last executing test programs: 16m9.414888273s ago: executing program 0 (id=1): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0xfffffffffffffffd, 0x400008, 0xdf, 0x9b72, 0x2, 0x7ffe) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r1, 0xffffffffffdffe00, &(0x7f00000005c0)="176e40e71e8abecd1d5253ee299bde13c51d5c50aaa205bb0dd7b56377d279135e09b5a85a90cbe6edf472e6059c9d1cb757a592888877f7a467195f93ba9a742a96c30d9d03701e846953f0bfd0fd91bab92c8098e6c6781f0b431354344523f14e86e07710eb0af67923af6eb7f06d72d96aa89cbb8e565351aeeb40b7de09485bd29835295de78ed039a1bbdb49885e92f17c8fcffd6705e7cc00ae887e1373838caf86a4ed5575a2993d4f3f368125339e3fa524b70accfe269243e64bfa323ff8839efe650bfb0319becdb921c84777f99ca5ae65a8275295f643") openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) socket(0xa, 0x1, 0x100) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x303, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0xfffffffffffffffb) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000180), 0x404000, 0x0) r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/conf/batadv_slave_0/arp_announce\x00', 0x141241, 0x0) pwrite64$auto(r3, &(0x7f0000000000)='./cgroup/memory.pressure\x00', 0x6bc, 0x5) readahead$auto(r3, 0x4, 0x4) mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000) read$auto_dfs_cpu_ops_debugfs(r1, &(0x7f0000000240)=""/205, 0xcd) r4 = io_uring_setup$auto(0x6, 0x0) r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/controlC2\x00', 0x400a42, 0x0) mmap$auto(0x8, 0x6, 0x6, 0x2113, 0xffffffffffffffff, 0x4) ioctl$auto(r5, 0xc1205531, r4) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/tasks\x00', 0x63102, 0x0) sendfile$auto(r6, r6, 0x0, 0x1) sysfs$auto(0x5, 0x100000074e, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x2) 16m7.259137127s ago: executing program 0 (id=6): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x6) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r1, r1, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r1, 0x1) bind$auto(0x3, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x23, 0xf, 0x8, 0x0, 0x0) recvfrom$auto(r0, &(0x7f0000000040)="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", 0x7, 0x9, &(0x7f0000001040)=@nl=@proc={0x10, 0x0, 0x25dfdbfd, 0x40}, &(0x7f0000001080)=0x5) 15m52.127040932s ago: executing program 32 (id=6): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x6) r1 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r1, r1, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x0) landlock_restrict_self$auto(r1, 0x1) bind$auto(0x3, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x23, 0xf, 0x8, 0x0, 0x0) recvfrom$auto(r0, &(0x7f0000000040)="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", 0x7, 0x9, &(0x7f0000001040)=@nl=@proc={0x10, 0x0, 0x25dfdbfd, 0x40}, &(0x7f0000001080)=0x5) 14m27.229147539s ago: executing program 2 (id=218): mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x580f, 0x1, 0x8000000008011, 0x3, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) open$dir(&(0x7f00000001c0)='./file0\x00', 0x201, 0x0) open(&(0x7f00000002c0)='./file0\x00', 0x200, 0x1c7) openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/pcmC1D0c\x00', 0x80080, 0x0) write$auto(0x1, 0x0, 0x80000000) newfstatat$auto(0xffffffffffffffff, 0x0, &(0x7f0000000380)={0x8, 0x6, 0x5, 0x0, 0x0, 0xee01, 0x0, 0x2000000006, 0x20000000000003, 0x0, 0x7, 0x8, 0x5, 0x1000000001, 0x4, 0x1, 0x53}, 0x1) ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socketpair$auto(0x1, 0x2164, 0x8000000000000000, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) write$auto(0x3, 0x0, 0x7fffffff) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f00000004c0)='nfsd\x00~T\x93Q\x92-|\x1ei=\'8&\x13~\xd9t\xec\v\xc3\xfd\x8b\x1a\xd0wWXfa\f\v_\x9e:\x88\x9ej\x1aYAW\xa5a\x13\x9c\xae\x17\x7fob\xde\xb3\\\x94\xfal\xf2Y\xfd+\xf2\xf8\x88\xc4\xb8fI\xde6#mP\xe7\x85\'\x1b\x04\xcd\x1fW\x88T\xe9\x1e\xb7\xa20\t\x17\xc16\f\x05?-\xb2\x91\x1f\x8b}\n\xd7~\xdd\xb6\xee\xf1 \x9d\xd8\xd2kt}\xe3\xe4Q\xc4\x81\x11\xc0,\x89\xa5)\xf0y4\xb6\x9e\xf0h\x7f\x04\x91\x92|b\xe9\xcd\x10\x92\xe2\x03Op\x14Fe\xb6\x11\x9c\xe5\xe4X+\x94\xe4rJ\xf1\xa6\x86\xf0\xbd\x04uin', 0x800, 0x0) mount$auto(0x0, &(0x7f0000000000)='}[,&*}\x00', 0x0, 0x3375, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_IPVS_CMD_DEL_DAEMON(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="1461d653", @ANYRES16=0x0, @ANYBLOB="010029bd7000fedbdf250a000000"], 0x14}, 0x1, 0x0, 0x0, 0x40014}, 0x0) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0) ioctl$auto_OSS_GETVERSION2(r2, 0x80044d76, &(0x7f0000000080)) lseek$auto(0x3, 0x0, 0x1) munmap$auto(0x8000, 0xffffffff) pread64$auto(0xffffffffffffffff, 0x0, 0x7, 0x2000008001) write$auto(0x1, 0x0, 0x80000000) modify_ldt$auto(0x400, &(0x7f0000000180)="0c60fef8021d89bc23111abd60b075124a7e38e87ef8d8e4ca13d39ee47dc6f8f4", 0x80000001) close_range$auto(0x2, 0xa, 0x0) 14m25.492879336s ago: executing program 2 (id=223): mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) io_uring_setup$auto(0x86, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) setitimer$auto(0x0, &(0x7f0000000040)={{0xfffffffffffffff9, 0x7}, {0x8000, 0x12}}, &(0x7f0000000080)={{0x7, 0x2}, {0x2, 0x7}}) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0x4004ae86, 0x0) 14m24.913640835s ago: executing program 2 (id=225): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x24c802, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) ioperm$auto(0x3b, 0xf99b, 0x6) close_range$auto(0x0, 0xffffffffffffefff, 0x4000000000002) fanotify_init$auto(0x5, 0x2) open(&(0x7f0000000000)='./file0\x00', 0x7ffd, 0x10c) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5f0027617c680b39b053272335"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) eventfd$auto(0x7) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYRES8, @ANYRES8=r0, @ANYBLOB="6829a2bddb8be0ad03390c9573ce71b4908d12b6244a73fc9529309e59c710a850c76a18a77d85462bb2bf89321b9b968c287ef9bcce011530d9abf09e53015e25f24c39f832e6e4d146a44ffcd5970deca8db38ea8af05f0b6fda73d78db683bb7b7e3a6d11a785ca8a10a89d0f8921387f7a00ab2dfd489d5667a92d1a017716dcdb454782ce6de8e889f9cbcf897ffdaf6a3c677bc67b43caafd2b10f7492d76950dd00edea34208c72651b0a29625414bb1f8a9681e655b2be63e254a41a3e54c8f01c9ff60aeda0d2004b711755906cecf7"], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0) 14m24.227677685s ago: executing program 2 (id=227): unshare$auto(0x40000080) (async) r0 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010028bd7000fbdbdf250f00000008000317", @ANYRES32=r2, @ANYBLOB="0500350006000000"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x140080e4) (async) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xfff) (async) write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) (async) msync$auto(0x1ffff000, 0x1800000ff00fffc, 0x804) (async) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) (async) sendmsg$auto_NL80211_CMD_SET_REKEY_OFFLOAD(r3, 0x0, 0x4004) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x0) (async) msync$auto(0xfffffffffffff001, 0xd, 0x1) (async) r5 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r5, r5, 0x0) (async) r6 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video24\x00', 0xa240, 0x0) (async) r7 = socket(0x1e, 0x1, 0x0) connect$auto(r7, &(0x7f0000000000)=@tipc=@id={0x1e, 0x3, 0x2, {0x4e20, 0xf5}}, 0x10) (async) ioctl$auto(r6, 0xc0585611, r6) (async) r8 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000400), 0xffffffffffffffff) (async) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'batadv0\x00', 0x0}) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async) madvise$auto(0x0, 0xffffffffffff0005, 0x19) readlink$auto(&(0x7f0000000c80)='\x00', 0x0, 0x7) (async) sendmsg$auto_BATADV_CMD_GET_DAT_CACHE(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[@ANYBLOB="00000000a7da88d83295bbb900c56634ba26d3a0c2c2ee56610337dcea012c2e9fd13554444710b45fe548e5d66e0af9b4080a217262a47d0f9a135ae3db1247136633a51fbbf80001000000000000acbe07da60e2d59c40", @ANYRES16=r8, @ANYBLOB="57e72bbd7000ffdbdf250d00000008000300", @ANYRES32=r9, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x10) 14m22.873894255s ago: executing program 2 (id=232): mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x1, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) r2 = syz_genetlink_get_family_id$auto_hsr(&(0x7f00000011c0), r1) r3 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000580)='/dev/mtd0\x00', 0x1, 0x0) ioctl$auto_MEMERASE64(r3, 0x40104d14, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) sendmsg$auto_HSR_C_GET_NODE_STATUS(r0, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB=')\t'], 0x28}, 0x1, 0x0, 0x0, 0x240008c5}, 0xc0) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) preadv2$auto(0x3, &(0x7f0000001000)={0x0, 0x80000000}, 0x5, 0xffffffffffffffff, 0x7, 0x2e) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) r4 = socket(0x2, 0x1, 0x0) setsockopt$auto(r4, 0x6, 0x16, 0x0, 0x40) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/button/parameters/lid_init_state\x00', 0x169882, 0x0) sendfile$auto(r5, r5, 0x0, 0x8) tkill$auto(0x1, 0x7) 14m21.963991317s ago: executing program 2 (id=236): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_wireguard(0x0, r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'wg0\x00'}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x15) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x20040844) r1 = io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0) read$auto(r2, 0x0, 0x39b8) r3 = openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) read$auto_debug_help_fops_orangefs_debugfs(r3, &(0x7f0000000340)=""/231, 0xe7) writev$auto(0x3, 0x0, 0x8) r4 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000140), 0x101, 0x0) dup2$auto(r0, r4) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/nfsd.fh/content\x00', 0x40c80, 0x0) r6 = socket(0x29, 0x2, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) fanotify_init$auto(0xfff, 0x100) r7 = ioctl$auto_NS_GET_PARENT(r1, 0xb702, 0x0) r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r6) sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f00000009c0)={0x8b0, r8, 0x300, 0x70bd25, 0x25dfdbfd, {}, [@NL80211_ATTR_VENDOR_DATA={0x12, 0xc5, "4a80fe64aacfc7dfd4cf83c13147"}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x1a35}, @NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x8}, @NL80211_ATTR_STA_SUPPORTED_CHANNELS={0x102, 0xbd, "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"}, @NL80211_ATTR_MPATH_NEXT_HOP={0xbd, 0x1a, "551723a69f8001ae0a44fd6294cbb41c90c180b3f86265d93e9446c87183a2c896f6487137843c9d4e0494bdd88cb01e4c050787e20f3157eecfa7cdf45c0e780133eba41382ffaf39414d60b879eb8566f4e7ff560d3ec05a39b7ca08bdf129594d97aee86b261d3cd21fb390da28dce5de26d70250b1b4199af2ca78d1114febadccf79ee4f7f1b91656cfd9b1868fa598610b8d6fcdaf5c8ea188f2ca1c8ba9df3cf7b9f6e1eb57e22377aa4c8158d4a941d2810013b590"}, @NL80211_ATTR_IE_PROBE_RESP={0x6af, 0x7f, "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"}]}, 0x8b0}, 0x1, 0x0, 0x0, 0x80}, 0x8000) read$auto(r7, 0x0, 0x20) pread64$auto(r5, &(0x7f0000000540)='veth1\x00\xe0,\x17\xa0\xf7\x89Pl\x84K?\x01\x84\xa1i\xe00\x81p\xa0U \f\xdbP`:\xe2\'\xa7\xbf\xbd\x04\x18\xad\x90I^\x99M\xe0W\x14\x11\xf4\xeb\x90:\v\xc5\x13*\xfe\x90\xb1\xa9O\xa5\x05\xaa\x8fTi\xd6\x88Q\xda\xca', 0x20000000003f, 0x1) r9 = fcntl$auto_F_RDLCK(r2, 0x8000, 0x0) bpf$auto_BPF_MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)=@bpf_attr_4={0xfffffffffffffff9, r4, 0x8769, r9}, 0x1ace) 14m21.430647179s ago: executing program 33 (id=236): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_wireguard(0x0, r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'wg0\x00'}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x15) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x20040844) r1 = io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58) r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0) read$auto(r2, 0x0, 0x39b8) r3 = openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) read$auto_debug_help_fops_orangefs_debugfs(r3, &(0x7f0000000340)=""/231, 0xe7) writev$auto(0x3, 0x0, 0x8) r4 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000140), 0x101, 0x0) dup2$auto(r0, r4) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/nfsd.fh/content\x00', 0x40c80, 0x0) r6 = socket(0x29, 0x2, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) fanotify_init$auto(0xfff, 0x100) r7 = ioctl$auto_NS_GET_PARENT(r1, 0xb702, 0x0) r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r6) sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f00000009c0)={0x8b0, r8, 0x300, 0x70bd25, 0x25dfdbfd, {}, [@NL80211_ATTR_VENDOR_DATA={0x12, 0xc5, "4a80fe64aacfc7dfd4cf83c13147"}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x1a35}, @NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x8}, @NL80211_ATTR_STA_SUPPORTED_CHANNELS={0x102, 0xbd, "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"}, @NL80211_ATTR_MPATH_NEXT_HOP={0xbd, 0x1a, "551723a69f8001ae0a44fd6294cbb41c90c180b3f86265d93e9446c87183a2c896f6487137843c9d4e0494bdd88cb01e4c050787e20f3157eecfa7cdf45c0e780133eba41382ffaf39414d60b879eb8566f4e7ff560d3ec05a39b7ca08bdf129594d97aee86b261d3cd21fb390da28dce5de26d70250b1b4199af2ca78d1114febadccf79ee4f7f1b91656cfd9b1868fa598610b8d6fcdaf5c8ea188f2ca1c8ba9df3cf7b9f6e1eb57e22377aa4c8158d4a941d2810013b590"}, @NL80211_ATTR_IE_PROBE_RESP={0x6af, 0x7f, "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"}]}, 0x8b0}, 0x1, 0x0, 0x0, 0x80}, 0x8000) read$auto(r7, 0x0, 0x20) pread64$auto(r5, &(0x7f0000000540)='veth1\x00\xe0,\x17\xa0\xf7\x89Pl\x84K?\x01\x84\xa1i\xe00\x81p\xa0U \f\xdbP`:\xe2\'\xa7\xbf\xbd\x04\x18\xad\x90I^\x99M\xe0W\x14\x11\xf4\xeb\x90:\v\xc5\x13*\xfe\x90\xb1\xa9O\xa5\x05\xaa\x8fTi\xd6\x88Q\xda\xca', 0x20000000003f, 0x1) r9 = fcntl$auto_F_RDLCK(r2, 0x8000, 0x0) bpf$auto_BPF_MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)=@bpf_attr_4={0xfffffffffffffff9, r4, 0x8769, r9}, 0x1ace) 5.919604989s ago: executing program 3 (id=4746): r0 = socket(0xa, 0x2, 0x3a) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0xffffffffffffffff, 0x10008000) mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r2 = mq_open$auto(&(0x7f00000000c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\xbb\x192\x1c4\x86\xc0\xc1-\xd5\x10\xc3\xfc*[8\x89h\xc5\xba\xff\xc8u5f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) syz_clone(0x10040411, 0x0, 0x0, 0x0, 0x0, 0x0) 3.489717653s ago: executing program 4 (id=4759): membarrier$auto_MEMBARRIER_CMD_QUERY(0x0, 0x3, 0xd) mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) r0 = socket(0x1d, 0x3, 0x1) setsockopt$auto(r0, 0x65, 0x5, 0x0, 0x4) madvise$auto(0x0, 0x2000040080000004, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa001, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x8, 0x8000) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv6/conf/default/ioam6_id_wide\x00', 0x40100, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x81, 0x0, 0x0, 0x0, 0x0) write$auto(r3, &(0x7f0000000240)='//ev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/conf/ip6tnl0/bootp_relay\x00', 0x5014c0, 0x0) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(r4, 0x0, 0xfffffdef) read$auto(r2, 0x0, 0x1ff) write$auto(0x3, 0x0, 0xfdef) mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000) io_uring_setup$auto(0x59, &(0x7f0000000300)={0x7fffffff, 0x80000d, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [0x9, 0x3], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0x5cd3, 0x1, 0x40, 0x76c5, 0x8, 0xfffff000}}) write$auto(r1, 0x0, 0x100000a3d9) mprotect$auto(0x200000000000, 0x806121, 0x6eb) 3.414897648s ago: executing program 3 (id=4760): membarrier$auto_MEMBARRIER_CMD_QUERY(0x0, 0x3, 0xd) mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) r0 = socket(0x1d, 0x3, 0x1) setsockopt$auto(r0, 0x65, 0x5, 0x0, 0x4) madvise$auto(0x0, 0x2000040080000004, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa001, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x8, 0x8000) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv6/conf/default/ioam6_id_wide\x00', 0x40100, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x81, 0x0, 0x0, 0x0, 0x0) write$auto(r3, &(0x7f0000000240)='//ev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/conf/ip6tnl0/bootp_relay\x00', 0x5014c0, 0x0) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(r4, 0x0, 0xfffffdef) read$auto(r2, 0x0, 0x1ff) write$auto(0x3, 0x0, 0xfdef) mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000) io_uring_setup$auto(0x59, &(0x7f0000000300)={0x7fffffff, 0x80000d, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [0x9, 0x3], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0x5cd3, 0x1, 0x40, 0x76c5, 0x8, 0xfffff000}}) write$auto(r1, 0x0, 0x100000a3d9) mprotect$auto(0x200000000000, 0x806121, 0x6eb) 2.563466614s ago: executing program 1 (id=4766): open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(0x3, 0x400, 0x1) open(&(0x7f0000000080)='./file0\x00', 0x40, 0x0) open(&(0x7f0000000800)='./file0\x00', 0x2040, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0xffffffffffffffff, 0x0) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) sendmsg$auto_NL80211_CMD_EPCS_CFG(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="9c000000", @ANYRES16=r1, @ANYBLOB="100027bd7000fcdbdf259d00000086003a014b0e58fbf0b8e3b55b722339aed48a1775a4c523ce7a5029988b44314ce6517967f5928a94525933a4259a95a56c7b3828fdec24adbec636125b5f2c10c9b2df2b715f8cd16742f876a80622f6a8046e8321169265fce1ac05d882c6d0bc137e1068ee8a29cf3e264bf8305562b1422cb004e17ae26496b62adf00"/150], 0x9c}, 0x1, 0x0, 0x0, 0x44800}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x80003, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'tunl0\x00', 0x0}) sendto$auto(0x3, 0x0, 0x13, 0xfffffff8, &(0x7f0000000440)=@xdp={0x2c, 0xdd86, r2, 0x2f}, 0x22) 2.519713708s ago: executing program 5 (id=4767): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/msr/perf_event_mux_interval_ms\x00', 0x982, 0x0) sendfile$auto(r0, r0, 0x0, 0x3) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) modify_ldt$auto(0x1, 0x0, 0x10) modify_ldt$auto(0x0, 0x0, 0xfffffffffffffffb) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x0, 0x0) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) ioctl$auto(0x3, 0x402c542b, 0x38) ioctl$auto_TIOCSTI2(r1, 0x5412, 0x0) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r2 = prctl$auto(0x35, 0x8, 0x10, 0x0, 0x0) sendmsg$auto_ETHTOOL_MSG_LINKSTATE_GET(r2, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="85f35981", @ANYRES16=0x0, @ANYBLOB="000826bd7000fbdbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0x40080c0}, 0x20000000) mmap$auto(0x0, 0x4020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x3, 0x3) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x100, 0x0) read$auto(r3, 0x0, 0x20) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r5) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_GROUP(r5, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010029bd7000fedbdf25040000000c000180080001000100000010000a800c000180080001000100000008000800", @ANYRES32=r7, @ANYBLOB="f65f9a1a0a16890604055991c8bed3a80a01ef849081816c8a47cf916e0e35167888b3e5e628c83fe7ba0e8c6deaba7d080e848f6e675d05728e7ee21ae211db903cb0cc6c4701c36fd558c120e595a220459d8eb1cdc4468972db9500"/105], 0x38}, 0x1, 0x0, 0x0, 0x44000}, 0x14) r8 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r4, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010326bd7000fcdbdf242d000000180001801400020069705f76746910000000000000000000"], 0x2c}, 0x1, 0x1000000, 0x0, 0x24048012}, 0x80) 2.46875579s ago: executing program 4 (id=4768): io_uring_register$auto_IORING_UNREGISTER_IOWQ_AFF(0xffffffffffffffff, 0x12, 0x0, 0x144f) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0) ioctl$auto_USBDEVFS_SUBMITURB32(r0, 0x802c550a, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x4000001f, 0x400, 0x9}]}) (fail_nth: 3) 2.360943158s ago: executing program 3 (id=4769): socket(0x1b, 0x3, 0x1) madvise$auto(0x1, 0x2000040080000004, 0xe) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x62742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0xfffffffffffffffa) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xa, 0x0, 0x0, 0x0, 0x0) r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) syz_clone(0x4040400, 0x0, 0x0, 0x0, 0x0, 0x0) readv$auto(0x3, 0x0, 0x1) mmap$auto(0xf728, 0x408000000000003, 0x40, 0x14, r2, 0x100001) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x30}, 0x1, 0x0, 0x0, 0x20018080}, 0x12004014) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x309c02, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/9/smp_affinity\x00', 0x129542, 0x0) read$auto(0x3, 0x0, 0x7) writev$auto(0x3, &(0x7f0000000180)={0x0, 0x7111}, 0x10000000c) socket(0x5, 0x4, 0x8) close_range$auto(0x2, 0x8, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000340), 0x400a03, 0x0) r3 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/bus/usb/drivers/ums-alauda/unbind\x00', 0x5e6a42, 0x0) bpf$auto_BPF_MAP_DELETE_ELEM(0x3, &(0x7f0000000240)=@link_detach={r3}, 0x6) sendfile$auto(r4, r4, 0x0, 0x2400000) sendfile$auto(0x1, 0x3, 0x0, 0xd551) 1.858467122s ago: executing program 1 (id=4770): r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/keys\x00', 0x8af00, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={0x2c, r2, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x4040000) pread64$auto(r0, 0x0, 0x8100000041, 0x413e) 1.778117617s ago: executing program 1 (id=4771): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0xf1, 0x2, 0x8000) bpf$auto(0xfffffffe, &(0x7f00000001c0)=@query={@target_fd, 0x8, 0x3, 0x5, 0xff, @count=0xe35c, 0x0, 0x5, 0x80000000000006, 0xd9, 0xffffffff}, 0x6f2) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) io_uring_setup$auto(0x8, &(0x7f0000000140)={0x3ff, 0x3, 0x9, 0x10001, 0x12, 0xc05, 0xffffffffffffffff, [0x7ff, 0xfff, 0x8], {0x9, 0x1, 0x69, 0x0, 0x400, 0x3, 0x3fe0, 0x26c, 0x1000000000e8}, {0x2, 0x2, 0x54f1, 0x0, 0x101, 0xff, 0x8d8, 0xa, 0x3}}) sysfs$auto(0x2, 0x23, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22040, 0x75) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) r0 = socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.689972176s ago: executing program 4 (id=4772): unshare$auto(0x40000080) mmap$auto(0x100000001, 0x20009, 0x4400000000df, 0xc157, 0x101000000000000, 0x7) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x80000001, 0xe983, 0x8, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x2, 0x1, 0x0) epoll_create$auto(0x4) mq_open$auto(0x0, 0x5, 0x3, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000000c0)={[0x1ff, 0x7, 0x9, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x3ff, 0x3, 0x3, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0x1]}, 0x0) sched_get_priority_min$auto(0x40) socket(0x2, 0xa, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) madvise$auto(0x0, 0xffffffffffff0005, 0x19) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video43\x00', 0x129900, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video43\x00', 0x129900, 0x0) write$auto(0xca, 0x0, 0x7f) mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000) io_uring_setup$auto(0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0) futex_wait$auto(0x0, 0x0, 0x7f, 0x2, 0x0, 0x1) socket(0x29, 0x2, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/self/net/kcm_stats\x00', 0x8282, 0x0) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000040)=""/19, 0x13) futex_wake$auto(0x0, 0x7, 0xfffffffb, 0x2) 1.650868665s ago: executing program 5 (id=4773): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x40008000) syz_genetlink_get_family_id$auto_ioam6(0x0, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x2, 0x0) socket(0x28, 0x1, 0x0) writev$auto(0x3, 0x0, 0x8009) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_flow(0x0, 0xffffffffffffffff) sendmsg$auto_OVS_FLOW_CMD_DEL(r0, 0x0, 0x800) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) mmap$auto(0x3, 0x402000b, 0x2000006, 0xeb1, 0x401, 0xfff) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x0) r1 = io_uring_setup$auto(0x6426, 0x0) io_uring_register$auto(r0, 0x0, &(0x7f0000000000), 0x3) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) syz_genetlink_get_family_id$auto_nl802154(0x0, r1) r2 = syz_clone(0x20a08200, 0x0, 0x0, 0x0, 0x0, 0x0) setpgid$auto(0x0, r2) r3 = gettid() r4 = getpid() rt_tgsigqueueinfo$auto(r4, r3, 0x21, &(0x7f0000000400)={@siginfo_0_0={0x7, 0x4, 0xccdf, @_sigfault={0x0, @_addr_pkey={"f58bd373dbacb552", 0x8}}}}) sendmsg$auto_NL802154_CMD_SET_LBT_MODE(r0, 0x0, 0x20008000) unshare$auto(0x40000080) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x4000000000000008, 0xffffffffffffffff, 0x9) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) io_uring_setup$auto(0x58, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/usbmon8\x00', 0x640, 0x0) 1.557921607s ago: executing program 1 (id=4774): membarrier$auto_MEMBARRIER_CMD_QUERY(0x0, 0x3, 0xd) mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000) r0 = socket(0x1d, 0x3, 0x1) setsockopt$auto(r0, 0x65, 0x5, 0x0, 0x4) madvise$auto(0x0, 0x2000040080000004, 0xe) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa001, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x8, 0x8000) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv6/conf/default/ioam6_id_wide\x00', 0x40100, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x81, 0x0, 0x0, 0x0, 0x0) write$auto(r3, &(0x7f0000000240)='//ev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/conf/ip6tnl0/bootp_relay\x00', 0x5014c0, 0x0) msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(r4, 0x0, 0xfffffdef) read$auto(r2, 0x0, 0x1ff) write$auto(0x3, 0x0, 0xfdef) mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000) io_uring_setup$auto(0x59, &(0x7f0000000300)={0x7fffffff, 0x80000d, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [0x9, 0x3], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0x5cd3, 0x1, 0x40, 0x76c5, 0x8, 0xfffff000}}) write$auto(r1, 0x0, 0x100000a3d9) mprotect$auto(0x200000000000, 0x806121, 0x6eb) 1.474371316s ago: executing program 4 (id=4775): connect$auto(0xffffffffffffffff, &(0x7f0000000080)=@l2tp={0x2, 0x0, @loopback}, 0x54) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0xffffffffffffffff, 0x0, 0x400fffd, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) ioperm$auto(0x400, 0x7f, 0xd) socket$nl_generic(0x10, 0x3, 0x10) lsm_set_self_attr$auto(0x1, 0x0, 0x7, 0x6) sendmmsg$auto(0x3, 0x0, 0x9a5, 0x47ffff7a) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x800000404, 0x8000) setrlimit$auto(0x406, 0x0) socket(0x25, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, r0, 0x8000) openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40002, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x20) bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@generic={0xa, "2c551d000000ff00"}, 0x66) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop12\x00', 0x60742, 0x0) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0) ioctl$auto_USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x1c, 0x10, 0x4, 0x7fb, &(0x7f00000002c0)}) 1.008814835s ago: executing program 5 (id=4776): mkdir$auto(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', 0x8cd) 964.0716ms ago: executing program 4 (id=4777): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) mmap$auto(0x2, 0x400007, 0xe895, 0x16, r0, 0x401) r1 = openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000300), 0x80, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) fadvise64$auto_POSIX_FADV_NORMAL(r1, 0x7, 0xd, 0x0) write$auto(0x3, 0x0, 0x7fffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x14, r2, 0x300, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x70, 0xdf, 0x9b72, 0x2, 0x80000000008000) setsockopt$auto(0xffffffffffffffff, 0x107, 0x5, 0x0, 0xce24) connect$auto(0x3, 0x0, 0x55) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sda\x00', 0x14b602, 0x0) openat$auto_mgts_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0xa001, 0x0) bpf$auto(0x0, 0x0, 0x0) read$auto(0x3, 0x0, 0x80) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) 819.28678ms ago: executing program 5 (id=4778): mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) socket(0x9, 0x2, 0x5b08) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) r0 = socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r3], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/midi2\x00', 0x115080, 0x0) sendmsg$auto_NL80211_CMD_UPDATE_CONNECT_PARAMS(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f0000000ac0)={0xac0, r1, 0x200, 0x70bd25, 0x25dfdbfd, {}, [@NL80211_ATTR_KEY={0x201, 0x50, 0x0, 0x1, [@typed={0x9, 0x72, 0x0, 0x0, @str=')^%*\x00'}, @typed={0x4, 0xb}, @typed={0xf5, 0xc1, 0x0, 0x0, @binary="ac5249668a68825d6a1d764de9f60b9d6e348d0152c4bdafe35c4f41367ee6365b0e623ac0643c26bc427c991e4aa1839fded2a461fbe712db8450667005503d4ea4695823c4af2cd160421685fa837b9875f5c41c83c5f51c34596faa5600113a0ecf163be964c3659f14699e93265f1f6f4a5aab4bdf2f349e01303c3d3a85ce589d2dec9558290e3259b66534f9a8faa46c2cf4b4022419378e77faf0d0bb6171bfeb0f0cb603b00a4b02741fff7caee30415d7c141bfe4c498061cc6a062cdd52c726a13f25eb80c5f0518485fb288ed07a050fa216cc880b4612113c75b8200baa3b6da4dd27c3d24deb69ab97f76"}, @nested={0x7e, 0x77, 0x0, 0x1, [@generic="82dbcac22d6c7d73ebd882fabc1b561044c893179780eaf273754f56a5b3df88997e11cf7e17902293e5a31fccc540621bfc03637b56a04a9fb6bebd73bf464c62bbd1e3183af0c7d0d4ad329118f2c614483cc38cafe2f08561c77a4429ff1f226df9b62b454d4ad6cabf67da09b4c92a0f", @typed={0x8, 0x104, 0x0, 0x0, @fd=r4}]}, @typed={0x14, 0x136, 0x0, 0x0, @ipv6=@private1}, @generic="c14e0168885c05c6878945f7ae54f244abe7655e1a02333037f221b2781671fa0ee70b557216fc342b070ff346ad516576cf294ee79817501eeb347dd77be6e822d3079b8d0e4ca2b76b6415db54710285d7325900528aacea58ca0b8422f14173"]}, @NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x14}, @NL80211_ATTR_WIPHY_DYN_ACK={0x4}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}, @NL80211_ATTR_IE_PROBE_RESP={0x7ce, 0x7f, "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"}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x2}, @NL80211_ATTR_STA_VLAN={0x8, 0x14, 0x6}, @NL80211_ATTR_MLO_TTLM_ULINK={0xb8, 0x149, "01c6c6d04ff5b3ca361b7a5574f2ce06a9fed115be3595d64f50a9510bf1475f1dfd0166f390d449efc7f183ee4b996d71a5696366ad0c76784672bdc3ecca38cf64c24f6edbf47f681298c5577cfd80ef8f7611a9a5dc3c2eb32d1a05f3762a447bd012edfcff1ee85eda508ccb094cfd4f6d00680b669887005e8e24e3dd30486daab379f1d4c4b5b9538e9b6af46bf240f2d6793285de3b870197c90eb65fd4f46d06400d4943dce3e87512a3a0b15080762e"}]}, 0xac0}, 0x1, 0x0, 0x0, 0x40}, 0x8000) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000) connect$auto(0x3, &(0x7f00000000c0), 0x55) r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r5, 0x8008551c, 0xffffffffffffffff) openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) write$auto(0x3, 0x0, 0x800) 231.443288ms ago: executing program 1 (id=4779): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendto$auto(0x3, 0x0, 0x13, 0xfffffff8, &(0x7f0000000440)=@tipc=@nameseq={0x1e, 0x1, 0x2, {0x43, 0x3, 0x1a000}}, 0x22) 217.93038ms ago: executing program 3 (id=4780): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) socket(0x2, 0x3, 0x4) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/arch_status\x00', 0x40000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x24, r0, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r3}, @NL80211_ATTR_WIPHY_FRAG_THRESHOLD={0x8, 0x3f, 0xffffffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x8080) openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x101b02, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x22, 0x3, 0x0) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0x8042, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xa8080, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r4 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r4, 0x4601, 0x0) 139.421674ms ago: executing program 4 (id=4781): connect$auto(0xffffffffffffffff, &(0x7f0000000000)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x81}, 0x6) mmap$auto(0x0, 0x8, 0x3, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) faccessat2$auto(0x1, 0x0, 0x4, 0x1000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x42, 0x20) open_tree$auto(r0, 0x0, 0x9001) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x1d, 0x2, 0x7) mmap$auto(0x0, 0x9, 0x1000000004, 0x9b72, 0x2, 0x8000) r2 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, 0x0}, 0x400) sendto$auto(r1, 0x0, 0xc, 0xfffffff8, &(0x7f0000000440)=@can={0x1d, r3}, 0x36) 31.964365ms ago: executing program 5 (id=4782): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab40, 0x0) r2 = socketcall$auto(0x8000, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, r2) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x4000000) 0s ago: executing program 1 (id=4783): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0xf1, 0x2, 0x8000) bpf$auto(0xfffffffe, &(0x7f00000001c0)=@query={@target_fd, 0x8, 0x3, 0x5, 0xff, @count=0xe35c, 0x0, 0x5, 0x80000000000006, 0xd9, 0xffffffff}, 0x6f2) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d400", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) io_uring_setup$auto(0x8, &(0x7f0000000140)={0x3ff, 0x3, 0x9, 0x10001, 0x12, 0xc05, 0xffffffffffffffff, [0x7ff, 0xfff, 0x8], {0x9, 0x1, 0x69, 0x0, 0x400, 0x3, 0x3fe0, 0x26c, 0x1000000000e8}, {0x2, 0x2, 0x54f1, 0x0, 0x101, 0xff, 0x8d8, 0xa, 0x3}}) sysfs$auto(0x2, 0x23, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22040, 0x75) sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000) r0 = socket(0x10, 0x2, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) kernel console output (not intermixed with test programs): l+0x16c/0x1f0 [ 867.725805][T22715] should_fail_ex+0x512/0x640 [ 867.725838][T22715] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 867.725861][T22715] should_failslab+0xc2/0x120 [ 867.725908][T22715] __kmalloc_noprof+0xd2/0x510 [ 867.725934][T22715] tomoyo_realpath_from_path+0xc2/0x6e0 [ 867.725962][T22715] ? tomoyo_profile+0x47/0x60 [ 867.725991][T22715] tomoyo_path_number_perm+0x245/0x580 [ 867.726012][T22715] ? tomoyo_path_number_perm+0x237/0x580 [ 867.726033][T22715] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 867.726059][T22715] ? ksys_write+0x190/0x250 [ 867.726088][T22715] ? rcu_is_watching+0x12/0xc0 [ 867.726108][T22715] ? __fget_files+0x204/0x3c0 [ 867.726128][T22715] ? hook_file_ioctl_common+0x145/0x410 [ 867.726160][T22715] ? lock_release+0x201/0x2f0 [ 867.726187][T22715] ? __fget_files+0x20e/0x3c0 [ 867.726209][T22715] security_file_ioctl+0x9b/0x240 [ 867.726231][T22715] __x64_sys_ioctl+0xb7/0x210 [ 867.726262][T22715] do_syscall_64+0xcd/0x490 [ 867.726293][T22715] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 867.726314][T22715] RIP: 0033:0x7f02ab98eb69 [ 867.726329][T22715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 867.726349][T22715] RSP: 002b:00007f02ac7bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 867.726370][T22715] RAX: ffffffffffffffda RBX: 00007f02abbb5fa0 RCX: 00007f02ab98eb69 [ 867.726386][T22715] RDX: 0000000000000000 RSI: 000000008140aecc RDI: 0000000000000004 [ 867.726401][T22715] RBP: 00007f02ac7bd090 R08: 0000000000000000 R09: 0000000000000000 [ 867.726415][T22715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 867.726429][T22715] R13: 0000000000000000 R14: 00007f02abbb5fa0 R15: 00007ffc8b4db088 [ 867.726450][T22715] [ 867.726459][T22715] ERROR: Out of memory at tomoyo_realpath_from_path. [ 868.360751][T22728] vhci_hcd: invalid port number 16 [ 868.365932][T22728] vhci_hcd: invalid port number 16 [ 869.005467][T22741] netlink: 25 bytes leftover after parsing attributes in process `syz.3.3719'. [ 869.030505][T22722] caif:caif_disconnect_client(): nothing to disconnect [ 869.390543][T22748] netlink: 25 bytes leftover after parsing attributes in process `syz.5.3720'. [ 869.516578][T22752] netlink: 25 bytes leftover after parsing attributes in process `syz.4.3721'. [ 872.125668][T22805] ima: policy update failed [ 872.149165][ T30] audit: type=1802 audit(4294967471.250:62): pid=22805 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.3735" res=0 errno=0 [ 872.581639][T22820] netlink: 25 bytes leftover after parsing attributes in process `syz.4.3738'. [ 873.949950][T22829] kvm: kvm [22828]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001f) [ 874.721545][T22848] ima: policy update failed [ 874.726304][ T30] audit: type=1802 audit(4294967473.820:63): pid=22848 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.3746" res=0 errno=0 [ 874.970045][T22857] netlink: 25 bytes leftover after parsing attributes in process `syz.1.3748'. [ 875.219291][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 875.225621][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 875.844715][T22874] FAULT_INJECTION: forcing a failure. [ 875.844715][T22874] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 875.887518][T22874] CPU: 0 UID: 0 PID: 22874 Comm: syz.1.3753 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 875.887564][T22874] Tainted: [U]=USER [ 875.887575][T22874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 875.887592][T22874] Call Trace: [ 875.887601][T22874] [ 875.887612][T22874] dump_stack_lvl+0x16c/0x1f0 [ 875.887657][T22874] should_fail_ex+0x512/0x640 [ 875.887684][T22874] _copy_from_user+0x2e/0xd0 [ 875.887716][T22874] move_addr_to_kernel+0x65/0x170 [ 875.887750][T22874] __sys_bind+0x11b/0x260 [ 875.887784][T22874] ? __pfx___sys_bind+0x10/0x10 [ 875.887815][T22874] ? __fget_files+0x20e/0x3c0 [ 875.887850][T22874] ? __pfx_ksys_write+0x10/0x10 [ 875.887884][T22874] __x64_sys_bind+0x72/0xb0 [ 875.887936][T22874] do_syscall_64+0xcd/0x490 [ 875.887975][T22874] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 875.888003][T22874] RIP: 0033:0x7f451e38eb69 [ 875.888024][T22874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 875.888050][T22874] RSP: 002b:00007f451f221038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 875.888075][T22874] RAX: ffffffffffffffda RBX: 00007f451e5b6080 RCX: 00007f451e38eb69 [ 875.888092][T22874] RDX: 000000000000006a RSI: 0000200000000040 RDI: 0000000000000003 [ 875.888112][T22874] RBP: 00007f451f221090 R08: 0000000000000000 R09: 0000000000000000 [ 875.888128][T22874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 875.888143][T22874] R13: 0000000000000000 R14: 00007f451e5b6080 R15: 00007ffe925986f8 [ 875.888169][T22874] [ 877.522799][T22899] kvm: kvm [22887]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001f) [ 877.999236][T22908] vhci_hcd: invalid port number 16 [ 878.004399][T22908] vhci_hcd: invalid port number 16 [ 878.666980][T22903] caif:caif_disconnect_client(): nothing to disconnect [ 880.450124][T22959] netlink: 338 bytes leftover after parsing attributes in process `syz.5.3773'. [ 880.464279][T22959] netlink: 338 bytes leftover after parsing attributes in process `syz.5.3773'. [ 880.484566][T22959] netlink: 290 bytes leftover after parsing attributes in process `syz.5.3773'. [ 880.495489][T22959] ptrace attach of "./syz-executor exec"[20849] was attempted by "./syz-executor exec"[22959] [ 880.551557][T22955] vhci_hcd: invalid port number 16 [ 880.556833][T22955] vhci_hcd: invalid port number 16 [ 880.884556][T22968] vhci_hcd: invalid port number 16 [ 880.897286][T22968] vhci_hcd: invalid port number 16 [ 881.040370][T22947] caif:caif_disconnect_client(): nothing to disconnect [ 881.317741][T22976] netlink: 25 bytes leftover after parsing attributes in process `syz.4.3777'. [ 883.279800][T23024] netlink: 25 bytes leftover after parsing attributes in process `syz.1.3788'. [ 883.366949][T23028] netlink: 25 bytes leftover after parsing attributes in process `syz.3.3789'. [ 884.288117][T23050] syz.3.3795(23050): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 886.461005][T23108] ima: policy update failed [ 886.465670][ T30] audit: type=1802 audit(4294967485.560:64): pid=23108 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.3806" res=0 errno=0 [ 886.986280][T23116] kvm: kvm [23115]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001f) [ 887.041831][T23120] netlink: 25 bytes leftover after parsing attributes in process `syz.3.3808'. [ 887.318697][T23126] netlink: 25 bytes leftover after parsing attributes in process `syz.4.3811'. [ 889.024332][T23159] vhci_hcd: invalid port number 16 [ 889.031546][T23159] vhci_hcd: invalid port number 16 [ 889.332527][T23174] netlink: 25 bytes leftover after parsing attributes in process `syz.3.3821'. [ 889.589548][T23155] caif:caif_disconnect_client(): nothing to disconnect [ 891.926851][T23227] netlink: 25 bytes leftover after parsing attributes in process `syz.3.3831'. [ 894.243928][T23282] openvswitch: HfR: Dropping previously announced user features [ 894.955585][T23290] vhci_hcd: invalid port number 16 [ 894.961406][T23290] vhci_hcd: invalid port number 16 [ 895.050405][T23303] netlink: 25 bytes leftover after parsing attributes in process `syz.4.3847'. [ 895.309276][T23285] caif:caif_disconnect_client(): nothing to disconnect [ 896.557251][T23328] netlink: 338 bytes leftover after parsing attributes in process `syz.4.3853'. [ 897.017415][T23339] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3856'. [ 898.584139][T23375] sp0: Synchronizing with TNC [ 898.667411][T23379] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3866'. [ 898.880465][T23395] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3868'. [ 899.284580][T23405] vhci_hcd: invalid port number 16 [ 899.306069][T23405] vhci_hcd: invalid port number 16 [ 899.515420][T23408] netlink: 25 bytes leftover after parsing attributes in process `syz.3.3873'. [ 899.934530][T23400] caif:caif_disconnect_client(): nothing to disconnect [ 900.570014][T23438] FAULT_INJECTION: forcing a failure. [ 900.570014][T23438] name failslab, interval 1, probability 0, space 0, times 0 [ 900.619470][T23438] CPU: 0 UID: 0 PID: 23438 Comm: syz.3.3882 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 900.619504][T23438] Tainted: [U]=USER [ 900.619511][T23438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 900.619523][T23438] Call Trace: [ 900.619529][T23438] [ 900.619536][T23438] dump_stack_lvl+0x16c/0x1f0 [ 900.619571][T23438] should_fail_ex+0x512/0x640 [ 900.619591][T23438] should_failslab+0xc2/0x120 [ 900.619615][T23438] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 900.619637][T23438] ? stashed_dentry_get+0x10a/0x2c0 [ 900.619658][T23438] ? rcu_is_watching+0x12/0xc0 [ 900.619677][T23438] ? alloc_inode+0xc3/0x240 [ 900.619707][T23438] alloc_inode+0xc3/0x240 [ 900.619734][T23438] path_from_stashed+0x25b/0x750 [ 900.619758][T23438] open_namespace+0x8d/0x190 [ 900.619778][T23438] ? __pfx_open_namespace+0x10/0x10 [ 900.619800][T23438] ? lock_release+0x201/0x2f0 [ 900.619827][T23438] pidfd_ioctl+0xb80/0x2680 [ 900.619859][T23438] ? __pfx_pidfd_ioctl+0x10/0x10 [ 900.619890][T23438] ? hook_file_ioctl_common+0x145/0x410 [ 900.619928][T23438] ? __pfx_pidfd_ioctl+0x10/0x10 [ 900.619964][T23438] __x64_sys_ioctl+0x18b/0x210 [ 900.619995][T23438] do_syscall_64+0xcd/0x490 [ 900.620026][T23438] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 900.620047][T23438] RIP: 0033:0x7f337478eb69 [ 900.620063][T23438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 900.620083][T23438] RSP: 002b:00007f3375646038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 900.620102][T23438] RAX: ffffffffffffffda RBX: 00007f33749b5fa0 RCX: 00007f337478eb69 [ 900.620116][T23438] RDX: 0000000000000000 RSI: 000000000000ff09 RDI: 0000000000000003 [ 900.620128][T23438] RBP: 00007f3375646090 R08: 0000000000000000 R09: 0000000000000000 [ 900.620141][T23438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 900.620154][T23438] R13: 0000000000000000 R14: 00007f33749b5fa0 R15: 00007ffcf61778c8 [ 900.620173][T23438] [ 901.802190][T23463] netlink: 25 bytes leftover after parsing attributes in process `syz.4.3888'. [ 902.127890][T23471] vhci_hcd: invalid port number 16 [ 902.147299][T23471] vhci_hcd: invalid port number 16 [ 902.994091][T23459] caif:caif_disconnect_client(): nothing to disconnect [ 905.051248][T23475] kexec: Could not allocate control_code_buffer [ 905.095219][T23523] netlink: 25 bytes leftover after parsing attributes in process `syz.5.3897'. [ 906.222965][T23553] ICMPv6: process `syz.3.3904' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 906.304474][T23558] FAULT_INJECTION: forcing a failure. [ 906.304474][T23558] name failslab, interval 1, probability 0, space 0, times 0 [ 906.326879][T23558] CPU: 1 UID: 0 PID: 23558 Comm: syz.4.3906 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 906.326924][T23558] Tainted: [U]=USER [ 906.326934][T23558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 906.326950][T23558] Call Trace: [ 906.326959][T23558] [ 906.326970][T23558] dump_stack_lvl+0x16c/0x1f0 [ 906.327013][T23558] should_fail_ex+0x512/0x640 [ 906.327043][T23558] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 906.327076][T23558] should_failslab+0xc2/0x120 [ 906.327113][T23558] __kmalloc_noprof+0xd2/0x510 [ 906.327144][T23558] ? kmem_cache_free+0x2d1/0x4d0 [ 906.327180][T23558] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 906.327215][T23558] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 906.327244][T23558] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 906.327273][T23558] ? rcu_is_watching+0x12/0xc0 [ 906.327305][T23558] ? bpf_lsm_capable+0x9/0x10 [ 906.327329][T23558] ? security_capable+0x7e/0x260 [ 906.327374][T23558] genl_rcv_msg+0x55c/0x800 [ 906.327403][T23558] ? __pfx_genl_rcv_msg+0x10/0x10 [ 906.327431][T23558] ? __pfx_ila_xlat_nl_cmd_del_mapping+0x10/0x10 [ 906.327484][T23558] netlink_rcv_skb+0x155/0x420 [ 906.327527][T23558] ? __pfx_genl_rcv_msg+0x10/0x10 [ 906.327556][T23558] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 906.327607][T23558] ? netlink_deliver_tap+0x1ae/0xd30 [ 906.327650][T23558] genl_rcv+0x28/0x40 [ 906.327683][T23558] netlink_unicast+0x5aa/0x870 [ 906.327726][T23558] ? __pfx_netlink_unicast+0x10/0x10 [ 906.327765][T23558] ? unwind_get_return_address+0x59/0xa0 [ 906.327799][T23558] netlink_sendmsg+0x8d1/0xdd0 [ 906.327841][T23558] ? __pfx_netlink_sendmsg+0x10/0x10 [ 906.327888][T23558] ____sys_sendmsg+0xa98/0xc70 [ 906.327917][T23558] ? copy_msghdr_from_user+0x10a/0x160 [ 906.327974][T23558] ? __pfx_____sys_sendmsg+0x10/0x10 [ 906.328003][T23558] ? __pfx_kstrtouint+0x10/0x10 [ 906.328049][T23558] ? kstrtouint_from_user+0x13c/0x1d0 [ 906.328093][T23558] ___sys_sendmsg+0x134/0x1d0 [ 906.328135][T23558] ? __pfx____sys_sendmsg+0x10/0x10 [ 906.328186][T23558] ? rcu_is_watching+0x12/0xc0 [ 906.328220][T23558] ? __mutex_unlock_slowpath+0x80/0x800 [ 906.328270][T23558] __sys_sendmsg+0x16d/0x220 [ 906.328309][T23558] ? __pfx___sys_sendmsg+0x10/0x10 [ 906.328361][T23558] do_syscall_64+0xcd/0x490 [ 906.328416][T23558] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 906.328451][T23558] RIP: 0033:0x7f5084b8eb69 [ 906.328471][T23558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 906.328498][T23558] RSP: 002b:00007f5085a21038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 906.328523][T23558] RAX: ffffffffffffffda RBX: 00007f5084db5fa0 RCX: 00007f5084b8eb69 [ 906.328541][T23558] RDX: 0000000004000000 RSI: 00002000000000c0 RDI: 0000000000000003 [ 906.328576][T23558] RBP: 00007f5085a21090 R08: 0000000000000000 R09: 0000000000000000 [ 906.328594][T23558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 906.328611][T23558] R13: 0000000000000000 R14: 00007f5084db5fa0 R15: 00007fffd2b5f458 [ 906.328638][T23558] [ 906.769485][T23568] netlink: 25 bytes leftover after parsing attributes in process `syz.1.3909'. [ 908.017461][T23550] Bluetooth: hci0: command 0x0406 tx timeout [ 908.577127][T23623] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3920'. [ 908.589019][T23623] bridge0: port 2(bridge_slave_1) entered disabled state [ 908.600982][T23623] bridge_slave_1 (unregistering): left allmulticast mode [ 908.633671][T23623] bridge_slave_1 (unregistering): left promiscuous mode [ 908.699797][T23623] bridge0: port 2(bridge_slave_1) entered disabled state [ 909.033521][T23636] sp0: Synchronizing with TNC [ 909.089251][T23611] caif:caif_disconnect_client(): nothing to disconnect [ 909.097678][T23636] sp0: Synchronizing with TNC [ 909.504466][T23646] kvm: kvm [23644]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001f) [ 909.914923][T23665] usb usb36: usbfs: process 23665 (syz.1.3932) did not claim interface 0 before use [ 910.937687][T23688] kAFS: Invalid Command on /proc/fs/afs/cells file [ 911.331239][T23666] kexec: Could not allocate control_code_buffer [ 912.231161][T23726] netlink: 25 bytes leftover after parsing attributes in process `syz.1.3944'. [ 912.650529][T23739] netlink: 25 bytes leftover after parsing attributes in process `syz.4.3948'. [ 912.920698][T23753] kvm: kvm [23752]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001f) [ 913.279007][T23763] FAULT_INJECTION: forcing a failure. [ 913.279007][T23763] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 913.294181][T23763] CPU: 0 UID: 0 PID: 23763 Comm: syz.3.3955 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 913.294222][T23763] Tainted: [U]=USER [ 913.294232][T23763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 913.294248][T23763] Call Trace: [ 913.294256][T23763] [ 913.294265][T23763] dump_stack_lvl+0x16c/0x1f0 [ 913.294307][T23763] should_fail_ex+0x512/0x640 [ 913.294336][T23763] _copy_from_user+0x2e/0xd0 [ 913.294366][T23763] copy_msghdr_from_user+0x98/0x160 [ 913.294406][T23763] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 913.294452][T23763] ___sys_recvmsg+0xdb/0x1a0 [ 913.294491][T23763] ? __pfx____sys_recvmsg+0x10/0x10 [ 913.294544][T23763] do_recvmmsg+0x2fe/0x750 [ 913.294591][T23763] ? __pfx_do_recvmmsg+0x10/0x10 [ 913.294628][T23763] ? rcu_is_watching+0x12/0xc0 [ 913.294658][T23763] ? __mutex_unlock_slowpath+0x163/0x800 [ 913.294705][T23763] ? __fget_files+0x20e/0x3c0 [ 913.294736][T23763] __x64_sys_recvmmsg+0x22a/0x280 [ 913.294776][T23763] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 913.294822][T23763] do_syscall_64+0xcd/0x490 [ 913.294862][T23763] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 913.294889][T23763] RIP: 0033:0x7f337478eb69 [ 913.294910][T23763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 913.294935][T23763] RSP: 002b:00007f3375604038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 913.294962][T23763] RAX: ffffffffffffffda RBX: 00007f33749b6160 RCX: 00007f337478eb69 [ 913.294980][T23763] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000004 [ 913.294998][T23763] RBP: 00007f3375604090 R08: 0000000000000000 R09: 0000000000000000 [ 913.295015][T23763] R10: 000000000000000e R11: 0000000000000246 R12: 0000000000000001 [ 913.295031][T23763] R13: 0000000000000000 R14: 00007f33749b6160 R15: 00007ffcf61778c8 [ 913.295056][T23763] [ 913.730496][T23751] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(1) [ 913.898728][T23766] bond0: option all_slaves_active: invalid value () [ 914.252056][T23782] ima: policy update failed [ 914.272430][ T30] audit: type=1802 audit(4294967513.370:65): pid=23782 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.3961" res=0 errno=0 [ 914.778395][T23801] FAULT_INJECTION: forcing a failure. [ 914.778395][T23801] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 914.791818][T23801] CPU: 1 UID: 0 PID: 23801 Comm: syz.4.3965 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 914.791860][T23801] Tainted: [U]=USER [ 914.791870][T23801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 914.791886][T23801] Call Trace: [ 914.791895][T23801] [ 914.791905][T23801] dump_stack_lvl+0x16c/0x1f0 [ 914.791947][T23801] should_fail_ex+0x512/0x640 [ 914.791975][T23801] should_fail_alloc_page+0xe7/0x130 [ 914.792011][T23801] prepare_alloc_pages+0x3c2/0x610 [ 914.792053][T23801] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 914.792086][T23801] ? rcu_is_watching+0x12/0xc0 [ 914.792112][T23801] ? lock_release+0x201/0x2f0 [ 914.792143][T23801] ? css_rstat_updated+0x1c2/0x510 [ 914.792170][T23801] ? do_raw_spin_lock+0x12c/0x2b0 [ 914.792211][T23801] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 914.792250][T23801] ? trace_pid_list_is_set+0xfb/0x150 [ 914.792282][T23801] ? rcu_is_watching+0x12/0xc0 [ 914.792309][T23801] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 914.792347][T23801] ? rcu_is_watching+0x12/0xc0 [ 914.792373][T23801] ? finish_task_switch.isra.0+0x21c/0xc10 [ 914.792416][T23801] ? rcu_is_watching+0x12/0xc0 [ 914.792471][T23801] ? rcu_is_watching+0x12/0xc0 [ 914.792501][T23801] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 914.792549][T23801] ? finish_task_switch.isra.0+0x2fa/0xc10 [ 914.792582][T23801] ? rcu_is_watching+0x12/0xc0 [ 914.792611][T23801] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 914.792658][T23801] ? policy_nodemask+0xea/0x4e0 [ 914.792699][T23801] alloc_pages_mpol+0x1fb/0x550 [ 914.792740][T23801] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 914.792782][T23801] ? number+0x9aa/0xc70 [ 914.792820][T23801] alloc_pages_noprof+0x131/0x390 [ 914.792860][T23801] __pmd_alloc+0x3b/0x930 [ 914.792907][T23801] __handle_mm_fault+0xa06/0x2a50 [ 914.792940][T23801] ? mt_find+0x3ef/0xa30 [ 914.792989][T23801] ? __pfx___handle_mm_fault+0x10/0x10 [ 914.793017][T23801] ? __pfx_mt_find+0x10/0x10 [ 914.793077][T23801] ? find_vma+0xbf/0x140 [ 914.793117][T23801] ? __pfx_find_vma+0x10/0x10 [ 914.793156][T23801] handle_mm_fault+0x589/0xd10 [ 914.793187][T23801] ? __pkru_allows_pkey+0x51/0xb0 [ 914.793236][T23801] do_user_addr_fault+0x7a6/0x1370 [ 914.793287][T23801] ? rcu_is_watching+0x12/0xc0 [ 914.793319][T23801] exc_page_fault+0x5c/0xb0 [ 914.793360][T23801] asm_exc_page_fault+0x26/0x30 [ 914.793391][T23801] RIP: 0010:rep_movs_alternative+0x11/0x90 [ 914.793436][T23801] Code: e9 04 20 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 cd 1f 04 00 66 66 2e 0f [ 914.793469][T23801] RSP: 0018:ffffc90014e079b0 EFLAGS: 00050206 [ 914.793495][T23801] RAX: 0000000000000020 RBX: 0000000000000006 RCX: 0000000000000006 [ 914.793515][T23801] RDX: ffffed10068bdc02 RSI: ffff8880345ee009 RDI: 0000000000000000 [ 914.793535][T23801] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffed10068bdc01 [ 914.793554][T23801] R10: ffff8880345ee00e R11: 2020202020202020 R12: 0000000000000000 [ 914.793574][T23801] R13: ffffc90014e07bc8 R14: ffff8880345ee009 R15: 0000000000000000 [ 914.793614][T23801] _copy_to_iter+0x4eb/0x16f0 [ 914.793660][T23801] ? __pfx__copy_to_iter+0x10/0x10 [ 914.793692][T23801] ? single_next+0xd/0x40 [ 914.793726][T23801] ? traverse.part.0.constprop.0+0x2c5/0x640 [ 914.793771][T23801] seq_read_iter+0x719/0x12c0 [ 914.793816][T23801] seq_read+0x39e/0x4e0 [ 914.793856][T23801] ? __pfx_seq_read+0x10/0x10 [ 914.793896][T23801] ? rcu_is_watching+0x12/0xc0 [ 914.793923][T23801] ? rcu_is_watching+0x12/0xc0 [ 914.793953][T23801] ? apparmor_file_permission+0x251/0x400 [ 914.793999][T23801] full_proxy_read+0x12e/0x1a0 [ 914.794034][T23801] ? __pfx_full_proxy_read+0x10/0x10 [ 914.794068][T23801] vfs_read+0x1e4/0xc60 [ 914.794098][T23801] ? __pfx_vfs_read+0x10/0x10 [ 914.794124][T23801] ? __fget_files+0x204/0x3c0 [ 914.794149][T23801] ? rcu_is_watching+0x12/0xc0 [ 914.794175][T23801] ? lock_release+0x201/0x2f0 [ 914.794209][T23801] ? __fget_files+0x20e/0x3c0 [ 914.794234][T23801] ? __fget_files+0x180/0x3c0 [ 914.794264][T23801] __x64_sys_pread64+0x1eb/0x250 [ 914.794293][T23801] ? __pfx___x64_sys_pread64+0x10/0x10 [ 914.794329][T23801] do_syscall_64+0xcd/0x490 [ 914.794368][T23801] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 914.794394][T23801] RIP: 0033:0x7f5084b8eb69 [ 914.794413][T23801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 914.794462][T23801] RSP: 002b:00007f5085a21038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 914.794487][T23801] RAX: ffffffffffffffda RBX: 00007f5084db5fa0 RCX: 00007f5084b8eb69 [ 914.794504][T23801] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003 [ 914.794520][T23801] RBP: 00007f5085a21090 R08: 0000000000000000 R09: 0000000000000000 [ 914.794535][T23801] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000001 [ 914.794550][T23801] R13: 0000000000000000 R14: 00007f5084db5fa0 R15: 00007fffd2b5f458 [ 914.794575][T23801] [ 915.701468][T23813] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3967'. [ 915.716594][T23813] bridge0: port 2(bridge_slave_1) entered disabled state [ 915.773105][T23813] bridge_slave_1 (unregistering): left allmulticast mode [ 915.780193][T23813] bridge_slave_1 (unregistering): left promiscuous mode [ 915.787274][T23813] bridge0: port 2(bridge_slave_1) entered disabled state [ 915.947870][T23819] vhci_hcd: invalid port number 16 [ 915.961284][T23819] vhci_hcd: invalid port number 16 [ 916.592028][T23812] caif:caif_disconnect_client(): nothing to disconnect [ 918.014056][T23877] vhci_hcd: invalid port number 16 [ 918.019570][T23877] vhci_hcd: invalid port number 16 [ 918.257432][T23550] Bluetooth: hci3: command 0x0406 tx timeout [ 918.682895][T23873] caif:caif_disconnect_client(): nothing to disconnect [ 919.412552][T23907] ima: policy update failed [ 919.441758][ T30] audit: type=1802 audit(4294967518.520:66): pid=23907 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.3995" res=0 errno=0 [ 919.641838][T23883] kexec: Could not allocate control_code_buffer [ 919.694800][T23912] caif:caif_disconnect_client(): nothing to disconnect [ 919.869460][T23919] base_sock_release(ffff888075974200) sk=ffff8880507bd000 [ 919.894594][T23919] netlink: 25 bytes leftover after parsing attributes in process `syz.4.3999'. [ 920.210898][T23931] netlink: 25 bytes leftover after parsing attributes in process `syz.4.4002'. [ 921.205450][T23945] FAULT_INJECTION: forcing a failure. [ 921.205450][T23945] name fail_futex, interval 1, probability 0, space 0, times 0 [ 921.407741][T23945] CPU: 1 UID: 0 PID: 23945 Comm: syz.1.4005 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 921.407802][T23945] Tainted: [U]=USER [ 921.407813][T23945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 921.407831][T23945] Call Trace: [ 921.407849][T23945] [ 921.407862][T23945] dump_stack_lvl+0x16c/0x1f0 [ 921.407913][T23945] should_fail_ex+0x512/0x640 [ 921.407945][T23945] get_futex_key+0x1d0/0x1540 [ 921.407981][T23945] ? __pfx_get_futex_key+0x10/0x10 [ 921.408034][T23945] ? __destroy_inode+0x2e4/0x730 [ 921.408078][T23945] ? __pfx_sock_free_inode+0x10/0x10 [ 921.408108][T23945] futex_wake+0xea/0x530 [ 921.408147][T23945] ? __pfx_evict+0x10/0x10 [ 921.408280][T23945] ? __pfx_futex_wake+0x10/0x10 [ 921.408413][T23945] ? lock_release+0x201/0x2f0 [ 921.408511][T23945] do_futex+0x1e3/0x350 [ 921.408616][T23945] ? __pfx_do_futex+0x10/0x10 [ 921.408664][T23945] ? __sock_release+0x20b/0x270 [ 921.408812][T23945] __x64_sys_futex+0x1e0/0x4c0 [ 921.408877][T23945] ? __sys_socket+0xac/0x260 [ 921.408921][T23945] ? __pfx___x64_sys_futex+0x10/0x10 [ 921.408968][T23945] ? xfd_validate_state+0x61/0x180 [ 921.409025][T23945] do_syscall_64+0xcd/0x490 [ 921.409076][T23945] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 921.409107][T23945] RIP: 0033:0x7f451e38eb69 [ 921.409129][T23945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 921.409157][T23945] RSP: 002b:00007f451f2000e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 921.409185][T23945] RAX: ffffffffffffffda RBX: 00007f451e5b6168 RCX: 00007f451e38eb69 [ 921.409205][T23945] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f451e5b616c [ 921.409223][T23945] RBP: 00007f451e5b6160 R08: 00007f451f243000 R09: 0000000000000000 [ 921.409243][T23945] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f451e5b616c [ 921.409262][T23945] R13: 0000000000000000 R14: 00007ffe92598610 R15: 00007ffe925986f8 [ 921.409290][T23945] [ 921.961684][T23940] caif:caif_disconnect_client(): nothing to disconnect [ 922.277579][T23967] netlink: 266 bytes leftover after parsing attributes in process `syz.4.4010'. [ 922.348275][T23967] IPv6: NLM_F_CREATE should be specified when creating new route [ 922.863384][T23986] kvm: kvm [23985]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001f) [ 923.379426][T23550] Bluetooth: hci2: command 0x0406 tx timeout [ 924.324216][T24025] FAULT_INJECTION: forcing a failure. [ 924.324216][T24025] name failslab, interval 1, probability 0, space 0, times 0 [ 924.928721][T24025] CPU: 0 UID: 0 PID: 24025 Comm: syz.1.4023 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 924.928771][T24025] Tainted: [U]=USER [ 924.928781][T24025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 924.928799][T24025] Call Trace: [ 924.928809][T24025] [ 924.928820][T24025] dump_stack_lvl+0x16c/0x1f0 [ 924.928867][T24025] should_fail_ex+0x512/0x640 [ 924.928899][T24025] should_failslab+0xc2/0x120 [ 924.928936][T24025] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 924.928970][T24025] ? security_inode_alloc+0x3b/0x2b0 [ 924.929018][T24025] security_inode_alloc+0x3b/0x2b0 [ 924.929066][T24025] inode_init_always_gfp+0xce4/0x1030 [ 924.929101][T24025] alloc_inode+0x86/0x240 [ 924.929141][T24025] path_from_stashed+0x25b/0x750 [ 924.929179][T24025] open_namespace+0x8d/0x190 [ 924.929209][T24025] ? __pfx_open_namespace+0x10/0x10 [ 924.929241][T24025] ? lock_release+0x201/0x2f0 [ 924.929281][T24025] pidfd_ioctl+0xb80/0x2680 [ 924.929329][T24025] ? __pfx_pidfd_ioctl+0x10/0x10 [ 924.929378][T24025] ? hook_file_ioctl_common+0x145/0x410 [ 924.929434][T24025] ? __pfx_pidfd_ioctl+0x10/0x10 [ 924.929481][T24025] __x64_sys_ioctl+0x18b/0x210 [ 924.929555][T24025] do_syscall_64+0xcd/0x490 [ 924.929600][T24025] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 924.929631][T24025] RIP: 0033:0x7f451e38eb69 [ 924.929672][T24025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 924.929703][T24025] RSP: 002b:00007f451f242038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 924.929733][T24025] RAX: ffffffffffffffda RBX: 00007f451e5b5fa0 RCX: 00007f451e38eb69 [ 924.929754][T24025] RDX: 0000000000000000 RSI: 000000000000ff09 RDI: 0000000000000003 [ 924.929771][T24025] RBP: 00007f451f242090 R08: 0000000000000000 R09: 0000000000000000 [ 924.929790][T24025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 924.929807][T24025] R13: 0000000000000000 R14: 00007f451e5b5fa0 R15: 00007ffe925986f8 [ 924.929835][T24025] [ 925.491474][T24033] FAULT_INJECTION: forcing a failure. [ 925.491474][T24033] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 925.522353][T24034] netlink: 25 bytes leftover after parsing attributes in process `syz.1.4024'. [ 925.589349][T24033] CPU: 1 UID: 0 PID: 24033 Comm: syz.3.4026 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 925.589395][T24033] Tainted: [U]=USER [ 925.589405][T24033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 925.589420][T24033] Call Trace: [ 925.589428][T24033] [ 925.589438][T24033] dump_stack_lvl+0x16c/0x1f0 [ 925.589480][T24033] should_fail_ex+0x512/0x640 [ 925.589509][T24033] _copy_from_user+0x2e/0xd0 [ 925.589539][T24033] memdup_user+0x6b/0xe0 [ 925.589571][T24033] kvm_vcpu_ioctl+0x2f5/0x1690 [ 925.589607][T24033] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 925.589643][T24033] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 925.589684][T24033] ? do_vfs_ioctl+0x128/0x14f0 [ 925.589725][T24033] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 925.589769][T24033] ? rcu_is_watching+0x12/0xc0 [ 925.589824][T24033] ? __fget_files+0x204/0x3c0 [ 925.589850][T24033] ? hook_file_ioctl_common+0x145/0x410 [ 925.589898][T24033] ? __fget_files+0x20e/0x3c0 [ 925.589929][T24033] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 925.589966][T24033] __x64_sys_ioctl+0x18b/0x210 [ 925.590009][T24033] do_syscall_64+0xcd/0x490 [ 925.590052][T24033] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 925.590081][T24033] RIP: 0033:0x7f337478eb69 [ 925.590103][T24033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 925.590131][T24033] RSP: 002b:00007f3375646038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 925.590158][T24033] RAX: ffffffffffffffda RBX: 00007f33749b5fa0 RCX: 00007f337478eb69 [ 925.590177][T24033] RDX: 0000000000000000 RSI: 000000004138ae84 RDI: 0000000000000006 [ 925.590194][T24033] RBP: 00007f3375646090 R08: 0000000000000000 R09: 0000000000000000 [ 925.590211][T24033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 925.590227][T24033] R13: 0000000000000000 R14: 00007f33749b5fa0 R15: 00007ffcf61778c8 [ 925.590254][T24033] [ 926.425059][T24051] vhci_hcd: invalid port number 16 [ 926.456740][T24051] vhci_hcd: invalid port number 16 [ 926.805802][T24022] kexec: Could not allocate control_code_buffer [ 927.197698][T24046] caif:caif_disconnect_client(): nothing to disconnect [ 928.058263][T24091] vhci_hcd: invalid port number 16 [ 928.063421][T24091] vhci_hcd: invalid port number 16 [ 928.241792][T24098] netlink: 25 bytes leftover after parsing attributes in process `syz.1.4039'. [ 928.790138][T24085] caif:caif_disconnect_client(): nothing to disconnect [ 929.588057][T24126] FAULT_INJECTION: forcing a failure. [ 929.588057][T24126] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 929.602133][T24126] CPU: 1 UID: 0 PID: 24126 Comm: syz.1.4050 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 929.602189][T24126] Tainted: [U]=USER [ 929.602198][T24126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 929.602214][T24126] Call Trace: [ 929.602222][T24126] [ 929.602232][T24126] dump_stack_lvl+0x16c/0x1f0 [ 929.602274][T24126] should_fail_ex+0x512/0x640 [ 929.602302][T24126] _copy_to_user+0x32/0xd0 [ 929.602333][T24126] simple_read_from_buffer+0xcb/0x170 [ 929.602384][T24126] proc_fail_nth_read+0x197/0x240 [ 929.602433][T24126] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 929.602464][T24126] ? security_file_permission+0x71/0x210 [ 929.602500][T24126] ? rw_verify_area+0xcf/0x6c0 [ 929.602528][T24126] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 929.602559][T24126] vfs_read+0x1e4/0xc60 [ 929.602594][T24126] ? __pfx___mutex_lock+0x10/0x10 [ 929.602641][T24126] ? __pfx_vfs_read+0x10/0x10 [ 929.602673][T24126] ? __fget_files+0x204/0x3c0 [ 929.602705][T24126] ? rcu_is_watching+0x12/0xc0 [ 929.602740][T24126] ? __fget_files+0x20e/0x3c0 [ 929.602776][T24126] ksys_read+0x12a/0x250 [ 929.602809][T24126] ? __pfx_ksys_read+0x10/0x10 [ 929.602848][T24126] do_syscall_64+0xcd/0x490 [ 929.602895][T24126] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 929.602927][T24126] RIP: 0033:0x7f451e38d57c [ 929.602950][T24126] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 929.602980][T24126] RSP: 002b:00007f451f242030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 929.603010][T24126] RAX: ffffffffffffffda RBX: 00007f451e5b5fa0 RCX: 00007f451e38d57c [ 929.603031][T24126] RDX: 000000000000000f RSI: 00007f451f2420a0 RDI: 0000000000000004 [ 929.603049][T24126] RBP: 00007f451f242090 R08: 0000000000000000 R09: 0000000000000000 [ 929.603067][T24126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 929.603085][T24126] R13: 0000000000000000 R14: 00007f451e5b5fa0 R15: 00007ffe925986f8 [ 929.603121][T24126] [ 929.808725][ C1] vkms_vblank_simulate: vblank timer overrun [ 929.816179][T24132] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4051'. [ 929.840750][T24099] kexec: Could not allocate control_code_buffer [ 930.089437][T24140] netlink: 25 bytes leftover after parsing attributes in process `syz.1.4053'. [ 931.014894][T24157] vhci_hcd: invalid port number 16 [ 931.021986][T24157] vhci_hcd: invalid port number 16 [ 931.526442][T24166] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4060'. [ 931.776893][T24152] caif:caif_disconnect_client(): nothing to disconnect [ 934.208123][T24226] FAULT_INJECTION: forcing a failure. [ 934.208123][T24226] name failslab, interval 1, probability 0, space 0, times 0 [ 934.278149][T24226] CPU: 1 UID: 0 PID: 24226 Comm: syz.5.4074 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 934.278197][T24226] Tainted: [U]=USER [ 934.278206][T24226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 934.278223][T24226] Call Trace: [ 934.278231][T24226] [ 934.278241][T24226] dump_stack_lvl+0x16c/0x1f0 [ 934.278284][T24226] should_fail_ex+0x512/0x640 [ 934.278311][T24226] should_failslab+0xc2/0x120 [ 934.278345][T24226] __kmalloc_cache_noprof+0x6a/0x3e0 [ 934.278372][T24226] ? landlock_create_object+0x64/0x180 [ 934.278411][T24226] landlock_create_object+0x64/0x180 [ 934.278448][T24226] landlock_append_fs_rule+0x5e8/0x970 [ 934.278475][T24226] ? do_raw_spin_lock+0x12c/0x2b0 [ 934.278517][T24226] ? __pfx_landlock_append_fs_rule+0x10/0x10 [ 934.278545][T24226] ? rcu_is_watching+0x12/0xc0 [ 934.278585][T24226] ? lock_release+0x201/0x2f0 [ 934.278642][T24226] add_rule_path_beneath+0x37d/0x4d0 [ 934.278685][T24226] ? __pfx_add_rule_path_beneath+0x10/0x10 [ 934.278735][T24226] ? fdget+0x176/0x210 [ 934.278769][T24226] __x64_sys_landlock_add_rule+0x1a9/0x240 [ 934.278813][T24226] do_syscall_64+0xcd/0x490 [ 934.278860][T24226] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 934.278891][T24226] RIP: 0033:0x7f02ab98eb69 [ 934.278913][T24226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 934.278942][T24226] RSP: 002b:00007f02ac7bd038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bd [ 934.278971][T24226] RAX: ffffffffffffffda RBX: 00007f02abbb5fa0 RCX: 00007f02ab98eb69 [ 934.278991][T24226] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000003 [ 934.279009][T24226] RBP: 00007f02ac7bd090 R08: 0000000000000000 R09: 0000000000000000 [ 934.279027][T24226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 934.279044][T24226] R13: 0000000000000000 R14: 00007f02abbb5fa0 R15: 00007ffc8b4db088 [ 934.279073][T24226] [ 935.071094][T24244] netlink: 25 bytes leftover after parsing attributes in process `syz.4.4077'. [ 935.660173][T24262] vhci_hcd: invalid port number 16 [ 935.743945][T24262] vhci_hcd: invalid port number 16 [ 936.387373][T24259] caif:caif_disconnect_client(): nothing to disconnect [ 936.493312][T24280] netlink: 25 bytes leftover after parsing attributes in process `syz.1.4089'. [ 936.660989][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 936.667326][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 938.059251][T24317] kvm: kvm [24316]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001f) [ 938.279049][T24328] FAULT_INJECTION: forcing a failure. [ 938.279049][T24328] name failslab, interval 1, probability 0, space 0, times 0 [ 938.293260][T24328] CPU: 0 UID: 0 PID: 24328 Comm: syz.1.4101 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 938.293315][T24328] Tainted: [U]=USER [ 938.293328][T24328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 938.293348][T24328] Call Trace: [ 938.293359][T24328] [ 938.293372][T24328] dump_stack_lvl+0x16c/0x1f0 [ 938.293425][T24328] should_fail_ex+0x512/0x640 [ 938.293459][T24328] should_failslab+0xc2/0x120 [ 938.293503][T24328] __kvmalloc_node_noprof+0x137/0x620 [ 938.293539][T24328] ? v4l2_ctrl_new+0x97d/0x2180 [ 938.293615][T24328] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 938.293659][T24328] ? v4l2_ctrl_new+0x97d/0x2180 [ 938.293699][T24328] v4l2_ctrl_new+0x97d/0x2180 [ 938.293744][T24328] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 938.293784][T24328] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 938.293829][T24328] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 938.293871][T24328] v4l2_ctrl_new_std+0x1be/0x290 [ 938.293919][T24328] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 938.293960][T24328] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 938.294006][T24328] ? rcu_is_watching+0x12/0xc0 [ 938.294033][T24328] ? trace_kmalloc+0x2b/0xd0 [ 938.294069][T24328] ? __kvmalloc_node_noprof+0x298/0x620 [ 938.294102][T24328] ? media_request_object_init+0x100/0x180 [ 938.294133][T24328] vim2m_open+0x184/0x8a0 [ 938.294176][T24328] v4l2_open+0x225/0x490 [ 938.294212][T24328] ? __pfx_v4l2_open+0x10/0x10 [ 938.294247][T24328] chrdev_open+0x231/0x6a0 [ 938.294281][T24328] ? __pfx_apparmor_file_open+0x10/0x10 [ 938.294313][T24328] ? __pfx_chrdev_open+0x10/0x10 [ 938.294347][T24328] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 938.294382][T24328] do_dentry_open+0x97f/0x1530 [ 938.294415][T24328] ? __pfx_chrdev_open+0x10/0x10 [ 938.294451][T24328] vfs_open+0x82/0x3f0 [ 938.294491][T24328] path_openat+0x1de4/0x2cb0 [ 938.294526][T24328] ? __pfx_path_openat+0x10/0x10 [ 938.294560][T24328] do_filp_open+0x20b/0x470 [ 938.294599][T24328] ? __pfx_do_filp_open+0x10/0x10 [ 938.294642][T24328] ? alloc_fd+0x471/0x7d0 [ 938.294674][T24328] do_sys_openat2+0x11b/0x1d0 [ 938.294712][T24328] ? __pfx_do_sys_openat2+0x10/0x10 [ 938.294761][T24328] __x64_sys_openat+0x174/0x210 [ 938.294802][T24328] ? __pfx___x64_sys_openat+0x10/0x10 [ 938.294849][T24328] do_syscall_64+0xcd/0x490 [ 938.294890][T24328] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 938.294918][T24328] RIP: 0033:0x7f451e38eb69 [ 938.294941][T24328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 938.294968][T24328] RSP: 002b:00007f451f242038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 938.294995][T24328] RAX: ffffffffffffffda RBX: 00007f451e5b5fa0 RCX: 00007f451e38eb69 [ 938.295013][T24328] RDX: 000000000010b000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 938.295030][T24328] RBP: 00007f451e411df1 R08: 0000000000000000 R09: 0000000000000000 [ 938.295046][T24328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 938.295063][T24328] R13: 0000000000000000 R14: 00007f451e5b5fa0 R15: 00007ffe925986f8 [ 938.295089][T24328] [ 938.874044][T24341] netlink: 25 bytes leftover after parsing attributes in process `syz.5.4105'. [ 939.657819][T24336] caif:caif_disconnect_client(): nothing to disconnect [ 939.982667][T24363] kvm: kvm [24362]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001f) [ 940.093952][T24365] kvm: kvm [24364]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001f) [ 940.276513][T24351] caif:caif_disconnect_client(): nothing to disconnect [ 940.522957][T24387] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4117'. [ 941.667601][T24410] FAULT_INJECTION: forcing a failure. [ 941.667601][T24410] name failslab, interval 1, probability 0, space 0, times 0 [ 941.695802][T24412] kvm: kvm [24411]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001f) [ 941.733238][T24410] CPU: 0 UID: 0 PID: 24410 Comm: syz.3.4121 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 941.733290][T24410] Tainted: [U]=USER [ 941.733301][T24410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 941.733319][T24410] Call Trace: [ 941.733329][T24410] [ 941.733341][T24410] dump_stack_lvl+0x16c/0x1f0 [ 941.733390][T24410] should_fail_ex+0x512/0x640 [ 941.733422][T24410] should_failslab+0xc2/0x120 [ 941.733463][T24410] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 941.733500][T24410] ? __pmd_alloc+0xbf/0x930 [ 941.733549][T24410] __pmd_alloc+0xbf/0x930 [ 941.733606][T24410] __handle_mm_fault+0xa06/0x2a50 [ 941.733647][T24410] ? mt_find+0x3ef/0xa30 [ 941.733692][T24410] ? __pfx___handle_mm_fault+0x10/0x10 [ 941.733717][T24410] ? __pfx_mt_find+0x10/0x10 [ 941.733769][T24410] ? find_vma+0xbf/0x140 [ 941.733803][T24410] ? __pfx_find_vma+0x10/0x10 [ 941.733841][T24410] handle_mm_fault+0x589/0xd10 [ 941.733867][T24410] ? __pkru_allows_pkey+0x51/0xb0 [ 941.733910][T24410] do_user_addr_fault+0x7a6/0x1370 [ 941.733957][T24410] ? rcu_is_watching+0x12/0xc0 [ 941.733987][T24410] exc_page_fault+0x5c/0xb0 [ 941.734026][T24410] asm_exc_page_fault+0x26/0x30 [ 941.734054][T24410] RIP: 0010:rep_movs_alternative+0x11/0x90 [ 941.734096][T24410] Code: e9 04 20 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 cd 1f 04 00 66 66 2e 0f [ 941.734125][T24410] RSP: 0018:ffffc90019cdf9b0 EFLAGS: 00050206 [ 941.734149][T24410] RAX: 0000000000000020 RBX: 0000000000000006 RCX: 0000000000000006 [ 941.734167][T24410] RDX: ffffed100fd34002 RSI: ffff88807e9a0009 RDI: 0000000000000000 [ 941.734185][T24410] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffed100fd34001 [ 941.734202][T24410] R10: ffff88807e9a000e R11: 2020202020202020 R12: 0000000000000000 [ 941.734220][T24410] R13: ffffc90019cdfbc8 R14: ffff88807e9a0009 R15: 0000000000000000 [ 941.734247][T24410] _copy_to_iter+0x4eb/0x16f0 [ 941.734289][T24410] ? __pfx__copy_to_iter+0x10/0x10 [ 941.734323][T24410] ? single_next+0xd/0x40 [ 941.734359][T24410] ? traverse.part.0.constprop.0+0x2c5/0x640 [ 941.734411][T24410] seq_read_iter+0x719/0x12c0 [ 941.734462][T24410] seq_read+0x39e/0x4e0 [ 941.734506][T24410] ? __pfx_seq_read+0x10/0x10 [ 941.734550][T24410] ? rcu_is_watching+0x12/0xc0 [ 941.734579][T24410] ? rcu_is_watching+0x12/0xc0 [ 941.734611][T24410] ? apparmor_file_permission+0x251/0x400 [ 941.734660][T24410] full_proxy_read+0x12e/0x1a0 [ 941.734697][T24410] ? __pfx_full_proxy_read+0x10/0x10 [ 941.734735][T24410] vfs_read+0x1e4/0xc60 [ 941.734767][T24410] ? __pfx_vfs_read+0x10/0x10 [ 941.734797][T24410] ? __fget_files+0x204/0x3c0 [ 941.734825][T24410] ? rcu_is_watching+0x12/0xc0 [ 941.734851][T24410] ? lock_release+0x201/0x2f0 [ 941.734890][T24410] ? __fget_files+0x20e/0x3c0 [ 941.734917][T24410] ? __fget_files+0x180/0x3c0 [ 941.734948][T24410] __x64_sys_pread64+0x1eb/0x250 [ 941.734983][T24410] ? __pfx___x64_sys_pread64+0x10/0x10 [ 941.735021][T24410] do_syscall_64+0xcd/0x490 [ 941.735061][T24410] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 941.735096][T24410] RIP: 0033:0x7f337478eb69 [ 941.735118][T24410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 941.735146][T24410] RSP: 002b:00007f3375646038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 941.735172][T24410] RAX: ffffffffffffffda RBX: 00007f33749b5fa0 RCX: 00007f337478eb69 [ 941.735191][T24410] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003 [ 941.735207][T24410] RBP: 00007f3375646090 R08: 0000000000000000 R09: 0000000000000000 [ 941.735223][T24410] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000001 [ 941.735240][T24410] R13: 0000000000000000 R14: 00007f33749b5fa0 R15: 00007ffcf61778c8 [ 941.735266][T24410] [ 942.257882][T24406] vhci_hcd: invalid port number 16 [ 942.263154][T24406] vhci_hcd: invalid port number 16 [ 942.680370][T24400] caif:caif_disconnect_client(): nothing to disconnect [ 942.755535][T24427] netlink: 25 bytes leftover after parsing attributes in process `syz.5.4125'. [ 943.448871][T24451] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4133'. [ 944.450626][T24473] vhci_hcd: invalid port number 16 [ 944.474355][T24473] vhci_hcd: invalid port number 16 [ 944.776027][T24468] caif:caif_disconnect_client(): nothing to disconnect [ 945.581244][T24502] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4144'. [ 946.622000][T24482] kexec: Could not allocate control_code_buffer [ 947.495334][T24538] netlink: 25 bytes leftover after parsing attributes in process `syz.3.4152'. [ 948.075369][T24551] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4155'. [ 948.948117][T24569] FAULT_INJECTION: forcing a failure. [ 948.948117][T24569] name failslab, interval 1, probability 0, space 0, times 0 [ 948.971650][T24569] CPU: 1 UID: 0 PID: 24569 Comm: syz.1.4160 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 948.971697][T24569] Tainted: [U]=USER [ 948.971707][T24569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 948.971724][T24569] Call Trace: [ 948.971733][T24569] [ 948.971744][T24569] dump_stack_lvl+0x16c/0x1f0 [ 948.971789][T24569] should_fail_ex+0x512/0x640 [ 948.971820][T24569] should_failslab+0xc2/0x120 [ 948.971855][T24569] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 948.971889][T24569] ? security_file_alloc+0x34/0x2b0 [ 948.971923][T24569] security_file_alloc+0x34/0x2b0 [ 948.971953][T24569] init_file+0x93/0x4c0 [ 948.971991][T24569] alloc_empty_file_noaccount+0x3d/0xd0 [ 948.972032][T24569] alloc_file_pseudo_noaccount+0x13a/0x230 [ 948.972074][T24569] ? __pfx_alloc_file_pseudo_noaccount+0x10/0x10 [ 948.972122][T24569] bdev_file_open_by_dev+0x143/0x210 [ 948.972163][T24569] disk_scan_partitions+0x1ed/0x320 [ 948.972228][T24569] blkdev_common_ioctl+0x5bd/0x2470 [ 948.972266][T24569] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 948.972299][T24569] ? __pfx_blkdev_common_ioctl+0x10/0x10 [ 948.972340][T24569] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 948.972393][T24569] ? do_vfs_ioctl+0x128/0x14f0 [ 948.972458][T24569] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 948.972511][T24569] ? rcu_is_watching+0x12/0xc0 [ 948.972544][T24569] ? __fget_files+0x204/0x3c0 [ 948.972579][T24569] blkdev_ioctl+0x1cb/0x6d0 [ 948.972622][T24569] ? __pfx_blkdev_ioctl+0x10/0x10 [ 948.972671][T24569] ? __pfx_blkdev_ioctl+0x10/0x10 [ 948.972716][T24569] __x64_sys_ioctl+0x18b/0x210 [ 948.972766][T24569] do_syscall_64+0xcd/0x490 [ 948.972815][T24569] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 948.972850][T24569] RIP: 0033:0x7f451e38eb69 [ 948.972875][T24569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 948.972909][T24569] RSP: 002b:00007f451f242038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 948.972940][T24569] RAX: ffffffffffffffda RBX: 00007f451e5b5fa0 RCX: 00007f451e38eb69 [ 948.972963][T24569] RDX: 0000000000000000 RSI: 000000000000125f RDI: 0000000000000003 [ 948.972984][T24569] RBP: 00007f451e411df1 R08: 0000000000000000 R09: 0000000000000000 [ 948.973004][T24569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 948.973024][T24569] R13: 0000000000000000 R14: 00007f451e5b5fa0 R15: 00007ffe925986f8 [ 948.973055][T24569] [ 949.614270][T24559] kexec: Could not allocate control_code_buffer [ 950.519627][T24598] random: crng reseeded on system resumption [ 950.649723][T24598] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff] [ 950.664396][T24598] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff] [ 950.684638][T24598] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff] [ 950.760272][T24598] PM: hibernation: Basic memory bitmaps created [ 951.644926][T24597] PM: hibernation: Basic memory bitmaps freed [ 953.278850][T24640] vhci_hcd: invalid port number 16 [ 953.284093][T24640] vhci_hcd: invalid port number 16 [ 953.311124][T24639] caif:caif_disconnect_client(): nothing to disconnect [ 953.760451][T24634] caif:caif_disconnect_client(): nothing to disconnect [ 954.019493][T24665] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input56 [ 955.772580][T24696] vhci_hcd: invalid port number 16 [ 955.788951][T24696] vhci_hcd: invalid port number 16 [ 956.435997][T24693] caif:caif_disconnect_client(): nothing to disconnect [ 956.465915][T24679] kexec: Could not allocate control_code_buffer [ 957.856045][T24726] CIFS: VFS: Unsupported security flags: 0x10 [ 958.341915][T24736] netlink: 25 bytes leftover after parsing attributes in process `syz.5.4202'. [ 959.390260][T24758] vhci_hcd: invalid port number 16 [ 959.412338][T24758] vhci_hcd: invalid port number 16 [ 960.031257][T24754] caif:caif_disconnect_client(): nothing to disconnect [ 960.307296][T24797] vhci_hcd: invalid port number 16 [ 960.312489][T24797] vhci_hcd: invalid port number 16 [ 961.041054][T24790] caif:caif_disconnect_client(): nothing to disconnect [ 961.070251][T24827] vhci_hcd: invalid port number 16 [ 961.075402][T24827] vhci_hcd: invalid port number 16 [ 961.586449][T24812] caif:caif_disconnect_client(): nothing to disconnect [ 963.172402][T24852] caif:caif_disconnect_client(): nothing to disconnect [ 964.067914][T24897] FAULT_INJECTION: forcing a failure. [ 964.067914][T24897] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 964.125031][T24897] CPU: 0 UID: 0 PID: 24897 Comm: syz.5.4231 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 964.125085][T24897] Tainted: [U]=USER [ 964.125094][T24897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 964.125109][T24897] Call Trace: [ 964.125118][T24897] [ 964.125128][T24897] dump_stack_lvl+0x16c/0x1f0 [ 964.125169][T24897] should_fail_ex+0x512/0x640 [ 964.125197][T24897] _copy_to_user+0x32/0xd0 [ 964.125228][T24897] kvm_arch_vcpu_ioctl+0xa66/0x52d0 [ 964.125261][T24897] ? stack_trace_save+0x8e/0xc0 [ 964.125290][T24897] ? stack_depot_save_flags+0x28/0xa40 [ 964.125316][T24897] ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10 [ 964.125348][T24897] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 964.125388][T24897] ? kasan_save_stack+0x42/0x60 [ 964.125416][T24897] ? kasan_save_stack+0x33/0x60 [ 964.125444][T24897] ? kasan_save_track+0x14/0x30 [ 964.125472][T24897] ? kasan_save_free_info+0x3b/0x60 [ 964.125511][T24897] ? __kasan_slab_free+0x51/0x70 [ 964.125540][T24897] ? kfree+0x2b4/0x4d0 [ 964.125562][T24897] ? tomoyo_path_number_perm+0x470/0x580 [ 964.125587][T24897] ? security_file_ioctl+0x9b/0x240 [ 964.125614][T24897] ? __x64_sys_ioctl+0xb7/0x210 [ 964.125651][T24897] ? do_syscall_64+0xcd/0x490 [ 964.125691][T24897] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 964.125726][T24897] ? __mutex_trylock_common+0xe9/0x250 [ 964.125764][T24897] ? __pfx___mutex_trylock_common+0x10/0x10 [ 964.125801][T24897] ? __pfx___might_resched+0x10/0x10 [ 964.125828][T24897] ? rcu_is_watching+0x12/0xc0 [ 964.125854][T24897] ? trace_contention_end+0xdd/0x130 [ 964.125890][T24897] ? __mutex_lock+0x1c2/0x1070 [ 964.125931][T24897] ? rcu_is_watching+0x12/0xc0 [ 964.125957][T24897] ? __pfx___mutex_lock+0x10/0x10 [ 964.125998][T24897] ? tomoyo_path_number_perm+0x295/0x580 [ 964.126023][T24897] ? rcu_is_watching+0x12/0xc0 [ 964.126058][T24897] ? tomoyo_path_number_perm+0x18d/0x580 [ 964.126086][T24897] ? kvm_vcpu_ioctl+0x1236/0x1690 [ 964.126120][T24897] kvm_vcpu_ioctl+0x1236/0x1690 [ 964.126155][T24897] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 964.126189][T24897] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 964.126228][T24897] ? do_vfs_ioctl+0x128/0x14f0 [ 964.126268][T24897] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 964.126311][T24897] ? rcu_is_watching+0x12/0xc0 [ 964.126336][T24897] ? __fget_files+0x204/0x3c0 [ 964.126363][T24897] ? hook_file_ioctl_common+0x145/0x410 [ 964.126408][T24897] ? __fget_files+0x20e/0x3c0 [ 964.126436][T24897] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 964.126470][T24897] __x64_sys_ioctl+0x18b/0x210 [ 964.126510][T24897] do_syscall_64+0xcd/0x490 [ 964.126550][T24897] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 964.126576][T24897] RIP: 0033:0x7f02ab98eb69 [ 964.126596][T24897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 964.126622][T24897] RSP: 002b:00007f02ac7bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 964.126648][T24897] RAX: ffffffffffffffda RBX: 00007f02abbb5fa0 RCX: 00007f02ab98eb69 [ 964.126665][T24897] RDX: 0000000000000000 RSI: 000000008140aecc RDI: 0000000000000004 [ 964.126680][T24897] RBP: 00007f02ac7bd090 R08: 0000000000000000 R09: 0000000000000000 [ 964.126696][T24897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 964.126712][T24897] R13: 0000000000000000 R14: 00007f02abbb5fa0 R15: 00007ffc8b4db088 [ 964.126736][T24897] [ 967.073623][T24944] vhci_hcd: invalid port number 16 [ 967.087248][T24944] vhci_hcd: invalid port number 16 [ 967.137817][T24943] caif:caif_disconnect_client(): nothing to disconnect [ 967.878466][T24970] netlink: 25 bytes leftover after parsing attributes in process `syz.5.4247'. [ 968.343692][T24912] kexec: Could not allocate control_code_buffer [ 969.720031][T25001] vhci_hcd: invalid port number 16 [ 969.725170][T25001] vhci_hcd: invalid port number 16 [ 969.730906][T24998] caif:caif_disconnect_client(): nothing to disconnect [ 969.830987][T25008] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4256'. [ 969.940856][T25010] ptrace attach of "./syz-executor exec"[25013] was attempted by "./syz-executor exec"[25010] [ 970.631044][T25026] vhci_hcd: invalid port number 16 [ 970.636206][T25026] vhci_hcd: invalid port number 16 [ 971.157345][T25023] caif:caif_disconnect_client(): nothing to disconnect [ 971.354570][T25046] FAULT_INJECTION: forcing a failure. [ 971.354570][T25046] name failslab, interval 1, probability 0, space 0, times 0 [ 971.385031][T25046] CPU: 0 UID: 0 PID: 25046 Comm: syz.3.4265 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 971.385076][T25046] Tainted: [U]=USER [ 971.385084][T25046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 971.385100][T25046] Call Trace: [ 971.385109][T25046] [ 971.385119][T25046] dump_stack_lvl+0x16c/0x1f0 [ 971.385161][T25046] should_fail_ex+0x512/0x640 [ 971.385189][T25046] ? create_rule.isra.0+0x6e/0x390 [ 971.385225][T25046] should_failslab+0xc2/0x120 [ 971.385258][T25046] __kmalloc_noprof+0xd2/0x510 [ 971.385288][T25046] ? __mutex_trylock_common+0xe9/0x250 [ 971.385325][T25046] ? __pfx___mutex_trylock_common+0x10/0x10 [ 971.385363][T25046] create_rule.isra.0+0x6e/0x390 [ 971.385410][T25046] insert_rule+0x64a/0x890 [ 971.385448][T25046] ? __pfx_insert_rule+0x10/0x10 [ 971.385485][T25046] ? __pfx___mutex_lock+0x10/0x10 [ 971.385529][T25046] landlock_insert_rule+0x96/0xd0 [ 971.385567][T25046] ? __pfx_landlock_insert_rule+0x10/0x10 [ 971.385604][T25046] ? landlock_append_fs_rule+0x675/0x970 [ 971.385633][T25046] ? lock_release+0x201/0x2f0 [ 971.385669][T25046] landlock_append_fs_rule+0x446/0x970 [ 971.385695][T25046] ? do_raw_spin_lock+0x12c/0x2b0 [ 971.385735][T25046] ? __pfx_landlock_append_fs_rule+0x10/0x10 [ 971.385763][T25046] ? rcu_is_watching+0x12/0xc0 [ 971.385788][T25046] ? lock_release+0x201/0x2f0 [ 971.385823][T25046] add_rule_path_beneath+0x37d/0x4d0 [ 971.385858][T25046] ? __pfx_add_rule_path_beneath+0x10/0x10 [ 971.385896][T25046] ? fdget+0x176/0x210 [ 971.385923][T25046] __x64_sys_landlock_add_rule+0x1a9/0x240 [ 971.385961][T25046] do_syscall_64+0xcd/0x490 [ 971.386001][T25046] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 971.386029][T25046] RIP: 0033:0x7f337478eb69 [ 971.386049][T25046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 971.386075][T25046] RSP: 002b:00007f3375646038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bd [ 971.386101][T25046] RAX: ffffffffffffffda RBX: 00007f33749b5fa0 RCX: 00007f337478eb69 [ 971.386117][T25046] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000003 [ 971.386133][T25046] RBP: 00007f3375646090 R08: 0000000000000000 R09: 0000000000000000 [ 971.386148][T25046] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 971.386164][T25046] R13: 0000000000000000 R14: 00007f33749b5fa0 R15: 00007ffcf61778c8 [ 971.386189][T25046] [ 971.627906][ C0] vkms_vblank_simulate: vblank timer overrun [ 973.035496][T25072] netlink: 25 bytes leftover after parsing attributes in process `syz.1.4271'. [ 973.260734][T25076] FAULT_INJECTION: forcing a failure. [ 973.260734][T25076] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 973.291698][T25076] CPU: 0 UID: 0 PID: 25076 Comm: syz.3.4272 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 973.291743][T25076] Tainted: [U]=USER [ 973.291753][T25076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 973.291769][T25076] Call Trace: [ 973.291779][T25076] [ 973.291789][T25076] dump_stack_lvl+0x16c/0x1f0 [ 973.291834][T25076] should_fail_ex+0x512/0x640 [ 973.291863][T25076] should_fail_alloc_page+0xe7/0x130 [ 973.291900][T25076] prepare_alloc_pages+0x3c2/0x610 [ 973.291942][T25076] ? rcu_is_watching+0x12/0xc0 [ 973.291973][T25076] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 973.292010][T25076] ? rcu_is_watching+0x12/0xc0 [ 973.292037][T25076] ? trace_mm_page_alloc+0x11f/0x1a0 [ 973.292078][T25076] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 973.292112][T25076] ? __pfx_stack_trace_save+0x10/0x10 [ 973.292142][T25076] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 973.292175][T25076] ? rcu_is_watching+0x12/0xc0 [ 973.292204][T25076] ? alloc_vmap_area+0x645/0x29c0 [ 973.292241][T25076] ? __vmalloc_node_range_noprof+0x271/0x14b0 [ 973.292301][T25076] ? __do_sys_listmount+0x1c2/0xec0 [ 973.292346][T25076] ? do_syscall_64+0xcd/0x490 [ 973.292392][T25076] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 973.292454][T25076] alloc_pages_bulk_noprof+0x71c/0x1410 [ 973.292510][T25076] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 973.292560][T25076] ? policy_nodemask+0xea/0x4e0 [ 973.292604][T25076] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 973.292644][T25076] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 973.292693][T25076] kasan_populate_vmalloc+0xf1/0x1f0 [ 973.292730][T25076] alloc_vmap_area+0x959/0x29c0 [ 973.292781][T25076] ? __pfx_alloc_vmap_area+0x10/0x10 [ 973.292831][T25076] __get_vm_area_node+0x1ca/0x330 [ 973.292883][T25076] __vmalloc_node_range_noprof+0x271/0x14b0 [ 973.292935][T25076] ? __do_sys_listmount+0x1c2/0xec0 [ 973.292987][T25076] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 973.293035][T25076] ? policy_nodemask+0xea/0x4e0 [ 973.293077][T25076] ? __do_sys_listmount+0x1c2/0xec0 [ 973.293135][T25076] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 973.293189][T25076] ? ___kmalloc_large_node+0xed/0x160 [ 973.293241][T25076] __kvmalloc_node_noprof+0x30a/0x620 [ 973.293285][T25076] ? __do_sys_listmount+0x1c2/0xec0 [ 973.293337][T25076] ? __do_sys_listmount+0x1c2/0xec0 [ 973.293392][T25076] ? __do_sys_listmount+0x1c2/0xec0 [ 973.293442][T25076] __do_sys_listmount+0x1c2/0xec0 [ 973.293497][T25076] ? __x64_sys_futex+0x1e0/0x4c0 [ 973.293537][T25076] ? __x64_sys_futex+0x1e9/0x4c0 [ 973.293579][T25076] ? __pfx___do_sys_listmount+0x10/0x10 [ 973.293665][T25076] do_syscall_64+0xcd/0x490 [ 973.293705][T25076] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 973.293734][T25076] RIP: 0033:0x7f337478eb69 [ 973.293755][T25076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 973.293783][T25076] RSP: 002b:00007f3375646038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 973.293810][T25076] RAX: ffffffffffffffda RBX: 00007f33749b5fa0 RCX: 00007f337478eb69 [ 973.293829][T25076] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 973.293847][T25076] RBP: 00007f3374811df1 R08: 0000000000000000 R09: 0000000000000000 [ 973.293864][T25076] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 973.293881][T25076] R13: 0000000000000000 R14: 00007f33749b5fa0 R15: 00007ffcf61778c8 [ 973.293905][T25076] [ 973.294716][T25076] warn_alloc: 1 callbacks suppressed [ 973.294733][T25076] syz.3.4272: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null) [ 973.582832][ C0] vkms_vblank_simulate: vblank timer overrun [ 973.678970][T25076] ,cpuset=/,mems_allowed=0-1 [ 973.684990][T25076] CPU: 0 UID: 0 PID: 25076 Comm: syz.3.4272 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 973.685047][T25076] Tainted: [U]=USER [ 973.685056][T25076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 973.685073][T25076] Call Trace: [ 973.685081][T25076] [ 973.685091][T25076] dump_stack_lvl+0x16c/0x1f0 [ 973.685134][T25076] warn_alloc+0x248/0x3a0 [ 973.685182][T25076] ? __pfx_warn_alloc+0x10/0x10 [ 973.685209][T25076] ? kfree+0x2b4/0x4d0 [ 973.685234][T25076] ? __get_vm_area_node+0x208/0x330 [ 973.685275][T25076] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 973.685319][T25076] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 973.685362][T25076] ? policy_nodemask+0xea/0x4e0 [ 973.685400][T25076] ? __do_sys_listmount+0x1c2/0xec0 [ 973.685452][T25076] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 973.685501][T25076] ? ___kmalloc_large_node+0xed/0x160 [ 973.685568][T25076] __kvmalloc_node_noprof+0x30a/0x620 [ 973.685601][T25076] ? __do_sys_listmount+0x1c2/0xec0 [ 973.685653][T25076] ? __do_sys_listmount+0x1c2/0xec0 [ 973.685706][T25076] ? __do_sys_listmount+0x1c2/0xec0 [ 973.685754][T25076] __do_sys_listmount+0x1c2/0xec0 [ 973.685808][T25076] ? __x64_sys_futex+0x1e0/0x4c0 [ 973.685845][T25076] ? __x64_sys_futex+0x1e9/0x4c0 [ 973.685894][T25076] ? __pfx___do_sys_listmount+0x10/0x10 [ 973.685949][T25076] do_syscall_64+0xcd/0x490 [ 973.685993][T25076] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 973.686023][T25076] RIP: 0033:0x7f337478eb69 [ 973.686046][T25076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 973.686076][T25076] RSP: 002b:00007f3375646038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 973.686105][T25076] RAX: ffffffffffffffda RBX: 00007f33749b5fa0 RCX: 00007f337478eb69 [ 973.686126][T25076] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100 [ 973.686144][T25076] RBP: 00007f3374811df1 R08: 0000000000000000 R09: 0000000000000000 [ 973.686162][T25076] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 973.686187][T25076] R13: 0000000000000000 R14: 00007f33749b5fa0 R15: 00007ffcf61778c8 [ 973.686232][T25076] [ 973.686246][T25076] Mem-Info: [ 973.917247][T25076] active_anon:4940 inactive_anon:39041 isolated_anon:0 [ 973.917247][T25076] active_file:25560 inactive_file:39096 isolated_file:0 [ 973.917247][T25076] unevictable:768 dirty:46 writeback:0 [ 973.917247][T25076] slab_reclaimable:12534 slab_unreclaimable:97982 [ 973.917247][T25076] mapped:34452 shmem:19418 pagetables:1535 [ 973.917247][T25076] sec_pagetables:0 bounce:0 [ 973.917247][T25076] kernel_misc_reclaimable:0 [ 973.917247][T25076] free:1256012 free_pcp:29411 free_cma:0 [ 973.962915][ C0] vkms_vblank_simulate: vblank timer overrun [ 973.969840][T25076] Node 0 active_anon:19760kB inactive_anon:156664kB active_file:102176kB inactive_file:156256kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:137808kB dirty:184kB writeback:0kB shmem:76636kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:71680kB kernel_stack:13864kB pagetables:6012kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 974.009873][ C0] vkms_vblank_simulate: vblank timer overrun [ 974.016840][T25076] Node 1 active_anon:0kB inactive_anon:0kB active_file:64kB inactive_file:128kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 974.059104][T25076] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 974.177721][T25084] vhci_hcd: invalid port number 16 [ 974.182882][T25084] vhci_hcd: invalid port number 16 [ 974.336323][T25077] caif:caif_disconnect_client(): nothing to disconnect [ 974.392052][T25076] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 974.456813][T25076] Node 0 DMA32 free:1069416kB boost:0kB min:34324kB low:42904kB high:51484kB reserved_highatomic:0KB free_highatomic:0KB active_anon:19716kB inactive_anon:181772kB active_file:100940kB inactive_file:156884kB unevictable:1536kB writepending:384kB present:3129332kB managed:2540112kB mlocked:0kB bounce:0kB free_pcp:120436kB local_pcp:55484kB free_cma:0kB [ 974.562079][T25076] lowmem_reserve[]: 0 0 1 1 1 [ 974.572197][T25076] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:1236kB inactive_file:72kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:4kB free_cma:0kB [ 974.602098][T25076] lowmem_reserve[]: 0 0 0 0 0 [ 974.606902][T25076] Node 1 Normal free:3910036kB boost:0kB min:55556kB low:69444kB high:83332kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:64kB inactive_file:128kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 974.719703][T25076] lowmem_reserve[]: 0 0 0 0 0 [ 974.724483][T25076] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 974.794573][T25076] Node 0 DMA32: 870*4kB (UME) 1087*8kB (UME) 382*16kB (UME) 373*32kB (UME) 1205*64kB (UME) 708*128kB (UME) 388*256kB (UM) 270*512kB (UM) 150*1024kB (UME) 31*2048kB (UME) 102*4096kB (UM) = 1070416kB [ 974.871032][T25076] Node 0 Normal: 3*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB [ 974.937532][T25095] sp0: Synchronizing with TNC [ 974.980630][T25076] Node 1 Normal: 19*4kB (UME) 27*8kB (UME) 43*16kB (UME) 256*32kB (UME) 111*64kB (UME) 34*128kB (UME) 21*256kB (UM) 8*512kB (UME) 3*1024kB (UM) 7*2048kB (UME) 943*4096kB (UM) = 3910036kB [ 975.163927][T25076] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 975.200131][T25095] sp0: Synchronizing with TNC [ 975.249055][T25076] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 975.312004][T25076] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 975.387263][T25076] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 975.487242][T25076] 91125 total pagecache pages [ 975.509274][T25076] 34 pages in swap cache [ 975.513605][T25076] Free swap = 124864kB [ 975.547238][T25076] Total swap = 124996kB [ 975.566265][T25076] 2097051 pages RAM [ 975.579538][T25076] 0 pages HighMem/MovableOnly [ 975.603983][T25076] 430045 pages reserved [ 975.617198][T25076] 0 pages cma reserved [ 977.666150][T25103] kexec: Could not allocate control_code_buffer [ 978.766903][T25151] vhci_hcd: invalid port number 16 [ 978.808836][T25151] vhci_hcd: invalid port number 16 [ 979.125245][T25159] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4290'. [ 979.152620][T25159] bridge0: port 2(bridge_slave_1) entered disabled state [ 979.204598][T25159] bridge_slave_1 (unregistering): left allmulticast mode [ 979.227299][T25159] bridge_slave_1 (unregistering): left promiscuous mode [ 979.247398][T25159] bridge0: port 2(bridge_slave_1) entered disabled state [ 979.524205][T25149] caif:caif_disconnect_client(): nothing to disconnect [ 980.011678][T25171] netlink: 25 bytes leftover after parsing attributes in process `syz.5.4294'. [ 980.634029][T25180] netlink: 'syz.5.4297': attribute type 1 has an invalid length. [ 980.665504][T25180] netlink: 54 bytes leftover after parsing attributes in process `syz.5.4297'. [ 980.726221][T25179] ima: policy update failed [ 980.740231][ T30] audit: type=1802 audit(4294967579.840:67): pid=25179 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.4297" res=0 errno=0 [ 981.914368][T25197] vhci_hcd: invalid port number 16 [ 981.919598][T25197] vhci_hcd: invalid port number 16 [ 981.931129][T25169] kexec: Could not allocate control_code_buffer [ 982.352755][T25211] vhci_hcd: invalid port number 16 [ 982.358848][T25211] vhci_hcd: invalid port number 16 [ 982.393050][T25213] FAULT_INJECTION: forcing a failure. [ 982.393050][T25213] name failslab, interval 1, probability 0, space 0, times 0 [ 982.410130][T25213] CPU: 0 UID: 0 PID: 25213 Comm: syz.1.4307 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 982.410176][T25213] Tainted: [U]=USER [ 982.410186][T25213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 982.410203][T25213] Call Trace: [ 982.410211][T25213] [ 982.410222][T25213] dump_stack_lvl+0x16c/0x1f0 [ 982.410264][T25213] should_fail_ex+0x512/0x640 [ 982.410291][T25213] should_failslab+0xc2/0x120 [ 982.410325][T25213] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 982.410365][T25213] ? alloc_empty_file+0x55/0x1e0 [ 982.410402][T25213] alloc_empty_file+0x55/0x1e0 [ 982.410437][T25213] dentry_open+0x46/0xd0 [ 982.410472][T25213] open_namespace+0xff/0x190 [ 982.410497][T25213] ? __pfx_open_namespace+0x10/0x10 [ 982.410524][T25213] ? lock_release+0x201/0x2f0 [ 982.410558][T25213] pidfd_ioctl+0xb80/0x2680 [ 982.410599][T25213] ? __pfx_pidfd_ioctl+0x10/0x10 [ 982.410665][T25213] ? hook_file_ioctl_common+0x145/0x410 [ 982.410716][T25213] ? __pfx_pidfd_ioctl+0x10/0x10 [ 982.410759][T25213] __x64_sys_ioctl+0x18b/0x210 [ 982.410804][T25213] do_syscall_64+0xcd/0x490 [ 982.410845][T25213] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 982.410875][T25213] RIP: 0033:0x7f451e38eb69 [ 982.410896][T25213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 982.410923][T25213] RSP: 002b:00007f451f242038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 982.410950][T25213] RAX: ffffffffffffffda RBX: 00007f451e5b5fa0 RCX: 00007f451e38eb69 [ 982.410968][T25213] RDX: 0000000000000000 RSI: 000000000000ff09 RDI: 0000000000000003 [ 982.410985][T25213] RBP: 00007f451f242090 R08: 0000000000000000 R09: 0000000000000000 [ 982.411002][T25213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 982.411019][T25213] R13: 0000000000000000 R14: 00007f451e5b5fa0 R15: 00007ffe925986f8 [ 982.411065][T25213] [ 982.654619][T25195] caif:caif_disconnect_client(): nothing to disconnect [ 982.949990][T25228] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4308'. [ 983.017418][T25205] caif:caif_disconnect_client(): nothing to disconnect [ 983.406292][T25239] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4313'. [ 983.490541][T25242] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4314'. [ 984.207274][T25260] Debayer A: ================= START STATUS ================= [ 984.215288][T25260] Debayer A: Debayer Mean Window Size: 3 [ 984.221207][T25260] Debayer A: ================== END STATUS ================== [ 984.922817][ T9539] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 985.496161][T25243] kexec: Could not allocate control_code_buffer [ 985.829065][T25303] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4331'. [ 987.045313][T25320] GUP no longer grows the stack in syz.1.4334 (25320): 5000-401000 (4000) [ 987.054058][T25320] CPU: 0 UID: 0 PID: 25320 Comm: syz.1.4334 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 987.054117][T25320] Tainted: [U]=USER [ 987.054129][T25320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 987.054149][T25320] Call Trace: [ 987.054160][T25320] [ 987.054172][T25320] dump_stack_lvl+0x16c/0x1f0 [ 987.054225][T25320] gup_vma_lookup+0x1d2/0x220 [ 987.054271][T25320] __get_user_pages+0x243/0x34a0 [ 987.054319][T25320] ? do_raw_spin_lock+0x12c/0x2b0 [ 987.054372][T25320] ? down_read_killable+0x220/0x4b0 [ 987.054404][T25320] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 987.054453][T25320] ? __pfx___get_user_pages+0x10/0x10 [ 987.054498][T25320] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 987.054548][T25320] __gup_longterm_locked+0xa92/0x17e0 [ 987.054603][T25320] ? __pfx___gup_longterm_locked+0x10/0x10 [ 987.054655][T25320] ? try_get_folio+0x255/0x730 [ 987.054699][T25320] ? sanity_check_pinned_pages+0x58a/0x11d0 [ 987.054750][T25320] gup_fast_fallback+0xf78/0x23f0 [ 987.054811][T25320] ? blkdev_write_iter+0x703/0xe00 [ 987.054860][T25320] ? __pfx_gup_fast_fallback+0x10/0x10 [ 987.054908][T25320] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 987.054951][T25320] pin_user_pages_fast+0xa7/0xf0 [ 987.055001][T25320] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 987.055068][T25320] iov_iter_extract_pages+0x3a2/0x1ed0 [ 987.055136][T25320] ? __pfx_iov_iter_extract_pages+0x10/0x10 [ 987.055169][T25320] ? trace_kmem_cache_alloc+0x28/0xc0 [ 987.055209][T25320] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 987.055240][T25320] ? rcu_is_watching+0x12/0xc0 [ 987.055269][T25320] ? bio_associate_blkg_from_css+0x394/0x13e0 [ 987.055307][T25320] ? rcu_is_watching+0x12/0xc0 [ 987.055333][T25320] ? lock_release+0x201/0x2f0 [ 987.055372][T25320] bio_iov_iter_get_pages+0x384/0x10d0 [ 987.055403][T25320] ? bio_associate_blkg+0x137/0x2a0 [ 987.055437][T25320] ? rcu_is_watching+0x12/0xc0 [ 987.055473][T25320] ? __pfx_bio_iov_iter_get_pages+0x10/0x10 [ 987.055506][T25320] ? __pfx_bio_alloc_bioset+0x10/0x10 [ 987.055533][T25320] ? ktime_get_coarse_real_ts64_mg+0x240/0x300 [ 987.055573][T25320] ? rcu_is_watching+0x12/0xc0 [ 987.055599][T25320] ? iov_iter_is_aligned+0xf2/0x5a0 [ 987.055624][T25320] ? set_normalized_timespec64+0x69/0xc0 [ 987.055659][T25320] blkdev_direct_IO+0x1401/0x1fe0 [ 987.055707][T25320] ? __pfx_blkdev_direct_IO+0x10/0x10 [ 987.055750][T25320] ? filemap_check_errors+0xa9/0x160 [ 987.055795][T25320] blkdev_write_iter+0x703/0xe00 [ 987.055827][T25320] vfs_write+0x6c7/0x1150 [ 987.055849][T25320] ? __pfx_blkdev_write_iter+0x10/0x10 [ 987.055881][T25320] ? __pfx_vfs_write+0x10/0x10 [ 987.055903][T25320] ? lock_release+0x201/0x2f0 [ 987.055935][T25320] ksys_write+0x12a/0x250 [ 987.055956][T25320] ? __pfx_ksys_write+0x10/0x10 [ 987.055982][T25320] do_syscall_64+0xcd/0x490 [ 987.056013][T25320] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 987.056034][T25320] RIP: 0033:0x7f451e38eb69 [ 987.056049][T25320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 987.056070][T25320] RSP: 002b:00007f451f200038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 987.056103][T25320] RAX: ffffffffffffffda RBX: 00007f451e5b6160 RCX: 00007f451e38eb69 [ 987.056117][T25320] RDX: 000000100000a3d9 RSI: 0000000000000000 RDI: 0000000000000004 [ 987.056130][T25320] RBP: 00007f451e411df1 R08: 0000000000000000 R09: 0000000000000000 [ 987.056143][T25320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 987.056155][T25320] R13: 0000000000000000 R14: 00007f451e5b6160 R15: 00007ffe925986f8 [ 987.056175][T25320] [ 987.514572][T25335] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4340'. [ 987.930730][T25339] vhci_hcd: invalid port number 16 [ 987.935884][T25339] vhci_hcd: invalid port number 16 [ 987.939198][T25347] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4342'. [ 988.014610][T25347] veth0_macvtap: left promiscuous mode [ 988.420554][T25336] caif:caif_disconnect_client(): nothing to disconnect [ 988.473385][T25360] netlink: 25 bytes leftover after parsing attributes in process `syz.5.4344'. [ 988.719443][T25363] caif:caif_disconnect_client(): nothing to disconnect [ 989.283153][T25376] FAULT_INJECTION: forcing a failure. [ 989.283153][T25376] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 989.311381][T25376] CPU: 1 UID: 0 PID: 25376 Comm: syz.4.4348 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 989.311416][T25376] Tainted: [U]=USER [ 989.311423][T25376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 989.311435][T25376] Call Trace: [ 989.311441][T25376] [ 989.311448][T25376] dump_stack_lvl+0x16c/0x1f0 [ 989.311481][T25376] should_fail_ex+0x512/0x640 [ 989.311501][T25376] _copy_to_user+0x32/0xd0 [ 989.311524][T25376] simple_read_from_buffer+0xcb/0x170 [ 989.311558][T25376] proc_fail_nth_read+0x197/0x240 [ 989.311577][T25376] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 989.311596][T25376] ? security_file_permission+0x71/0x210 [ 989.311619][T25376] ? rw_verify_area+0xcf/0x6c0 [ 989.311637][T25376] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 989.311656][T25376] vfs_read+0x1e4/0xc60 [ 989.311678][T25376] ? __pfx___mutex_lock+0x10/0x10 [ 989.311708][T25376] ? __pfx_vfs_read+0x10/0x10 [ 989.311728][T25376] ? __fget_files+0x204/0x3c0 [ 989.311748][T25376] ? rcu_is_watching+0x12/0xc0 [ 989.311779][T25376] ? __fget_files+0x20e/0x3c0 [ 989.311802][T25376] ksys_read+0x12a/0x250 [ 989.311822][T25376] ? __pfx_ksys_read+0x10/0x10 [ 989.311844][T25376] ? fput+0x70/0xf0 [ 989.311871][T25376] do_syscall_64+0xcd/0x490 [ 989.311902][T25376] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 989.311923][T25376] RIP: 0033:0x7f5084b8d57c [ 989.311938][T25376] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 989.311959][T25376] RSP: 002b:00007f5085a21030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 989.311978][T25376] RAX: ffffffffffffffda RBX: 00007f5084db5fa0 RCX: 00007f5084b8d57c [ 989.311992][T25376] RDX: 000000000000000f RSI: 00007f5085a210a0 RDI: 0000000000000005 [ 989.312004][T25376] RBP: 00007f5085a21090 R08: 0000000000000000 R09: 0000000000000000 [ 989.312017][T25376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 989.312031][T25376] R13: 0000000000000000 R14: 00007f5084db5fa0 R15: 00007fffd2b5f458 [ 989.312050][T25376] [ 989.538851][T25378] netlink: 25 bytes leftover after parsing attributes in process `syz.1.4347'. [ 989.747421][T25379] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4349'. [ 990.131927][T25381] ieee80211 phy45: Selected rate control algorithm 'minstrel_ht' [ 991.325065][T25411] vhci_hcd: invalid port number 16 [ 991.331928][T25411] vhci_hcd: invalid port number 16 [ 991.784360][T25403] caif:caif_disconnect_client(): nothing to disconnect [ 992.224046][T25427] vhci_hcd: invalid port number 16 [ 992.230915][T25427] vhci_hcd: invalid port number 16 [ 992.834582][T25421] caif:caif_disconnect_client(): nothing to disconnect [ 993.039837][T25399] kexec: Could not allocate control_code_buffer [ 993.784915][T25461] vhci_hcd: invalid port number 16 [ 993.790165][T25461] vhci_hcd: invalid port number 16 [ 994.092199][T25447] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4365'. [ 994.389657][T25451] caif:caif_disconnect_client(): nothing to disconnect [ 996.098835][T25511] random: crng reseeded on system resumption [ 996.153821][T25511] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff] [ 996.162261][T25511] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff] [ 996.170699][T25511] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff] [ 996.180873][T25511] PM: hibernation: Basic memory bitmaps created [ 996.218618][T25513] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4378'. [ 996.325269][T25485] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 996.334250][T25485] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 996.584709][T25472] PM: hibernation: Basic memory bitmaps freed [ 998.101074][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 998.107497][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 998.253794][T25547] can: request_module (can-proto-3) failed. [ 998.343835][T25552] FAULT_INJECTION: forcing a failure. [ 998.343835][T25552] name failslab, interval 1, probability 0, space 0, times 0 [ 998.356559][T25552] CPU: 1 UID: 0 PID: 25552 Comm: syz.4.4386 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 998.356599][T25552] Tainted: [U]=USER [ 998.356608][T25552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 998.356624][T25552] Call Trace: [ 998.356632][T25552] [ 998.356641][T25552] dump_stack_lvl+0x16c/0x1f0 [ 998.356679][T25552] should_fail_ex+0x512/0x640 [ 998.356704][T25552] should_failslab+0xc2/0x120 [ 998.356732][T25552] __kmalloc_cache_noprof+0x6a/0x3e0 [ 998.356754][T25552] ? __sys_getsockopt+0x123/0x1b0 [ 998.356786][T25552] ? __x64_sys_getsockopt+0xbd/0x160 [ 998.356817][T25552] ? do_syscall_64+0xcd/0x490 [ 998.356849][T25552] ? subflow_create_ctx+0x9b/0x2c0 [ 998.356885][T25552] subflow_create_ctx+0x9b/0x2c0 [ 998.356919][T25552] subflow_ulp_init+0xc3/0x4d0 [ 998.356954][T25552] tcp_set_ulp+0x326/0x7f0 [ 998.356977][T25552] mptcp_subflow_create_socket+0x361/0xed0 [ 998.357005][T25552] ? __pfx_mptcp_subflow_create_socket+0x10/0x10 [ 998.357030][T25552] ? try_to_wake_up+0xa2f/0x1680 [ 998.357095][T25552] __mptcp_nmpc_sk+0x182/0x7d0 [ 998.357131][T25552] ? __pfx___mptcp_nmpc_sk+0x10/0x10 [ 998.357164][T25552] ? mptcp_getsockopt+0x7a5/0xe20 [ 998.357199][T25552] ? mptcp_getsockopt+0x7a5/0xe20 [ 998.357228][T25552] ? rcu_is_watching+0x12/0xc0 [ 998.357269][T25552] ? mptcp_getsockopt+0x7a5/0xe20 [ 998.357295][T25552] mptcp_getsockopt+0xcf8/0xe20 [ 998.357321][T25552] ? __pfx_mptcp_getsockopt+0x10/0x10 [ 998.357347][T25552] ? __might_fault+0xe3/0x190 [ 998.357374][T25552] ? __might_fault+0x13b/0x190 [ 998.357402][T25552] ? rcu_is_watching+0x12/0xc0 [ 998.357430][T25552] ? __might_fault+0xe3/0x190 [ 998.357460][T25552] ? lock_release+0x201/0x2f0 [ 998.357503][T25552] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 998.357534][T25552] do_sock_getsockopt+0x34a/0x440 [ 998.357584][T25552] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 998.357615][T25552] ? lock_release+0x201/0x2f0 [ 998.357663][T25552] __sys_getsockopt+0x123/0x1b0 [ 998.357711][T25552] __x64_sys_getsockopt+0xbd/0x160 [ 998.357754][T25552] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 998.357801][T25552] do_syscall_64+0xcd/0x490 [ 998.357849][T25552] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 998.357882][T25552] RIP: 0033:0x7f5084b8eb69 [ 998.357906][T25552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 998.357938][T25552] RSP: 002b:00007f5085a21038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 998.357968][T25552] RAX: ffffffffffffffda RBX: 00007f5084db5fa0 RCX: 00007f5084b8eb69 [ 998.357989][T25552] RDX: 0000000000000021 RSI: 0000000000000006 RDI: 0000000000000006 [ 998.358007][T25552] RBP: 00007f5084c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 998.358026][T25552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 998.358044][T25552] R13: 0000000000000000 R14: 00007f5084db5fa0 R15: 00007fffd2b5f458 [ 998.358073][T25552] [ 998.993649][T25563] FAULT_INJECTION: forcing a failure. [ 998.993649][T25563] name failslab, interval 1, probability 0, space 0, times 0 [ 999.017205][T25563] CPU: 0 UID: 0 PID: 25563 Comm: syz.4.4386 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 999.017253][T25563] Tainted: [U]=USER [ 999.017264][T25563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 999.017281][T25563] Call Trace: [ 999.017290][T25563] [ 999.017301][T25563] dump_stack_lvl+0x16c/0x1f0 [ 999.017347][T25563] should_fail_ex+0x512/0x640 [ 999.017378][T25563] ? tracing_log_err+0xb9/0x6a0 [ 999.017413][T25563] should_failslab+0xc2/0x120 [ 999.017450][T25563] __kmalloc_noprof+0xd2/0x510 [ 999.017480][T25563] ? __pfx_trace_seq_printf+0x10/0x10 [ 999.017515][T25563] tracing_log_err+0xb9/0x6a0 [ 999.017555][T25563] append_filter_err+0x380/0x5e0 [ 999.017589][T25563] apply_subsystem_event_filter+0x740/0x17d0 [ 999.017624][T25563] ? rcu_is_watching+0x12/0xc0 [ 999.017656][T25563] ? __pfx_apply_subsystem_event_filter+0x10/0x10 [ 999.017696][T25563] ? _copy_from_user+0x59/0xd0 [ 999.017731][T25563] subsystem_filter_write+0x95/0x120 [ 999.017768][T25563] ? __pfx_subsystem_filter_write+0x10/0x10 [ 999.017804][T25563] vfs_write+0x29d/0x1150 [ 999.017838][T25563] ? __pfx___mutex_lock+0x10/0x10 [ 999.017882][T25563] ? __pfx_vfs_write+0x10/0x10 [ 999.017913][T25563] ? __fget_files+0x204/0x3c0 [ 999.017947][T25563] ? rcu_is_watching+0x12/0xc0 [ 999.017978][T25563] ? __fget_files+0x20e/0x3c0 [ 999.018009][T25563] ksys_write+0x12a/0x250 [ 999.018039][T25563] ? __pfx_ksys_write+0x10/0x10 [ 999.018090][T25563] do_syscall_64+0xcd/0x490 [ 999.018147][T25563] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 999.018202][T25563] RIP: 0033:0x7f5084b8eb69 [ 999.018225][T25563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 999.018255][T25563] RSP: 002b:00007f5085a00038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 999.018283][T25563] RAX: ffffffffffffffda RBX: 00007f5084db6080 RCX: 00007f5084b8eb69 [ 999.018302][T25563] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000009 [ 999.018318][T25563] RBP: 00007f5084c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 999.018335][T25563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 999.018352][T25563] R13: 0000000000000000 R14: 00007f5084db6080 R15: 00007fffd2b5f458 [ 999.018379][T25563] [ 1000.721760][T25550] kexec: Could not allocate control_code_buffer [ 1002.117329][T25640] netlink: 25 bytes leftover after parsing attributes in process `syz.3.4403'. [ 1003.445931][T25634] kexec: Could not allocate control_code_buffer [ 1004.565828][T25697] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4412'. [ 1005.804716][T25685] kexec: Could not allocate control_code_buffer [ 1006.002982][T25729] netlink: 25 bytes leftover after parsing attributes in process `syz.3.4417'. [ 1006.630315][T25742] FAULT_INJECTION: forcing a failure. [ 1006.630315][T25742] name failslab, interval 1, probability 0, space 0, times 0 [ 1006.644193][T25742] CPU: 0 UID: 0 PID: 25742 Comm: syz.5.4423 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 1006.644239][T25742] Tainted: [U]=USER [ 1006.644250][T25742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1006.644267][T25742] Call Trace: [ 1006.644277][T25742] [ 1006.644287][T25742] dump_stack_lvl+0x16c/0x1f0 [ 1006.644331][T25742] should_fail_ex+0x512/0x640 [ 1006.644361][T25742] should_failslab+0xc2/0x120 [ 1006.644398][T25742] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1006.644425][T25742] ? __mutex_lock+0x1c2/0x1070 [ 1006.644466][T25742] ? alloc_tty_struct+0x96/0x8c0 [ 1006.644495][T25742] alloc_tty_struct+0x96/0x8c0 [ 1006.644521][T25742] ? __pfx___mutex_lock+0x10/0x10 [ 1006.644563][T25742] ? __pfx_alloc_tty_struct+0x10/0x10 [ 1006.644596][T25742] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1006.644642][T25742] tty_init_dev.part.0+0x1e/0x500 [ 1006.644670][T25742] tty_init_dev+0x60/0x80 [ 1006.644697][T25742] ? __pfx_ptmx_open+0x10/0x10 [ 1006.644732][T25742] ptmx_open+0x10d/0x360 [ 1006.644767][T25742] ? __pfx_ptmx_open+0x10/0x10 [ 1006.644801][T25742] chrdev_open+0x231/0x6a0 [ 1006.644834][T25742] ? __pfx_apparmor_file_open+0x10/0x10 [ 1006.644864][T25742] ? __pfx_chrdev_open+0x10/0x10 [ 1006.644900][T25742] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1006.644933][T25742] do_dentry_open+0x97f/0x1530 [ 1006.644964][T25742] ? __pfx_chrdev_open+0x10/0x10 [ 1006.645002][T25742] vfs_open+0x82/0x3f0 [ 1006.645042][T25742] path_openat+0x1de4/0x2cb0 [ 1006.645076][T25742] ? __pfx_path_openat+0x10/0x10 [ 1006.645111][T25742] do_filp_open+0x20b/0x470 [ 1006.645142][T25742] ? __pfx_do_filp_open+0x10/0x10 [ 1006.645189][T25742] ? alloc_fd+0x471/0x7d0 [ 1006.645220][T25742] do_sys_openat2+0x11b/0x1d0 [ 1006.645261][T25742] ? __pfx_do_sys_openat2+0x10/0x10 [ 1006.645308][T25742] __x64_sys_openat+0x174/0x210 [ 1006.645349][T25742] ? __pfx___x64_sys_openat+0x10/0x10 [ 1006.645398][T25742] do_syscall_64+0xcd/0x490 [ 1006.645440][T25742] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1006.645469][T25742] RIP: 0033:0x7f02ab98eb69 [ 1006.645491][T25742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1006.645521][T25742] RSP: 002b:00007f02ac7bd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1006.645548][T25742] RAX: ffffffffffffffda RBX: 00007f02abbb5fa0 RCX: 00007f02ab98eb69 [ 1006.645567][T25742] RDX: 0000000000040001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 1006.645594][T25742] RBP: 00007f02aba11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1006.645612][T25742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1006.645629][T25742] R13: 0000000000000000 R14: 00007f02abbb5fa0 R15: 00007ffc8b4db088 [ 1006.645655][T25742] [ 1008.087739][T25773] netlink: 314 bytes leftover after parsing attributes in process `syz.3.4432'. [ 1008.164427][T25778] netlink: 'syz.3.4434': attribute type 11 has an invalid length. [ 1009.132104][T25796] MTRR 1 not used [ 1009.614232][T25760] kexec: Could not allocate control_code_buffer [ 1009.614246][T25814] usb usb2: usbfs: process 25814 (syz.4.4443) did not claim interface 1 before use [ 1009.669376][T25816] base_sock_release(ffff88804c483600) sk=ffff88805b724000 [ 1009.756975][T25820] vhci_hcd: invalid port number 16 [ 1009.764079][T25820] vhci_hcd: invalid port number 16 [ 1010.435453][T25811] caif:caif_disconnect_client(): nothing to disconnect [ 1011.925123][T25872] vhci_hcd: invalid port number 16 [ 1011.957284][T25876] random: crng reseeded on system resumption [ 1011.963472][T25872] vhci_hcd: invalid port number 16 [ 1012.206725][T25876] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff] [ 1012.238885][T25876] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff] [ 1012.252441][T25876] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff] [ 1012.260971][T25876] PM: hibernation: Basic memory bitmaps created [ 1012.446511][T25865] caif:caif_disconnect_client(): nothing to disconnect [ 1012.654961][T25891] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input58 [ 1013.281871][T25854] PM: hibernation: Basic memory bitmaps freed [ 1014.734923][T25926] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4469'. [ 1014.764093][T25929] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 1014.795188][T25929] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 1015.427712][T25922] random: crng reseeded on system resumption [ 1015.475132][T25922] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff] [ 1015.609437][T25922] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff] [ 1015.648920][T25922] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff] [ 1015.680766][T25922] PM: hibernation: Basic memory bitmaps created [ 1015.850377][T25918] PM: hibernation: Basic memory bitmaps freed [ 1016.135980][T25944] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4475'. [ 1016.620631][T25933] kexec: Could not allocate control_code_buffer [ 1016.905783][T25971] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4483'. [ 1017.895800][T25994] ima: policy update failed [ 1017.943096][ T30] audit: type=1802 audit(4294967617.030:68): pid=25994 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.4487" res=0 errno=0 [ 1019.330390][T26040] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4498'. [ 1021.582736][T26081] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4507'. [ 1021.731505][T26059] kexec: Could not allocate control_code_buffer [ 1022.574401][T26105] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4511'. [ 1023.076449][T26121] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4518'. [ 1024.609674][T26155] vhci_hcd: invalid port number 16 [ 1024.614829][T26155] vhci_hcd: invalid port number 16 [ 1025.329353][T26152] caif:caif_disconnect_client(): nothing to disconnect [ 1026.917542][T26212] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬ [ 1026.970062][T26169] kexec: Could not allocate control_code_buffer [ 1027.746409][T26229] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 1028.091117][T26238] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 1028.509701][T26226] caif:caif_disconnect_client(): nothing to disconnect [ 1028.824813][T26233] caif:caif_disconnect_client(): nothing to disconnect [ 1028.977247][T26255] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4553'. [ 1030.654112][T26310] netlink: 25 bytes leftover after parsing attributes in process `syz.3.4567'. [ 1030.704760][ T30] audit: type=1800 audit(4294967629.800:69): pid=26307 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.4566" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0 [ 1031.113344][T26324] ima: policy update failed [ 1031.125742][ T30] audit: type=1802 audit(4294967630.220:70): pid=26324 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.4572" res=0 errno=0 [ 1031.287723][T26326] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4571'. [ 1031.335036][T26326] bridge0: port 2(bridge_slave_1) entered disabled state [ 1031.449029][T26326] bridge_slave_1 (unregistering): left allmulticast mode [ 1031.467735][T26326] bridge_slave_1 (unregistering): left promiscuous mode [ 1031.474784][T26326] bridge0: port 2(bridge_slave_1) entered disabled state [ 1031.962938][T26307] kexec: Could not allocate control_code_buffer [ 1033.464000][T26378] vhci_hcd: invalid port number 16 [ 1033.471230][T26378] vhci_hcd: invalid port number 16 [ 1033.940832][T26387] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4586'. [ 1033.988343][T26387] ieee80211 phy46: Selected rate control algorithm 'minstrel_ht' [ 1034.186738][T26375] caif:caif_disconnect_client(): nothing to disconnect [ 1035.758230][T26425] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4593'. [ 1037.345814][T26481] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4608'. [ 1038.577556][T23550] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1038.585705][T23550] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 1038.593819][T23550] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection [ 1040.474086][T26560] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4623'. [ 1040.891894][T26586] sysfs: cannot create duplicate filename '/fs/nfs/net' [ 1040.903239][T26586] CPU: 0 UID: 0 PID: 26586 Comm: syz.5.4630 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 1040.903291][T26586] Tainted: [U]=USER [ 1040.903303][T26586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1040.903324][T26586] Call Trace: [ 1040.903334][T26586] [ 1040.903346][T26586] dump_stack_lvl+0x16c/0x1f0 [ 1040.903388][T26586] sysfs_warn_dup+0x7f/0xa0 [ 1040.903415][T26586] sysfs_create_dir_ns+0x24b/0x2b0 [ 1040.903451][T26586] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 1040.903479][T26586] ? kobject_add_internal+0x25b/0x9b0 [ 1040.903519][T26586] ? lock_release+0x201/0x2f0 [ 1040.903551][T26586] ? nfs_netns_namespace+0xd/0x40 [ 1040.903591][T26586] kobject_add_internal+0x2c4/0x9b0 [ 1040.903633][T26586] kobject_init_and_add+0x11b/0x190 [ 1040.903674][T26586] ? __pfx_kobject_init_and_add+0x10/0x10 [ 1040.903716][T26586] nfs_netns_sysfs_setup+0xf9/0x1f0 [ 1040.903751][T26586] nfs_net_init+0x10a/0x340 [ 1040.903778][T26586] ? __pfx_nfs_net_init+0x10/0x10 [ 1040.903804][T26586] ops_init+0x1e2/0x5f0 [ 1040.903842][T26586] setup_net+0x10f/0x380 [ 1040.903877][T26586] ? lockdep_init_map_type+0x5c/0x280 [ 1040.903909][T26586] ? __pfx_setup_net+0x10/0x10 [ 1040.903946][T26586] ? debug_mutex_init+0x37/0x70 [ 1040.903987][T26586] copy_net_ns+0x2a6/0x5f0 [ 1040.904010][T26586] create_new_namespaces+0x3ea/0xa90 [ 1040.904039][T26586] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1040.904067][T26586] ksys_unshare+0x45b/0xa40 [ 1040.904099][T26586] ? __pfx_ksys_unshare+0x10/0x10 [ 1040.904130][T26586] ? __pkru_allows_pkey+0x51/0xb0 [ 1040.904166][T26586] ? do_user_addr_fault+0x843/0x1370 [ 1040.904207][T26586] __x64_sys_unshare+0x31/0x40 [ 1040.904239][T26586] do_syscall_64+0xcd/0x490 [ 1040.904275][T26586] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1040.904298][T26586] RIP: 0033:0x7f02ab98eb69 [ 1040.904316][T26586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1040.904339][T26586] RSP: 002b:00007f02ac77b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1040.904361][T26586] RAX: ffffffffffffffda RBX: 00007f02abbb6160 RCX: 00007f02ab98eb69 [ 1040.904378][T26586] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1040.904392][T26586] RBP: 00007f02aba11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1040.904407][T26586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1040.904427][T26586] R13: 0000000000000001 R14: 00007f02abbb6160 R15: 00007ffc8b4db088 [ 1040.904450][T26586] [ 1041.169923][T26586] kobject: kobject_add_internal failed for net with -EEXIST, don't try to register things with the same name in the same directory. [ 1041.296840][T26589] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4631'. [ 1041.333085][T26592] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input59 [ 1041.715880][T26603] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4635'. [ 1042.013796][T26619] mkiss: ax0: crc mode is auto. [ 1042.242105][T26627] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4642'. [ 1042.810806][T26638] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4646'. [ 1042.883144][T26642] FAULT_INJECTION: forcing a failure. [ 1042.883144][T26642] name failslab, interval 1, probability 0, space 0, times 0 [ 1042.933159][T26642] CPU: 1 UID: 0 PID: 26642 Comm: syz.4.4647 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 1042.933214][T26642] Tainted: [U]=USER [ 1042.933226][T26642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1042.933254][T26642] Call Trace: [ 1042.933265][T26642] [ 1042.933278][T26642] dump_stack_lvl+0x16c/0x1f0 [ 1042.933331][T26642] should_fail_ex+0x512/0x640 [ 1042.933364][T26642] should_failslab+0xc2/0x120 [ 1042.933406][T26642] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1042.933437][T26642] ? netdev_create_hash+0x3c/0xc0 [ 1042.933470][T26642] ? __pfx_netdev_init+0x10/0x10 [ 1042.933501][T26642] netdev_create_hash+0x3c/0xc0 [ 1042.933532][T26642] ? __pfx_netdev_init+0x10/0x10 [ 1042.933561][T26642] netdev_init+0xa5/0x230 [ 1042.933601][T26642] ops_init+0x1e2/0x5f0 [ 1042.933657][T26642] setup_net+0x10f/0x380 [ 1042.933694][T26642] ? lockdep_init_map_type+0x5c/0x280 [ 1042.933729][T26642] ? __pfx_setup_net+0x10/0x10 [ 1042.933769][T26642] ? debug_mutex_init+0x37/0x70 [ 1042.933815][T26642] copy_net_ns+0x2a6/0x5f0 [ 1042.933842][T26642] create_new_namespaces+0x3ea/0xa90 [ 1042.933877][T26642] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1042.933910][T26642] ksys_unshare+0x45b/0xa40 [ 1042.933947][T26642] ? __pfx_ksys_unshare+0x10/0x10 [ 1042.933985][T26642] ? xfd_validate_state+0x61/0x180 [ 1042.934029][T26642] __x64_sys_unshare+0x31/0x40 [ 1042.934064][T26642] do_syscall_64+0xcd/0x490 [ 1042.934106][T26642] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1042.934132][T26642] RIP: 0033:0x7f5084b8eb69 [ 1042.934153][T26642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1042.934182][T26642] RSP: 002b:00007f5085a21038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1042.934208][T26642] RAX: ffffffffffffffda RBX: 00007f5084db5fa0 RCX: 00007f5084b8eb69 [ 1042.934227][T26642] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1042.934254][T26642] RBP: 00007f5084c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1042.934273][T26642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1042.934289][T26642] R13: 0000000000000000 R14: 00007f5084db5fa0 R15: 00007fffd2b5f458 [ 1042.934314][T26642] [ 1043.245947][T26651] vhci_hcd: invalid port number 16 [ 1043.251108][T26651] vhci_hcd: invalid port number 16 [ 1043.774512][T26650] caif:caif_disconnect_client(): nothing to disconnect [ 1044.398124][T26681] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4658'. [ 1046.206594][T26714] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4667'. [ 1046.572991][T26733] netlink: 314 bytes leftover after parsing attributes in process `syz.1.4673'. [ 1047.428189][T26746] base_sock_release(ffff888075905400) sk=ffff88806662e000 [ 1047.612860][T26757] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4679'. [ 1047.720115][T26761] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4681'. [ 1047.908043][T26765] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4683'. [ 1048.427545][T26777] ima: policy update failed [ 1048.459009][ T30] audit: type=1802 audit(4294967647.530:71): pid=26777 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.4686" res=0 errno=0 [ 1049.374151][T26799] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4690'. [ 1052.277655][T26861] netlink: 338 bytes leftover after parsing attributes in process `syz.3.4704'. [ 1052.298758][T26861] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4704'. [ 1052.688294][T26851] ima: policy update failed [ 1052.717381][ T30] audit: type=1802 audit(4294967651.810:72): pid=26851 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.4702" res=0 errno=0 [ 1052.784664][T26868] netlink: 25 bytes leftover after parsing attributes in process `syz.5.4707'. [ 1052.807328][T20355] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1052.968704][T20355] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1053.081814][T20355] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1053.175069][T20355] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1053.453246][T26881] vhci_hcd: invalid port number 16 [ 1053.458530][T26881] vhci_hcd: invalid port number 16 [ 1053.464849][T26880] caif:caif_disconnect_client(): nothing to disconnect [ 1053.539530][T20355] bridge_slave_0: left allmulticast mode [ 1053.545212][T20355] bridge_slave_0: left promiscuous mode [ 1053.576794][T20355] bridge0: port 1(bridge_slave_0) entered disabled state [ 1053.976151][T23550] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 1053.988850][T23550] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 1053.996138][T23550] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 1054.004220][T23550] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 1054.012502][T23550] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 1054.251407][T20355] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1054.305268][T20355] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1054.340201][T20355] bond0 (unregistering): Released all slaves [ 1055.150638][T26897] chnl_net:caif_netlink_parms(): no params data found [ 1055.326329][T20355] hsr_slave_0: left promiscuous mode [ 1055.350502][T20355] hsr_slave_1: left promiscuous mode [ 1055.373594][T20355] veth1_macvtap: left promiscuous mode [ 1055.379624][T20355] veth1_vlan: left allmulticast mode [ 1055.385051][T20355] veth1_vlan: left promiscuous mode [ 1055.393178][T20355] veth0_vlan: left promiscuous mode [ 1055.741694][T20355] team0 (unregistering): Port device team_slave_1 removed [ 1055.799542][T20355] team0 (unregistering): Port device team_slave_0 removed [ 1056.098960][ T9539] Bluetooth: hci1: command tx timeout [ 1056.182186][T26943] FAULT_INJECTION: forcing a failure. [ 1056.182186][T26943] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1056.223734][T26943] CPU: 0 UID: 0 PID: 26943 Comm: syz.3.4722 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 1056.223777][T26943] Tainted: [U]=USER [ 1056.223786][T26943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1056.223801][T26943] Call Trace: [ 1056.223818][T26943] [ 1056.223827][T26943] dump_stack_lvl+0x16c/0x1f0 [ 1056.223870][T26943] should_fail_ex+0x512/0x640 [ 1056.223896][T26943] _copy_to_user+0x32/0xd0 [ 1056.223925][T26943] simple_read_from_buffer+0xcb/0x170 [ 1056.223970][T26943] proc_fail_nth_read+0x197/0x240 [ 1056.223996][T26943] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1056.224023][T26943] ? security_file_permission+0x71/0x210 [ 1056.224053][T26943] ? rw_verify_area+0xcf/0x6c0 [ 1056.224077][T26943] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1056.224104][T26943] vfs_read+0x1e4/0xc60 [ 1056.224130][T26943] ? remove_watch_from_object+0x261/0xad0 [ 1056.224164][T26943] ? rcu_is_watching+0x12/0xc0 [ 1056.224189][T26943] ? __pfx_vfs_read+0x10/0x10 [ 1056.224217][T26943] ? remove_watch_from_object+0x26b/0xad0 [ 1056.224253][T26943] ? keyctl_watch_key+0x372/0x500 [ 1056.224291][T26943] ? rcu_is_watching+0x12/0xc0 [ 1056.224316][T26943] ? rcu_is_watching+0x12/0xc0 [ 1056.224340][T26943] ? kfree+0x24f/0x4d0 [ 1056.224364][T26943] ksys_read+0x12a/0x250 [ 1056.224391][T26943] ? __pfx_ksys_read+0x10/0x10 [ 1056.224423][T26943] do_syscall_64+0xcd/0x490 [ 1056.224463][T26943] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1056.224489][T26943] RIP: 0033:0x7f337478d57c [ 1056.224509][T26943] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1056.224535][T26943] RSP: 002b:00007f3375646030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1056.224561][T26943] RAX: ffffffffffffffda RBX: 00007f33749b5fa0 RCX: 00007f337478d57c [ 1056.224578][T26943] RDX: 000000000000000f RSI: 00007f33756460a0 RDI: 0000000000000006 [ 1056.224594][T26943] RBP: 00007f3375646090 R08: 0000000000000000 R09: 0000000000000000 [ 1056.224610][T26943] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 1056.224626][T26943] R13: 0000000000000000 R14: 00007f33749b5fa0 R15: 00007ffcf61778c8 [ 1056.224651][T26943] [ 1056.513841][T26897] bridge0: port 1(bridge_slave_0) entered blocking state [ 1056.524692][T26897] bridge0: port 1(bridge_slave_0) entered disabled state [ 1056.537853][T26897] bridge_slave_0: entered allmulticast mode [ 1056.548152][T26897] bridge_slave_0: entered promiscuous mode [ 1056.565894][T26897] bridge0: port 2(bridge_slave_1) entered blocking state [ 1056.599980][T26897] bridge0: port 2(bridge_slave_1) entered disabled state [ 1056.641022][T26897] bridge_slave_1: entered allmulticast mode [ 1056.683884][T26897] bridge_slave_1: entered promiscuous mode [ 1056.842964][T26897] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1056.860159][T26897] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1056.992642][T26897] team0: Port device team_slave_0 added [ 1057.102645][T26897] team0: Port device team_slave_1 added [ 1057.211891][T26897] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1057.219075][T26897] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1057.252128][T26897] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1057.310048][T26897] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1057.363562][T26897] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1057.431666][T26897] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1057.645872][T26897] hsr_slave_0: entered promiscuous mode [ 1057.659434][T26897] hsr_slave_1: entered promiscuous mode [ 1058.177251][ T9539] Bluetooth: hci1: command tx timeout [ 1058.207641][T27003] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input60 [ 1058.261630][T27000] vhci_hcd: invalid port number 16 [ 1058.266779][T27000] vhci_hcd: invalid port number 16 [ 1058.300572][T26995] caif:caif_disconnect_client(): nothing to disconnect [ 1058.678714][T26897] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 1058.738189][T26897] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 1058.813389][T26897] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 1058.833131][T26897] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 1059.161735][T26897] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1059.214764][T26897] 8021q: adding VLAN 0 to HW filter on device team0 [ 1059.235209][T20356] bridge0: port 1(bridge_slave_0) entered blocking state [ 1059.242371][T20356] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1059.280978][T20356] bridge0: port 2(bridge_slave_1) entered blocking state [ 1059.288135][T20356] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1059.540131][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 1059.546592][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 1059.603260][T27066] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4740'. [ 1059.612609][T27060] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4739'. [ 1059.797300][T27060] veth0_macvtap: left promiscuous mode [ 1060.257286][ T9539] Bluetooth: hci1: command tx timeout [ 1060.454317][T26897] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1061.209881][T26897] veth0_vlan: entered promiscuous mode [ 1061.288645][T26897] veth1_vlan: entered promiscuous mode [ 1061.394837][T26897] veth0_macvtap: entered promiscuous mode [ 1061.419402][T26897] veth1_macvtap: entered promiscuous mode [ 1061.471287][T26897] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1061.509376][T26897] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1061.523144][T20357] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1061.567636][T20357] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1061.576389][T20357] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1061.637888][T27119] FAULT_INJECTION: forcing a failure. [ 1061.637888][T27119] name failslab, interval 1, probability 0, space 0, times 0 [ 1061.669672][T27123] FAULT_INJECTION: forcing a failure. [ 1061.669672][T27123] name failslab, interval 1, probability 0, space 0, times 0 [ 1061.683352][T27123] CPU: 1 UID: 0 PID: 27123 Comm: syz.1.4747 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 1061.683407][T27123] Tainted: [U]=USER [ 1061.683419][T27123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1061.683439][T27123] Call Trace: [ 1061.683450][T27123] [ 1061.683462][T27123] dump_stack_lvl+0x16c/0x1f0 [ 1061.683512][T27123] should_fail_ex+0x512/0x640 [ 1061.683545][T27123] should_failslab+0xc2/0x120 [ 1061.683597][T27123] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1061.683635][T27123] ? __pfx___vma_enter_locked+0x10/0x10 [ 1061.683696][T27123] ? vm_area_dup+0x27/0x8d0 [ 1061.683727][T27123] vm_area_dup+0x27/0x8d0 [ 1061.683754][T27123] dup_mmap+0x877/0x21d0 [ 1061.683804][T27123] ? __pfx_dup_mmap+0x10/0x10 [ 1061.683844][T27123] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 1061.683891][T27123] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1061.683935][T27123] ? __pfx___might_resched+0x10/0x10 [ 1061.683965][T27123] ? mm_init+0xd22/0x13a0 [ 1061.683998][T27123] copy_process+0x4081/0x7690 [ 1061.684034][T27123] ? __pfx___futex_wait+0x10/0x10 [ 1061.684084][T27123] ? __pfx_copy_process+0x10/0x10 [ 1061.684121][T27123] ? lock_release+0x201/0x2f0 [ 1061.684160][T27123] ? futex_private_hash_put+0x11c/0x300 [ 1061.684195][T27123] kernel_clone+0xfc/0x930 [ 1061.684232][T27123] ? __pfx_kernel_clone+0x10/0x10 [ 1061.684280][T27123] __do_sys_clone+0xce/0x120 [ 1061.684335][T27123] ? __pfx___do_sys_clone+0x10/0x10 [ 1061.684385][T27123] ? xfd_validate_state+0x61/0x180 [ 1061.684439][T27123] ? __pfx_do_writev+0x10/0x10 [ 1061.684495][T27123] do_syscall_64+0xcd/0x490 [ 1061.684542][T27123] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1061.684580][T27123] RIP: 0033:0x7f451e38eb69 [ 1061.684604][T27123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1061.684636][T27123] RSP: 002b:00007f451f241fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 1061.684671][T27123] RAX: ffffffffffffffda RBX: 00007f451e5b5fa0 RCX: 00007f451e38eb69 [ 1061.684694][T27123] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000042ae1411 [ 1061.684713][T27123] RBP: 00007f451e411df1 R08: 0000000000000000 R09: 0000000000000000 [ 1061.684732][T27123] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1061.684762][T27123] R13: 0000000000000000 R14: 00007f451e5b5fa0 R15: 00007ffe925986f8 [ 1061.684791][T27123] [ 1061.930454][T27119] CPU: 0 UID: 0 PID: 27119 Comm: syz.5.4745 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 1061.930504][T27119] Tainted: [U]=USER [ 1061.930515][T27119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1061.930535][T27119] Call Trace: [ 1061.930552][T27119] [ 1061.930563][T27119] dump_stack_lvl+0x16c/0x1f0 [ 1061.930612][T27119] should_fail_ex+0x512/0x640 [ 1061.930644][T27119] should_failslab+0xc2/0x120 [ 1061.930682][T27119] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1061.930715][T27119] ? __rds_conn_create+0x76c/0x2340 [ 1061.930754][T27119] ? rcu_is_watching+0x12/0xc0 [ 1061.930782][T27119] ? __rds_conn_create+0x791/0x2340 [ 1061.930822][T27119] __rds_conn_create+0x791/0x2340 [ 1061.930868][T27119] ? __pfx___rds_conn_create+0x10/0x10 [ 1061.930909][T27119] ? lockdep_init_map_type+0x5c/0x280 [ 1061.930953][T27119] rds_conn_create_outgoing+0x44/0x60 [ 1061.930995][T27119] rds_sendmsg+0xe37/0x31f0 [ 1061.931041][T27119] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1061.931078][T27119] ? kernel_text_address+0x8d/0x100 [ 1061.931131][T27119] ? __pfx_rds_sendmsg+0x10/0x10 [ 1061.931181][T27119] ? aa_sk_perm+0x2f4/0xb10 [ 1061.931209][T27119] ? import_ubuf+0x1b6/0x220 [ 1061.931241][T27119] ? __pfx_aa_sk_perm+0x10/0x10 [ 1061.931269][T27119] ? __import_iovec+0x1dd/0x650 [ 1061.931304][T27119] ? __might_fault+0xe3/0x190 [ 1061.931341][T27119] ? ____sys_sendmsg+0xa98/0xc70 [ 1061.931373][T27119] ____sys_sendmsg+0xa98/0xc70 [ 1061.931408][T27119] ? copy_msghdr_from_user+0x10a/0x160 [ 1061.931450][T27119] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1061.931480][T27119] ? __pfx_kstrtouint+0x10/0x10 [ 1061.931527][T27119] ? kstrtouint_from_user+0x13c/0x1d0 [ 1061.931580][T27119] ___sys_sendmsg+0x134/0x1d0 [ 1061.931624][T27119] ? __pfx____sys_sendmsg+0x10/0x10 [ 1061.931684][T27119] ? __pfx_vfs_write+0x10/0x10 [ 1061.931719][T27119] ? do_sys_openat2+0x157/0x1d0 [ 1061.931765][T27119] __sys_sendmsg+0x16d/0x220 [ 1061.931808][T27119] ? __pfx___sys_sendmsg+0x10/0x10 [ 1061.931864][T27119] do_syscall_64+0xcd/0x490 [ 1061.931910][T27119] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1061.931942][T27119] RIP: 0033:0x7f02ab98eb69 [ 1061.931964][T27119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1061.931994][T27119] RSP: 002b:00007f02ac7bd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1061.932023][T27119] RAX: ffffffffffffffda RBX: 00007f02abbb5fa0 RCX: 00007f02ab98eb69 [ 1061.932044][T27119] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000003 [ 1061.932062][T27119] RBP: 00007f02ac7bd090 R08: 0000000000000000 R09: 0000000000000000 [ 1061.932080][T27119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1061.932097][T27119] R13: 0000000000000000 R14: 00007f02abbb5fa0 R15: 00007ffc8b4db088 [ 1061.932125][T27119] [ 1062.253365][T20357] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1062.347607][ T9539] Bluetooth: hci1: command tx timeout [ 1062.374268][T26897] ieee80211 phy47: Selected rate control algorithm 'minstrel_ht' [ 1062.508022][T20352] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1062.515983][T20352] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1062.535822][T26897] ieee80211 phy48: Selected rate control algorithm 'minstrel_ht' [ 1062.655594][T20356] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1062.663707][T20356] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1063.871685][T27189] nvme_fabrics: unknown parameter or missing value '7' in ctrl creation request [ 1064.649406][T27213] HfR: entered promiscuous mode [ 1064.725551][T27216] vhci_hcd: invalid port number 16 [ 1064.730854][T27216] vhci_hcd: invalid port number 16 [ 1064.797657][T27215] caif:caif_disconnect_client(): nothing to disconnect [ 1065.084468][T27223] FAULT_INJECTION: forcing a failure. [ 1065.084468][T27223] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1065.127825][T27223] CPU: 1 UID: 0 PID: 27223 Comm: syz.4.4768 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 1065.127877][T27223] Tainted: [U]=USER [ 1065.127889][T27223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1065.127908][T27223] Call Trace: [ 1065.127919][T27223] [ 1065.127931][T27223] dump_stack_lvl+0x16c/0x1f0 [ 1065.127982][T27223] should_fail_ex+0x512/0x640 [ 1065.128023][T27223] _copy_from_user+0x2e/0xd0 [ 1065.128057][T27223] ? __pfx_do_get_msr+0x10/0x10 [ 1065.128087][T27223] msr_io+0x93/0x2a0 [ 1065.128133][T27223] ? __pfx_msr_io+0x10/0x10 [ 1065.128164][T27223] ? arch_stack_walk+0xa6/0x100 [ 1065.128195][T27223] kvm_arch_vcpu_ioctl+0x829/0x52d0 [ 1065.128227][T27223] ? kvm_arch_vcpu_ioctl+0x800/0x52d0 [ 1065.128262][T27223] ? stack_trace_save+0x8e/0xc0 [ 1065.128292][T27223] ? stack_depot_save_flags+0x28/0xa40 [ 1065.128321][T27223] ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10 [ 1065.128354][T27223] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1065.128398][T27223] ? kasan_save_stack+0x42/0x60 [ 1065.128428][T27223] ? kasan_save_stack+0x33/0x60 [ 1065.128456][T27223] ? kasan_save_track+0x14/0x30 [ 1065.128484][T27223] ? kasan_save_free_info+0x3b/0x60 [ 1065.128526][T27223] ? __kasan_slab_free+0x51/0x70 [ 1065.128557][T27223] ? kfree+0x2b4/0x4d0 [ 1065.128598][T27223] ? tomoyo_path_number_perm+0x470/0x580 [ 1065.128627][T27223] ? security_file_ioctl+0x9b/0x240 [ 1065.128657][T27223] ? __x64_sys_ioctl+0xb7/0x210 [ 1065.128702][T27223] ? do_syscall_64+0xcd/0x490 [ 1065.128744][T27223] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1065.128786][T27223] ? __mutex_trylock_common+0xe9/0x250 [ 1065.128827][T27223] ? __pfx___mutex_trylock_common+0x10/0x10 [ 1065.128868][T27223] ? __pfx___might_resched+0x10/0x10 [ 1065.128900][T27223] ? rcu_is_watching+0x12/0xc0 [ 1065.128930][T27223] ? trace_contention_end+0xdd/0x130 [ 1065.128971][T27223] ? __mutex_lock+0x1c2/0x1070 [ 1065.129029][T27223] ? rcu_is_watching+0x12/0xc0 [ 1065.129057][T27223] ? __pfx___mutex_lock+0x10/0x10 [ 1065.129098][T27223] ? tomoyo_path_number_perm+0x295/0x580 [ 1065.129125][T27223] ? rcu_is_watching+0x12/0xc0 [ 1065.129155][T27223] ? tomoyo_path_number_perm+0x18d/0x580 [ 1065.129185][T27223] ? kvm_vcpu_ioctl+0x1236/0x1690 [ 1065.129220][T27223] kvm_vcpu_ioctl+0x1236/0x1690 [ 1065.129257][T27223] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 1065.129293][T27223] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1065.129334][T27223] ? do_vfs_ioctl+0x128/0x14f0 [ 1065.129374][T27223] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1065.129419][T27223] ? rcu_is_watching+0x12/0xc0 [ 1065.129446][T27223] ? __fget_files+0x204/0x3c0 [ 1065.129473][T27223] ? hook_file_ioctl_common+0x145/0x410 [ 1065.129519][T27223] ? __fget_files+0x20e/0x3c0 [ 1065.129548][T27223] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 1065.129583][T27223] __x64_sys_ioctl+0x18b/0x210 [ 1065.129626][T27223] do_syscall_64+0xcd/0x490 [ 1065.129667][T27223] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1065.129696][T27223] RIP: 0033:0x7f39a818eb69 [ 1065.129718][T27223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1065.129747][T27223] RSP: 002b:00007f39a8fd9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1065.129775][T27223] RAX: ffffffffffffffda RBX: 00007f39a83b5fa0 RCX: 00007f39a818eb69 [ 1065.129793][T27223] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000004 [ 1065.129810][T27223] RBP: 00007f39a8fd9090 R08: 0000000000000000 R09: 0000000000000000 [ 1065.129827][T27223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1065.129844][T27223] R13: 0000000000000000 R14: 00007f39a83b5fa0 R15: 00007ffdf0830ca8 [ 1065.129870][T27223] [ 1066.203652][T27252] vhci_hcd: invalid port number 16 [ 1066.243645][T27252] vhci_hcd: invalid port number 16 [ 1066.299007][T27250] caif:caif_disconnect_client(): nothing to disconnect [ 1066.777244][T27270] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4778'. [ 1067.482178][T27283] BUG: unable to handle page fault for address: fffff52004657918 [ 1067.482201][T27283] #PF: supervisor read access in kernel mode [ 1067.482217][T27283] #PF: error_code(0x0000) - not-present page [ 1067.482232][T27283] PGD 23ffed067 P4D 23ffed067 PUD 1ca83067 PMD 0 [ 1067.482274][T27283] Oops: Oops: 0000 [#1] SMP KASAN PTI [ 1067.482302][T27283] CPU: 0 UID: 0 PID: 27283 Comm: syz.3.4780 Tainted: G U 6.16.0-syzkaller-10499-g89748acdf226 #0 PREEMPT(full) [ 1067.482343][T27283] Tainted: [U]=USER [ 1067.482353][T27283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1067.482371][T27283] RIP: 0010:sys_imageblit+0x17bc/0x1e60 [ 1067.482407][T27283] Code: 7c cd 00 48 89 fe 48 c1 ee 03 80 3c 1e 00 0f 85 dc 02 00 00 4d 63 f6 48 8b 8c cc 28 01 00 00 4f 8d 34 f7 4c 89 f6 48 c1 ee 03 <80> 3c 1e 00 0f 85 94 02 00 00 49 89 0e 41 89 c6 8d 4d fd 41 c1 ee [ 1067.482434][T27283] RSP: 0018:ffffc900046e7530 EFLAGS: 00010a06 [ 1067.482457][T27283] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: 0000000000000000 [ 1067.482492][T27283] RDX: 0000000000000000 RSI: 1ffff92004657918 RDI: ffffc900046e7658 [ 1067.482514][T27283] RBP: 0000000000000004 R08: 0000000000000005 R09: 0000000000000003 [ 1067.482535][T27283] R10: 0000000000000008 R11: 0000000000000001 R12: ffff88814277d961 [ 1067.482557][T27283] R13: ffffc900046e7658 R14: ffffc900232bc8c0 R15: ffffc900232bc8c0 [ 1067.482581][T27283] FS: 00007f33756256c0(0000) GS:ffff888124709000(0000) knlGS:0000000000000000 [ 1067.482613][T27283] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1067.482636][T27283] CR2: fffff52004657918 CR3: 000000004e470000 CR4: 00000000003526f0 [ 1067.482659][T27283] Call Trace: [ 1067.482669][T27283] [ 1067.482681][T27283] ? lock_acquire+0x2cd/0x350 [ 1067.482721][T27283] ? __pfx_sys_imageblit+0x10/0x10 [ 1067.482751][T27283] ? kasan_save_stack+0x42/0x60 [ 1067.482784][T27283] ? alloc_pages_bulk_noprof+0xa67/0x1410 [ 1067.482826][T27283] ? rcu_is_watching+0x12/0xc0 [ 1067.482854][T27283] ? __page_table_check_ptes_set+0x1ae/0x420 [ 1067.482889][T27283] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 1067.482931][T27283] drm_fbdev_shmem_defio_imageblit+0x20/0x130 [ 1067.482975][T27283] ccw_putcs+0x92d/0xbc0 [ 1067.483013][T27283] ? __pfx_ccw_putcs+0x10/0x10 [ 1067.483042][T27283] ? __vmap_pages_range_noflush+0x1d0/0x230 [ 1067.483089][T27283] ? fb_get_color_depth+0x120/0x250 [ 1067.483129][T27283] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1067.483172][T27283] ? __pfx_ccw_putcs+0x10/0x10 [ 1067.483200][T27283] fbcon_putcs+0x383/0x4a0 [ 1067.483241][T27283] do_update_region+0x2e6/0x3f0 [ 1067.483275][T27283] invert_screen+0x1e4/0x590 [ 1067.483317][T27283] ? __pfx_invert_screen+0x10/0x10 [ 1067.483358][T27283] ? __pfx_complement_pos+0x10/0x10 [ 1067.483400][T27283] ? vc_do_resize+0x24d/0x10e0 [ 1067.483437][T27283] ? __vmalloc_node_noprof+0xad/0xf0 [ 1067.483482][T27283] clear_selection+0x59/0x70 [ 1067.483518][T27283] vc_do_resize+0xd9b/0x10e0 [ 1067.483560][T27283] ? __pfx_fb_match_mode+0x10/0x10 [ 1067.483607][T27283] ? __pfx_vc_do_resize+0x10/0x10 [ 1067.483646][T27283] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1067.483703][T27283] fbcon_modechanged+0x334/0x700 [ 1067.483753][T27283] fbcon_update_vcs+0x42/0x50 [ 1067.483788][T27283] do_fb_ioctl+0x787/0x7e0 [ 1067.483845][T27283] ? __pfx_do_fb_ioctl+0x10/0x10 [ 1067.483878][T27283] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1067.483929][T27283] ? __fget_files+0x20e/0x3c0 [ 1067.483958][T27283] fb_ioctl+0xe5/0x150 [ 1067.483981][T27283] ? __pfx_fb_ioctl+0x10/0x10 [ 1067.484007][T27283] __x64_sys_ioctl+0x18b/0x210 [ 1067.484045][T27283] do_syscall_64+0xcd/0x490 [ 1067.484088][T27283] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1067.484114][T27283] RIP: 0033:0x7f337478eb69 [ 1067.484133][T27283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1067.484159][T27283] RSP: 002b:00007f3375625038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1067.484183][T27283] RAX: ffffffffffffffda RBX: 00007f33749b6080 RCX: 00007f337478eb69 [ 1067.484200][T27283] RDX: 0000000000000000 RSI: 0000000000004601 RDI: 0000000000000014 [ 1067.484215][T27283] RBP: 00007f3374811df1 R08: 0000000000000000 R09: 0000000000000000 [ 1067.484232][T27283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1067.484248][T27283] R13: 0000000000000000 R14: 00007f33749b6080 R15: 00007ffcf61778c8 [ 1067.484273][T27283] [ 1067.484282][T27283] Modules linked in: [ 1067.484296][T27283] CR2: fffff52004657918 [ 1067.484319][T27283] ---[ end trace 0000000000000000 ]--- [ 1067.484331][T27283] RIP: 0010:sys_imageblit+0x17bc/0x1e60 [ 1067.484372][T27283] Code: 7c cd 00 48 89 fe 48 c1 ee 03 80 3c 1e 00 0f 85 dc 02 00 00 4d 63 f6 48 8b 8c cc 28 01 00 00 4f 8d 34 f7 4c 89 f6 48 c1 ee 03 <80> 3c 1e 00 0f 85 94 02 00 00 49 89 0e 41 89 c6 8d 4d fd 41 c1 ee [ 1067.484397][T27283] RSP: 0018:ffffc900046e7530 EFLAGS: 00010a06 [ 1067.484416][T27283] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: 0000000000000000 [ 1067.484432][T27283] RDX: 0000000000000000 RSI: 1ffff92004657918 RDI: ffffc900046e7658 [ 1067.484449][T27283] RBP: 0000000000000004 R08: 0000000000000005 R09: 0000000000000003 [ 1067.484464][T27283] R10: 0000000000000008 R11: 0000000000000001 R12: ffff88814277d961 [ 1067.484480][T27283] R13: ffffc900046e7658 R14: ffffc900232bc8c0 R15: ffffc900232bc8c0 [ 1067.484498][T27283] FS: 00007f33756256c0(0000) GS:ffff888124709000(0000) knlGS:0000000000000000 [ 1067.484521][T27283] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1067.484537][T27283] CR2: fffff52004657918 CR3: 000000004e470000 CR4: 00000000003526f0 [ 1067.484555][T27283] Kernel panic - not syncing: Fatal exception [ 1067.484935][T27283] Kernel Offset: disabled