last executing test programs:
40.691674695s ago: executing program 2 (id=4811):
mmap$auto(0x0, 0x240009, 0xdf, 0x9b72, 0x7, 0x28000)
lseek$auto(0x3, 0x7ffffffffffffffd, 0x2)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mmap$auto(0xa, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
readv$auto(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x7}, 0x8)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
write$auto(r0, &(0x7f0000000300)='.o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2deb43, 0x0)
faccessat2$auto(0xffffffffffffffff, 0x0, 0x0, 0x7)
read$auto(r1, 0x0, 0x20)
r2 = openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48)
faccessat$auto(r2, 0x0, 0x2)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0x2, 0x401, 0x1000, 0x8000000000000011, r0, 0x5)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snd/controlC2\x00', 0xc40, 0x0)
r3 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
write$auto(r3, 0x0, 0x1ff)
prctl$auto_PR_SCHED_CORE_GET(0x9, 0x0, 0x0, 0x0, 0x26fa)
r4 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
ioctl$auto_LOOP_CTL_ADD(r4, 0x4c80, 0xfffffffffffffffd)
39.860234455s ago: executing program 2 (id=4814):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\v\xba\x8av\xf0\x85\x9e`\x1fN$\xd4\x1c\xe0\xa6\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x89\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI', 0x100000a3db)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r3, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto(r3, 0x8926, r3)
read$auto_proc_sessionid_operations_base(r2, &(0x7f00000000c0)=""/4096, 0x1000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, 0x0, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/block/ram4/queue/physical_block_size\x00', 0xa00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000004c0)=""/206, 0xce)
syz_open_procfs$namespace(0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7f1)
modify_ldt$auto(0x40, 0x0, 0x7ff)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r5, 0x0, 0x101fb, 0x8800000005)
37.309676883s ago: executing program 2 (id=4819):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x8300, 0x0)
ioctl$auto_RTC_PIE_ON(r0, 0x7005, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_GTP_CMD_ECHOREQ(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x2c, 0x0, 0x203, 0x70bd25, 0x25dfdbff, {}, [@GTPA_PEER_ADDRESS={0x8}, @GTPA_LINK={0x8, 0x1, 0x1}, @GTPA_VERSION={0x8, 0x2, 0xdcd}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB], 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0)
newfstatat$auto(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)={0x80000000, 0x23a8, 0x0, 0x9, 0xee00, 0x0, 0x0, 0x4, 0x8, 0x3, 0x8, 0x7, 0x4, 0x38c8216e, 0x7, 0x20000003, 0x6}, 0x3)
sendmsg$auto_NL80211_CMD_FRAME(r1, &(0x7f0000002580)={0x0, 0x0, &(0x7f0000002540)={0x0, 0x233c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r5 = ioctl$auto_TIOCGPTPEER2(0xffffffffffffffff, 0x5441, 0x0)
mmap$auto(0xffffffffffffffff, 0x20009, 0xe6, 0x10, r5, 0x1)
read$auto(0x3, 0x0, 0x80)
write$auto(0x1, 0x0, 0x80000000)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
close_range$auto(r3, r0, 0x2)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r7 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x80, 0x0)
read$auto(r7, 0x0, 0x200000fff)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/fs/o2cb/logmask/SOCKET\x00', 0x20102, 0x0)
35.356820417s ago: executing program 2 (id=4821):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x8300, 0x0)
ioctl$auto_RTC_PIE_ON(r0, 0x7005, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB], 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0)
newfstatat$auto(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)={0x80000000, 0x23a8, 0x0, 0x9, 0xee00, 0x0, 0x0, 0x4, 0x8, 0x3, 0x8, 0x7, 0x4, 0x38c8216e, 0x7, 0x20000003, 0x6}, 0x3)
sendmsg$auto_NL80211_CMD_FRAME(r1, &(0x7f0000002580)={0x0, 0x0, &(0x7f0000002540)={0x0, 0x233c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r4 = ioctl$auto_TIOCGPTPEER2(0xffffffffffffffff, 0x5441, 0x0)
mmap$auto(0xffffffffffffffff, 0x20009, 0xe6, 0x10, r4, 0x1)
read$auto(0x3, 0x0, 0x80)
write$auto(0x1, 0x0, 0x80000000)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
close_range$auto(r3, r0, 0x2)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r6 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x80, 0x0)
read$auto(r6, 0x0, 0x200000fff)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/fs/o2cb/logmask/SOCKET\x00', 0x20102, 0x0)
33.04353911s ago: executing program 2 (id=4825):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\v\xba\x8av\xf0\x85\x9e`\x1fN$\xd4\x1c\xe0\xa6\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x89\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI', 0x100000a3db)
prctl$auto(0x5, 0x5, 0x2009, 0x0, 0x0)
r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r3, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto(r3, 0x8926, r3)
read$auto_proc_sessionid_operations_base(r2, &(0x7f00000000c0)=""/4096, 0x1000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, 0x0, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/block/ram4/queue/physical_block_size\x00', 0xa00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000004c0)=""/206, 0xce)
syz_open_procfs$namespace(0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7f1)
modify_ldt$auto(0x40, 0x0, 0x7ff)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r5, 0x0, 0x101fb, 0x8800000005)
27.721980323s ago: executing program 2 (id=4834):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r2, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
ioctl$auto(r2, 0x8926, r2)
read$auto_proc_sessionid_operations_base(r1, &(0x7f00000000c0)=""/4096, 0x1000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, 0x0, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/block/ram4/queue/physical_block_size\x00', 0xa00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000004c0)=""/206, 0xce)
syz_open_procfs$namespace(0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7f1)
modify_ldt$auto(0x40, 0x0, 0x7ff)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r4, 0x0, 0x101fb, 0x8800000005)
26.049544942s ago: executing program 0 (id=4838):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x5, 0x5, 0x2009, 0x0, 0x0)
r1 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r2, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
ioctl$auto(r2, 0x8926, r2)
read$auto_proc_sessionid_operations_base(r1, &(0x7f00000000c0)=""/4096, 0x1000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, 0x0, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/block/ram4/queue/physical_block_size\x00', 0xa00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000004c0)=""/206, 0xce)
syz_open_procfs$namespace(0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7f1)
modify_ldt$auto(0x40, 0x0, 0x7ff)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r4, 0x0, 0x101fb, 0x8800000005)
24.017700054s ago: executing program 0 (id=4841):
r0 = epoll_create$auto(0x4)
socket(0x2, 0x1, 0x106)
getsockopt$auto(r0, 0xfffffff4, 0x100004, 0xfffffffffffffffe, 0xfffffffffffffffd)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdc, 0xeb5, 0x401, 0x41)
read$auto_kernfs_file_fops_kernfs_internal(r2, 0x0, 0x0)
syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r2)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r2, 0x0, 0x20000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x8, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x4, 0xd, 0x1, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0xd, 0xd, 0x4]}, 0x0)
ioctl$auto(r2, 0x57, r1)
getgid()
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = getpid()
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video17\x00', 0x80800, 0x0)
r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video15\x00', 0x180, 0x0)
read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f0000000000)=""/194, 0xc2)
select$auto(0x5, &(0x7f0000000080)={[0x400020000008, 0xfffffffffffffffc, 0x7, 0x6, 0xc, 0x3, 0x3, 0x1ffe000, 0xcad, 0x2, 0x9, 0xf, 0xa657, 0x202, 0xd3, 0x1]}, 0x0, 0x0, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
22.740602131s ago: executing program 0 (id=4844):
readv$auto(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080), 0x9}, 0x3121)
socket(0x9, 0x80000, 0xfffffffe)
r0 = prctl$auto(0x1000000001c, 0x5, 0x100000000, 0x400000000009, 0x3fffffffff)
setresuid$auto(0x2, 0xee01, 0x8080)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
ioctl$auto_PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000100)={0x62, 0x2, 0x2100000, 0x4, 0xfffffffffffffffe, 0x1, 0x0, 0xe8, 0x0, 0x4, 0x400, 0x2})
prctl$auto(0x41, 0x82f2, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x801, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51)
socket(0xf, 0x3, 0x2)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x9c)
socket(0x2, 0x1, 0x0)
socket(0x1e, 0x1, 0x0)
r2 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002fc0)='/sys/kernel/debug/tracing/events/vmalloc/enable\x00', 0x2, 0x0)
ftruncate$auto(r2, 0x100000001)
select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xfff, 0x1, 0x5, 0x3, 0x95f4da2d, 0xc, 0x6, 0x62, 0x7, 0x7, 0x6d3f, 0xa, 0x4, 0x5]}, 0x0)
write$auto(r1, 0x0, 0x100000a3db)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x6, 0x1, 0xfffffffffffffff7, 0x5, 0x7, 0x0, 0x3, 0x3, 0x62, 0x80000021, 0x1000, 0x7fffffff, 0xe35, 0x2, 0x6]}, 0x0)
socket(0x10, 0x2, 0x0)
21.551453025s ago: executing program 0 (id=4845):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\v\xba\x8av\xf0\x85\x9e`\x1fN$\xd4\x1c\xe0\xa6\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x89\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI', 0x100000a3db)
prctl$auto(0x5, 0x5, 0x2009, 0x0, 0x0)
r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r3, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto(r3, 0x8926, r3)
read$auto_proc_sessionid_operations_base(r2, &(0x7f00000000c0)=""/4096, 0x1000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, 0x0, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/block/ram4/queue/physical_block_size\x00', 0xa00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000004c0)=""/206, 0xce)
syz_open_procfs$namespace(0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7f1)
modify_ldt$auto(0x40, 0x0, 0x7ff)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r5, 0x0, 0x101fb, 0x8800000005)
20.499765243s ago: executing program 1 (id=4847):
mmap$auto(0x0, 0x240009, 0xdf, 0x9b72, 0x7, 0x28000)
lseek$auto(0x3, 0x7ffffffffffffffd, 0x2)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mmap$auto(0xa, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
readv$auto(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x7}, 0x8)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
write$auto(r0, &(0x7f0000000300)='.o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2deb43, 0x0)
faccessat2$auto(0xffffffffffffffff, 0x0, 0x0, 0x7)
read$auto(r1, 0x0, 0x20)
faccessat$auto(0xffffffffffffffff, 0x0, 0x2)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x2, 0x401, 0x1000, 0x8000000000000011, r0, 0x5)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000280), 0xffffffffffffffff)
r3 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
write$auto(r3, 0x0, 0x1ff)
19.611208763s ago: executing program 1 (id=4848):
preadv2$auto(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x7ffffffc}, 0x11, 0xfffffffffffffffe, 0x2, 0x2e)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="010600bd7000fbdbdf250a"], 0x1c}}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000"], 0x1ac}, 0x1, 0x0, 0x0, 0x40855}, 0x8092)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_S_MODE(r0, 0x40046109, &(0x7f0000000000)=0xf2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/self/net/ip_vs_conn\x00', 0x20440, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x23, 0x0)
fsopen$auto(0x0, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r1, 0xc048aeca, 0x0)
r3 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/dri/vkms/vkms_config\x00', 0x80000, 0x0)
lseek$auto(r3, 0x0, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/nfs4.idtoname/content\x00', 0x181b80, 0x0)
19.290087494s ago: executing program 1 (id=4850):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\v\xba\x8av\xf0\x85\x9e`\x1fN$\xd4\x1c\xe0\xa6\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x89\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI', 0x100000a3db)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r3, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto(r3, 0x8926, r3)
read$auto_proc_sessionid_operations_base(r2, &(0x7f00000000c0)=""/4096, 0x1000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, 0x0, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/block/ram4/queue/physical_block_size\x00', 0xa00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000004c0)=""/206, 0xce)
syz_open_procfs$namespace(0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7f1)
modify_ldt$auto(0x40, 0x0, 0x7ff)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r5, 0x0, 0x101fb, 0x8800000005)
17.054568178s ago: executing program 1 (id=4851):
r0 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
ioctl$auto_LOOP_CTL_ADD(r0, 0x4c80, 0xfffffffffffffffd)
16.981212687s ago: executing program 0 (id=4852):
socket(0x2, 0x1, 0x106)
getsockopt$auto(0xffffffffffffffff, 0xfffffff4, 0x100004, 0xfffffffffffffffe, 0xfffffffffffffffd)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdc, 0xeb5, 0x401, 0x41)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000180)=""/68, 0x44)
syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r1)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r1, 0x0, 0x20000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x8, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x4, 0xd, 0x1, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0xd, 0xd, 0x4]}, 0x0)
ioctl$auto(r1, 0x57, r0)
getgid()
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r2 = getpid()
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video17\x00', 0x80800, 0x0)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video15\x00', 0x180, 0x0)
read$auto_v4l2_fops_v4l2_dev(r3, &(0x7f0000000000)=""/194, 0xc2)
select$auto(0x5, &(0x7f0000000080)={[0x400020000008, 0xfffffffffffffffc, 0x7, 0x6, 0xc, 0x3, 0x3, 0x1ffe000, 0xcad, 0x2, 0x9, 0xf, 0xa657, 0x202, 0xd3, 0x1]}, 0x0, 0x0, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
16.732629665s ago: executing program 1 (id=4853):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\v\xba\x8av\xf0\x85\x9e`\x1fN$\xd4\x1c\xe0\xa6\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x89\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI', 0x100000a3db)
prctl$auto(0x5, 0x5, 0x2009, 0x0, 0x0)
r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r3, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto(r3, 0x8926, r3)
read$auto_proc_sessionid_operations_base(r2, &(0x7f00000000c0)=""/4096, 0x1000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, 0x0, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/block/ram4/queue/physical_block_size\x00', 0xa00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000004c0)=""/206, 0xce)
syz_open_procfs$namespace(0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7f1)
modify_ldt$auto(0x40, 0x0, 0x7ff)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r5, 0x0, 0x101fb, 0x8800000005)
15.486652946s ago: executing program 0 (id=4855):
mmap$auto(0x0, 0x240009, 0xdf, 0x9b72, 0x7, 0x28000)
lseek$auto(0x3, 0x7ffffffffffffffd, 0x2)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mmap$auto(0xa, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
readv$auto(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x7}, 0x8)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
write$auto(r0, &(0x7f0000000300)='.o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
faccessat2$auto(0xffffffffffffffff, 0x0, 0x0, 0x7)
read$auto(r1, 0x0, 0x20)
r2 = openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48)
faccessat$auto(r2, 0x0, 0x2)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x2, 0x401, 0x1000, 0x8000000000000011, r0, 0x5)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000280), 0xffffffffffffffff)
r4 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
write$auto(r4, 0x0, 0x1ff)
14.832384677s ago: executing program 1 (id=4857):
mmap$auto(0x0, 0x240009, 0xdf, 0x9b72, 0x7, 0x28000)
lseek$auto(0x3, 0x7ffffffffffffffd, 0x2)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mmap$auto(0xa, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
readv$auto(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x7}, 0x8)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
write$auto(r0, &(0x7f0000000300)='.o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2deb43, 0x0)
faccessat2$auto(0xffffffffffffffff, 0x0, 0x0, 0x7)
read$auto(r1, 0x0, 0x20)
faccessat$auto(0xffffffffffffffff, 0x0, 0x2)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x2, 0x401, 0x1000, 0x8000000000000011, r0, 0x5)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snd/controlC2\x00', 0xc40, 0x0)
r3 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
write$auto(r3, 0x0, 0x1ff)
prctl$auto_PR_SCHED_CORE_GET(0x9, 0x0, 0x0, 0x0, 0x26fa)
r4 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
ioctl$auto_LOOP_CTL_ADD(r4, 0x4c80, 0xfffffffffffffffd)
11.568169669s ago: executing program 3 (id=4860):
readv$auto(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080), 0x9}, 0x3121)
socket(0x9, 0x80000, 0xfffffffe)
r0 = prctl$auto(0x1000000001c, 0x5, 0x100000000, 0x400000000009, 0x3fffffffff)
setresuid$auto(0x2, 0xee01, 0x8080)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
clone$auto(0x21002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
ioctl$auto_PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000100)={0x62, 0x2, 0x2100000, 0x4, 0xfffffffffffffffe, 0x1, 0x0, 0xe8, 0x0, 0x4, 0x400, 0x2})
prctl$auto(0x41, 0x82f2, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x801, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51)
socket(0xf, 0x3, 0x2)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x9c)
socket(0x2, 0x1, 0x0)
socket(0x1e, 0x1, 0x0)
r2 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000002fc0)='/sys/kernel/debug/tracing/events/vmalloc/enable\x00', 0x2, 0x0)
ftruncate$auto(r2, 0x100000001)
select$auto(0x6, 0x0, 0x0, 0x0, 0x0)
write$auto(r1, &(0x7f0000000340)='/d\xb0-\x0f\x9e=do1\x00\x00U\xbb\n\x86\x8cc\xcb\x9b\x9a\xe0s\x14\x9bE\xcd*\n\xb6\xe7\xd9\xb8\v\xf27t\xf1z\xbd\xdb\n\xe2\b6\x1a\x048#YF\x16\xd8\xb5jO;\xf2TqB\xf9\xaeI22\xc6\xf8\x89S\t\xb4\xf4\x8d\x89\x12\xb6\xc7\xe6\xf91\xb1g\xaf\x8e\t\xec\xd1\x8c\xea\xbb\x97O\xfcf\xb1\xb4\x14\xf5\\p\xe5[\x17\x18\x04\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xdc\xd5H\x87\xfd\xc4\x9e\x16`\xd1\xa9[\xb7\xfd\x9c\x13\xd2~\n\xe2E\x13\x91\xd4\\J\xdaC\x16\x0e\x98\x01\x11D\xd5t\f\xc7O\xe01\x80\x11\xfe\b\f\xeaDh$\x0f]w@\xd6\x13\xd9\xe49A\x85\xb1=f\x99\x86\x0e\xda-\x8d\x8fo\xfe\xeb\x02\xd8\xcbP\x00'/216, 0x100000a3db)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x6, 0x1, 0xfffffffffffffff7, 0x5, 0x7, 0x0, 0x3, 0x3, 0x62, 0x80000021, 0x1000, 0x7fffffff, 0xe35, 0x2, 0x6]}, 0x0)
socket(0x10, 0x2, 0x0)
10.335565948s ago: executing program 3 (id=4861):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\v\xba\x8av\xf0\x85\x9e`\x1fN$\xd4\x1c\xe0\xa6\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x89\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI', 0x100000a3db)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x5, 0x5, 0x2009, 0x0, 0x0)
r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r3, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto(r3, 0x8926, r3)
read$auto_proc_sessionid_operations_base(r2, &(0x7f00000000c0)=""/4096, 0x1000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, 0x0, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/block/ram4/queue/physical_block_size\x00', 0xa00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000004c0)=""/206, 0xce)
syz_open_procfs$namespace(0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7f1)
modify_ldt$auto(0x40, 0x0, 0x7ff)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r5, 0x0, 0x101fb, 0x8800000005)
8.296924123s ago: executing program 3 (id=4862):
r0 = epoll_create$auto(0x4)
socket(0x2, 0x1, 0x106)
getsockopt$auto(r0, 0xfffffff4, 0x100004, 0xfffffffffffffffe, 0xfffffffffffffffd)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdc, 0xeb5, 0x401, 0x41)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000180)=""/68, 0x44)
syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r2)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r2, 0x0, 0x20000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x8, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
ioctl$auto(r2, 0x57, r1)
getgid()
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = getpid()
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video17\x00', 0x80800, 0x0)
r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video15\x00', 0x180, 0x0)
read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f0000000000)=""/194, 0xc2)
select$auto(0x5, &(0x7f0000000080)={[0x400020000008, 0xfffffffffffffffc, 0x7, 0x6, 0xc, 0x3, 0x3, 0x1ffe000, 0xcad, 0x2, 0x9, 0xf, 0xa657, 0x202, 0xd3, 0x1]}, 0x0, 0x0, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
7.379284977s ago: executing program 3 (id=4863):
prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x2, 0x1, 0x0, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x20009, 0x8, 0xeb4, 0x7f, 0x7ffc)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
move_pages$auto(0xffffffffffffffff, 0xfffffffffffffffe, 0x0, 0x0, &(0x7f00000001c0)=0xffff, 0x81)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20000081)
socket(0x10, 0x2, 0x4)
socket(0x10, 0x3, 0x6)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x2, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe4643, 0x0)
mount$auto(&(0x7f0000000040)='gretap0\x00', &(0x7f00000000c0)=':,\x00', &(0x7f0000000100)='/sys/devices/LNXSYSTM:00/LNXSYBUS/00/PNP0A03:00/device:08/adr\x00', 0x100, &(0x7f0000000240)="e07cb3a9b1ee78ee61c62d0fd93f9671b05c2fdc019284e0b09a70b95a411f6732fa5f22120ee0ff33d1cfe1c3094b568cd3020ed038451736d6081e150e279357dbe63555668ddfe1d7fc253514c3e2412bdb58ca")
bpf$auto(0x12, 0x0, 0x26)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/usb/usbmon/22u\x00', 0x200, 0x0)
7.031098688s ago: executing program 3 (id=4864):
r0 = epoll_create$auto(0x4)
socket(0x2, 0x1, 0x106)
getsockopt$auto(r0, 0xfffffff4, 0x100004, 0xfffffffffffffffe, 0xfffffffffffffffd)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdc, 0xeb5, 0x401, 0x41)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000180)=""/68, 0x44)
syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r2)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r2, 0x0, 0x20000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x8, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, 0x0, 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x4, 0xd, 0x1, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0xd, 0xd, 0x4]}, 0x0)
ioctl$auto(r2, 0x57, r1)
getgid()
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = getpid()
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video17\x00', 0x80800, 0x0)
r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video15\x00', 0x180, 0x0)
read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f0000000000)=""/194, 0xc2)
select$auto(0x5, &(0x7f0000000080)={[0x400020000008, 0xfffffffffffffffc, 0x7, 0x6, 0xc, 0x3, 0x3, 0x1ffe000, 0xcad, 0x2, 0x9, 0xf, 0xa657, 0x202, 0xd3, 0x1]}, 0x0, 0x0, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
6.138992533s ago: executing program 3 (id=4865):
mmap$auto(0x0, 0x240009, 0xdf, 0x9b72, 0x7, 0x28000)
lseek$auto(0x3, 0x7ffffffffffffffd, 0x2)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mmap$auto(0xa, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
readv$auto(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x7}, 0x8)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
write$auto(r0, &(0x7f0000000300)='.o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2deb43, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48)
faccessat$auto(r2, 0x0, 0x2)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x2, 0x401, 0x1000, 0x8000000000000011, r0, 0x5)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000280), 0xffffffffffffffff)
r4 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
write$auto(r4, 0x0, 0x1ff)
0s ago: executing program 32 (id=4855):
mmap$auto(0x0, 0x240009, 0xdf, 0x9b72, 0x7, 0x28000)
lseek$auto(0x3, 0x7ffffffffffffffd, 0x2)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mmap$auto(0xa, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
readv$auto(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x7}, 0x8)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
write$auto(r0, &(0x7f0000000300)='.o\xd3\xa49\xaf\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
faccessat2$auto(0xffffffffffffffff, 0x0, 0x0, 0x7)
read$auto(r1, 0x0, 0x20)
r2 = openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48)
faccessat$auto(r2, 0x0, 0x2)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x2, 0x401, 0x1000, 0x8000000000000011, r0, 0x5)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000280), 0xffffffffffffffff)
r4 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
write$auto(r4, 0x0, 0x1ff)
kernel console output (not intermixed with test programs):
omoyo_check_open_permission+0x37b/0x3c0
[ 2485.128397][T29451] ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 2485.128484][T29451] ? do_raw_spin_lock+0x12c/0x2b0
[ 2485.128581][T29451] tomoyo_file_open+0x6b/0x90
[ 2485.128645][T29451] security_file_open+0x84/0x1e0
[ 2485.128717][T29451] do_dentry_open+0x596/0x1530
[ 2485.128812][T29451] vfs_open+0x82/0x3f0
[ 2485.128870][T29451] path_openat+0x1de4/0x2cb0
[ 2485.128955][T29451] ? __pfx_path_openat+0x10/0x10
[ 2485.129004][T29451] do_filp_open+0x20b/0x470
[ 2485.129041][T29451] ? __pfx_do_filp_open+0x10/0x10
[ 2485.129104][T29451] ? alloc_fd+0x471/0x7d0
[ 2485.129188][T29451] do_sys_openat2+0x11b/0x1d0
[ 2485.129251][T29451] ? __pfx_do_sys_openat2+0x10/0x10
[ 2485.129302][T29451] ? lockdep_hardirqs_on+0x7c/0x110
[ 2485.129388][T29451] __x64_sys_openat+0x174/0x210
[ 2485.129444][T29451] ? __pfx___x64_sys_openat+0x10/0x10
[ 2485.129516][T29451] do_syscall_64+0xcd/0x490
[ 2485.129587][T29451] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2485.129644][T29451] RIP: 0033:0x7f414bb8ebe9
[ 2485.129678][T29451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2485.129718][T29451] RSP: 002b:00007f414cab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2485.129756][T29451] RAX: ffffffffffffffda RBX: 00007f414bdb5fa0 RCX: 00007f414bb8ebe9
[ 2485.129779][T29451] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2485.129801][T29451] RBP: 00007f414bc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2485.129822][T29451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2485.129842][T29451] R13: 00007f414bdb6038 R14: 00007f414bdb5fa0 R15: 00007ffe2c47d038
[ 2485.129887][T29451]
[ 2485.717641][T29468] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input260
[ 2486.771860][T29493] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input261
[ 2487.304086][T29511] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4311'.
[ 2492.958438][T29606] FAULT_INJECTION: forcing a failure.
[ 2492.958438][T29606] name fail_futex, interval 1, probability 0, space 0, times 1
[ 2492.973995][T29606] CPU: 1 UID: 0 PID: 29606 Comm: syz.0.4326 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2492.974031][T29606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2492.974045][T29606] Call Trace:
[ 2492.974053][T29606]
[ 2492.974063][T29606] dump_stack_lvl+0x16c/0x1f0
[ 2492.974099][T29606] should_fail_ex+0x512/0x640
[ 2492.974140][T29606] get_futex_key+0x1d0/0x1560
[ 2492.974213][T29606] ? __pfx_get_futex_key+0x10/0x10
[ 2492.974243][T29606] ? __fget_files+0x204/0x3c0
[ 2492.974277][T29606] futex_wake+0xea/0x530
[ 2492.974315][T29606] ? __pfx_futex_wake+0x10/0x10
[ 2492.974350][T29606] ? __sys_sendmmsg+0x35f/0x420
[ 2492.974457][T29606] ? __pfx___sys_sendmmsg+0x10/0x10
[ 2492.974498][T29606] do_futex+0x1e3/0x350
[ 2492.974529][T29606] ? __pfx_do_futex+0x10/0x10
[ 2492.974567][T29606] __x64_sys_futex+0x1e0/0x4c0
[ 2492.974602][T29606] ? __pfx___x64_sys_futex+0x10/0x10
[ 2492.974633][T29606] ? xfd_validate_state+0x61/0x180
[ 2492.974690][T29606] do_syscall_64+0xcd/0x490
[ 2492.974722][T29606] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2492.974747][T29606] RIP: 0033:0x7f414bb8ebe9
[ 2492.974766][T29606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2492.974790][T29606] RSP: 002b:00007f414cab70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 2492.974813][T29606] RAX: ffffffffffffffda RBX: 00007f414bdb5fa8 RCX: 00007f414bb8ebe9
[ 2492.974840][T29606] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f414bdb5fac
[ 2492.974861][T29606] RBP: 00007f414bdb5fa0 R08: 00007f414cab8000 R09: 0000000000000000
[ 2492.974880][T29606] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 2492.974899][T29606] R13: 00007f414bdb6038 R14: 00007ffe2c47cf50 R15: 00007ffe2c47d038
[ 2492.974939][T29606]
[ 2495.114448][T29635] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input262
[ 2497.257386][T29674] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input263
[ 2497.482297][T29675] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input264
[ 2506.480593][T29797] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input265
[ 2515.332068][T29921] FAULT_INJECTION: forcing a failure.
[ 2515.332068][T29921] name failslab, interval 1, probability 0, space 0, times 0
[ 2515.345089][T29921] CPU: 0 UID: 0 PID: 29921 Comm: syz.1.4370 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2515.345124][T29921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2515.345139][T29921] Call Trace:
[ 2515.345147][T29921]
[ 2515.345155][T29921] dump_stack_lvl+0x16c/0x1f0
[ 2515.345190][T29921] should_fail_ex+0x512/0x640
[ 2515.345223][T29921] ? fs_reclaim_acquire+0xae/0x150
[ 2515.345266][T29921] should_failslab+0xc2/0x120
[ 2515.345298][T29921] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 2515.345327][T29921] ? alloc_empty_file+0x55/0x1e0
[ 2515.345446][T29921] alloc_empty_file+0x55/0x1e0
[ 2515.345490][T29921] path_openat+0xda/0x2cb0
[ 2515.345523][T29921] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2515.345571][T29921] ? __pfx_path_openat+0x10/0x10
[ 2515.345621][T29921] do_filp_open+0x20b/0x470
[ 2515.345651][T29921] ? __pfx_do_filp_open+0x10/0x10
[ 2515.345699][T29921] ? alloc_fd+0x471/0x7d0
[ 2515.345731][T29921] do_sys_openat2+0x11b/0x1d0
[ 2515.345768][T29921] ? __pfx_do_sys_openat2+0x10/0x10
[ 2515.345815][T29921] __x64_sys_openat+0x174/0x210
[ 2515.345852][T29921] ? __pfx___x64_sys_openat+0x10/0x10
[ 2515.345900][T29921] do_syscall_64+0xcd/0x490
[ 2515.345933][T29921] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2515.345957][T29921] RIP: 0033:0x7fb5a9b8ebe9
[ 2515.345975][T29921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2515.346007][T29921] RSP: 002b:00007fb5aa99c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2515.346030][T29921] RAX: ffffffffffffffda RBX: 00007fb5a9db5fa0 RCX: 00007fb5a9b8ebe9
[ 2515.346045][T29921] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2515.346060][T29921] RBP: 00007fb5a9c11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2515.346074][T29921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2515.346088][T29921] R13: 00007fb5a9db6038 R14: 00007fb5a9db5fa0 R15: 00007ffca0786568
[ 2515.346117][T29921]
[ 2523.903922][T30048] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input266
[ 2527.623065][T30098] FAULT_INJECTION: forcing a failure.
[ 2527.623065][T30098] name failslab, interval 1, probability 0, space 0, times 0
[ 2527.744387][T30098] CPU: 0 UID: 0 PID: 30098 Comm: syz.0.4395 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2527.744436][T30098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2527.744456][T30098] Call Trace:
[ 2527.744467][T30098]
[ 2527.744479][T30098] dump_stack_lvl+0x16c/0x1f0
[ 2527.744528][T30098] should_fail_ex+0x512/0x640
[ 2527.744579][T30098] ? fs_reclaim_acquire+0xae/0x150
[ 2527.744635][T30098] should_failslab+0xc2/0x120
[ 2527.744681][T30098] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 2527.744722][T30098] ? alloc_empty_file+0x55/0x1e0
[ 2527.744778][T30098] alloc_empty_file+0x55/0x1e0
[ 2527.744834][T30098] path_openat+0xda/0x2cb0
[ 2527.744870][T30098] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2527.744920][T30098] ? __pfx_path_openat+0x10/0x10
[ 2527.744971][T30098] do_filp_open+0x20b/0x470
[ 2527.745011][T30098] ? __pfx_do_filp_open+0x10/0x10
[ 2527.745090][T30098] ? alloc_fd+0x471/0x7d0
[ 2527.745137][T30098] do_sys_openat2+0x11b/0x1d0
[ 2527.745187][T30098] ? __pfx_do_sys_openat2+0x10/0x10
[ 2527.745255][T30098] __x64_sys_openat+0x174/0x210
[ 2527.745306][T30098] ? __pfx___x64_sys_openat+0x10/0x10
[ 2527.745370][T30098] do_syscall_64+0xcd/0x490
[ 2527.745415][T30098] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2527.745447][T30098] RIP: 0033:0x7f414bb8ebe9
[ 2527.745473][T30098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2527.745506][T30098] RSP: 002b:00007f414cab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2527.745539][T30098] RAX: ffffffffffffffda RBX: 00007f414bdb5fa0 RCX: 00007f414bb8ebe9
[ 2527.745561][T30098] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2527.745583][T30098] RBP: 00007f414bc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2527.745603][T30098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2527.745623][T30098] R13: 00007f414bdb6038 R14: 00007f414bdb5fa0 R15: 00007ffe2c47d038
[ 2527.745666][T30098]
[ 2537.305201][T30235] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input267
[ 2539.454480][T30253] FAULT_INJECTION: forcing a failure.
[ 2539.454480][T30253] name failslab, interval 1, probability 0, space 0, times 0
[ 2539.572574][T30253] CPU: 1 UID: 0 PID: 30253 Comm: syz.2.4415 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2539.572621][T30253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2539.572641][T30253] Call Trace:
[ 2539.572653][T30253]
[ 2539.572665][T30253] dump_stack_lvl+0x16c/0x1f0
[ 2539.572713][T30253] should_fail_ex+0x512/0x640
[ 2539.572758][T30253] ? fs_reclaim_acquire+0xae/0x150
[ 2539.572814][T30253] should_failslab+0xc2/0x120
[ 2539.572857][T30253] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 2539.572899][T30253] ? __kernfs_new_node+0xd2/0x8e0
[ 2539.573047][T30253] __kernfs_new_node+0xd2/0x8e0
[ 2539.573094][T30253] ? __pfx___kernfs_new_node+0x10/0x10
[ 2539.573173][T30253] ? find_held_lock+0x2b/0x80
[ 2539.573207][T30253] ? kernfs_root+0xee/0x2a0
[ 2539.573257][T30253] kernfs_new_node+0x13c/0x1e0
[ 2539.573310][T30253] __kernfs_create_file+0x53/0x350
[ 2539.573347][T30253] sysfs_add_file_mode_ns+0x207/0x3c0
[ 2539.573433][T30253] internal_create_group+0x578/0xf30
[ 2539.573488][T30253] ? __pfx_internal_create_group+0x10/0x10
[ 2539.573558][T30253] sysfs_slab_add+0x1a3/0x1e0
[ 2539.573596][T30253] do_kmem_cache_create+0x529/0x720
[ 2539.573637][T30253] ? __kmem_cache_create_args+0x205/0x390
[ 2539.573687][T30253] __kmem_cache_create_args+0x225/0x390
[ 2539.573727][T30253] mon_text_open+0x313/0x4f0
[ 2539.573817][T30253] ? __pfx_mon_text_open+0x10/0x10
[ 2539.573851][T30253] ? __debugfs_file_get+0x1fe/0x840
[ 2539.573975][T30253] ? __pfx_mon_text_ctor+0x10/0x10
[ 2539.574010][T30253] ? __pfx_apparmor_file_open+0x10/0x10
[ 2539.574085][T30253] ? lockdown_is_locked_down+0x3f/0x130
[ 2539.574175][T30253] ? bpf_lsm_locked_down+0x9/0x10
[ 2539.574222][T30253] ? __pfx_mon_text_open+0x10/0x10
[ 2539.574255][T30253] full_proxy_open_regular+0x1b9/0x360
[ 2539.574316][T30253] do_dentry_open+0x97f/0x1530
[ 2539.574359][T30253] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 2539.574425][T30253] vfs_open+0x82/0x3f0
[ 2539.574478][T30253] path_openat+0x1de4/0x2cb0
[ 2539.574581][T30253] ? __pfx_path_openat+0x10/0x10
[ 2539.574633][T30253] do_filp_open+0x20b/0x470
[ 2539.574673][T30253] ? __pfx_do_filp_open+0x10/0x10
[ 2539.574741][T30253] ? alloc_fd+0x471/0x7d0
[ 2539.574788][T30253] do_sys_openat2+0x11b/0x1d0
[ 2539.574838][T30253] ? __pfx_do_sys_openat2+0x10/0x10
[ 2539.574903][T30253] __x64_sys_openat+0x174/0x210
[ 2539.574955][T30253] ? __pfx___x64_sys_openat+0x10/0x10
[ 2539.575025][T30253] do_syscall_64+0xcd/0x490
[ 2539.575071][T30253] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2539.575105][T30253] RIP: 0033:0x7f729038ebe9
[ 2539.575131][T30253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2539.575164][T30253] RSP: 002b:00007f7291172038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2539.575197][T30253] RAX: ffffffffffffffda RBX: 00007f72905b5fa0 RCX: 00007f729038ebe9
[ 2539.575218][T30253] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2539.575240][T30253] RBP: 00007f7290411e19 R08: 0000000000000000 R09: 0000000000000000
[ 2539.575260][T30253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2539.575281][T30253] R13: 00007f72905b6038 R14: 00007f72905b5fa0 R15: 00007fff7a8d2618
[ 2539.575325][T30253]
[ 2540.038885][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 2540.049872][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 2540.248928][T30253] SLUB: Unable to add cache mon_text_ffff88807b2fc800 to sysfs
[ 2550.352893][T30418] FAULT_INJECTION: forcing a failure.
[ 2550.352893][T30418] name failslab, interval 1, probability 0, space 0, times 0
[ 2550.383228][T30418] CPU: 1 UID: 0 PID: 30418 Comm: syz.0.4436 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2550.383266][T30418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2550.383280][T30418] Call Trace:
[ 2550.383288][T30418]
[ 2550.383297][T30418] dump_stack_lvl+0x16c/0x1f0
[ 2550.383334][T30418] should_fail_ex+0x512/0x640
[ 2550.383367][T30418] ? fs_reclaim_acquire+0xae/0x150
[ 2550.383407][T30418] should_failslab+0xc2/0x120
[ 2550.383439][T30418] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 2550.383470][T30418] ? __kernfs_new_node+0xd2/0x8e0
[ 2550.383505][T30418] __kernfs_new_node+0xd2/0x8e0
[ 2550.383539][T30418] ? __pfx___kernfs_new_node+0x10/0x10
[ 2550.383577][T30418] ? find_held_lock+0x2b/0x80
[ 2550.383603][T30418] ? kernfs_root+0xee/0x2a0
[ 2550.383639][T30418] kernfs_new_node+0x13c/0x1e0
[ 2550.383679][T30418] __kernfs_create_file+0x53/0x350
[ 2550.383706][T30418] sysfs_add_file_mode_ns+0x207/0x3c0
[ 2550.383741][T30418] internal_create_group+0x578/0xf30
[ 2550.383781][T30418] ? __pfx_internal_create_group+0x10/0x10
[ 2550.383824][T30418] sysfs_slab_add+0x1a3/0x1e0
[ 2550.383857][T30418] do_kmem_cache_create+0x529/0x720
[ 2550.383888][T30418] ? __kmem_cache_create_args+0x205/0x390
[ 2550.383919][T30418] __kmem_cache_create_args+0x225/0x390
[ 2550.383948][T30418] mon_text_open+0x313/0x4f0
[ 2550.383975][T30418] ? __pfx_mon_text_open+0x10/0x10
[ 2550.383998][T30418] ? __debugfs_file_get+0x1fe/0x840
[ 2550.384035][T30418] ? __pfx_mon_text_ctor+0x10/0x10
[ 2550.384059][T30418] ? __pfx_apparmor_file_open+0x10/0x10
[ 2550.384083][T30418] ? lockdown_is_locked_down+0x3f/0x130
[ 2550.384121][T30418] ? bpf_lsm_locked_down+0x9/0x10
[ 2550.384147][T30418] ? __pfx_mon_text_open+0x10/0x10
[ 2550.384178][T30418] full_proxy_open_regular+0x1b9/0x360
[ 2550.384220][T30418] do_dentry_open+0x97f/0x1530
[ 2550.384251][T30418] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 2550.384297][T30418] vfs_open+0x82/0x3f0
[ 2550.384336][T30418] path_openat+0x1de4/0x2cb0
[ 2550.384374][T30418] ? __pfx_path_openat+0x10/0x10
[ 2550.384410][T30418] do_filp_open+0x20b/0x470
[ 2550.384437][T30418] ? __pfx_do_filp_open+0x10/0x10
[ 2550.384487][T30418] ? alloc_fd+0x471/0x7d0
[ 2550.384519][T30418] do_sys_openat2+0x11b/0x1d0
[ 2550.384556][T30418] ? __pfx_do_sys_openat2+0x10/0x10
[ 2550.384605][T30418] __x64_sys_openat+0x174/0x210
[ 2550.384643][T30418] ? __pfx___x64_sys_openat+0x10/0x10
[ 2550.384693][T30418] do_syscall_64+0xcd/0x490
[ 2550.384726][T30418] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2550.384750][T30418] RIP: 0033:0x7f414bb8ebe9
[ 2550.384769][T30418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2550.384791][T30418] RSP: 002b:00007f414cab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2550.384824][T30418] RAX: ffffffffffffffda RBX: 00007f414bdb5fa0 RCX: 00007f414bb8ebe9
[ 2550.384845][T30418] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2550.384876][T30418] RBP: 00007f414bc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2550.384895][T30418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2550.384914][T30418] R13: 00007f414bdb6038 R14: 00007f414bdb5fa0 R15: 00007ffe2c47d038
[ 2550.384959][T30418]
[ 2551.116968][T30418] SLUB: Unable to add cache mon_text_ffff888021fbe000 to sysfs
[ 2565.463548][T30662] FAULT_INJECTION: forcing a failure.
[ 2565.463548][T30662] name failslab, interval 1, probability 0, space 0, times 0
[ 2565.485339][T30662] CPU: 0 UID: 0 PID: 30662 Comm: syz.1.4468 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2565.485392][T30662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2565.485412][T30662] Call Trace:
[ 2565.485423][T30662]
[ 2565.485435][T30662] dump_stack_lvl+0x16c/0x1f0
[ 2565.485485][T30662] should_fail_ex+0x512/0x640
[ 2565.485545][T30662] ? fs_reclaim_acquire+0xae/0x150
[ 2565.485600][T30662] ? __pfx_mon_text_open+0x10/0x10
[ 2565.485637][T30662] should_failslab+0xc2/0x120
[ 2565.485683][T30662] __kmalloc_cache_noprof+0x6a/0x3e0
[ 2565.485719][T30662] ? mon_text_open+0xd5/0x4f0
[ 2565.485765][T30662] ? __pfx_mon_text_open+0x10/0x10
[ 2565.485802][T30662] mon_text_open+0xd5/0x4f0
[ 2565.485838][T30662] ? __pfx_mon_text_open+0x10/0x10
[ 2565.485871][T30662] ? __debugfs_file_get+0x1fe/0x840
[ 2565.485921][T30662] ? __pfx___debugfs_file_get+0x10/0x10
[ 2565.485973][T30662] ? __pfx_apparmor_file_open+0x10/0x10
[ 2565.486006][T30662] ? lockdown_is_locked_down+0x3f/0x130
[ 2565.486060][T30662] ? bpf_lsm_locked_down+0x9/0x10
[ 2565.486098][T30662] ? __pfx_mon_text_open+0x10/0x10
[ 2565.486129][T30662] full_proxy_open_regular+0x1b9/0x360
[ 2565.486188][T30662] do_dentry_open+0x97f/0x1530
[ 2565.486229][T30662] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 2565.486295][T30662] vfs_open+0x82/0x3f0
[ 2565.486350][T30662] path_openat+0x1de4/0x2cb0
[ 2565.486404][T30662] ? __pfx_path_openat+0x10/0x10
[ 2565.486454][T30662] do_filp_open+0x20b/0x470
[ 2565.486494][T30662] ? __pfx_do_filp_open+0x10/0x10
[ 2565.486573][T30662] ? alloc_fd+0x471/0x7d0
[ 2565.486623][T30662] do_sys_openat2+0x11b/0x1d0
[ 2565.486673][T30662] ? __pfx_do_sys_openat2+0x10/0x10
[ 2565.486741][T30662] __x64_sys_openat+0x174/0x210
[ 2565.486794][T30662] ? __pfx___x64_sys_openat+0x10/0x10
[ 2565.486865][T30662] do_syscall_64+0xcd/0x490
[ 2565.486912][T30662] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2565.486946][T30662] RIP: 0033:0x7fb5a9b8ebe9
[ 2565.486973][T30662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2565.487006][T30662] RSP: 002b:00007fb5aa99c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2565.487037][T30662] RAX: ffffffffffffffda RBX: 00007fb5a9db5fa0 RCX: 00007fb5a9b8ebe9
[ 2565.487059][T30662] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2565.487081][T30662] RBP: 00007fb5a9c11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2565.487101][T30662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2565.487122][T30662] R13: 00007fb5a9db6038 R14: 00007fb5a9db5fa0 R15: 00007ffca0786568
[ 2565.487165][T30662]
[ 2571.748437][T30746] FAULT_INJECTION: forcing a failure.
[ 2571.748437][T30746] name failslab, interval 1, probability 0, space 0, times 0
[ 2571.762512][T30746] CPU: 0 UID: 0 PID: 30746 Comm: syz.2.4479 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2571.762559][T30746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2571.762579][T30746] Call Trace:
[ 2571.762591][T30746]
[ 2571.762602][T30746] dump_stack_lvl+0x16c/0x1f0
[ 2571.762650][T30746] should_fail_ex+0x512/0x640
[ 2571.762695][T30746] ? fs_reclaim_acquire+0xae/0x150
[ 2571.762743][T30746] should_failslab+0xc2/0x120
[ 2571.762776][T30746] kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 2571.762806][T30746] ? do_kmem_cache_create+0x1b3/0x720
[ 2571.762841][T30746] do_kmem_cache_create+0x1b3/0x720
[ 2571.762870][T30746] ? __kmem_cache_create_args+0x205/0x390
[ 2571.762900][T30746] __kmem_cache_create_args+0x225/0x390
[ 2571.762929][T30746] mon_text_open+0x313/0x4f0
[ 2571.762956][T30746] ? __pfx_mon_text_open+0x10/0x10
[ 2571.762979][T30746] ? __debugfs_file_get+0x1fe/0x840
[ 2571.763017][T30746] ? __pfx_mon_text_ctor+0x10/0x10
[ 2571.763041][T30746] ? __pfx_apparmor_file_open+0x10/0x10
[ 2571.763065][T30746] ? lockdown_is_locked_down+0x3f/0x130
[ 2571.763104][T30746] ? bpf_lsm_locked_down+0x9/0x10
[ 2571.763129][T30746] ? __pfx_mon_text_open+0x10/0x10
[ 2571.763152][T30746] full_proxy_open_regular+0x1b9/0x360
[ 2571.763204][T30746] do_dentry_open+0x97f/0x1530
[ 2571.763235][T30746] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 2571.763282][T30746] vfs_open+0x82/0x3f0
[ 2571.763321][T30746] path_openat+0x1de4/0x2cb0
[ 2571.763359][T30746] ? __pfx_path_openat+0x10/0x10
[ 2571.763396][T30746] do_filp_open+0x20b/0x470
[ 2571.763426][T30746] ? __pfx_do_filp_open+0x10/0x10
[ 2571.763476][T30746] ? alloc_fd+0x471/0x7d0
[ 2571.763510][T30746] do_sys_openat2+0x11b/0x1d0
[ 2571.763546][T30746] ? __pfx_do_sys_openat2+0x10/0x10
[ 2571.763594][T30746] __x64_sys_openat+0x174/0x210
[ 2571.763639][T30746] ? __pfx___x64_sys_openat+0x10/0x10
[ 2571.763688][T30746] do_syscall_64+0xcd/0x490
[ 2571.763726][T30746] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2571.763751][T30746] RIP: 0033:0x7f729038ebe9
[ 2571.763770][T30746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2571.763793][T30746] RSP: 002b:00007f7291172038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2571.763816][T30746] RAX: ffffffffffffffda RBX: 00007f72905b5fa0 RCX: 00007f729038ebe9
[ 2571.763831][T30746] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2571.763846][T30746] RBP: 00007f7290411e19 R08: 0000000000000000 R09: 0000000000000000
[ 2571.763861][T30746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2571.763875][T30746] R13: 00007f72905b6038 R14: 00007f72905b5fa0 R15: 00007fff7a8d2618
[ 2571.763905][T30746]
[ 2571.764611][T30746] __kmem_cache_create_args(mon_text_ffff88805b43f000) failed with error -22
[ 2572.064473][T30746] CPU: 1 UID: 0 PID: 30746 Comm: syz.2.4479 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2572.064525][T30746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2572.064545][T30746] Call Trace:
[ 2572.064556][T30746]
[ 2572.064570][T30746] dump_stack_lvl+0x16c/0x1f0
[ 2572.064620][T30746] __kmem_cache_create_args+0x125/0x390
[ 2572.064662][T30746] mon_text_open+0x313/0x4f0
[ 2572.064701][T30746] ? __pfx_mon_text_open+0x10/0x10
[ 2572.064733][T30746] ? __debugfs_file_get+0x1fe/0x840
[ 2572.064784][T30746] ? __pfx_mon_text_ctor+0x10/0x10
[ 2572.064820][T30746] ? __pfx_apparmor_file_open+0x10/0x10
[ 2572.064854][T30746] ? lockdown_is_locked_down+0x3f/0x130
[ 2572.064908][T30746] ? bpf_lsm_locked_down+0x9/0x10
[ 2572.064945][T30746] ? __pfx_mon_text_open+0x10/0x10
[ 2572.064977][T30746] full_proxy_open_regular+0x1b9/0x360
[ 2572.065038][T30746] do_dentry_open+0x97f/0x1530
[ 2572.065078][T30746] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 2572.065144][T30746] vfs_open+0x82/0x3f0
[ 2572.065198][T30746] path_openat+0x1de4/0x2cb0
[ 2572.065252][T30746] ? __pfx_path_openat+0x10/0x10
[ 2572.065304][T30746] do_filp_open+0x20b/0x470
[ 2572.065353][T30746] ? __pfx_do_filp_open+0x10/0x10
[ 2572.065424][T30746] ? alloc_fd+0x471/0x7d0
[ 2572.065472][T30746] do_sys_openat2+0x11b/0x1d0
[ 2572.065521][T30746] ? __pfx_do_sys_openat2+0x10/0x10
[ 2572.065588][T30746] __x64_sys_openat+0x174/0x210
[ 2572.065639][T30746] ? __pfx___x64_sys_openat+0x10/0x10
[ 2572.065708][T30746] do_syscall_64+0xcd/0x490
[ 2572.065754][T30746] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2572.065787][T30746] RIP: 0033:0x7f729038ebe9
[ 2572.065813][T30746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2572.065846][T30746] RSP: 002b:00007f7291172038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2572.065877][T30746] RAX: ffffffffffffffda RBX: 00007f72905b5fa0 RCX: 00007f729038ebe9
[ 2572.065898][T30746] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2572.065920][T30746] RBP: 00007f7290411e19 R08: 0000000000000000 R09: 0000000000000000
[ 2572.065940][T30746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2572.065960][T30746] R13: 00007f72905b6038 R14: 00007f72905b5fa0 R15: 00007fff7a8d2618
[ 2572.066004][T30746]
[ 2594.349890][T31067] FAULT_INJECTION: forcing a failure.
[ 2594.349890][T31067] name failslab, interval 1, probability 0, space 0, times 0
[ 2594.366942][T31067] CPU: 0 UID: 0 PID: 31067 Comm: syz.0.4525 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2594.366991][T31067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2594.367011][T31067] Call Trace:
[ 2594.367022][T31067]
[ 2594.367036][T31067] dump_stack_lvl+0x16c/0x1f0
[ 2594.367073][T31067] should_fail_ex+0x512/0x640
[ 2594.367106][T31067] ? fs_reclaim_acquire+0xae/0x150
[ 2594.367144][T31067] should_failslab+0xc2/0x120
[ 2594.367175][T31067] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 2594.367203][T31067] ? security_file_alloc+0x34/0x2b0
[ 2594.367240][T31067] security_file_alloc+0x34/0x2b0
[ 2594.367270][T31067] init_file+0x93/0x4c0
[ 2594.367304][T31067] alloc_empty_file+0x73/0x1e0
[ 2594.367339][T31067] path_openat+0xda/0x2cb0
[ 2594.367364][T31067] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2594.367397][T31067] ? __pfx_path_openat+0x10/0x10
[ 2594.367432][T31067] do_filp_open+0x20b/0x470
[ 2594.367459][T31067] ? __pfx_do_filp_open+0x10/0x10
[ 2594.367507][T31067] ? alloc_fd+0x471/0x7d0
[ 2594.367539][T31067] do_sys_openat2+0x11b/0x1d0
[ 2594.367591][T31067] ? __pfx_do_sys_openat2+0x10/0x10
[ 2594.367639][T31067] __x64_sys_openat+0x174/0x210
[ 2594.367677][T31067] ? __pfx___x64_sys_openat+0x10/0x10
[ 2594.367726][T31067] do_syscall_64+0xcd/0x490
[ 2594.367759][T31067] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2594.367782][T31067] RIP: 0033:0x7f414bb8ebe9
[ 2594.367801][T31067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2594.367827][T31067] RSP: 002b:00007f414cab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2594.367850][T31067] RAX: ffffffffffffffda RBX: 00007f414bdb5fa0 RCX: 00007f414bb8ebe9
[ 2594.367865][T31067] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2594.367880][T31067] RBP: 00007f414bc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2594.367895][T31067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2594.367909][T31067] R13: 00007f414bdb6038 R14: 00007f414bdb5fa0 R15: 00007ffe2c47d038
[ 2594.367938][T31067]
[ 2601.169286][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 2601.175851][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 2615.250324][T31375] FAULT_INJECTION: forcing a failure.
[ 2615.250324][T31375] name failslab, interval 1, probability 0, space 0, times 0
[ 2615.265398][T31375] CPU: 0 UID: 0 PID: 31375 Comm: syz.0.4565 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2615.265445][T31375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2615.265465][T31375] Call Trace:
[ 2615.265485][T31375]
[ 2615.265497][T31375] dump_stack_lvl+0x16c/0x1f0
[ 2615.265544][T31375] should_fail_ex+0x512/0x640
[ 2615.265590][T31375] ? fs_reclaim_acquire+0xae/0x150
[ 2615.265644][T31375] should_failslab+0xc2/0x120
[ 2615.265688][T31375] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 2615.265728][T31375] ? getname_flags.part.0+0x4c/0x550
[ 2615.265872][T31375] getname_flags.part.0+0x4c/0x550
[ 2615.265929][T31375] getname_flags+0x93/0xf0
[ 2615.265966][T31375] do_sys_openat2+0xb8/0x1d0
[ 2615.266014][T31375] ? __pfx_do_sys_openat2+0x10/0x10
[ 2615.266080][T31375] __x64_sys_openat+0x174/0x210
[ 2615.266133][T31375] ? __pfx___x64_sys_openat+0x10/0x10
[ 2615.266203][T31375] do_syscall_64+0xcd/0x490
[ 2615.266246][T31375] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2615.266282][T31375] RIP: 0033:0x7f414bb8ebe9
[ 2615.266308][T31375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2615.266341][T31375] RSP: 002b:00007f414cab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2615.266373][T31375] RAX: ffffffffffffffda RBX: 00007f414bdb5fa0 RCX: 00007f414bb8ebe9
[ 2615.266396][T31375] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2615.266418][T31375] RBP: 00007f414bc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2615.266438][T31375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2615.266458][T31375] R13: 00007f414bdb6038 R14: 00007f414bdb5fa0 R15: 00007ffe2c47d038
[ 2615.266508][T31375]
[ 2617.394723][T31415] FAULT_INJECTION: forcing a failure.
[ 2617.394723][T31415] name failslab, interval 1, probability 0, space 0, times 0
[ 2617.488916][T31415] CPU: 1 UID: 0 PID: 31415 Comm: syz.3.4570 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2617.488965][T31415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2617.488979][T31415] Call Trace:
[ 2617.488987][T31415]
[ 2617.488998][T31415] dump_stack_lvl+0x16c/0x1f0
[ 2617.489035][T31415] should_fail_ex+0x512/0x640
[ 2617.489068][T31415] ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 2617.489101][T31415] should_failslab+0xc2/0x120
[ 2617.489132][T31415] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 2617.489161][T31415] ? __kernfs_new_node+0xd2/0x8e0
[ 2617.489196][T31415] __kernfs_new_node+0xd2/0x8e0
[ 2617.489228][T31415] ? wake_up_q+0xae/0x130
[ 2617.489293][T31415] ? __pfx___kernfs_new_node+0x10/0x10
[ 2617.489331][T31415] ? find_held_lock+0x2b/0x80
[ 2617.489356][T31415] ? kernfs_root+0xee/0x2a0
[ 2617.489392][T31415] kernfs_new_node+0x13c/0x1e0
[ 2617.489432][T31415] __kernfs_create_file+0x53/0x350
[ 2617.489459][T31415] sysfs_add_file_mode_ns+0x207/0x3c0
[ 2617.489496][T31415] internal_create_group+0x578/0xf30
[ 2617.489535][T31415] ? __pfx_internal_create_group+0x10/0x10
[ 2617.489579][T31415] sysfs_slab_add+0x1a3/0x1e0
[ 2617.489606][T31415] do_kmem_cache_create+0x529/0x720
[ 2617.489636][T31415] ? __kmem_cache_create_args+0x205/0x390
[ 2617.489666][T31415] __kmem_cache_create_args+0x225/0x390
[ 2617.489696][T31415] mon_text_open+0x313/0x4f0
[ 2617.489728][T31415] ? __pfx_mon_text_open+0x10/0x10
[ 2617.489752][T31415] ? __debugfs_file_get+0x1fe/0x840
[ 2617.489791][T31415] ? __pfx_mon_text_ctor+0x10/0x10
[ 2617.489816][T31415] ? __pfx_apparmor_file_open+0x10/0x10
[ 2617.489841][T31415] ? lockdown_is_locked_down+0x3f/0x130
[ 2617.489880][T31415] ? bpf_lsm_locked_down+0x9/0x10
[ 2617.489907][T31415] ? __pfx_mon_text_open+0x10/0x10
[ 2617.489930][T31415] full_proxy_open_regular+0x1b9/0x360
[ 2617.489972][T31415] do_dentry_open+0x97f/0x1530
[ 2617.490004][T31415] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 2617.490051][T31415] vfs_open+0x82/0x3f0
[ 2617.490089][T31415] path_openat+0x1de4/0x2cb0
[ 2617.490127][T31415] ? __pfx_path_openat+0x10/0x10
[ 2617.490163][T31415] do_filp_open+0x20b/0x470
[ 2617.490191][T31415] ? __pfx_do_filp_open+0x10/0x10
[ 2617.490245][T31415] ? alloc_fd+0x471/0x7d0
[ 2617.490283][T31415] do_sys_openat2+0x11b/0x1d0
[ 2617.490319][T31415] ? __pfx_do_sys_openat2+0x10/0x10
[ 2617.490368][T31415] __x64_sys_openat+0x174/0x210
[ 2617.490405][T31415] ? __pfx___x64_sys_openat+0x10/0x10
[ 2617.490455][T31415] do_syscall_64+0xcd/0x490
[ 2617.490488][T31415] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2617.490512][T31415] RIP: 0033:0x7f7de098ebe9
[ 2617.490531][T31415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2617.490553][T31415] RSP: 002b:00007f7de175b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2617.490575][T31415] RAX: ffffffffffffffda RBX: 00007f7de0bb6180 RCX: 00007f7de098ebe9
[ 2617.490590][T31415] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2617.490605][T31415] RBP: 00007f7de0a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2617.490619][T31415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2617.490633][T31415] R13: 00007f7de0bb6218 R14: 00007f7de0bb6180 R15: 00007ffc841d8c48
[ 2617.490665][T31415]
[ 2617.491116][T31415] SLUB: Unable to add cache mon_text_ffff88805d167800 to sysfs
[ 2645.754506][T31832] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input268
[ 2646.073950][T31833] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4625'.
[ 2660.982641][T32041] FAULT_INJECTION: forcing a failure.
[ 2660.982641][T32041] name fail_usercopy, interval 1, probability 0, space 0, times 1
[ 2661.066282][T32056] FAULT_INJECTION: forcing a failure.
[ 2661.066282][T32056] name failslab, interval 1, probability 0, space 0, times 0
[ 2661.079527][T32056] CPU: 0 UID: 0 PID: 32056 Comm: syz.0.4658 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2661.079561][T32056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2661.079576][T32056] Call Trace:
[ 2661.079585][T32056]
[ 2661.079595][T32056] dump_stack_lvl+0x16c/0x1f0
[ 2661.079630][T32056] should_fail_ex+0x512/0x640
[ 2661.079664][T32056] ? fs_reclaim_acquire+0xae/0x150
[ 2661.079704][T32056] should_failslab+0xc2/0x120
[ 2661.079742][T32056] __kmalloc_node_track_caller_noprof+0xd6/0x510
[ 2661.079776][T32056] ? kstrdup_const+0x63/0x80
[ 2661.079839][T32056] kstrdup+0x53/0x100
[ 2661.079869][T32056] kstrdup_const+0x63/0x80
[ 2661.079898][T32056] __kmem_cache_create_args+0x18f/0x390
[ 2661.079935][T32056] mon_text_open+0x313/0x4f0
[ 2661.079971][T32056] ? __pfx_mon_text_open+0x10/0x10
[ 2661.080003][T32056] ? __debugfs_file_get+0x1fe/0x840
[ 2661.080052][T32056] ? __pfx_mon_text_ctor+0x10/0x10
[ 2661.080085][T32056] ? __pfx_apparmor_file_open+0x10/0x10
[ 2661.080111][T32056] ? lockdown_is_locked_down+0x3f/0x130
[ 2661.080149][T32056] ? bpf_lsm_locked_down+0x9/0x10
[ 2661.080175][T32056] ? __pfx_mon_text_open+0x10/0x10
[ 2661.080198][T32056] full_proxy_open_regular+0x1b9/0x360
[ 2661.080240][T32056] do_dentry_open+0x97f/0x1530
[ 2661.080278][T32056] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 2661.080325][T32056] vfs_open+0x82/0x3f0
[ 2661.080375][T32056] path_openat+0x1de4/0x2cb0
[ 2661.080414][T32056] ? __pfx_path_openat+0x10/0x10
[ 2661.080450][T32056] do_filp_open+0x20b/0x470
[ 2661.080479][T32056] ? __pfx_do_filp_open+0x10/0x10
[ 2661.080529][T32056] ? alloc_fd+0x471/0x7d0
[ 2661.080562][T32056] do_sys_openat2+0x11b/0x1d0
[ 2661.080598][T32056] ? __pfx_do_sys_openat2+0x10/0x10
[ 2661.080646][T32056] __x64_sys_openat+0x174/0x210
[ 2661.080683][T32056] ? __pfx___x64_sys_openat+0x10/0x10
[ 2661.080733][T32056] do_syscall_64+0xcd/0x490
[ 2661.080771][T32056] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2661.080796][T32056] RIP: 0033:0x7f414bb8ebe9
[ 2661.080814][T32056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2661.080838][T32056] RSP: 002b:00007f414cab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2661.080860][T32056] RAX: ffffffffffffffda RBX: 00007f414bdb5fa0 RCX: 00007f414bb8ebe9
[ 2661.080876][T32056] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2661.080891][T32056] RBP: 00007f414bc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2661.080905][T32056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2661.080919][T32056] R13: 00007f414bdb6038 R14: 00007f414bdb5fa0 R15: 00007ffe2c47d038
[ 2661.080948][T32056]
[ 2661.080970][T32056] __kmem_cache_create_args(mon_text_ffff88805fc15800) failed with error -12
[ 2661.375564][T32041] CPU: 0 UID: 0 PID: 32041 Comm: syz.2.4655 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2661.375611][T32041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2661.375631][T32041] Call Trace:
[ 2661.375642][T32041]
[ 2661.375655][T32041] dump_stack_lvl+0x16c/0x1f0
[ 2661.375701][T32041] should_fail_ex+0x512/0x640
[ 2661.375760][T32041] _copy_from_user+0x2e/0xd0
[ 2661.375917][T32041] copy_mount_options+0x76/0x190
[ 2661.375971][T32041] __x64_sys_mount+0x1ac/0x310
[ 2661.376054][T32041] ? __pfx___x64_sys_mount+0x10/0x10
[ 2661.376110][T32041] do_syscall_64+0xcd/0x490
[ 2661.376154][T32041] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2661.376189][T32041] RIP: 0033:0x7f729038ebe9
[ 2661.376214][T32041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2661.376247][T32041] RSP: 002b:00007f7291172038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2661.376289][T32041] RAX: ffffffffffffffda RBX: 00007f72905b5fa0 RCX: 00007f729038ebe9
[ 2661.376312][T32041] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000200000000040
[ 2661.376334][T32041] RBP: 00007f7290411e19 R08: 0000200000000240 R09: 0000000000000000
[ 2661.376356][T32041] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000000
[ 2661.376377][T32041] R13: 00007f72905b6038 R14: 00007f72905b5fa0 R15: 00007fff7a8d2618
[ 2661.376420][T32041]
[ 2661.696552][T32056] CPU: 1 UID: 0 PID: 32056 Comm: syz.0.4658 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2661.696603][T32056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2661.696624][T32056] Call Trace:
[ 2661.696635][T32056]
[ 2661.696647][T32056] dump_stack_lvl+0x16c/0x1f0
[ 2661.696697][T32056] __kmem_cache_create_args+0x125/0x390
[ 2661.696741][T32056] mon_text_open+0x313/0x4f0
[ 2661.696779][T32056] ? __pfx_mon_text_open+0x10/0x10
[ 2661.696812][T32056] ? __debugfs_file_get+0x1fe/0x840
[ 2661.696863][T32056] ? __pfx_mon_text_ctor+0x10/0x10
[ 2661.696897][T32056] ? __pfx_apparmor_file_open+0x10/0x10
[ 2661.696930][T32056] ? lockdown_is_locked_down+0x3f/0x130
[ 2661.696981][T32056] ? bpf_lsm_locked_down+0x9/0x10
[ 2661.697019][T32056] ? __pfx_mon_text_open+0x10/0x10
[ 2661.697051][T32056] full_proxy_open_regular+0x1b9/0x360
[ 2661.697109][T32056] do_dentry_open+0x97f/0x1530
[ 2661.697154][T32056] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 2661.697220][T32056] vfs_open+0x82/0x3f0
[ 2661.697295][T32056] path_openat+0x1de4/0x2cb0
[ 2661.697349][T32056] ? __pfx_path_openat+0x10/0x10
[ 2661.697401][T32056] do_filp_open+0x20b/0x470
[ 2661.697440][T32056] ? __pfx_do_filp_open+0x10/0x10
[ 2661.697510][T32056] ? alloc_fd+0x471/0x7d0
[ 2661.697563][T32056] do_sys_openat2+0x11b/0x1d0
[ 2661.697612][T32056] ? __pfx_do_sys_openat2+0x10/0x10
[ 2661.697678][T32056] __x64_sys_openat+0x174/0x210
[ 2661.697729][T32056] ? __pfx___x64_sys_openat+0x10/0x10
[ 2661.697800][T32056] do_syscall_64+0xcd/0x490
[ 2661.697845][T32056] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2661.697879][T32056] RIP: 0033:0x7f414bb8ebe9
[ 2661.697905][T32056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2661.697938][T32056] RSP: 002b:00007f414cab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2661.697968][T32056] RAX: ffffffffffffffda RBX: 00007f414bdb5fa0 RCX: 00007f414bb8ebe9
[ 2661.697988][T32056] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2661.698006][T32056] RBP: 00007f414bc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2661.698021][T32056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2661.698034][T32056] R13: 00007f414bdb6038 R14: 00007f414bdb5fa0 R15: 00007ffe2c47d038
[ 2661.698064][T32056]
[ 2662.619759][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 2662.626256][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 2669.084454][T32152] FAULT_INJECTION: forcing a failure.
[ 2669.084454][T32152] name failslab, interval 1, probability 0, space 0, times 0
[ 2669.110831][T32152] CPU: 0 UID: 0 PID: 32152 Comm: syz.1.4668 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2669.110878][T32152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2669.110898][T32152] Call Trace:
[ 2669.110908][T32152]
[ 2669.110921][T32152] dump_stack_lvl+0x16c/0x1f0
[ 2669.110970][T32152] should_fail_ex+0x512/0x640
[ 2669.111017][T32152] ? fs_reclaim_acquire+0xae/0x150
[ 2669.111071][T32152] should_failslab+0xc2/0x120
[ 2669.111116][T32152] kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 2669.111157][T32152] ? do_kmem_cache_create+0x1b3/0x720
[ 2669.111207][T32152] do_kmem_cache_create+0x1b3/0x720
[ 2669.111248][T32152] ? __kmem_cache_create_args+0x205/0x390
[ 2669.111287][T32152] __kmem_cache_create_args+0x225/0x390
[ 2669.111322][T32152] mon_text_open+0x313/0x4f0
[ 2669.111358][T32152] ? __pfx_mon_text_open+0x10/0x10
[ 2669.111391][T32152] ? __debugfs_file_get+0x1fe/0x840
[ 2669.111442][T32152] ? __pfx_mon_text_ctor+0x10/0x10
[ 2669.111476][T32152] ? __pfx_apparmor_file_open+0x10/0x10
[ 2669.111509][T32152] ? lockdown_is_locked_down+0x3f/0x130
[ 2669.111560][T32152] ? bpf_lsm_locked_down+0x9/0x10
[ 2669.111596][T32152] ? __pfx_mon_text_open+0x10/0x10
[ 2669.111634][T32152] full_proxy_open_regular+0x1b9/0x360
[ 2669.111691][T32152] do_dentry_open+0x97f/0x1530
[ 2669.111734][T32152] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 2669.111810][T32152] vfs_open+0x82/0x3f0
[ 2669.111865][T32152] path_openat+0x1de4/0x2cb0
[ 2669.111919][T32152] ? __pfx_path_openat+0x10/0x10
[ 2669.111970][T32152] do_filp_open+0x20b/0x470
[ 2669.112011][T32152] ? __pfx_do_filp_open+0x10/0x10
[ 2669.112083][T32152] ? alloc_fd+0x471/0x7d0
[ 2669.112131][T32152] do_sys_openat2+0x11b/0x1d0
[ 2669.112180][T32152] ? __pfx_do_sys_openat2+0x10/0x10
[ 2669.112249][T32152] __x64_sys_openat+0x174/0x210
[ 2669.112301][T32152] ? __pfx___x64_sys_openat+0x10/0x10
[ 2669.112370][T32152] do_syscall_64+0xcd/0x490
[ 2669.112416][T32152] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2669.112450][T32152] RIP: 0033:0x7fb5a9b8ebe9
[ 2669.112476][T32152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2669.112509][T32152] RSP: 002b:00007fb5aa99c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2669.112539][T32152] RAX: ffffffffffffffda RBX: 00007fb5a9db5fa0 RCX: 00007fb5a9b8ebe9
[ 2669.112562][T32152] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2669.112584][T32152] RBP: 00007fb5a9c11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2669.112604][T32152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2669.112624][T32152] R13: 00007fb5a9db6038 R14: 00007fb5a9db5fa0 R15: 00007ffca0786568
[ 2669.112667][T32152]
[ 2669.175203][T32152] __kmem_cache_create_args(mon_text_ffff88807cc1c400) failed with error -22
[ 2669.487453][T32152] CPU: 0 UID: 0 PID: 32152 Comm: syz.1.4668 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2669.487504][T32152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2669.487524][T32152] Call Trace:
[ 2669.487535][T32152]
[ 2669.487549][T32152] dump_stack_lvl+0x16c/0x1f0
[ 2669.487599][T32152] __kmem_cache_create_args+0x125/0x390
[ 2669.487643][T32152] mon_text_open+0x313/0x4f0
[ 2669.487681][T32152] ? __pfx_mon_text_open+0x10/0x10
[ 2669.487713][T32152] ? __debugfs_file_get+0x1fe/0x840
[ 2669.487777][T32152] ? __pfx_mon_text_ctor+0x10/0x10
[ 2669.487811][T32152] ? __pfx_apparmor_file_open+0x10/0x10
[ 2669.487845][T32152] ? lockdown_is_locked_down+0x3f/0x130
[ 2669.487896][T32152] ? bpf_lsm_locked_down+0x9/0x10
[ 2669.487934][T32152] ? __pfx_mon_text_open+0x10/0x10
[ 2669.487965][T32152] full_proxy_open_regular+0x1b9/0x360
[ 2669.488024][T32152] do_dentry_open+0x97f/0x1530
[ 2669.488066][T32152] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 2669.488130][T32152] vfs_open+0x82/0x3f0
[ 2669.488183][T32152] path_openat+0x1de4/0x2cb0
[ 2669.488237][T32152] ? __pfx_path_openat+0x10/0x10
[ 2669.488287][T32152] do_filp_open+0x20b/0x470
[ 2669.488327][T32152] ? __pfx_do_filp_open+0x10/0x10
[ 2669.488392][T32152] ? alloc_fd+0x471/0x7d0
[ 2669.488436][T32152] do_sys_openat2+0x11b/0x1d0
[ 2669.488485][T32152] ? __pfx_do_sys_openat2+0x10/0x10
[ 2669.488554][T32152] __x64_sys_openat+0x174/0x210
[ 2669.488607][T32152] ? __pfx___x64_sys_openat+0x10/0x10
[ 2669.488676][T32152] do_syscall_64+0xcd/0x490
[ 2669.488723][T32152] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2669.488764][T32152] RIP: 0033:0x7fb5a9b8ebe9
[ 2669.488793][T32152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2669.488825][T32152] RSP: 002b:00007fb5aa99c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2669.488855][T32152] RAX: ffffffffffffffda RBX: 00007fb5a9db5fa0 RCX: 00007fb5a9b8ebe9
[ 2669.488877][T32152] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2669.488899][T32152] RBP: 00007fb5a9c11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2669.488919][T32152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2669.488939][T32152] R13: 00007fb5a9db6038 R14: 00007fb5a9db5fa0 R15: 00007ffca0786568
[ 2669.488984][T32152]
[ 2680.343021][T32318] FAULT_INJECTION: forcing a failure.
[ 2680.343021][T32318] name failslab, interval 1, probability 0, space 0, times 0
[ 2680.370984][T32318] CPU: 1 UID: 0 PID: 32318 Comm: syz.3.4696 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2680.371020][T32318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2680.371035][T32318] Call Trace:
[ 2680.371042][T32318]
[ 2680.371051][T32318] dump_stack_lvl+0x16c/0x1f0
[ 2680.371086][T32318] should_fail_ex+0x512/0x640
[ 2680.371120][T32318] ? fs_reclaim_acquire+0xae/0x150
[ 2680.371160][T32318] should_failslab+0xc2/0x120
[ 2680.371192][T32318] kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 2680.371222][T32318] ? do_kmem_cache_create+0x1b3/0x720
[ 2680.371258][T32318] do_kmem_cache_create+0x1b3/0x720
[ 2680.371288][T32318] ? __kmem_cache_create_args+0x205/0x390
[ 2680.371318][T32318] __kmem_cache_create_args+0x225/0x390
[ 2680.371348][T32318] mon_text_open+0x313/0x4f0
[ 2680.371375][T32318] ? __pfx_mon_text_open+0x10/0x10
[ 2680.371399][T32318] ? __debugfs_file_get+0x1fe/0x840
[ 2680.371437][T32318] ? __pfx_mon_text_ctor+0x10/0x10
[ 2680.371461][T32318] ? __pfx_apparmor_file_open+0x10/0x10
[ 2680.371486][T32318] ? lockdown_is_locked_down+0x3f/0x130
[ 2680.371524][T32318] ? bpf_lsm_locked_down+0x9/0x10
[ 2680.371595][T32318] ? __pfx_mon_text_open+0x10/0x10
[ 2680.371619][T32318] full_proxy_open_regular+0x1b9/0x360
[ 2680.371661][T32318] do_dentry_open+0x97f/0x1530
[ 2680.371692][T32318] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 2680.371746][T32318] vfs_open+0x82/0x3f0
[ 2680.371785][T32318] path_openat+0x1de4/0x2cb0
[ 2680.371823][T32318] ? __pfx_path_openat+0x10/0x10
[ 2680.371860][T32318] do_filp_open+0x20b/0x470
[ 2680.371889][T32318] ? __pfx_do_filp_open+0x10/0x10
[ 2680.371939][T32318] ? alloc_fd+0x471/0x7d0
[ 2680.371972][T32318] do_sys_openat2+0x11b/0x1d0
[ 2680.372008][T32318] ? __pfx_do_sys_openat2+0x10/0x10
[ 2680.372057][T32318] __x64_sys_openat+0x174/0x210
[ 2680.372094][T32318] ? __pfx___x64_sys_openat+0x10/0x10
[ 2680.372144][T32318] do_syscall_64+0xcd/0x490
[ 2680.372178][T32318] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2680.372203][T32318] RIP: 0033:0x7f7de098ebe9
[ 2680.372221][T32318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2680.372244][T32318] RSP: 002b:00007f7de179d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2680.372268][T32318] RAX: ffffffffffffffda RBX: 00007f7de0bb5fa0 RCX: 00007f7de098ebe9
[ 2680.372283][T32318] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2680.372298][T32318] RBP: 00007f7de0a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2680.372312][T32318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2680.372326][T32318] R13: 00007f7de0bb6038 R14: 00007f7de0bb5fa0 R15: 00007ffc841d8c48
[ 2680.372356][T32318]
[ 2680.372440][T32318] __kmem_cache_create_args(mon_text_ffff888144b91c00) failed with error -22
[ 2680.714950][T32318] CPU: 0 UID: 0 PID: 32318 Comm: syz.3.4696 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2680.714998][T32318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2680.715026][T32318] Call Trace:
[ 2680.715035][T32318]
[ 2680.715048][T32318] dump_stack_lvl+0x16c/0x1f0
[ 2680.715095][T32318] __kmem_cache_create_args+0x125/0x390
[ 2680.715141][T32318] mon_text_open+0x313/0x4f0
[ 2680.715181][T32318] ? __pfx_mon_text_open+0x10/0x10
[ 2680.715214][T32318] ? __debugfs_file_get+0x1fe/0x840
[ 2680.715268][T32318] ? __pfx_mon_text_ctor+0x10/0x10
[ 2680.715303][T32318] ? __pfx_apparmor_file_open+0x10/0x10
[ 2680.715338][T32318] ? lockdown_is_locked_down+0x3f/0x130
[ 2680.715393][T32318] ? bpf_lsm_locked_down+0x9/0x10
[ 2680.715429][T32318] ? __pfx_mon_text_open+0x10/0x10
[ 2680.715462][T32318] full_proxy_open_regular+0x1b9/0x360
[ 2680.715521][T32318] do_dentry_open+0x97f/0x1530
[ 2680.715564][T32318] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 2680.715631][T32318] vfs_open+0x82/0x3f0
[ 2680.715687][T32318] path_openat+0x1de4/0x2cb0
[ 2680.715745][T32318] ? __pfx_path_openat+0x10/0x10
[ 2680.715798][T32318] do_filp_open+0x20b/0x470
[ 2680.715840][T32318] ? __pfx_do_filp_open+0x10/0x10
[ 2680.715910][T32318] ? alloc_fd+0x471/0x7d0
[ 2680.715959][T32318] do_sys_openat2+0x11b/0x1d0
[ 2680.716010][T32318] ? __pfx_do_sys_openat2+0x10/0x10
[ 2680.716091][T32318] __x64_sys_openat+0x174/0x210
[ 2680.716144][T32318] ? __pfx___x64_sys_openat+0x10/0x10
[ 2680.716213][T32318] do_syscall_64+0xcd/0x490
[ 2680.716260][T32318] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2680.716294][T32318] RIP: 0033:0x7f7de098ebe9
[ 2680.716320][T32318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2680.716353][T32318] RSP: 002b:00007f7de179d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2680.716385][T32318] RAX: ffffffffffffffda RBX: 00007f7de0bb5fa0 RCX: 00007f7de098ebe9
[ 2680.716407][T32318] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2680.716427][T32318] RBP: 00007f7de0a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2680.716447][T32318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2680.716466][T32318] R13: 00007f7de0bb6038 R14: 00007f7de0bb5fa0 R15: 00007ffc841d8c48
[ 2680.716509][T32318]
[ 2699.167202][T32595] FAULT_INJECTION: forcing a failure.
[ 2699.167202][T32595] name failslab, interval 1, probability 0, space 0, times 0
[ 2699.182614][T32595] CPU: 1 UID: 0 PID: 32595 Comm: syz.1.4733 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2699.182665][T32595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2699.182685][T32595] Call Trace:
[ 2699.182696][T32595]
[ 2699.182709][T32595] dump_stack_lvl+0x16c/0x1f0
[ 2699.182757][T32595] should_fail_ex+0x512/0x640
[ 2699.182802][T32595] ? fs_reclaim_acquire+0xae/0x150
[ 2699.182857][T32595] should_failslab+0xc2/0x120
[ 2699.182900][T32595] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 2699.182940][T32595] ? alloc_empty_file+0x55/0x1e0
[ 2699.182996][T32595] alloc_empty_file+0x55/0x1e0
[ 2699.183046][T32595] path_openat+0xda/0x2cb0
[ 2699.183081][T32595] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2699.183130][T32595] ? __pfx_path_openat+0x10/0x10
[ 2699.183179][T32595] do_filp_open+0x20b/0x470
[ 2699.183217][T32595] ? __pfx_do_filp_open+0x10/0x10
[ 2699.183287][T32595] ? alloc_fd+0x471/0x7d0
[ 2699.183333][T32595] do_sys_openat2+0x11b/0x1d0
[ 2699.183394][T32595] ? __pfx_do_sys_openat2+0x10/0x10
[ 2699.183461][T32595] __x64_sys_openat+0x174/0x210
[ 2699.183522][T32595] ? __pfx___x64_sys_openat+0x10/0x10
[ 2699.183592][T32595] do_syscall_64+0xcd/0x490
[ 2699.183637][T32595] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2699.183670][T32595] RIP: 0033:0x7fb5a9b8ebe9
[ 2699.183696][T32595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2699.183729][T32595] RSP: 002b:00007fb5aa99c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2699.183762][T32595] RAX: ffffffffffffffda RBX: 00007fb5a9db5fa0 RCX: 00007fb5a9b8ebe9
[ 2699.183784][T32595] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2699.183805][T32595] RBP: 00007fb5a9c11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2699.183826][T32595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2699.183845][T32595] R13: 00007fb5a9db6038 R14: 00007fb5a9db5fa0 R15: 00007ffca0786568
[ 2699.183888][T32595]
[ 2700.609965][T32616] FAULT_INJECTION: forcing a failure.
[ 2700.609965][T32616] name failslab, interval 1, probability 0, space 0, times 0
[ 2700.626578][T32616] CPU: 1 UID: 0 PID: 32616 Comm: syz.0.4738 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2700.626629][T32616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2700.626649][T32616] Call Trace:
[ 2700.626661][T32616]
[ 2700.626675][T32616] dump_stack_lvl+0x16c/0x1f0
[ 2700.626724][T32616] should_fail_ex+0x512/0x640
[ 2700.626771][T32616] ? __kmalloc_cache_noprof+0x57/0x3e0
[ 2700.626810][T32616] should_failslab+0xc2/0x120
[ 2700.626855][T32616] __kmalloc_cache_noprof+0x6a/0x3e0
[ 2700.626893][T32616] ? devlink_fmsg_nest_common.part.0+0x48/0x1e0
[ 2700.627054][T32616] devlink_fmsg_nest_common.part.0+0x48/0x1e0
[ 2700.627105][T32616] devlink_fmsg_u8_pair_put+0x284/0x2f0
[ 2700.627152][T32616] ? __pfx_devlink_fmsg_u8_pair_put+0x10/0x10
[ 2700.627198][T32616] ? __pfx___kasan_kmalloc+0x10/0x10
[ 2700.627272][T32616] ? devlink_fmsg_nest_common.part.0+0xcd/0x1e0
[ 2700.627321][T32616] nsim_dev_dummy_fmsg_put+0x192/0x1e0
[ 2700.627410][T32616] devlink_health_do_dump+0x243/0x620
[ 2700.627464][T32616] devlink_health_report+0x3c9/0x9c0
[ 2700.627520][T32616] ? __pfx_devlink_health_report+0x10/0x10
[ 2700.627568][T32616] ? _copy_from_user+0x59/0xd0
[ 2700.627624][T32616] nsim_dev_health_break_write+0x166/0x210
[ 2700.627666][T32616] ? __pfx_nsim_dev_health_break_write+0x10/0x10
[ 2700.627723][T32616] full_proxy_write+0x12e/0x1a0
[ 2700.627775][T32616] ? __pfx_full_proxy_write+0x10/0x10
[ 2700.627823][T32616] vfs_write+0x29d/0x11d0
[ 2700.627868][T32616] ? __pfx___mutex_lock+0x10/0x10
[ 2700.627950][T32616] ? __pfx_vfs_write+0x10/0x10
[ 2700.628000][T32616] ? __fget_files+0x20e/0x3c0
[ 2700.628049][T32616] ksys_write+0x12a/0x250
[ 2700.628086][T32616] ? __pfx_ksys_write+0x10/0x10
[ 2700.628139][T32616] do_syscall_64+0xcd/0x490
[ 2700.628185][T32616] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2700.628220][T32616] RIP: 0033:0x7f414bb8ebe9
[ 2700.628247][T32616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2700.628279][T32616] RSP: 002b:00007f414cab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2700.628313][T32616] RAX: ffffffffffffffda RBX: 00007f414bdb5fa0 RCX: 00007f414bb8ebe9
[ 2700.628335][T32616] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000007
[ 2700.628355][T32616] RBP: 00007f414bc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2700.628375][T32616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2700.628403][T32616] R13: 00007f414bdb6038 R14: 00007f414bdb5fa0 R15: 00007ffe2c47d038
[ 2700.628449][T32616]
[ 2701.377983][T32625] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4740'.
[ 2704.868219][T32665] FAULT_INJECTION: forcing a failure.
[ 2704.868219][T32665] name failslab, interval 1, probability 0, space 0, times 0
[ 2704.910718][T32665] CPU: 1 UID: 0 PID: 32665 Comm: syz.1.4747 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2704.910755][T32665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2704.910769][T32665] Call Trace:
[ 2704.910776][T32665]
[ 2704.910785][T32665] dump_stack_lvl+0x16c/0x1f0
[ 2704.910821][T32665] should_fail_ex+0x512/0x640
[ 2704.910854][T32665] ? fs_reclaim_acquire+0xae/0x150
[ 2704.910893][T32665] ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 2704.910928][T32665] should_failslab+0xc2/0x120
[ 2704.910961][T32665] __kmalloc_noprof+0xd2/0x510
[ 2704.910996][T32665] tomoyo_realpath_from_path+0xc2/0x6e0
[ 2704.911038][T32665] tomoyo_check_open_permission+0x2ab/0x3c0
[ 2704.911076][T32665] ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 2704.911136][T32665] ? do_raw_spin_lock+0x12c/0x2b0
[ 2704.911182][T32665] tomoyo_file_open+0x6b/0x90
[ 2704.911205][T32665] security_file_open+0x84/0x1e0
[ 2704.911238][T32665] do_dentry_open+0x596/0x1530
[ 2704.911276][T32665] vfs_open+0x82/0x3f0
[ 2704.911324][T32665] path_openat+0x1de4/0x2cb0
[ 2704.911362][T32665] ? __pfx_path_openat+0x10/0x10
[ 2704.911399][T32665] do_filp_open+0x20b/0x470
[ 2704.911428][T32665] ? __pfx_do_filp_open+0x10/0x10
[ 2704.911478][T32665] ? alloc_fd+0x471/0x7d0
[ 2704.911512][T32665] do_sys_openat2+0x11b/0x1d0
[ 2704.911548][T32665] ? __pfx_do_sys_openat2+0x10/0x10
[ 2704.911596][T32665] __x64_sys_openat+0x174/0x210
[ 2704.911634][T32665] ? __pfx___x64_sys_openat+0x10/0x10
[ 2704.911684][T32665] do_syscall_64+0xcd/0x490
[ 2704.911717][T32665] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2704.911741][T32665] RIP: 0033:0x7fb5a9b8ebe9
[ 2704.911759][T32665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2704.911782][T32665] RSP: 002b:00007fb5aa99c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2704.911805][T32665] RAX: ffffffffffffffda RBX: 00007fb5a9db5fa0 RCX: 00007fb5a9b8ebe9
[ 2704.911820][T32665] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2704.911835][T32665] RBP: 00007fb5a9c11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2704.911850][T32665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2704.911863][T32665] R13: 00007fb5a9db6038 R14: 00007fb5a9db5fa0 R15: 00007ffca0786568
[ 2704.911893][T32665]
[ 2704.911904][T32665] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2709.786323][T32749] FAULT_INJECTION: forcing a failure.
[ 2709.786323][T32749] name failslab, interval 1, probability 0, space 0, times 0
[ 2709.803531][T32749] CPU: 0 UID: 0 PID: 32749 Comm: syz.3.4758 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2709.803583][T32749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2709.803603][T32749] Call Trace:
[ 2709.803614][T32749]
[ 2709.803626][T32749] dump_stack_lvl+0x16c/0x1f0
[ 2709.803675][T32749] should_fail_ex+0x512/0x640
[ 2709.803721][T32749] ? fs_reclaim_acquire+0xae/0x150
[ 2709.803783][T32749] should_failslab+0xc2/0x120
[ 2709.803827][T32749] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 2709.803867][T32749] ? security_file_alloc+0x34/0x2b0
[ 2709.803917][T32749] security_file_alloc+0x34/0x2b0
[ 2709.803962][T32749] init_file+0x93/0x4c0
[ 2709.804010][T32749] alloc_empty_file+0x73/0x1e0
[ 2709.804059][T32749] path_openat+0xda/0x2cb0
[ 2709.804094][T32749] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2709.804157][T32749] ? __pfx_path_openat+0x10/0x10
[ 2709.804206][T32749] do_filp_open+0x20b/0x470
[ 2709.804256][T32749] ? __pfx_do_filp_open+0x10/0x10
[ 2709.804325][T32749] ? alloc_fd+0x471/0x7d0
[ 2709.804372][T32749] do_sys_openat2+0x11b/0x1d0
[ 2709.804421][T32749] ? __pfx_do_sys_openat2+0x10/0x10
[ 2709.804488][T32749] __x64_sys_openat+0x174/0x210
[ 2709.804542][T32749] ? __pfx___x64_sys_openat+0x10/0x10
[ 2709.804609][T32749] do_syscall_64+0xcd/0x490
[ 2709.804654][T32749] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2709.804685][T32749] RIP: 0033:0x7f7de098ebe9
[ 2709.804707][T32749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2709.804754][T32749] RSP: 002b:00007f7de179d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2709.804786][T32749] RAX: ffffffffffffffda RBX: 00007f7de0bb5fa0 RCX: 00007f7de098ebe9
[ 2709.804809][T32749] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2709.804829][T32749] RBP: 00007f7de0a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2709.804851][T32749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2709.804871][T32749] R13: 00007f7de0bb6038 R14: 00007f7de0bb5fa0 R15: 00007ffc841d8c48
[ 2709.804914][T32749]
[ 2711.052082][ T301] FAULT_INJECTION: forcing a failure.
[ 2711.052082][ T301] name failslab, interval 1, probability 0, space 0, times 0
[ 2711.088980][ T301] CPU: 1 UID: 0 PID: 301 Comm: syz.3.4762 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2711.089031][ T301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2711.089051][ T301] Call Trace:
[ 2711.089064][ T301]
[ 2711.089077][ T301] dump_stack_lvl+0x16c/0x1f0
[ 2711.089124][ T301] should_fail_ex+0x512/0x640
[ 2711.089171][ T301] ? fs_reclaim_acquire+0xae/0x150
[ 2711.089224][ T301] ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 2711.089273][ T301] should_failslab+0xc2/0x120
[ 2711.089319][ T301] __kmalloc_noprof+0xd2/0x510
[ 2711.089369][ T301] tomoyo_realpath_from_path+0xc2/0x6e0
[ 2711.089428][ T301] tomoyo_check_open_permission+0x2ab/0x3c0
[ 2711.089471][ T301] ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 2711.089556][ T301] ? do_raw_spin_lock+0x12c/0x2b0
[ 2711.089618][ T301] tomoyo_file_open+0x6b/0x90
[ 2711.089651][ T301] security_file_open+0x84/0x1e0
[ 2711.089697][ T301] do_dentry_open+0x596/0x1530
[ 2711.089752][ T301] vfs_open+0x82/0x3f0
[ 2711.089808][ T301] path_openat+0x1de4/0x2cb0
[ 2711.089863][ T301] ? __pfx_path_openat+0x10/0x10
[ 2711.089914][ T301] do_filp_open+0x20b/0x470
[ 2711.089964][ T301] ? __pfx_do_filp_open+0x10/0x10
[ 2711.090031][ T301] ? alloc_fd+0x471/0x7d0
[ 2711.090077][ T301] do_sys_openat2+0x11b/0x1d0
[ 2711.090125][ T301] ? __pfx_do_sys_openat2+0x10/0x10
[ 2711.090192][ T301] __x64_sys_openat+0x174/0x210
[ 2711.090241][ T301] ? __pfx___x64_sys_openat+0x10/0x10
[ 2711.090312][ T301] do_syscall_64+0xcd/0x490
[ 2711.090355][ T301] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2711.090389][ T301] RIP: 0033:0x7f7de098ebe9
[ 2711.090415][ T301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2711.090446][ T301] RSP: 002b:00007f7de179d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2711.090475][ T301] RAX: ffffffffffffffda RBX: 00007f7de0bb5fa0 RCX: 00007f7de098ebe9
[ 2711.090497][ T301] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2711.090518][ T301] RBP: 00007f7de0a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2711.090539][ T301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2711.090559][ T301] R13: 00007f7de0bb6038 R14: 00007f7de0bb5fa0 R15: 00007ffc841d8c48
[ 2711.090603][ T301]
[ 2711.090616][ T301] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2716.360851][ T400] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4775'.
[ 2720.633776][ T470] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4786'.
[ 2724.048825][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 2724.055445][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 2724.213219][ T513] FAULT_INJECTION: forcing a failure.
[ 2724.213219][ T513] name failslab, interval 1, probability 0, space 0, times 0
[ 2724.228423][ T513] CPU: 1 UID: 0 PID: 513 Comm: syz.1.4790 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2724.228473][ T513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2724.228494][ T513] Call Trace:
[ 2724.228505][ T513]
[ 2724.228518][ T513] dump_stack_lvl+0x16c/0x1f0
[ 2724.228567][ T513] should_fail_ex+0x512/0x640
[ 2724.228613][ T513] ? fs_reclaim_acquire+0xae/0x150
[ 2724.228667][ T513] should_failslab+0xc2/0x120
[ 2724.228710][ T513] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 2724.228752][ T513] ? alloc_empty_file+0x55/0x1e0
[ 2724.228814][ T513] alloc_empty_file+0x55/0x1e0
[ 2724.228866][ T513] path_openat+0xda/0x2cb0
[ 2724.228901][ T513] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2724.228951][ T513] ? __pfx_path_openat+0x10/0x10
[ 2724.229000][ T513] do_filp_open+0x20b/0x470
[ 2724.229040][ T513] ? __pfx_do_filp_open+0x10/0x10
[ 2724.229109][ T513] ? alloc_fd+0x471/0x7d0
[ 2724.229156][ T513] do_sys_openat2+0x11b/0x1d0
[ 2724.229205][ T513] ? __pfx_do_sys_openat2+0x10/0x10
[ 2724.229273][ T513] __x64_sys_openat+0x174/0x210
[ 2724.229324][ T513] ? __pfx___x64_sys_openat+0x10/0x10
[ 2724.229392][ T513] do_syscall_64+0xcd/0x490
[ 2724.229438][ T513] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2724.229470][ T513] RIP: 0033:0x7fb5a9b8ebe9
[ 2724.229495][ T513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2724.229527][ T513] RSP: 002b:00007fb5aa99c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2724.229559][ T513] RAX: ffffffffffffffda RBX: 00007fb5a9db5fa0 RCX: 00007fb5a9b8ebe9
[ 2724.229581][ T513] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2724.229602][ T513] RBP: 00007fb5a9c11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2724.229623][ T513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2724.229643][ T513] R13: 00007fb5a9db6038 R14: 00007fb5a9db5fa0 R15: 00007ffca0786568
[ 2724.229686][ T513]
[ 2724.686082][ T518] FAULT_INJECTION: forcing a failure.
[ 2724.686082][ T518] name failslab, interval 1, probability 0, space 0, times 0
[ 2724.765115][ T518] CPU: 1 UID: 0 PID: 518 Comm: syz.2.4791 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2724.765165][ T518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2724.765185][ T518] Call Trace:
[ 2724.765196][ T518]
[ 2724.765208][ T518] dump_stack_lvl+0x16c/0x1f0
[ 2724.765256][ T518] should_fail_ex+0x512/0x640
[ 2724.765303][ T518] ? fs_reclaim_acquire+0xae/0x150
[ 2724.765358][ T518] should_failslab+0xc2/0x120
[ 2724.765403][ T518] __kmalloc_node_track_caller_noprof+0xd6/0x510
[ 2724.765449][ T518] ? kstrdup_const+0x63/0x80
[ 2724.765497][ T518] kstrdup+0x53/0x100
[ 2724.765538][ T518] kstrdup_const+0x63/0x80
[ 2724.765577][ T518] __kmem_cache_create_args+0x18f/0x390
[ 2724.765620][ T518] mon_text_open+0x313/0x4f0
[ 2724.765657][ T518] ? __pfx_mon_text_open+0x10/0x10
[ 2724.765691][ T518] ? __debugfs_file_get+0x1fe/0x840
[ 2724.765742][ T518] ? __pfx_mon_text_ctor+0x10/0x10
[ 2724.765790][ T518] ? __pfx_apparmor_file_open+0x10/0x10
[ 2724.765824][ T518] ? lockdown_is_locked_down+0x3f/0x130
[ 2724.765879][ T518] ? bpf_lsm_locked_down+0x9/0x10
[ 2724.765915][ T518] ? __pfx_mon_text_open+0x10/0x10
[ 2724.765947][ T518] full_proxy_open_regular+0x1b9/0x360
[ 2724.766008][ T518] do_dentry_open+0x97f/0x1530
[ 2724.766052][ T518] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 2724.766117][ T518] vfs_open+0x82/0x3f0
[ 2724.766174][ T518] path_openat+0x1de4/0x2cb0
[ 2724.766229][ T518] ? __pfx_path_openat+0x10/0x10
[ 2724.766281][ T518] do_filp_open+0x20b/0x470
[ 2724.766322][ T518] ? __pfx_do_filp_open+0x10/0x10
[ 2724.766394][ T518] ? alloc_fd+0x471/0x7d0
[ 2724.766443][ T518] do_sys_openat2+0x11b/0x1d0
[ 2724.766492][ T518] ? __pfx_do_sys_openat2+0x10/0x10
[ 2724.766560][ T518] __x64_sys_openat+0x174/0x210
[ 2724.766612][ T518] ? __pfx___x64_sys_openat+0x10/0x10
[ 2724.766680][ T518] do_syscall_64+0xcd/0x490
[ 2724.766724][ T518] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2724.766758][ T518] RIP: 0033:0x7f729038ebe9
[ 2724.766793][ T518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2724.766826][ T518] RSP: 002b:00007f7291172038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2724.766859][ T518] RAX: ffffffffffffffda RBX: 00007f72905b5fa0 RCX: 00007f729038ebe9
[ 2724.766881][ T518] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2724.766902][ T518] RBP: 00007f7290411e19 R08: 0000000000000000 R09: 0000000000000000
[ 2724.766921][ T518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2724.766941][ T518] R13: 00007f72905b6038 R14: 00007f72905b5fa0 R15: 00007fff7a8d2618
[ 2724.766980][ T518]
[ 2724.767177][ T518] __kmem_cache_create_args(mon_text_ffff88803190c400) failed with error -12
[ 2725.101554][ T518] CPU: 1 UID: 0 PID: 518 Comm: syz.2.4791 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2725.101604][ T518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2725.101624][ T518] Call Trace:
[ 2725.101636][ T518]
[ 2725.101648][ T518] dump_stack_lvl+0x16c/0x1f0
[ 2725.101696][ T518] __kmem_cache_create_args+0x125/0x390
[ 2725.101742][ T518] mon_text_open+0x313/0x4f0
[ 2725.101781][ T518] ? __pfx_mon_text_open+0x10/0x10
[ 2725.101814][ T518] ? __debugfs_file_get+0x1fe/0x840
[ 2725.101864][ T518] ? __pfx_mon_text_ctor+0x10/0x10
[ 2725.101898][ T518] ? __pfx_apparmor_file_open+0x10/0x10
[ 2725.101933][ T518] ? lockdown_is_locked_down+0x3f/0x130
[ 2725.101994][ T518] ? bpf_lsm_locked_down+0x9/0x10
[ 2725.102031][ T518] ? __pfx_mon_text_open+0x10/0x10
[ 2725.102063][ T518] full_proxy_open_regular+0x1b9/0x360
[ 2725.102123][ T518] do_dentry_open+0x97f/0x1530
[ 2725.102166][ T518] ? __pfx_full_proxy_open_regular+0x10/0x10
[ 2725.102231][ T518] vfs_open+0x82/0x3f0
[ 2725.102286][ T518] path_openat+0x1de4/0x2cb0
[ 2725.102340][ T518] ? __pfx_path_openat+0x10/0x10
[ 2725.102391][ T518] do_filp_open+0x20b/0x470
[ 2725.102433][ T518] ? __pfx_do_filp_open+0x10/0x10
[ 2725.102513][ T518] ? alloc_fd+0x471/0x7d0
[ 2725.102562][ T518] do_sys_openat2+0x11b/0x1d0
[ 2725.102612][ T518] ? __pfx_do_sys_openat2+0x10/0x10
[ 2725.102681][ T518] __x64_sys_openat+0x174/0x210
[ 2725.102732][ T518] ? __pfx___x64_sys_openat+0x10/0x10
[ 2725.102803][ T518] do_syscall_64+0xcd/0x490
[ 2725.102856][ T518] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2725.102891][ T518] RIP: 0033:0x7f729038ebe9
[ 2725.102917][ T518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2725.102950][ T518] RSP: 002b:00007f7291172038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2725.102989][ T518] RAX: ffffffffffffffda RBX: 00007f72905b5fa0 RCX: 00007f729038ebe9
[ 2725.103011][ T518] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2725.103031][ T518] RBP: 00007f7290411e19 R08: 0000000000000000 R09: 0000000000000000
[ 2725.103051][ T518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2725.103070][ T518] R13: 00007f72905b6038 R14: 00007f72905b5fa0 R15: 00007fff7a8d2618
[ 2725.103113][ T518]
[ 2726.434914][ T548] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 2726.459213][ T548] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2726.475449][ T548] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2726.514207][ T548] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2726.537902][ T548] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2726.708869][T30612] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2726.973182][T30612] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2727.421285][T30612] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2727.658907][T30612] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2728.622303][ T51] Bluetooth: hci2: command tx timeout
[ 2729.826910][T30612] bridge_slave_1: left allmulticast mode
[ 2729.832781][T30612] bridge_slave_1: left promiscuous mode
[ 2729.857715][T30612] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2729.873016][T30612] bridge_slave_0: left allmulticast mode
[ 2729.879803][T30612] bridge_slave_0: left promiscuous mode
[ 2729.886635][T30612] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2730.641156][T30612] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2730.653846][T30612] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2730.672261][T30612] bond0 (unregistering): Released all slaves
[ 2730.684969][ T51] Bluetooth: hci2: command tx timeout
[ 2730.820956][T30612] HfR: left promiscuous mode
[ 2731.108643][ T547] chnl_net:caif_netlink_parms(): no params data found
[ 2732.568818][ T547] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2732.580390][ T547] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2732.588243][ T547] bridge_slave_0: entered allmulticast mode
[ 2732.620264][ T547] bridge_slave_0: entered promiscuous mode
[ 2732.765158][ T51] Bluetooth: hci2: command tx timeout
[ 2732.815308][ T547] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2732.822573][ T547] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2732.894384][ T547] bridge_slave_1: entered allmulticast mode
[ 2732.921790][ T547] bridge_slave_1: entered promiscuous mode
[ 2733.289865][ T547] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2733.386915][ T547] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2734.039888][ T547] team0: Port device team_slave_0 added
[ 2734.108502][ T656] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4806'.
[ 2734.139461][ T547] team0: Port device team_slave_1 added
[ 2734.628032][ T547] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2734.651365][ T547] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2734.730497][ T547] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2734.747338][ T547] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2734.754529][ T547] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2734.809336][ T547] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2734.847135][ T51] Bluetooth: hci2: command tx timeout
[ 2735.066383][ T547] hsr_slave_0: entered promiscuous mode
[ 2735.073447][ T547] hsr_slave_1: entered promiscuous mode
[ 2738.879254][ T547] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 2739.007482][ T547] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 2739.057624][ T547] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 2739.237327][ T547] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 2740.027888][ T743] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input269
[ 2740.603339][ T743] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4816'.
[ 2741.627435][ T547] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2742.238996][ T547] 8021q: adding VLAN 0 to HW filter on device team0
[ 2742.480116][ T70] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2742.487460][ T70] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2742.657959][ T70] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2742.665205][ T70] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2745.329419][ T547] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2745.693650][ T547] veth0_vlan: entered promiscuous mode
[ 2745.802462][T30612] hsr_slave_0: left promiscuous mode
[ 2745.820981][T30612] hsr_slave_1: left promiscuous mode
[ 2745.835900][T30612] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2745.837014][ T819] FAULT_INJECTION: forcing a failure.
[ 2745.837014][ T819] name failslab, interval 1, probability 0, space 0, times 0
[ 2745.856428][T30612] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2745.881339][T30612] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2745.889465][ T819] CPU: 0 UID: 0 PID: 819 Comm: syz.0.4823 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2745.889513][ T819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2745.889533][ T819] Call Trace:
[ 2745.889543][ T819]
[ 2745.889557][ T819] dump_stack_lvl+0x16c/0x1f0
[ 2745.889615][ T819] should_fail_ex+0x512/0x640
[ 2745.889663][ T819] ? fs_reclaim_acquire+0xae/0x150
[ 2745.889717][ T819] should_failslab+0xc2/0x120
[ 2745.889763][ T819] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 2745.889804][ T819] ? __kernfs_new_node+0xd2/0x8e0
[ 2745.889852][ T819] __kernfs_new_node+0xd2/0x8e0
[ 2745.889901][ T819] ? __pfx___kernfs_new_node+0x10/0x10
[ 2745.889962][ T819] ? find_held_lock+0x2b/0x80
[ 2745.889998][ T819] ? kernfs_root+0xee/0x2a0
[ 2745.890048][ T819] kernfs_new_node+0x13c/0x1e0
[ 2745.890106][ T819] __kernfs_create_file+0x53/0x350
[ 2745.890144][ T819] sysfs_add_file_mode_ns+0x207/0x3c0
[ 2745.890196][ T819] internal_create_group+0x578/0xf30
[ 2745.890251][ T819] ? __pfx_internal_create_group+0x10/0x10
[ 2745.890302][ T819] ? kernfs_create_link+0x1bd/0x240
[ 2745.890342][ T819] internal_create_groups+0x9d/0x150
[ 2745.890390][ T819] device_add+0x731/0x1aa0
[ 2745.890564][ T819] ? __pfx_device_add+0x10/0x10
[ 2745.890626][ T819] ? __pfx___might_resched+0x10/0x10
[ 2745.890659][ T819] ? lockdep_hardirqs_on+0x7c/0x110
[ 2745.890714][ T819] __add_disk+0x457/0xf00
[ 2745.890806][ T819] add_disk_fwnode+0x13f/0x5d0
[ 2745.890857][ T819] loop_add+0x903/0xb70
[ 2745.890924][ T819] ? __pfx_loop_add+0x10/0x10
[ 2745.890988][ T819] ? find_held_lock+0x2b/0x80
[ 2745.891028][ T819] loop_control_ioctl+0x13e/0x630
[ 2745.891064][ T819] ? __pfx_loop_control_ioctl+0x10/0x10
[ 2745.891105][ T819] ? __pfx_loop_control_ioctl+0x10/0x10
[ 2745.891143][ T819] __x64_sys_ioctl+0x18e/0x210
[ 2745.891199][ T819] do_syscall_64+0xcd/0x490
[ 2745.891245][ T819] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2745.891280][ T819] RIP: 0033:0x7f414bb8ebe9
[ 2745.891307][ T819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2745.891341][ T819] RSP: 002b:00007f414cab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2745.891373][ T819] RAX: ffffffffffffffda RBX: 00007f414bdb5fa0 RCX: 00007f414bb8ebe9
[ 2745.891395][ T819] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008
[ 2745.891414][ T819] RBP: 00007f414bc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2745.891434][ T819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2745.891453][ T819] R13: 00007f414bdb6038 R14: 00007f414bdb5fa0 R15: 00007ffe2c47d038
[ 2745.891494][ T819]
[ 2746.170540][T30612] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2746.310816][T30612] veth1_macvtap: left promiscuous mode
[ 2746.344363][T30612] veth0_macvtap: left promiscuous mode
[ 2746.396163][T30612] veth1_vlan: left promiscuous mode
[ 2746.402195][T30612] veth0_vlan: left promiscuous mode
[ 2747.986709][T30612] team0 (unregistering): Port device team_slave_1 removed
[ 2748.138799][T30612] team0 (unregistering): Port device team_slave_0 removed
[ 2748.174432][ T845] FAULT_INJECTION: forcing a failure.
[ 2748.174432][ T845] name failslab, interval 1, probability 0, space 0, times 0
[ 2748.210841][ T845] CPU: 0 UID: 0 PID: 845 Comm: syz.0.4829 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2748.210877][ T845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2748.210891][ T845] Call Trace:
[ 2748.210899][ T845]
[ 2748.210908][ T845] dump_stack_lvl+0x16c/0x1f0
[ 2748.210942][ T845] should_fail_ex+0x512/0x640
[ 2748.210976][ T845] ? fs_reclaim_acquire+0xae/0x150
[ 2748.211014][ T845] should_failslab+0xc2/0x120
[ 2748.211046][ T845] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 2748.211075][ T845] ? getname_flags.part.0+0x4c/0x550
[ 2748.211126][ T845] getname_flags.part.0+0x4c/0x550
[ 2748.211167][ T845] getname_flags+0x93/0xf0
[ 2748.211193][ T845] do_sys_openat2+0xb8/0x1d0
[ 2748.211244][ T845] ? __pfx_do_sys_openat2+0x10/0x10
[ 2748.211300][ T845] __x64_sys_openat+0x174/0x210
[ 2748.211343][ T845] ? __pfx___x64_sys_openat+0x10/0x10
[ 2748.211392][ T845] do_syscall_64+0xcd/0x490
[ 2748.211424][ T845] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2748.211455][ T845] RIP: 0033:0x7f414bb8ebe9
[ 2748.211474][ T845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2748.211498][ T845] RSP: 002b:00007f414cab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2748.211521][ T845] RAX: ffffffffffffffda RBX: 00007f414bdb5fa0 RCX: 00007f414bb8ebe9
[ 2748.211537][ T845] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2748.211552][ T845] RBP: 00007f414bc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2748.211566][ T845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2748.211580][ T845] R13: 00007f414bdb6038 R14: 00007f414bdb5fa0 R15: 00007ffe2c47d038
[ 2748.211610][ T845]
[ 2749.441191][ T547] veth1_vlan: entered promiscuous mode
[ 2749.865800][ T547] veth0_macvtap: entered promiscuous mode
[ 2750.037234][ T547] veth1_macvtap: entered promiscuous mode
[ 2750.129261][ T547] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2750.168672][ T547] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2750.681492][T19262] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2750.748384][T19262] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2750.841630][T19262] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2750.869099][T19262] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2751.406243][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2751.455120][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2751.644655][ T70] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2751.673404][ T70] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2753.547100][ T548] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2753.559839][ T548] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2753.570825][ T548] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2753.587299][ T548] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2753.597496][ T548] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2755.418545][ T70] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2755.647487][ T548] Bluetooth: hci3: command tx timeout
[ 2755.786929][ T70] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2755.910131][ T907] chnl_net:caif_netlink_parms(): no params data found
[ 2756.157874][ T70] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2756.668359][ T70] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2756.890391][ T907] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2757.107652][ T907] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2757.125074][ T907] bridge_slave_0: entered allmulticast mode
[ 2757.134387][ T907] bridge_slave_0: entered promiscuous mode
[ 2757.311119][ T907] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2757.338960][ T907] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2757.363840][ T907] bridge_slave_1: entered allmulticast mode
[ 2757.381849][ T907] bridge_slave_1: entered promiscuous mode
[ 2757.685006][ T986] FAULT_INJECTION: forcing a failure.
[ 2757.685006][ T986] name failslab, interval 1, probability 0, space 0, times 0
[ 2757.735436][ T986] CPU: 0 UID: 0 PID: 986 Comm: syz.1.4846 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2757.735485][ T986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2757.735505][ T986] Call Trace:
[ 2757.735515][ T986]
[ 2757.735528][ T986] dump_stack_lvl+0x16c/0x1f0
[ 2757.735577][ T986] should_fail_ex+0x512/0x640
[ 2757.735622][ T986] ? fs_reclaim_acquire+0xae/0x150
[ 2757.735675][ T986] ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 2757.735721][ T986] should_failslab+0xc2/0x120
[ 2757.735765][ T986] __kmalloc_noprof+0xd2/0x510
[ 2757.735828][ T986] tomoyo_realpath_from_path+0xc2/0x6e0
[ 2757.735889][ T986] tomoyo_check_open_permission+0x2ab/0x3c0
[ 2757.735932][ T986] ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 2757.736018][ T986] ? do_raw_spin_lock+0x12c/0x2b0
[ 2757.736081][ T986] tomoyo_file_open+0x6b/0x90
[ 2757.736114][ T986] security_file_open+0x84/0x1e0
[ 2757.736159][ T986] do_dentry_open+0x596/0x1530
[ 2757.736214][ T986] vfs_open+0x82/0x3f0
[ 2757.736268][ T986] path_openat+0x1de4/0x2cb0
[ 2757.736322][ T986] ? __pfx_path_openat+0x10/0x10
[ 2757.736372][ T986] do_filp_open+0x20b/0x470
[ 2757.736410][ T986] ? __pfx_do_filp_open+0x10/0x10
[ 2757.736479][ T986] ? alloc_fd+0x471/0x7d0
[ 2757.736525][ T986] do_sys_openat2+0x11b/0x1d0
[ 2757.736573][ T986] ? __pfx_do_sys_openat2+0x10/0x10
[ 2757.736636][ T986] __x64_sys_openat+0x174/0x210
[ 2757.736675][ T986] ? __pfx___x64_sys_openat+0x10/0x10
[ 2757.736724][ T986] do_syscall_64+0xcd/0x490
[ 2757.736757][ T986] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2757.736788][ T986] RIP: 0033:0x7f6abff8ebe9
[ 2757.736807][ T986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2757.736830][ T986] RSP: 002b:00007f6ac0dd2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2757.736853][ T986] RAX: ffffffffffffffda RBX: 00007f6ac01b5fa0 RCX: 00007f6abff8ebe9
[ 2757.736868][ T986] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2757.736884][ T986] RBP: 00007f6ac0011e19 R08: 0000000000000000 R09: 0000000000000000
[ 2757.736898][ T986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2757.736912][ T986] R13: 00007f6ac01b6038 R14: 00007f6ac01b5fa0 R15: 00007fff708bbc38
[ 2757.736942][ T986]
[ 2757.736952][ T986] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 2757.755119][ T548] Bluetooth: hci3: command tx timeout
[ 2758.078509][ T907] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2758.138824][ T907] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2758.701709][ T907] team0: Port device team_slave_0 added
[ 2758.738420][ T907] team0: Port device team_slave_1 added
[ 2758.748217][ T70] bridge_slave_1: left allmulticast mode
[ 2758.749011][ T1001] FAULT_INJECTION: forcing a failure.
[ 2758.749011][ T1001] name failslab, interval 1, probability 0, space 0, times 0
[ 2758.771697][ T70] bridge_slave_1: left promiscuous mode
[ 2758.782455][ T70] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2758.790401][ T1001] CPU: 0 UID: 0 PID: 1001 Comm: syz.1.4847 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2758.790449][ T1001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2758.790482][ T1001] Call Trace:
[ 2758.790493][ T1001]
[ 2758.790505][ T1001] dump_stack_lvl+0x16c/0x1f0
[ 2758.790552][ T1001] should_fail_ex+0x512/0x640
[ 2758.790597][ T1001] ? __kmalloc_noprof+0xbf/0x510
[ 2758.790638][ T1001] ? devlink_fmsg_put_value+0xaa/0x2d0
[ 2758.790683][ T1001] should_failslab+0xc2/0x120
[ 2758.790731][ T1001] __kmalloc_noprof+0xd2/0x510
[ 2758.790784][ T1001] devlink_fmsg_put_value+0xaa/0x2d0
[ 2758.790837][ T1001] devlink_fmsg_u32_put+0xef/0x150
[ 2758.790877][ T1001] ? __pfx_devlink_fmsg_u32_put+0x10/0x10
[ 2758.790925][ T1001] ? devlink_fmsg_arr_pair_nest_start+0xec/0x130
[ 2758.790975][ T1001] nsim_dev_dummy_fmsg_put+0x131/0x1e0
[ 2758.791021][ T1001] devlink_health_do_dump+0x243/0x620
[ 2758.791075][ T1001] devlink_health_report+0x3c9/0x9c0
[ 2758.791131][ T1001] ? __pfx_devlink_health_report+0x10/0x10
[ 2758.791182][ T1001] ? _copy_from_user+0x59/0xd0
[ 2758.791241][ T1001] nsim_dev_health_break_write+0x166/0x210
[ 2758.791286][ T1001] ? __pfx_nsim_dev_health_break_write+0x10/0x10
[ 2758.791344][ T1001] full_proxy_write+0x12e/0x1a0
[ 2758.791400][ T1001] ? __pfx_full_proxy_write+0x10/0x10
[ 2758.791449][ T1001] vfs_write+0x29d/0x11d0
[ 2758.791510][ T1001] ? __pfx___mutex_lock+0x10/0x10
[ 2758.791556][ T1001] ? __pfx_vfs_write+0x10/0x10
[ 2758.791607][ T1001] ? __fget_files+0x20e/0x3c0
[ 2758.791656][ T1001] ksys_write+0x12a/0x250
[ 2758.791695][ T1001] ? __pfx_ksys_write+0x10/0x10
[ 2758.791748][ T1001] do_syscall_64+0xcd/0x490
[ 2758.791795][ T1001] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2758.791829][ T1001] RIP: 0033:0x7f6abff8ebe9
[ 2758.791855][ T1001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2758.791889][ T1001] RSP: 002b:00007f6ac0dd2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2758.791924][ T1001] RAX: ffffffffffffffda RBX: 00007f6ac01b5fa0 RCX: 00007f6abff8ebe9
[ 2758.791946][ T1001] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000006
[ 2758.791966][ T1001] RBP: 00007f6ac0011e19 R08: 0000000000000000 R09: 0000000000000000
[ 2758.791987][ T1001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2758.792008][ T1001] R13: 00007f6ac01b6038 R14: 00007f6ac01b5fa0 R15: 00007fff708bbc38
[ 2758.792053][ T1001]
[ 2758.796509][ T70] bridge_slave_0: left allmulticast mode
[ 2759.055171][ T70] bridge_slave_0: left promiscuous mode
[ 2759.062648][ T70] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2760.047874][ T548] Bluetooth: hci3: command tx timeout
[ 2760.590684][ T70] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2760.612620][ T70] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2760.629314][ T70] bond0 (unregistering): Released all slaves
[ 2760.927490][ T70] HfR: left promiscuous mode
[ 2760.939464][ T907] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2760.948319][ T907] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2760.974964][ T907] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2761.049224][ T907] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2761.057981][ T907] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2761.084618][ T907] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2761.343659][ T907] hsr_slave_0: entered promiscuous mode
[ 2761.356823][ T907] hsr_slave_1: entered promiscuous mode
[ 2761.363645][ T907] debugfs: 'hsr0' already exists in 'hsr'
[ 2761.370573][ T907] Cannot create hsr debugfs directory
[ 2762.127914][ T548] Bluetooth: hci3: command tx timeout
[ 2768.489326][ T70] hsr_slave_0: left promiscuous mode
[ 2768.500528][ T70] hsr_slave_1: left promiscuous mode
[ 2768.510810][ T70] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2768.520654][ T70] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2768.532016][ T70] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2768.539989][ T70] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2768.587843][ T70] veth1_macvtap: left promiscuous mode
[ 2768.593473][ T70] veth0_macvtap: left promiscuous mode
[ 2768.599759][ T70] veth1_vlan: left promiscuous mode
[ 2768.646986][ T70] veth0_vlan: left promiscuous mode
[ 2769.520754][ T70] team0 (unregistering): Port device team_slave_1 removed
[ 2769.562538][ T70] team0 (unregistering): Port device team_slave_0 removed
[ 2771.502290][ T1163] FAULT_INJECTION: forcing a failure.
[ 2771.502290][ T1163] name failslab, interval 1, probability 0, space 0, times 0
[ 2771.515318][ T1163] CPU: 1 UID: 0 PID: 1163 Comm: syz.3.4863 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2771.515358][ T1163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2771.515372][ T1163] Call Trace:
[ 2771.515380][ T1163]
[ 2771.515389][ T1163] dump_stack_lvl+0x16c/0x1f0
[ 2771.515422][ T1163] should_fail_ex+0x512/0x640
[ 2771.515455][ T1163] ? fs_reclaim_acquire+0xae/0x150
[ 2771.515494][ T1163] should_failslab+0xc2/0x120
[ 2771.515524][ T1163] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 2771.515555][ T1163] ? getname_flags.part.0+0x4c/0x550
[ 2771.515597][ T1163] getname_flags.part.0+0x4c/0x550
[ 2771.515637][ T1163] getname_flags+0x93/0xf0
[ 2771.515662][ T1163] do_sys_openat2+0xb8/0x1d0
[ 2771.515698][ T1163] ? __pfx_do_sys_openat2+0x10/0x10
[ 2771.515745][ T1163] __x64_sys_openat+0x174/0x210
[ 2771.515785][ T1163] ? __pfx___x64_sys_openat+0x10/0x10
[ 2771.515843][ T1163] do_syscall_64+0xcd/0x490
[ 2771.515876][ T1163] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2771.515900][ T1163] RIP: 0033:0x7f7de098ebe9
[ 2771.515919][ T1163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2771.515944][ T1163] RSP: 002b:00007f7de179d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2771.515966][ T1163] RAX: ffffffffffffffda RBX: 00007f7de0bb5fa0 RCX: 00007f7de098ebe9
[ 2771.515981][ T1163] RDX: 0000000000000200 RSI: 0000200000000380 RDI: ffffffffffffff9c
[ 2771.515996][ T1163] RBP: 00007f7de0a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2771.516010][ T1163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2771.516023][ T1163] R13: 00007f7de0bb6038 R14: 00007f7de0bb5fa0 R15: 00007ffc841d8c48
[ 2771.516053][ T1163]
[ 2779.005654][ T51] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 2779.014613][ T51] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2779.025595][ T51] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2779.035908][ T51] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2779.044505][ T51] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2779.273054][ T1174] chnl_net:caif_netlink_parms(): no params data found
[ 2779.463519][ T1174] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2779.475764][ T1174] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2779.483269][ T1174] bridge_slave_0: entered allmulticast mode
[ 2779.495661][ T1174] bridge_slave_0: entered promiscuous mode
[ 2779.511915][ T1174] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2779.519430][ T1174] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2779.531660][ T1174] bridge_slave_1: entered allmulticast mode
[ 2779.542327][ T1174] bridge_slave_1: entered promiscuous mode
[ 2779.612731][ T1174] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2779.628274][ T548] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 2779.630434][ T1174] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2779.640614][ T548] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2779.656374][ T548] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2779.666029][ T548] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2779.675262][ T548] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2779.710615][ T1174] team0: Port device team_slave_0 added
[ 2779.720012][ T1174] team0: Port device team_slave_1 added
[ 2779.763703][ T1174] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2779.771171][ T1174] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2779.800421][ T1174] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2779.814496][ T1174] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2779.821692][ T1174] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2779.849369][ T1174] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2779.946569][ T1174] hsr_slave_0: entered promiscuous mode
[ 2779.954094][ T1174] hsr_slave_1: entered promiscuous mode
[ 2779.961023][ T1174] debugfs: 'hsr0' already exists in 'hsr'
[ 2779.967356][ T1174] Cannot create hsr debugfs directory
[ 2780.240772][ T1184] chnl_net:caif_netlink_parms(): no params data found
[ 2780.333905][ T1184] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2780.341755][ T1184] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2780.351491][ T1184] bridge_slave_0: entered allmulticast mode
[ 2780.361077][ T1184] bridge_slave_0: entered promiscuous mode
[ 2780.372612][ T1184] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2780.380027][ T1184] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2780.387822][ T1184] bridge_slave_1: entered allmulticast mode
[ 2780.395748][ T1184] bridge_slave_1: entered promiscuous mode
[ 2780.435418][ T1184] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2780.448464][ T1184] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2780.490500][ T1184] team0: Port device team_slave_0 added
[ 2780.500706][ T1184] team0: Port device team_slave_1 added
[ 2780.538315][ T1184] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2780.545541][ T1184] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2780.573414][ T1184] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2780.586854][ T1184] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2780.594044][ T1184] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2780.620298][ T1184] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2780.676710][ T1184] hsr_slave_0: entered promiscuous mode
[ 2780.683404][ T1184] hsr_slave_1: entered promiscuous mode
[ 2780.690379][ T1184] debugfs: 'hsr0' already exists in 'hsr'
[ 2780.696260][ T1184] Cannot create hsr debugfs directory
[ 2781.085217][ T51] Bluetooth: hci4: command tx timeout
[ 2781.725621][ T51] Bluetooth: hci5: command tx timeout
[ 2783.165364][ T51] Bluetooth: hci4: command tx timeout
[ 2783.805101][ T51] Bluetooth: hci5: command tx timeout
[ 2785.245058][ T51] Bluetooth: hci4: command tx timeout
[ 2785.488012][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 2785.494377][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 2785.895068][ T51] Bluetooth: hci5: command tx timeout
[ 2787.325048][ T51] Bluetooth: hci4: command tx timeout
[ 2787.964964][ T51] Bluetooth: hci5: command tx timeout
[ 2788.593068][ T548] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 2788.606085][ T548] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 2788.614495][ T548] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 2788.625901][ T548] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 2788.634521][ T548] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 2788.858817][ T1193] chnl_net:caif_netlink_parms(): no params data found
[ 2788.953930][ T1193] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2788.962598][ T1193] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2788.970604][ T1193] bridge_slave_0: entered allmulticast mode
[ 2788.980206][ T1193] bridge_slave_0: entered promiscuous mode
[ 2788.990110][ T1193] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2788.997662][ T1193] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2789.005731][ T1193] bridge_slave_1: entered allmulticast mode
[ 2789.013423][ T1193] bridge_slave_1: entered promiscuous mode
[ 2789.053902][ T1193] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2789.068129][ T1193] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2789.112240][ T1193] team0: Port device team_slave_0 added
[ 2789.121463][ T1193] team0: Port device team_slave_1 added
[ 2789.159491][ T1193] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2789.168868][ T1193] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2789.201279][ T1193] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2789.215426][ T1193] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2789.222446][ T1193] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2789.248852][ T1193] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2789.308653][ T1193] hsr_slave_0: entered promiscuous mode
[ 2789.315601][ T1193] hsr_slave_1: entered promiscuous mode
[ 2789.322145][ T1193] debugfs: 'hsr0' already exists in 'hsr'
[ 2789.328894][ T1193] Cannot create hsr debugfs directory
[ 2790.684977][ T51] Bluetooth: hci6: command tx timeout
[ 2792.765143][ T51] Bluetooth: hci6: command tx timeout
[ 2794.854969][ T51] Bluetooth: hci6: command tx timeout
[ 2796.924990][ T51] Bluetooth: hci6: command tx timeout
[ 2813.681447][ T548] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 2813.695806][ T548] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 2813.704249][ T548] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 2813.715291][ T548] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 2813.724460][ T548] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 2813.943045][ T1206] chnl_net:caif_netlink_parms(): no params data found
[ 2814.036833][ T1206] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2814.044046][ T1206] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2814.052568][ T1206] bridge_slave_0: entered allmulticast mode
[ 2814.061871][ T1206] bridge_slave_0: entered promiscuous mode
[ 2814.070202][ T1206] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2814.077497][ T1206] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2814.085284][ T1206] bridge_slave_1: entered allmulticast mode
[ 2814.093065][ T1206] bridge_slave_1: entered promiscuous mode
[ 2814.133663][ T1206] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2814.148389][ T1206] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2814.191152][ T1206] team0: Port device team_slave_0 added
[ 2814.201026][ T1206] team0: Port device team_slave_1 added
[ 2814.239158][ T1206] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2814.246569][ T1206] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2814.276314][ T1206] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2814.290206][ T1206] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2814.297784][ T1206] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2814.324889][ T1206] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2814.381999][ T1206] hsr_slave_0: entered promiscuous mode
[ 2814.388900][ T1206] hsr_slave_1: entered promiscuous mode
[ 2814.397118][ T1206] debugfs: 'hsr0' already exists in 'hsr'
[ 2814.402994][ T1206] Cannot create hsr debugfs directory
[ 2815.805043][ T51] Bluetooth: hci7: command tx timeout
[ 2817.885067][ T51] Bluetooth: hci7: command tx timeout
[ 2819.964944][ T51] Bluetooth: hci7: command tx timeout
[ 2822.044954][ T51] Bluetooth: hci7: command tx timeout
[ 2839.895254][ T548] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 2839.910547][ T548] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 2839.926294][ T548] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 2839.936856][ T548] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 2839.945093][ T548] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 2840.030326][ T51] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 2840.047766][ T51] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 2840.065429][ T51] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 2840.074911][ T51] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 2840.082749][ T51] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 2840.389126][ T1223] chnl_net:caif_netlink_parms(): no params data found
[ 2840.476646][ T1226] chnl_net:caif_netlink_parms(): no params data found
[ 2840.564392][ T1223] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2840.572649][ T1223] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2840.580662][ T1223] bridge_slave_0: entered allmulticast mode
[ 2840.589105][ T1223] bridge_slave_0: entered promiscuous mode
[ 2840.605020][ T1223] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2840.612298][ T1223] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2840.619897][ T1223] bridge_slave_1: entered allmulticast mode
[ 2840.628449][ T1223] bridge_slave_1: entered promiscuous mode
[ 2840.714645][ T1223] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2840.745424][ T1223] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2840.755417][ T1226] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2840.764059][ T1226] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2840.772223][ T1226] bridge_slave_0: entered allmulticast mode
[ 2840.782573][ T1226] bridge_slave_0: entered promiscuous mode
[ 2840.806844][ T1226] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2840.814164][ T1226] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2840.822421][ T1226] bridge_slave_1: entered allmulticast mode
[ 2840.830367][ T1226] bridge_slave_1: entered promiscuous mode
[ 2840.872520][ T1223] team0: Port device team_slave_0 added
[ 2840.899576][ T1223] team0: Port device team_slave_1 added
[ 2840.926925][ T1226] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2840.955910][ T1226] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2840.984622][ T1223] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2840.991903][ T1223] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2841.019290][ T1223] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2841.048620][ T1223] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2841.061563][ T1223] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2841.089852][ T1223] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2841.116471][ T1226] team0: Port device team_slave_0 added
[ 2841.146384][ T1226] team0: Port device team_slave_1 added
[ 2841.201079][ T1223] hsr_slave_0: entered promiscuous mode
[ 2841.208740][ T1223] hsr_slave_1: entered promiscuous mode
[ 2841.215474][ T1223] debugfs: 'hsr0' already exists in 'hsr'
[ 2841.221261][ T1223] Cannot create hsr debugfs directory
[ 2841.281498][ T1226] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2841.289999][ T1226] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2841.317295][ T1226] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2841.331033][ T1226] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2841.338202][ T1226] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2841.366202][ T1226] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2841.515210][ T1226] hsr_slave_0: entered promiscuous mode
[ 2841.521998][ T1226] hsr_slave_1: entered promiscuous mode
[ 2841.528774][ T1226] debugfs: 'hsr0' already exists in 'hsr'
[ 2841.534884][ T1226] Cannot create hsr debugfs directory
[ 2842.047084][ T548] Bluetooth: hci8: command tx timeout
[ 2842.125183][ T548] Bluetooth: hci9: command tx timeout
[ 2844.126238][ T548] Bluetooth: hci8: command tx timeout
[ 2844.205140][ T548] Bluetooth: hci9: command tx timeout
[ 2846.205451][ T548] Bluetooth: hci8: command tx timeout
[ 2846.285312][ T548] Bluetooth: hci9: command tx timeout
[ 2846.929199][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 2846.936004][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 2848.285304][ T548] Bluetooth: hci8: command tx timeout
[ 2848.365124][ T548] Bluetooth: hci9: command tx timeout
[ 2848.850862][ T1247] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 2848.866689][ T1247] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 2848.875347][ T1247] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 2848.887110][ T1247] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 2848.896459][ T1247] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 2849.007483][ T1247] Bluetooth: hci2: command 0x0406 tx timeout
[ 2849.133207][ T1246] chnl_net:caif_netlink_parms(): no params data found
[ 2849.240004][ T1246] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2849.247587][ T1246] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2849.255164][ T1246] bridge_slave_0: entered allmulticast mode
[ 2849.263365][ T1246] bridge_slave_0: entered promiscuous mode
[ 2849.272213][ T1246] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2849.281554][ T1246] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2849.289301][ T1246] bridge_slave_1: entered allmulticast mode
[ 2849.297416][ T1246] bridge_slave_1: entered promiscuous mode
[ 2849.342473][ T1246] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2849.358445][ T1246] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2849.407349][ T1246] team0: Port device team_slave_0 added
[ 2849.418007][ T1246] team0: Port device team_slave_1 added
[ 2849.455828][ T1246] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2849.462840][ T1246] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2849.494474][ T1246] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2849.508582][ T1246] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2849.515710][ T1246] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2849.541917][ T1246] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2849.608645][ T1246] hsr_slave_0: entered promiscuous mode
[ 2849.615624][ T1246] hsr_slave_1: entered promiscuous mode
[ 2849.622326][ T1246] debugfs: 'hsr0' already exists in 'hsr'
[ 2849.628230][ T1246] Cannot create hsr debugfs directory
[ 2850.925008][ T51] Bluetooth: hci10: command tx timeout
[ 2853.004936][ T51] Bluetooth: hci10: command tx timeout
[ 2855.084995][ T51] Bluetooth: hci10: command tx timeout
[ 2857.165386][ T51] Bluetooth: hci10: command tx timeout
[ 2873.926705][ T1247] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 2873.940789][ T1247] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 2873.950130][ T1247] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 2873.959805][ T1247] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 2873.968204][ T1247] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 2874.217159][ T1257] chnl_net:caif_netlink_parms(): no params data found
[ 2874.320436][ T1257] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2874.328190][ T1257] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2874.337025][ T1257] bridge_slave_0: entered allmulticast mode
[ 2874.346107][ T1257] bridge_slave_0: entered promiscuous mode
[ 2874.355317][ T1257] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2874.364207][ T1257] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2874.372500][ T1257] bridge_slave_1: entered allmulticast mode
[ 2874.380793][ T1257] bridge_slave_1: entered promiscuous mode
[ 2874.427703][ T1257] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2874.441550][ T1257] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2874.490823][ T1257] team0: Port device team_slave_0 added
[ 2874.501028][ T1257] team0: Port device team_slave_1 added
[ 2874.547196][ T1257] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2874.554627][ T1257] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2874.583222][ T1257] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2874.597977][ T1257] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2874.605738][ T1257] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2874.631854][ T1257] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2874.692978][ T1257] hsr_slave_0: entered promiscuous mode
[ 2874.700459][ T1257] hsr_slave_1: entered promiscuous mode
[ 2874.707301][ T1257] debugfs: 'hsr0' already exists in 'hsr'
[ 2874.713265][ T1257] Cannot create hsr debugfs directory
[ 2876.044988][ T1247] Bluetooth: hci11: command tx timeout
[ 2878.124991][ T51] Bluetooth: hci11: command tx timeout
[ 2879.724938][ T51] Bluetooth: hci3: command 0x0406 tx timeout
[ 2880.205475][ T1247] Bluetooth: hci11: command tx timeout
[ 2882.284977][ T1247] Bluetooth: hci11: command tx timeout
[ 2900.195728][ T51] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 2900.215322][ T51] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 2900.224529][ T51] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 2900.235751][ T51] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 2900.245338][ T51] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 2900.342815][ T51] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[ 2900.352614][ T51] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[ 2900.362050][ T51] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[ 2900.376075][ T51] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[ 2900.397679][ T51] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[ 2900.763123][ T1274] chnl_net:caif_netlink_parms(): no params data found
[ 2900.875271][ T1278] chnl_net:caif_netlink_parms(): no params data found
[ 2900.914039][ T1274] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2900.922325][ T1274] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2900.930211][ T1274] bridge_slave_0: entered allmulticast mode
[ 2900.939164][ T1274] bridge_slave_0: entered promiscuous mode
[ 2900.950545][ T1274] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2900.958905][ T1274] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2900.966942][ T1274] bridge_slave_1: entered allmulticast mode
[ 2900.975891][ T1274] bridge_slave_1: entered promiscuous mode
[ 2901.056069][ T1274] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2901.078054][ T1274] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2901.149761][ T1274] team0: Port device team_slave_0 added
[ 2901.178277][ T1274] team0: Port device team_slave_1 added
[ 2901.185381][ T1278] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2901.193705][ T1278] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2901.201647][ T1278] bridge_slave_0: entered allmulticast mode
[ 2901.210978][ T1278] bridge_slave_0: entered promiscuous mode
[ 2901.237705][ T1278] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2901.245573][ T1278] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2901.253013][ T1278] bridge_slave_1: entered allmulticast mode
[ 2901.260843][ T1278] bridge_slave_1: entered promiscuous mode
[ 2901.308825][ T1274] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2901.316285][ T1274] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2901.344200][ T1274] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2901.358522][ T1274] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2901.365808][ T1274] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2901.392797][ T1274] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2901.435945][ T1278] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2901.453294][ T1278] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2901.534589][ T1278] team0: Port device team_slave_0 added
[ 2901.562682][ T1278] team0: Port device team_slave_1 added
[ 2901.594563][ T1274] hsr_slave_0: entered promiscuous mode
[ 2901.602488][ T1274] hsr_slave_1: entered promiscuous mode
[ 2901.609716][ T1274] debugfs: 'hsr0' already exists in 'hsr'
[ 2901.615891][ T1274] Cannot create hsr debugfs directory
[ 2901.669839][ T1278] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2901.677886][ T1278] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2901.707094][ T1278] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2901.750119][ T1278] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2901.757509][ T1278] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2901.784027][ T1278] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2901.925902][ T1278] hsr_slave_0: entered promiscuous mode
[ 2901.932974][ T1278] hsr_slave_1: entered promiscuous mode
[ 2901.940176][ T1278] debugfs: 'hsr0' already exists in 'hsr'
[ 2901.947486][ T1278] Cannot create hsr debugfs directory
[ 2902.285522][ T1247] Bluetooth: hci12: command tx timeout
[ 2902.445060][ T1247] Bluetooth: hci13: command tx timeout
[ 2904.366194][T18243] Bluetooth: hci12: command tx timeout
[ 2904.525017][T18243] Bluetooth: hci13: command tx timeout
[ 2905.328384][ T1295] Bluetooth: hci4: command 0x0406 tx timeout
[ 2905.328375][T18243] Bluetooth: hci5: command 0x0406 tx timeout
[ 2906.454966][ T51] Bluetooth: hci12: command tx timeout
[ 2906.605169][ T51] Bluetooth: hci13: command tx timeout
[ 2908.368541][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 2908.375472][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 2908.525005][ T51] Bluetooth: hci12: command tx timeout
[ 2908.685122][ T51] Bluetooth: hci13: command tx timeout
[ 2909.146060][ T1247] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[ 2909.167814][ T1247] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[ 2909.179297][ T1247] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[ 2909.190650][ T1247] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[ 2909.202808][ T1247] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[ 2909.468015][ T1301] chnl_net:caif_netlink_parms(): no params data found
[ 2909.758724][ T1301] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2909.774982][ T1301] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2909.782868][ T1301] bridge_slave_0: entered allmulticast mode
[ 2909.812715][ T1301] bridge_slave_0: entered promiscuous mode
[ 2909.823521][ T1301] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2909.831521][ T1301] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2909.840117][ T1301] bridge_slave_1: entered allmulticast mode
[ 2909.850193][ T1301] bridge_slave_1: entered promiscuous mode
[ 2909.946758][ T1301] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2909.970670][ T1301] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2910.082709][ T1301] team0: Port device team_slave_0 added
[ 2910.093228][ T1301] team0: Port device team_slave_1 added
[ 2910.170371][ T1301] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2910.190181][ T1301] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2910.231275][ T1301] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2910.252795][ T1301] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2910.274161][ T1301] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2910.320810][ T1301] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2910.426667][ T1301] hsr_slave_0: entered promiscuous mode
[ 2910.433887][ T1301] hsr_slave_1: entered promiscuous mode
[ 2910.441151][ T1301] debugfs: 'hsr0' already exists in 'hsr'
[ 2910.447529][ T1301] Cannot create hsr debugfs directory
[ 2911.250615][ T1247] Bluetooth: hci14: command tx timeout
[ 2913.325105][ T1247] Bluetooth: hci14: command tx timeout
[ 2915.405907][ T51] Bluetooth: hci14: command tx timeout
[ 2915.565157][ T51] Bluetooth: hci6: command 0x0406 tx timeout
[ 2917.484960][ T1247] Bluetooth: hci14: command tx timeout
[ 2926.925399][ T31] INFO: task syz-executor:907 blocked for more than 143 seconds.
[ 2926.933830][ T31] Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0
[ 2926.942382][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2926.952437][ T31] task:syz-executor state:D stack:24760 pid:907 tgid:907 ppid:1 task_flags:0x480140 flags:0x00004006
[ 2926.966177][ T31] Call Trace:
[ 2926.969530][ T31]
[ 2926.972514][ T31] __schedule+0x1190/0x5de0
[ 2926.977216][ T31] ? __lock_acquire+0x62e/0x1ce0
[ 2926.983069][ T31] ? __pfx___schedule+0x10/0x10
[ 2926.988580][ T31] ? find_held_lock+0x2b/0x80
[ 2926.993530][ T31] ? schedule+0x2d7/0x3a0
[ 2926.999311][ T31] schedule+0xe7/0x3a0
[ 2927.003946][ T31] schedule_timeout+0x257/0x290
[ 2927.011659][ T31] ? __pfx_schedule_timeout+0x10/0x10
[ 2927.017517][ T31] ? mark_held_locks+0x49/0x80
[ 2927.022456][ T31] ? _raw_spin_unlock_irq+0x23/0x50
[ 2927.027892][ T31] __wait_for_common+0x2fc/0x4e0
[ 2927.033176][ T31] ? __pfx_schedule_timeout+0x10/0x10
[ 2927.038776][ T31] ? __pfx___wait_for_common+0x10/0x10
[ 2927.044438][ T31] remove_one+0x312/0x420
[ 2927.049013][ T31] ? find_next_child+0x18f/0x280
[ 2927.054410][ T31] __simple_recursive_removal+0x158/0x610
[ 2927.061602][ T31] ? __pfx_remove_one+0x10/0x10
[ 2927.066795][ T31] debugfs_remove+0x5d/0x80
[ 2927.071684][ T31] nsim_dev_health_exit+0x3b/0xe0
[ 2927.077389][ T31] nsim_dev_reload_destroy+0x144/0x4d0
[ 2927.083021][ T31] nsim_drv_remove+0x52/0x1d0
[ 2927.088262][ T31] ? __pfx_nsim_bus_remove+0x10/0x10
[ 2927.093645][ T31] device_remove+0xc8/0x170
[ 2927.100044][ T31] device_release_driver_internal+0x44b/0x620
[ 2927.106572][ T31] bus_remove_device+0x22f/0x420
[ 2927.111821][ T31] device_del+0x396/0x9f0
[ 2927.117578][ T31] ? __pfx_device_del+0x10/0x10
[ 2927.122983][ T31] ? load_module+0x117c/0x8750
[ 2927.128142][ T31] device_unregister+0x1d/0xc0
[ 2927.133251][ T31] del_device_store+0x355/0x4a0
[ 2927.138537][ T31] ? __pfx_del_device_store+0x10/0x10
[ 2927.144360][ T31] ? find_held_lock+0x2b/0x80
[ 2927.150332][ T31] ? sysfs_file_kobj+0xe4/0x290
[ 2927.155955][ T31] ? __pfx_del_device_store+0x10/0x10
[ 2927.161426][ T31] bus_attr_store+0x71/0xb0
[ 2927.166501][ T31] ? __pfx_bus_attr_store+0x10/0x10
[ 2927.172018][ T31] sysfs_kf_write+0xef/0x150
[ 2927.177674][ T31] kernfs_fop_write_iter+0x351/0x510
[ 2927.183312][ T31] ? __pfx_sysfs_kf_write+0x10/0x10
[ 2927.189148][ T31] vfs_write+0x7d0/0x11d0
[ 2927.193560][ T31] ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 2927.201742][ T31] ? __pfx_vfs_write+0x10/0x10
[ 2927.207191][ T31] ? __pfx_do_sys_openat2+0x10/0x10
[ 2927.212731][ T31] ? find_held_lock+0x2b/0x80
[ 2927.217881][ T31] ksys_write+0x12a/0x250
[ 2927.222840][ T31] ? __pfx_ksys_write+0x10/0x10
[ 2927.229948][ T31] do_syscall_64+0xcd/0x490
[ 2927.234857][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2927.241377][ T31] RIP: 0033:0x7f4215f8d69f
[ 2927.246071][ T31] RSP: 002b:00007ffce3d4c580 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 2927.256146][ T31] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f4215f8d69f
[ 2927.264362][ T31] RDX: 0000000000000001 RSI: 00007ffce3d4c5d0 RDI: 0000000000000005
[ 2927.272854][ T31] RBP: 00007f42160130c1 R08: 0000000000000000 R09: 00007ffce3d4c3d7
[ 2927.281469][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 2927.289807][ T31] R13: 00007ffce3d4c5d0 R14: 00007f4216ce4620 R15: 0000000000000003
[ 2927.298439][ T31]
[ 2927.301656][ T31] INFO: task syz.0.4855:1074 blocked for more than 143 seconds.
[ 2927.311346][ T31] Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0
[ 2927.319077][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2927.328319][ T31] task:syz.0.4855 state:D stack:27408 pid:1074 tgid:1073 ppid:18866 task_flags:0x400140 flags:0x00004004
[ 2927.340822][ T31] Call Trace:
[ 2927.344269][ T31]
[ 2927.347762][ T31] __schedule+0x1190/0x5de0
[ 2927.352455][ T31] ? __pfx___schedule+0x10/0x10
[ 2927.357544][ T31] ? find_held_lock+0x2b/0x80
[ 2927.362489][ T31] ? schedule+0x2d7/0x3a0
[ 2927.367098][ T31] ? devlink_health_report+0x3ba/0x9c0
[ 2927.372650][ T31] schedule+0xe7/0x3a0
[ 2927.377130][ T31] schedule_preempt_disabled+0x13/0x30
[ 2927.382739][ T31] __mutex_lock+0x82a/0x10b0
[ 2927.387563][ T31] ? devlink_health_report+0x3ba/0x9c0
[ 2927.393254][ T31] ? __pfx___mutex_lock+0x10/0x10
[ 2927.398713][ T31] ? devlink_health_report+0x3ba/0x9c0
[ 2927.404262][ T31] devlink_health_report+0x3ba/0x9c0
[ 2927.411721][ T31] ? __pfx_devlink_health_report+0x10/0x10
[ 2927.418119][ T31] ? _copy_from_user+0x59/0xd0
[ 2927.423014][ T31] nsim_dev_health_break_write+0x166/0x210
[ 2927.429114][ T31] ? __pfx_nsim_dev_health_break_write+0x10/0x10
[ 2927.435619][ T31] full_proxy_write+0x12e/0x1a0
[ 2927.440700][ T31] ? __pfx_full_proxy_write+0x10/0x10
[ 2927.446290][ T31] vfs_write+0x29d/0x11d0
[ 2927.450791][ T31] ? __pfx___mutex_lock+0x10/0x10
[ 2927.456000][ T31] ? __pfx_vfs_write+0x10/0x10
[ 2927.460945][ T31] ? __fget_files+0x20e/0x3c0
[ 2927.465789][ T31] ksys_write+0x12a/0x250
[ 2927.470452][ T31] ? __pfx_ksys_write+0x10/0x10
[ 2927.475573][ T31] do_syscall_64+0xcd/0x490
[ 2927.480339][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2927.486981][ T31] RIP: 0033:0x7f414bb8ebe9
[ 2927.491727][ T31] RSP: 002b:00007f414cab7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2927.500574][ T31] RAX: ffffffffffffffda RBX: 00007f414bdb5fa0 RCX: 00007f414bb8ebe9
[ 2927.510466][ T31] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000006
[ 2927.518823][ T31] RBP: 00007f414bc11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2927.527301][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2927.535884][ T31] R13: 00007f414bdb6038 R14: 00007f414bdb5fa0 R15: 00007ffe2c47d038
[ 2927.543952][ T31]
[ 2927.547124][ T31] INFO: task syz.1.4857:1084 blocked for more than 143 seconds.
[ 2927.555329][ T31] Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0
[ 2927.562676][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2927.572771][ T31] task:syz.1.4857 state:D stack:26552 pid:1084 tgid:1082 ppid:547 task_flags:0x400140 flags:0x00004004
[ 2927.585951][ T31] Call Trace:
[ 2927.589537][ T31]
[ 2927.592752][ T31] __schedule+0x1190/0x5de0
[ 2927.597490][ T31] ? check_path.constprop.0+0x24/0x50
[ 2927.603207][ T31] ? __lock_acquire+0x62e/0x1ce0
[ 2927.608380][ T31] ? __pfx___schedule+0x10/0x10
[ 2927.615162][ T31] ? find_held_lock+0x2b/0x80
[ 2927.620489][ T31] ? schedule+0x2d7/0x3a0
[ 2927.625359][ T31] schedule+0xe7/0x3a0
[ 2927.629734][ T31] schedule_preempt_disabled+0x13/0x30
[ 2927.635944][ T31] rwsem_down_read_slowpath+0x64e/0xbf0
[ 2927.641800][ T31] ? __pfx_rwsem_down_read_slowpath+0x10/0x10
[ 2927.649018][ T31] ? __pfx___might_resched+0x10/0x10
[ 2927.654483][ T31] ? find_held_lock+0x2b/0x80
[ 2927.659824][ T31] down_read+0xef/0x480
[ 2927.664161][ T31] ? mnt_get_write_access+0x54/0x300
[ 2927.669606][ T31] ? __pfx_down_read+0x10/0x10
[ 2927.674548][ T31] ? mnt_get_write_access+0x20c/0x300
[ 2927.680383][ T31] path_openat+0x818/0x2cb0
[ 2927.685032][ T31] ? __pfx_path_openat+0x10/0x10
[ 2927.690157][ T31] do_filp_open+0x20b/0x470
[ 2927.694844][ T31] ? __pfx_do_filp_open+0x10/0x10
[ 2927.700417][ T31] ? alloc_fd+0x471/0x7d0
[ 2927.704930][ T31] do_sys_openat2+0x11b/0x1d0
[ 2927.710184][ T31] ? __pfx_do_sys_openat2+0x10/0x10
[ 2927.717661][ T31] __x64_sys_openat+0x174/0x210
[ 2927.722814][ T31] ? __pfx___x64_sys_openat+0x10/0x10
[ 2927.728672][ T31] do_syscall_64+0xcd/0x490
[ 2927.733958][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2927.740344][ T31] RIP: 0033:0x7f6abff8ebe9
[ 2927.744862][ T31] RSP: 002b:00007f6ac0dd2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2927.753354][ T31] RAX: ffffffffffffffda RBX: 00007f6ac01b5fa0 RCX: 00007f6abff8ebe9
[ 2927.761950][ T31] RDX: 0000000000048081 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 2927.770302][ T31] RBP: 00007f6ac0011e19 R08: 0000000000000000 R09: 0000000000000000
[ 2927.778604][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2927.786912][ T31] R13: 00007f6ac01b6038 R14: 00007f6ac01b5fa0 R15: 00007fff708bbc38
[ 2927.795378][ T31]
[ 2927.798680][ T31] INFO: task syz.3.4865:1169 blocked for more than 144 seconds.
[ 2927.807032][ T31] Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0
[ 2927.816198][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2927.825176][ T31] task:syz.3.4865 state:D stack:27688 pid:1169 tgid:1168 ppid:19126 task_flags:0x400140 flags:0x00004004
[ 2927.837398][ T31] Call Trace:
[ 2927.840950][ T31]
[ 2927.844263][ T31] __schedule+0x1190/0x5de0
[ 2927.849094][ T31] ? __lock_acquire+0x62e/0x1ce0
[ 2927.854107][ T31] ? __pfx___schedule+0x10/0x10
[ 2927.859284][ T31] ? find_held_lock+0x2b/0x80
[ 2927.864086][ T31] ? schedule+0x2d7/0x3a0
[ 2927.868668][ T31] schedule+0xe7/0x3a0
[ 2927.872973][ T31] schedule_preempt_disabled+0x13/0x30
[ 2927.878834][ T31] rwsem_down_read_slowpath+0x64e/0xbf0
[ 2927.884920][ T31] ? __pfx_rwsem_down_read_slowpath+0x10/0x10
[ 2927.891403][ T31] ? __pfx___might_resched+0x10/0x10
[ 2927.898073][ T31] ? find_held_lock+0x2b/0x80
[ 2927.903050][ T31] down_read+0xef/0x480
[ 2927.907870][ T31] ? mnt_get_write_access+0x54/0x300
[ 2927.913586][ T31] ? __pfx_down_read+0x10/0x10
[ 2927.919573][ T31] ? mnt_get_write_access+0x20c/0x300
[ 2927.925425][ T31] path_openat+0x818/0x2cb0
[ 2927.930193][ T31] ? __pfx_path_openat+0x10/0x10
[ 2927.935382][ T31] do_filp_open+0x20b/0x470
[ 2927.939955][ T31] ? __pfx_do_filp_open+0x10/0x10
[ 2927.946527][ T31] ? alloc_fd+0x471/0x7d0
[ 2927.951039][ T31] do_sys_openat2+0x11b/0x1d0
[ 2927.956007][ T31] ? __pfx_do_sys_openat2+0x10/0x10
[ 2927.961407][ T31] __x64_sys_openat+0x174/0x210
[ 2927.966743][ T31] ? __pfx___x64_sys_openat+0x10/0x10
[ 2927.972244][ T31] do_syscall_64+0xcd/0x490
[ 2927.977014][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2927.983060][ T31] RIP: 0033:0x7f7de098ebe9
[ 2927.987693][ T31] RSP: 002b:00007f7de179d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 2927.996393][ T31] RAX: ffffffffffffffda RBX: 00007f7de0bb5fa0 RCX: 00007f7de098ebe9
[ 2928.004585][ T31] RDX: 0000000000048081 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 2928.012989][ T31] RBP: 00007f7de0a11e19 R08: 0000000000000000 R09: 0000000000000000
[ 2928.021845][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2928.030094][ T31] R13: 00007f7de0bb6038 R14: 00007f7de0bb5fa0 R15: 00007ffc841d8c48
[ 2928.038479][ T31]
[ 2928.041604][ T31] INFO: task syz-executor:1174 blocked for more than 144 seconds.
[ 2928.050215][ T31] Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0
[ 2928.058213][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2928.067340][ T31] task:syz-executor state:D stack:24920 pid:1174 tgid:1174 ppid:1 task_flags:0x400140 flags:0x00004004
[ 2928.079581][ T31] Call Trace:
[ 2928.082990][ T31]
[ 2928.086069][ T31] __schedule+0x1190/0x5de0
[ 2928.090638][ T31] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2928.097059][ T31] ? is_bpf_text_address+0x94/0x1a0
[ 2928.102443][ T31] ? __lock_acquire+0x62e/0x1ce0
[ 2928.107803][ T31] ? __pfx___schedule+0x10/0x10
[ 2928.112835][ T31] ? find_held_lock+0x2b/0x80
[ 2928.117747][ T31] ? schedule+0x2d7/0x3a0
[ 2928.123277][ T31] ? del_device_store+0xd1/0x4a0
[ 2928.128494][ T31] schedule+0xe7/0x3a0
[ 2928.132720][ T31] schedule_preempt_disabled+0x13/0x30
[ 2928.138473][ T31] __mutex_lock+0x82a/0x10b0
[ 2928.143130][ T31] ? del_device_store+0xd1/0x4a0
[ 2928.148691][ T31] ? __pfx___mutex_lock+0x10/0x10
[ 2928.153925][ T31] ? __pfx_sscanf+0x10/0x10
[ 2928.158884][ T31] ? __lock_acquire+0x62e/0x1ce0
[ 2928.164006][ T31] ? load_module+0x117c/0x8750
[ 2928.169325][ T31] ? del_device_store+0xd1/0x4a0
[ 2928.174433][ T31] del_device_store+0xd1/0x4a0
[ 2928.179552][ T31] ? __pfx_del_device_store+0x10/0x10
[ 2928.185171][ T31] ? find_held_lock+0x2b/0x80
[ 2928.190116][ T31] ? sysfs_file_kobj+0xe4/0x290
[ 2928.195286][ T31] ? __pfx_del_device_store+0x10/0x10
[ 2928.200820][ T31] bus_attr_store+0x71/0xb0
[ 2928.205504][ T31] ? __pfx_bus_attr_store+0x10/0x10
[ 2928.211083][ T31] sysfs_kf_write+0xef/0x150
[ 2928.215866][ T31] kernfs_fop_write_iter+0x351/0x510
[ 2928.221377][ T31] ? __pfx_sysfs_kf_write+0x10/0x10
[ 2928.227555][ T31] vfs_write+0x7d0/0x11d0
[ 2928.231999][ T31] ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 2928.238153][ T31] ? __pfx_vfs_write+0x10/0x10
[ 2928.243068][ T31] ? __pfx_do_sys_openat2+0x10/0x10
[ 2928.248550][ T31] ksys_write+0x12a/0x250
[ 2928.252933][ T31] ? __pfx_ksys_write+0x10/0x10
[ 2928.258452][ T31] do_syscall_64+0xcd/0x490
[ 2928.263395][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2928.269549][ T31] RIP: 0033:0x7fb06c58d69f
[ 2928.274013][ T31] RSP: 002b:00007fff0735a8c0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 2928.282757][ T31] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fb06c58d69f
[ 2928.291192][ T31] RDX: 0000000000000001 RSI: 00007fff0735a910 RDI: 0000000000000005
[ 2928.299415][ T31] RBP: 00007fb06c6130c1 R08: 0000000000000000 R09: 00007fff0735a717
[ 2928.307764][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 2928.316014][ T31] R13: 00007fff0735a910 R14: 00007fb06d2e4620 R15: 0000000000000003
[ 2928.324316][ T31]
[ 2928.328302][ T31] INFO: task syz-executor:1184 blocked for more than 144 seconds.
[ 2928.336417][ T31] Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0
[ 2928.343817][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2928.353198][ T31] task:syz-executor state:D stack:24456 pid:1184 tgid:1184 ppid:1 task_flags:0x400140 flags:0x00004004
[ 2928.366385][ T31] Call Trace:
[ 2928.369889][ T31]
[ 2928.372998][ T31] __schedule+0x1190/0x5de0
[ 2928.377667][ T31] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2928.384613][ T31] ? is_bpf_text_address+0x94/0x1a0
[ 2928.389972][ T31] ? __lock_acquire+0x62e/0x1ce0
[ 2928.395335][ T31] ? __pfx___schedule+0x10/0x10
[ 2928.400386][ T31] ? find_held_lock+0x2b/0x80
[ 2928.405364][ T31] ? schedule+0x2d7/0x3a0
[ 2928.409959][ T31] ? del_device_store+0xd1/0x4a0
[ 2928.415132][ T31] schedule+0xe7/0x3a0
[ 2928.419468][ T31] schedule_preempt_disabled+0x13/0x30
[ 2928.425280][ T31] __mutex_lock+0x82a/0x10b0
[ 2928.430602][ T31] ? del_device_store+0xd1/0x4a0
[ 2928.435927][ T31] ? __pfx___mutex_lock+0x10/0x10
[ 2928.441296][ T31] ? __pfx_sscanf+0x10/0x10
[ 2928.446309][ T31] ? __lock_acquire+0x62e/0x1ce0
[ 2928.451492][ T31] ? load_module+0x117c/0x8750
[ 2928.457601][ T31] ? del_device_store+0xd1/0x4a0
[ 2928.462647][ T31] del_device_store+0xd1/0x4a0
[ 2928.467640][ T31] ? __pfx_del_device_store+0x10/0x10
[ 2928.473199][ T31] ? find_held_lock+0x2b/0x80
[ 2928.478217][ T31] ? sysfs_file_kobj+0xe4/0x290
[ 2928.483160][ T31] ? __pfx_del_device_store+0x10/0x10
[ 2928.488703][ T31] bus_attr_store+0x71/0xb0
[ 2928.493463][ T31] ? __pfx_bus_attr_store+0x10/0x10
[ 2928.498846][ T31] sysfs_kf_write+0xef/0x150
[ 2928.503790][ T31] kernfs_fop_write_iter+0x351/0x510
[ 2928.509433][ T31] ? __pfx_sysfs_kf_write+0x10/0x10
[ 2928.514907][ T31] vfs_write+0x7d0/0x11d0
[ 2928.519362][ T31] ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 2928.528161][ T31] ? __pfx_vfs_write+0x10/0x10
[ 2928.534224][ T31] ? __pfx_do_sys_openat2+0x10/0x10
[ 2928.540657][ T31] ksys_write+0x12a/0x250
[ 2928.545163][ T31] ? __pfx_ksys_write+0x10/0x10
[ 2928.550197][ T31] do_syscall_64+0xcd/0x490
[ 2928.555532][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2928.561926][ T31] RIP: 0033:0x7fa792b8d69f
[ 2928.566725][ T31] RSP: 002b:00007ffc2159bef0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 2928.575465][ T31] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fa792b8d69f
[ 2928.583574][ T31] RDX: 0000000000000001 RSI: 00007ffc2159bf40 RDI: 0000000000000005
[ 2928.591795][ T31] RBP: 00007fa792c130c1 R08: 0000000000000000 R09: 00007ffc2159bd47
[ 2928.600383][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 2928.608905][ T31] R13: 00007ffc2159bf40 R14: 00007fa7938e4620 R15: 0000000000000003
[ 2928.617380][ T31]
[ 2928.620481][ T31]
[ 2928.620481][ T31] Showing all locks held in the system:
[ 2928.628462][ T31] 1 lock held by khungtaskd/31:
[ 2928.635310][ T31] #0: ffffffff8e5c0fe0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[ 2928.645444][ T31] 3 locks held by kworker/u8:7/1162:
[ 2928.650893][ T31] 2 locks held by getty/5624:
[ 2928.655672][ T31] #0: ffff888030fdd0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 2928.666000][ T31] #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[ 2928.676571][ T31] 7 locks held by syz-executor/907:
[ 2928.682034][ T31] #0: ffff88802487e428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 2928.691445][ T31] #1: ffff88802878c888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[ 2928.701969][ T31] #2: ffff888027d54b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[ 2928.712396][ T31] #3: ffffffff8f8f5a48 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 2928.723210][ T31] #4: ffff8880336310e8 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xa4/0x620
[ 2928.734242][ T31] #5: ffff888033636250 (&devlink->lock_key#5){+.+.}-{4:4}, at: nsim_drv_remove+0x4a/0x1d0
[ 2928.746353][ T31] #6: ffff88808312d5a8 (&sb->s_type->i_mutex_key#3/2){+.+.}-{4:4}, at: __simple_recursive_removal+0x354/0x610
[ 2928.758353][ T31] 3 locks held by syz.0.4855/1074:
[ 2928.763597][ T31] #0: ffff88803418ad38 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370
[ 2928.773444][ T31] #1: ffff8881416ca428 (sb_writers#8){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 2928.782874][ T31] #2: ffff888033636250 (&devlink->lock_key#5){+.+.}-{4:4}, at: devlink_health_report+0x3ba/0x9c0
[ 2928.793758][ T31] 2 locks held by syz.1.4857/1084:
[ 2928.799145][ T31] #0: ffff8881416ca428 (sb_writers#8){.+.+}-{0:0}, at: path_openat+0x1ec8/0x2cb0
[ 2928.808626][ T31] #1: ffff88808312d5a8 (&sb->s_type->i_mutex_key#3){++++}-{4:4}, at: path_openat+0x818/0x2cb0
[ 2928.819347][ T31] 2 locks held by syz.3.4865/1169:
[ 2928.824605][ T31] #0: ffff8881416ca428 (sb_writers#8){.+.+}-{0:0}, at: path_openat+0x1ec8/0x2cb0
[ 2928.834171][ T31] #1: ffff88808312d5a8 (&sb->s_type->i_mutex_key#3){++++}-{4:4}, at: path_openat+0x818/0x2cb0
[ 2928.846015][ T31] 4 locks held by syz-executor/1174:
[ 2928.851805][ T31] #0: ffff88802487e428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 2928.861082][ T31] #1: ffff88802878d088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[ 2928.871240][ T31] #2: ffff888027d54b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[ 2928.881485][ T31] #3: ffffffff8f8f5a48 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 2928.892144][ T31] 4 locks held by syz-executor/1184:
[ 2928.897814][ T31] #0: ffff88802487e428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 2928.907211][ T31] #1: ffff888088f8dc88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[ 2928.917392][ T31] #2: ffff888027d54b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[ 2928.927611][ T31] #3: ffffffff8f8f5a48 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 2928.938361][ T31] 4 locks held by syz-executor/1193:
[ 2928.945665][ T31] #0: ffff88802487e428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 2928.955019][ T31] #1: ffff888025acfc88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[ 2928.964907][ T31] #2: ffff888027d54b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[ 2928.975270][ T31] #3: ffffffff8f8f5a48 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 2928.986060][ T31] 4 locks held by syz-executor/1206:
[ 2928.991491][ T31] #0: ffff88802487e428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 2929.001304][ T31] #1: ffff888079b82888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[ 2929.011656][ T31] #2: ffff888027d54b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[ 2929.022040][ T31] #3: ffffffff8f8f5a48 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 2929.033164][ T31] 4 locks held by syz-executor/1223:
[ 2929.038747][ T31] #0: ffff88802487e428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 2929.049585][ T31] #1: ffff88805cbd7488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[ 2929.059621][ T31] #2: ffff888027d54b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[ 2929.070148][ T31] #3: ffffffff8f8f5a48 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 2929.080958][ T31] 4 locks held by syz-executor/1226:
[ 2929.086874][ T31] #0: ffff88802487e428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 2929.096205][ T31] #1: ffff8880553c4888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[ 2929.106563][ T31] #2: ffff888027d54b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[ 2929.117152][ T31] #3: ffffffff8f8f5a48 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 2929.127735][ T31] 4 locks held by syz-executor/1246:
[ 2929.133298][ T31] #0: ffff88802487e428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 2929.142928][ T31] #1: ffff888056f41888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[ 2929.154593][ T31] #2: ffff888027d54b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[ 2929.165801][ T31] #3: ffffffff8f8f5a48 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 2929.177252][ T31] 4 locks held by syz-executor/1257:
[ 2929.184114][ T31] #0: ffff88802487e428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 2929.195433][ T31] #1: ffff888144ba9088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[ 2929.205454][ T31] #2: ffff888027d54b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[ 2929.216354][ T31] #3: ffffffff8f8f5a48 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 2929.227723][ T31] 4 locks held by syz-executor/1274:
[ 2929.233240][ T31] #0: ffff88802487e428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 2929.242476][ T31] #1: ffff888057b24888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[ 2929.253863][ T31] #2: ffff888027d54b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[ 2929.264064][ T31] #3: ffffffff8f8f5a48 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 2929.274776][ T31] 4 locks held by syz-executor/1278:
[ 2929.280120][ T31] #0: ffff88802487e428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 2929.289496][ T31] #1: ffff8880970de088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[ 2929.299511][ T31] #2: ffff888027d54b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[ 2929.310174][ T31] #3: ffffffff8f8f5a48 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 2929.320964][ T31] 4 locks held by syz-executor/1301:
[ 2929.326687][ T31] #0: ffff88802487e428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[ 2929.336111][ T31] #1: ffff88805cc82488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[ 2929.346143][ T31] #2: ffff888027d54b48 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[ 2929.357589][ T31] #3: ffffffff8f8f5a48 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0
[ 2929.369016][ T31]
[ 2929.371392][ T31] =============================================
[ 2929.371392][ T31]
[ 2929.379984][ T31] NMI backtrace for cpu 0
[ 2929.380005][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2929.380042][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2929.380060][ T31] Call Trace:
[ 2929.380070][ T31]
[ 2929.380081][ T31] dump_stack_lvl+0x116/0x1f0
[ 2929.380127][ T31] nmi_cpu_backtrace+0x27b/0x390
[ 2929.380296][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 2929.380357][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300
[ 2929.380415][ T31] watchdog+0xf0e/0x1260
[ 2929.380477][ T31] ? __pfx_watchdog+0x10/0x10
[ 2929.380523][ T31] ? lockdep_hardirqs_on+0x7c/0x110
[ 2929.380565][ T31] ? __kthread_parkme+0x19e/0x250
[ 2929.380609][ T31] ? __pfx_watchdog+0x10/0x10
[ 2929.380655][ T31] kthread+0x3c5/0x780
[ 2929.380703][ T31] ? __pfx_kthread+0x10/0x10
[ 2929.380750][ T31] ? rcu_is_watching+0x12/0xc0
[ 2929.380788][ T31] ? __pfx_kthread+0x10/0x10
[ 2929.380835][ T31] ret_from_fork+0x5d7/0x6f0
[ 2929.380880][ T31] ? __pfx_kthread+0x10/0x10
[ 2929.380927][ T31] ret_from_fork_asm+0x1a/0x30
[ 2929.381004][ T31]
[ 2929.381023][ T31] Sending NMI from CPU 0 to CPUs 1:
[ 2929.514802][ C1] NMI backtrace for cpu 1
[ 2929.514824][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2929.514857][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2929.514873][ C1] RIP: 0010:enqueue_task+0xaa/0x4e0
[ 2929.514908][ C1] Code: 4c 8d a3 00 05 00 00 48 b8 00 00 00 00 00 fc ff df 4c 89 e2 48 c1 ea 03 80 3c 02 00 0f 85 de 02 00 00 48 83 bb 00 05 00 00 00 <0f> 84 ba 01 00 00 0f 1f 44 00 00 48 83 c4 08 5b 5d 41 5c 41 5d 41
[ 2929.514933][ C1] RSP: 0018:ffffc90000a08a58 EFLAGS: 00000046
[ 2929.514954][ C1] RAX: dffffc0000000000 RBX: ffff888027ec1e00 RCX: ffffc90000a089d4
[ 2929.514972][ C1] RDX: 1ffff11004fd8460 RSI: ffffffff8de2654d RDI: ffffffff8c162900
[ 2929.514989][ C1] RBP: ffff8880b853a440 R08: 0000000000000000 R09: fffffbfff1c95cca
[ 2929.515006][ C1] R10: ffffffff8e4ae657 R11: 0000000000000001 R12: ffff888027ec2300
[ 2929.515022][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8880b853a440
[ 2929.515038][ C1] FS: 0000000000000000(0000) GS:ffff8881247c6000(0000) knlGS:0000000000000000
[ 2929.515063][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2929.515080][ C1] CR2: 000056243da5c0a8 CR3: 000000000e380000 CR4: 00000000003526f0
[ 2929.515107][ C1] Call Trace:
[ 2929.515115][ C1]
[ 2929.515128][ C1] ttwu_do_activate+0x17e/0xb00
[ 2929.515155][ C1] try_to_wake_up+0x7a1/0x1870
[ 2929.515181][ C1] ? __pfx_try_to_wake_up+0x10/0x10
[ 2929.515210][ C1] kick_pool+0x2a0/0x7a0
[ 2929.515242][ C1] __queue_work+0x987/0x1160
[ 2929.515286][ C1] ? __pfx_delayed_work_timer_fn+0x10/0x10
[ 2929.515311][ C1] call_timer_fn+0x19a/0x620
[ 2929.515346][ C1] ? __pfx_call_timer_fn+0x10/0x10
[ 2929.515383][ C1] ? __run_timers+0x559/0x960
[ 2929.515416][ C1] ? __pfx_delayed_work_timer_fn+0x10/0x10
[ 2929.515442][ C1] __run_timers+0x569/0x960
[ 2929.515479][ C1] ? __pfx___run_timers+0x10/0x10
[ 2929.515525][ C1] run_timer_base+0x114/0x190
[ 2929.515597][ C1] ? __pfx_run_timer_base+0x10/0x10
[ 2929.515669][ C1] ? rcu_is_watching+0x12/0xc0
[ 2929.515697][ C1] run_timer_softirq+0x1a/0x40
[ 2929.515729][ C1] handle_softirqs+0x219/0x8e0
[ 2929.515790][ C1] ? __pfx_handle_softirqs+0x10/0x10
[ 2929.515823][ C1] __irq_exit_rcu+0x109/0x170
[ 2929.515850][ C1] irq_exit_rcu+0x9/0x30
[ 2929.515877][ C1] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 2929.515908][ C1]
[ 2929.515915][ C1]
[ 2929.515925][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2929.515954][ C1] RIP: 0010:pv_native_safe_halt+0xf/0x20
[ 2929.515984][ C1] Code: 5c 65 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d c3 d1 19 00 fb f4 3c 0d 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[ 2929.516009][ C1] RSP: 0018:ffffc90000197df8 EFLAGS: 000002c6
[ 2929.516028][ C1] RAX: 000000000203b46d RBX: 0000000000000001 RCX: ffffffff8b903bf9
[ 2929.516044][ C1] RDX: 0000000000000000 RSI: ffffffff8de4b9c6 RDI: ffffffff8c162900
[ 2929.516060][ C1] RBP: ffffed1003cd8b40 R08: 0000000000000001 R09: ffffed10170a6655
[ 2929.516076][ C1] R10: ffff8880b85332ab R11: 0000000000000000 R12: 0000000000000001
[ 2929.516098][ C1] R13: ffff88801e6c5a00 R14: ffffffff90ab6b90 R15: 0000000000000000
[ 2929.516120][ C1] ? ct_kernel_exit+0x139/0x190
[ 2929.516155][ C1] default_idle+0x13/0x20
[ 2929.516188][ C1] default_idle_call+0x6d/0xb0
[ 2929.516223][ C1] do_idle+0x391/0x510
[ 2929.516255][ C1] ? __pfx_do_idle+0x10/0x10
[ 2929.516280][ C1] ? trace_sched_exit_tp+0x2f/0x120
[ 2929.516324][ C1] cpu_startup_entry+0x4f/0x60
[ 2929.516349][ C1] start_secondary+0x21d/0x2b0
[ 2929.516386][ C1] ? __pfx_start_secondary+0x10/0x10
[ 2929.516425][ C1] common_startup_64+0x13e/0x148
[ 2929.516463][ C1]
[ 2929.521245][ T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 2929.905736][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 2929.917412][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 2929.927761][ T31] Call Trace:
[ 2929.931329][ T31]
[ 2929.934489][ T31] dump_stack_lvl+0x3d/0x1f0
[ 2929.939149][ T31] vpanic+0x6e8/0x7a0
[ 2929.943213][ T31] ? __pfx_vpanic+0x10/0x10
[ 2929.947873][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 2929.954164][ T31] panic+0xca/0xd0
[ 2929.958025][ T31] ? __pfx_panic+0x10/0x10
[ 2929.962597][ T31] ? preempt_schedule_thunk+0x16/0x30
[ 2929.968296][ T31] ? nmi_trigger_cpumask_backtrace+0x1b1/0x300
[ 2929.974801][ T31] ? watchdog+0xd78/0x1260
[ 2929.979819][ T31] ? watchdog+0xd6b/0x1260
[ 2929.984304][ T31] watchdog+0xd89/0x1260
[ 2929.988831][ T31] ? __pfx_watchdog+0x10/0x10
[ 2929.994478][ T31] ? lockdep_hardirqs_on+0x7c/0x110
[ 2930.000970][ T31] ? __kthread_parkme+0x19e/0x250
[ 2930.007109][ T31] ? __pfx_watchdog+0x10/0x10
[ 2930.012210][ T31] kthread+0x3c5/0x780
[ 2930.016607][ T31] ? __pfx_kthread+0x10/0x10
[ 2930.021352][ T31] ? rcu_is_watching+0x12/0xc0
[ 2930.026450][ T31] ? __pfx_kthread+0x10/0x10
[ 2930.031108][ T31] ret_from_fork+0x5d7/0x6f0
[ 2930.035796][ T31] ? __pfx_kthread+0x10/0x10
[ 2930.040806][ T31] ret_from_fork_asm+0x1a/0x30
[ 2930.045843][ T31]
[ 2930.049522][ T31] Kernel Offset: disabled
[ 2930.053964][ T31] Rebooting in 86400 seconds..