last executing test programs: 8.807525237s ago: executing program 2 (id=234): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) mbind$auto(0x0, 0x200, 0x4, 0x0, 0x6, 0x2) madvise$auto(0x110c230000, 0x1, 0x9) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0) futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4) read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000180)=""/178, 0xb2) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 7.00630949s ago: executing program 0 (id=237): close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x2584c0, 0x0) r0 = socket(0x2, 0x801, 0x10e) r1 = socket$nl_generic(0x10, 0x3, 0x10) timerfd_create$auto(0x9, 0x0) select$auto(0x1ea, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0x8, 0xa, 0x3, 0xfffffffff210bf54, 0x2000000000000002, 0x9, 0x8, 0x400000000ff, 0xa, 0x4, 0xaab, 0x3ff, 0x4]}, 0x0, 0x0) mmap$auto(0x3, 0x400008, 0xdc, 0x9a72, r0, 0x8000) close_range$auto(0x2, 0x8, 0x0) semctl$auto_SEM_INFO(0x8441, 0xa, 0x13, 0xb700) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/pci/drivers/e1000e/new_id\x00', 0x8000, 0x0) prctl$auto(0x41, 0x1, 0x0, 0x9, 0x4) mmap$auto(0x0, 0x20009, 0xb, 0xeb1, r1, 0x8000) r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x100e42, 0x0) write$auto_sg_fops_sg(r2, &(0x7f00000001c0)="bf5b1a8c24000000dbcbc7a996eea7f3804ca6c7591afff6578d2f5f520f687f316ba7327b581cd8d58309037c0ae2c7", 0x30) ioctl$auto_SG_GET_REQUEST_TABLE(r2, 0x2286, &(0x7f0000000040)) r3 = socket(0x10, 0x80803, 0x300) sendfile$auto(0x1, r3, 0x0, 0x8fb5) dup2$auto(0x0, 0x3) r4 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r4, 0x5, 0x4, 0x0, 0x8006) fcntl$auto(0x3, 0x4, 0xa553) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x7fff) memfd_secret$auto(0x8) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) ftruncate$auto(0x3, 0x700) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x100106) getsockopt$auto(0x100000006, 0x0, 0x18, 0xfffffffffffffffe, 0x0) close_range$auto(0x2, 0x8, 0x0) 6.7456287s ago: executing program 0 (id=238): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) epoll_create$auto(0x3e) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400008, 0x2, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4, 0x14000000000df, 0x40eb2, r0, 0x300000000000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x20800, 0x0) fcntl$auto(0x3, 0x4, 0xa553) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000040)) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) getpeername$auto(0x3, 0x0, 0x0) unshare$auto(0x40000080) r2 = open(&(0x7f0000000800)='./file0\x00', 0xa2240, 0x154) fcntl$auto(r2, 0x400, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x103a42, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) pread64$auto(0xffffffffffffffff, 0x0, 0x59, 0x7) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f682, 0x0) ioctl$auto_BLKTRACESETUP(r3, 0xc0481273, &(0x7f00000000c0)={"2252f65ca1b92f72a92538725b0694521629e8c3e6ba91c62e2e9d42cf4aef15", 0x4, 0x3, 0x0, 0x6, 0xff}) listen$auto(0xffffffffffffffff, 0x14) mmap$auto(0x8000000000000001, 0x2020008, 0x8, 0x16, 0xfffffffffffffffa, 0x8004) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x8000, 0x0) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) r6 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x980800, 0x0) read$auto(r6, 0x0, 0x3a8) ioctl$auto(r5, 0xc0045520, r4) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/ext4/sda1/trigger_fs_error\x00', 0xa801, 0x0) 5.82404809s ago: executing program 2 (id=239): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyua\x00', 0x20a04, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000031c0)='/dev/ttyua\x00', 0x109000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) poll$auto(&(0x7f0000000080)={0x3, 0x1, 0xa}, 0x5, 0x106) close_range$auto(0x2, 0x8, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x72d1c3, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x8, 0x7fff) 5.221076232s ago: executing program 2 (id=241): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f00000000c0), r0) sendmsg$auto_SMC_NETLINK_DUMP_UEID(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r1, 0x315, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20008805}, 0x40c0) r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x28900, 0x0) ioctl$auto(r2, 0x64d0, 0x40) socket(0x11, 0xa, 0x300) pwrite64$auto(0xc8, &(0x7f0000000340)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdds\x1cJ\x99\x00:+\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\xadCl\x9e\xeb\xcd\vp\x99\x00\xc8\x06\xa5\xdc3\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0A\x94\xa3\xaef\x87\xd8\x95I\xfd\xa8\t\xac\x87\xb7\x1d\xd5\x83\xdcyu]\xde\xbe\xbf$<.}\x8b`\x04\xfc\xa2\xab\xb5]\x80\x00\xb9D\xc5\xbc\xf2a\xd66\xa5\xd3\xc1r\x96\x1e\x8db\x05=`\x01\x11\x04Tz\x87A$\x115\x95PUf\xa7\xfe\x19\x00\x82go}@W\xd5\xaej\x01\xbf>5n\x17S\xc0\x8a\xaf%O\xd1W\xa3ua+sUJ\xea\xf9\xb7p-\x128\x9d\xbaM_\xff\x1c\xc3sG\x04\xf2\xd3\xf3{;\xd4\xd7\x1c\x1dZ\xe9\xe9\xc9\x9cu5\xe9\xa2\xb3N\xd2\xc1\xc8\xa5\xadt\xd5BKD\x86\xeb%\a*\x06\xbb\x1e\xfb\x11U\f&\xcbP\xf1\xcf\xccb\xe8Wb\xc5ae\xe3\xf9l\xa9vK\xed\x8cL\xfb%g\x83;\xe1\xe2w\xd6\xaa6\x16\x8fx\x1a\xd7\xc8\xf4[\xbc\b\xe1Z\x92\x14Q\xdef\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800) syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000040), 0xffffffffffffffff) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) close_range$auto(0x2, 0x8, 0x0) syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f00000001c0), r0) mmap$auto(0x0, 0x400008, 0xe2, 0x9b7e, 0x2, 0x8000) r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/mtd\x00', 0xc40, 0x0) read$auto_proc_iter_file_ops_compat_inode(r1, 0x0, 0x4d) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000) read$auto_cgwb_debug_stats_fops_(0xffffffffffffffff, 0x0, 0x0) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r2, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) r4 = socket(0x10, 0x2, 0x0) sendmsg$auto_MACSEC_CMD_DEL_RXSC(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16, @ANYBLOB="010527bd7000fbdbdf2502"], 0x34}, 0x1, 0x0, 0x0, 0x4068811}, 0x80) ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0x11b, 0xf}, 0xc, 0x0, 0x0, 0x8) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="1e0027"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 3.552137147s ago: executing program 1 (id=246): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x18, &(0x7f0000000000), 0x1) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) r0 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000080), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_DP_CMD_DEL(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x38, r0, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0xc}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x3}, @OVS_DP_ATTR_NAME={0x11, 0x1, 'ovs_datapath\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x20040011}, 0x20000000) (fail_nth: 10) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) prctl$auto(0x3e, 0x1, r2, 0xfffffffffffffffe, 0x0) openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0x7, 0x8000) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) 3.228129893s ago: executing program 2 (id=247): syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff) mmap$auto(0x0, 0x7, 0x3, 0x98, 0xfffffffffffffffa, 0x8000) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x0) r0 = io_uring_setup$auto(0x6, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram2\x00', 0x14f642, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000180), 0x80800, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'ip6tnl0\x00'}) mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/nfsd.fh/flush\x00', 0xc8201, 0x0) write$auto(r0, 0x0, 0x1006) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) write$auto(0x3, 0x0, 0xfffffdef) write$auto(0x3, 0x0, 0xfffffdef) socket(0x27, 0x2, 0xa) r1 = openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f00000001c0), 0x10000, 0x0) mmap$auto(0x1, 0x1884bc67, 0x3, 0xeb1, r1, 0x8004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x3, 0x800000) sysfs$auto(0xffff, 0x9, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0x46542, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(0x0, r2) socket(0x1e, 0x1, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0x40e, 0x0, 0x0, &(0x7f0000000040)={[0x1001ff, 0x6085, 0xd, 0xa6f3, 0x948b, 0x7, 0xb82, 0x8001, 0x3, 0x65, 0x2, 0x7, 0x65d8cbc5, 0xc, 0x8, 0x2]}, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x5, 0xd, 0x1, 0x948b, 0x3, 0x7fffffffffffffff, 0x3, 0x4, 0x8062, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2]}, 0x0) 2.580630687s ago: executing program 3 (id=248): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/tunl0/queues/rx-0/rps_flow_cnt\x00', 0x2462, 0x0) write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) 2.455408804s ago: executing program 0 (id=249): close_range$auto(0x2, 0x8, 0x0) r0 = socketcall$auto_SYS_GETSOCKOPT(0xf, &(0x7f0000000000)=0x14ac) write$auto_nsim_dev_take_snapshot_fops_dev(r0, &(0x7f0000000040)="20a654215806cb", 0x7) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x1, 0x0) ioctl$auto(0x3, 0x5411, 0x38) 2.383928293s ago: executing program 1 (id=250): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r0, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/ip_vs_conn\x00', 0xf00, 0x0) close_range$auto(r1, r1, 0xffffffff) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x7) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) setsockopt$auto(0x400000000000003, 0x29, 0x37, 0xffffffffffffffff, 0x0) socket(0xa, 0x3, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$auto_FITRIM4(0xffffffffffffffff, 0xc0185879, &(0x7f0000000100)={0x5, 0x5, 0x10}) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) ioctl$auto_KVM_GET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)={0x2, 0x0, [{0xce, 0xe3, 0xffffffffffffffff}]}) ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000040)={0x9, 0x0, [{0x1000491, 0x400, 0xb}]}) openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000180), 0x80080, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r4, &(0x7f0000000440)='Y\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c4) r5 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="01002bbd7000fcdbdf2504"], 0x1c}}, 0x4044820) bpf$auto(0x22, &(0x7f0000000140)=@bpf_attr_11={0xffff, 0x6, 0x6, 0x800, 0x4000ffff, 0x3c09, 0xffffffff}, 0x81) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0) 2.309293649s ago: executing program 3 (id=251): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/tunl0/queues/rx-0/rps_flow_cnt\x00', 0x2462, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0xb1, 0x40000000000a5, 0x3) mmap$auto(0x0, 0x40000c, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x17, 0x2, 0x8000) r1 = socket(0x2, 0x2, 0x1) connect$auto(r1, &(0x7f00000000c0), 0x55) setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) io_uring_setup$auto(0x6, 0x0) write$auto(0x3, 0x0, 0xfdef) setsockopt$auto(0x3, 0x1, 0x4d, 0x0, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3000000) mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, 0x0, 0x40840) mmap$auto(0x2, 0x8, 0xdf, 0x9b75, r0, 0x9) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x840, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x4, 0x200000020000fb, 0xd8, 0xfffffffffffff914, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x48041, 0x0) epoll_create$auto(0x4) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000003680)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000004880)={&(0x7f0000000100)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="000000005b00000031842bae3d311b677741f857d707a84e3e2f4d0686a6e688c24381423a4639e16b7fc23e36725231a286bedd4ff3fb7cd9f1206f427268aaa46cde6bd186274c4e3896f05d01ed6883585656d56b02698eb60ef89ec09645e9ffb63b445ece1de2f4d341b9eb3a8f015b3aa345cc3d06695f4a96a9b8db7d38e459a109cd2a740f45a198c73534d01aac09b58e7514dfea9c0a7a"], 0x10}, 0x1, 0x0, 0x0, 0x40890}, 0x890) 1.488566326s ago: executing program 0 (id=252): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0) r1 = socketcall$auto(0x8000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0) close_range$auto(0x2, 0x8, 0x0) getsockopt$auto(0xffffffffffffffff, 0x84, 0x6c, 0x0, &(0x7f0000000280)=0x1000c0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) 1.223981321s ago: executing program 3 (id=253): socket(0x10, 0x2, 0x0) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00', @ANYRES16=0x0, @ANYBLOB="000326"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='\"'], 0x1ac}}, 0x40000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mseal$auto(0x0, 0x7dda, 0x0) madvise$auto(0x0, 0x454, 0x9) ioctl$auto_TIOCVHANGUP2(0xffffffffffffffff, 0x5437, 0x0) read$auto(0x3, 0x0, 0x7fffffff) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/can/reset_stats\x00', 0x100, 0x0) pread64$auto(r0, 0x0, 0x40000000f42c, 0x800005) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 983.128575ms ago: executing program 1 (id=254): r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, r0, 0x8000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC1\x00', 0x101082, 0x0) mmap$auto(0x0, 0x2, 0x8000002, 0x10, r1, 0x300000000000) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0) ioctl$auto(r2, 0xc0045543, r3) capset$auto(&(0x7f0000000100)={0x20080522}, 0x0) r4 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/stack\x00', 0x181100, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket(0x26, 0x80805, 0x0) socket(0x10, 0x2, 0xc) socket(0x28, 0x1, 0x0) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0) r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)) fcntl$auto(r5, 0x402, 0x8000007fffffdf) syz_open_procfs$namespace(0x0, &(0x7f0000000080)) close_range$auto(0x2, 0x8, 0x0) read$auto_proc_single_file_operations_base(r4, &(0x7f0000000080)=""/112, 0x70) 714.104071ms ago: executing program 1 (id=255): r0 = openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/trigger\x00', 0x1, 0x0) write$auto_event_trigger_fops_trace(r0, &(0x7f0000000240)='!', 0x1) 649.020249ms ago: executing program 0 (id=256): close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x2900, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioperm$auto(0x90d5, 0xc, 0x2) mq_unlink$auto(0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/wakeup/wakeup7/wakeup_count\x00', 0xc0000, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r2, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_SET_NOTIFY(r2, 0x7cb, 0x100000000000000) ioctl$auto_IOCTL_VMCI_SET_NOTIFY(r2, 0x7cb, 0x0) r3 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) prctl$auto(0x21, 0xffff, 0x0, 0x0, 0x0) openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/dynamic_events\x00', 0x44801, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.0/urbs\x00', 0x40200, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000180)=""/76, 0x4c) r5 = ioctl$auto_TUNSETCARRIER(r3, 0x400454e2, &(0x7f0000000080)=0x8) close_range$auto(r5, r3, 0x9) mmap$auto(0x4, 0x2, 0x3, 0xeb1, r3, 0xa2a) unshare$auto(0x40000080) socket(0x2, 0x5, 0x0) setsockopt$auto(0x3, 0x84, 0x16, 0xfffffffffffffffd, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/neigh/vxcan0/base_reachable_time\x00', 0x40, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0x4008ae48, 0x38) 590.422064ms ago: executing program 1 (id=257): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) keyctl$auto(0x14, 0x72510000000, 0x69c6, 0x0, 0x0) ioctl$auto_VHOST_SET_LOG_FD2(0xffffffffffffffff, 0x4004af07, &(0x7f0000000000)=0xffffffffffffffff) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) r1 = socket(0xa, 0x801, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) socket$nl_generic(0x10, 0x3, 0x10) connect$auto(0x3, 0x0, 0x54) socket(0x10, 0x2, 0x0) memfd_secret$auto(0x0) getsockopt$auto(r1, 0x1, 0x6a, 0x0, &(0x7f0000000280)=0x1000c0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x301001, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) close_range$auto(r1, r0, 0x7) ioctl$auto_KVM_CREATE_VM(r2, 0x4048aecb, 0x0) r4 = prctl$auto_SIGCONT(0x8, 0x12, 0xffffffffffffffff, 0x3, 0x318b) mount_setattr$auto(r4, 0x0, 0x0, &(0x7f0000000040)={0x46, 0x3, 0x0, @inferred=r0}, 0xfffffffffffffffb) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 421.522972ms ago: executing program 2 (id=258): socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x2, 0xaa06, 0xdf, 0xeb1, 0xffffffffffffffff, 0x2) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0xffffffffffffffff, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_dma_heap_fops_dma_heap(0xffffffffffffffff, 0xffffffffffdffe00, &(0x7f0000000140)=';') openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000040), 0x18000, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x42c883, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) prctl$auto(0x1000000003b, 0x4, 0x0, 0x9, 0x7) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_getevents$auto(0x1, 0x1ff, 0x9, &(0x7f0000000080)={0xffffffff, 0xc, 0xffffffffffffffff, 0x9}, &(0x7f0000000180)={0x6}) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/bond0/bonding/slaves\x00', 0x80002, 0x0) preadv$auto(r1, &(0x7f00000004c0)={0x0, 0x8000000}, 0x3, 0x10000, 0x10) socket(0x28, 0xb, 0x0) getsockopt$auto(0xffffffffffffffff, 0x84, 0x1, 0x0, &(0x7f0000000000)=0x98) setsockopt$auto_SO_SELECT_ERR_QUEUE(0xffffffffffffffff, 0x9, 0x2d, &(0x7f00000001c0)='\xf0&}\\:-:b\x00', 0x3) r2 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48101, 0x0) write$auto(r2, 0x0, 0xc6) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r3, &(0x7f0000000040)='nbd\x00', 0x4) 249.91217ms ago: executing program 3 (id=259): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/tunl0/queues/rx-0/rps_flow_cnt\x00', 0x2462, 0x0) write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (fail_nth: 3) 0s ago: executing program 0 (id=260): mmap$auto(0x0, 0x4, 0x10004000000000df, 0x40eb1, 0x401, 0x300000000000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_NEW(r0, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000000080)={0x20, r1, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_UFID_FLAGS={0x8, 0xa, 0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x40) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x141401, 0x0) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) clock_adjtime$auto(0xfffffffffffffffb, 0x0) shmctl$auto_SHM_INFO(0xffff0984, 0xe, &(0x7f0000000200)={{0x100, 0x0, 0x0, 0x1, 0x39293da9, 0x1, 0x8000}, 0x7, 0x80000001, 0xd34, 0xffffffffffffff0b, @raw=0x3, @raw=0x7, 0x3, 0x0, &(0x7f0000000040)="a1aeaba8a01ee24338662038c3535a10af8e60f2d3bf27c073d6aa95f501b421ec44495b7a80c5461757d28fc33a054de82601189b6614a2991c5c654003826731eed84e19be49663c2a5065cbeb6f9f869adad066284f6678f23ff7d54127edc883c3b277e2066a4c1f267f9c9394c53e42c4eaeb1093606306611207ae8e50fcd51db8ae3554bdbbb0386028a975", &(0x7f0000000100)="d35cdb7acaea11aa48099ad6dd7872106f4eb9e1ec93cc32ff2df2275289162cbcaf8f859edbfca5b7f3eb0111293e3d540822851860a3a533948d6ff66380f878cef8500415b2ef75aaec6ccae13050de526004f41e154fa597ba599b4d8f3458b94e86c5043433b2a17b8234fe88372eed868f883db32a1fca9d5e16995c9cf1860ef2a05859a5aca61d62d59e9ed2805d9c6d72c9202bf70514e14e8d27deb1d9a5b406265d815ac7bf4d26de643ffc3703f198ff37e9c371c3e29a4e16c808d43d38d83f1683eaaa99b9f7610b7ed0e3dccff24a2dcda66b5e83dcd495977269dce1c8a47cab851afb9d"}) setresgid$auto(r3, 0xee01, 0xffffffffffffffff) r4 = getegid() setregid$auto(r4, r4) sysfs$auto(0x1000, 0x210, 0x7f) prctl$auto_PR_GET_CHILD_SUBREAPER(0x25, 0x8, 0xfffffffffffffffa, 0x9, 0xfffffffffffffbff) r5 = waitid$auto_P_ALL(0x0, 0x1, &(0x7f0000000300)={@siginfo_0_0={0x400, 0xfde9, 0x1f70, @_rt={0xffffffffffffffff, r2, @sival_ptr=&(0x7f0000000280)="0d6ff5207096e5c3c4f96b06189e00dac2018a07d336bb9154471d36a89a748998d295a552c7910ca458a675d4ab20b2aab2e3ca279f969cf7576b370d1b238dd1ec5bd5"}}}, 0x7, &(0x7f0000000380)={{0x0, 0x4}, {0x8, 0x9}, 0x6f, 0x4, 0x100000001, 0x2, 0x2, 0xc, 0x530, 0x3, 0x1, 0x7, 0x6, 0x7, 0x62, 0xf26}) ioctl$auto_LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, r5) prctl$auto_PR_GET_CHILD_SUBREAPER(0x25, 0xfdd5, 0xd, 0x6, 0x9) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.184' (ED25519) to the list of known hosts. [ 91.647007][ T5818] cgroup: Unknown subsys name 'net' [ 91.802415][ T5818] cgroup: Unknown subsys name 'cpuset' [ 91.811584][ T5818] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 94.005656][ T5818] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 97.064034][ T5833] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 97.070277][ T5836] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 97.080080][ T5836] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 97.089944][ T5836] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 97.098291][ T5836] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 97.105806][ T5836] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 97.114069][ T5836] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 97.121831][ T5841] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 97.130353][ T5841] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 97.131209][ T5838] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 97.139947][ T5841] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 97.150941][ T5838] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 97.152585][ T5841] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 97.169361][ T5841] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 97.177514][ T5841] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 97.185258][ T5838] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 97.195142][ T5838] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 97.203867][ T5838] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 97.208669][ T5844] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 97.219122][ T5844] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 97.229348][ T978] cfg80211: failed to load regulatory.db [ 97.813369][ T5830] chnl_net:caif_netlink_parms(): no params data found [ 97.894739][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 97.986762][ T5831] chnl_net:caif_netlink_parms(): no params data found [ 98.046431][ T5828] chnl_net:caif_netlink_parms(): no params data found [ 98.110714][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.118918][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.126367][ T5830] bridge_slave_0: entered allmulticast mode [ 98.133936][ T5830] bridge_slave_0: entered promiscuous mode [ 98.143013][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.150388][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.157558][ T5830] bridge_slave_1: entered allmulticast mode [ 98.165939][ T5830] bridge_slave_1: entered promiscuous mode [ 98.261408][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 98.274827][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 98.372521][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.380154][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.387310][ T5829] bridge_slave_0: entered allmulticast mode [ 98.396121][ T5829] bridge_slave_0: entered promiscuous mode [ 98.427482][ T5830] team0: Port device team_slave_0 added [ 98.437496][ T5830] team0: Port device team_slave_1 added [ 98.443740][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.451878][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.459717][ T5831] bridge_slave_0: entered allmulticast mode [ 98.466953][ T5831] bridge_slave_0: entered promiscuous mode [ 98.475140][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.482377][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.489776][ T5829] bridge_slave_1: entered allmulticast mode [ 98.496921][ T5829] bridge_slave_1: entered promiscuous mode [ 98.546154][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.553881][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.561658][ T5831] bridge_slave_1: entered allmulticast mode [ 98.569059][ T5831] bridge_slave_1: entered promiscuous mode [ 98.601413][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.608907][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.616135][ T5828] bridge_slave_0: entered allmulticast mode [ 98.623910][ T5828] bridge_slave_0: entered promiscuous mode [ 98.646421][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 98.653772][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.680247][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 98.707807][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 98.717518][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.725235][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.732618][ T5828] bridge_slave_1: entered allmulticast mode [ 98.740780][ T5828] bridge_slave_1: entered promiscuous mode [ 98.752326][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 98.759531][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.785884][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 98.799763][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 98.812475][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 98.824176][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 98.924819][ T5829] team0: Port device team_slave_0 added [ 98.934619][ T5829] team0: Port device team_slave_1 added [ 98.943873][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 98.968122][ T5831] team0: Port device team_slave_0 added [ 98.990977][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 99.015899][ T5831] team0: Port device team_slave_1 added [ 99.081892][ T5830] hsr_slave_0: entered promiscuous mode [ 99.088774][ T5830] hsr_slave_1: entered promiscuous mode [ 99.113238][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 99.120356][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 99.147153][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 99.160739][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 99.167735][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 99.193901][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 99.222621][ T5828] team0: Port device team_slave_0 added [ 99.229422][ T5844] Bluetooth: hci2: command tx timeout [ 99.252396][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 99.259909][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 99.286542][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 99.298575][ T51] Bluetooth: hci0: command tx timeout [ 99.298916][ T5836] Bluetooth: hci1: command tx timeout [ 99.304269][ T5844] Bluetooth: hci3: command tx timeout [ 99.332768][ T5828] team0: Port device team_slave_1 added [ 99.363388][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 99.372293][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 99.399879][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 99.493530][ T5829] hsr_slave_0: entered promiscuous mode [ 99.500634][ T5829] hsr_slave_1: entered promiscuous mode [ 99.506725][ T5829] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 99.514645][ T5829] Cannot create hsr debugfs directory [ 99.523016][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 99.530238][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 99.556617][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 99.611622][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 99.619171][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 99.646252][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 99.695605][ T5831] hsr_slave_0: entered promiscuous mode [ 99.702550][ T5831] hsr_slave_1: entered promiscuous mode [ 99.708947][ T5831] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 99.716555][ T5831] Cannot create hsr debugfs directory [ 99.857910][ T5828] hsr_slave_0: entered promiscuous mode [ 99.864382][ T5828] hsr_slave_1: entered promiscuous mode [ 99.871787][ T5828] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 99.879568][ T5828] Cannot create hsr debugfs directory [ 100.214628][ T5830] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 100.238261][ T5830] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 100.250008][ T5830] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 100.280871][ T5830] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 100.343845][ T5829] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 100.358181][ T5829] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 100.382426][ T5829] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 100.396087][ T5829] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 100.479679][ T5831] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 100.491726][ T5831] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 100.518283][ T5831] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 100.530338][ T5831] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 100.630720][ T5828] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 100.644370][ T5828] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 100.668107][ T5828] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 100.684285][ T5828] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 100.782000][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 100.835578][ T5830] 8021q: adding VLAN 0 to HW filter on device team0 [ 100.865102][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 100.887853][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.895204][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 100.935497][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.942797][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 100.963151][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0 [ 100.974797][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 101.026977][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.034236][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.074082][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.081324][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.135111][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 101.156441][ T5831] 8021q: adding VLAN 0 to HW filter on device team0 [ 101.180397][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.187514][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.213826][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.221071][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.283917][ T5828] 8021q: adding VLAN 0 to HW filter on device team0 [ 101.299844][ T5844] Bluetooth: hci2: command tx timeout [ 101.310752][ T3478] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.317925][ T3478] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.351234][ T3478] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.358531][ T3478] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.378953][ T5844] Bluetooth: hci1: command tx timeout [ 101.378970][ T5836] Bluetooth: hci3: command tx timeout [ 101.379012][ T5836] Bluetooth: hci0: command tx timeout [ 101.869245][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 101.882381][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 102.057588][ T5829] veth0_vlan: entered promiscuous mode [ 102.088327][ T5829] veth1_vlan: entered promiscuous mode [ 102.127644][ T5830] veth0_vlan: entered promiscuous mode [ 102.161002][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 102.185106][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 102.206773][ T5830] veth1_vlan: entered promiscuous mode [ 102.267605][ T5829] veth0_macvtap: entered promiscuous mode [ 102.293087][ T5829] veth1_macvtap: entered promiscuous mode [ 102.320653][ T5831] veth0_vlan: entered promiscuous mode [ 102.338310][ T5830] veth0_macvtap: entered promiscuous mode [ 102.355527][ T5831] veth1_vlan: entered promiscuous mode [ 102.372277][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 102.390239][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 102.416869][ T5830] veth1_macvtap: entered promiscuous mode [ 102.426926][ T5829] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.436233][ T5829] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.446517][ T5829] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.455587][ T5829] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.477851][ T5828] veth0_vlan: entered promiscuous mode [ 102.502804][ T5828] veth1_vlan: entered promiscuous mode [ 102.551330][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 102.573243][ T5831] veth0_macvtap: entered promiscuous mode [ 102.600568][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 102.626711][ T5831] veth1_macvtap: entered promiscuous mode [ 102.654702][ T5830] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.665757][ T5830] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.677274][ T5830] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.686253][ T5830] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.711299][ T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.725171][ T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.780596][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 102.804083][ T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.814937][ T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.833971][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 102.851911][ T5828] veth0_macvtap: entered promiscuous mode [ 102.865208][ T5831] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.877330][ T5831] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.888209][ T5831] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.897612][ T5831] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.928128][ T5828] veth1_macvtap: entered promiscuous mode [ 102.952981][ T5829] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 102.974754][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 103.021250][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 103.093057][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.112058][ T5828] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.116849][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.134577][ T5828] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.145857][ T5828] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.158297][ T5828] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.304017][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.333829][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.338429][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.361827][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.383539][ T5836] Bluetooth: hci2: command tx timeout [ 103.444507][ T1148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.461002][ T5836] Bluetooth: hci0: command tx timeout [ 103.467414][ T1148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.476285][ T5836] Bluetooth: hci1: command tx timeout [ 103.476295][ T51] Bluetooth: hci3: command tx timeout [ 103.600050][ T1148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.607940][ T1148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 103.635188][ T3478] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 103.671970][ T3478] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.328749][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 105.339996][ T5949] FAULT_INJECTION: forcing a failure. [ 105.339996][ T5949] name failslab, interval 1, probability 0, space 0, times 1 [ 105.450623][ T5949] CPU: 1 UID: 0 PID: 5949 Comm: syz.2.10 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 105.450668][ T5949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 105.450686][ T5949] Call Trace: [ 105.450696][ T5949] [ 105.450708][ T5949] dump_stack_lvl+0x16c/0x1f0 [ 105.450770][ T5949] should_fail_ex+0x512/0x640 [ 105.450820][ T5949] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 105.450880][ T5949] should_failslab+0xc2/0x120 [ 105.450912][ T5949] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 105.450968][ T5949] ? sk_prot_alloc+0x60/0x2a0 [ 105.451012][ T5949] sk_prot_alloc+0x60/0x2a0 [ 105.451051][ T5949] sk_alloc+0x36/0xc20 [ 105.451104][ T5949] tipc_sk_create+0xcf/0x21a0 [ 105.451168][ T5949] ? find_held_lock+0x2b/0x80 [ 105.451202][ T5949] ? __sock_create+0x2f2/0x8d0 [ 105.451249][ T5949] __sock_create+0x338/0x8d0 [ 105.451299][ T5949] __sys_socketpair+0x25c/0x5a0 [ 105.451346][ T5949] ? __pfx___sys_socketpair+0x10/0x10 [ 105.451387][ T5949] ? __pfx_blkcg_maybe_throttle_current+0x10/0x10 [ 105.451432][ T5949] ? arch_syscall_is_vdso_sigreturn+0xb6/0x230 [ 105.451475][ T5949] ? syscall_user_dispatch+0x78/0x140 [ 105.451533][ T5949] __x64_sys_socketpair+0x96/0x100 [ 105.451578][ T5949] do_syscall_64+0xcd/0x490 [ 105.451635][ T5949] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 105.451668][ T5949] RIP: 0033:0x7feeb4d8e929 [ 105.451692][ T5949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 105.451719][ T5949] RSP: 002b:00007feeb5b7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035 [ 105.451746][ T5949] RAX: ffffffffffffffda RBX: 00007feeb4fb5fa0 RCX: 00007feeb4d8e929 [ 105.451766][ T5949] RDX: 8000000000000000 RSI: 0000000000000004 RDI: 000000000000001e [ 105.451784][ T5949] RBP: 00007feeb4e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 105.451800][ T5949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 105.451816][ T5949] R13: 0000000000000000 R14: 00007feeb4fb5fa0 R15: 00007ffcb82dd698 [ 105.451848][ T5949] [ 105.711317][ T5836] Bluetooth: hci3: command tx timeout [ 105.716830][ T5836] Bluetooth: hci2: command tx timeout [ 105.722334][ T5836] Bluetooth: hci1: command tx timeout [ 105.727782][ T5836] Bluetooth: hci0: command tx timeout [ 105.759654][ T5836] Bluetooth: hci3: unexpected event 0x02 length: 726 > 260 [ 106.041136][ T5959] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 106.074533][ T5960] Zero length message leads to an empty skb [ 106.347749][ T5962] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 106.941690][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 107.008567][ T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!! [ 107.478973][ T5977] vhci_hcd: invalid port number 16 [ 107.486165][ T5977] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 107.638948][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 107.738691][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 107.780528][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 108.189518][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 108.211747][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 109.059468][ T6000] vhci_hcd: invalid port number 16 [ 109.067697][ T6000] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 109.123796][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 109.396593][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 109.871753][ T6013] netlink: zone id is out of range [ 109.879887][ T6013] netlink: zone id is out of range [ 111.472381][ T5836] Bluetooth: hci3: unexpected event 0x35 length: 13 > 6 [ 111.695967][ T6034] vhci_hcd: invalid port number 16 [ 111.714025][ T6034] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 112.895226][ T6045] vhci_hcd: invalid port number 16 [ 112.967520][ T6045] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 113.884085][ T6056] vhci_hcd: invalid port number 16 [ 113.889429][ T6056] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 115.104127][ T6069] vhci_hcd: invalid port number 16 [ 115.109457][ T6069] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 116.662183][ T6080] vhci_hcd: invalid port number 16 [ 116.712807][ T6080] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 117.951141][ T6092] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 118.202986][ T5185] ERROR: Out of memory at tomoyo_memory_ok. [ 118.660853][ T6098] netlink: 8 bytes leftover after parsing attributes in process `syz.2.38'. [ 121.688063][ T6123] process 'syz.0.44' launched '/dev/fd/4' with NULL argv: empty string added [ 121.803062][ T6123] ERROR: Out of memory at tomoyo_memory_ok. [ 121.809238][ T6123] ERROR: Domain ' /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /sbin/start-stop-daemon /usr/sbin/sshd /usr/libexec/sshd-session /bin/sh /root/syz-executor /root/syz-executor /newroot/7/file0' not defined. [ 121.849601][ T6123] netlink: 8 bytes leftover after parsing attributes in process `syz.0.44'. [ 122.748275][ T6133] vhci_hcd: invalid port number 16 [ 122.786100][ T6133] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 126.303917][ T6159] KVM: debugfs: duplicate directory 6159-3 [ 126.865879][ T6164] ERROR: Out of memory at tomoyo_memory_ok. [ 127.680265][ T6167] [ 131.277655][ T6205] vhci_hcd: invalid port number 16 [ 131.358818][ T6205] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 131.670634][ T6212] vhci_hcd: invalid port number 16 [ 131.718538][ T6212] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 131.832687][ T6206] ERROR: Out of memory at tomoyo_memory_ok. [ 134.214589][ T6232] ERROR: Out of memory at tomoyo_memory_ok. [ 134.379129][ T6232] netlink: 8 bytes leftover after parsing attributes in process `syz.3.63'. [ 134.981806][ T6237] vhci_hcd: invalid port number 16 [ 134.986964][ T6237] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 135.693103][ T6246] openvswitch: netlink: Duplicate or invalid key (type 0). [ 135.772214][ T6241] zswap: compressor not available [ 136.331018][ T6251] vhci_hcd: invalid port number 16 [ 136.417414][ T6251] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 137.980366][ T6261] vhci_hcd: invalid port number 16 [ 137.998596][ T6261] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 138.086895][ T6265] vhci_hcd: invalid port number 16 [ 138.092404][ T6265] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 138.210285][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 138.216706][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 139.302580][ T6274] ERROR: Out of memory at tomoyo_memory_ok. [ 139.390228][ T6283] ERROR: Out of memory at tomoyo_memory_ok. [ 139.511476][ T6287] netlink: 8 bytes leftover after parsing attributes in process `syz.3.71'. [ 139.978429][ T6294] vhci_hcd: invalid port number 16 [ 140.044941][ T6294] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 140.743744][ T6301] netlink: 28 bytes leftover after parsing attributes in process `syz.3.74'. [ 142.057379][ T6311] ======================================================= [ 142.057379][ T6311] WARNING: The mand mount option has been deprecated and [ 142.057379][ T6311] and is ignored by this kernel. Remove the mand [ 142.057379][ T6311] option from the mount to silence this warning. [ 142.057379][ T6311] ======================================================= [ 143.224031][ T6314] vhci_hcd: invalid port number 16 [ 143.251830][ T6314] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 146.057373][ T6343] kAFS: No cell specified [ 146.751489][ T6353] ERROR: Out of memory at tomoyo_memory_ok. [ 146.858725][ T6356] netlink: 8 bytes leftover after parsing attributes in process `syz.0.86'. [ 148.591390][ T6382] ERROR: Out of memory at tomoyo_memory_ok. [ 148.667255][ T6380] netlink: 294 bytes leftover after parsing attributes in process `syz.3.91'. [ 149.215198][ T6391] netlink: 28 bytes leftover after parsing attributes in process `syz.1.94'. [ 151.113847][ T6412] ERROR: Out of memory at tomoyo_memory_ok. [ 151.208076][ T6414] netlink: 28 bytes leftover after parsing attributes in process `syz.0.100'. [ 152.417118][ T6432] warning: `syz.0.103' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 152.481276][ T6433] syz.2.101 uses obsolete (PF_INET,SOCK_PACKET) [ 152.593430][ T6435] FAULT_INJECTION: forcing a failure. [ 152.593430][ T6435] name failslab, interval 1, probability 0, space 0, times 0 [ 152.637433][ T6435] CPU: 1 UID: 0 PID: 6435 Comm: syz.1.104 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 152.637479][ T6435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 152.637497][ T6435] Call Trace: [ 152.637508][ T6435] [ 152.637519][ T6435] dump_stack_lvl+0x16c/0x1f0 [ 152.637569][ T6435] should_fail_ex+0x512/0x640 [ 152.637611][ T6435] ? fs_reclaim_acquire+0xae/0x150 [ 152.637660][ T6435] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 152.637701][ T6435] should_failslab+0xc2/0x120 [ 152.637731][ T6435] __kmalloc_noprof+0xd2/0x510 [ 152.637790][ T6435] tomoyo_realpath_from_path+0xc2/0x6e0 [ 152.637848][ T6435] tomoyo_get_exe+0x63/0xa0 [ 152.637878][ T6435] tomoyo_write_control+0x689/0x1430 [ 152.637943][ T6435] ? __pfx_tomoyo_write_control+0x10/0x10 [ 152.638005][ T6435] ? __pfx_tomoyo_write+0x10/0x10 [ 152.638045][ T6435] vfs_write+0x29d/0x1150 [ 152.638097][ T6435] ? __pfx___mutex_lock+0x10/0x10 [ 152.638143][ T6435] ? __pfx_vfs_write+0x10/0x10 [ 152.638197][ T6435] ? __fget_files+0x20e/0x3c0 [ 152.638252][ T6435] ksys_write+0x12a/0x250 [ 152.638291][ T6435] ? __pfx_ksys_write+0x10/0x10 [ 152.638352][ T6435] do_syscall_64+0xcd/0x490 [ 152.638397][ T6435] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.638427][ T6435] RIP: 0033:0x7f7982d8e929 [ 152.638452][ T6435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 152.638480][ T6435] RSP: 002b:00007f7983c94038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 152.638510][ T6435] RAX: ffffffffffffffda RBX: 00007f7982fb5fa0 RCX: 00007f7982d8e929 [ 152.638530][ T6435] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 152.638546][ T6435] RBP: 00007f7982e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 152.638563][ T6435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 152.638580][ T6435] R13: 0000000000000000 R14: 00007f7982fb5fa0 R15: 00007ffec65fbb68 [ 152.638609][ T6435] [ 152.837093][ C1] vkms_vblank_simulate: vblank timer overrun [ 153.068538][ T6435] ERROR: Out of memory at tomoyo_realpath_from_path. [ 155.010515][ T6458] random: crng reseeded on system resumption [ 155.073709][ T6455] ERROR: Out of memory at tomoyo_memory_ok. [ 155.674437][ T6468] vhci_hcd: invalid port number 16 [ 155.691879][ T6468] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 156.329359][ T6475] ERROR: Out of memory at tomoyo_memory_ok. [ 157.853057][ T6498] FAULT_INJECTION: forcing a failure. [ 157.853057][ T6498] name failslab, interval 1, probability 0, space 0, times 0 [ 157.869256][ T6498] CPU: 0 UID: 0 PID: 6498 Comm: syz.3.118 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 157.869298][ T6498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 157.869315][ T6498] Call Trace: [ 157.869324][ T6498] [ 157.869337][ T6498] dump_stack_lvl+0x16c/0x1f0 [ 157.869387][ T6498] should_fail_ex+0x512/0x640 [ 157.869427][ T6498] ? __kmalloc_noprof+0xbf/0x510 [ 157.869471][ T6498] ? __register_sysctl_table+0xea2/0x1900 [ 157.869513][ T6498] should_failslab+0xc2/0x120 [ 157.869540][ T6498] __kmalloc_noprof+0xd2/0x510 [ 157.869578][ T6498] ? __register_sysctl_table+0xe8e/0x1900 [ 157.869629][ T6498] __register_sysctl_table+0xea2/0x1900 [ 157.869672][ T6498] ? __pfx___register_sysctl_table+0x10/0x10 [ 157.869700][ T6498] ? is_module_address+0x69/0xf0 [ 157.869725][ T6498] ? register_net_sysctl_sz+0x228/0x3e0 [ 157.869745][ T6498] ? __asan_memcpy+0x3c/0x60 [ 157.869770][ T6498] smc_sysctl_net_init+0xbb/0x3d0 [ 157.869790][ T6498] ? __pfx_smc_net_init+0x10/0x10 [ 157.869808][ T6498] smc_net_init+0x16/0x50 [ 157.869827][ T6498] ops_init+0x1df/0x5f0 [ 157.869858][ T6498] setup_net+0x1ff/0x510 [ 157.869873][ T6498] ? lockdep_init_map_type+0x5c/0x280 [ 157.869912][ T6498] ? __pfx_setup_net+0x10/0x10 [ 157.869930][ T6498] ? debug_mutex_init+0x37/0x70 [ 157.869950][ T6498] copy_net_ns+0x2a6/0x5f0 [ 157.869972][ T6498] create_new_namespaces+0x3ea/0xa90 [ 157.869998][ T6498] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 157.870020][ T6498] ksys_unshare+0x45b/0xa40 [ 157.870045][ T6498] ? __pfx_ksys_unshare+0x10/0x10 [ 157.870069][ T6498] ? xfd_validate_state+0x61/0x180 [ 157.870099][ T6498] __x64_sys_unshare+0x31/0x40 [ 157.870122][ T6498] do_syscall_64+0xcd/0x490 [ 157.870160][ T6498] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.870188][ T6498] RIP: 0033:0x7f10c1b8e929 [ 157.870212][ T6498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 157.870237][ T6498] RSP: 002b:00007f10c2a0b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 157.870266][ T6498] RAX: ffffffffffffffda RBX: 00007f10c1db5fa0 RCX: 00007f10c1b8e929 [ 157.870280][ T6498] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 157.870290][ T6498] RBP: 00007f10c1c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 157.870301][ T6498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 157.870311][ T6498] R13: 0000000000000000 R14: 00007f10c1db5fa0 R15: 00007fffb108eb48 [ 157.870334][ T6498] [ 157.870342][ T6498] sysctl could not get directory: /net/smc -12 [ 158.854845][ T6518] mmap: syz.3.120 (6518) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 160.035121][ T6518] FAULT_INJECTION: forcing a failure. [ 160.035121][ T6518] name failslab, interval 1, probability 0, space 0, times 0 [ 160.050334][ T6518] CPU: 0 UID: 0 PID: 6518 Comm: syz.3.120 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 160.050377][ T6518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 160.050395][ T6518] Call Trace: [ 160.050405][ T6518] [ 160.050416][ T6518] dump_stack_lvl+0x16c/0x1f0 [ 160.050466][ T6518] should_fail_ex+0x512/0x640 [ 160.050507][ T6518] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 160.050562][ T6518] should_failslab+0xc2/0x120 [ 160.050592][ T6518] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 160.050640][ T6518] ? cache_create_net+0x2b/0x220 [ 160.050697][ T6518] kmemdup_noprof+0x29/0x60 [ 160.050740][ T6518] cache_create_net+0x2b/0x220 [ 160.050788][ T6518] ip_map_cache_create+0x60/0x130 [ 160.050837][ T6518] ? __pfx_sunrpc_init_net+0x10/0x10 [ 160.050884][ T6518] sunrpc_init_net+0x55/0x190 [ 160.050928][ T6518] ops_init+0x1df/0x5f0 [ 160.050981][ T6518] setup_net+0x1ff/0x510 [ 160.051006][ T6518] ? lockdep_init_map_type+0x5c/0x280 [ 160.051047][ T6518] ? __pfx_setup_net+0x10/0x10 [ 160.051078][ T6518] ? debug_mutex_init+0x37/0x70 [ 160.051111][ T6518] copy_net_ns+0x2a6/0x5f0 [ 160.051157][ T6518] create_new_namespaces+0x3ea/0xa90 [ 160.051203][ T6518] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 160.051242][ T6518] ksys_unshare+0x45b/0xa40 [ 160.051283][ T6518] ? __pfx_ksys_unshare+0x10/0x10 [ 160.051325][ T6518] ? syscall_user_dispatch+0x78/0x140 [ 160.051385][ T6518] __x64_sys_unshare+0x31/0x40 [ 160.051420][ T6518] do_syscall_64+0xcd/0x490 [ 160.051469][ T6518] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 160.051498][ T6518] RIP: 0033:0x7f10c1b8e929 [ 160.051522][ T6518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 160.051549][ T6518] RSP: 002b:00007f10c2a0b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 160.051577][ T6518] RAX: ffffffffffffffda RBX: 00007f10c1db5fa0 RCX: 00007f10c1b8e929 [ 160.051596][ T6518] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 160.051621][ T6518] RBP: 00007f10c1c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 160.051639][ T6518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 160.051657][ T6518] R13: 0000000000000000 R14: 00007f10c1db5fa0 R15: 00007fffb108eb48 [ 160.051702][ T6518] [ 160.399113][ T6525] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4294967293.4294967295.4294967293), cmd(2) [ 160.822496][ T6536] netlink: 28 bytes leftover after parsing attributes in process `syz.3.124'. [ 161.348138][ T6545] FAULT_INJECTION: forcing a failure. [ 161.348138][ T6545] name failslab, interval 1, probability 0, space 0, times 0 [ 161.399716][ T6545] CPU: 1 UID: 0 PID: 6545 Comm: syz.0.125 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 161.399755][ T6545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 161.399767][ T6545] Call Trace: [ 161.399774][ T6545] [ 161.399781][ T6545] dump_stack_lvl+0x16c/0x1f0 [ 161.399825][ T6545] should_fail_ex+0x512/0x640 [ 161.399855][ T6545] should_failslab+0xc2/0x120 [ 161.399872][ T6545] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 161.399901][ T6545] ? skb_clone+0x190/0x3f0 [ 161.399932][ T6545] skb_clone+0x190/0x3f0 [ 161.399960][ T6545] netlink_deliver_tap+0xabd/0xd30 [ 161.399983][ T6545] netlink_unicast+0x5df/0x7f0 [ 161.400007][ T6545] ? __pfx_netlink_unicast+0x10/0x10 [ 161.400036][ T6545] netlink_sendmsg+0x8d1/0xdd0 [ 161.400059][ T6545] ? __pfx_netlink_sendmsg+0x10/0x10 [ 161.400087][ T6545] ____sys_sendmsg+0xa98/0xc70 [ 161.400109][ T6545] ? copy_msghdr_from_user+0x10a/0x160 [ 161.400136][ T6545] ? __pfx_____sys_sendmsg+0x10/0x10 [ 161.400167][ T6545] ___sys_sendmsg+0x134/0x1d0 [ 161.400196][ T6545] ? __pfx____sys_sendmsg+0x10/0x10 [ 161.400222][ T6545] ? __lock_acquire+0x622/0x1c90 [ 161.400275][ T6545] __sys_sendmsg+0x16d/0x220 [ 161.400304][ T6545] ? __pfx___sys_sendmsg+0x10/0x10 [ 161.400349][ T6545] do_syscall_64+0xcd/0x490 [ 161.400378][ T6545] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 161.400397][ T6545] RIP: 0033:0x7fab5078e929 [ 161.400412][ T6545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 161.400430][ T6545] RSP: 002b:00007fab515a3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 161.400447][ T6545] RAX: ffffffffffffffda RBX: 00007fab509b5fa0 RCX: 00007fab5078e929 [ 161.400459][ T6545] RDX: 0000000000000010 RSI: 00002000000004c0 RDI: 0000000000000003 [ 161.400469][ T6545] RBP: 00007fab515a3090 R08: 0000000000000000 R09: 0000000000000000 [ 161.400480][ T6545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 161.400490][ T6545] R13: 0000000000000000 R14: 00007fab509b5fa0 R15: 00007ffd3843a058 [ 161.400511][ T6545] [ 161.922469][ T6553] ERROR: Out of memory at tomoyo_memory_ok. [ 161.989056][ T6555] netlink: 8 bytes leftover after parsing attributes in process `syz.0.126'. [ 162.297555][ T6560] vhci_hcd: invalid port number 16 [ 162.327738][ T6560] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 164.301204][ T6588] vhci_hcd: invalid port number 16 [ 164.306547][ T6588] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 166.313506][ T6613] FAULT_INJECTION: forcing a failure. [ 166.313506][ T6613] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 166.327113][ T6613] CPU: 0 UID: 0 PID: 6613 Comm: syz.3.138 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 166.327153][ T6613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 166.327169][ T6613] Call Trace: [ 166.327179][ T6613] [ 166.327190][ T6613] dump_stack_lvl+0x16c/0x1f0 [ 166.327239][ T6613] should_fail_ex+0x512/0x640 [ 166.327287][ T6613] _copy_to_user+0x32/0xd0 [ 166.327334][ T6613] video_usercopy+0xcbe/0x1440 [ 166.327379][ T6613] ? __pfx_subdev_do_ioctl_lock+0x10/0x10 [ 166.327420][ T6613] ? __pfx_video_usercopy+0x10/0x10 [ 166.327483][ T6613] ? __fget_files+0x20e/0x3c0 [ 166.327529][ T6613] v4l2_ioctl+0x1ba/0x250 [ 166.327566][ T6613] ? __pfx_v4l2_ioctl+0x10/0x10 [ 166.327616][ T6613] __x64_sys_ioctl+0x18b/0x210 [ 166.327655][ T6613] do_syscall_64+0xcd/0x490 [ 166.327702][ T6613] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 166.327732][ T6613] RIP: 0033:0x7f10c1b8e929 [ 166.327756][ T6613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 166.327783][ T6613] RSP: 002b:00007f10c29ea038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 166.327810][ T6613] RAX: ffffffffffffffda RBX: 00007f10c1db6080 RCX: 00007f10c1b8e929 [ 166.327829][ T6613] RDX: 0000000000000003 RSI: 0000000080405600 RDI: 0000000000000003 [ 166.327846][ T6613] RBP: 00007f10c29ea090 R08: 0000000000000000 R09: 0000000000000000 [ 166.327862][ T6613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 166.327879][ T6613] R13: 0000000000000000 R14: 00007f10c1db6080 R15: 00007fffb108eb48 [ 166.327917][ T6613] [ 166.822660][ T6625] FAULT_INJECTION: forcing a failure. [ 166.822660][ T6625] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 166.948890][ T6625] CPU: 0 UID: 0 PID: 6625 Comm: syz.1.140 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 166.948936][ T6625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 166.948955][ T6625] Call Trace: [ 166.948965][ T6625] [ 166.948978][ T6625] dump_stack_lvl+0x16c/0x1f0 [ 166.949026][ T6625] should_fail_ex+0x512/0x640 [ 166.949070][ T6625] should_fail_alloc_page+0xe7/0x130 [ 166.949104][ T6625] prepare_alloc_pages+0x3c2/0x610 [ 166.949143][ T6625] ? rcu_is_watching+0x12/0xc0 [ 166.949175][ T6625] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 166.949220][ T6625] ? psi_task_switch+0x201/0x8e0 [ 166.949260][ T6625] ? css_rstat_updated+0x9d/0xd30 [ 166.949302][ T6625] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 166.949346][ T6625] ? __lock_acquire+0x622/0x1c90 [ 166.949401][ T6625] ? __lock_acquire+0x622/0x1c90 [ 166.949443][ T6625] ? __lock_acquire+0x622/0x1c90 [ 166.949479][ T6625] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 166.949528][ T6625] ? policy_nodemask+0xea/0x4e0 [ 166.949561][ T6625] alloc_pages_mpol+0x1fb/0x550 [ 166.949593][ T6625] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 166.949635][ T6625] folio_alloc_mpol_noprof+0x36/0x2f0 [ 166.949672][ T6625] vma_alloc_folio_noprof+0xed/0x1e0 [ 166.949707][ T6625] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 166.949740][ T6625] ? find_held_lock+0x2b/0x80 [ 166.949769][ T6625] ? __handle_mm_fault+0x1092/0x5490 [ 166.949817][ T6625] __handle_mm_fault+0x2f21/0x5490 [ 166.949879][ T6625] ? __pfx___handle_mm_fault+0x10/0x10 [ 166.949922][ T6625] ? __pte_offset_map_lock+0x174/0x310 [ 166.949953][ T6625] ? find_held_lock+0x2b/0x80 [ 166.949979][ T6625] ? find_held_lock+0x2b/0x80 [ 166.950018][ T6625] ? follow_page_pte+0x3af/0x14c0 [ 166.950062][ T6625] handle_mm_fault+0x589/0xd10 [ 166.950109][ T6625] __get_user_pages+0x589/0x3b80 [ 166.950157][ T6625] ? __pfx_mt_find+0x10/0x10 [ 166.950186][ T6625] ? __pfx___get_user_pages+0x10/0x10 [ 166.950234][ T6625] populate_vma_page_range+0x278/0x3a0 [ 166.950274][ T6625] ? __pfx_populate_vma_page_range+0x10/0x10 [ 166.950308][ T6625] ? __pfx_find_vma_intersection+0x10/0x10 [ 166.950343][ T6625] ? do_mmap+0x69c/0x1210 [ 166.950380][ T6625] __mm_populate+0x1d8/0x380 [ 166.950419][ T6625] ? __pfx___mm_populate+0x10/0x10 [ 166.950459][ T6625] ? up_write+0x1b2/0x520 [ 166.950508][ T6625] vm_mmap_pgoff+0x362/0x450 [ 166.950546][ T6625] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 166.950586][ T6625] ? __x64_sys_futex+0x1e0/0x4c0 [ 166.950620][ T6625] ? __x64_sys_futex+0x1e9/0x4c0 [ 166.950663][ T6625] ksys_mmap_pgoff+0x7d/0x5c0 [ 166.950693][ T6625] ? xfd_validate_state+0x61/0x180 [ 166.950739][ T6625] __x64_sys_mmap+0x125/0x190 [ 166.950785][ T6625] do_syscall_64+0xcd/0x490 [ 166.950844][ T6625] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 166.950873][ T6625] RIP: 0033:0x7f7982d8e929 [ 166.950898][ T6625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 166.950927][ T6625] RSP: 002b:00007f7983c94038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 166.950955][ T6625] RAX: ffffffffffffffda RBX: 00007f7982fb5fa0 RCX: 00007f7982d8e929 [ 166.950974][ T6625] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 166.950990][ T6625] RBP: 00007f7982e10b39 R08: 0000000000000002 R09: 0000000000008000 [ 166.951005][ T6625] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 166.951021][ T6625] R13: 0000000000000000 R14: 00007f7982fb5fa0 R15: 00007ffec65fbb68 [ 166.951057][ T6625] [ 167.352764][ T6628] vhci_hcd: invalid port number 16 [ 167.357974][ T6628] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 167.788595][ T6624] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 168.592238][ T6642] FAULT_INJECTION: forcing a failure. [ 168.592238][ T6642] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 168.650387][ T6642] CPU: 0 UID: 0 PID: 6642 Comm: syz.1.143 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 168.650428][ T6642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 168.650444][ T6642] Call Trace: [ 168.650453][ T6642] [ 168.650465][ T6642] dump_stack_lvl+0x16c/0x1f0 [ 168.650512][ T6642] should_fail_ex+0x512/0x640 [ 168.650559][ T6642] _copy_to_user+0x32/0xd0 [ 168.650607][ T6642] simple_read_from_buffer+0xcb/0x170 [ 168.650646][ T6642] proc_fail_nth_read+0x197/0x270 [ 168.650681][ T6642] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 168.650718][ T6642] ? rw_verify_area+0xcf/0x680 [ 168.650753][ T6642] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 168.650794][ T6642] vfs_read+0x1e4/0xc60 [ 168.650841][ T6642] ? __pfx___mutex_lock+0x10/0x10 [ 168.650884][ T6642] ? __pfx_vfs_read+0x10/0x10 [ 168.650936][ T6642] ? __fget_files+0x20e/0x3c0 [ 168.650989][ T6642] ksys_read+0x12a/0x250 [ 168.651027][ T6642] ? __pfx_ksys_read+0x10/0x10 [ 168.651081][ T6642] do_syscall_64+0xcd/0x490 [ 168.651127][ T6642] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.651155][ T6642] RIP: 0033:0x7f7982d8d33c [ 168.651179][ T6642] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 168.651205][ T6642] RSP: 002b:00007f7983c94030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 168.651232][ T6642] RAX: ffffffffffffffda RBX: 00007f7982fb5fa0 RCX: 00007f7982d8d33c [ 168.651251][ T6642] RDX: 000000000000000f RSI: 00007f7983c940a0 RDI: 0000000000000006 [ 168.651269][ T6642] RBP: 00007f7983c94090 R08: 0000000000000000 R09: 0000000000000000 [ 168.651285][ T6642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 168.651302][ T6642] R13: 0000000000000000 R14: 00007f7982fb5fa0 R15: 00007ffec65fbb68 [ 168.651340][ T6642] [ 168.841455][ C0] vkms_vblank_simulate: vblank timer overrun [ 169.137400][ T6645] ERROR: Out of memory at tomoyo_memory_ok. [ 169.270567][ T6646] netlink: 8 bytes leftover after parsing attributes in process `syz.0.144'. [ 170.790224][ T1167] [drm:drm_crtc_add_crc_entry] *ERROR* Overflow of CRC buffer, userspace reads too slow. [ 171.701564][ T6677] FAULT_INJECTION: forcing a failure. [ 171.701564][ T6677] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 171.738507][ T6677] CPU: 0 UID: 0 PID: 6677 Comm: syz.3.148 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 171.738550][ T6677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 171.738566][ T6677] Call Trace: [ 171.738576][ T6677] [ 171.738587][ T6677] dump_stack_lvl+0x16c/0x1f0 [ 171.738632][ T6677] should_fail_ex+0x512/0x640 [ 171.738671][ T6677] _copy_to_user+0x32/0xd0 [ 171.738710][ T6677] simple_read_from_buffer+0xcb/0x170 [ 171.738743][ T6677] proc_fail_nth_read+0x197/0x270 [ 171.738772][ T6677] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 171.738811][ T6677] ? rw_verify_area+0xcf/0x680 [ 171.738840][ T6677] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 171.738867][ T6677] vfs_read+0x1e4/0xc60 [ 171.738904][ T6677] ? __pfx___mutex_lock+0x10/0x10 [ 171.738940][ T6677] ? __pfx_vfs_read+0x10/0x10 [ 171.738981][ T6677] ? __fget_files+0x20e/0x3c0 [ 171.739023][ T6677] ksys_read+0x12a/0x250 [ 171.739055][ T6677] ? __pfx_ksys_read+0x10/0x10 [ 171.739097][ T6677] do_syscall_64+0xcd/0x490 [ 171.739135][ T6677] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.739159][ T6677] RIP: 0033:0x7f10c1b8d33c [ 171.739178][ T6677] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 171.739199][ T6677] RSP: 002b:00007f10c2a0b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 171.739222][ T6677] RAX: ffffffffffffffda RBX: 00007f10c1db5fa0 RCX: 00007f10c1b8d33c [ 171.739237][ T6677] RDX: 000000000000000f RSI: 00007f10c2a0b0a0 RDI: 000000000000000a [ 171.739251][ T6677] RBP: 00007f10c2a0b090 R08: 0000000000000000 R09: 0000000000000000 [ 171.739264][ T6677] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001 [ 171.739278][ T6677] R13: 0000000000000000 R14: 00007f10c1db5fa0 R15: 00007fffb108eb48 [ 171.739309][ T6677] [ 171.922258][ C0] vkms_vblank_simulate: vblank timer overrun [ 173.555402][ T6683] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input6 [ 173.608019][ T5185] ERROR: Out of memory at tomoyo_memory_ok. [ 175.077927][ T6697] netlink: 28 bytes leftover after parsing attributes in process `syz.0.153'. [ 177.147433][ T6691] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 177.644998][ T6741] ERROR: Out of memory at tomoyo_memory_ok. [ 177.859650][ T6743] netlink: 8 bytes leftover after parsing attributes in process `syz.3.163'. [ 179.008302][ T6754] FAULT_INJECTION: forcing a failure. [ 179.008302][ T6754] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 179.008612][ T6754] CPU: 0 UID: 0 PID: 6754 Comm: syz.3.165 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 179.008650][ T6754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 179.008667][ T6754] Call Trace: [ 179.008677][ T6754] [ 179.008688][ T6754] dump_stack_lvl+0x16c/0x1f0 [ 179.008737][ T6754] should_fail_ex+0x512/0x640 [ 179.008785][ T6754] _copy_to_user+0x32/0xd0 [ 179.008833][ T6754] snd_pcm_oss_read2+0x294/0x410 [ 179.008870][ T6754] ? __pfx_snd_pcm_oss_read2+0x10/0x10 [ 179.008901][ T6754] ? snd_pcm_kernel_ioctl+0x267/0x2e0 [ 179.008940][ T6754] ? snd_pcm_oss_prepare+0x11e/0x220 [ 179.008976][ T6754] snd_pcm_oss_read+0x5d3/0x760 [ 179.009017][ T6754] ? __pfx_snd_pcm_oss_read+0x10/0x10 [ 179.009053][ T6754] vfs_read+0x1e4/0xc60 [ 179.009100][ T6754] ? rcu_is_watching+0x12/0xc0 [ 179.009131][ T6754] ? __pfx_vfs_read+0x10/0x10 [ 179.009168][ T6754] ? lockdep_hardirqs_on+0x7c/0x110 [ 179.009223][ T6754] ? fdget_pos+0x192/0x370 [ 179.009266][ T6754] ? __sanitizer_cov_trace_const_cmp8+0x8/0x20 [ 179.009317][ T6754] ksys_read+0x12a/0x250 [ 179.009357][ T6754] ? __pfx_ksys_read+0x10/0x10 [ 179.009421][ T6754] do_syscall_64+0xcd/0x490 [ 179.009470][ T6754] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.009500][ T6754] RIP: 0033:0x7f10c1b8e929 [ 179.009524][ T6754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.009551][ T6754] RSP: 002b:00007f10c29c9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 179.009578][ T6754] RAX: ffffffffffffffda RBX: 00007f10c1db6160 RCX: 00007f10c1b8e929 [ 179.009597][ T6754] RDX: 000000007fffffff RSI: 0000000000000000 RDI: 0000000000000003 [ 179.009615][ T6754] RBP: 00007f10c29c9090 R08: 0000000000000000 R09: 0000000000000000 [ 179.009633][ T6754] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 179.009649][ T6754] R13: 0000000000000000 R14: 00007f10c1db6160 R15: 00007fffb108eb48 [ 179.009688][ T6754] [ 180.105050][ T6765] vhci_hcd: invalid port number 16 [ 180.140533][ T6765] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 180.929417][ T6777] FAULT_INJECTION: forcing a failure. [ 180.929417][ T6777] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 180.950688][ T6777] CPU: 0 UID: 0 PID: 6777 Comm: syz.0.171 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 180.950728][ T6777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 180.950745][ T6777] Call Trace: [ 180.950754][ T6777] [ 180.950766][ T6777] dump_stack_lvl+0x16c/0x1f0 [ 180.950815][ T6777] should_fail_ex+0x512/0x640 [ 180.950861][ T6777] _copy_to_user+0x32/0xd0 [ 180.950908][ T6777] simple_read_from_buffer+0xcb/0x170 [ 180.950948][ T6777] proc_fail_nth_read+0x197/0x270 [ 180.950984][ T6777] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 180.951022][ T6777] ? rw_verify_area+0xcf/0x680 [ 180.951057][ T6777] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 180.951091][ T6777] vfs_read+0x1e4/0xc60 [ 180.951137][ T6777] ? __pfx___mutex_lock+0x10/0x10 [ 180.951180][ T6777] ? __pfx_vfs_read+0x10/0x10 [ 180.951231][ T6777] ? __fget_files+0x20e/0x3c0 [ 180.951281][ T6777] ksys_read+0x12a/0x250 [ 180.951319][ T6777] ? __pfx_ksys_read+0x10/0x10 [ 180.951360][ T6777] ? fput+0x70/0xf0 [ 180.951395][ T6777] do_syscall_64+0xcd/0x490 [ 180.951440][ T6777] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.951468][ T6777] RIP: 0033:0x7fab5078d33c [ 180.951491][ T6777] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 180.951517][ T6777] RSP: 002b:00007fab515a3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 180.951544][ T6777] RAX: ffffffffffffffda RBX: 00007fab509b5fa0 RCX: 00007fab5078d33c [ 180.951563][ T6777] RDX: 000000000000000f RSI: 00007fab515a30a0 RDI: 0000000000000005 [ 180.951579][ T6777] RBP: 00007fab515a3090 R08: 0000000000000000 R09: 0000000000000000 [ 180.951596][ T6777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 180.951612][ T6777] R13: 0000000000000000 R14: 00007fab509b5fa0 R15: 00007ffd3843a058 [ 180.951652][ T6777] [ 181.988713][ T6787] ERROR: Out of memory at tomoyo_memory_ok. [ 182.089060][ T6787] netlink: 8 bytes leftover after parsing attributes in process `syz.2.174'. [ 184.547195][ T6816] ERROR: Out of memory at tomoyo_memory_ok. [ 184.621515][ T6818] netlink: 8 bytes leftover after parsing attributes in process `syz.2.181'. [ 184.966334][ T6823] vhci_hcd: invalid port number 16 [ 184.971752][ T6823] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 186.625082][ T6840] [U]  [ 186.628126][ T6840] [U] [ 186.630825][ T6840] [U] [ 186.633608][ T6840] [U] [ 186.708784][ T6840] [U] [ 186.711600][ T6840] [U] [ 186.714332][ T6840] [U] [ 186.717137][ T6840] [U] [ 186.855368][ T6844] [U] [ 187.089285][ T6848] capability: warning: `syz.3.187' uses 32-bit capabilities (legacy support in use) [ 190.060325][ T6872] FAULT_INJECTION: forcing a failure. [ 190.060325][ T6872] name failslab, interval 1, probability 0, space 0, times 0 [ 190.108435][ T6872] CPU: 1 UID: 0 PID: 6872 Comm: syz.0.191 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 190.108478][ T6872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 190.108502][ T6872] Call Trace: [ 190.108512][ T6872] [ 190.108524][ T6872] dump_stack_lvl+0x16c/0x1f0 [ 190.108571][ T6872] should_fail_ex+0x512/0x640 [ 190.108608][ T6872] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 190.108656][ T6872] should_failslab+0xc2/0x120 [ 190.108683][ T6872] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 190.108726][ T6872] ? __alloc_skb+0x2b2/0x380 [ 190.108775][ T6872] __alloc_skb+0x2b2/0x380 [ 190.108815][ T6872] ? __pfx___alloc_skb+0x10/0x10 [ 190.108861][ T6872] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 190.108900][ T6872] netlink_alloc_large_skb+0x69/0x130 [ 190.108932][ T6872] netlink_sendmsg+0x6a1/0xdd0 [ 190.108968][ T6872] ? __pfx_netlink_sendmsg+0x10/0x10 [ 190.109017][ T6872] ____sys_sendmsg+0xa98/0xc70 [ 190.109051][ T6872] ? copy_msghdr_from_user+0x10a/0x160 [ 190.109093][ T6872] ? __pfx_____sys_sendmsg+0x10/0x10 [ 190.109135][ T6872] ? __pfx__kstrtoull+0x10/0x10 [ 190.109179][ T6872] ___sys_sendmsg+0x134/0x1d0 [ 190.109224][ T6872] ? __pfx____sys_sendmsg+0x10/0x10 [ 190.109287][ T6872] ? find_held_lock+0x2b/0x80 [ 190.109345][ T6872] __sys_sendmmsg+0x200/0x420 [ 190.109394][ T6872] ? __pfx___sys_sendmmsg+0x10/0x10 [ 190.109455][ T6872] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 190.109530][ T6872] ? fput+0x70/0xf0 [ 190.109557][ T6872] ? ksys_write+0x1ac/0x250 [ 190.109597][ T6872] ? __pfx_ksys_write+0x10/0x10 [ 190.109645][ T6872] __x64_sys_sendmmsg+0x9c/0x100 [ 190.109685][ T6872] ? lockdep_hardirqs_on+0x7c/0x110 [ 190.109725][ T6872] do_syscall_64+0xcd/0x490 [ 190.109772][ T6872] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.109799][ T6872] RIP: 0033:0x7fab5078e929 [ 190.109822][ T6872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 190.109846][ T6872] RSP: 002b:00007fab51540038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 190.109873][ T6872] RAX: ffffffffffffffda RBX: 00007fab509b6240 RCX: 00007fab5078e929 [ 190.109892][ T6872] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 190.109909][ T6872] RBP: 00007fab51540090 R08: 0000000000000000 R09: 0000000000000000 [ 190.109926][ T6872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 190.109943][ T6872] R13: 0000000000000000 R14: 00007fab509b6240 R15: 00007ffd3843a058 [ 190.109982][ T6872] [ 191.072776][ T6877] netlink: 28 bytes leftover after parsing attributes in process `syz.0.192'. [ 191.093339][ T6877] ipvlan1: entered allmulticast mode [ 191.168486][ T6877] veth0_vlan: entered allmulticast mode [ 191.370127][ T6877] netlink: 28 bytes leftover after parsing attributes in process `syz.0.192'. [ 193.630051][ T6902] random: crng reseeded on system resumption [ 194.979980][ T6916] random: crng reseeded on system resumption [ 195.187106][ T6916] FAULT_INJECTION: forcing a failure. [ 195.187106][ T6916] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 195.274323][ T6916] CPU: 1 UID: 0 PID: 6916 Comm: syz.0.197 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 195.274365][ T6916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 195.274382][ T6916] Call Trace: [ 195.274391][ T6916] [ 195.274402][ T6916] dump_stack_lvl+0x16c/0x1f0 [ 195.274451][ T6916] should_fail_ex+0x512/0x640 [ 195.274498][ T6916] _copy_from_user+0x2e/0xd0 [ 195.274552][ T6916] map_delete_elem+0x70f/0xa10 [ 195.274593][ T6916] ? __might_fault+0xb0/0x190 [ 195.274634][ T6916] ? __pfx_map_delete_elem+0x10/0x10 [ 195.274688][ T6916] __sys_bpf+0x631/0x4d80 [ 195.274739][ T6916] ? __pfx___sys_bpf+0x10/0x10 [ 195.274781][ T6916] ? vfs_write+0x15d/0x1150 [ 195.274832][ T6916] ? __pfx_vfs_write+0x10/0x10 [ 195.274874][ T6916] ? do_sys_openat2+0x157/0x1d0 [ 195.274934][ T6916] ? ksys_write+0x1ac/0x250 [ 195.274972][ T6916] ? __pfx_ksys_write+0x10/0x10 [ 195.275022][ T6916] __x64_sys_bpf+0x78/0xc0 [ 195.275048][ T6916] ? lockdep_hardirqs_on+0x7c/0x110 [ 195.275089][ T6916] do_syscall_64+0xcd/0x490 [ 195.275136][ T6916] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.275166][ T6916] RIP: 0033:0x7fab5078e929 [ 195.275188][ T6916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 195.275214][ T6916] RSP: 002b:00007fab515a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 195.275243][ T6916] RAX: ffffffffffffffda RBX: 00007fab509b5fa0 RCX: 00007fab5078e929 [ 195.275261][ T6916] RDX: 0000000000000007 RSI: 0000200000000040 RDI: 0000000000000003 [ 195.275279][ T6916] RBP: 00007fab515a3090 R08: 0000000000000000 R09: 0000000000000000 [ 195.275295][ T6916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 195.275311][ T6916] R13: 0000000000000000 R14: 00007fab509b5fa0 R15: 00007ffd3843a058 [ 195.275357][ T6916] [ 195.519445][ T6921] bond0: no command found in slaves file - use +ifname or -ifname [ 196.434966][ T6930] ERROR: Out of memory at tomoyo_memory_ok. [ 196.527259][ T6933] netlink: 8 bytes leftover after parsing attributes in process `syz.0.201'. [ 197.751461][ T6937] sctp: failed to load transform for md5: -2 [ 199.624486][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.681506][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.765716][ T6963] vhci_hcd: invalid port number 16 [ 199.911539][ T6963] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 203.674999][ T6999] FAULT_INJECTION: forcing a failure. [ 203.674999][ T6999] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 203.777014][ T6999] CPU: 0 UID: 0 PID: 6999 Comm: syz.3.216 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 203.777057][ T6999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 203.777072][ T6999] Call Trace: [ 203.777082][ T6999] [ 203.777093][ T6999] dump_stack_lvl+0x16c/0x1f0 [ 203.777142][ T6999] should_fail_ex+0x512/0x640 [ 203.777189][ T6999] _copy_from_iter+0x29f/0x16f0 [ 203.777235][ T6999] ? __build_skb_around+0x278/0x3b0 [ 203.777274][ T6999] ? __alloc_skb+0x200/0x380 [ 203.777312][ T6999] ? __pfx__copy_from_iter+0x10/0x10 [ 203.777358][ T6999] ? __pfx___alloc_skb+0x10/0x10 [ 203.777402][ T6999] ? lockdep_unlock+0x64/0xe0 [ 203.777437][ T6999] ? __lock_acquire+0x1053/0x1c90 [ 203.777474][ T6999] ? __asan_memset+0x23/0x50 [ 203.777509][ T6999] ? skb_put+0x138/0x1b0 [ 203.777546][ T6999] tipc_msg_build+0x7e9/0x1150 [ 203.777595][ T6999] ? __pfx_tipc_msg_build+0x10/0x10 [ 203.777646][ T6999] ? tipc_nametbl_lookup_mcast_nodes+0x214/0x370 [ 203.777700][ T6999] tipc_sendmcast+0x79a/0xba0 [ 203.777752][ T6999] ? __pfx_tipc_sendmcast+0x10/0x10 [ 203.777795][ T6999] ? __lock_acquire+0x622/0x1c90 [ 203.777835][ T6999] ? __pfx_woken_wake_function+0x10/0x10 [ 203.777906][ T6999] ? is_bpf_text_address+0x8a/0x1a0 [ 203.777945][ T6999] ? bpf_ksym_find+0x124/0x1c0 [ 203.777982][ T6999] __tipc_sendmsg+0x135e/0x19a0 [ 203.778011][ T6999] ? kernel_text_address+0x8d/0x100 [ 203.778056][ T6999] ? unwind_get_return_address+0x59/0xa0 [ 203.778108][ T6999] ? __pfx___tipc_sendmsg+0x10/0x10 [ 203.778139][ T6999] ? __lock_acquire+0x622/0x1c90 [ 203.778181][ T6999] ? _parse_integer_limit+0x17f/0x1d0 [ 203.778215][ T6999] ? aa_label_sk_perm+0x19b/0x5a0 [ 203.778254][ T6999] ? _kstrtoull+0x145/0x200 [ 203.778285][ T6999] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 203.778336][ T6999] ? register_lock_class+0x41/0x4c0 [ 203.778374][ T6999] ? register_lock_class+0x41/0x4c0 [ 203.778430][ T6999] __tipc_sendstream+0xe06/0x1170 [ 203.778474][ T6999] ? __pfx___might_resched+0x10/0x10 [ 203.778511][ T6999] ? __pfx___tipc_sendstream+0x10/0x10 [ 203.778545][ T6999] ? do_raw_spin_lock+0x12c/0x2b0 [ 203.778588][ T6999] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 203.778642][ T6999] ? __local_bh_enable_ip+0xa4/0x120 [ 203.778680][ T6999] tipc_sendstream+0x4f/0x70 [ 203.778715][ T6999] __sys_sendto+0x4a0/0x520 [ 203.778757][ T6999] ? __pfx___sys_sendto+0x10/0x10 [ 203.778840][ T6999] ? ksys_write+0x1ac/0x250 [ 203.778880][ T6999] ? __pfx_ksys_write+0x10/0x10 [ 203.778927][ T6999] __x64_sys_sendto+0xe0/0x1c0 [ 203.778964][ T6999] ? do_syscall_64+0x91/0x490 [ 203.779005][ T6999] ? lockdep_hardirqs_on+0x7c/0x110 [ 203.779045][ T6999] do_syscall_64+0xcd/0x490 [ 203.779092][ T6999] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.779123][ T6999] RIP: 0033:0x7f10c1b8e929 [ 203.779146][ T6999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.779172][ T6999] RSP: 002b:00007f10c2a0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 203.779200][ T6999] RAX: ffffffffffffffda RBX: 00007f10c1db5fa0 RCX: 00007f10c1b8e929 [ 203.779218][ T6999] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003 [ 203.779235][ T6999] RBP: 00007f10c2a0b090 R08: 0000200000000440 R09: 0000000000000020 [ 203.779252][ T6999] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001 [ 203.779269][ T6999] R13: 0000000000000000 R14: 00007f10c1db5fa0 R15: 00007fffb108eb48 [ 203.779312][ T6999] [ 206.842979][ T7024] ima: policy update failed [ 207.055342][ T30] audit: type=1802 audit(1750740426.387:2): pid=7024 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.222" res=0 errno=0 [ 208.866508][ T7049] FAULT_INJECTION: forcing a failure. [ 208.866508][ T7049] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 208.915744][ T7049] CPU: 0 UID: 0 PID: 7049 Comm: syz.2.229 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 208.915791][ T7049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 208.915807][ T7049] Call Trace: [ 208.915817][ T7049] [ 208.915828][ T7049] dump_stack_lvl+0x16c/0x1f0 [ 208.915877][ T7049] should_fail_ex+0x512/0x640 [ 208.915925][ T7049] should_fail_alloc_page+0xe7/0x130 [ 208.915957][ T7049] prepare_alloc_pages+0x3c2/0x610 [ 208.915998][ T7049] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 208.916077][ T7049] ? find_held_lock+0x2b/0x80 [ 208.916107][ T7049] ? is_bpf_text_address+0x8a/0x1a0 [ 208.916146][ T7049] ? bpf_ksym_find+0x124/0x1c0 [ 208.916186][ T7049] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 208.916229][ T7049] ? is_bpf_text_address+0x94/0x1a0 [ 208.916267][ T7049] ? kernel_text_address+0x8d/0x100 [ 208.916311][ T7049] ? __kernel_text_address+0xd/0x40 [ 208.916352][ T7049] ? unwind_get_return_address+0x59/0xa0 [ 208.916413][ T7049] ? __lock_acquire+0xb8a/0x1c90 [ 208.916464][ T7049] ? snd_ctl_new+0x56/0x1a0 [ 208.916500][ T7049] __alloc_pages_noprof+0xb/0x1b0 [ 208.916541][ T7049] ___kmalloc_large_node+0x84/0x1e0 [ 208.916583][ T7049] ? snd_ctl_new+0x56/0x1a0 [ 208.916618][ T7049] __kmalloc_large_node_noprof+0x1c/0x70 [ 208.916650][ T7049] ? tomoyo_path_number_perm+0x470/0x580 [ 208.916688][ T7049] __kmalloc_noprof.cold+0xc/0x61 [ 208.916743][ T7049] snd_ctl_new+0x56/0x1a0 [ 208.916788][ T7049] snd_ctl_elem_add+0x510/0x14c0 [ 208.916840][ T7049] ? find_held_lock+0x2b/0x80 [ 208.916866][ T7049] ? __might_fault+0xe3/0x190 [ 208.916905][ T7049] ? __might_fault+0xe3/0x190 [ 208.916942][ T7049] ? __might_fault+0x13b/0x190 [ 208.916983][ T7049] ? __pfx_snd_ctl_elem_add+0x10/0x10 [ 208.917037][ T7049] snd_ctl_elem_add_user+0xc3/0x170 [ 208.917079][ T7049] ? __pfx_snd_ctl_elem_add_user+0x10/0x10 [ 208.917119][ T7049] ? find_held_lock+0x2b/0x80 [ 208.917213][ T7049] snd_ctl_ioctl+0x981/0x1320 [ 208.917256][ T7049] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 208.917305][ T7049] ? find_held_lock+0x2b/0x80 [ 208.917331][ T7049] ? hook_file_ioctl_common+0x145/0x410 [ 208.917378][ T7049] ? __fget_files+0x20e/0x3c0 [ 208.917420][ T7049] ? __pfx_snd_ctl_ioctl+0x10/0x10 [ 208.917464][ T7049] __x64_sys_ioctl+0x18b/0x210 [ 208.917502][ T7049] do_syscall_64+0xcd/0x490 [ 208.917549][ T7049] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.917578][ T7049] RIP: 0033:0x7feeb4d8e929 [ 208.917601][ T7049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 208.917627][ T7049] RSP: 002b:00007feeb5b7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 208.917655][ T7049] RAX: ffffffffffffffda RBX: 00007feeb4fb5fa0 RCX: 00007feeb4d8e929 [ 208.917674][ T7049] RDX: 00002000000001c0 RSI: 00000000c1105517 RDI: 0000000000000003 [ 208.917692][ T7049] RBP: 00007feeb5b7f090 R08: 0000000000000000 R09: 0000000000000000 [ 208.917709][ T7049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 208.917726][ T7049] R13: 0000000000000000 R14: 00007feeb4fb5fa0 R15: 00007ffcb82dd698 [ 208.917765][ T7049] [ 209.225070][ C0] vkms_vblank_simulate: vblank timer overrun [ 209.493058][ T7056] FAULT_INJECTION: forcing a failure. [ 209.493058][ T7056] name failslab, interval 1, probability 0, space 0, times 0 [ 209.561477][ T7056] CPU: 1 UID: 0 PID: 7056 Comm: syz.0.232 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 209.561523][ T7056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 209.561540][ T7056] Call Trace: [ 209.561551][ T7056] [ 209.561564][ T7056] dump_stack_lvl+0x16c/0x1f0 [ 209.561614][ T7056] should_fail_ex+0x512/0x640 [ 209.561653][ T7056] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 209.561701][ T7056] should_failslab+0xc2/0x120 [ 209.561731][ T7056] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 209.561775][ T7056] ? alloc_inode+0xc3/0x240 [ 209.561813][ T7056] alloc_inode+0xc3/0x240 [ 209.561845][ T7056] iget_locked+0x2e4/0x830 [ 209.561880][ T7056] ? __pfx_iget_locked+0x10/0x10 [ 209.561915][ T7056] ? find_held_lock+0x2b/0x80 [ 209.561946][ T7056] ? kernfs_root+0xee/0x2a0 [ 209.561996][ T7056] kernfs_get_inode+0x48/0x460 [ 209.562039][ T7056] kernfs_iop_lookup+0x1a7/0x2d0 [ 209.562084][ T7056] ? __pfx_kernfs_iop_lookup+0x10/0x10 [ 209.562126][ T7056] lookup_open.isra.0+0x4d7/0x1580 [ 209.562188][ T7056] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 209.562252][ T7056] ? mnt_get_write_access+0x20c/0x300 [ 209.562295][ T7056] path_openat+0x893/0x2cb0 [ 209.562354][ T7056] ? __pfx_path_openat+0x10/0x10 [ 209.562399][ T7056] ? __lock_acquire+0xb8a/0x1c90 [ 209.562443][ T7056] do_filp_open+0x20b/0x470 [ 209.562488][ T7056] ? __pfx_do_filp_open+0x10/0x10 [ 209.562564][ T7056] ? alloc_fd+0x471/0x7d0 [ 209.562618][ T7056] do_sys_openat2+0x11b/0x1d0 [ 209.562652][ T7056] ? __pfx_do_sys_openat2+0x10/0x10 [ 209.562702][ T7056] __x64_sys_openat+0x174/0x210 [ 209.562739][ T7056] ? __pfx___x64_sys_openat+0x10/0x10 [ 209.562792][ T7056] do_syscall_64+0xcd/0x490 [ 209.562842][ T7056] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 209.562874][ T7056] RIP: 0033:0x7fab5078e929 [ 209.562898][ T7056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 209.562926][ T7056] RSP: 002b:00007fab515a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 209.562955][ T7056] RAX: ffffffffffffffda RBX: 00007fab509b5fa0 RCX: 00007fab5078e929 [ 209.562975][ T7056] RDX: 0000000000080200 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 209.562994][ T7056] RBP: 00007fab50810b39 R08: 0000000000000000 R09: 0000000000000000 [ 209.563012][ T7056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 209.563029][ T7056] R13: 0000000000000000 R14: 00007fab509b5fa0 R15: 00007ffd3843a058 [ 209.563070][ T7056] [ 212.685583][ T3478] [drm:drm_crtc_add_crc_entry] *ERROR* Overflow of CRC buffer, userspace reads too slow. [ 213.583979][ T7087] vhci_hcd: invalid port number 16 [ 213.600213][ T7087] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 213.690750][ T7091] FAULT_INJECTION: forcing a failure. [ 213.690750][ T7091] name failslab, interval 1, probability 0, space 0, times 0 [ 213.732859][ T7091] CPU: 0 UID: 0 PID: 7091 Comm: syz.3.242 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 213.732899][ T7091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 213.732914][ T7091] Call Trace: [ 213.732923][ T7091] [ 213.732934][ T7091] dump_stack_lvl+0x16c/0x1f0 [ 213.732982][ T7091] should_fail_ex+0x512/0x640 [ 213.733019][ T7091] ? __kmalloc_noprof+0xbf/0x510 [ 213.733053][ T7091] ? tracepoint_add_func+0x2a6/0xea0 [ 213.733079][ T7091] should_failslab+0xc2/0x120 [ 213.733100][ T7091] __kmalloc_noprof+0xd2/0x510 [ 213.733130][ T7091] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 213.733158][ T7091] tracepoint_add_func+0x2a6/0xea0 [ 213.733184][ T7091] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 213.733216][ T7091] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 213.733242][ T7091] tracepoint_probe_register+0xbf/0x100 [ 213.733271][ T7091] ? __pfx_tracepoint_probe_register+0x10/0x10 [ 213.733300][ T7091] ? __pfx_probe_sched_wakeup+0x10/0x10 [ 213.733340][ T7091] tracing_start_sched_switch+0xdc/0x1e0 [ 213.733366][ T7091] __ftrace_event_enable_disable+0x670/0x8b0 [ 213.733400][ T7091] __ftrace_set_clr_event_nolock+0x390/0xb70 [ 213.733437][ T7091] ftrace_set_clr_event+0x16e/0x330 [ 213.733457][ T7091] ? __pfx_ftrace_set_clr_event+0x10/0x10 [ 213.733483][ T7091] ftrace_event_write+0x243/0x290 [ 213.733502][ T7091] ? __pfx_ftrace_event_write+0x10/0x10 [ 213.733528][ T7091] ? __pfx_ftrace_event_write+0x10/0x10 [ 213.733546][ T7091] vfs_write+0x29d/0x1150 [ 213.733575][ T7091] ? __pfx___mutex_lock+0x10/0x10 [ 213.733604][ T7091] ? __pfx_vfs_write+0x10/0x10 [ 213.733636][ T7091] ? __fget_files+0x20e/0x3c0 [ 213.733668][ T7091] ksys_write+0x12a/0x250 [ 213.733694][ T7091] ? __pfx_ksys_write+0x10/0x10 [ 213.733727][ T7091] do_syscall_64+0xcd/0x490 [ 213.733764][ T7091] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 213.733782][ T7091] RIP: 0033:0x7f10c1b8e929 [ 213.733798][ T7091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 213.733816][ T7091] RSP: 002b:00007f10c29c9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 213.733833][ T7091] RAX: ffffffffffffffda RBX: 00007f10c1db6160 RCX: 00007f10c1b8e929 [ 213.733845][ T7091] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000008 [ 213.733855][ T7091] RBP: 00007f10c29c9090 R08: 0000000000000000 R09: 0000000000000000 [ 213.733866][ T7091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 213.733876][ T7091] R13: 0000000000000000 R14: 00007f10c1db6160 R15: 00007fffb108eb48 [ 213.733904][ T7091] [ 213.733913][ T7091] wakeup trace: Couldn't activate tracepoint probe to kernel_sched_wakeup_new [ 213.944293][ C0] vkms_vblank_simulate: vblank timer overrun [ 215.357227][ T7103] syz.3.245 (7103) used greatest stack depth: 19800 bytes left [ 216.108582][ T7113] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 216.538553][ T7116] netlink: 8 bytes leftover after parsing attributes in process `syz.1.250'. [ 218.222041][ T7152] FAULT_INJECTION: forcing a failure. [ 218.222041][ T7152] name failslab, interval 1, probability 0, space 0, times 0 [ 218.280485][ T7152] CPU: 1 UID: 0 PID: 7152 Comm: syz.3.259 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 218.280513][ T7152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 218.280523][ T7152] Call Trace: [ 218.280530][ T7152] [ 218.280537][ T7152] dump_stack_lvl+0x16c/0x1f0 [ 218.280569][ T7152] should_fail_ex+0x512/0x640 [ 218.280595][ T7152] ? __kmalloc_cache_node_noprof+0x5a/0x420 [ 218.280625][ T7152] should_failslab+0xc2/0x120 [ 218.280642][ T7152] __kmalloc_cache_node_noprof+0x6d/0x420 [ 218.280669][ T7152] ? __get_vm_area_node+0x101/0x330 [ 218.280694][ T7152] __get_vm_area_node+0x101/0x330 [ 218.280718][ T7152] __vmalloc_node_range_noprof+0x271/0x14b0 [ 218.280743][ T7152] ? store_rps_dev_flow_table_cnt+0x137/0x3e0 [ 218.280774][ T7152] ? store_rps_dev_flow_table_cnt+0x137/0x3e0 [ 218.280803][ T7152] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 218.280830][ T7152] ? _kstrtoull+0x145/0x200 [ 218.280850][ T7152] ? __pfx__kstrtoull+0x10/0x10 [ 218.280872][ T7152] ? store_rps_dev_flow_table_cnt+0x137/0x3e0 [ 218.280895][ T7152] __vmalloc_node_noprof+0xad/0xf0 [ 218.280918][ T7152] ? store_rps_dev_flow_table_cnt+0x137/0x3e0 [ 218.280943][ T7152] store_rps_dev_flow_table_cnt+0x137/0x3e0 [ 218.280969][ T7152] ? __pfx_store_rps_dev_flow_table_cnt+0x10/0x10 [ 218.280992][ T7152] ? find_held_lock+0x2b/0x80 [ 218.281011][ T7152] ? sysfs_file_kobj+0xe4/0x290 [ 218.281032][ T7152] ? __pfx_store_rps_dev_flow_table_cnt+0x10/0x10 [ 218.281064][ T7152] rx_queue_attr_store+0x53/0x80 [ 218.281082][ T7152] ? __pfx_rx_queue_attr_store+0x10/0x10 [ 218.281099][ T7152] sysfs_kf_write+0xef/0x150 [ 218.281122][ T7152] kernfs_fop_write_iter+0x351/0x510 [ 218.281141][ T7152] ? __pfx_sysfs_kf_write+0x10/0x10 [ 218.281165][ T7152] vfs_write+0x6c4/0x1150 [ 218.281192][ T7152] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 218.281212][ T7152] ? __pfx___mutex_lock+0x10/0x10 [ 218.281240][ T7152] ? __pfx_vfs_write+0x10/0x10 [ 218.281280][ T7152] ksys_write+0x12a/0x250 [ 218.281306][ T7152] ? __pfx_ksys_write+0x10/0x10 [ 218.281339][ T7152] do_syscall_64+0xcd/0x490 [ 218.281369][ T7152] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.281387][ T7152] RIP: 0033:0x7f10c1b8e929 [ 218.281403][ T7152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 218.281420][ T7152] RSP: 002b:00007f10c2a0b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 218.281438][ T7152] RAX: ffffffffffffffda RBX: 00007f10c1db5fa0 RCX: 00007f10c1b8e929 [ 218.281449][ T7152] RDX: 0000000000000081 RSI: 00002000000001c0 RDI: 0000000000000003 [ 218.281459][ T7152] RBP: 00007f10c2a0b090 R08: 0000000000000000 R09: 0000000000000000 [ 218.281470][ T7152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 218.281480][ T7152] R13: 0000000000000000 R14: 00007f10c1db5fa0 R15: 00007fffb108eb48 [ 218.281502][ T7152] [ 218.281623][ T7152] syz.3.259: vmalloc error: size 32, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 218.683448][ T7152] CPU: 1 UID: 0 PID: 7152 Comm: syz.3.259 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 218.683487][ T7152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 218.683503][ T7152] Call Trace: [ 218.683513][ T7152] [ 218.683524][ T7152] dump_stack_lvl+0x16c/0x1f0 [ 218.683575][ T7152] warn_alloc+0x248/0x3a0 [ 218.683634][ T7152] ? __pfx_warn_alloc+0x10/0x10 [ 218.683676][ T7152] ? rcu_is_watching+0x12/0xc0 [ 218.683705][ T7152] ? trace_kmalloc+0x2b/0xd0 [ 218.683730][ T7152] ? __kmalloc_cache_node_noprof+0x272/0x420 [ 218.683777][ T7152] ? __kasan_kmalloc+0x8a/0xb0 [ 218.683821][ T7152] ? __get_vm_area_node+0x208/0x330 [ 218.683869][ T7152] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 218.683923][ T7152] ? store_rps_dev_flow_table_cnt+0x137/0x3e0 [ 218.683993][ T7152] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 218.684037][ T7152] ? _kstrtoull+0x145/0x200 [ 218.684069][ T7152] ? __pfx__kstrtoull+0x10/0x10 [ 218.684104][ T7152] ? store_rps_dev_flow_table_cnt+0x137/0x3e0 [ 218.684138][ T7152] __vmalloc_node_noprof+0xad/0xf0 [ 218.684173][ T7152] ? store_rps_dev_flow_table_cnt+0x137/0x3e0 [ 218.684213][ T7152] store_rps_dev_flow_table_cnt+0x137/0x3e0 [ 218.684251][ T7152] ? __pfx_store_rps_dev_flow_table_cnt+0x10/0x10 [ 218.684286][ T7152] ? find_held_lock+0x2b/0x80 [ 218.684315][ T7152] ? sysfs_file_kobj+0xe4/0x290 [ 218.684345][ T7152] ? __pfx_store_rps_dev_flow_table_cnt+0x10/0x10 [ 218.684384][ T7152] rx_queue_attr_store+0x53/0x80 [ 218.684413][ T7152] ? __pfx_rx_queue_attr_store+0x10/0x10 [ 218.684441][ T7152] sysfs_kf_write+0xef/0x150 [ 218.684479][ T7152] kernfs_fop_write_iter+0x351/0x510 [ 218.684508][ T7152] ? __pfx_sysfs_kf_write+0x10/0x10 [ 218.684546][ T7152] vfs_write+0x6c4/0x1150 [ 218.684602][ T7152] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 218.684636][ T7152] ? __pfx___mutex_lock+0x10/0x10 [ 218.684678][ T7152] ? __pfx_vfs_write+0x10/0x10 [ 218.684751][ T7152] ksys_write+0x12a/0x250 [ 218.684791][ T7152] ? __pfx_ksys_write+0x10/0x10 [ 218.684843][ T7152] do_syscall_64+0xcd/0x490 [ 218.684889][ T7152] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.684918][ T7152] RIP: 0033:0x7f10c1b8e929 [ 218.684942][ T7152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 218.684979][ T7152] RSP: 002b:00007f10c2a0b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 218.685008][ T7152] RAX: ffffffffffffffda RBX: 00007f10c1db5fa0 RCX: 00007f10c1b8e929 [ 218.685028][ T7152] RDX: 0000000000000081 RSI: 00002000000001c0 RDI: 0000000000000003 [ 218.685046][ T7152] RBP: 00007f10c2a0b090 R08: 0000000000000000 R09: 0000000000000000 [ 218.685063][ T7152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 218.685081][ T7152] R13: 0000000000000000 R14: 00007f10c1db5fa0 R15: 00007fffb108eb48 [ 218.685122][ T7152] [ 218.685133][ T7152] Mem-Info: [ 219.007090][ T7153] ------------[ cut here ]------------ [ 219.013065][ T7153] WARNING: CPU: 1 PID: 7153 at kernel/tracepoint.c:358 tracepoint_probe_unregister+0x894/0xd70 [ 219.023659][ T7153] Modules linked in: [ 219.027823][ T7153] CPU: 1 UID: 0 PID: 7153 Comm: syz.2.258 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 219.040154][ T7153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 219.044368][ T7152] active_anon:51700 inactive_anon:0 isolated_anon:0 [ 219.044368][ T7152] active_file:17131 inactive_file:40791 isolated_file:0 [ 219.044368][ T7152] unevictable:768 dirty:268 writeback:0 [ 219.044368][ T7152] slab_reclaimable:11048 slab_unreclaimable:94135 [ 219.044368][ T7152] mapped:30633 shmem:43778 pagetables:1220 [ 219.044368][ T7152] sec_pagetables:0 bounce:0 [ 219.044368][ T7152] kernel_misc_reclaimable:0 [ 219.044368][ T7152] free:1279551 free_pcp:12587 free_cma:0 [ 219.050313][ T7153] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70 [ 219.095960][ T7152] Node 0 active_anon:206800kB inactive_anon:0kB active_file:68524kB inactive_file:162968kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:122532kB dirty:1068kB writeback:0kB shmem:173576kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11696kB pagetables:4760kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 219.103129][ T7153] Code: 41 5e 41 5f e9 8d 30 c2 09 e8 e8 27 fe ff 48 c7 c6 f0 50 bd 81 48 89 df e8 b9 c7 e4 ff eb 9f bb fe ff ff ff e8 cd 27 fe ff 90 <0f> 0b 90 eb 91 e8 c2 27 fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff [ 219.137522][ T30] audit: type=1807 audit(1750740438.387:3): UNKNOWN= res=0 [ 219.156339][ T7153] RSP: 0018:ffffc90003d6f8a0 EFLAGS: 00010287 [ 219.170093][ T7153] RAX: 000000000000953c RBX: 00000000fffffffe RCX: ffffc9000d800000 [ 219.178225][ T7153] RDX: 0000000000080000 RSI: ffffffff81bd6233 RDI: 0000000000000005 [ 219.179061][ T30] audit: type=1802 audit(1750740438.387:4): pid=7153 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.258" res=0 errno=0 [ 219.186265][ T7153] RBP: ffffffff8f529660 R08: 0000000000000005 R09: 0000000000000000 [ 219.211709][ T7153] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff81c349d0 [ 219.214011][ T7152] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:196kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:120kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 219.219746][ T7153] R13: ffff88801c283048 R14: 0000000000000002 R15: ffff88801c283000 [ 219.219775][ T7153] FS: 00007feeb5b5e6c0(0000) GS:ffff888124860000(0000) knlGS:0000000000000000 [ 219.219806][ T7153] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 219.219826][ T7153] CR2: 0000001b303c8ff8 CR3: 0000000077276000 CR4: 00000000003526f0 [ 219.219848][ T7153] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 219.219867][ T7153] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 219.219887][ T7153] Call Trace: [ 219.219899][ T7153] [ 219.219925][ T7153] ? __pfx_tracepoint_probe_unregister+0x10/0x10 [ 219.219992][ T7153] tracing_stop_cmdline_record+0x66/0xa0 [ 219.220043][ T7153] __ftrace_event_enable_disable+0x762/0x8b0 [ 219.220100][ T7153] ftrace_event_set_open+0x232/0x380 [ 219.329076][ T7153] do_dentry_open+0x744/0x1c10 [ 219.333952][ T7153] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 219.339829][ T7153] vfs_open+0x82/0x3f0 [ 219.344036][ T7153] path_openat+0x1de4/0x2cb0 [ 219.348736][ T7153] ? __pfx_path_openat+0x10/0x10 [ 219.353703][ T7153] ? __lock_acquire+0xb8a/0x1c90 [ 219.358679][ T7153] do_filp_open+0x20b/0x470 [ 219.363290][ T7153] ? __pfx_do_filp_open+0x10/0x10 [ 219.368458][ T7153] ? alloc_fd+0x471/0x7d0 [ 219.372822][ T7153] do_sys_openat2+0x11b/0x1d0 [ 219.377543][ T7153] ? __pfx_do_sys_openat2+0x10/0x10 [ 219.382874][ T7153] ? __pfx___might_resched+0x10/0x10 [ 219.388192][ T7153] __x64_sys_openat+0x174/0x210 [ 219.393083][ T7153] ? __pfx___x64_sys_openat+0x10/0x10 [ 219.398582][ T7153] do_syscall_64+0xcd/0x490 [ 219.403194][ T7153] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.409193][ T7153] RIP: 0033:0x7feeb4d8e929 [ 219.413656][ T7153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 219.433327][ T7153] RSP: 002b:00007feeb5b5e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 219.441822][ T7153] RAX: ffffffffffffffda RBX: 00007feeb4fb6080 RCX: 00007feeb4d8e929 [ 219.449964][ T7153] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 219.457948][ T7153] RBP: 00007feeb4e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 219.466077][ T7153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 219.474100][ T7153] R13: 0000000000000000 R14: 00007feeb4fb6080 R15: 00007ffcb82dd698 [ 219.482169][ T7153] [ 219.485208][ T7153] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 219.492521][ T7153] CPU: 1 UID: 0 PID: 7153 Comm: syz.2.258 Not tainted 6.16.0-rc3-syzkaller-00042-g78f4e737a53e #0 PREEMPT(full) [ 219.504420][ T7153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 219.514482][ T7153] Call Trace: [ 219.517780][ T7153] [ 219.520735][ T7153] dump_stack_lvl+0x3d/0x1f0 [ 219.525373][ T7153] panic+0x71c/0x800 [ 219.529290][ T7153] ? __pfx_panic+0x10/0x10 [ 219.533738][ T7153] ? show_trace_log_lvl+0x29b/0x3e0 [ 219.538964][ T7153] ? tracepoint_probe_unregister+0x894/0xd70 [ 219.544997][ T7153] check_panic_on_warn+0xab/0xb0 [ 219.549962][ T7153] __warn+0xf6/0x3c0 [ 219.553877][ T7153] ? tracepoint_probe_unregister+0x894/0xd70 [ 219.559967][ T7153] report_bug+0x3c3/0x580 [ 219.564314][ T7153] ? tracepoint_probe_unregister+0x894/0xd70 [ 219.570317][ T7153] handle_bug+0x184/0x210 [ 219.574739][ T7153] exc_invalid_op+0x17/0x50 [ 219.579256][ T7153] asm_exc_invalid_op+0x1a/0x20 [ 219.584119][ T7153] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70 [ 219.590725][ T7153] Code: 41 5e 41 5f e9 8d 30 c2 09 e8 e8 27 fe ff 48 c7 c6 f0 50 bd 81 48 89 df e8 b9 c7 e4 ff eb 9f bb fe ff ff ff e8 cd 27 fe ff 90 <0f> 0b 90 eb 91 e8 c2 27 fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff [ 219.610553][ T7153] RSP: 0018:ffffc90003d6f8a0 EFLAGS: 00010287 [ 219.616636][ T7153] RAX: 000000000000953c RBX: 00000000fffffffe RCX: ffffc9000d800000 [ 219.624615][ T7153] RDX: 0000000000080000 RSI: ffffffff81bd6233 RDI: 0000000000000005 [ 219.632680][ T7153] RBP: ffffffff8f529660 R08: 0000000000000005 R09: 0000000000000000 [ 219.640656][ T7153] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff81c349d0 [ 219.648646][ T7153] R13: ffff88801c283048 R14: 0000000000000002 R15: ffff88801c283000 [ 219.656645][ T7153] ? __pfx_probe_sched_switch+0x10/0x10 [ 219.662222][ T7153] ? tracepoint_probe_unregister+0x893/0xd70 [ 219.668232][ T7153] ? __pfx_tracepoint_probe_unregister+0x10/0x10 [ 219.674601][ T7153] tracing_stop_cmdline_record+0x66/0xa0 [ 219.680267][ T7153] __ftrace_event_enable_disable+0x762/0x8b0 [ 219.686290][ T7153] ftrace_event_set_open+0x232/0x380 [ 219.691618][ T7153] do_dentry_open+0x744/0x1c10 [ 219.696403][ T7153] ? __pfx_ftrace_event_set_open+0x10/0x10 [ 219.702233][ T7153] vfs_open+0x82/0x3f0 [ 219.706326][ T7153] path_openat+0x1de4/0x2cb0 [ 219.711031][ T7153] ? __pfx_path_openat+0x10/0x10 [ 219.716020][ T7153] ? __lock_acquire+0xb8a/0x1c90 [ 219.720982][ T7153] do_filp_open+0x20b/0x470 [ 219.725504][ T7153] ? __pfx_do_filp_open+0x10/0x10 [ 219.730572][ T7153] ? alloc_fd+0x471/0x7d0 [ 219.734924][ T7153] do_sys_openat2+0x11b/0x1d0 [ 219.739614][ T7153] ? __pfx_do_sys_openat2+0x10/0x10 [ 219.744840][ T7153] ? __pfx___might_resched+0x10/0x10 [ 219.750267][ T7153] __x64_sys_openat+0x174/0x210 [ 219.755204][ T7153] ? __pfx___x64_sys_openat+0x10/0x10 [ 219.760710][ T7153] do_syscall_64+0xcd/0x490 [ 219.765238][ T7153] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.771162][ T7153] RIP: 0033:0x7feeb4d8e929 [ 219.775603][ T7153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 219.795310][ T7153] RSP: 002b:00007feeb5b5e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 219.803738][ T7153] RAX: ffffffffffffffda RBX: 00007feeb4fb6080 RCX: 00007feeb4d8e929 [ 219.811802][ T7153] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 219.819782][ T7153] RBP: 00007feeb4e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 219.827755][ T7153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 219.835820][ T7153] R13: 0000000000000000 R14: 00007feeb4fb6080 R15: 00007ffcb82dd698 [ 219.843818][ T7153] [ 219.847149][ T7153] Kernel Offset: disabled [ 219.851483][ T7153] Rebooting in 86400 seconds..