TABLE(r0, 0x2286, &(0x7f00000001c0)="f1b0eb1893a88ce2385865b4e78fb8c57db51ab4b3d343e31662768bdc0a0baa143f4c9eba9ea470e5daf04f7c98acc700c553192d6d99b1fe36907ab50dcea81a12dec12111955a0375372e23bc9c058f91de0dc8350c36934f6d172956f05af9ec739c3c627ae82c6abaf12e28497b30837220bd7048") getsockopt$auto(0xffffffffffffffff, 0x28, 0x2, 0x0, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, &(0x7f0000000140)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x800001, 0x697b}, 0x3e}, 0x2, 0xb) openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x301, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r4, 0xc008ae88, &(0x7f0000000080)={0x2, 0x0, [{0xc0010141, 0x400, 0x9}]}) socket$nl_generic(0x10, 0x3, 0x10) 49.845798848s ago: executing program 0 (id=2237): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="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", @ANYRESOCT=r0, @ANYRESDEC=r1], 0x18}, 0x1, 0x0, 0x0, 0x4010}, 0x4048800) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000000780)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000740)={0x0}, 0x1, 0x0, 0x0, 0x2004c0c0}, 0x0) select$auto(0x0, &(0x7f0000000180)={[0xeb8, 0x6, 0x6, 0xda6c, 0x6, 0x6, 0x3, 0x2, 0x0, 0x5, 0xe, 0x0, 0x8, 0x4, 0x2, 0x8000000000000000]}, &(0x7f0000000240)={[0xfffffffffffffffc, 0xc8, 0x8000000000000001, 0x100000000, 0x9, 0x2, 0x3, 0x2de5c244, 0x0, 0x2, 0x5, 0x0, 0x1, 0xc, 0x2, 0x1]}, &(0x7f0000000400)={[0x1, 0xfffffffffffffffd, 0x100000000, 0xdcbf, 0x3, 0x7, 0x100, 0xfffffffffffffff7, 0xfffffffffffffff8, 0x2, 0x3, 0x7ff, 0x4, 0x7f, 0x10000, 0x1]}, &(0x7f0000000480)={0xc, 0x8000000000000000}) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00'], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) mmap$auto(0x2, 0x0, 0x4000000000df, 0xeb1, r0, 0x8) ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(0xffffffffffffffff, 0xc0305710, &(0x7f00000000c0)={0x1, 0xf8, 0x0, 0x1, 0x418, "00000f00ea0200"}) sendmsg$auto_SMC_NETLINK_DUMP_HS_LIMITATION(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40010}, 0x40080) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000002f80)={0x0}, 0x1, 0x0, 0x0, 0x11}, 0x24000802) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) writev$auto(0x1, &(0x7f0000000500)={0x0, 0x400000000000fdef}, 0x100000001) r2 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/filter\x00', 0x200, 0x0) read$auto(r2, &(0x7f0000000000)=')\x00', 0x200) 48.744373543s ago: executing program 1 (id=2240): openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r0, 0x1, 0x7ff) waitid$auto_P_PGID(0x2, 0x0, 0x0, 0x4, 0x0) 48.694485881s ago: executing program 0 (id=2241): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) lseek$auto(0xffffffffffffffff, 0x7ffffbfffffffffd, 0x2) mmap$auto(0x7, 0x2000006, 0x7fffffff, 0x17, 0x401, 0xf) execve$auto(&(0x7f0000001080)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) readv$auto(0xffffffffffffffff, &(0x7f0000001040)={0x0, 0xb}, 0x8) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x8) madvise$auto(0x8, 0xd0, 0xffffffff) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12bc00, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48) faccessat$auto(r1, 0x0, 0x2) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xc44c1, 0x0) mmap$auto(0x0, 0x5, 0xfff, 0x44eb2, 0x10006, 0x300000000000) r3 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0) write$auto(r3, 0x0, 0x1ff) read$auto_rng_chrdev_ops_core(0xffffffffffffffff, 0x0, 0x0) r4 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) ioperm$auto(0x7, 0x6, 0x5) mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x80e9, 0x8103) unlink$auto(&(0x7f0000000640)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00') r5 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/uptime\x00', 0x20000, 0x0) read$auto_proc_mountinfo_operations_mnt_namespace(r5, &(0x7f0000000040)=""/4080, 0xff0) ioctl$auto_LOOP_CTL_ADD(r4, 0x4c80, 0xfffffffffffffffd) syz_clone(0x80800211, 0x0, 0x0, 0x0, 0x0, 0x0) 48.486119186s ago: executing program 1 (id=2242): socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) io_uring_setup$auto(0x6, 0x0) socket(0x28, 0x2, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x4) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1182, 0x0) mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) io_uring_setup$auto(0x86, 0x0) socket(0x5, 0x5, 0xffffffc0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x0, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0xb, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x120e2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010325bd7040ffdbdf250a0000000c0002006e6c383032313100"], 0x28}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) r3 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) getsockopt$auto(r3, 0x84, 0x6c, 0x0, &(0x7f0000000280)=0x1000c0) 47.816328002s ago: executing program 0 (id=2244): socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) io_uring_setup$auto(0x6, 0x0) socket(0x28, 0x2, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x4) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/orangefs/perf_history_size\x00', 0x1182, 0x0) mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) io_uring_setup$auto(0x86, 0x0) socket(0x5, 0x5, 0xffffffc0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x0, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0xb, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x120e2, 0x0) write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r2, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) r3 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) getsockopt$auto(r3, 0x84, 0x6c, 0x0, &(0x7f0000000280)=0x1000c0) 47.278880575s ago: executing program 1 (id=2246): mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) writev$auto(0x8000, 0x0, 0x2bc) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x16, &(0x7f0000000040), 0x1) io_uring_register$auto(0x2, 0x1a, &(0x7f00000000c0), 0x1) 46.868842303s ago: executing program 1 (id=2248): r0 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/filter\x00', 0x200, 0x0) read$auto(r0, &(0x7f0000000000)=')\x00', 0x200) 46.711613722s ago: executing program 0 (id=2249): r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x121c40, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000000c0)={{0x0, 0x2, 0x200800, 0x9, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x40, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x406, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x2, 0x9) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) r2 = io_uring_setup$auto(0x59, &(0x7f0000000340)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x2, 0xffffffffffffffff, [0x0, 0x0, 0x1bc], {0xd74c, 0x6, 0x2, 0x7, 0x100, 0x107f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400008, 0x100000003}}) io_uring_enter$auto(r1, 0x9, 0x820e, 0x9, 0x0, 0x18) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x601, 0x0) prctl$auto(0xc2d, 0x3, 0x0, 0x39c1f094, 0xc) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x60102, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mincore$auto(0x1000, 0x4000000, 0x0) ioctl$auto_XFS_IOC_ALLOCSP(r3, 0x4030580a, &(0x7f0000000040)={0xffc0, 0x1ff, 0x3, 0x6, 0x40, 0xffffffffffffffff}) shmctl$auto_IPC_RMID(0x41, 0x0, &(0x7f0000000100)={{0x42, 0xee01, 0xee00, 0x10, 0x26, 0x40000008, 0x400}, 0x7fffffff, 0x5, 0x9, 0x6, @inferred=r4, @raw=0x66, 0x8, 0x0, &(0x7f0000000280)="5a70292100a78e32c4b9894ad64117bfde81c6b219084f9109031cb612a8bd8df2f6a6e0665433548d89d522f4fa8ff63c095fe723261d5cfb45868967330b1d3e217e7ff4d117360b304d1f2bb15ddc900f2924dc5e2c0d5256ba0216f3ae72e738df074a052423a6ff418ad7af746a9921cd132b095ff7f796226f396be40b065a239a6dc131fcf66b3a9839485402f2577ec7f3fa8ecd7ee9b83011c798e0bb9d276a7d8d329293852ee551756ae4bd", &(0x7f0000000400)="46cd507bb57795388354c94c888bf63215c1401695c791699b46ca0bd4574122d71ba3ee001a496995df18d228e1ad06ad5957fca538f82eb6b4a41bdb39db2cf3409f6e981ded30d3d6e7373892dc97e6c57f109f46c7d95ddd59dd72551ce1d9b0ba130da9084fad1fba9de330df7ade126a642166d123a66b5dbebda00e2e4823acdc45d613162b7b382a7a"}) fsconfig$auto(r2, 0x3, &(0x7f0000000000)='/dev/kvm\x00', &(0x7f00000001c0)="9f51a0b295fd6a4e95b0f7da7ff3724230005bd42742cff72a6ada1cbc526fc56f0a91bc9902e59e43cf584ffcfe53acb0b80f9bccb9402bab48eda3d476e11a76e083eca2b0c2dc4dfbcab348d86a1af6edb2ba21e5cce28bb0302bf96cf137102077772a15a9e1daa1c68adbe1fcdc030bf62915b265e9dcb14ff6f4fc1334b7", r5) 46.701275783s ago: executing program 1 (id=2250): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) lseek$auto(0xffffffffffffffff, 0x7ffffbfffffffffd, 0x2) mmap$auto(0x7, 0x2000006, 0x7fffffff, 0x17, 0x401, 0xf) execve$auto(&(0x7f0000001080)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) readv$auto(0xffffffffffffffff, &(0x7f0000001040)={0x0, 0xb}, 0x8) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x8) madvise$auto(0x8, 0xd0, 0xffffffff) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12bc00, 0x0) faccessat2$auto(0xffffffffffffffff, 0x0, 0x0, 0xb) r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48) faccessat$auto(r0, 0x0, 0x2) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xc44c1, 0x0) mmap$auto(0x0, 0x5, 0xfff, 0x44eb2, 0x10006, 0x300000000000) r2 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0) write$auto(r2, 0x0, 0x1ff) read$auto_rng_chrdev_ops_core(0xffffffffffffffff, 0x0, 0x0) r3 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) ioperm$auto(0x7, 0x6, 0x5) mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x80e9, 0x8103) unlink$auto(&(0x7f0000000640)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00') r4 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/uptime\x00', 0x20000, 0x0) read$auto_proc_mountinfo_operations_mnt_namespace(r4, &(0x7f0000000040)=""/4080, 0xff0) ioctl$auto_LOOP_CTL_ADD(r3, 0x4c80, 0xfffffffffffffffd) syz_clone(0x80800211, 0x0, 0x0, 0x0, 0x0, 0x0) 45.533341296s ago: executing program 0 (id=2252): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) lseek$auto(0xffffffffffffffff, 0x7ffffbfffffffffd, 0x2) mmap$auto(0x7, 0x2000006, 0x7fffffff, 0x17, 0x401, 0xf) execve$auto(&(0x7f0000001080)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) readv$auto(0xffffffffffffffff, &(0x7f0000001040)={0x0, 0xb}, 0x8) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x8) madvise$auto(0x8, 0xd0, 0xffffffff) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12bc00, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48) faccessat$auto(r1, 0x0, 0x2) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xc44c1, 0x0) mmap$auto(0x0, 0x5, 0xfff, 0x44eb2, 0x10006, 0x300000000000) r3 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0) write$auto(r3, 0x0, 0x1ff) read$auto_rng_chrdev_ops_core(0xffffffffffffffff, 0x0, 0x0) r4 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) ioperm$auto(0x7, 0x6, 0x5) mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x80e9, 0x8103) unlink$auto(&(0x7f0000000640)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00') r5 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/uptime\x00', 0x20000, 0x0) read$auto_proc_mountinfo_operations_mnt_namespace(r5, &(0x7f0000000040)=""/4080, 0xff0) ioctl$auto_LOOP_CTL_ADD(r4, 0x4c80, 0xfffffffffffffffd) syz_clone(0x80800211, 0x0, 0x0, 0x0, 0x0, 0x0) 31.419217843s ago: executing program 32 (id=2250): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) lseek$auto(0xffffffffffffffff, 0x7ffffbfffffffffd, 0x2) mmap$auto(0x7, 0x2000006, 0x7fffffff, 0x17, 0x401, 0xf) execve$auto(&(0x7f0000001080)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) readv$auto(0xffffffffffffffff, &(0x7f0000001040)={0x0, 0xb}, 0x8) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x8) madvise$auto(0x8, 0xd0, 0xffffffff) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12bc00, 0x0) faccessat2$auto(0xffffffffffffffff, 0x0, 0x0, 0xb) r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48) faccessat$auto(r0, 0x0, 0x2) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xc44c1, 0x0) mmap$auto(0x0, 0x5, 0xfff, 0x44eb2, 0x10006, 0x300000000000) r2 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0) write$auto(r2, 0x0, 0x1ff) read$auto_rng_chrdev_ops_core(0xffffffffffffffff, 0x0, 0x0) r3 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) ioperm$auto(0x7, 0x6, 0x5) mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x80e9, 0x8103) unlink$auto(&(0x7f0000000640)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00') r4 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/uptime\x00', 0x20000, 0x0) read$auto_proc_mountinfo_operations_mnt_namespace(r4, &(0x7f0000000040)=""/4080, 0xff0) ioctl$auto_LOOP_CTL_ADD(r3, 0x4c80, 0xfffffffffffffffd) syz_clone(0x80800211, 0x0, 0x0, 0x0, 0x0, 0x0) 30.35831059s ago: executing program 33 (id=2252): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) lseek$auto(0xffffffffffffffff, 0x7ffffbfffffffffd, 0x2) mmap$auto(0x7, 0x2000006, 0x7fffffff, 0x17, 0x401, 0xf) execve$auto(&(0x7f0000001080)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) readv$auto(0xffffffffffffffff, &(0x7f0000001040)={0x0, 0xb}, 0x8) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x8) madvise$auto(0x8, 0xd0, 0xffffffff) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12bc00, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48) faccessat$auto(r1, 0x0, 0x2) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xc44c1, 0x0) mmap$auto(0x0, 0x5, 0xfff, 0x44eb2, 0x10006, 0x300000000000) r3 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0) write$auto(r3, 0x0, 0x1ff) read$auto_rng_chrdev_ops_core(0xffffffffffffffff, 0x0, 0x0) r4 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) ioperm$auto(0x7, 0x6, 0x5) mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x80e9, 0x8103) unlink$auto(&(0x7f0000000640)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00') r5 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/uptime\x00', 0x20000, 0x0) read$auto_proc_mountinfo_operations_mnt_namespace(r5, &(0x7f0000000040)=""/4080, 0xff0) ioctl$auto_LOOP_CTL_ADD(r4, 0x4c80, 0xfffffffffffffffd) syz_clone(0x80800211, 0x0, 0x0, 0x0, 0x0, 0x0) 2.299958371s ago: executing program 3 (id=2322): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) socket(0x10, 0x2, 0x0) mq_timedsend$auto(0xffffffffffffffff, &(0x7f0000000040)='@*!:}\xc1-.!\\#[./\',-\x00', 0x80, 0x9, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="7201", @ANYBLOB="1c00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="1a00"], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x80000000000000a, 0x2, 0x0) socket(0xa, 0x801, 0x84) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) socket(0x10, 0x5, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x800000000001, 0x0) write$auto(r0, &(0x7f00000005c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D_#\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc^:\xd1\xe3\xf1@\xc0\x93^:Mn#Oi\xaa[X\x93)\x8f\x03K\xe6\xa4\x11?\xf1\x02+\\\xf9\x8b\xe5l5\x11\x006c\x907E\xeb\x81\fB\xe3\xf8n\x8f\x94V\xbcB\x9cm\x9f\x15\x00Q\xf8\x8fFW#?\xd5Z~\xa51\x832\xbd|\x19\xda\x8e\xff\x17\r\x96\xa3\xcc+\xf4a\xffN\xd2_\xe5\\\xf8Lzc\xd4\xa0\x1f\x04_\xf1\xc6\fO\xbe?)Q\xc7\\B\xdb\xeaI\xde\xe9m\xf5\xf9\x19\xd3@IK\xe3c\x0ek\x8drZ\xad\xdc\xbb\xfc\xd4\x1f\xdaOW\x87\xb6Fm\x12\xadw(z\\j\xcc0P\xaeC\x9f\xbf\xd5\xf9\xe3\x85~cG\f\x85\xd6\x84ma\xfd\xdayNj\x80\xdd3^\x87,\x14\x8e\xbe$\x05\x8a\xb0 M\xf6$B TCs\xa9\x91dil[\xfc\a\xbfD\xd9\x8d(F\x1e\f\xec\xe9K|h\xf5\xcaUI\x18#\xbed\xa8C\x8a\xbb\fE\xe6\xa3|\xf7\xa8\xbb\xd3\x97l.V/uc\xb5Q\x1eY\xe0\x03\xa1\xc1\xc8\xe2=RK\x7fWV;\xe4\xccTsf\xa7[\xdd\x9cR\xab\xf81s\xbc\x9c\xaaSGH\x9al\xb9%u\v\xb4\x9d\x95\x16\x01\xbbT\x99S\xf8A\xcd\bRC\xf4\xb0\x1a%\xdd+1\x81\x9d6\x90\xe8\xc6\xc1\x1e\xf0~\xaf\x10g&\xd6\x01l::V\xdbJiVW\xab4G\x97\x9cl', 0x100000a3d9) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2062, 0x0) write$auto(r1, 0x0, 0x98c7) r2 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r2, 0x0, 0x8, 0x4008) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ipv6_route\x00', 0x101000, 0x0) pread64$auto(r3, 0x0, 0x8, 0xffff) 1.817740234s ago: executing program 3 (id=2323): socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) io_uring_setup$auto(0x6, 0x0) socket(0x28, 0x2, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x4) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/orangefs/perf_history_size\x00', 0x1182, 0x0) mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) io_uring_setup$auto(0x86, 0x0) socket(0x5, 0x5, 0xffffffc0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x120e2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010325bd7040ffdbdf250a0000000c0002006e6c383032313100"], 0x28}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) r3 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) getsockopt$auto(r3, 0x84, 0x6c, 0x0, &(0x7f0000000280)=0x1000c0) 891.529537ms ago: executing program 3 (id=2324): socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) io_uring_setup$auto(0x6, 0x0) socket(0x28, 0x2, 0x3a) setsockopt$auto(0x400000000000003, 0x29, 0xca, 0x0, 0x4) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/orangefs/perf_history_size\x00', 0x1182, 0x0) mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) io_uring_setup$auto(0x86, 0x0) socket(0x5, 0x5, 0xffffffc0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x0, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0xb, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x120e2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(r1, 0x0, 0xc040810) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) r2 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) getsockopt$auto(r2, 0x84, 0x6c, 0x0, &(0x7f0000000280)=0x1000c0) 526.189062ms ago: executing program 3 (id=2325): r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x121c40, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000000c0)={{0x0, 0x2, 0x200800, 0x9, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"}) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x40, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x406, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) getrandom$auto(0x0, 0x6000000, 0x3) io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) sysfs$auto(0x2, 0x2, 0x9) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) r2 = io_uring_setup$auto(0x59, &(0x7f0000000340)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x2, 0xffffffffffffffff, [0x0, 0x0, 0x1bc], {0xd74c, 0x6, 0x2, 0x7, 0x100, 0x107f, 0x101, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400008, 0x100000003}}) io_uring_enter$auto(r1, 0x9, 0x820e, 0x9, 0x0, 0x18) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x601, 0x0) prctl$auto(0xc2d, 0x3, 0x0, 0x39c1f094, 0xc) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x60102, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto_XFS_IOC_ALLOCSP(r3, 0x4030580a, &(0x7f0000000040)={0xffc0, 0x1ff, 0x3, 0x6, 0x40, 0xffffffffffffffff}) shmctl$auto_IPC_RMID(0x41, 0x0, &(0x7f0000000100)={{0x42, 0xee01, 0xee00, 0x10, 0x26, 0x40000008, 0x400}, 0x7fffffff, 0x5, 0x9, 0x6, @inferred=r4, @raw=0x66, 0x8, 0x0, &(0x7f0000000280)="5a70292100a78e32c4b9894ad64117bfde81c6b219084f9109031cb612a8bd8df2f6a6e0665433548d89d522f4fa8ff63c095fe723261d5cfb45868967330b1d3e217e7ff4d117360b304d1f2bb15ddc900f2924dc5e2c0d5256ba0216f3ae72e738df074a052423a6ff418ad7af746a9921cd132b095ff7f796226f396be40b065a239a6dc131fcf66b3a9839485402f2577ec7f3fa8ecd7ee9b83011c798e0bb9d276a7d8d329293852ee551756ae4bd", &(0x7f0000000400)="46cd507bb57795388354c94c888bf63215c1401695c791699b46ca0bd4574122d71ba3ee001a496995df18d228e1ad06ad5957fca538f82eb6b4a41bdb39db2cf3409f6e981ded30d3d6e7373892dc97e6c57f109f46c7d95ddd59dd72551ce1d9b0ba130da9084fad1fba9de330df7ade126a642166d123a66b5dbebda00e2e4823acdc45d613162b7b382a7a"}) fsconfig$auto(r2, 0x3, &(0x7f0000000000)='/dev/kvm\x00', &(0x7f00000001c0)="9f51a0b295fd6a4e95b0f7da7ff3724230005bd42742cff72a6ada1cbc526fc56f0a91bc9902e59e43cf584ffcfe53acb0b80f9bccb9402bab48eda3d476e11a76e083eca2b0c2dc4dfbcab348d86a1af6edb2ba21e5cce28bb0302bf96cf137102077772a15a9e1daa1c68adbe1fcdc030bf62915b265e9dcb14ff6f4fc1334b7", r5) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) 140.458017ms ago: executing program 3 (id=2326): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = io_uring_setup$auto(0x59, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/firmware/acpi/interrupts/ff_pmtimer\x00', 0x8802, 0x0) socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) r1 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@can={0x1d, r2, 0xfd}, 0x6a) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x6c}, 0x1, 0x0, 0x0, 0x40084}, 0x40) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) r3 = socket(0x28, 0x1, 0x0) ioctl$auto_SG_GET_REQUEST_TABLE(r0, 0x2286, &(0x7f00000001c0)="f1b0eb1893a88ce2385865b4e78fb8c57db51ab4b3d343e31662768bdc0a0baa143f4c9eba9ea470e5daf04f7c98acc700c553192d6d99b1fe36907ab50dcea81a12dec12111955a0375372e23bc9c058f91de0dc8350c36934f6d172956f05af9ec739c3c627ae82c6abaf12e28497b30837220bd7048") getsockopt$auto(r3, 0x28, 0x2, 0x0, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, &(0x7f0000000140)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x800001, 0x697b}, 0x3e}, 0x2, 0xb) openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x301, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$auto_KVM_GET_MSRS(r4, 0xc008ae88, &(0x7f0000000080)={0x2, 0x0, [{0xc0010141, 0x400, 0x9}]}) socket$nl_generic(0x10, 0x3, 0x10) 0s ago: executing program 3 (id=2327): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0) pread64$auto(r0, 0x0, 0x8, 0x26c) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = getpid() ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0) unshare$auto(0x40000080) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) r3 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0x88900, 0x0) readv$auto(r3, &(0x7f0000000680)={&(0x7f0000000540), 0x40200}, 0x3) ppoll$auto(&(0x7f0000000240)={r2, 0x5, 0x2}, 0x68, 0x0, 0x0, 0x8) ioctl$auto_SNDCTL_DSP_SYNC(r2, 0x5001, 0xfffffffffffffffc) openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000100), 0x8880, 0x0) read$auto(0x3, 0x0, 0x7fffffff) modify_ldt$auto(0x1, 0x0, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) getpid() r5 = openat$auto_hpet_fops_hpet(0xffffffffffffff9c, 0x0, 0x4060c2, 0x0) writev$auto(r5, &(0x7f00000002c0)={&(0x7f0000000280)="53916c09f9e63925833848d6aee47e33af806e88abac4c7200b91c3d1c9d37dff343a7f25ac75467d209a1d6d122", 0x5}, 0xffffffff) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0) r6 = geteuid() msgctl$auto_IPC_RMID(0x1, 0x0, &(0x7f0000000440)={{0x7, r6, 0xee01, 0x10001, 0x10000, 0x7, 0x2}, &(0x7f0000000340)=0xd1, &(0x7f0000000380)=0x80, 0x3ff, 0xfffffffffffffffc, 0x10000000000002b, 0x200, 0x3, 0x47, 0x8, 0x7, @raw=0x6, @inferred=r1}) statx$auto(r4, &(0x7f0000000180)='./file0\x00', 0x4c35, 0x1, &(0x7f0000002500)={0xc, 0x9, 0xfffffffffffffff8, 0x2, 0xffffffffffffffff, 0xee01, 0x800, 0x23c, 0x7, 0x5, 0x1000000000003, 0x8000000d65, {0x7, 0x7}, {0x3, 0xcc0}, {0x7, 0x8}, {0xa89f, 0xfffffffc}, 0x3, 0x43f, 0x6, 0x9, 0xc, 0x8, 0x1, 0x9882, 0x1ff, 0x7, 0x20001, 0x0, [0xc231, 0xed75, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x4, 0xb, 0x7fffffffffffffff, 0x20008, 0x8001]}) write$auto(0x3, 0x0, 0xffd8) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/nbd13/sched/batching\x00', 0x0, 0x0) futex$auto(&(0x7f0000000080)=0xfffffff7, 0x7ff, 0x8, &(0x7f00000000c0)={0x4, 0xe}, 0x0, 0xffffffff) kernel console output (not intermixed with test programs): 759.724454][T14127] do_sys_openat2+0x11b/0x1d0 [ 759.724494][T14127] ? __pfx_do_sys_openat2+0x10/0x10 [ 759.724550][T14127] __x64_sys_openat+0x174/0x210 [ 759.724590][T14127] ? __pfx___x64_sys_openat+0x10/0x10 [ 759.724648][T14127] do_syscall_64+0xcd/0x490 [ 759.724705][T14127] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 759.724740][T14127] RIP: 0033:0x7f776b58e929 [ 759.724770][T14127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 759.724811][T14127] RSP: 002b:00007f776c3b1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 759.724845][T14127] RAX: ffffffffffffffda RBX: 00007f776b7b6160 RCX: 00007f776b58e929 [ 759.724868][T14127] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 759.724891][T14127] RBP: 00007f776b610b39 R08: 0000000000000000 R09: 0000000000000000 [ 759.724912][T14127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 759.724933][T14127] R13: 0000000000000000 R14: 00007f776b7b6160 R15: 00007fff641cd0b8 [ 759.724977][T14127] [ 761.104892][T14136] FAULT_INJECTION: forcing a failure. [ 761.104892][T14136] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 761.129552][T14136] CPU: 0 UID: 0 PID: 14136 Comm: syz.2.1778 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 761.129601][T14136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 761.129621][T14136] Call Trace: [ 761.129633][T14136] [ 761.129647][T14136] dump_stack_lvl+0x16c/0x1f0 [ 761.129706][T14136] should_fail_ex+0x512/0x640 [ 761.129765][T14136] should_fail_alloc_page+0xe7/0x130 [ 761.129804][T14136] prepare_alloc_pages+0x3c2/0x610 [ 761.129845][T14136] ? __lock_acquire+0x622/0x1c90 [ 761.129897][T14136] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 761.129963][T14136] ? lock_acquire+0x179/0x350 [ 761.130021][T14136] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 761.130081][T14136] ? __lock_acquire+0x622/0x1c90 [ 761.130138][T14136] ? __lock_acquire+0x622/0x1c90 [ 761.130189][T14136] ? find_held_lock+0x2b/0x80 [ 761.130229][T14136] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 761.130286][T14136] ? policy_nodemask+0xea/0x4e0 [ 761.130322][T14136] alloc_pages_mpol+0x1fb/0x550 [ 761.130357][T14136] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 761.130402][T14136] alloc_pages_noprof+0x131/0x390 [ 761.130445][T14136] pgd_alloc+0x4b/0x650 [ 761.130485][T14136] mm_init+0x6f4/0x1370 [ 761.130520][T14136] ? copy_process+0x400f/0x7650 [ 761.130571][T14136] copy_process+0x4063/0x7650 [ 761.130616][T14136] ? __pfx___futex_wait+0x10/0x10 [ 761.130684][T14136] ? __pfx_copy_process+0x10/0x10 [ 761.130730][T14136] ? find_held_lock+0x2b/0x80 [ 761.130781][T14136] kernel_clone+0xfc/0x960 [ 761.130832][T14136] ? __pfx_kernel_clone+0x10/0x10 [ 761.130901][T14136] __do_sys_clone+0xce/0x120 [ 761.130943][T14136] ? __pfx___do_sys_clone+0x10/0x10 [ 761.130989][T14136] ? find_held_lock+0x2b/0x80 [ 761.131042][T14136] ? xfd_validate_state+0x61/0x180 [ 761.131104][T14136] do_syscall_64+0xcd/0x490 [ 761.131160][T14136] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 761.131196][T14136] RIP: 0033:0x7f5b1f38e929 [ 761.131226][T14136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 761.131262][T14136] RSP: 002b:00007f5b201e3fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 761.131296][T14136] RAX: ffffffffffffffda RBX: 00007f5b1f5b5fa0 RCX: 00007f5b1f38e929 [ 761.131321][T14136] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000080800211 [ 761.131342][T14136] RBP: 00007f5b1f410b39 R08: 0000000000000000 R09: 0000000000000000 [ 761.131363][T14136] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 761.131383][T14136] R13: 0000000000000000 R14: 00007f5b1f5b5fa0 R15: 00007fff8e186448 [ 761.131435][T14136] [ 761.842208][T14139] ima: policy update failed [ 761.850130][ T30] audit: type=1802 audit(6047010926.584:74): pid=14139 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1779" res=0 errno=0 [ 763.641646][T14153] ima: policy update failed [ 763.672351][ T30] audit: type=1802 audit(6047010928.414:75): pid=14153 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1790" res=0 errno=0 [ 765.108982][T14169] can: request_module (can-proto-0) failed. [ 765.373792][T14175] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input114 [ 766.529005][T14181] can: request_module (can-proto-0) failed. [ 767.273538][T14186] can: request_module (can-proto-0) failed. [ 767.521448][T14186] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input115 [ 767.562667][T14196] FAULT_INJECTION: forcing a failure. [ 767.562667][T14196] name failslab, interval 1, probability 0, space 0, times 0 [ 767.623544][T14196] CPU: 0 UID: 0 PID: 14196 Comm: syz.0.1792 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 767.623580][T14196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 767.623595][T14196] Call Trace: [ 767.623603][T14196] [ 767.623613][T14196] dump_stack_lvl+0x16c/0x1f0 [ 767.623654][T14196] should_fail_ex+0x512/0x640 [ 767.623691][T14196] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 767.623731][T14196] should_failslab+0xc2/0x120 [ 767.623755][T14196] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 767.623793][T14196] ? __kernfs_new_node+0xd2/0x8e0 [ 767.623831][T14196] __kernfs_new_node+0xd2/0x8e0 [ 767.623869][T14196] ? __pfx___kernfs_new_node+0x10/0x10 [ 767.623910][T14196] ? find_held_lock+0x2b/0x80 [ 767.623937][T14196] ? kernfs_root+0xee/0x2a0 [ 767.623976][T14196] kernfs_new_node+0x13c/0x1e0 [ 767.624019][T14196] __kernfs_create_file+0x53/0x350 [ 767.624050][T14196] sysfs_add_file_mode_ns+0x207/0x3c0 [ 767.624090][T14196] sysfs_merge_group+0x1aa/0x340 [ 767.624126][T14196] ? __pfx_sysfs_merge_group+0x10/0x10 [ 767.624166][T14196] ? __pfx_dev_add_physical_location+0x10/0x10 [ 767.624191][T14196] ? bus_to_subsys+0x131/0x160 [ 767.624224][T14196] dpm_sysfs_add+0x237/0x280 [ 767.624256][T14196] device_add+0x9a6/0x1a70 [ 767.624285][T14196] ? __pfx_device_add+0x10/0x10 [ 767.624322][T14196] nfc_register_device+0x41/0x3c0 [ 767.624365][T14196] nci_register_device+0x7f1/0xb80 [ 767.624399][T14196] ? __pfx_nci_register_device+0x10/0x10 [ 767.624436][T14196] ? lockdep_init_map_type+0x5c/0x280 [ 767.624477][T14196] virtual_ncidev_open+0x141/0x220 [ 767.624510][T14196] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 767.624546][T14196] misc_open+0x35d/0x420 [ 767.624578][T14196] ? __pfx_misc_open+0x10/0x10 [ 767.624608][T14196] chrdev_open+0x234/0x6a0 [ 767.624646][T14196] ? __pfx_apparmor_file_open+0x10/0x10 [ 767.624679][T14196] ? __pfx_chrdev_open+0x10/0x10 [ 767.624719][T14196] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 767.624758][T14196] do_dentry_open+0x741/0x1c10 [ 767.624796][T14196] ? __pfx_chrdev_open+0x10/0x10 [ 767.624841][T14196] vfs_open+0x82/0x3f0 [ 767.624871][T14196] path_openat+0x1de4/0x2cb0 [ 767.624916][T14196] ? __pfx_path_openat+0x10/0x10 [ 767.624954][T14196] ? __lock_acquire+0xb8a/0x1c90 [ 767.624991][T14196] do_filp_open+0x20b/0x470 [ 767.625027][T14196] ? __pfx_do_filp_open+0x10/0x10 [ 767.625085][T14196] ? alloc_fd+0x471/0x7d0 [ 767.625126][T14196] do_sys_openat2+0x11b/0x1d0 [ 767.625153][T14196] ? __pfx_do_sys_openat2+0x10/0x10 [ 767.625192][T14196] __x64_sys_openat+0x174/0x210 [ 767.625220][T14196] ? __pfx___x64_sys_openat+0x10/0x10 [ 767.625265][T14196] do_syscall_64+0xcd/0x490 [ 767.625307][T14196] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 767.625331][T14196] RIP: 0033:0x7f42ff78e929 [ 767.625352][T14196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 767.625376][T14196] RSP: 002b:00007f430053c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 767.625400][T14196] RAX: ffffffffffffffda RBX: 00007f42ff9b6080 RCX: 00007f42ff78e929 [ 767.625416][T14196] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 767.625432][T14196] RBP: 00007f42ff810b39 R08: 0000000000000000 R09: 0000000000000000 [ 767.625448][T14196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 767.625462][T14196] R13: 0000000000000000 R14: 00007f42ff9b6080 R15: 00007ffe7ef8d8e8 [ 767.625492][T14196] [ 769.228497][T14207] ima: policy update failed [ 769.258516][ T30] audit: type=1802 audit(6047010933.984:76): pid=14207 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1794" res=0 errno=0 [ 770.482291][T14220] can: request_module (can-proto-0) failed. [ 770.542004][T14220] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input116 [ 773.352381][T14263] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input117 [ 773.479177][T14256] can: request_module (can-proto-0) failed. [ 775.596263][T14282] can: request_module (can-proto-0) failed. [ 775.637223][T14282] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input118 [ 776.817185][T14304] FAULT_INJECTION: forcing a failure. [ 776.817185][T14304] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 776.930284][T14304] CPU: 0 UID: 0 PID: 14304 Comm: syz.2.1814 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 776.930333][T14304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 776.930354][T14304] Call Trace: [ 776.930365][T14304] [ 776.930378][T14304] dump_stack_lvl+0x16c/0x1f0 [ 776.930435][T14304] should_fail_ex+0x512/0x640 [ 776.930490][T14304] _copy_from_iter+0x463/0x16f0 [ 776.930552][T14304] ? __pfx__copy_from_iter+0x10/0x10 [ 776.930605][T14304] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 776.930672][T14304] skb_copy_datagram_from_iter+0x124/0x740 [ 776.930717][T14304] ? dev_get_by_index+0x17c/0x380 [ 776.930763][T14304] ? sock_cmsg_send+0x1a0/0x280 [ 776.930817][T14304] packet_sendmsg+0x21eb/0x5880 [ 776.930888][T14304] ? __pfx___might_resched+0x10/0x10 [ 776.930941][T14304] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 776.931001][T14304] ? __pfx_packet_sendmsg+0x10/0x10 [ 776.931048][T14304] ? aa_new_mount+0x3f0/0x5c0 [ 776.931101][T14304] ____sys_sendmsg+0xa98/0xc70 [ 776.931141][T14304] ? __pfx_____sys_sendmsg+0x10/0x10 [ 776.931185][T14304] ? __pfx__kstrtoull+0x10/0x10 [ 776.931236][T14304] ___sys_sendmsg+0x134/0x1d0 [ 776.931288][T14304] ? __pfx____sys_sendmsg+0x10/0x10 [ 776.931357][T14304] ? find_held_lock+0x2b/0x80 [ 776.931417][T14304] __sys_sendmmsg+0x200/0x420 [ 776.931471][T14304] ? __pfx___sys_sendmmsg+0x10/0x10 [ 776.931535][T14304] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 776.931603][T14304] ? fput+0x70/0xf0 [ 776.931634][T14304] ? ksys_write+0x1ac/0x250 [ 776.931681][T14304] ? __pfx_ksys_write+0x10/0x10 [ 776.931735][T14304] __x64_sys_sendmmsg+0x9c/0x100 [ 776.931781][T14304] ? lockdep_hardirqs_on+0x7c/0x110 [ 776.931828][T14304] do_syscall_64+0xcd/0x490 [ 776.931880][T14304] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 776.931921][T14304] RIP: 0033:0x7f5b1f38e929 [ 776.931947][T14304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 776.931980][T14304] RSP: 002b:00007f5b201e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 776.932011][T14304] RAX: ffffffffffffffda RBX: 00007f5b1f5b5fa0 RCX: 00007f5b1f38e929 [ 776.932033][T14304] RDX: 00000000ffffffff RSI: 0000200000000400 RDI: 0000000000000002 [ 776.932053][T14304] RBP: 00007f5b201e4090 R08: 0000000000000000 R09: 0000000000000000 [ 776.932073][T14304] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001 [ 776.932092][T14304] R13: 0000000000000000 R14: 00007f5b1f5b5fa0 R15: 00007fff8e186448 [ 776.932132][T14304] [ 778.978929][T14316] can: request_module (can-proto-0) failed. [ 779.115885][T14316] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input119 [ 779.745285][T14330] ima: policy update failed [ 779.779763][T14348] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input120 [ 779.809819][T14343] FAULT_INJECTION: forcing a failure. [ 779.809819][T14343] name failslab, interval 1, probability 0, space 0, times 0 [ 779.823260][ T30] audit: type=1802 audit(6047010944.564:77): pid=14330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1820" res=0 errno=0 [ 779.840379][T14343] CPU: 0 UID: 0 PID: 14343 Comm: syz.2.1824 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 779.840428][T14343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 779.840449][T14343] Call Trace: [ 779.840461][T14343] [ 779.840474][T14343] dump_stack_lvl+0x16c/0x1f0 [ 779.840532][T14343] should_fail_ex+0x512/0x640 [ 779.840582][T14343] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 779.840640][T14343] should_failslab+0xc2/0x120 [ 779.840674][T14343] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 779.840727][T14343] ? __kernfs_new_node+0xd2/0x8e0 [ 779.840812][T14343] __kernfs_new_node+0xd2/0x8e0 [ 779.840871][T14343] ? __pfx___kernfs_new_node+0x10/0x10 [ 779.840932][T14343] ? find_held_lock+0x2b/0x80 [ 779.840973][T14343] ? kernfs_root+0xee/0x2a0 [ 779.841031][T14343] kernfs_new_node+0x13c/0x1e0 [ 779.841094][T14343] __kernfs_create_file+0x53/0x350 [ 779.841139][T14343] sysfs_add_file_mode_ns+0x207/0x3c0 [ 779.841197][T14343] sysfs_merge_group+0x1aa/0x340 [ 779.841256][T14343] ? __pfx_sysfs_merge_group+0x10/0x10 [ 779.841310][T14343] ? __pfx_dev_add_physical_location+0x10/0x10 [ 779.841346][T14343] ? bus_to_subsys+0x131/0x160 [ 779.841394][T14343] dpm_sysfs_add+0x237/0x280 [ 779.841431][T14343] device_add+0x9a6/0x1a70 [ 779.841472][T14343] ? __pfx_device_add+0x10/0x10 [ 779.841523][T14343] nfc_register_device+0x41/0x3c0 [ 779.841582][T14343] nci_register_device+0x7f1/0xb80 [ 779.841632][T14343] ? __pfx_nci_register_device+0x10/0x10 [ 779.841684][T14343] ? lockdep_init_map_type+0x5c/0x280 [ 779.841746][T14343] virtual_ncidev_open+0x141/0x220 [ 779.841799][T14343] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 779.841843][T14343] misc_open+0x35d/0x420 [ 779.841886][T14343] ? __pfx_misc_open+0x10/0x10 [ 779.841930][T14343] chrdev_open+0x234/0x6a0 [ 779.841983][T14343] ? __pfx_apparmor_file_open+0x10/0x10 [ 779.842025][T14343] ? __pfx_chrdev_open+0x10/0x10 [ 779.842084][T14343] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 779.842140][T14343] do_dentry_open+0x741/0x1c10 [ 779.842194][T14343] ? __pfx_chrdev_open+0x10/0x10 [ 779.842256][T14343] vfs_open+0x82/0x3f0 [ 779.842298][T14343] path_openat+0x1de4/0x2cb0 [ 779.842363][T14343] ? __pfx_path_openat+0x10/0x10 [ 779.842417][T14343] ? __lock_acquire+0xb8a/0x1c90 [ 779.842471][T14343] do_filp_open+0x20b/0x470 [ 779.842523][T14343] ? __pfx_do_filp_open+0x10/0x10 [ 779.842640][T14343] ? alloc_fd+0x471/0x7d0 [ 779.842702][T14343] do_sys_openat2+0x11b/0x1d0 [ 779.842742][T14343] ? __pfx_do_sys_openat2+0x10/0x10 [ 779.842805][T14343] __x64_sys_openat+0x174/0x210 [ 779.842844][T14343] ? __pfx___x64_sys_openat+0x10/0x10 [ 779.842903][T14343] do_syscall_64+0xcd/0x490 [ 779.842958][T14343] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 779.842992][T14343] RIP: 0033:0x7f5b1f38e929 [ 779.843019][T14343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 779.843055][T14343] RSP: 002b:00007f5b201c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 779.843088][T14343] RAX: ffffffffffffffda RBX: 00007f5b1f5b6080 RCX: 00007f5b1f38e929 [ 779.843111][T14343] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 779.843133][T14343] RBP: 00007f5b1f410b39 R08: 0000000000000000 R09: 0000000000000000 [ 779.843154][T14343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 779.843174][T14343] R13: 0000000000000000 R14: 00007f5b1f5b6080 R15: 00007fff8e186448 [ 779.843219][T14343] [ 780.288189][T14332] can: request_module (can-proto-0) failed. [ 781.104056][T14358] FAULT_INJECTION: forcing a failure. [ 781.104056][T14358] name failslab, interval 1, probability 0, space 0, times 0 [ 781.117171][T14358] CPU: 1 UID: 0 PID: 14358 Comm: syz.0.1826 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 781.117219][T14358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 781.117241][T14358] Call Trace: [ 781.117253][T14358] [ 781.117267][T14358] dump_stack_lvl+0x16c/0x1f0 [ 781.117324][T14358] should_fail_ex+0x512/0x640 [ 781.117375][T14358] ? __kvmalloc_node_noprof+0x124/0x620 [ 781.117429][T14358] should_failslab+0xc2/0x120 [ 781.117460][T14358] __kvmalloc_node_noprof+0x137/0x620 [ 781.117511][T14358] ? sbitmap_init_node+0x1ca/0x770 [ 781.117556][T14358] ? sbitmap_init_node+0x1ca/0x770 [ 781.117592][T14358] sbitmap_init_node+0x1ca/0x770 [ 781.117637][T14358] sbitmap_queue_init_node+0x41/0x560 [ 781.117685][T14358] blk_mq_init_tags+0x12d/0x2b0 [ 781.117743][T14358] blk_mq_alloc_map_and_rqs+0x237/0xf60 [ 781.117807][T14358] ? blk_mq_map_queues+0x211/0x410 [ 781.117855][T14358] __blk_mq_alloc_map_and_rqs+0x128/0x1f0 [ 781.117911][T14358] blk_mq_alloc_tag_set+0x778/0x1260 [ 781.117976][T14358] loop_add+0x3b9/0xb70 [ 781.118015][T14358] ? do_vfs_ioctl+0x523/0x1a60 [ 781.118056][T14358] ? __pfx_loop_add+0x10/0x10 [ 781.118093][T14358] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 781.118168][T14358] ? find_held_lock+0x2b/0x80 [ 781.118211][T14358] loop_control_ioctl+0x13e/0x630 [ 781.118255][T14358] ? __pfx_loop_control_ioctl+0x10/0x10 [ 781.118304][T14358] ? __pfx_loop_control_ioctl+0x10/0x10 [ 781.118347][T14358] __x64_sys_ioctl+0x18e/0x210 [ 781.118392][T14358] do_syscall_64+0xcd/0x490 [ 781.118447][T14358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 781.118483][T14358] RIP: 0033:0x7f42ff78e929 [ 781.118513][T14358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 781.118550][T14358] RSP: 002b:00007f430055d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 781.118584][T14358] RAX: ffffffffffffffda RBX: 00007f42ff9b5fa0 RCX: 00007f42ff78e929 [ 781.118607][T14358] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 781.118630][T14358] RBP: 00007f42ff810b39 R08: 0000000000000000 R09: 0000000000000000 [ 781.118650][T14358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 781.118670][T14358] R13: 0000000000000000 R14: 00007f42ff9b5fa0 R15: 00007ffe7ef8d8e8 [ 781.118714][T14358] [ 781.118993][T14358] blk-mq: reduced tag depth (128 -> 64) [ 783.125801][T14381] kAFS: No cell specified [ 783.457538][T14386] can: request_module (can-proto-0) failed. [ 783.513566][T14386] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input121 [ 783.750925][T14397] FAULT_INJECTION: forcing a failure. [ 783.750925][T14397] name failslab, interval 1, probability 0, space 0, times 0 [ 783.841891][T14397] CPU: 1 UID: 0 PID: 14397 Comm: syz.0.1834 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 783.841942][T14397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 783.841964][T14397] Call Trace: [ 783.841975][T14397] [ 783.841989][T14397] dump_stack_lvl+0x16c/0x1f0 [ 783.842046][T14397] should_fail_ex+0x512/0x640 [ 783.842096][T14397] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 783.842154][T14397] should_failslab+0xc2/0x120 [ 783.842187][T14397] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 783.842241][T14397] ? __kernfs_new_node+0xd2/0x8e0 [ 783.842298][T14397] __kernfs_new_node+0xd2/0x8e0 [ 783.842349][T14397] ? __pfx___kernfs_new_node+0x10/0x10 [ 783.842410][T14397] ? find_held_lock+0x2b/0x80 [ 783.842449][T14397] ? kernfs_root+0xee/0x2a0 [ 783.842507][T14397] kernfs_new_node+0x13c/0x1e0 [ 783.842570][T14397] __kernfs_create_file+0x53/0x350 [ 783.842615][T14397] sysfs_add_file_mode_ns+0x207/0x3c0 [ 783.842673][T14397] sysfs_merge_group+0x1aa/0x340 [ 783.842734][T14397] ? __pfx_sysfs_merge_group+0x10/0x10 [ 783.842793][T14397] ? __pfx_dev_add_physical_location+0x10/0x10 [ 783.842830][T14397] ? bus_to_subsys+0x131/0x160 [ 783.842878][T14397] dpm_sysfs_add+0x237/0x280 [ 783.842916][T14397] device_add+0x9a6/0x1a70 [ 783.842958][T14397] ? __pfx_device_add+0x10/0x10 [ 783.843012][T14397] nfc_register_device+0x41/0x3c0 [ 783.843073][T14397] nci_register_device+0x7f1/0xb80 [ 783.843122][T14397] ? __pfx_nci_register_device+0x10/0x10 [ 783.843176][T14397] ? lockdep_init_map_type+0x5c/0x280 [ 783.843236][T14397] virtual_ncidev_open+0x141/0x220 [ 783.843281][T14397] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 783.843325][T14397] misc_open+0x35d/0x420 [ 783.843369][T14397] ? __pfx_misc_open+0x10/0x10 [ 783.843412][T14397] chrdev_open+0x234/0x6a0 [ 783.843465][T14397] ? __pfx_apparmor_file_open+0x10/0x10 [ 783.843511][T14397] ? __pfx_chrdev_open+0x10/0x10 [ 783.843571][T14397] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 783.843628][T14397] do_dentry_open+0x741/0x1c10 [ 783.843683][T14397] ? __pfx_chrdev_open+0x10/0x10 [ 783.843756][T14397] vfs_open+0x82/0x3f0 [ 783.843800][T14397] path_openat+0x1de4/0x2cb0 [ 783.843865][T14397] ? __pfx_path_openat+0x10/0x10 [ 783.843920][T14397] ? __lock_acquire+0xb8a/0x1c90 [ 783.843973][T14397] do_filp_open+0x20b/0x470 [ 783.844025][T14397] ? __pfx_do_filp_open+0x10/0x10 [ 783.844109][T14397] ? alloc_fd+0x471/0x7d0 [ 783.844170][T14397] do_sys_openat2+0x11b/0x1d0 [ 783.844209][T14397] ? __pfx_do_sys_openat2+0x10/0x10 [ 783.844267][T14397] __x64_sys_openat+0x174/0x210 [ 783.844309][T14397] ? __pfx___x64_sys_openat+0x10/0x10 [ 783.844369][T14397] do_syscall_64+0xcd/0x490 [ 783.844426][T14397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 783.844463][T14397] RIP: 0033:0x7f42ff78e929 [ 783.844492][T14397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 783.844526][T14397] RSP: 002b:00007f430053c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 783.844558][T14397] RAX: ffffffffffffffda RBX: 00007f42ff9b6080 RCX: 00007f42ff78e929 [ 783.844582][T14397] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 783.844604][T14397] RBP: 00007f42ff810b39 R08: 0000000000000000 R09: 0000000000000000 [ 783.844624][T14397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 783.844644][T14397] R13: 0000000000000000 R14: 00007f42ff9b6080 R15: 00007ffe7ef8d8e8 [ 783.844689][T14397] [ 784.947575][T14402] can: request_module (can-proto-0) failed. [ 785.065224][T14402] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input122 [ 786.778999][T14425] FAULT_INJECTION: forcing a failure. [ 786.778999][T14425] name failslab, interval 1, probability 0, space 0, times 0 [ 786.791800][T14425] CPU: 0 UID: 0 PID: 14425 Comm: syz.3.1839 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 786.791846][T14425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 786.791868][T14425] Call Trace: [ 786.791879][T14425] [ 786.791891][T14425] dump_stack_lvl+0x16c/0x1f0 [ 786.791946][T14425] should_fail_ex+0x512/0x640 [ 786.791995][T14425] ? __kmalloc_noprof+0xbf/0x510 [ 786.792050][T14425] ? group_cpus_evenly+0xe3/0x6b0 [ 786.792082][T14425] should_failslab+0xc2/0x120 [ 786.792111][T14425] __kmalloc_noprof+0xd2/0x510 [ 786.792173][T14425] group_cpus_evenly+0xe3/0x6b0 [ 786.792205][T14425] ? __pfx_group_cpus_evenly+0x10/0x10 [ 786.792243][T14425] blk_mq_map_queues+0x4a/0x410 [ 786.792270][T14425] ? rcu_is_watching+0x12/0xc0 [ 786.792299][T14425] blk_mq_update_queue_map+0x34a/0x3e0 [ 786.792343][T14425] blk_mq_alloc_tag_set+0x61a/0x1260 [ 786.792388][T14425] loop_add+0x3b9/0xb70 [ 786.792415][T14425] ? do_vfs_ioctl+0x523/0x1a60 [ 786.792444][T14425] ? __pfx_loop_add+0x10/0x10 [ 786.792469][T14425] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 786.792516][T14425] ? find_held_lock+0x2b/0x80 [ 786.792547][T14425] loop_control_ioctl+0x13e/0x630 [ 786.792604][T14425] ? __pfx_loop_control_ioctl+0x10/0x10 [ 786.792641][T14425] ? __pfx_loop_control_ioctl+0x10/0x10 [ 786.792672][T14425] __x64_sys_ioctl+0x18e/0x210 [ 786.792702][T14425] do_syscall_64+0xcd/0x490 [ 786.792742][T14425] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 786.792767][T14425] RIP: 0033:0x7fb66c58e929 [ 786.792788][T14425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 786.792813][T14425] RSP: 002b:00007fb66d4da038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 786.792836][T14425] RAX: ffffffffffffffda RBX: 00007fb66c7b5fa0 RCX: 00007fb66c58e929 [ 786.792853][T14425] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 786.792869][T14425] RBP: 00007fb66c610b39 R08: 0000000000000000 R09: 0000000000000000 [ 786.792885][T14425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 786.792900][T14425] R13: 0000000000000000 R14: 00007fb66c7b5fa0 R15: 00007ffd073e3948 [ 786.792930][T14425] [ 788.431255][T14441] can: request_module (can-proto-0) failed. [ 788.516110][T14441] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input123 [ 789.847039][T14462] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 789.884922][T14462] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 789.966645][T14462] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 790.005573][T14462] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 790.064181][T14463] can: request_module (can-proto-0) failed. [ 790.252219][T14463] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input124 [ 791.457337][T14480] FAULT_INJECTION: forcing a failure. [ 791.457337][T14480] name failslab, interval 1, probability 0, space 0, times 0 [ 791.501914][T14480] CPU: 1 UID: 0 PID: 14480 Comm: syz.3.1853 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 791.501969][T14480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 791.501991][T14480] Call Trace: [ 791.502004][T14480] [ 791.502017][T14480] dump_stack_lvl+0x16c/0x1f0 [ 791.502077][T14480] should_fail_ex+0x512/0x640 [ 791.502128][T14480] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 791.502188][T14480] should_failslab+0xc2/0x120 [ 791.502222][T14480] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 791.502277][T14480] ? ptlock_alloc+0x1f/0x70 [ 791.502329][T14480] ptlock_alloc+0x1f/0x70 [ 791.502373][T14480] pte_alloc_one+0x82/0x3a0 [ 791.502407][T14480] __pte_alloc+0x6d/0x3c0 [ 791.502442][T14480] ? __pfx___pte_alloc+0x10/0x10 [ 791.502477][T14480] ? _raw_spin_unlock+0x28/0x50 [ 791.502520][T14480] ? __pmd_alloc+0x3fb/0x930 [ 791.502561][T14480] copy_page_range+0x1aed/0x5740 [ 791.502624][T14480] ? __lock_acquire+0x622/0x1c90 [ 791.502716][T14480] ? __pfx_copy_page_range+0x10/0x10 [ 791.502766][T14480] ? mas_store+0x7a9/0x1160 [ 791.502801][T14480] ? find_held_lock+0x2b/0x80 [ 791.502840][T14480] ? __vma_enter_locked+0x163/0x3f0 [ 791.502912][T14480] dup_mmap+0xe88/0x21d0 [ 791.502971][T14480] ? __pfx_dup_mmap+0x10/0x10 [ 791.503045][T14480] copy_process+0x4081/0x7650 [ 791.503091][T14480] ? __pfx___futex_wait+0x10/0x10 [ 791.503159][T14480] ? __pfx_copy_process+0x10/0x10 [ 791.503215][T14480] ? __futex_hash.constprop.0+0x1e9/0x440 [ 791.503266][T14480] kernel_clone+0xfc/0x960 [ 791.503316][T14480] ? __pfx_kernel_clone+0x10/0x10 [ 791.503388][T14480] __do_sys_clone+0xce/0x120 [ 791.503435][T14480] ? __pfx___do_sys_clone+0x10/0x10 [ 791.503500][T14480] ? xfd_validate_state+0x61/0x180 [ 791.503544][T14480] ? __pfx___do_sys_rt_sigreturn+0x10/0x10 [ 791.503600][T14480] do_syscall_64+0xcd/0x490 [ 791.503663][T14480] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 791.503698][T14480] RIP: 0033:0x7fb66c58e929 [ 791.503725][T14480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 791.503758][T14480] RSP: 002b:00007fb66d4d9fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 791.503792][T14480] RAX: ffffffffffffffda RBX: 00007fb66c7b5fa0 RCX: 00007fb66c58e929 [ 791.503815][T14480] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000080800211 [ 791.503836][T14480] RBP: 00007fb66c610b39 R08: 0000000000000000 R09: 0000000000000000 [ 791.503858][T14480] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 791.503879][T14480] R13: 0000000000000000 R14: 00007fb66c7b5fa0 R15: 00007ffd073e3948 [ 791.503925][T14480] [ 791.922584][ T5860] Bluetooth: hci0: command 0x0406 tx timeout [ 791.952114][ T5865] Bluetooth: hci1: command 0x0406 tx timeout [ 792.032494][ T5865] Bluetooth: hci3: command 0x0406 tx timeout [ 792.038869][ T5865] Bluetooth: hci2: command 0x0406 tx timeout [ 792.438397][T14502] FAULT_INJECTION: forcing a failure. [ 792.438397][T14502] name failslab, interval 1, probability 0, space 0, times 0 [ 792.461924][T14502] CPU: 0 UID: 0 PID: 14502 Comm: syz.0.1858 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 792.461974][T14502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 792.461997][T14502] Call Trace: [ 792.462008][T14502] [ 792.462023][T14502] dump_stack_lvl+0x16c/0x1f0 [ 792.462083][T14502] should_fail_ex+0x512/0x640 [ 792.462134][T14502] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 792.462193][T14502] should_failslab+0xc2/0x120 [ 792.462228][T14502] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 792.462283][T14502] ? __kernfs_new_node+0xd2/0x8e0 [ 792.462339][T14502] __kernfs_new_node+0xd2/0x8e0 [ 792.462399][T14502] ? __pfx___kernfs_new_node+0x10/0x10 [ 792.462460][T14502] ? find_held_lock+0x2b/0x80 [ 792.462500][T14502] ? kernfs_root+0xee/0x2a0 [ 792.462558][T14502] kernfs_new_node+0x13c/0x1e0 [ 792.462621][T14502] __kernfs_create_file+0x53/0x350 [ 792.462667][T14502] sysfs_add_file_mode_ns+0x207/0x3c0 [ 792.462736][T14502] sysfs_merge_group+0x1aa/0x340 [ 792.462785][T14502] ? kernfs_add_one+0x14e/0x840 [ 792.462838][T14502] ? __pfx_sysfs_merge_group+0x10/0x10 [ 792.462896][T14502] ? __pfx_dev_add_physical_location+0x10/0x10 [ 792.462932][T14502] ? bus_to_subsys+0x131/0x160 [ 792.462981][T14502] dpm_sysfs_add+0x237/0x280 [ 792.463018][T14502] device_add+0x9a6/0x1a70 [ 792.463060][T14502] ? __pfx_device_add+0x10/0x10 [ 792.463115][T14502] nfc_register_device+0x41/0x3c0 [ 792.463176][T14502] nci_register_device+0x7f1/0xb80 [ 792.463226][T14502] ? __pfx_nci_register_device+0x10/0x10 [ 792.463281][T14502] ? lockdep_init_map_type+0x5c/0x280 [ 792.463342][T14502] virtual_ncidev_open+0x141/0x220 [ 792.463386][T14502] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 792.463431][T14502] misc_open+0x35d/0x420 [ 792.463476][T14502] ? __pfx_misc_open+0x10/0x10 [ 792.463520][T14502] chrdev_open+0x234/0x6a0 [ 792.463575][T14502] ? __pfx_apparmor_file_open+0x10/0x10 [ 792.463622][T14502] ? __pfx_chrdev_open+0x10/0x10 [ 792.463689][T14502] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 792.463747][T14502] do_dentry_open+0x741/0x1c10 [ 792.463802][T14502] ? __pfx_chrdev_open+0x10/0x10 [ 792.463866][T14502] vfs_open+0x82/0x3f0 [ 792.463910][T14502] path_openat+0x1de4/0x2cb0 [ 792.463977][T14502] ? __pfx_path_openat+0x10/0x10 [ 792.464032][T14502] ? __lock_acquire+0xb8a/0x1c90 [ 792.464086][T14502] do_filp_open+0x20b/0x470 [ 792.464139][T14502] ? __pfx_do_filp_open+0x10/0x10 [ 792.464225][T14502] ? alloc_fd+0x471/0x7d0 [ 792.464286][T14502] do_sys_openat2+0x11b/0x1d0 [ 792.464326][T14502] ? __pfx_do_sys_openat2+0x10/0x10 [ 792.464384][T14502] __x64_sys_openat+0x174/0x210 [ 792.464426][T14502] ? __pfx___x64_sys_openat+0x10/0x10 [ 792.464486][T14502] do_syscall_64+0xcd/0x490 [ 792.464545][T14502] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 792.464581][T14502] RIP: 0033:0x7f42ff78e929 [ 792.464611][T14502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 792.464643][T14502] RSP: 002b:00007f430053c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 792.464684][T14502] RAX: ffffffffffffffda RBX: 00007f42ff9b6080 RCX: 00007f42ff78e929 [ 792.464707][T14502] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 792.464730][T14502] RBP: 00007f42ff810b39 R08: 0000000000000000 R09: 0000000000000000 [ 792.464752][T14502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 792.464774][T14502] R13: 0000000000000000 R14: 00007f42ff9b6080 R15: 00007ffe7ef8d8e8 [ 792.464817][T14502] [ 792.823278][T14514] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input125 [ 792.861906][T14496] can: request_module (can-proto-0) failed. [ 793.992178][T14526] can: request_module (can-proto-0) failed. [ 794.146053][T14533] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input126 [ 797.355997][T14564] can: request_module (can-proto-0) failed. [ 797.459532][T14572] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input127 [ 797.750395][T14576] FAULT_INJECTION: forcing a failure. [ 797.750395][T14576] name failslab, interval 1, probability 0, space 0, times 0 [ 797.788556][T14576] CPU: 1 UID: 0 PID: 14576 Comm: syz.3.1873 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 797.788593][T14576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 797.788609][T14576] Call Trace: [ 797.788618][T14576] [ 797.788628][T14576] dump_stack_lvl+0x16c/0x1f0 [ 797.788669][T14576] should_fail_ex+0x512/0x640 [ 797.788705][T14576] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 797.788745][T14576] should_failslab+0xc2/0x120 [ 797.788769][T14576] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 797.788808][T14576] ? __kernfs_new_node+0xd2/0x8e0 [ 797.788847][T14576] __kernfs_new_node+0xd2/0x8e0 [ 797.788885][T14576] ? __pfx___kernfs_new_node+0x10/0x10 [ 797.788927][T14576] ? find_held_lock+0x2b/0x80 [ 797.788954][T14576] ? kernfs_root+0xee/0x2a0 [ 797.788994][T14576] kernfs_new_node+0x13c/0x1e0 [ 797.789038][T14576] __kernfs_create_file+0x53/0x350 [ 797.789069][T14576] sysfs_add_file_mode_ns+0x207/0x3c0 [ 797.789109][T14576] sysfs_merge_group+0x1aa/0x340 [ 797.789146][T14576] ? __pfx_sysfs_merge_group+0x10/0x10 [ 797.789185][T14576] ? __pfx_dev_add_physical_location+0x10/0x10 [ 797.789211][T14576] ? bus_to_subsys+0x131/0x160 [ 797.789247][T14576] dpm_sysfs_add+0x237/0x280 [ 797.789273][T14576] device_add+0x9a6/0x1a70 [ 797.789302][T14576] ? __pfx_device_add+0x10/0x10 [ 797.789339][T14576] nfc_register_device+0x41/0x3c0 [ 797.789384][T14576] nci_register_device+0x7f1/0xb80 [ 797.789433][T14576] ? __pfx_nci_register_device+0x10/0x10 [ 797.789493][T14576] ? lockdep_init_map_type+0x5c/0x280 [ 797.789551][T14576] virtual_ncidev_open+0x141/0x220 [ 797.789591][T14576] ? misc_open+0x6a/0x420 [ 797.789632][T14576] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 797.789676][T14576] misc_open+0x35d/0x420 [ 797.789718][T14576] ? __pfx_misc_open+0x10/0x10 [ 797.789760][T14576] chrdev_open+0x234/0x6a0 [ 797.789812][T14576] ? __pfx_apparmor_file_open+0x10/0x10 [ 797.789854][T14576] ? __pfx_chrdev_open+0x10/0x10 [ 797.789913][T14576] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 797.789969][T14576] do_dentry_open+0x741/0x1c10 [ 797.790022][T14576] ? __pfx_chrdev_open+0x10/0x10 [ 797.790085][T14576] vfs_open+0x82/0x3f0 [ 797.790128][T14576] path_openat+0x1de4/0x2cb0 [ 797.790194][T14576] ? __pfx_path_openat+0x10/0x10 [ 797.790247][T14576] ? __lock_acquire+0xb8a/0x1c90 [ 797.790301][T14576] do_filp_open+0x20b/0x470 [ 797.790353][T14576] ? __pfx_do_filp_open+0x10/0x10 [ 797.790435][T14576] ? alloc_fd+0x471/0x7d0 [ 797.790506][T14576] do_sys_openat2+0x11b/0x1d0 [ 797.790547][T14576] ? __pfx_do_sys_openat2+0x10/0x10 [ 797.790586][T14576] ? __pfx___schedule+0x10/0x10 [ 797.790626][T14576] __x64_sys_openat+0x174/0x210 [ 797.790655][T14576] ? __pfx___x64_sys_openat+0x10/0x10 [ 797.790696][T14576] do_syscall_64+0xcd/0x490 [ 797.790735][T14576] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 797.790761][T14576] RIP: 0033:0x7fb66c58e929 [ 797.790781][T14576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 797.790806][T14576] RSP: 002b:00007fb66d4b9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 797.790830][T14576] RAX: ffffffffffffffda RBX: 00007fb66c7b6080 RCX: 00007fb66c58e929 [ 797.790847][T14576] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 797.790864][T14576] RBP: 00007fb66c610b39 R08: 0000000000000000 R09: 0000000000000000 [ 797.790880][T14576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 797.790895][T14576] R13: 0000000000000000 R14: 00007fb66c7b6080 R15: 00007ffd073e3948 [ 797.790925][T14576] [ 799.260507][T14600] FAULT_INJECTION: forcing a failure. [ 799.260507][T14600] name failslab, interval 1, probability 0, space 0, times 0 [ 799.351232][T14600] CPU: 1 UID: 0 PID: 14600 Comm: syz.3.1878 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 799.351282][T14600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 799.351304][T14600] Call Trace: [ 799.351316][T14600] [ 799.351329][T14600] dump_stack_lvl+0x16c/0x1f0 [ 799.351388][T14600] should_fail_ex+0x512/0x640 [ 799.351439][T14600] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 799.351492][T14600] should_failslab+0xc2/0x120 [ 799.351527][T14600] __kmalloc_cache_noprof+0x6a/0x3e0 [ 799.351573][T14600] ? trace_kmem_cache_alloc+0x28/0xc0 [ 799.351610][T14600] ? kmem_cache_alloc_node_noprof+0x225/0x3b0 [ 799.351663][T14600] ? blk_alloc_queue_stats+0x3f/0x110 [ 799.351706][T14600] blk_alloc_queue_stats+0x3f/0x110 [ 799.351742][T14600] blk_alloc_queue+0xda/0x760 [ 799.351788][T14600] blk_mq_alloc_queue+0x175/0x290 [ 799.351839][T14600] ? __pfx_blk_mq_alloc_queue+0x10/0x10 [ 799.351914][T14600] ? debug_mutex_init+0x37/0x70 [ 799.351952][T14600] ? blk_mq_alloc_tag_set+0xcfe/0x1260 [ 799.352012][T14600] __blk_mq_alloc_disk+0x29/0x120 [ 799.352066][T14600] loop_add+0x49e/0xb70 [ 799.352107][T14600] ? do_vfs_ioctl+0x523/0x1a60 [ 799.352149][T14600] ? __pfx_loop_add+0x10/0x10 [ 799.352186][T14600] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 799.352265][T14600] ? find_held_lock+0x2b/0x80 [ 799.352309][T14600] loop_control_ioctl+0x13e/0x630 [ 799.352354][T14600] ? __pfx_loop_control_ioctl+0x10/0x10 [ 799.352404][T14600] ? __pfx_loop_control_ioctl+0x10/0x10 [ 799.352449][T14600] __x64_sys_ioctl+0x18e/0x210 [ 799.352495][T14600] do_syscall_64+0xcd/0x490 [ 799.352553][T14600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 799.352590][T14600] RIP: 0033:0x7fb66c58e929 [ 799.352618][T14600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 799.352653][T14600] RSP: 002b:00007fb66d4b9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 799.352686][T14600] RAX: ffffffffffffffda RBX: 00007fb66c7b6080 RCX: 00007fb66c58e929 [ 799.352709][T14600] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 799.352729][T14600] RBP: 00007fb66c610b39 R08: 0000000000000000 R09: 0000000000000000 [ 799.352750][T14600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 799.352770][T14600] R13: 0000000000000000 R14: 00007fb66c7b6080 R15: 00007ffd073e3948 [ 799.352811][T14600] [ 799.763061][T14585] kAFS: No cell specified [ 802.201283][T14646] FAULT_INJECTION: forcing a failure. [ 802.201283][T14646] name failslab, interval 1, probability 0, space 0, times 0 [ 802.231959][T14646] CPU: 1 UID: 0 PID: 14646 Comm: syz.1.1886 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 802.231995][T14646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 802.232010][T14646] Call Trace: [ 802.232019][T14646] [ 802.232030][T14646] dump_stack_lvl+0x16c/0x1f0 [ 802.232071][T14646] should_fail_ex+0x512/0x640 [ 802.232119][T14646] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 802.232155][T14646] should_failslab+0xc2/0x120 [ 802.232177][T14646] __kmalloc_cache_noprof+0x6a/0x3e0 [ 802.232210][T14646] ? apply_wqattrs_prepare+0x130/0xbd0 [ 802.232242][T14646] apply_wqattrs_prepare+0x130/0xbd0 [ 802.232288][T14646] apply_workqueue_attrs_locked+0x64/0xe0 [ 802.232317][T14646] __alloc_workqueue+0xf41/0x1810 [ 802.232353][T14646] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 802.232389][T14646] alloc_workqueue+0xd2/0x200 [ 802.232420][T14646] ? __pfx_alloc_workqueue+0x10/0x10 [ 802.232458][T14646] ? __pfx___debug_object_init+0x10/0x10 [ 802.232492][T14646] nci_register_device+0x511/0xb80 [ 802.232525][T14646] ? __pfx_nci_register_device+0x10/0x10 [ 802.232561][T14646] ? lockdep_init_map_type+0x5c/0x280 [ 802.232601][T14646] virtual_ncidev_open+0x141/0x220 [ 802.232632][T14646] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 802.232661][T14646] misc_open+0x35d/0x420 [ 802.232692][T14646] ? __pfx_misc_open+0x10/0x10 [ 802.232721][T14646] chrdev_open+0x234/0x6a0 [ 802.232757][T14646] ? __pfx_apparmor_file_open+0x10/0x10 [ 802.232789][T14646] ? __pfx_chrdev_open+0x10/0x10 [ 802.232828][T14646] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 802.232865][T14646] do_dentry_open+0x741/0x1c10 [ 802.232902][T14646] ? __pfx_chrdev_open+0x10/0x10 [ 802.232957][T14646] vfs_open+0x82/0x3f0 [ 802.232999][T14646] path_openat+0x1de4/0x2cb0 [ 802.233059][T14646] ? __pfx_path_openat+0x10/0x10 [ 802.233096][T14646] ? __lock_acquire+0xb8a/0x1c90 [ 802.233132][T14646] do_filp_open+0x20b/0x470 [ 802.233167][T14646] ? __pfx_do_filp_open+0x10/0x10 [ 802.233243][T14646] ? alloc_fd+0x471/0x7d0 [ 802.233290][T14646] do_sys_openat2+0x11b/0x1d0 [ 802.233318][T14646] ? __pfx_do_sys_openat2+0x10/0x10 [ 802.233358][T14646] __x64_sys_openat+0x174/0x210 [ 802.233386][T14646] ? __pfx___x64_sys_openat+0x10/0x10 [ 802.233427][T14646] do_syscall_64+0xcd/0x490 [ 802.233467][T14646] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 802.233492][T14646] RIP: 0033:0x7f776b58e929 [ 802.233512][T14646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 802.233537][T14646] RSP: 002b:00007f776c3d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 802.233565][T14646] RAX: ffffffffffffffda RBX: 00007f776b7b6080 RCX: 00007f776b58e929 [ 802.233581][T14646] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 802.233597][T14646] RBP: 00007f776b610b39 R08: 0000000000000000 R09: 0000000000000000 [ 802.233612][T14646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 802.233626][T14646] R13: 0000000000000000 R14: 00007f776b7b6080 R15: 00007fff641cd0b8 [ 802.233657][T14646] [ 802.608653][T14642] kAFS: No cell specified [ 803.717504][T14657] can: request_module (can-proto-0) failed. [ 803.899862][T14667] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input128 [ 806.720132][T14711] can: request_module (can-proto-0) failed. [ 806.968104][T14719] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input129 [ 809.587652][T14754] can: request_module (can-proto-0) failed. [ 809.893688][T14764] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input130 [ 810.242110][T14756] kAFS: No cell specified [ 811.624392][T14774] ptrace attach of "./syz-executor exec"[5850] was attempted by "./syz-executor exec"[14774] [ 812.475279][T14805] FAULT_INJECTION: forcing a failure. [ 812.475279][T14805] name failslab, interval 1, probability 0, space 0, times 0 [ 812.488079][T14805] CPU: 0 UID: 0 PID: 14805 Comm: syz.2.1925 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 812.488114][T14805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 812.488130][T14805] Call Trace: [ 812.488139][T14805] [ 812.488149][T14805] dump_stack_lvl+0x16c/0x1f0 [ 812.488190][T14805] should_fail_ex+0x512/0x640 [ 812.488225][T14805] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 812.488262][T14805] should_failslab+0xc2/0x120 [ 812.488286][T14805] __kmalloc_cache_noprof+0x6a/0x3e0 [ 812.488319][T14805] ? apply_wqattrs_prepare+0x130/0xbd0 [ 812.488352][T14805] apply_wqattrs_prepare+0x130/0xbd0 [ 812.488390][T14805] apply_workqueue_attrs_locked+0x64/0xe0 [ 812.488419][T14805] __alloc_workqueue+0xf41/0x1810 [ 812.488456][T14805] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 812.488493][T14805] alloc_workqueue+0xd2/0x200 [ 812.488525][T14805] ? __pfx_alloc_workqueue+0x10/0x10 [ 812.488564][T14805] ? __pfx___debug_object_init+0x10/0x10 [ 812.488598][T14805] nci_register_device+0x511/0xb80 [ 812.488633][T14805] ? __pfx_nci_register_device+0x10/0x10 [ 812.488670][T14805] ? lockdep_init_map_type+0x5c/0x280 [ 812.488754][T14805] virtual_ncidev_open+0x141/0x220 [ 812.488787][T14805] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 812.488817][T14805] misc_open+0x35d/0x420 [ 812.488849][T14805] ? __pfx_misc_open+0x10/0x10 [ 812.488879][T14805] chrdev_open+0x234/0x6a0 [ 812.488916][T14805] ? __pfx_apparmor_file_open+0x10/0x10 [ 812.488948][T14805] ? __pfx_chrdev_open+0x10/0x10 [ 812.488988][T14805] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 812.489027][T14805] do_dentry_open+0x741/0x1c10 [ 812.489065][T14805] ? __pfx_chrdev_open+0x10/0x10 [ 812.489109][T14805] vfs_open+0x82/0x3f0 [ 812.489138][T14805] path_openat+0x1de4/0x2cb0 [ 812.489184][T14805] ? __pfx_path_openat+0x10/0x10 [ 812.489222][T14805] ? __lock_acquire+0xb8a/0x1c90 [ 812.489259][T14805] do_filp_open+0x20b/0x470 [ 812.489295][T14805] ? __pfx_do_filp_open+0x10/0x10 [ 812.489352][T14805] ? alloc_fd+0x471/0x7d0 [ 812.489393][T14805] do_sys_openat2+0x11b/0x1d0 [ 812.489421][T14805] ? __pfx_do_sys_openat2+0x10/0x10 [ 812.489460][T14805] __x64_sys_openat+0x174/0x210 [ 812.489488][T14805] ? __pfx___x64_sys_openat+0x10/0x10 [ 812.489529][T14805] do_syscall_64+0xcd/0x490 [ 812.489569][T14805] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 812.489594][T14805] RIP: 0033:0x7f5b1f38e929 [ 812.489615][T14805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 812.489641][T14805] RSP: 002b:00007f5b201c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 812.489664][T14805] RAX: ffffffffffffffda RBX: 00007f5b1f5b6080 RCX: 00007f5b1f38e929 [ 812.489686][T14805] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 812.489703][T14805] RBP: 00007f5b1f410b39 R08: 0000000000000000 R09: 0000000000000000 [ 812.489718][T14805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 812.489733][T14805] R13: 0000000000000000 R14: 00007f5b1f5b6080 R15: 00007fff8e186448 [ 812.489764][T14805] [ 814.608534][T14828] can: request_module (can-proto-0) failed. [ 814.648217][T14828] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input131 [ 814.745565][T14832] can: request_module (can-proto-0) failed. [ 815.010287][T14832] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input132 [ 815.870822][T14857] FAULT_INJECTION: forcing a failure. [ 815.870822][T14857] name failslab, interval 1, probability 0, space 0, times 0 [ 815.917121][T14857] CPU: 1 UID: 0 PID: 14857 Comm: syz.2.1937 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 815.917158][T14857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 815.917173][T14857] Call Trace: [ 815.917182][T14857] [ 815.917192][T14857] dump_stack_lvl+0x16c/0x1f0 [ 815.917233][T14857] should_fail_ex+0x512/0x640 [ 815.917269][T14857] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 815.917309][T14857] should_failslab+0xc2/0x120 [ 815.917333][T14857] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 815.917371][T14857] ? __kernfs_new_node+0xd2/0x8e0 [ 815.917409][T14857] __kernfs_new_node+0xd2/0x8e0 [ 815.917447][T14857] ? __pfx___kernfs_new_node+0x10/0x10 [ 815.917488][T14857] ? find_held_lock+0x2b/0x80 [ 815.917515][T14857] ? kernfs_root+0xee/0x2a0 [ 815.917555][T14857] kernfs_new_node+0x13c/0x1e0 [ 815.917606][T14857] __kernfs_create_file+0x53/0x350 [ 815.917638][T14857] sysfs_add_file_mode_ns+0x207/0x3c0 [ 815.917678][T14857] sysfs_merge_group+0x1aa/0x340 [ 815.917714][T14857] ? __pfx_sysfs_merge_group+0x10/0x10 [ 815.917754][T14857] ? __pfx_dev_add_physical_location+0x10/0x10 [ 815.917780][T14857] ? bus_to_subsys+0x131/0x160 [ 815.917813][T14857] dpm_sysfs_add+0x237/0x280 [ 815.917838][T14857] device_add+0x9a6/0x1a70 [ 815.917870][T14857] ? __pfx_device_add+0x10/0x10 [ 815.917916][T14857] nfc_register_device+0x41/0x3c0 [ 815.917958][T14857] nci_register_device+0x7f1/0xb80 [ 815.917992][T14857] ? __pfx_nci_register_device+0x10/0x10 [ 815.918029][T14857] ? lockdep_init_map_type+0x5c/0x280 [ 815.918070][T14857] virtual_ncidev_open+0x141/0x220 [ 815.918101][T14857] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 815.918131][T14857] misc_open+0x35d/0x420 [ 815.918162][T14857] ? __pfx_misc_open+0x10/0x10 [ 815.918191][T14857] chrdev_open+0x234/0x6a0 [ 815.918229][T14857] ? __pfx_apparmor_file_open+0x10/0x10 [ 815.918261][T14857] ? __pfx_chrdev_open+0x10/0x10 [ 815.918301][T14857] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 815.918340][T14857] do_dentry_open+0x741/0x1c10 [ 815.918377][T14857] ? __pfx_chrdev_open+0x10/0x10 [ 815.918421][T14857] vfs_open+0x82/0x3f0 [ 815.918451][T14857] path_openat+0x1de4/0x2cb0 [ 815.918497][T14857] ? __pfx_path_openat+0x10/0x10 [ 815.918534][T14857] ? __lock_acquire+0xb8a/0x1c90 [ 815.918576][T14857] do_filp_open+0x20b/0x470 [ 815.918612][T14857] ? __pfx_do_filp_open+0x10/0x10 [ 815.918669][T14857] ? alloc_fd+0x471/0x7d0 [ 815.918711][T14857] do_sys_openat2+0x11b/0x1d0 [ 815.918739][T14857] ? __pfx_do_sys_openat2+0x10/0x10 [ 815.918778][T14857] __x64_sys_openat+0x174/0x210 [ 815.918807][T14857] ? __pfx___x64_sys_openat+0x10/0x10 [ 815.918847][T14857] do_syscall_64+0xcd/0x490 [ 815.918887][T14857] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 815.918912][T14857] RIP: 0033:0x7f5b1f38e929 [ 815.918932][T14857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 815.918957][T14857] RSP: 002b:00007f5b201c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 815.918980][T14857] RAX: ffffffffffffffda RBX: 00007f5b1f5b6080 RCX: 00007f5b1f38e929 [ 815.918996][T14857] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 815.919011][T14857] RBP: 00007f5b1f410b39 R08: 0000000000000000 R09: 0000000000000000 [ 815.919027][T14857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 815.919041][T14857] R13: 0000000000000000 R14: 00007f5b1f5b6080 R15: 00007fff8e186448 [ 815.919071][T14857] [ 818.676639][T14903] FAULT_INJECTION: forcing a failure. [ 818.676639][T14903] name failslab, interval 1, probability 0, space 0, times 0 [ 818.697006][T14894] can: request_module (can-proto-0) failed. [ 818.755829][T14903] CPU: 1 UID: 0 PID: 14903 Comm: syz.0.1948 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 818.755880][T14903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 818.755902][T14903] Call Trace: [ 818.755914][T14903] [ 818.755927][T14903] dump_stack_lvl+0x16c/0x1f0 [ 818.755970][T14903] should_fail_ex+0x512/0x640 [ 818.756006][T14903] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 818.756047][T14903] should_failslab+0xc2/0x120 [ 818.756070][T14903] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 818.756108][T14903] ? __kernfs_new_node+0xd2/0x8e0 [ 818.756146][T14903] __kernfs_new_node+0xd2/0x8e0 [ 818.756183][T14903] ? __pfx___kernfs_new_node+0x10/0x10 [ 818.756225][T14903] ? find_held_lock+0x2b/0x80 [ 818.756251][T14903] ? kernfs_root+0xee/0x2a0 [ 818.756290][T14903] kernfs_new_node+0x13c/0x1e0 [ 818.756334][T14903] __kernfs_create_file+0x53/0x350 [ 818.756365][T14903] sysfs_add_file_mode_ns+0x207/0x3c0 [ 818.756405][T14903] sysfs_merge_group+0x1aa/0x340 [ 818.756442][T14903] ? __pfx_sysfs_merge_group+0x10/0x10 [ 818.756497][T14903] ? __pfx_dev_add_physical_location+0x10/0x10 [ 818.756523][T14903] ? bus_to_subsys+0x131/0x160 [ 818.756557][T14903] dpm_sysfs_add+0x237/0x280 [ 818.756584][T14903] device_add+0x9a6/0x1a70 [ 818.756613][T14903] ? __pfx_device_add+0x10/0x10 [ 818.756650][T14903] nfc_register_device+0x41/0x3c0 [ 818.756693][T14903] nci_register_device+0x7f1/0xb80 [ 818.756728][T14903] ? __pfx_nci_register_device+0x10/0x10 [ 818.756765][T14903] ? lockdep_init_map_type+0x5c/0x280 [ 818.756806][T14903] virtual_ncidev_open+0x141/0x220 [ 818.756837][T14903] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 818.756868][T14903] misc_open+0x35d/0x420 [ 818.756899][T14903] ? __pfx_misc_open+0x10/0x10 [ 818.756930][T14903] chrdev_open+0x234/0x6a0 [ 818.756968][T14903] ? __pfx_apparmor_file_open+0x10/0x10 [ 818.757000][T14903] ? __pfx_chrdev_open+0x10/0x10 [ 818.757041][T14903] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 818.757080][T14903] do_dentry_open+0x741/0x1c10 [ 818.757118][T14903] ? __pfx_chrdev_open+0x10/0x10 [ 818.757162][T14903] vfs_open+0x82/0x3f0 [ 818.757192][T14903] path_openat+0x1de4/0x2cb0 [ 818.757237][T14903] ? __pfx_path_openat+0x10/0x10 [ 818.757274][T14903] ? __lock_acquire+0xb8a/0x1c90 [ 818.757311][T14903] do_filp_open+0x20b/0x470 [ 818.757347][T14903] ? __pfx_do_filp_open+0x10/0x10 [ 818.757404][T14903] ? alloc_fd+0x471/0x7d0 [ 818.757446][T14903] do_sys_openat2+0x11b/0x1d0 [ 818.757477][T14903] ? __pfx_do_sys_openat2+0x10/0x10 [ 818.757517][T14903] __x64_sys_openat+0x174/0x210 [ 818.757546][T14903] ? __pfx___x64_sys_openat+0x10/0x10 [ 818.757587][T14903] do_syscall_64+0xcd/0x490 [ 818.757632][T14903] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 818.757658][T14903] RIP: 0033:0x7f42ff78e929 [ 818.757679][T14903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 818.757703][T14903] RSP: 002b:00007f430053c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 818.757726][T14903] RAX: ffffffffffffffda RBX: 00007f42ff9b6080 RCX: 00007f42ff78e929 [ 818.757743][T14903] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 818.757759][T14903] RBP: 00007f42ff810b39 R08: 0000000000000000 R09: 0000000000000000 [ 818.757775][T14903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 818.757789][T14903] R13: 0000000000000000 R14: 00007f42ff9b6080 R15: 00007ffe7ef8d8e8 [ 818.757820][T14903] [ 818.763780][T14894] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input133 [ 819.066802][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 819.146783][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 819.434292][T14917] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input134 [ 819.500035][T14910] can: request_module (can-proto-0) failed. [ 821.579824][T14951] FAULT_INJECTION: forcing a failure. [ 821.579824][T14951] name failslab, interval 1, probability 0, space 0, times 0 [ 821.647478][T14951] CPU: 1 UID: 0 PID: 14951 Comm: syz.3.1958 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 821.647534][T14951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 821.647576][T14951] Call Trace: [ 821.647588][T14951] [ 821.647603][T14951] dump_stack_lvl+0x16c/0x1f0 [ 821.647672][T14951] should_fail_ex+0x512/0x640 [ 821.647725][T14951] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 821.647793][T14951] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 821.647831][T14951] should_failslab+0xc2/0x120 [ 821.647863][T14951] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 821.647916][T14951] ? mempool_init_node+0x31d/0x760 [ 821.647956][T14951] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 821.647993][T14951] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 821.648029][T14951] mempool_init_node+0x31d/0x760 [ 821.648075][T14951] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 821.648111][T14951] ? __pfx_mempool_free_slab+0x10/0x10 [ 821.648145][T14951] mempool_init_noprof+0x3a/0x50 [ 821.648187][T14951] bioset_init+0x37a/0x880 [ 821.648223][T14951] ? __pfx_bioset_init+0x10/0x10 [ 821.648272][T14951] __alloc_disk_node+0x83/0x630 [ 821.648326][T14951] __blk_mq_alloc_disk+0x89/0x120 [ 821.648387][T14951] loop_add+0x49e/0xb70 [ 821.648425][T14951] ? do_vfs_ioctl+0x523/0x1a60 [ 821.648465][T14951] ? __pfx_loop_add+0x10/0x10 [ 821.648498][T14951] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 821.648564][T14951] ? find_held_lock+0x2b/0x80 [ 821.648603][T14951] loop_control_ioctl+0x13e/0x630 [ 821.648643][T14951] ? __pfx_loop_control_ioctl+0x10/0x10 [ 821.648688][T14951] ? __pfx_loop_control_ioctl+0x10/0x10 [ 821.648735][T14951] __x64_sys_ioctl+0x18e/0x210 [ 821.648777][T14951] do_syscall_64+0xcd/0x490 [ 821.648831][T14951] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 821.648863][T14951] RIP: 0033:0x7fb66c58e929 [ 821.648890][T14951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 821.648922][T14951] RSP: 002b:00007fb66d4da038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 821.648953][T14951] RAX: ffffffffffffffda RBX: 00007fb66c7b5fa0 RCX: 00007fb66c58e929 [ 821.648974][T14951] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 821.648994][T14951] RBP: 00007fb66c610b39 R08: 0000000000000000 R09: 0000000000000000 [ 821.649013][T14951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 821.649031][T14951] R13: 0000000000000000 R14: 00007fb66c7b5fa0 R15: 00007ffd073e3948 [ 821.649070][T14951] [ 822.150730][T14957] can: request_module (can-proto-0) failed. [ 822.281236][T14959] can: request_module (can-proto-0) failed. [ 822.429442][T14969] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input135 [ 822.457185][T14968] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input136 [ 823.557192][T14972] can: request_module (can-proto-0) failed. [ 823.590841][T14980] FAULT_INJECTION: forcing a failure. [ 823.590841][T14980] name failslab, interval 1, probability 0, space 0, times 0 [ 823.653861][T14980] CPU: 0 UID: 0 PID: 14980 Comm: syz.0.1964 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 823.653911][T14980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 823.653927][T14980] Call Trace: [ 823.653936][T14980] [ 823.653946][T14980] dump_stack_lvl+0x16c/0x1f0 [ 823.653987][T14980] should_fail_ex+0x512/0x640 [ 823.654022][T14980] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 823.654063][T14980] should_failslab+0xc2/0x120 [ 823.654086][T14980] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 823.654124][T14980] ? __kernfs_new_node+0xd2/0x8e0 [ 823.654163][T14980] __kernfs_new_node+0xd2/0x8e0 [ 823.654200][T14980] ? __pfx___kernfs_new_node+0x10/0x10 [ 823.654241][T14980] ? find_held_lock+0x2b/0x80 [ 823.654268][T14980] ? kernfs_root+0xee/0x2a0 [ 823.654310][T14980] kernfs_new_node+0x13c/0x1e0 [ 823.654354][T14980] __kernfs_create_file+0x53/0x350 [ 823.654385][T14980] sysfs_add_file_mode_ns+0x207/0x3c0 [ 823.654425][T14980] sysfs_merge_group+0x1aa/0x340 [ 823.654462][T14980] ? __pfx_sysfs_merge_group+0x10/0x10 [ 823.654501][T14980] ? __pfx_dev_add_physical_location+0x10/0x10 [ 823.654527][T14980] ? bus_to_subsys+0x131/0x160 [ 823.654568][T14980] dpm_sysfs_add+0x237/0x280 [ 823.654594][T14980] device_add+0x9a6/0x1a70 [ 823.654623][T14980] ? __pfx_device_add+0x10/0x10 [ 823.654660][T14980] nfc_register_device+0x41/0x3c0 [ 823.654703][T14980] nci_register_device+0x7f1/0xb80 [ 823.654737][T14980] ? __pfx_nci_register_device+0x10/0x10 [ 823.654774][T14980] ? lockdep_init_map_type+0x5c/0x280 [ 823.654815][T14980] virtual_ncidev_open+0x141/0x220 [ 823.654846][T14980] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 823.654877][T14980] misc_open+0x35d/0x420 [ 823.654909][T14980] ? __pfx_misc_open+0x10/0x10 [ 823.654939][T14980] chrdev_open+0x234/0x6a0 [ 823.654977][T14980] ? __pfx_apparmor_file_open+0x10/0x10 [ 823.655008][T14980] ? __pfx_chrdev_open+0x10/0x10 [ 823.655049][T14980] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 823.655088][T14980] do_dentry_open+0x741/0x1c10 [ 823.655126][T14980] ? __pfx_chrdev_open+0x10/0x10 [ 823.655170][T14980] vfs_open+0x82/0x3f0 [ 823.655199][T14980] path_openat+0x1de4/0x2cb0 [ 823.655245][T14980] ? __pfx_path_openat+0x10/0x10 [ 823.655282][T14980] ? __lock_acquire+0xb8a/0x1c90 [ 823.655325][T14980] do_filp_open+0x20b/0x470 [ 823.655367][T14980] ? __pfx_do_filp_open+0x10/0x10 [ 823.655424][T14980] ? alloc_fd+0x471/0x7d0 [ 823.655465][T14980] do_sys_openat2+0x11b/0x1d0 [ 823.655492][T14980] ? __pfx_do_sys_openat2+0x10/0x10 [ 823.655531][T14980] __x64_sys_openat+0x174/0x210 [ 823.655575][T14980] ? __pfx___x64_sys_openat+0x10/0x10 [ 823.655616][T14980] do_syscall_64+0xcd/0x490 [ 823.655655][T14980] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 823.655681][T14980] RIP: 0033:0x7f42ff78e929 [ 823.655702][T14980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 823.655726][T14980] RSP: 002b:00007f430055d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 823.655749][T14980] RAX: ffffffffffffffda RBX: 00007f42ff9b5fa0 RCX: 00007f42ff78e929 [ 823.655766][T14980] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 823.655781][T14980] RBP: 00007f42ff810b39 R08: 0000000000000000 R09: 0000000000000000 [ 823.655797][T14980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 823.655811][T14980] R13: 0000000000000000 R14: 00007f42ff9b5fa0 R15: 00007ffe7ef8d8e8 [ 823.655842][T14980] [ 824.067445][T14988] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input137 [ 825.014167][T14999] FAULT_INJECTION: forcing a failure. [ 825.014167][T14999] name failslab, interval 1, probability 0, space 0, times 0 [ 825.101821][T14999] CPU: 0 UID: 0 PID: 14999 Comm: syz.0.1969 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 825.101870][T14999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 825.101891][T14999] Call Trace: [ 825.101903][T14999] [ 825.101916][T14999] dump_stack_lvl+0x16c/0x1f0 [ 825.101973][T14999] should_fail_ex+0x512/0x640 [ 825.102022][T14999] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 825.102079][T14999] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 825.102117][T14999] should_failslab+0xc2/0x120 [ 825.102150][T14999] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 825.102204][T14999] ? mempool_init_node+0x31d/0x760 [ 825.102246][T14999] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 825.102292][T14999] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 825.102330][T14999] mempool_init_node+0x31d/0x760 [ 825.102380][T14999] ? __pfx_mempool_alloc_slab+0x10/0x10 [ 825.102419][T14999] ? __pfx_mempool_free_slab+0x10/0x10 [ 825.102457][T14999] mempool_init_noprof+0x3a/0x50 [ 825.102503][T14999] bioset_init+0x37a/0x880 [ 825.102542][T14999] ? __pfx_bioset_init+0x10/0x10 [ 825.102595][T14999] __alloc_disk_node+0x83/0x630 [ 825.102653][T14999] __blk_mq_alloc_disk+0x89/0x120 [ 825.102706][T14999] loop_add+0x49e/0xb70 [ 825.102745][T14999] ? do_vfs_ioctl+0x523/0x1a60 [ 825.102786][T14999] ? __pfx_loop_add+0x10/0x10 [ 825.102822][T14999] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 825.102893][T14999] ? find_held_lock+0x2b/0x80 [ 825.102937][T14999] loop_control_ioctl+0x13e/0x630 [ 825.102980][T14999] ? __pfx_loop_control_ioctl+0x10/0x10 [ 825.103028][T14999] ? __pfx_loop_control_ioctl+0x10/0x10 [ 825.103072][T14999] __x64_sys_ioctl+0x18e/0x210 [ 825.103117][T14999] do_syscall_64+0xcd/0x490 [ 825.103173][T14999] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 825.103208][T14999] RIP: 0033:0x7f42ff78e929 [ 825.103235][T14999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 825.103270][T14999] RSP: 002b:00007f430055d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 825.103311][T14999] RAX: ffffffffffffffda RBX: 00007f42ff9b5fa0 RCX: 00007f42ff78e929 [ 825.103334][T14999] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 825.103355][T14999] RBP: 00007f42ff810b39 R08: 0000000000000000 R09: 0000000000000000 [ 825.103375][T14999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 825.103396][T14999] R13: 0000000000000000 R14: 00007f42ff9b5fa0 R15: 00007ffe7ef8d8e8 [ 825.103440][T14999] [ 825.599858][T15007] can: request_module (can-proto-0) failed. [ 825.754033][T15020] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input138 [ 826.531281][T15029] can: request_module (can-proto-0) failed. [ 826.828126][T15038] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input139 [ 826.965223][T15016] kAFS: No cell specified [ 827.525551][T15043] can: request_module (can-proto-0) failed. [ 827.648617][T15052] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input140 [ 827.785354][T15047] can: request_module (can-proto-0) failed. [ 827.937002][T15056] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input141 [ 829.533316][T15072] FAULT_INJECTION: forcing a failure. [ 829.533316][T15072] name failslab, interval 1, probability 0, space 0, times 0 [ 829.627886][T15076] can: request_module (can-proto-0) failed. [ 829.638646][T15072] CPU: 0 UID: 0 PID: 15072 Comm: syz.0.1985 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 829.638695][T15072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 829.638716][T15072] Call Trace: [ 829.638727][T15072] [ 829.638741][T15072] dump_stack_lvl+0x16c/0x1f0 [ 829.638800][T15072] should_fail_ex+0x512/0x640 [ 829.638853][T15072] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 829.638909][T15072] should_failslab+0xc2/0x120 [ 829.638941][T15072] __kmalloc_cache_noprof+0x6a/0x3e0 [ 829.638985][T15072] ? trace_kmem_cache_alloc+0x28/0xc0 [ 829.639022][T15072] ? kmem_cache_alloc_node_noprof+0x225/0x3b0 [ 829.639073][T15072] ? blk_alloc_queue_stats+0x3f/0x110 [ 829.639139][T15072] blk_alloc_queue_stats+0x3f/0x110 [ 829.639174][T15072] blk_alloc_queue+0xda/0x760 [ 829.639220][T15072] blk_mq_alloc_queue+0x175/0x290 [ 829.639271][T15072] ? __pfx_blk_mq_alloc_queue+0x10/0x10 [ 829.639345][T15072] ? debug_mutex_init+0x37/0x70 [ 829.639391][T15072] ? blk_mq_alloc_tag_set+0xcfe/0x1260 [ 829.639452][T15072] __blk_mq_alloc_disk+0x29/0x120 [ 829.639507][T15072] loop_add+0x49e/0xb70 [ 829.639544][T15072] ? do_vfs_ioctl+0x523/0x1a60 [ 829.639585][T15072] ? __pfx_loop_add+0x10/0x10 [ 829.639622][T15072] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 829.639689][T15072] ? find_held_lock+0x2b/0x80 [ 829.639732][T15072] loop_control_ioctl+0x13e/0x630 [ 829.639775][T15072] ? __pfx_loop_control_ioctl+0x10/0x10 [ 829.639823][T15072] ? __pfx_loop_control_ioctl+0x10/0x10 [ 829.639866][T15072] __x64_sys_ioctl+0x18e/0x210 [ 829.639911][T15072] do_syscall_64+0xcd/0x490 [ 829.639967][T15072] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 829.640003][T15072] RIP: 0033:0x7f42ff78e929 [ 829.640032][T15072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 829.640066][T15072] RSP: 002b:00007f430055d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 829.640100][T15072] RAX: ffffffffffffffda RBX: 00007f42ff9b5fa0 RCX: 00007f42ff78e929 [ 829.640123][T15072] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006 [ 829.640145][T15072] RBP: 00007f42ff810b39 R08: 0000000000000000 R09: 0000000000000000 [ 829.640166][T15072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 829.640187][T15072] R13: 0000000000000000 R14: 00007f42ff9b5fa0 R15: 00007ffe7ef8d8e8 [ 829.640231][T15072] [ 830.122049][T15080] can: request_module (can-proto-0) failed. [ 830.132467][T15086] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input142 [ 830.438055][T15080] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input143 [ 831.445940][T15110] can: request_module (can-proto-0) failed. [ 831.483685][T15110] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input144 [ 832.169029][T15107] can: request_module (can-proto-0) failed. [ 832.177561][T15122] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input145 [ 833.174682][T15138] can: request_module (can-proto-0) failed. [ 833.319647][T15148] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input146 [ 835.385505][T15167] can: request_module (can-proto-0) failed. [ 835.541117][T15177] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input147 [ 836.779655][T15190] can: request_module (can-proto-0) failed. [ 836.911898][T15190] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input148 [ 836.955804][T15193] can: request_module (can-proto-0) failed. [ 837.106887][T15208] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input149 [ 838.830389][T15238] can: request_module (can-proto-0) failed. [ 838.984309][T15248] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input150 [ 839.378090][T15250] can: request_module (can-proto-0) failed. [ 839.616903][T15257] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input151 [ 841.489523][T15274] kAFS: No cell specified [ 841.599850][T15295] ima: policy update failed [ 841.692955][ T30] audit: type=1802 audit(6047011006.434:78): pid=15295 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2033" res=0 errno=0 [ 842.778936][T15311] can: request_module (can-proto-0) failed. [ 842.891107][T15321] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input152 [ 843.283690][T15310] can: request_module (can-proto-0) failed. [ 843.478555][T15327] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input153 [ 844.242147][T15332] FAULT_INJECTION: forcing a failure. [ 844.242147][T15332] name failslab, interval 1, probability 0, space 0, times 0 [ 844.254930][T15332] CPU: 1 UID: 0 PID: 15332 Comm: syz.2.2042 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 844.254963][T15332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 844.254979][T15332] Call Trace: [ 844.254989][T15332] [ 844.254998][T15332] dump_stack_lvl+0x16c/0x1f0 [ 844.255041][T15332] should_fail_ex+0x512/0x640 [ 844.255077][T15332] ? __kmalloc_cache_node_noprof+0x5a/0x420 [ 844.255117][T15332] should_failslab+0xc2/0x120 [ 844.255140][T15332] __kmalloc_cache_node_noprof+0x6d/0x420 [ 844.255175][T15332] ? rcu_is_watching+0x12/0xc0 [ 844.255201][T15332] ? kasan_quarantine_put+0x10a/0x240 [ 844.255235][T15332] ? blk_mq_init_tags+0x87/0x2b0 [ 844.255277][T15332] blk_mq_init_tags+0x87/0x2b0 [ 844.255317][T15332] blk_mq_alloc_map_and_rqs+0x237/0xf60 [ 844.255354][T15332] ? blk_mq_map_queues+0x211/0x410 [ 844.255387][T15332] __blk_mq_alloc_map_and_rqs+0x128/0x1f0 [ 844.255426][T15332] blk_mq_alloc_tag_set+0x778/0x1260 [ 844.255480][T15332] loop_add+0x3b9/0xb70 [ 844.255518][T15332] ? do_vfs_ioctl+0x523/0x1a60 [ 844.255555][T15332] ? __pfx_loop_add+0x10/0x10 [ 844.255588][T15332] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 844.255667][T15332] ? find_held_lock+0x2b/0x80 [ 844.255710][T15332] loop_control_ioctl+0x13e/0x630 [ 844.255751][T15332] ? __pfx_loop_control_ioctl+0x10/0x10 [ 844.255798][T15332] ? __pfx_loop_control_ioctl+0x10/0x10 [ 844.255840][T15332] __x64_sys_ioctl+0x18e/0x210 [ 844.255882][T15332] do_syscall_64+0xcd/0x490 [ 844.255939][T15332] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 844.255975][T15332] RIP: 0033:0x7f5b1f38e929 [ 844.256000][T15332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 844.256025][T15332] RSP: 002b:00007f5b201e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 844.256048][T15332] RAX: ffffffffffffffda RBX: 00007f5b1f5b5fa0 RCX: 00007f5b1f38e929 [ 844.256065][T15332] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 844.256080][T15332] RBP: 00007f5b1f410b39 R08: 0000000000000000 R09: 0000000000000000 [ 844.256095][T15332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 844.256110][T15332] R13: 0000000000000000 R14: 00007f5b1f5b5fa0 R15: 00007fff8e186448 [ 844.256141][T15332] [ 844.256255][T15332] blk-mq: reduced tag depth (128 -> 64) [ 844.958815][T15335] can: request_module (can-proto-0) failed. [ 845.394097][T15351] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input154 [ 846.158228][T15352] ima: policy update failed [ 846.188847][ T30] audit: type=1802 audit(6047011010.924:79): pid=15352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2045" res=0 errno=0 [ 852.037887][T15424] can: request_module (can-proto-0) failed. [ 852.306431][T15436] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input155 [ 853.273635][T15437] can: request_module (can-proto-0) failed. [ 853.516793][T15446] can: request_module (can-proto-0) failed. [ 853.518789][T15457] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input157 [ 853.535048][T15437] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input156 [ 853.940245][T15452] can: request_module (can-proto-0) failed. [ 854.090895][T15462] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input158 [ 854.688638][T15464] FAULT_INJECTION: forcing a failure. [ 854.688638][T15464] name failslab, interval 1, probability 0, space 0, times 0 [ 854.744607][T15464] CPU: 0 UID: 0 PID: 15464 Comm: syz.3.2072 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 854.744658][T15464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 854.744680][T15464] Call Trace: [ 854.744692][T15464] [ 854.744705][T15464] dump_stack_lvl+0x16c/0x1f0 [ 854.744763][T15464] should_fail_ex+0x512/0x640 [ 854.744815][T15464] ? __kmalloc_cache_node_noprof+0x5a/0x420 [ 854.744872][T15464] should_failslab+0xc2/0x120 [ 854.744908][T15464] __kmalloc_cache_node_noprof+0x6d/0x420 [ 854.744958][T15464] ? sbitmap_init_node+0x2ca/0x770 [ 854.744994][T15464] ? sbitmap_queue_init_node+0x341/0x560 [ 854.745040][T15464] sbitmap_queue_init_node+0x341/0x560 [ 854.745087][T15464] blk_mq_init_tags+0x12d/0x2b0 [ 854.745146][T15464] blk_mq_alloc_map_and_rqs+0x237/0xf60 [ 854.745200][T15464] ? blk_mq_map_queues+0x211/0x410 [ 854.745247][T15464] __blk_mq_alloc_map_and_rqs+0x128/0x1f0 [ 854.745303][T15464] blk_mq_alloc_tag_set+0x778/0x1260 [ 854.745378][T15464] loop_add+0x3b9/0xb70 [ 854.745417][T15464] ? do_vfs_ioctl+0x523/0x1a60 [ 854.745459][T15464] ? __pfx_loop_add+0x10/0x10 [ 854.745496][T15464] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 854.745564][T15464] ? find_held_lock+0x2b/0x80 [ 854.745607][T15464] loop_control_ioctl+0x13e/0x630 [ 854.745661][T15464] ? __pfx_loop_control_ioctl+0x10/0x10 [ 854.745707][T15464] ? __pfx_loop_control_ioctl+0x10/0x10 [ 854.745750][T15464] __x64_sys_ioctl+0x18e/0x210 [ 854.745793][T15464] do_syscall_64+0xcd/0x490 [ 854.745844][T15464] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 854.745877][T15464] RIP: 0033:0x7fb66c58e929 [ 854.745903][T15464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 854.745935][T15464] RSP: 002b:00007fb66d4da038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 854.745965][T15464] RAX: ffffffffffffffda RBX: 00007fb66c7b5fa0 RCX: 00007fb66c58e929 [ 854.745986][T15464] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000006 [ 854.746007][T15464] RBP: 00007fb66c610b39 R08: 0000000000000000 R09: 0000000000000000 [ 854.746025][T15464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 854.746045][T15464] R13: 0000000000000000 R14: 00007fb66c7b5fa0 R15: 00007ffd073e3948 [ 854.746083][T15464] [ 854.746265][T15464] blk-mq: reduced tag depth (128 -> 64) [ 860.673069][T15578] can: request_module (can-proto-0) failed. [ 860.711311][T15578] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input159 [ 861.480011][T15595] can: request_module (can-proto-0) failed. [ 861.799761][T15595] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input160 [ 861.864589][T15599] can: request_module (can-proto-0) failed. [ 862.136849][T15617] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input161 [ 864.808731][T15646] kAFS: No cell specified [ 866.355927][T15676] FAULT_INJECTION: forcing a failure. [ 866.355927][T15676] name failslab, interval 1, probability 0, space 0, times 0 [ 866.401849][T15676] CPU: 0 UID: 0 PID: 15676 Comm: syz.0.2123 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 866.401902][T15676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 866.401925][T15676] Call Trace: [ 866.401937][T15676] [ 866.401949][T15676] dump_stack_lvl+0x16c/0x1f0 [ 866.402009][T15676] should_fail_ex+0x512/0x640 [ 866.402058][T15676] ? fs_reclaim_acquire+0xae/0x150 [ 866.402104][T15676] ? tomoyo_encode2+0x100/0x3e0 [ 866.402150][T15676] should_failslab+0xc2/0x120 [ 866.402192][T15676] __kmalloc_noprof+0xd2/0x510 [ 866.402243][T15676] ? d_absolute_path+0x136/0x1a0 [ 866.402287][T15676] tomoyo_encode2+0x100/0x3e0 [ 866.402341][T15676] tomoyo_encode+0x29/0x50 [ 866.402387][T15676] tomoyo_realpath_from_path+0x18f/0x6e0 [ 866.402448][T15676] tomoyo_path_number_perm+0x245/0x580 [ 866.402489][T15676] ? tomoyo_path_number_perm+0x237/0x580 [ 866.402530][T15676] ? do_raw_spin_unlock+0xe4/0x230 [ 866.402564][T15676] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 866.402651][T15676] ? find_held_lock+0x2b/0x80 [ 866.402687][T15676] ? hook_file_ioctl_common+0x145/0x410 [ 866.402735][T15676] ? __fget_files+0x20e/0x3c0 [ 866.402789][T15676] security_file_ioctl+0x9b/0x240 [ 866.402834][T15676] __x64_sys_ioctl+0xb7/0x210 [ 866.402879][T15676] do_syscall_64+0xcd/0x490 [ 866.402935][T15676] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 866.402972][T15676] RIP: 0033:0x7f42ff78e929 [ 866.403000][T15676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 866.403036][T15676] RSP: 002b:00007f430055d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 866.403069][T15676] RAX: ffffffffffffffda RBX: 00007f42ff9b5fa0 RCX: 00007f42ff78e929 [ 866.403092][T15676] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 866.403115][T15676] RBP: 00007f42ff810b39 R08: 0000000000000000 R09: 0000000000000000 [ 866.403136][T15676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 866.403157][T15676] R13: 0000000000000000 R14: 00007f42ff9b5fa0 R15: 00007ffe7ef8d8e8 [ 866.403209][T15676] [ 866.403238][T15676] ERROR: Out of memory at tomoyo_realpath_from_path. [ 867.944403][T15704] FAULT_INJECTION: forcing a failure. [ 867.944403][T15704] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 867.957722][T15704] CPU: 0 UID: 0 PID: 15704 Comm: syz.1.2127 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 867.957756][T15704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 867.957771][T15704] Call Trace: [ 867.957779][T15704] [ 867.957788][T15704] dump_stack_lvl+0x16c/0x1f0 [ 867.957846][T15704] should_fail_ex+0x512/0x640 [ 867.957906][T15704] _copy_to_iter+0x29f/0x16f0 [ 867.957953][T15704] ? __pfx_uptime_proc_show+0x10/0x10 [ 867.957990][T15704] ? __pfx__copy_to_iter+0x10/0x10 [ 867.958037][T15704] ? __lock_acquire+0xb8a/0x1c90 [ 867.958071][T15704] ? seq_read_iter+0x826/0x12c0 [ 867.958108][T15704] seq_read_iter+0xcf8/0x12c0 [ 867.958151][T15704] proc_reg_read_iter+0x118/0x310 [ 867.958189][T15704] vfs_read+0x8bc/0xc60 [ 867.958227][T15704] ? __pfx___mutex_lock+0x10/0x10 [ 867.958265][T15704] ? __pfx_vfs_read+0x10/0x10 [ 867.958318][T15704] ksys_read+0x12a/0x250 [ 867.958352][T15704] ? __pfx_ksys_read+0x10/0x10 [ 867.958395][T15704] do_syscall_64+0xcd/0x490 [ 867.958434][T15704] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 867.958460][T15704] RIP: 0033:0x7f776b58e929 [ 867.958479][T15704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 867.958504][T15704] RSP: 002b:00007f776c3f3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 867.958527][T15704] RAX: ffffffffffffffda RBX: 00007f776b7b5fa0 RCX: 00007f776b58e929 [ 867.958544][T15704] RDX: 0000000000000ff0 RSI: 0000200000000040 RDI: 0000000000000008 [ 867.958559][T15704] RBP: 00007f776b610b39 R08: 0000000000000000 R09: 0000000000000000 [ 867.958575][T15704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 867.958589][T15704] R13: 0000000000000000 R14: 00007f776b7b5fa0 R15: 00007fff641cd0b8 [ 867.958620][T15704] [ 868.166614][T15696] kAFS: No cell specified [ 871.037701][T15733] can: request_module (can-proto-0) failed. [ 871.054231][T15733] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input162 [ 871.717098][T15739] kAFS: No cell specified [ 871.792687][T15755] FAULT_INJECTION: forcing a failure. [ 871.792687][T15755] name failslab, interval 1, probability 0, space 0, times 0 [ 871.870348][T15755] CPU: 1 UID: 0 PID: 15755 Comm: syz.0.2139 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 871.870400][T15755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 871.870423][T15755] Call Trace: [ 871.870435][T15755] [ 871.870449][T15755] dump_stack_lvl+0x16c/0x1f0 [ 871.870509][T15755] should_fail_ex+0x512/0x640 [ 871.870560][T15755] ? fs_reclaim_acquire+0xae/0x150 [ 871.870606][T15755] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 871.870656][T15755] should_failslab+0xc2/0x120 [ 871.870691][T15755] __kmalloc_noprof+0xd2/0x510 [ 871.870755][T15755] tomoyo_realpath_from_path+0xc2/0x6e0 [ 871.870810][T15755] ? tomoyo_profile+0x47/0x60 [ 871.870869][T15755] tomoyo_path_number_perm+0x245/0x580 [ 871.870915][T15755] ? tomoyo_path_number_perm+0x237/0x580 [ 871.870962][T15755] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 871.871065][T15755] ? find_held_lock+0x2b/0x80 [ 871.871104][T15755] ? hook_file_ioctl_common+0x145/0x410 [ 871.871154][T15755] ? __fget_files+0x20e/0x3c0 [ 871.871211][T15755] security_file_ioctl+0x9b/0x240 [ 871.871257][T15755] __x64_sys_ioctl+0xb7/0x210 [ 871.871303][T15755] do_syscall_64+0xcd/0x490 [ 871.871359][T15755] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 871.871396][T15755] RIP: 0033:0x7f42ff78e929 [ 871.871425][T15755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 871.871460][T15755] RSP: 002b:00007f430055d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 871.871493][T15755] RAX: ffffffffffffffda RBX: 00007f42ff9b5fa0 RCX: 00007f42ff78e929 [ 871.871516][T15755] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 871.871537][T15755] RBP: 00007f42ff810b39 R08: 0000000000000000 R09: 0000000000000000 [ 871.871559][T15755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 871.871580][T15755] R13: 0000000000000000 R14: 00007f42ff9b5fa0 R15: 00007ffe7ef8d8e8 [ 871.871626][T15755] [ 872.066453][T15755] ERROR: Out of memory at tomoyo_realpath_from_path. [ 872.177597][T15761] FAULT_INJECTION: forcing a failure. [ 872.177597][T15761] name fail_futex, interval 1, probability 0, space 0, times 0 [ 872.235847][T15761] CPU: 1 UID: 0 PID: 15761 Comm: syz.3.2140 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 872.235897][T15761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 872.235919][T15761] Call Trace: [ 872.235931][T15761] [ 872.235946][T15761] dump_stack_lvl+0x16c/0x1f0 [ 872.236003][T15761] should_fail_ex+0x512/0x640 [ 872.236069][T15761] get_futex_key+0x1d0/0x1540 [ 872.236118][T15761] ? __pfx_get_futex_key+0x10/0x10 [ 872.236167][T15761] ? find_held_lock+0x2b/0x80 [ 872.236209][T15761] futex_wait_setup+0x84/0x510 [ 872.236271][T15761] __futex_wait+0x194/0x2f0 [ 872.236325][T15761] ? __pfx___futex_wait+0x10/0x10 [ 872.236385][T15761] ? __pfx_futex_wake_mark+0x10/0x10 [ 872.236453][T15761] ? __futex_hash.constprop.0+0x1e9/0x440 [ 872.236499][T15761] futex_wait+0xe8/0x380 [ 872.236550][T15761] ? __pfx_futex_wait+0x10/0x10 [ 872.236630][T15761] ? ksys_read+0x190/0x250 [ 872.236703][T15761] do_futex+0x229/0x350 [ 872.236748][T15761] ? __pfx_do_futex+0x10/0x10 [ 872.236804][T15761] __x64_sys_futex+0x1e0/0x4c0 [ 872.236852][T15761] ? fput+0x70/0xf0 [ 872.236884][T15761] ? __pfx___x64_sys_futex+0x10/0x10 [ 872.236925][T15761] ? ksys_read+0x1ac/0x250 [ 872.236971][T15761] ? __pfx_ksys_read+0x10/0x10 [ 872.237039][T15761] do_syscall_64+0xcd/0x490 [ 872.237093][T15761] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 872.237129][T15761] RIP: 0033:0x7fb66c58e929 [ 872.237156][T15761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 872.237190][T15761] RSP: 002b:00007fb66d4da0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 872.237222][T15761] RAX: ffffffffffffffda RBX: 00007fb66c7b5fa8 RCX: 00007fb66c58e929 [ 872.237244][T15761] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb66c7b5fa8 [ 872.237264][T15761] RBP: 00007fb66c7b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 872.237285][T15761] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb66c7b5fac [ 872.237306][T15761] R13: 0000000000000000 R14: 00007ffd073e3860 R15: 00007ffd073e3948 [ 872.237350][T15761] [ 874.088439][T15781] can: request_module (can-proto-0) failed. [ 874.100715][T15792] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input163 [ 875.191563][T15802] FAULT_INJECTION: forcing a failure. [ 875.191563][T15802] name failslab, interval 1, probability 0, space 0, times 0 [ 875.205585][T15802] CPU: 1 UID: 0 PID: 15802 Comm: syz.0.2151 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 875.205619][T15802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 875.205634][T15802] Call Trace: [ 875.205643][T15802] [ 875.205653][T15802] dump_stack_lvl+0x16c/0x1f0 [ 875.205701][T15802] should_fail_ex+0x512/0x640 [ 875.205738][T15802] ? fs_reclaim_acquire+0xae/0x150 [ 875.205770][T15802] ? tomoyo_encode2+0x100/0x3e0 [ 875.205802][T15802] should_failslab+0xc2/0x120 [ 875.205825][T15802] __kmalloc_noprof+0xd2/0x510 [ 875.205863][T15802] ? d_absolute_path+0x136/0x1a0 [ 875.205893][T15802] tomoyo_encode2+0x100/0x3e0 [ 875.205930][T15802] tomoyo_encode+0x29/0x50 [ 875.205962][T15802] tomoyo_realpath_from_path+0x18f/0x6e0 [ 875.206005][T15802] tomoyo_path_number_perm+0x245/0x580 [ 875.206033][T15802] ? tomoyo_path_number_perm+0x237/0x580 [ 875.206065][T15802] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 875.206124][T15802] ? find_held_lock+0x2b/0x80 [ 875.206149][T15802] ? hook_file_ioctl_common+0x145/0x410 [ 875.206183][T15802] ? __fget_files+0x20e/0x3c0 [ 875.206221][T15802] security_file_ioctl+0x9b/0x240 [ 875.206253][T15802] __x64_sys_ioctl+0xb7/0x210 [ 875.206284][T15802] do_syscall_64+0xcd/0x490 [ 875.206323][T15802] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 875.206349][T15802] RIP: 0033:0x7f42ff78e929 [ 875.206368][T15802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 875.206392][T15802] RSP: 002b:00007f430055d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 875.206415][T15802] RAX: ffffffffffffffda RBX: 00007f42ff9b5fa0 RCX: 00007f42ff78e929 [ 875.206431][T15802] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 875.206446][T15802] RBP: 00007f42ff810b39 R08: 0000000000000000 R09: 0000000000000000 [ 875.206462][T15802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 875.206477][T15802] R13: 0000000000000000 R14: 00007f42ff9b5fa0 R15: 00007ffe7ef8d8e8 [ 875.206508][T15802] [ 875.206529][T15802] ERROR: Out of memory at tomoyo_realpath_from_path. [ 877.093179][T15828] kAFS: No cell specified [ 877.425197][T15826] kAFS: No cell specified [ 878.025801][T15854] can: request_module (can-proto-0) failed. [ 880.092503][T15876] ima: policy update failed [ 880.097247][ T30] audit: type=1802 audit(6047011044.834:80): pid=15876 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2165" res=0 errno=0 [ 880.506214][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 880.512687][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 884.549431][T15942] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2178'. [ 885.578535][T15946] ima: policy update failed [ 885.632123][ T30] audit: type=1802 audit(6047011050.374:81): pid=15946 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2180" res=0 errno=0 [ 886.799024][T15960] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5) [ 887.160525][T15957] snd_aloop snd_aloop.0: control 16781584:65533:6:'x?F/zF˷fC:0 is already present [ 889.042359][T15970] ptrace attach of "./syz-executor exec"[5853] was attempted by "./syz-executor exec"[15970] [ 890.239820][T16007] FAULT_INJECTION: forcing a failure. [ 890.239820][T16007] name failslab, interval 1, probability 0, space 0, times 0 [ 890.253487][T16007] CPU: 1 UID: 0 PID: 16007 Comm: syz.1.2187 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 890.253535][T16007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 890.253556][T16007] Call Trace: [ 890.253568][T16007] [ 890.253580][T16007] dump_stack_lvl+0x16c/0x1f0 [ 890.253635][T16007] should_fail_ex+0x512/0x640 [ 890.253683][T16007] ? __kmalloc_noprof+0xbf/0x510 [ 890.253737][T16007] ? sk_prot_alloc+0x1a8/0x2a0 [ 890.253769][T16007] should_failslab+0xc2/0x120 [ 890.253802][T16007] __kmalloc_noprof+0xd2/0x510 [ 890.253861][T16007] sk_prot_alloc+0x1a8/0x2a0 [ 890.253898][T16007] sk_alloc+0x36/0xc20 [ 890.253947][T16007] alg_create+0x9e/0x150 [ 890.253998][T16007] __sock_create+0x335/0x8d0 [ 890.254045][T16007] __sys_socket+0x14d/0x260 [ 890.254085][T16007] ? __pfx___sys_socket+0x10/0x10 [ 890.254123][T16007] ? xfd_validate_state+0x61/0x180 [ 890.254183][T16007] __x64_sys_socket+0x72/0xb0 [ 890.254217][T16007] ? lockdep_hardirqs_on+0x7c/0x110 [ 890.254265][T16007] do_syscall_64+0xcd/0x490 [ 890.254320][T16007] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 890.254353][T16007] RIP: 0033:0x7f776b58e929 [ 890.254380][T16007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 890.254415][T16007] RSP: 002b:00007f776c390038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 890.254448][T16007] RAX: ffffffffffffffda RBX: 00007f776b7b6240 RCX: 00007f776b58e929 [ 890.254471][T16007] RDX: 0000000000000000 RSI: 0000000000080805 RDI: 0000000000000026 [ 890.254493][T16007] RBP: 00007f776b610b39 R08: 0000000000000000 R09: 0000000000000000 [ 890.254514][T16007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 890.254535][T16007] R13: 0000000000000000 R14: 00007f776b7b6240 R15: 00007fff641cd0b8 [ 890.254579][T16007] [ 891.934925][T16010] ptrace attach of "./syz-executor exec"[5853] was attempted by "./syz-executor exec"[16010] [ 896.390733][T16060] can: request_module (can-proto-0) failed. [ 896.642662][T16069] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input164 [ 897.435951][T16086] QAT: Stopping all acceleration devices. [ 900.149801][T16118] can: request_module (can-proto-0) failed. [ 900.600061][T16134] can: request_module (can-proto-0) failed. [ 900.678902][T16134] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input165 [ 900.931761][T12324] udevd[12324]: setting owner of /dev/input/event2 to uid=0, gid=104 failed: No such file or directory [ 903.005493][T16183] QAT: Stopping all acceleration devices. [ 904.916146][T16213] FAULT_INJECTION: forcing a failure. [ 904.916146][T16213] name failslab, interval 1, probability 0, space 0, times 0 [ 904.929795][T16213] CPU: 0 UID: 0 PID: 16213 Comm: syz.0.2241 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 904.929853][T16213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 904.929876][T16213] Call Trace: [ 904.929888][T16213] [ 904.929902][T16213] dump_stack_lvl+0x16c/0x1f0 [ 904.929960][T16213] should_fail_ex+0x512/0x640 [ 904.930010][T16213] ? __kmalloc_node_noprof+0xc5/0x500 [ 904.930068][T16213] should_failslab+0xc2/0x120 [ 904.930101][T16213] __kmalloc_node_noprof+0xd8/0x500 [ 904.930154][T16213] ? blk_mq_alloc_tag_set+0x534/0x1260 [ 904.930211][T16213] blk_mq_alloc_tag_set+0x534/0x1260 [ 904.930274][T16213] loop_add+0x3b9/0xb70 [ 904.930312][T16213] ? do_vfs_ioctl+0x523/0x1a60 [ 904.930352][T16213] ? __pfx_loop_add+0x10/0x10 [ 904.930388][T16213] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 904.930457][T16213] ? find_held_lock+0x2b/0x80 [ 904.930501][T16213] loop_control_ioctl+0x13e/0x630 [ 904.930543][T16213] ? __pfx_loop_control_ioctl+0x10/0x10 [ 904.930590][T16213] ? __pfx_loop_control_ioctl+0x10/0x10 [ 904.930634][T16213] __x64_sys_ioctl+0x18e/0x210 [ 904.930678][T16213] do_syscall_64+0xcd/0x490 [ 904.930734][T16213] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 904.930769][T16213] RIP: 0033:0x7f42ff78e929 [ 904.930798][T16213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 904.930832][T16213] RSP: 002b:00007f430055d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 904.930872][T16213] RAX: ffffffffffffffda RBX: 00007f42ff9b5fa0 RCX: 00007f42ff78e929 [ 904.930895][T16213] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007 [ 904.930923][T16213] RBP: 00007f42ff810b39 R08: 0000000000000000 R09: 0000000000000000 [ 904.930945][T16213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 904.930965][T16213] R13: 0000000000000000 R14: 00007f42ff9b5fa0 R15: 00007ffe7ef8d8e8 [ 904.931009][T16213] [ 905.344365][T16221] QAT: Stopping all acceleration devices. [ 905.345067][ T5860] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 905.360917][ T5860] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 905.370870][ T5860] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 905.409582][ T5860] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 905.419663][ T5860] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 906.408749][ T3448] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 906.649918][ T3448] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 906.797619][ T3448] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 906.958645][ T3448] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 907.149672][T16217] chnl_net:caif_netlink_parms(): no params data found [ 907.446008][T16217] bridge0: port 1(bridge_slave_0) entered blocking state [ 907.456759][T16217] bridge0: port 1(bridge_slave_0) entered disabled state [ 907.466076][T16217] bridge_slave_0: entered allmulticast mode [ 907.474978][T16217] bridge_slave_0: entered promiscuous mode [ 907.478315][T16217] bridge0: port 2(bridge_slave_1) entered blocking state [ 907.478501][T16217] bridge0: port 2(bridge_slave_1) entered disabled state [ 907.478676][T16217] bridge_slave_1: entered allmulticast mode [ 907.480720][T16217] bridge_slave_1: entered promiscuous mode [ 907.550264][T16217] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 907.550310][ T5860] Bluetooth: hci4: command tx timeout [ 907.560049][T16217] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 907.626063][T16217] team0: Port device team_slave_0 added [ 907.650529][T16217] team0: Port device team_slave_1 added [ 907.721653][T16217] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 907.730556][T16217] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 907.769619][T16217] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 907.797190][T16217] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 907.805644][T16217] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 907.833679][T16217] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 907.991617][T16217] hsr_slave_0: entered promiscuous mode [ 907.998559][T16217] hsr_slave_1: entered promiscuous mode [ 908.005217][T16217] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 908.013786][T16217] Cannot create hsr debugfs directory [ 908.413554][T16265] QAT: Stopping all acceleration devices. [ 908.962755][T16274] can: request_module (can-proto-0) failed. [ 909.165356][T16278] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input166 [ 909.621840][ T5860] Bluetooth: hci4: command tx timeout [ 910.676756][T16290] can: request_module (can-proto-0) failed. [ 910.866031][T16294] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input167 [ 911.534608][T16296] QAT: Stopping all acceleration devices. [ 911.701842][ T5860] Bluetooth: hci4: command tx timeout [ 912.576422][T16301] can: request_module (can-proto-0) failed. [ 912.768065][T16305] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input168 [ 913.680679][T16312] FAULT_INJECTION: forcing a failure. [ 913.680679][T16312] name failslab, interval 1, probability 0, space 0, times 0 [ 913.693875][T16312] CPU: 1 UID: 0 PID: 16312 Comm: syz.3.2265 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 913.693923][T16312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 913.693945][T16312] Call Trace: [ 913.693956][T16312] [ 913.693969][T16312] dump_stack_lvl+0x16c/0x1f0 [ 913.694024][T16312] should_fail_ex+0x512/0x640 [ 913.694072][T16312] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 913.694148][T16312] should_failslab+0xc2/0x120 [ 913.694182][T16312] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 913.694237][T16312] ? __kernfs_new_node+0xd2/0x8e0 [ 913.694293][T16312] __kernfs_new_node+0xd2/0x8e0 [ 913.694357][T16312] ? __pfx___kernfs_new_node+0x10/0x10 [ 913.694418][T16312] ? find_held_lock+0x2b/0x80 [ 913.694457][T16312] ? kernfs_root+0xee/0x2a0 [ 913.694514][T16312] kernfs_new_node+0x13c/0x1e0 [ 913.694574][T16312] __kernfs_create_file+0x53/0x350 [ 913.694625][T16312] sysfs_add_file_mode_ns+0x207/0x3c0 [ 913.694681][T16312] sysfs_merge_group+0x1aa/0x340 [ 913.694734][T16312] ? __pfx_sysfs_merge_group+0x10/0x10 [ 913.694791][T16312] ? __pfx_dev_add_physical_location+0x10/0x10 [ 913.694826][T16312] ? bus_to_subsys+0x131/0x160 [ 913.694874][T16312] dpm_sysfs_add+0x237/0x280 [ 913.694910][T16312] device_add+0x9a6/0x1a70 [ 913.694952][T16312] ? __pfx_device_add+0x10/0x10 [ 913.695006][T16312] nfc_register_device+0x41/0x3c0 [ 913.695065][T16312] nci_register_device+0x7f1/0xb80 [ 913.695114][T16312] ? __pfx_nci_register_device+0x10/0x10 [ 913.695166][T16312] ? lockdep_init_map_type+0x5c/0x280 [ 913.695226][T16312] virtual_ncidev_open+0x141/0x220 [ 913.695270][T16312] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 913.695313][T16312] misc_open+0x35d/0x420 [ 913.695363][T16312] ? __pfx_misc_open+0x10/0x10 [ 913.695407][T16312] chrdev_open+0x234/0x6a0 [ 913.695459][T16312] ? __pfx_apparmor_file_open+0x10/0x10 [ 913.695503][T16312] ? __pfx_chrdev_open+0x10/0x10 [ 913.695562][T16312] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 913.695619][T16312] do_dentry_open+0x741/0x1c10 [ 913.695671][T16312] ? __pfx_chrdev_open+0x10/0x10 [ 913.695734][T16312] vfs_open+0x82/0x3f0 [ 913.695777][T16312] path_openat+0x1de4/0x2cb0 [ 913.695843][T16312] ? __pfx_path_openat+0x10/0x10 [ 913.695896][T16312] ? __lock_acquire+0xb8a/0x1c90 [ 913.695950][T16312] do_filp_open+0x20b/0x470 [ 913.696002][T16312] ? __pfx_do_filp_open+0x10/0x10 [ 913.696086][T16312] ? alloc_fd+0x471/0x7d0 [ 913.696146][T16312] do_sys_openat2+0x11b/0x1d0 [ 913.696184][T16312] ? __pfx_do_sys_openat2+0x10/0x10 [ 913.696241][T16312] __x64_sys_openat+0x174/0x210 [ 913.696281][T16312] ? __pfx___x64_sys_openat+0x10/0x10 [ 913.696365][T16312] do_syscall_64+0xcd/0x490 [ 913.696423][T16312] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 913.696458][T16312] RIP: 0033:0x7fb66c58e929 [ 913.696487][T16312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 913.696522][T16312] RSP: 002b:00007fb66d4b9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 913.696555][T16312] RAX: ffffffffffffffda RBX: 00007fb66c7b6080 RCX: 00007fb66c58e929 [ 913.696578][T16312] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 913.696602][T16312] RBP: 00007fb66c610b39 R08: 0000000000000000 R09: 0000000000000000 [ 913.696624][T16312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 913.696644][T16312] R13: 0000000000000000 R14: 00007fb66c7b6080 R15: 00007ffd073e3948 [ 913.696689][T16312] [ 914.058471][ T5860] Bluetooth: hci4: command tx timeout [ 922.254560][T14495] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 922.266747][T14495] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 922.275137][T14495] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 922.303910][T14495] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 922.314066][T14495] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 922.636590][T16324] chnl_net:caif_netlink_parms(): no params data found [ 922.683431][T16332] can: request_module (can-proto-0) failed. [ 922.742991][T16324] bridge0: port 1(bridge_slave_0) entered blocking state [ 922.750731][T16324] bridge0: port 1(bridge_slave_0) entered disabled state [ 922.758796][T16324] bridge_slave_0: entered allmulticast mode [ 922.766612][T16324] bridge_slave_0: entered promiscuous mode [ 922.776108][T16324] bridge0: port 2(bridge_slave_1) entered blocking state [ 922.785436][T16324] bridge0: port 2(bridge_slave_1) entered disabled state [ 922.793116][T16324] bridge_slave_1: entered allmulticast mode [ 922.814793][T16324] bridge_slave_1: entered promiscuous mode [ 922.874616][T16324] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 922.900004][T16340] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input169 [ 922.907874][T16324] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 923.048367][T16324] team0: Port device team_slave_0 added [ 923.094055][T16324] team0: Port device team_slave_1 added [ 923.314494][T16324] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 923.329306][T16324] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 923.422268][T16324] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 923.477882][T16324] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 923.500158][T16324] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 923.559456][T16324] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 923.606920][T14495] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 923.616178][T14495] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 923.627324][T14495] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 923.635664][T14495] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 923.644946][T14495] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 923.726258][T16324] hsr_slave_0: entered promiscuous mode [ 923.733168][T16324] hsr_slave_1: entered promiscuous mode [ 923.739608][T16324] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 923.751489][T16324] Cannot create hsr debugfs directory [ 924.341990][T14495] Bluetooth: hci2: command tx timeout [ 924.426546][T16344] chnl_net:caif_netlink_parms(): no params data found [ 924.609042][T16344] bridge0: port 1(bridge_slave_0) entered blocking state [ 924.616613][T16344] bridge0: port 1(bridge_slave_0) entered disabled state [ 924.625021][T16344] bridge_slave_0: entered allmulticast mode [ 924.636306][T16344] bridge_slave_0: entered promiscuous mode [ 924.646131][T16344] bridge0: port 2(bridge_slave_1) entered blocking state [ 924.654091][T16344] bridge0: port 2(bridge_slave_1) entered disabled state [ 924.661477][T16344] bridge_slave_1: entered allmulticast mode [ 924.672149][T16344] bridge_slave_1: entered promiscuous mode [ 924.736172][T16344] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 924.750346][T16344] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 924.855307][T16344] team0: Port device team_slave_0 added [ 924.876907][T16344] team0: Port device team_slave_1 added [ 924.927856][T16344] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 924.935358][T16344] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 924.975525][T16344] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 924.992495][T16344] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 925.003517][T16344] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 925.037637][T16344] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 925.181297][T16344] hsr_slave_0: entered promiscuous mode [ 925.213084][T16344] hsr_slave_1: entered promiscuous mode [ 925.220939][T16344] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 925.234566][T16344] Cannot create hsr debugfs directory [ 925.703804][T14495] Bluetooth: hci5: command tx timeout [ 926.422543][T14495] Bluetooth: hci2: command tx timeout [ 927.781960][T14495] Bluetooth: hci5: command tx timeout [ 928.409125][T16393] QAT: Stopping all acceleration devices. [ 928.502059][T14495] Bluetooth: hci2: command tx timeout [ 929.861839][T14495] Bluetooth: hci5: command tx timeout [ 930.592526][T14495] Bluetooth: hci2: command tx timeout [ 931.941820][T14495] Bluetooth: hci5: command tx timeout [ 934.623011][T16428] can: request_module (can-proto-0) failed. [ 934.822324][T16432] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input170 [ 936.959165][T16442] QAT: Stopping all acceleration devices. [ 937.257218][T16445] can: request_module (can-proto-0) failed. [ 937.438177][T16449] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input171 [ 939.353989][T16459] can: request_module (can-proto-0) failed. [ 940.766733][T16470] can: request_module (can-proto-0) failed. [ 940.960934][T16474] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input172 [ 941.947634][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 941.955410][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 944.839430][T16498] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2311'. [ 965.698976][ T5860] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 965.708939][ T5860] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 965.718360][ T5860] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 965.730133][ T5860] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 965.739943][ T5860] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 965.956128][T16565] chnl_net:caif_netlink_parms(): no params data found [ 966.052159][T16565] bridge0: port 1(bridge_slave_0) entered blocking state [ 966.059370][T16565] bridge0: port 1(bridge_slave_0) entered disabled state [ 966.067398][T16565] bridge_slave_0: entered allmulticast mode [ 966.075307][T16565] bridge_slave_0: entered promiscuous mode [ 966.084490][T16565] bridge0: port 2(bridge_slave_1) entered blocking state [ 966.092199][T16565] bridge0: port 2(bridge_slave_1) entered disabled state [ 966.099469][T16565] bridge_slave_1: entered allmulticast mode [ 966.108277][T16565] bridge_slave_1: entered promiscuous mode [ 966.153235][T16565] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 966.166555][T16565] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 966.209450][T16565] team0: Port device team_slave_0 added [ 966.219077][T16565] team0: Port device team_slave_1 added [ 966.257872][T16565] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 966.265188][T16565] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 966.292164][T16565] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 966.305061][T16565] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 966.312191][T16565] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 966.338246][T16565] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 966.397532][T16565] hsr_slave_0: entered promiscuous mode [ 966.404273][T16565] hsr_slave_1: entered promiscuous mode [ 966.410448][T16565] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 966.418430][T16565] Cannot create hsr debugfs directory [ 967.782086][T14495] Bluetooth: hci6: command tx timeout [ 969.861896][T14495] Bluetooth: hci6: command tx timeout [ 971.941906][T14495] Bluetooth: hci6: command tx timeout [ 974.021882][T14495] Bluetooth: hci6: command tx timeout [ 982.246549][ T5860] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 982.260657][ T5860] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 982.270330][ T5860] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 982.285139][ T5860] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 982.295649][ T5860] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 982.509631][T16578] chnl_net:caif_netlink_parms(): no params data found [ 982.604147][T16578] bridge0: port 1(bridge_slave_0) entered blocking state [ 982.611391][T16578] bridge0: port 1(bridge_slave_0) entered disabled state [ 982.620972][T16578] bridge_slave_0: entered allmulticast mode [ 982.630230][T16578] bridge_slave_0: entered promiscuous mode [ 982.638885][T16578] bridge0: port 2(bridge_slave_1) entered blocking state [ 982.646209][T16578] bridge0: port 2(bridge_slave_1) entered disabled state [ 982.653647][T16578] bridge_slave_1: entered allmulticast mode [ 982.662262][T16578] bridge_slave_1: entered promiscuous mode [ 982.700728][T16578] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 982.716060][T16578] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 982.764621][T16578] team0: Port device team_slave_0 added [ 982.774159][T16578] team0: Port device team_slave_1 added [ 982.812534][T16578] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 982.819640][T16578] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 982.847006][T16578] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 982.860276][T16578] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 982.867716][T16578] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 982.893826][T16578] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 982.959383][T16578] hsr_slave_0: entered promiscuous mode [ 982.966012][T16578] hsr_slave_1: entered promiscuous mode [ 982.973098][T16578] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 982.980724][T16578] Cannot create hsr debugfs directory [ 983.736897][T14495] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 983.750753][T14495] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 983.759668][T14495] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 983.769255][T14495] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 983.777950][T14495] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 984.008908][T16589] chnl_net:caif_netlink_parms(): no params data found [ 984.108071][T16589] bridge0: port 1(bridge_slave_0) entered blocking state [ 984.115588][T16589] bridge0: port 1(bridge_slave_0) entered disabled state [ 984.123460][T16589] bridge_slave_0: entered allmulticast mode [ 984.130921][T16589] bridge_slave_0: entered promiscuous mode [ 984.140090][T16589] bridge0: port 2(bridge_slave_1) entered blocking state [ 984.147832][T16589] bridge0: port 2(bridge_slave_1) entered disabled state [ 984.155847][T16589] bridge_slave_1: entered allmulticast mode [ 984.164828][T16589] bridge_slave_1: entered promiscuous mode [ 984.207512][T16589] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 984.220100][T16589] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 984.267806][T16589] team0: Port device team_slave_0 added [ 984.278097][T16589] team0: Port device team_slave_1 added [ 984.317324][T16589] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 984.324470][T16589] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 984.342177][ T5860] Bluetooth: hci7: command tx timeout [ 984.357283][T16589] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 984.374238][T16589] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 984.381291][T16589] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 984.407460][T16589] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 984.467370][T16589] hsr_slave_0: entered promiscuous mode [ 984.475104][T16589] hsr_slave_1: entered promiscuous mode [ 984.482830][T16589] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 984.490467][T16589] Cannot create hsr debugfs directory [ 985.862276][ T5860] Bluetooth: hci8: command tx timeout [ 986.422295][ T5860] Bluetooth: hci7: command tx timeout [ 987.942059][ T5860] Bluetooth: hci8: command tx timeout [ 988.502003][ T5860] Bluetooth: hci7: command tx timeout [ 990.022115][ T5860] Bluetooth: hci8: command tx timeout [ 990.582079][T14495] Bluetooth: hci7: command tx timeout [ 992.102423][ T5860] Bluetooth: hci8: command tx timeout [ 1003.386835][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1003.394025][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1025.832842][T14495] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 1025.844090][T14495] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 1025.852698][T14495] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 1025.861266][T14495] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 1025.872395][T14495] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 1026.098575][T16600] chnl_net:caif_netlink_parms(): no params data found [ 1026.200116][T16600] bridge0: port 1(bridge_slave_0) entered blocking state [ 1026.207778][T16600] bridge0: port 1(bridge_slave_0) entered disabled state [ 1026.215743][T16600] bridge_slave_0: entered allmulticast mode [ 1026.224828][T16600] bridge_slave_0: entered promiscuous mode [ 1026.233842][T16600] bridge0: port 2(bridge_slave_1) entered blocking state [ 1026.241062][T16600] bridge0: port 2(bridge_slave_1) entered disabled state [ 1026.249303][T16600] bridge_slave_1: entered allmulticast mode [ 1026.257800][T16600] bridge_slave_1: entered promiscuous mode [ 1026.299983][T16600] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1026.313872][T16600] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1026.362306][T16600] team0: Port device team_slave_0 added [ 1026.371037][T16600] team0: Port device team_slave_1 added [ 1026.406717][T16600] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1026.414325][T16600] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1026.440790][T16600] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1026.456309][T16600] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1026.463402][T16600] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1026.489935][T16600] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1026.549336][T16600] hsr_slave_0: entered promiscuous mode [ 1026.557998][T16600] hsr_slave_1: entered promiscuous mode [ 1026.564783][T16600] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1026.572468][T16600] Cannot create hsr debugfs directory [ 1027.942127][ T5860] Bluetooth: hci9: command tx timeout [ 1030.031891][T14495] Bluetooth: hci9: command tx timeout [ 1031.071970][ T5860] Bluetooth: hci4: command 0x0406 tx timeout [ 1032.102243][ T5860] Bluetooth: hci9: command tx timeout [ 1034.192449][ T5860] Bluetooth: hci9: command tx timeout [ 1042.337447][T14495] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 1042.347017][T14495] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 1042.355537][T14495] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 1042.365096][T14495] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 1042.374242][T14495] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 1042.598311][T16617] chnl_net:caif_netlink_parms(): no params data found [ 1042.700067][T16617] bridge0: port 1(bridge_slave_0) entered blocking state [ 1042.707408][T16617] bridge0: port 1(bridge_slave_0) entered disabled state [ 1042.715481][T16617] bridge_slave_0: entered allmulticast mode [ 1042.725376][T16617] bridge_slave_0: entered promiscuous mode [ 1042.736409][T16617] bridge0: port 2(bridge_slave_1) entered blocking state [ 1042.744269][T16617] bridge0: port 2(bridge_slave_1) entered disabled state [ 1042.751562][T16617] bridge_slave_1: entered allmulticast mode [ 1042.759212][T16617] bridge_slave_1: entered promiscuous mode [ 1042.801195][T16617] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1042.815860][T16617] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1042.864498][T16617] team0: Port device team_slave_0 added [ 1042.875935][T16617] team0: Port device team_slave_1 added [ 1042.913810][T16617] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1042.920809][T16617] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1042.948852][T16617] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1042.962769][T16617] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1042.969774][T16617] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1042.996289][T16617] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1043.063148][T16617] hsr_slave_0: entered promiscuous mode [ 1043.070524][T16617] hsr_slave_1: entered promiscuous mode [ 1043.077488][T16617] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1043.085459][T16617] Cannot create hsr debugfs directory [ 1043.843007][T14495] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 1043.853044][T14495] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 1043.864133][T14495] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 1043.876389][T14495] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 1043.884502][T14495] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 1044.133785][T16627] chnl_net:caif_netlink_parms(): no params data found [ 1044.240098][T16627] bridge0: port 1(bridge_slave_0) entered blocking state [ 1044.247493][T16627] bridge0: port 1(bridge_slave_0) entered disabled state [ 1044.255410][T16627] bridge_slave_0: entered allmulticast mode [ 1044.263581][T16627] bridge_slave_0: entered promiscuous mode [ 1044.276543][T16627] bridge0: port 2(bridge_slave_1) entered blocking state [ 1044.283902][T16627] bridge0: port 2(bridge_slave_1) entered disabled state [ 1044.291191][T16627] bridge_slave_1: entered allmulticast mode [ 1044.298930][T16627] bridge_slave_1: entered promiscuous mode [ 1044.342580][T16627] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1044.357387][T16627] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1044.407423][T16627] team0: Port device team_slave_0 added [ 1044.419166][T16627] team0: Port device team_slave_1 added [ 1044.425506][T16581] Bluetooth: hci10: command tx timeout [ 1044.468204][T16627] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1044.477860][T16627] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1044.505054][T16627] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1044.517750][T16627] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1044.525034][T16627] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1044.551316][T16627] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1044.615315][T16627] hsr_slave_0: entered promiscuous mode [ 1044.622151][T16627] hsr_slave_1: entered promiscuous mode [ 1044.628735][T16627] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1044.636767][T16627] Cannot create hsr debugfs directory [ 1045.941954][T16581] Bluetooth: hci11: command tx timeout [ 1046.421879][T16581] Bluetooth: hci5: command 0x0406 tx timeout [ 1046.433155][T16581] Bluetooth: hci2: command 0x0406 tx timeout [ 1046.501933][ T5860] Bluetooth: hci10: command tx timeout [ 1048.032192][ T5860] Bluetooth: hci11: command tx timeout [ 1048.582209][ T5860] Bluetooth: hci10: command tx timeout [ 1050.112497][ T5860] Bluetooth: hci11: command tx timeout [ 1050.661966][ T5860] Bluetooth: hci10: command tx timeout [ 1052.181968][ T5860] Bluetooth: hci11: command tx timeout [ 1060.342040][ T31] INFO: task kworker/u8:7:3448 blocked for more than 143 seconds. [ 1060.350470][ T31] Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 [ 1060.358753][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1060.367563][ T31] task:kworker/u8:7 state:D stack:23512 pid:3448 tgid:3448 ppid:2 task_flags:0x4208160 flags:0x00004000 [ 1060.379830][ T31] Workqueue: netns cleanup_net [ 1060.384756][ T31] Call Trace: [ 1060.388088][ T31] SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1060.391083][ T31] __schedule+0x116a/0x5de0 [ 1060.396842][ T31] ? __lock_acquire+0x622/0x1c90 [ 1060.402235][ T31] ? __pfx___schedule+0x10/0x10 [ 1060.407188][ T31] ? find_held_lock+0x2b/0x80 [ 1060.413279][ T31] ? schedule+0x2d7/0x3a0 [ 1060.417711][ T31] schedule+0xe7/0x3a0 [ 1060.422223][ T31] schedule_timeout+0x257/0x290 [ 1060.427145][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 1060.432777][ T31] ? mark_held_locks+0x49/0x80 [ 1060.437626][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 1060.442985][ T31] __wait_for_common+0x2ff/0x4e0 [ 1060.449061][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 1060.454761][ T31] ? __pfx___wait_for_common+0x10/0x10 [ 1060.460325][ T31] remove_one+0x312/0x420 [ 1060.464881][ T31] ? find_next_child+0x18f/0x280 [ 1060.469895][ T31] ? __pfx_remove_one+0x10/0x10 [ 1060.475398][ T31] simple_recursive_removal+0x21b/0x690 [ 1060.481033][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 1060.486718][ T31] ? __pfx_remove_one+0x10/0x10 [ 1060.492189][ T31] debugfs_remove+0x5d/0x80 [ 1060.496776][ T31] nsim_dev_health_exit+0x3b/0xe0 [ 1060.503535][ T31] nsim_dev_reload_destroy+0x144/0x4d0 [ 1060.509263][ T31] nsim_dev_reload_down+0x6e/0xd0 [ 1060.514944][ T31] devlink_reload+0x1a1/0x7c0 [ 1060.519720][ T31] ? __pfx_devlink_reload+0x10/0x10 [ 1060.537031][ T31] devlink_pernet_pre_exit+0x1a0/0x2b0 [ 1060.548763][ T31] ? __pfx_devlink_pernet_pre_exit+0x10/0x10 [ 1060.555534][ T31] ? up_write+0x1b2/0x520 [ 1060.559960][ T31] ? kobject_put+0xab/0x5a0 [ 1060.565188][ T31] ? __pfx_devlink_pernet_pre_exit+0x10/0x10 [ 1060.571258][ T31] ops_undo_list+0x187/0xab0 [ 1060.576540][ T31] ? __pfx_ops_undo_list+0x10/0x10 [ 1060.582145][ T31] ? __local_bh_enable_ip+0xa4/0x120 [ 1060.587550][ T31] cleanup_net+0x408/0x890 [ 1060.592560][ T31] ? __pfx_cleanup_net+0x10/0x10 [ 1060.597572][ T31] ? rcu_is_watching+0x12/0xc0 [ 1060.602947][ T31] process_one_work+0x9cf/0x1b70 [ 1060.607988][ T31] ? __pfx_nsim_dev_trap_report_work+0x10/0x10 [ 1060.615888][ T31] ? __pfx_process_one_work+0x10/0x10 [ 1060.621371][ T31] ? assign_work+0x1a0/0x250 [ 1060.626533][ T31] worker_thread+0x6c8/0xf10 [ 1060.631432][ T31] ? __kthread_parkme+0x19e/0x250 [ 1060.638098][ T31] ? __pfx_worker_thread+0x10/0x10 [ 1060.649344][ T31] kthread+0x3c2/0x780 [ 1060.660455][ T31] ? __pfx_kthread+0x10/0x10 [ 1060.666032][ T31] ? rcu_is_watching+0x12/0xc0 [ 1060.670879][ T31] ? __pfx_kthread+0x10/0x10 [ 1060.676320][ T31] ret_from_fork+0x5d7/0x6f0 [ 1060.680998][ T31] ? __pfx_kthread+0x10/0x10 [ 1060.686190][ T31] ret_from_fork_asm+0x1a/0x30 [ 1060.691058][ T31] [ 1060.694781][ T31] INFO: task syz-executor:16217 blocked for more than 143 seconds. [ 1060.703137][ T31] Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 [ 1060.710841][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1060.720092][ T31] task:syz-executor state:D stack:24312 pid:16217 tgid:16217 ppid:1 task_flags:0x400140 flags:0x00004004 [ 1060.732713][ T31] Call Trace: [ 1060.736051][ T31] [ 1060.739051][ T31] __schedule+0x116a/0x5de0 [ 1060.746429][ T31] ? __pfx___schedule+0x10/0x10 [ 1060.751429][ T31] ? find_held_lock+0x2b/0x80 [ 1060.771772][ T31] ? schedule+0x2d7/0x3a0 [ 1060.776229][ T31] schedule+0xe7/0x3a0 [ 1060.780376][ T31] schedule_preempt_disabled+0x13/0x30 [ 1060.795980][ T31] __mutex_lock+0x6c7/0xb90 [ 1060.800693][ T31] ? device_del+0xa0/0x9f0 [ 1060.811042][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 1060.821103][ T31] ? mark_held_locks+0x49/0x80 [ 1060.841019][ T31] ? device_del+0xa0/0x9f0 [ 1060.850723][ T31] device_del+0xa0/0x9f0 [ 1060.856071][ T31] ? __pfx_ida_free+0x10/0x10 [ 1060.860846][ T31] ? __pfx_device_del+0x10/0x10 [ 1060.866062][ T31] device_unregister+0x1d/0xc0 [ 1060.870919][ T31] del_device_store+0x355/0x4a0 [ 1060.876248][ T31] ? __pfx_del_device_store+0x10/0x10 [ 1060.881803][ T31] ? find_held_lock+0x2b/0x80 [ 1060.894696][ T31] ? sysfs_file_kobj+0xe4/0x290 [ 1060.899744][ T31] ? __pfx_del_device_store+0x10/0x10 [ 1060.931766][ T31] bus_attr_store+0x74/0xb0 [ 1060.936390][ T31] ? __pfx_bus_attr_store+0x10/0x10 [ 1060.977487][ T31] sysfs_kf_write+0xf2/0x150 [ 1060.994759][ T31] kernfs_fop_write_iter+0x354/0x510 [ 1061.000159][ T31] ? __pfx_sysfs_kf_write+0x10/0x10 [ 1061.021973][ T31] vfs_write+0x6c4/0x1150 [ 1061.026432][ T31] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 1061.042307][ T31] ? __pfx_vfs_write+0x10/0x10 [ 1061.047214][ T31] ? __pfx_do_sys_openat2+0x10/0x10 [ 1061.053828][ T31] ksys_write+0x12a/0x250 [ 1061.058251][ T31] ? __pfx_ksys_write+0x10/0x10 [ 1061.066113][ T31] do_syscall_64+0xcd/0x490 [ 1061.070742][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1061.076839][ T31] RIP: 0033:0x7f2b7038d3df [ 1061.081526][ T31] RSP: 002b:00007fff0b4e37d0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 1061.090097][ T31] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f2b7038d3df [ 1061.098366][ T31] RDX: 0000000000000001 RSI: 00007fff0b4e3820 RDI: 0000000000000005 [ 1061.107802][ T31] RBP: 00007f2b70411d8d R08: 0000000000000000 R09: 00007fff0b4e3627 [ 1061.115965][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 1061.124512][ T31] R13: 00007fff0b4e3820 R14: 00007f2b710e4620 R15: 0000000000000003 [ 1061.132669][ T31] [ 1061.135984][ T31] INFO: task syz.1.2250:16243 blocked for more than 144 seconds. [ 1061.146483][ T31] Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 [ 1061.154460][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1061.166281][ T31] task:syz.1.2250 state:D stack:26920 pid:16243 tgid:16241 ppid:5853 task_flags:0x400140 flags:0x00004004 [ 1061.178503][ T31] Call Trace: [ 1061.183086][ T31] [ 1061.186083][ T31] __schedule+0x116a/0x5de0 [ 1061.190678][ T31] ? __lock_acquire+0x622/0x1c90 [ 1061.196042][ T31] ? __pfx___schedule+0x10/0x10 [ 1061.200989][ T31] ? find_held_lock+0x2b/0x80 [ 1061.205832][ T31] ? schedule+0x2d7/0x3a0 [ 1061.210462][ T31] schedule+0xe7/0x3a0 [ 1061.214939][ T31] schedule_preempt_disabled+0x13/0x30 [ 1061.220484][ T31] __mutex_lock+0x6c7/0xb90 [ 1061.225978][ T31] ? netlink_has_listeners+0x219/0x430 [ 1061.231540][ T31] ? devlink_health_report+0x3ba/0x9c0 [ 1061.237184][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 1061.242808][ T31] ? irqentry_exit+0x3b/0x90 [ 1061.247480][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 1061.252901][ T31] ? devlink_health_report+0x3ba/0x9c0 [ 1061.258445][ T31] devlink_health_report+0x3ba/0x9c0 [ 1061.264099][ T31] ? __pfx_devlink_health_report+0x10/0x10 [ 1061.272425][ T31] ? _copy_from_user+0x59/0xd0 [ 1061.277290][ T31] nsim_dev_health_break_write+0x166/0x210 [ 1061.298698][ T31] ? __pfx_nsim_dev_health_break_write+0x10/0x10 [ 1061.321872][ T31] full_proxy_write+0x13c/0x200 [ 1061.326837][ T31] ? __pfx_full_proxy_write+0x10/0x10 [ 1061.341771][ T31] vfs_write+0x2a0/0x1150 [ 1061.346227][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 1061.351327][ T31] ? __pfx_vfs_write+0x10/0x10 [ 1061.356920][ T31] ? __fget_files+0x20e/0x3c0 [ 1061.370006][ T31] ksys_write+0x12a/0x250 [ 1061.374759][ T31] ? __pfx_ksys_write+0x10/0x10 [ 1061.379711][ T31] do_syscall_64+0xcd/0x490 [ 1061.384967][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1061.390947][ T31] RIP: 0033:0x7f776b58e929 [ 1061.395832][ T31] RSP: 002b:00007f776c3f3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1061.404620][ T31] RAX: ffffffffffffffda RBX: 00007f776b7b5fa0 RCX: 00007f776b58e929 [ 1061.418568][ T31] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000005 [ 1061.430917][ T31] RBP: 00007f776b610b39 R08: 0000000000000000 R09: 0000000000000000 [ 1061.439655][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1061.448151][ T31] R13: 0000000000000000 R14: 00007f776b7b5fa0 R15: 00007fff641cd0b8 [ 1061.456549][ T31] [ 1061.487400][ T31] INFO: task syz.0.2252:16261 blocked for more than 144 seconds. [ 1061.495606][ T31] Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 [ 1061.504140][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1061.513102][ T31] task:syz.0.2252 state:D stack:28632 pid:16261 tgid:16258 ppid:5852 task_flags:0x400040 flags:0x00004004 [ 1061.525459][ T31] Call Trace: [ 1061.528860][ T31] [ 1061.532139][ T31] __schedule+0x116a/0x5de0 [ 1061.541845][ T31] ? __lock_acquire+0x622/0x1c90 [ 1061.546964][ T31] ? __pfx___schedule+0x10/0x10 [ 1061.560107][ T31] ? find_held_lock+0x2b/0x80 [ 1061.566854][ T31] ? schedule+0x2d7/0x3a0 [ 1061.571503][ T31] schedule+0xe7/0x3a0 [ 1061.578779][ T31] schedule_preempt_disabled+0x13/0x30 [ 1061.584422][ T31] rwsem_down_read_slowpath+0x62f/0xb60 [ 1061.590038][ T31] ? __pfx_rwsem_down_read_slowpath+0x10/0x10 [ 1061.596259][ T31] ? __pfx___might_resched+0x10/0x10 [ 1061.601696][ T31] ? find_held_lock+0x2b/0x80 [ 1061.606473][ T31] down_read+0xef/0x480 [ 1061.610697][ T31] ? mnt_get_write_access+0x54/0x300 [ 1061.616296][ T31] ? __pfx_down_read+0x10/0x10 [ 1061.621133][ T31] ? mnt_get_write_access+0x20c/0x300 [ 1061.629904][ T31] path_openat+0x818/0x2cb0 [ 1061.634865][ T31] ? __pfx_path_openat+0x10/0x10 [ 1061.639895][ T31] ? __lock_acquire+0xb8a/0x1c90 [ 1061.645121][ T31] do_filp_open+0x20b/0x470 [ 1061.649706][ T31] ? __pfx_do_filp_open+0x10/0x10 [ 1061.654935][ T31] ? alloc_fd+0x471/0x7d0 [ 1061.659332][ T31] do_sys_openat2+0x11b/0x1d0 [ 1061.664116][ T31] ? __pfx_do_sys_openat2+0x10/0x10 [ 1061.669377][ T31] ? find_held_lock+0x2b/0x80 [ 1061.674198][ T31] ? handle_mm_fault+0x2ab/0xd10 [ 1061.679879][ T31] __x64_sys_openat+0x174/0x210 [ 1061.685025][ T31] ? __pfx___x64_sys_openat+0x10/0x10 [ 1061.690487][ T31] ? do_user_addr_fault+0x843/0x1370 [ 1061.695993][ T31] do_syscall_64+0xcd/0x490 [ 1061.700589][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1061.706900][ T31] RIP: 0033:0x7f42ff78e929 [ 1061.711465][ T31] RSP: 002b:00007f430053c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1061.720052][ T31] RAX: ffffffffffffffda RBX: 00007f42ff9b6080 RCX: 00007f42ff78e929 [ 1061.728218][ T31] RDX: 0000000000048081 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1061.736409][ T31] RBP: 00007f42ff810b39 R08: 0000000000000000 R09: 0000000000000000 [ 1061.744555][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1061.752671][ T31] R13: 0000000000000001 R14: 00007f42ff9b6080 R15: 00007ffe7ef8d8e8 [ 1061.760726][ T31] [ 1061.764040][ T31] [ 1061.764040][ T31] Showing all locks held in the system: [ 1061.772272][ T31] 1 lock held by pool_workqueue_/3: [ 1061.778289][ T31] 1 lock held by khungtaskd/31: [ 1061.783470][ T31] #0: ffffffff8e5c4d00 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 1061.799739][ T31] 2 locks held by kworker/u8:2/36: [ 1061.805581][ T31] 6 locks held by kworker/u8:7/3448: [ 1061.810920][ T31] #0: ffff88801c6fe148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 1061.821453][ T31] #1: ffffc9000b9b7d10 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 1061.831957][ T31] #2: ffffffff9034e110 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xad/0x890 [ 1061.841393][ T31] #3: ffff888035ca70e8 (&dev->mutex){....}-{4:4}, at: devlink_pernet_pre_exit+0x12c/0x2b0 [ 1061.852951][ T31] #4: ffff8880627c0250 (&devlink->lock_key#3){+.+.}-{4:4}, at: devlink_pernet_pre_exit+0x136/0x2b0 [ 1061.864121][ T31] #5: ffff888047ef4b78 (&sb->s_type->i_mutex_key#3){++++}-{4:4}, at: simple_recursive_removal+0x2c5/0x690 [ 1061.876046][ T31] 1 lock held by klogd/5209: [ 1061.882490][ T31] #0: ffff8880b853a418 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130 [ 1061.892848][ T31] 2 locks held by getty/9594: [ 1061.897579][ T31] #0: ffff88814c8220a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 1061.907664][ T31] #1: ffffc900041e42f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0 [ 1061.917924][ T31] 2 locks held by kworker/u8:5/9980: [ 1061.923334][ T31] 3 locks held by kworker/u8:6/14897: [ 1061.928761][ T31] #0: ffff88801b889148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 1061.940056][ T31] #1: ffffc9000aec7d10 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 1061.950580][ T31] #2: ffffffff90364168 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0x51/0xc0 [ 1061.959872][ T31] 2 locks held by syz.3.2158/15849: [ 1061.965220][ T31] #0: ffffffff90364168 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x230 [ 1061.974376][ T31] #1: ffffffff8e5d02f8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x284/0x3c0 [ 1061.989206][ T31] 5 locks held by syz-executor/16217: [ 1061.994734][ T31] #0: ffff888036bc8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 1062.004033][ T31] #1: ffff88803209cc88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 1062.013989][ T31] #2: ffff8880284c8e18 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 1062.024366][ T31] #3: ffffffff8f8ebb28 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 1062.034840][ T31] #4: ffff888035ca70e8 (&dev->mutex){....}-{4:4}, at: device_del+0xa0/0x9f0 [ 1062.043841][ T31] 3 locks held by syz.1.2250/16243: [ 1062.049078][ T31] #0: ffff8880339d3978 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370 [ 1062.058279][ T31] #1: ffff88801fab4428 (sb_writers#8){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 1062.067436][ T31] #2: ffff8880627c0250 (&devlink->lock_key#3){+.+.}-{4:4}, at: devlink_health_report+0x3ba/0x9c0 [ 1062.078282][ T31] 2 locks held by syz.0.2252/16261: [ 1062.083599][ T31] #0: ffff88801fab4428 (sb_writers#8){.+.+}-{0:0}, at: path_openat+0x1ec8/0x2cb0 [ 1062.095050][ T31] #1: ffff888047ef4b78 (&sb->s_type->i_mutex_key#3){++++}-{4:4}, at: path_openat+0x818/0x2cb0 [ 1062.105648][ T31] 4 locks held by syz-executor/16324: [ 1062.111076][ T31] #0: ffff888036bc8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 1062.120428][ T31] #1: ffff888034d41c88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 1062.130328][ T31] #2: ffff8880284c8e18 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 1062.140502][ T31] #3: ffffffff8f8ebb28 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 1062.150926][ T31] 4 locks held by syz-executor/16344: [ 1062.156405][ T31] #0: ffff888036bc8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 1062.165537][ T31] #1: ffff888081391888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 1062.175445][ T31] #2: ffff8880284c8e18 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 1062.185858][ T31] #3: ffffffff8f8ebb28 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 1062.198263][ T31] 4 locks held by syz-executor/16565: [ 1062.203757][ T31] #0: ffff888036bc8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 1062.212957][ T31] #1: ffff888061b06c88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 1062.223148][ T31] #2: ffff8880284c8e18 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 1062.233387][ T31] #3: ffffffff8f8ebb28 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 1062.244008][ T31] 4 locks held by syz-executor/16578: [ 1062.249643][ T31] #0: ffff888036bc8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 1062.258821][ T31] #1: ffff88808d013888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 1062.268975][ T31] #2: ffff8880284c8e18 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 1062.279189][ T31] #3: ffffffff8f8ebb28 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 1062.291599][ T31] 4 locks held by syz-executor/16589: [ 1062.297158][ T31] #0: ffff888036bc8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 1062.306374][ T31] #1: ffff88809009f888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 1062.316433][ T31] #2: ffff8880284c8e18 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 1062.326732][ T31] #3: ffffffff8f8ebb28 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 1062.337489][ T31] 4 locks held by syz-executor/16600: [ 1062.349341][ T31] #0: ffff888036bc8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 1062.358535][ T31] #1: ffff8880494f1888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 1062.368526][ T31] #2: ffff8880284c8e18 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 1062.378772][ T31] #3: ffffffff8f8ebb28 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 1062.389184][ T31] 4 locks held by syz-executor/16617: [ 1062.396700][ T31] #0: ffff888036bc8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 1062.405960][ T31] #1: ffff888091586088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 1062.415902][ T31] #2: ffff8880284c8e18 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 1062.426244][ T31] #3: ffffffff8f8ebb28 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 1062.436717][ T31] 4 locks held by syz-executor/16627: [ 1062.442312][ T31] #0: ffff888036bc8428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 1062.451604][ T31] #1: ffff888082bb7888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 1062.461602][ T31] #2: ffff8880284c8e18 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 1062.471889][ T31] #3: ffffffff8f8ebb28 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 1062.495540][ T31] [ 1062.497991][ T31] ============================================= [ 1062.497991][ T31] [ 1062.508797][ T31] NMI backtrace for cpu 1 [ 1062.508820][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1062.508862][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1062.508881][ T31] Call Trace: [ 1062.508892][ T31] [ 1062.508905][ T31] dump_stack_lvl+0x116/0x1f0 [ 1062.508960][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 1062.508996][ T31] ? _raw_spin_unlock_irqrestore+0x61/0x80 [ 1062.509042][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1062.509089][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 1062.509134][ T31] watchdog+0xf70/0x12c0 [ 1062.509193][ T31] ? __pfx_watchdog+0x10/0x10 [ 1062.509241][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 1062.509292][ T31] ? __kthread_parkme+0x19e/0x250 [ 1062.509337][ T31] ? __pfx_watchdog+0x10/0x10 [ 1062.509387][ T31] kthread+0x3c2/0x780 [ 1062.509437][ T31] ? __pfx_kthread+0x10/0x10 [ 1062.509489][ T31] ? rcu_is_watching+0x12/0xc0 [ 1062.509525][ T31] ? __pfx_kthread+0x10/0x10 [ 1062.509576][ T31] ret_from_fork+0x5d7/0x6f0 [ 1062.509622][ T31] ? __pfx_kthread+0x10/0x10 [ 1062.509679][ T31] ret_from_fork_asm+0x1a/0x30 [ 1062.509735][ T31] [ 1062.509747][ T31] Sending NMI from CPU 1 to CPUs 0: [ 1062.636405][ C0] NMI backtrace for cpu 0 [ 1062.636427][ C0] CPU: 0 UID: 0 PID: 9980 Comm: kworker/u8:5 Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1062.636462][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1062.636479][ C0] Workqueue: bat_events batadv_nc_worker [ 1062.636518][ C0] RIP: 0010:lock_acquire+0x1aa/0x350 [ 1062.636557][ C0] Code: 48 83 c4 28 e8 87 3b ec 09 b8 ff ff ff ff 65 0f c1 05 52 18 38 12 83 f8 01 0f 85 6a 01 00 00 9c 58 f6 c4 02 0f 85 7f 01 00 00 <48> 83 3c 24 00 0f 84 ad fe ff ff fb e9 a7 fe ff ff 65 8b 05 26 18 [ 1062.636583][ C0] RSP: 0018:ffffc90002f07ab0 EFLAGS: 00000046 [ 1062.636602][ C0] RAX: 0000000000000046 RBX: ffffffff8e5c4d00 RCX: 000000006baf100f [ 1062.636620][ C0] RDX: 0000000000000000 RSI: ffffffff8de06a02 RDI: ffffffff8c1578e0 [ 1062.636637][ C0] RBP: 0000000000000002 R08: 19b9d667b29b3c27 R09: 0000000000000000 [ 1062.636655][ C0] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000 [ 1062.636670][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1062.636686][ C0] FS: 0000000000000000(0000) GS:ffff888124721000(0000) knlGS:0000000000000000 [ 1062.636711][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1062.636728][ C0] CR2: 000055ef0b836048 CR3: 000000000e382000 CR4: 00000000003526f0 [ 1062.636745][ C0] Call Trace: [ 1062.636753][ C0] [ 1062.636765][ C0] ? batadv_nc_worker+0x895/0x1030 [ 1062.636803][ C0] batadv_nc_worker+0x16a/0x1030 [ 1062.636838][ C0] ? batadv_nc_worker+0x159/0x1030 [ 1062.636873][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1062.636912][ C0] ? __pfx_batadv_nc_worker+0x10/0x10 [ 1062.636953][ C0] ? rcu_is_watching+0x12/0xc0 [ 1062.636984][ C0] process_one_work+0x9cf/0x1b70 [ 1062.637031][ C0] ? __pfx_batadv_nc_worker+0x10/0x10 [ 1062.637066][ C0] ? __pfx_process_one_work+0x10/0x10 [ 1062.637113][ C0] ? assign_work+0x1a0/0x250 [ 1062.637152][ C0] worker_thread+0x6c8/0xf10 [ 1062.637200][ C0] ? __kthread_parkme+0x19e/0x250 [ 1062.637233][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1062.637275][ C0] kthread+0x3c2/0x780 [ 1062.637313][ C0] ? __pfx_kthread+0x10/0x10 [ 1062.637353][ C0] ? rcu_is_watching+0x12/0xc0 [ 1062.637381][ C0] ? __pfx_kthread+0x10/0x10 [ 1062.637426][ C0] ret_from_fork+0x5d7/0x6f0 [ 1062.637463][ C0] ? __pfx_kthread+0x10/0x10 [ 1062.637502][ C0] ret_from_fork_asm+0x1a/0x30 [ 1062.637540][ C0] [ 1062.638455][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 1062.879997][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc5-syzkaller-00038-g733923397fd9 #0 PREEMPT(full) [ 1062.891853][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1062.902135][ T31] Call Trace: [ 1062.905448][ T31] [ 1062.908408][ T31] dump_stack_lvl+0x3d/0x1f0 [ 1062.913065][ T31] panic+0x71c/0x800 [ 1062.917011][ T31] ? __pfx_panic+0x10/0x10 [ 1062.921478][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 1062.926947][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 1062.933061][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 1062.938478][ T31] ? watchdog+0xdda/0x12c0 [ 1062.942939][ T31] ? watchdog+0xdcd/0x12c0 [ 1062.947414][ T31] watchdog+0xdeb/0x12c0 [ 1062.951716][ T31] ? __pfx_watchdog+0x10/0x10 [ 1062.956439][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 1062.961695][ T31] ? __kthread_parkme+0x19e/0x250 [ 1062.966766][ T31] ? __pfx_watchdog+0x10/0x10 [ 1062.971498][ T31] kthread+0x3c2/0x780 [ 1062.975658][ T31] ? __pfx_kthread+0x10/0x10 [ 1062.980305][ T31] ? rcu_is_watching+0x12/0xc0 [ 1062.985106][ T31] ? __pfx_kthread+0x10/0x10 [ 1062.989746][ T31] ret_from_fork+0x5d7/0x6f0 [ 1062.994400][ T31] ? __pfx_kthread+0x10/0x10 [ 1062.999042][ T31] ret_from_fork_asm+0x1a/0x30 [ 1063.003861][ T31] [ 1063.007267][ T31] Kernel Offset: disabled [ 1063.011620][ T31] Rebooting in 86400 seconds..