last executing test programs: 7.410076936s ago: executing program 0 (id=528): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000a00), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_FLUSH_PMKSA(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd70caff845483f8bcf10008000300", @ANYRES32=0x0, @ANYBLOB="0c0099000200000000000000"], 0x28}}, 0x2004c054) r3 = socket(0xa, 0x1, 0x100) setsockopt$auto(r3, 0x29, 0x17, 0x0, 0x1) r4 = openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace_marker_raw\x00', 0x4000, 0x0) write$auto_tracing_mark_raw_fops_trace(r4, &(0x7f0000000180)="562da9288eeb7312b8116497fe6855efba71f867227b1a9f9e22fbeb63920a0b4721f1157f98c7e3d8ac4ace261ab0bf5306fe2d71ae3830a97794d6faa58852e2beca48ef4d345e8f1f506a4c8d8608aa29ee072a77441f9160c532652e89e82573e48ad3ec5fb57602194243a2fb5874d5dc0892af053414a03691a145f0e0f972c25f1c3e765abd3f6a0b3cee8ae92d9b32970cb198bbcce981ba38670ae81461379cf42621954778946bc3", 0xad) r5 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_NEW(r0, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000140)={0x2c, r5, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0x1}, @OVS_VPORT_ATTR_TYPE={0x8, 0x2, 0x4}, @OVS_VPORT_ATTR_NAME={0x4}, @OVS_VPORT_ATTR_UPCALL_PID={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040010}, 0x800) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.7/usb8/power/wakeup_active\x00', 0x8a00, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000100)=""/51, 0x33) r7 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/io\x00', 0x2, 0x0) read$auto_proc_single_file_operations_base(r7, &(0x7f00000000c0)=""/31, 0x1f) 7.070882527s ago: executing program 0 (id=531): keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x3) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x2, 0x1) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x848000000015, 0x805, 0x0) socket(0x2, 0x801, 0x106) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2000000000000021, 0x2, 0x10000000000002) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) connect$auto(0x3, 0x0, 0x54) clone$auto(0x8, 0xfffffffffffffff7, 0xffffffffffffffff, 0xfffffffffffffffc, 0x9) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000100)=ANY=[@ANYBLOB="62008010", @ANYRES32=r0, @ANYBLOB="01002cbd7000fbdbdf250a"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) r1 = socket(0x18, 0x800, 0x1) connect$auto(r1, &(0x7f0000000000)=@in={0x2, 0x100, @empty}, 0x3a) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000005c0), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r2, @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4}, 0x4000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) socket(0x2b, 0x1, 0x1) socket(0xa, 0x801, 0x106) socket(0xa, 0x801, 0x84) getcwd$auto(0x0, 0xffffffffffffffff) getsockopt$auto(0x6, 0x100084, 0x76, 0x0, 0x0) 6.987887365s ago: executing program 3 (id=533): r0 = socket(0x10, 0x2, 0x9) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, 0x0, 0x80) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = socket(0x2, 0x2, 0x1) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/zram0/reset\x00', 0xa001, 0x0) socket(0xa, 0x801, 0x84) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r1, 0x10000}, 0x10) mmap$auto(0x0, 0x9, 0xff7, 0x8000000008011, 0x4, 0x0) socket(0x10, 0x2, 0xb) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setxattr$auto(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='\x00', &(0x7f00000000c0)="f19bea4f4361af8982b8b530d132978df98fcc37f088aaf5181c16ed1353a3ef32fc65ac1bfad831990c864ac02538f1ef75766feac54250f91c0540c6f2c5adf73bcf10a2f0f8e311472999c2878d513400e38ea57ffe3d3cd07c5c747e8dd247dd2d2bd79c1f8359a0417865ec065d6ff0f921e2a0499137d81495727c580f5d2c8f35cc1fa0b1b35c14ef637ee9869380144c91fc33aaca97c700252fdcebce3932f835d0c27ec0a680d1", 0xe52, 0x7) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/key-users\x00', 0x0, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) pread64$auto(r2, 0x0, 0xf42c, 0x2) 6.40062019s ago: executing program 3 (id=536): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x27, 0x3, 0xffffffff) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10002cbd7000fddbdf251c"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video62\x00', 0x81, 0x0) ioctl$auto_v4l2_fops_v4l2_dev(r1, 0xffffffff, 0x0) close_range$auto(0x2, 0x8, 0x0) clone$auto(0x7, 0x7fffffffffffffff, 0xffffffffffffffff, 0x0, 0x1) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x5) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16, @ANYBLOB="2f212dbd7000fcdbdf252100000008000300", @ANYRES32=r2, @ANYBLOB="14002c8008003400a108f4faa100f01173f40e05eecc", @ANYRES32=0x0, @ANYBLOB='\b\x00v\x00', @ANYRES32=0x0, @ANYBLOB], 0x30}}, 0x4000000) socket(0x3, 0x800, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/mm/ksm/advisor_target_scan_time\x00', 0x0, 0x0) r3 = syz_clone(0x123014800, 0x0, 0x0, 0x0, 0x0, 0x0) move_pages$auto(r3, 0x1002, 0x0, 0x0, 0x0, 0x2) r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp1\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SYNC(r4, 0x5001, 0xfffffffffffffffc) mmap$auto(0x0, 0x4, 0xffd, 0x8000000008012, 0x3, 0x0) ioperm$auto(0x7, 0x6, 0xffffffffffff4064) mmap$auto(0x0, 0x1000000000020009, 0xdf, 0xeb1, r0, 0x8000) 6.043296693s ago: executing program 2 (id=537): openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x402, 0x0) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000007480)='/dev/cec12\x00', 0x400, 0x0) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$auto_UI_BEGIN_FF_ERASE(r0, 0xc00c55ca, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) socket(0x18, 0x2, 0x0) quotactl_fd$auto(0xffffffffffffffff, 0x1, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb3, 0x401, 0x8000) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) socket(0x2b, 0x1, 0x1) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0x15, 0x5, 0x0) bind$auto(r2, 0x0, 0x6a) sendmsg$auto(r2, 0x0, 0x5) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0xfffffdfe, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x7, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) read$auto(0x3, 0x0, 0x80) 6.026330642s ago: executing program 0 (id=538): r0 = socket(0x2, 0x2, 0x0) close_range$auto(r0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = prctl$auto(0x1000000003b, 0x1, 0x0, 0x4000000000006, 0xfd1c) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/pci/resource_alignment\x00', 0x500, 0x0) mmap$auto(0x4, 0x56, 0x0, 0x18, 0xfffffffffffffffa, 0x6) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) arch_prctl$auto_ARCH_MAP_VDSO_X32(0x2001, 0x9) 5.278612553s ago: executing program 1 (id=541): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x23, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x4) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x3, 0x8000000000000000, 0x0) socket(0xa, 0x3, 0x6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0xd, 0x0) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x101140, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) ioctl$auto_SNDCTL_DSP_SPEED(r3, 0xc0045002, 0x0) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8000, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) 4.839420519s ago: executing program 2 (id=542): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/sound/ctl-led/mic/brightness\x00', 0x109140, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001100)=""/192, 0xc0) mmap$auto(0x0, 0xb, 0x2, 0x17, 0x2, 0x0) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000200), 0x101802, 0x0) ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000000080)={0x3, 0x1, 0x0, 0xffffff71, 0x10000}) r2 = open(0x0, 0xc0000, 0x1) mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8003) clone$auto(0x100000000008003, 0x1ff, 0xffffffffffffffff, 0xfffffffffffffffc, 0xa) write$auto_msr_fops_msr(r2, 0x0, 0x0) getsockname$auto(0xffffffffffffffff, 0x0, 0x0) r3 = fcntl$auto(0x0, 0x407, 0x100000) ioctl$auto_USBDEVFS_IOCTL32(r3, 0xc00c5512, &(0x7f0000000000)={0x2ddd, 0x1, 0x8}) acct$auto(&(0x7f0000000040)='/dev/snd/timer\x00') madvise$auto(0x0, 0xffffffffffff0005, 0x19) io_uring_setup$auto(0x6, 0x0) 4.064306328s ago: executing program 3 (id=543): close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto(r0, 0x0, 0x40) write$auto(0x3, 0x0, 0x2) write$auto(0x3, 0x0, 0x4) timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @private=0xa010100}, 0x6a) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2, 0x5, 0x0) timer_settime$auto(0x0, 0xd80, &(0x7f0000000040)={{0x40000000000026b, 0x4}, {0x0, 0x83}}, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/servers\x00', 0x141400, 0x0) mmap$auto(0xffffffffffffffff, 0x8000, 0xdf, 0xeb3, 0x401, 0x9a) socket(0x2, 0x3, 0x2) r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) clock_gettime$auto(0xa, 0xffffffffffffffff) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000d00)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000cc0)={&(0x7f0000001200)=ANY=[@ANYBLOB='h\a\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002abd7000fcdbdf250a000000490201809c04f9d8a9267a661f48d77b0ac534ae02345df61a2a22f94dd55d63586cf838a6affbd13d3e6a996a122352471b293b519b56920973f0f86ccc152d928b988d6dcb7cadee89839596c56b2c6fc7f6745de76a1740477455f66b914ad3728fe25026087f5ebce926280c0e0363505d5dfed1e75d5ef8a9e0a164986ae37c46a83e110478de68febe75115af7daf6e6039f02baa48fe4462b087183f173b06de9e6ba6cbe42c2f846c702043114be916604ced35e7628fdcafabb5aaadd8314cee22df0f9f032ec4ec88af96674415ee9f52d61509b4d34539a6d5534a6f986334c8b27fb7ead3c789aa6f15b8cc0d10800c6", @ANYRES32=r2, @ANYBLOB="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", @ANYRES32=r1, @ANYBLOB, @ANYRES32=0xee00, @ANYBLOB="000000080004000700000056010380fd59945248dc48ad2eb1e1cccfeed61d0534ba229215e731cdc2bf730f0947a425fbe6a3419edf1f8b4ffa1ce9be9e53eb49164790b1f4a382a9cfa7e169ea142e4c0400c1b3cd866980726d8f2f4d18f135a4a5b1ce754b03c401f9985b0d2f70b95cc906c0898f45bb708aed07788b7f24f753c4c645a4d916497540f72e76b28942be719f65ecff89553987fa51003f808ff0838fcfec582d851a46311ec177a5d4fb976b0f855197daa8d04aed70be2c7aeb7abcd2448e44b1b96a21f9cc48336bdfda899f09681fd2e180c12501a6ab8d0f76bd9c0800240000", @ANYRES32=0x0, @ANYBLOB="0000009d2a04e51b23168721d1b2e8e9e397ab8d221183c86768ea3bcbcaeee2ef3854ecfe61e353e1c340d0fcdea27094566eb1bb57bb4c148124fc8ebcd42b1e0f07fed36bf8f26c77f6386a2eab9b282c602cb6fa8566be9dfef96cde4d5377befa3fde60235bebc9ef9227418d2df4c00000280003801c003c800c00800062c1000000000000040059800800d900", @ANYRES32=0x0, @ANYBLOB='\b\x000\x00', @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r1, @ANYBLOB="000101000c2734fa8aa5fb3105d0b020d8f6cf7a94cc17b151670d415335194a60109a11dfb8fb4f800d7ad3e0c61a7ff69b189506d03bdf4e1da048b83535b5a1de37552bd1a8fe67335ba8ef57157b845ca1f66fe652c785e528cf3ad7b3f973232e647488156c3df287062327f9462d72fb4a9837c788b6f6eaa152edd55b4d8d23fe5e09cd6d238dd2bfb6e971ee5f9b56ad6bc242f0ab48004f891e3a6fa0fc9af6fd23fac94ab4cfea3d4a085a3512b2898b5b5b95878ec6e9aaa8846905c899e6c2d692082c5c0312d200e4663acaa7003e5aed3ff199a902cb5f38f889"], 0x768}, 0x1, 0x0, 0x0, 0x44000}, 0x200048c1) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r4) ioctl$auto_KVM_CREATE_VM(r3, 0xc048aeca, 0x0) (fail_nth: 2) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff) 3.399470562s ago: executing program 2 (id=544): r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sysvipc/shm\x00', 0x40000, 0x0) socket(0x2, 0x800, 0x206) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) clock_nanosleep$auto(0xfffffff2, 0x5, &(0x7f0000000000)={0x4, 0x4203195}, 0x0) r1 = getpgid$auto(0x0) pidfd_send_signal$auto_SIGCONT(r0, 0x12, &(0x7f0000000000)={@siginfo_0_0={0x1, 0x6, 0x5, @_timer={r1, 0x80000000, @sival_ptr=&(0x7f0000000100)="35dcfc043469760a7d7aa6f8257dd6f6e944012ec999e4f4f97df185982f3091d2666a46411509ea73cd662ae3c9879d70eb2e61af2d4981d0cb2e36bb7bcd7ac3a92f7d8c76bbc997dcbd7a98c8ca080bd0581d7d1bbd26e2d80d2c526984ad966e1d8437556e1b249bafc01768021a2e4361d9fcb9f3384e71b8be3bd0beb54b8dcb17088ed9831a063ae62be44ef7045bbad4bd778c22526d67bbbfeceec948970421a4ac8f49a85f6e0d5118502889133198dcc0f1411e9bc781ac2e166418dae469f04984a7723d04690ea39827a7b6ce9f34c0f100730e304e1efebea07ac32916d7be04d62ab1a90f", 0x1}}}, 0x8) close_range$auto(0x2, 0x8, 0x0) 3.329225282s ago: executing program 0 (id=545): close_range$auto(0x2, 0xa, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) read$auto(r0, 0x0, 0x40) write$auto(0x3, 0x0, 0x2) write$auto(0x3, 0x0, 0x4) timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @private=0xa010100}, 0x6a) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x2, 0x5, 0x0) timer_settime$auto(0x0, 0xd80, &(0x7f0000000040)={{0x40000000000026b, 0x4}, {0x0, 0x83}}, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/servers\x00', 0x141400, 0x0) mmap$auto(0xffffffffffffffff, 0x8000, 0xdf, 0xeb3, 0x401, 0x9a) socket(0x2, 0x3, 0x2) r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) clock_gettime$auto(0xa, 0xffffffffffffffff) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000d00)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000cc0)={&(0x7f0000001200)=ANY=[@ANYBLOB='h\a\x00\x00', @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="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", @ANYRES32=r1, @ANYBLOB, @ANYRES32=0xee00, @ANYBLOB="000000080004000700000056010380fd59945248dc48ad2eb1e1cccfeed61d0534ba229215e731cdc2bf730f0947a425fbe6a3419edf1f8b4ffa1ce9be9e53eb49164790b1f4a382a9cfa7e169ea142e4c0400c1b3cd866980726d8f2f4d18f135a4a5b1ce754b03c401f9985b0d2f70b95cc906c0898f45bb708aed07788b7f24f753c4c645a4d916497540f72e76b28942be719f65ecff89553987fa51003f808ff0838fcfec582d851a46311ec177a5d4fb976b0f855197daa8d04aed70be2c7aeb7abcd2448e44b1b96a21f9cc48336bdfda899f09681fd2e180c12501a6ab8d0f76bd9c0800240000", @ANYRES32=0x0, @ANYBLOB="0000009d2a04e51b23168721d1b2e8e9e397ab8d221183c86768ea3bcbcaeee2ef3854ecfe61e353e1c340d0fcdea27094566eb1bb57bb4c148124fc8ebcd42b1e0f07fed36bf8f26c77f6386a2eab9b282c602cb6fa8566be9dfef96cde4d5377befa3fde60235bebc9ef9227418d2df4c00000280003801c003c800c00800062c1000000000000040059800800d900", @ANYRES32=0x0, @ANYBLOB='\b\x000\x00', @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r1, @ANYBLOB="000101000c2734fa8aa5fb3105d0b020d8f6cf7a94cc17b151670d415335194a60109a11dfb8fb4f800d7ad3e0c61a7ff69b189506d03bdf4e1da048b83535b5a1de37552bd1a8fe67335ba8ef57157b845ca1f66fe652c785e528cf3ad7b3f973232e647488156c3df287062327f9462d72fb4a9837c788b6f6eaa152edd55b4d8d23fe5e09cd6d238dd2bfb6e971ee5f9b56ad6bc242f0ab48004f891e3a6fa0fc9af6fd23fac94ab4cfea3d4a085a3512b2898b5b5b95878ec6e9aaa8846905c899e6c2d692082c5c0312d200e4663acaa7003e5aed3ff199a902cb5f38f889"], 0x768}, 0x1, 0x0, 0x0, 0x44000}, 0x200048c1) r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r4) ioctl$auto_KVM_CREATE_VM(r3, 0xc048aeca, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff) 3.317737242s ago: executing program 1 (id=546): unshare$auto(0x40000080) (async) open(&(0x7f0000000000)='./file0\x00', 0x2841c2, 0x99) (async) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="0200", @ANYRESDEC], 0xf8}, 0x1, 0x0, 0x0, 0x40000}, 0x50) (async) sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, 0x0, 0x5, 0x0, 0x5, 0x1000}, 0x5}, 0x2, 0x100) (async) r0 = socket(0x2, 0x80002, 0x73) sendmmsg$auto(r0, &(0x7f0000000180)={{&(0x7f0000000000), 0x8001, 0x0, 0x4, 0x0, 0xcf, 0x7fff}, 0xbb9}, 0x3, 0xfeb) 3.166030279s ago: executing program 3 (id=547): keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x5, 0x8000) close_range$auto(0x0, 0xffffffffffffffff, 0x3) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x2, 0x1) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x848000000015, 0x805, 0x0) socket(0x2, 0x801, 0x106) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2000000000000021, 0x2, 0x10000000000002) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) connect$auto(0x3, 0x0, 0x54) clone$auto(0x8, 0xfffffffffffffff7, 0xffffffffffffffff, 0xfffffffffffffffc, 0x9) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000100)=ANY=[@ANYBLOB="62008010", @ANYRES32=r0, @ANYBLOB="01002cbd7000fbdbdf250a"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) r1 = socket(0x18, 0x800, 0x1) connect$auto(r1, &(0x7f0000000000)=@in={0x2, 0x100, @empty}, 0x3a) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000005c0), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r2, @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4}, 0x4000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) socket(0x2b, 0x1, 0x1) socket(0xa, 0x801, 0x106) socket(0xa, 0x801, 0x84) getcwd$auto(0x0, 0xffffffffffffffff) getsockopt$auto(0x6, 0x100084, 0x76, 0x0, 0x0) 2.782132166s ago: executing program 1 (id=548): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001480)='/proc/self/net/rxrpc/conns\x00', 0x0, 0x0) pread64$auto(r0, &(0x7f0000000040)='veth1\x00', 0x200000000006, 0x5) ioctl$auto_XFS_IOC_OPEN_BY_HANDLE(0xffffffffffffffff, 0xc038586b, &(0x7f0000000240)={0xffffffffffffffff, &(0x7f0000000040)="075012b77e2a6125fc0ee15ae627691172b6128e7c985230e4cf369de25334bb122ca615f02d6796e729f32845d28078d5bd5e9d4d430f97e86bccda2ec8f2137c61910974b0e744a527627473c554ef7c86a7ab66275b712a228ebc95062fd9f7626d387b299e85ac34070d76982238263368d511c9793e90e70f20a979fd408c6106012da44c1809938f1d46431194b9d02409900f77588598134562aec0fd0927de78d25f794a939f5d93d24ea4178f96d5eca34e4ecb4ac74754fd51406a8ac1e5fcc28adf563271dce377", 0x4, &(0x7f0000000140)="7a5199626da578febe0976450ea99087323b0d885c2a", 0xfff, &(0x7f0000000180)="32a14673b74762ee2f2ff88aea7f68d3eae8b5ff764703a8c8fe0221d4f848357a564eb3818013856a78425fd30f37e47f106ff35840265972eb124aedc58590a741825ad71e9afacf8ebf4468faaff023390297422c", &(0x7f0000000200)=0x3}) r2 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000340), r1) sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x14, r2, 0x200, 0x70bd29, 0x25dfdbff, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40801}, 0x4084810) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/net/igmp\x00', 0x200, 0x0) pread64$auto(r3, 0x0, 0x3f, 0x7fff) r4 = socket(0x2, 0x2, 0x1) r5 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r4, 0x10000}, 0x10) mmap$auto(0x0, 0x9, 0xffffffff, 0x8000200008011, r5, 0x8000) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r6 = socket(0xa, 0x2, 0x0) setsockopt$auto(r6, 0x29, 0x37, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110) close_range$auto(0x2, 0x8, 0x0) cachestat$auto(r1, &(0x7f0000000280)={0x44b, 0x3}, &(0x7f00000002c0)={0x7, 0x1a, 0xfffffffffffffffc, 0x2, 0x8}, 0x7) r7 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000002680), 0x0, 0x0) r8 = openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, &(0x7f0000000000), 0x2200, 0x0) ioctl$auto_FS_IOC_GETFLAGS(r7, 0x80086601, r8) 2.602498644s ago: executing program 2 (id=549): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) madvise$auto(0x10400000000000, 0xffffffffffff0001, 0x15) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0) ioctl$auto(0x3, 0x227c, 0x3b) move_pages$auto(0x1, 0x2000000000003, 0xffffffffffffffff, 0x0, 0x0, 0x8000000000000000) 2.448285309s ago: executing program 0 (id=550): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x23, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x4) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x3, 0x8000000000000000, 0x0) socket(0xa, 0x3, 0x6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) io_uring_setup$auto(0xd, 0x0) migrate_pages$auto(0x0, 0x99, 0x0, 0x0) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x101140, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) ioctl$auto_SNDCTL_DSP_SPEED(r3, 0xc0045002, 0x0) prctl$auto_PR_SET_VMA_ANON_NAME(0x54, 0x0, 0x0, 0x8, 0x9) r4 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) getdents$auto(r4, 0x0, 0x400018) close_range$auto(0x2, 0x8000, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x10, 0x2, 0x0) 2.189102681s ago: executing program 1 (id=551): r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f00000000c0), 0xffffffff}, 0x6, 0x0) syz_clone3(&(0x7f0000001180)={0x4010000, &(0x7f0000000000)=0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0), {0x35}, &(0x7f0000000100)=""/54, 0x36, &(0x7f0000000140)=""/4096, &(0x7f0000001140)=[r0, 0x0, 0x0], 0x3}, 0x58) ioctl$auto_SNDRV_CTL_IOCTL_TLV_READ(0xffffffffffffffff, 0xc008551a, &(0x7f0000000000)={0x9, 0x8}) write$auto(r1, &(0x7f0000001340)='/sys/devices/platform/vkms/graphics/fb0/rotate\x00', 0x80) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/net/bonding_masters\x00', 0x100, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xe) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vkms/graphics/fb0/rotate\x00', 0x141c01, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/net\x00') setresuid$auto(0x0, 0x8, 0x8000) open_by_handle_at$auto(r3, 0x0, 0xfffffffd) write$auto(r2, &(0x7f0000000000)='/sys/devices/platform/vkms/graphics/fb0/rotate\x00', 0xe18) msgget$auto(0x7, 0x7) waitid$auto_P_PIDFD(0x3, r1, &(0x7f0000001200)={@_si_pad}, 0xfffffff5, &(0x7f0000001280)={{0x2, 0xd2}, {0x8, 0x1}, 0xfffffffffffffffd, 0x8, 0x3, 0x100000000, 0x100000000, 0x9, 0xfffffffffffff81a, 0x6, 0xd9, 0x3, 0x8001, 0x1cf, 0x1, 0x4}) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x342, 0xffeb) 2.01933074s ago: executing program 3 (id=552): r0 = creat$auto(&(0x7f0000000000)='++\x00', 0xfff6) select$auto(0x3, 0x0, &(0x7f0000000100)={[0x9, 0x7, 0x0, 0x8a, 0xfffffffffffffffc, 0x7ffffffffffffffd, 0xc5, 0xffffffffffffffff, 0x9, 0xffff, 0x4000000000000000, 0xd, 0x3, 0x200000201, 0x7, 0x6]}, 0x0, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7400fddbdf250300000004000800100003800c00098008"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010600bd7000fbdbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000580)='/dev/audio\x00', 0x0, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f0000000040)) write$auto(r0, &(0x7f0000000100)='/d7\x00.*\xd9%\x00\x00\x00\x00\x00rF\xaf\xa5\xe7\xbe\x01\x05\x7f\x8e^\x9d\xd56V\xd0\xb3F\x97\r$\xd5\xa7\xa0\xc1\xdfx\x94\x0e\xc8\xb2\r\x16\xc4X\xd2\xa4\t\xc8\xf4\x04\xcc\x82\x97\x9c&#fK\xca\x0fR\x12\xad\xea\xbe\x96\n\x99\xc0N\xe5e\xa1,V\xe3\x8c\xa2UG\xf8R\xd9\xb5\x8fh2\xbdh\x81\xb2\x05\xad\x97>\n\xc1\xc3\xdaq\x12\v\xf9\x05\x00'/120, 0x5) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x0, 0x1c94, 0x2) socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) getcwd$auto(0x0, 0xffffffffffffffff) inotify_init1$auto(0x3000000000000) inotify_add_watch$auto(0x4, 0x0, 0x80000008) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x200, 0x70bd29, 0x25dfdbfb, {}, [@NFSD_A_SERVER_LEASETIME={0x8}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f000001f300), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r2], 0x1ac}, 0x1, 0x0, 0x0, 0x40881}, 0x40000) 1.69671954s ago: executing program 1 (id=553): r0 = socket(0x2, 0x2, 0x0) close_range$auto(r0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = prctl$auto(0x1000000003b, 0x1, 0x0, 0x4000000000006, 0xfd1c) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/pci/resource_alignment\x00', 0x500, 0x0) mmap$auto(0x4, 0x56, 0x0, 0x18, 0xfffffffffffffffa, 0x6) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) arch_prctl$auto_ARCH_MAP_VDSO_X32(0x2001, 0x9) 1.427713113s ago: executing program 2 (id=554): openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x402, 0x0) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000007480)='/dev/cec12\x00', 0x400, 0x0) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$auto_UI_BEGIN_FF_ERASE(r0, 0xc00c55ca, 0x0) mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000) socket(0x18, 0x2, 0x0) quotactl_fd$auto(0xffffffffffffffff, 0x1, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb3, 0x401, 0x8000) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) socket(0x2b, 0x1, 0x1) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000680)='/sys/devices/system/node/node1/hugepages/hugepages-1048576kB/demote_size\x00', 0x8000, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000700)=""/228, 0xe4) r3 = socket(0x15, 0x5, 0x0) bind$auto(r3, 0x0, 0x6a) sendmsg$auto(r3, 0x0, 0x5) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x7, 0x9, 0x2, 0xfffffffffffffffd]}, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x5, 0x1, 0x3ff) read$auto(0x3, 0x0, 0x80) 1.281997492s ago: executing program 3 (id=555): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x23, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x4) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x3, 0x8000000000000000, 0x0) socket(0xa, 0x3, 0x6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) io_uring_setup$auto(0xd, 0x0) migrate_pages$auto(0x0, 0x99, 0x0, 0x0) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x101140, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) ioctl$auto_SNDCTL_DSP_SPEED(r3, 0xc0045002, 0x0) prctl$auto_PR_SET_VMA_ANON_NAME(0x54, 0x0, 0x0, 0x8, 0x9) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) close_range$auto(0x2, 0x8, 0x0) close_range$auto(0x2, 0x8000, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x10, 0x2, 0x0) 382.485124ms ago: executing program 1 (id=556): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0x23, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x4) syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x3, 0x8000000000000000, 0x0) socket(0xa, 0x3, 0x6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) io_uring_setup$auto(0xd, 0x0) migrate_pages$auto(0x0, 0x99, 0x0, 0x0) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x101140, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4) ioctl$auto_SNDCTL_DSP_SPEED(r3, 0xc0045002, 0x0) prctl$auto_PR_SET_VMA_ANON_NAME(0x54, 0x0, 0x0, 0x8, 0x9) close_range$auto(0x2, 0x8000, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) 128.038081ms ago: executing program 0 (id=557): openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/dri/vkms/internal_clients\x00', 0xa8201, 0x0) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio6\x00', 0x1a3340, 0x0) ioctl$auto(r0, 0x5646, r0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/vlan/config\x00', 0x2800, 0x0) read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000001080)=""/244, 0xf4) r2 = socket(0x2000000000000021, 0x2, 0x10000000000002) sendmmsg$auto(0x3, &(0x7f00000000c0)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) setsockopt$auto(r2, 0x7fffffff, 0x4, 0x0, 0x4) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) setsockopt$auto(0xffffffffffffffff, 0x10000008, 0x8005, 0x0, 0x2) unshare$auto(0x40000080) socket(0x2a, 0x3, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) select$auto(0xffffffff, 0x0, &(0x7f0000000100)={[0xb, 0x4, 0x0, 0x8000000000000000, 0x1, 0x6, 0x9, 0x3, 0x83, 0x6, 0x1e, 0xa, 0x7ff, 0x7, 0x20000000008, 0x7]}, 0x0, 0x0) unshare$auto(0x40000080) openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x40044620, 0x0) r4 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0) ioctl$auto(r4, 0x9, 0xd) close_range$auto(0x2, 0x8, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd) acct$auto(&(0x7f0000000000)='}\x00') openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x8000, 0x0) acct$auto(&(0x7f0000000140)='@\x00') read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000000c0)=""/89, 0x59) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_NODE_GET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)={0x14, r7, 0x301, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x204c000}, 0x4) 0s ago: executing program 2 (id=558): socket(0x1d, 0x2, 0x6) r0 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000100)=@can={0x1d, r1, 0xfd}, 0x6a) mmap$auto(0x0, 0x4ff, 0xffffffffffffffff, 0x9b7e, 0x2, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x6, 0x9}, 0x100007}, 0x31cd3c7c, 0xfff) mmap$auto(0x100000003, 0xe, 0xdb, 0x9b72, 0x5, 0x0) socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x10000000084, 0x1e, 0x0, 0x3) r2 = openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000000040), 0x600000, 0x0) r3 = socket(0x2, 0x3, 0x4) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0xffffffffffffffff, 0x0) readv$auto(r2, 0x0, 0x17) r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r4, 0xc004743e, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRESHEX=r4, @ANYBLOB="1b00040008000c000380080014800400158012000100898771f1c19f1761048590828847000004000280c1eb12d336763bd3a8bc00c690e8b14dcfc6016575046421fbb1d397df62a2ffb97cd1e1178ed10b12cd804e068bf68ece0fa828e44acb79ced3110f6dd222a882fa8330460d28231327f3bf6e4fca1117f14a311d4b66eeba102b9f7d378fdb8f9d46da9a50606d7ccfb66a3d3cbb8cfce1067cf1de7b69c3696f26f851567a80c10ab7e84bf445366801274bb44fd3072cbdf8e7a3efdd97d49613438af4dd37d600"/220], 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) ioctl$auto_PPPIOCSPASS(r4, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r4, 0x40107447, &(0x7f0000000180)={0x9, &(0x7f0000000000)={0x30, 0xf1, 0x2}}) socket(0x2a, 0x801, 0x259) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r6 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mprotect$auto(0x1ffff000, 0x8000000000000002, 0x5) ioctl$auto_VHOST_SET_FEATURES(r6, 0x4008af00, &(0x7f0000000000)=0x200000000) bind$auto(r3, &(0x7f0000000140)=@rc={0x1f, @none, 0x6}, 0x2000006e) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/bridge/bridge-nf-pass-vlan-input-dev\x00', 0x202, 0x0) socket(0x11, 0x80003, 0x300) socket$nl_generic(0x10, 0x3, 0x10) kernel console output (not intermixed with test programs): nlock_irqrestore+0x52/0x80 [ 183.495912][ T7193] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 183.495961][ T7193] ? __fget_files+0x206/0x3a0 [ 183.496012][ T7193] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 183.496057][ T7193] __x64_sys_ioctl+0x190/0x200 [ 183.496109][ T7193] do_syscall_64+0xcd/0x250 [ 183.496157][ T7193] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.496204][ T7193] RIP: 0033:0x7fa5c158cda9 [ 183.496231][ T7193] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.496262][ T7193] RSP: 002b:00007fa5c246b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 183.496290][ T7193] RAX: ffffffffffffffda RBX: 00007fa5c17a5fa0 RCX: 00007fa5c158cda9 [ 183.496311][ T7193] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 183.496329][ T7193] RBP: 00007fa5c160e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 183.496348][ T7193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 183.496365][ T7193] R13: 0000000000000000 R14: 00007fa5c17a5fa0 R15: 00007ffdd29cf6f8 [ 183.496405][ T7193] [ 184.349192][ T7205] can: request_module (can-proto-0) failed. [ 184.685808][ T7217] netlink: 28 bytes leftover after parsing attributes in process `syz.3.325'. [ 184.846418][ T7220] netlink: 'syz.2.326': attribute type 1 has an invalid length. [ 184.877546][ T7220] netlink: 'syz.2.326': attribute type 1 has an invalid length. [ 184.886082][ T29] audit: type=1326 audit(6033103113.923:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7213 comm="syz.0.324" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbed198cda9 code=0x0 [ 184.935385][ T7220] netlink: 'syz.2.326': attribute type 1 has an invalid length. [ 184.943665][ T7221] Process accounting resumed [ 184.996582][ T7220] netlink: 25 bytes leftover after parsing attributes in process `syz.2.326'. [ 185.316102][ T7227] netlink: 28 bytes leftover after parsing attributes in process `syz.3.328'. [ 186.418069][ T7259] netlink: 28 bytes leftover after parsing attributes in process `syz.0.338'. [ 186.893821][ T7268] FAULT_INJECTION: forcing a failure. [ 186.893821][ T7268] name failslab, interval 1, probability 0, space 0, times 0 [ 186.909347][ T7268] CPU: 1 UID: 0 PID: 7268 Comm: syz.1.337 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 186.909393][ T7268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 186.909431][ T7268] Call Trace: [ 186.909441][ T7268] [ 186.909454][ T7268] dump_stack_lvl+0x16c/0x1f0 [ 186.909507][ T7268] should_fail_ex+0x50a/0x650 [ 186.909544][ T7268] ? fs_reclaim_acquire+0xae/0x150 [ 186.909601][ T7268] should_failslab+0xc2/0x120 [ 186.909644][ T7268] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 186.909684][ T7268] ? vm_area_dup+0x21/0x300 [ 186.909739][ T7268] vm_area_dup+0x21/0x300 [ 186.909781][ T7268] __split_vma+0x181/0x1210 [ 186.909825][ T7268] ? __pfx___split_vma+0x10/0x10 [ 186.909882][ T7268] vms_gather_munmap_vmas+0x38b/0x1730 [ 186.909935][ T7268] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 186.909980][ T7268] ? mas_walk+0x6a6/0x910 [ 186.910038][ T7268] __mmap_region+0x328/0x2760 [ 186.910083][ T7268] ? __pfx___mmap_region+0x10/0x10 [ 186.910133][ T7268] ? hlock_class+0x4e/0x130 [ 186.910183][ T7268] ? mark_lock+0xb5/0xc60 [ 186.910226][ T7268] ? __pfx_mark_lock+0x10/0x10 [ 186.910263][ T7268] ? __pfx___schedule+0x10/0x10 [ 186.910306][ T7268] ? schedule+0x298/0x350 [ 186.910395][ T7268] ? cap_capable+0xb3/0x250 [ 186.910450][ T7268] mmap_region+0x1ab/0x3f0 [ 186.910498][ T7268] do_mmap+0xd8d/0x11b0 [ 186.910537][ T7268] ? __pfx_do_mmap+0x10/0x10 [ 186.910570][ T7268] ? __pfx_down_write_killable+0x10/0x10 [ 186.910630][ T7268] vm_mmap_pgoff+0x203/0x3a0 [ 186.910673][ T7268] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 186.910714][ T7268] ? __x64_sys_futex+0x1e1/0x4c0 [ 186.910762][ T7268] ? __x64_sys_futex+0x1ea/0x4c0 [ 186.910802][ T7268] ksys_mmap_pgoff+0x7d/0x5c0 [ 186.910853][ T7268] ? rcu_is_watching+0x12/0xc0 [ 186.910908][ T7268] __x64_sys_mmap+0x125/0x190 [ 186.910959][ T7268] do_syscall_64+0xcd/0x250 [ 186.911011][ T7268] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.911057][ T7268] RIP: 0033:0x7fa5c158cda9 [ 186.911083][ T7268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.911114][ T7268] RSP: 002b:00007fa5c244a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 186.911144][ T7268] RAX: ffffffffffffffda RBX: 00007fa5c17a6080 RCX: 00007fa5c158cda9 [ 186.911165][ T7268] RDX: 00000000000000df RSI: 0000000000020009 RDI: 0000000000000000 [ 186.911183][ T7268] RBP: 00007fa5c160e2a0 R08: 0000000000000401 R09: 0000000000008000 [ 186.911202][ T7268] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 186.911220][ T7268] R13: 0000000000000000 R14: 00007fa5c17a6080 R15: 00007ffdd29cf6f8 [ 186.911259][ T7268] [ 187.264852][ T7274] netlink: 8 bytes leftover after parsing attributes in process `syz.0.342'. [ 188.025546][ T29] audit: type=1326 audit(6033105165.075:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7285 comm="syz.1.344" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa5c158cda9 code=0x0 [ 189.066690][ T7305] netlink: 8 bytes leftover after parsing attributes in process `syz.0.349'. [ 189.561690][ T7310] Invalid ELF header magic: != ELF [ 189.737294][ T7320] netlink: 4 bytes leftover after parsing attributes in process `syz.3.352'. [ 189.979963][ T7329] FAULT_INJECTION: forcing a failure. [ 189.979963][ T7329] name failslab, interval 1, probability 0, space 0, times 0 [ 190.033535][ T7329] CPU: 0 UID: 0 PID: 7329 Comm: syz.1.354 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 190.033585][ T7329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 190.033605][ T7329] Call Trace: [ 190.033615][ T7329] [ 190.033626][ T7329] dump_stack_lvl+0x16c/0x1f0 [ 190.033678][ T7329] should_fail_ex+0x50a/0x650 [ 190.033717][ T7329] ? fs_reclaim_acquire+0xae/0x150 [ 190.033773][ T7329] should_failslab+0xc2/0x120 [ 190.033815][ T7329] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 190.033852][ T7329] ? lockdep_init_map_type+0x16d/0x7d0 [ 190.033895][ T7329] ? security_inode_alloc+0x3b/0x2b0 [ 190.033951][ T7329] security_inode_alloc+0x3b/0x2b0 [ 190.034004][ T7329] inode_init_always_gfp+0xce4/0x1030 [ 190.034046][ T7329] alloc_inode+0x82/0x230 [ 190.034085][ T7329] new_inode+0x22/0x210 [ 190.034123][ T7329] ? start_creating.part.0+0x25d/0x3a0 [ 190.034165][ T7329] __debugfs_create_file+0x11a/0x660 [ 190.034208][ T7329] debugfs_create_file_full+0x6d/0xa0 [ 190.034250][ T7329] kvm_dev_ioctl+0x14b6/0x1aa0 [ 190.034325][ T7329] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 190.034381][ T7329] ? __fget_files+0x206/0x3a0 [ 190.034421][ T7329] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 190.034472][ T7329] __x64_sys_ioctl+0x190/0x200 [ 190.034526][ T7329] do_syscall_64+0xcd/0x250 [ 190.034578][ T7329] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 190.034624][ T7329] RIP: 0033:0x7fa5c158cda9 [ 190.034651][ T7329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 190.034683][ T7329] RSP: 002b:00007fa5c246b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 190.034714][ T7329] RAX: ffffffffffffffda RBX: 00007fa5c17a5fa0 RCX: 00007fa5c158cda9 [ 190.034734][ T7329] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 190.034753][ T7329] RBP: 00007fa5c160e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 190.034772][ T7329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 190.034790][ T7329] R13: 0000000000000000 R14: 00007fa5c17a5fa0 R15: 00007ffdd29cf6f8 [ 190.034829][ T7329] [ 190.189884][ T7329] debugfs: out of free dentries, can not create file 'nx_lpage_splits' [ 192.846096][ T7361] FAULT_INJECTION: forcing a failure. [ 192.846096][ T7361] name failslab, interval 1, probability 0, space 0, times 0 [ 192.875644][ T7361] CPU: 0 UID: 0 PID: 7361 Comm: syz.0.358 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 192.875691][ T7361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 192.875710][ T7361] Call Trace: [ 192.875720][ T7361] [ 192.875733][ T7361] dump_stack_lvl+0x16c/0x1f0 [ 192.875787][ T7361] should_fail_ex+0x50a/0x650 [ 192.875823][ T7361] ? fs_reclaim_acquire+0xae/0x150 [ 192.875878][ T7361] ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0 [ 192.875922][ T7361] should_failslab+0xc2/0x120 [ 192.875963][ T7361] __kmalloc_cache_noprof+0x68/0x420 [ 192.875995][ T7361] ? snd_pcm_hw_param_first+0x301/0x6b0 [ 192.876037][ T7361] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 192.876086][ T7361] snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0 [ 192.876135][ T7361] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 192.876188][ T7361] ? calc_src_frames.isra.0+0x187/0x1d0 [ 192.876241][ T7361] snd_pcm_oss_change_params_locked+0x13d7/0x3a50 [ 192.876311][ T7361] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 192.876355][ T7361] ? __mutex_lock+0x1cc/0xb10 [ 192.876432][ T7361] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 192.876484][ T7361] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 192.876527][ T7361] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 192.876574][ T7361] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 192.876622][ T7361] ? __fget_files+0x206/0x3a0 [ 192.876663][ T7361] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 192.876707][ T7361] __x64_sys_ioctl+0x190/0x200 [ 192.876758][ T7361] do_syscall_64+0xcd/0x250 [ 192.876808][ T7361] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.876855][ T7361] RIP: 0033:0x7fbed198cda9 [ 192.876882][ T7361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 192.876913][ T7361] RSP: 002b:00007fbed281f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 192.876943][ T7361] RAX: ffffffffffffffda RBX: 00007fbed1ba5fa0 RCX: 00007fbed198cda9 [ 192.876965][ T7361] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 192.876984][ T7361] RBP: 00007fbed1a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 192.877002][ T7361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 192.877021][ T7361] R13: 0000000000000000 R14: 00007fbed1ba5fa0 R15: 00007ffd10a2e2f8 [ 192.877061][ T7361] [ 193.523162][ T7372] FAULT_INJECTION: forcing a failure. [ 193.523162][ T7372] name failslab, interval 1, probability 0, space 0, times 0 [ 193.678489][ T7372] CPU: 1 UID: 0 PID: 7372 Comm: syz.2.360 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 193.678539][ T7372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 193.678559][ T7372] Call Trace: [ 193.678568][ T7372] [ 193.678581][ T7372] dump_stack_lvl+0x16c/0x1f0 [ 193.678635][ T7372] should_fail_ex+0x50a/0x650 [ 193.678673][ T7372] ? fs_reclaim_acquire+0xae/0x150 [ 193.678729][ T7372] should_failslab+0xc2/0x120 [ 193.678771][ T7372] __kmalloc_noprof+0xce/0x4f0 [ 193.678807][ T7372] ? unwind_get_return_address+0x59/0xa0 [ 193.678873][ T7372] ? constrain_params_by_rules+0x176/0xca0 [ 193.678925][ T7372] constrain_params_by_rules+0x176/0xca0 [ 193.678979][ T7372] ? stack_trace_save+0x95/0xd0 [ 193.679042][ T7372] ? stack_depot_save_flags+0x28/0x9e0 [ 193.679081][ T7372] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 193.679136][ T7372] ? __kasan_kmalloc+0xaa/0xb0 [ 193.679170][ T7372] ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0 [ 193.679212][ T7372] ? snd_pcm_oss_change_params_locked+0x13d7/0x3a50 [ 193.679254][ T7372] ? snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 193.679312][ T7372] ? snd_interval_refine+0x2fa/0x580 [ 193.679349][ T7372] snd_pcm_hw_refine+0x7ec/0xad0 [ 193.679400][ T7372] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 193.679462][ T7372] ? _snd_pcm_hw_param_min+0x259/0x630 [ 193.679509][ T7372] snd_pcm_hw_param_near.constprop.0+0x597/0x8f0 [ 193.679561][ T7372] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 193.679607][ T7372] ? calc_src_frames.isra.0+0x187/0x1d0 [ 193.679660][ T7372] snd_pcm_oss_change_params_locked+0x13d7/0x3a50 [ 193.679721][ T7372] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 193.679764][ T7372] ? __mutex_lock+0x1cc/0xb10 [ 193.679843][ T7372] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 193.679892][ T7372] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 193.679936][ T7372] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 193.679980][ T7372] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 193.680036][ T7372] ? __fget_files+0x206/0x3a0 [ 193.680076][ T7372] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 193.680123][ T7372] __x64_sys_ioctl+0x190/0x200 [ 193.680177][ T7372] do_syscall_64+0xcd/0x250 [ 193.680228][ T7372] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.680273][ T7372] RIP: 0033:0x7f816d78cda9 [ 193.680299][ T7372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.680332][ T7372] RSP: 002b:00007f816e682038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 193.680363][ T7372] RAX: ffffffffffffffda RBX: 00007f816d9a5fa0 RCX: 00007f816d78cda9 [ 193.680383][ T7372] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 193.680403][ T7372] RBP: 00007f816d80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 193.680421][ T7372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 193.680439][ T7372] R13: 0000000000000000 R14: 00007f816d9a5fa0 R15: 00007ffc9ff4a618 [ 193.680480][ T7372] [ 194.381197][ T7379] syz.1.361: vmalloc error: size 12288, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 194.396414][ T7379] CPU: 1 UID: 0 PID: 7379 Comm: syz.1.361 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 194.396452][ T7379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 194.396470][ T7379] Call Trace: [ 194.396478][ T7379] [ 194.396489][ T7379] dump_stack_lvl+0x16c/0x1f0 [ 194.396541][ T7379] warn_alloc+0x24d/0x3a0 [ 194.396582][ T7379] ? __pfx_warn_alloc+0x10/0x10 [ 194.396627][ T7379] ? alloc_pages_mpol+0x25b/0x540 [ 194.396669][ T7379] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 194.396712][ T7379] ? trace_kmalloc+0x2d/0xd0 [ 194.396771][ T7379] __vmalloc_node_range_noprof+0x12bd/0x1530 [ 194.396820][ T7379] ? __snd_dma_alloc_pages+0x50/0x90 [ 194.396881][ T7379] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 194.396917][ T7379] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 194.396973][ T7379] ? __snd_dma_alloc_pages+0x50/0x90 [ 194.397026][ T7379] vmalloc_noprof+0x6b/0x90 [ 194.397058][ T7379] ? __snd_dma_alloc_pages+0x50/0x90 [ 194.397105][ T7379] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 194.397159][ T7379] __snd_dma_alloc_pages+0x50/0x90 [ 194.397223][ T7379] snd_dma_alloc_dir_pages+0x151/0x240 [ 194.397277][ T7379] do_alloc_pages+0x115/0x270 [ 194.397330][ T7379] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 194.397389][ T7379] snd_pcm_hw_params+0x15e6/0x1b20 [ 194.397439][ T7379] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 194.397490][ T7379] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 194.397536][ T7379] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 194.397582][ T7379] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 194.397630][ T7379] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 194.397697][ T7379] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 194.397756][ T7379] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 194.397800][ T7379] ? __mutex_lock+0x1cc/0xb10 [ 194.397876][ T7379] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 194.397924][ T7379] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 194.397965][ T7379] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 194.398011][ T7379] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 194.398060][ T7379] ? __fget_files+0x206/0x3a0 [ 194.398100][ T7379] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 194.398145][ T7379] __x64_sys_ioctl+0x190/0x200 [ 194.398212][ T7379] do_syscall_64+0xcd/0x250 [ 194.398263][ T7379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 194.398309][ T7379] RIP: 0033:0x7fa5c158cda9 [ 194.398335][ T7379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 194.398367][ T7379] RSP: 002b:00007fa5c246b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 194.398396][ T7379] RAX: ffffffffffffffda RBX: 00007fa5c17a5fa0 RCX: 00007fa5c158cda9 [ 194.398417][ T7379] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 194.398436][ T7379] RBP: 00007fa5c160e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 194.398454][ T7379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 194.398471][ T7379] R13: 0000000000000000 R14: 00007fa5c17a5fa0 R15: 00007ffdd29cf6f8 [ 194.398511][ T7379] [ 194.845270][ T7379] Mem-Info: [ 194.848647][ T7379] active_anon:21710 inactive_anon:0 isolated_anon:0 [ 194.848647][ T7379] active_file:5671 inactive_file:52222 isolated_file:0 [ 194.848647][ T7379] unevictable:768 dirty:659 writeback:0 [ 194.848647][ T7379] slab_reclaimable:10692 slab_unreclaimable:95811 [ 194.848647][ T7379] mapped:24655 shmem:14506 pagetables:897 [ 194.848647][ T7379] sec_pagetables:0 bounce:0 [ 194.848647][ T7379] kernel_misc_reclaimable:0 [ 194.848647][ T7379] free:1317205 free_pcp:5444 free_cma:0 [ 194.932693][ T7391] netlink: 'syz.0.364': attribute type 1 has an invalid length. [ 194.972700][ T7391] netlink: 'syz.0.364': attribute type 1 has an invalid length. [ 195.000693][ T7379] Node 0 active_anon:61040kB inactive_anon:0kB active_file:22684kB inactive_file:208816kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:98620kB dirty:2632kB writeback:0kB shmem:30788kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:10884kB pagetables:3688kB sec_pagetables:0kB all_unreclaimable? no [ 195.054333][ T7391] netlink: 'syz.0.364': attribute type 1 has an invalid length. [ 195.062593][ T7391] netlink: 25 bytes leftover after parsing attributes in process `syz.0.364'. [ 195.080898][ T7379] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 195.157855][ T7379] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 195.195029][ T7379] lowmem_reserve[]: 0 2490 2491 0 0 [ 195.203763][ T7379] Node 0 DMA32 free:1394156kB boost:0kB min:34168kB low:42708kB high:51248kB reserved_highatomic:0KB active_anon:52088kB inactive_anon:0kB active_file:22684kB inactive_file:208504kB unevictable:1536kB writepending:2668kB present:3129332kB managed:2550648kB mlocked:0kB bounce:0kB free_pcp:5100kB local_pcp:1168kB free_cma:0kB [ 195.327414][ T7379] lowmem_reserve[]: 0 0 0 0 0 [ 195.332432][ T7379] Node 0 Normal free:4kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:312kB unevictable:0kB writepending:0kB present:1048580kB managed:364kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 195.423382][ T7379] lowmem_reserve[]: 0 0 0 0 0 [ 195.428250][ T7379] Node 1 Normal free:3908828kB boost:0kB min:55728kB low:69660kB high:83592kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:1780kB local_pcp:1780kB free_cma:0kB [ 195.525901][ T7379] lowmem_reserve[]: 0 0 0 0 0 [ 195.530758][ T7379] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 195.555978][ T7379] Node 0 DMA32: 2027*4kB (UME) 1388*8kB (UME) 1172*16kB (UME) 1031*32kB (UME) 543*64kB (UME) 294*128kB (UME) 139*256kB (UME) 37*512kB (UM) 15*1024kB (UME) 5*2048kB (UME) 288*4096kB (M) = 1403116kB [ 195.601512][ T7379] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 195.638061][ T7379] Node 1 Normal: 223*4kB (UME) 56*8kB (UME) 44*16kB (UME) 181*32kB (UME) 85*64kB (UME) 28*128kB (UM) 15*256kB (UM) 8*512kB (UE) 3*1024kB (U) 3*2048kB (UE) 946*4096kB (UM) = 3908828kB [ 195.707976][ T7379] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 195.738421][ T7379] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 195.775384][ T7379] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 195.808294][ T7379] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 195.831065][ T7379] 59828 total pagecache pages [ 195.841147][ T7379] 0 pages in swap cache [ 195.848155][ T7379] Free swap = 124856kB [ 195.872116][ T7379] Total swap = 124996kB [ 195.882743][ T7379] 2097051 pages RAM [ 195.892008][ T7379] 0 pages HighMem/MovableOnly [ 195.902686][ T7379] 427667 pages reserved [ 195.913277][ T7379] 0 pages cma reserved [ 195.993657][ T7389] FAULT_INJECTION: forcing a failure. [ 195.993657][ T7389] name failslab, interval 1, probability 0, space 0, times 0 [ 196.000374][ T7379] Process accounting paused [ 196.006611][ T7389] CPU: 0 UID: 0 PID: 7389 Comm: syz.2.365 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 196.006654][ T7389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 196.006675][ T7389] Call Trace: [ 196.006685][ T7389] [ 196.006696][ T7389] dump_stack_lvl+0x16c/0x1f0 [ 196.006751][ T7389] should_fail_ex+0x50a/0x650 [ 196.006805][ T7389] ? fs_reclaim_acquire+0xae/0x150 [ 196.006864][ T7389] should_failslab+0xc2/0x120 [ 196.006909][ T7389] __kmalloc_noprof+0xce/0x4f0 [ 196.006945][ T7389] ? kasan_quarantine_put+0x10a/0x240 [ 196.006981][ T7389] ? constrain_params_by_rules+0xa0e/0xca0 [ 196.007027][ T7389] ? constrain_params_by_rules+0x176/0xca0 [ 196.007089][ T7389] constrain_params_by_rules+0x176/0xca0 [ 196.007154][ T7389] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 196.007212][ T7389] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 196.007259][ T7389] ? lock_acquire.part.0+0x11b/0x380 [ 196.007326][ T7389] snd_pcm_hw_refine+0x7ec/0xad0 [ 196.007378][ T7389] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 196.007434][ T7389] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 196.007486][ T7389] ? __pfx_lock_release+0x10/0x10 [ 196.007525][ T7389] ? snd_pcm_hw_param_value+0x266/0x5b0 [ 196.007574][ T7389] snd_pcm_hw_param_first+0x328/0x6b0 [ 196.007619][ T7389] ? trace_hw_mask_param+0x19e/0x210 [ 196.007663][ T7389] snd_pcm_hw_params+0x5b2/0x1b20 [ 196.007717][ T7389] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 196.007765][ T7389] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 196.007818][ T7389] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 196.007870][ T7389] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 196.007926][ T7389] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 196.007981][ T7389] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 196.008044][ T7389] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 196.008095][ T7389] ? __mutex_lock+0x1cc/0xb10 [ 196.008176][ T7389] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 196.008229][ T7389] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 196.008275][ T7389] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 196.008322][ T7389] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 196.008372][ T7389] ? __fget_files+0x206/0x3a0 [ 196.008412][ T7389] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 196.008459][ T7389] __x64_sys_ioctl+0x190/0x200 [ 196.008513][ T7389] do_syscall_64+0xcd/0x250 [ 196.008565][ T7389] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.008615][ T7389] RIP: 0033:0x7f816d78cda9 [ 196.008642][ T7389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.008675][ T7389] RSP: 002b:00007f816e682038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 196.008705][ T7389] RAX: ffffffffffffffda RBX: 00007f816d9a5fa0 RCX: 00007f816d78cda9 [ 196.008726][ T7389] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 196.008746][ T7389] RBP: 00007f816d80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 196.008766][ T7389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 196.008786][ T7389] R13: 0000000000000000 R14: 00007f816d9a5fa0 R15: 00007ffc9ff4a618 [ 196.008826][ T7389] [ 196.514326][ T7420] netlink: 28 bytes leftover after parsing attributes in process `syz.3.369'. [ 196.596343][ T7423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.368'. [ 196.777747][ T7432] netlink: 4 bytes leftover after parsing attributes in process `syz.3.370'. [ 196.796517][ T7413] FAULT_INJECTION: forcing a failure. [ 196.796517][ T7413] name failslab, interval 1, probability 0, space 0, times 0 [ 196.834967][ T7413] CPU: 1 UID: 0 PID: 7413 Comm: syz.2.367 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 196.835021][ T7413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 196.835040][ T7413] Call Trace: [ 196.835049][ T7413] [ 196.835061][ T7413] dump_stack_lvl+0x16c/0x1f0 [ 196.835113][ T7413] should_fail_ex+0x50a/0x650 [ 196.835150][ T7413] ? fs_reclaim_acquire+0xae/0x150 [ 196.835206][ T7413] should_failslab+0xc2/0x120 [ 196.835248][ T7413] __kmalloc_noprof+0xce/0x4f0 [ 196.835284][ T7413] ? hlock_class+0x4e/0x130 [ 196.835333][ T7413] ? constrain_params_by_rules+0x176/0xca0 [ 196.835384][ T7413] constrain_params_by_rules+0x176/0xca0 [ 196.835443][ T7413] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 196.835489][ T7413] ? lock_acquire.part.0+0x11b/0x380 [ 196.835553][ T7413] ? hlock_class+0x4e/0x130 [ 196.835600][ T7413] ? mark_lock+0xb5/0xc60 [ 196.835633][ T7413] ? snd_interval_refine+0x2fa/0x580 [ 196.835667][ T7413] snd_pcm_hw_refine+0x7ec/0xad0 [ 196.835711][ T7413] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 196.835759][ T7413] ? __pfx_lock_release+0x10/0x10 [ 196.835801][ T7413] ? mark_held_locks+0x9f/0xe0 [ 196.835847][ T7413] snd_pcm_hw_params+0x3e6/0x1b20 [ 196.835889][ T7413] ? kfree+0x2c4/0x4d0 [ 196.835915][ T7413] ? snd_pcm_hw_param_first+0x301/0x6b0 [ 196.835957][ T7413] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 196.836004][ T7413] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 196.836062][ T7413] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 196.836110][ T7413] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 196.836161][ T7413] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 196.836220][ T7413] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 196.836283][ T7413] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 196.836324][ T7413] ? __mutex_lock+0x1cc/0xb10 [ 196.836401][ T7413] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 196.836451][ T7413] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 196.836490][ T7413] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 196.836531][ T7413] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 196.836575][ T7413] ? __fget_files+0x206/0x3a0 [ 196.836610][ T7413] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 196.836651][ T7413] __x64_sys_ioctl+0x190/0x200 [ 196.836699][ T7413] do_syscall_64+0xcd/0x250 [ 196.836744][ T7413] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.836789][ T7413] RIP: 0033:0x7f816d78cda9 [ 196.836814][ T7413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.836842][ T7413] RSP: 002b:00007f816e682038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 196.836870][ T7413] RAX: ffffffffffffffda RBX: 00007f816d9a5fa0 RCX: 00007f816d78cda9 [ 196.836889][ T7413] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 196.836906][ T7413] RBP: 00007f816d80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 196.836924][ T7413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 196.836941][ T7413] R13: 0000000000000000 R14: 00007f816d9a5fa0 R15: 00007ffc9ff4a618 [ 196.836978][ T7413] [ 196.980029][ T7438] netlink: 'syz.3.371': attribute type 1 has an invalid length. [ 197.176219][ T7438] netlink: 'syz.3.371': attribute type 1 has an invalid length. [ 197.203435][ T29] audit: type=1804 audit(6033105174.242:11): pid=7417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.375" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=29 res=1 errno=0 [ 197.232350][ T7438] netlink: 'syz.3.371': attribute type 1 has an invalid length. [ 197.286463][ T7438] netlink: 25 bytes leftover after parsing attributes in process `syz.3.371'. [ 198.867512][ T7457] FAULT_INJECTION: forcing a failure. [ 198.867512][ T7457] name failslab, interval 1, probability 0, space 0, times 0 [ 198.891008][ T7457] CPU: 0 UID: 0 PID: 7457 Comm: syz.0.378 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 198.891050][ T7457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 198.891069][ T7457] Call Trace: [ 198.891079][ T7457] [ 198.891091][ T7457] dump_stack_lvl+0x16c/0x1f0 [ 198.891145][ T7457] should_fail_ex+0x50a/0x650 [ 198.891184][ T7457] ? fs_reclaim_acquire+0xae/0x150 [ 198.891240][ T7457] should_failslab+0xc2/0x120 [ 198.891279][ T7457] __kmalloc_noprof+0xce/0x4f0 [ 198.891314][ T7457] ? kasan_quarantine_put+0x10a/0x240 [ 198.891349][ T7457] ? constrain_params_by_rules+0xa0e/0xca0 [ 198.891391][ T7457] ? constrain_params_by_rules+0x176/0xca0 [ 198.891442][ T7457] constrain_params_by_rules+0x176/0xca0 [ 198.891505][ T7457] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 198.891558][ T7457] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 198.891603][ T7457] ? lock_acquire.part.0+0x11b/0x380 [ 198.891669][ T7457] ? snd_interval_refine+0x2fa/0x580 [ 198.891707][ T7457] snd_pcm_hw_refine+0x7ec/0xad0 [ 198.891764][ T7457] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 198.891816][ T7457] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 198.891867][ T7457] ? __pfx_lock_release+0x10/0x10 [ 198.891905][ T7457] ? snd_pcm_hw_param_value+0x266/0x5b0 [ 198.891952][ T7457] snd_pcm_hw_param_first+0x328/0x6b0 [ 198.892002][ T7457] snd_pcm_hw_params+0x5b2/0x1b20 [ 198.892053][ T7457] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 198.892100][ T7457] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 198.892151][ T7457] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 198.892200][ T7457] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 198.892252][ T7457] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 198.892303][ T7457] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 198.892365][ T7457] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 198.892409][ T7457] ? __mutex_lock+0x1cc/0xb10 [ 198.892488][ T7457] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 198.892537][ T7457] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 198.892582][ T7457] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 198.892628][ T7457] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 198.892686][ T7457] ? __fget_files+0x206/0x3a0 [ 198.892726][ T7457] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 198.892773][ T7457] __x64_sys_ioctl+0x190/0x200 [ 198.892827][ T7457] do_syscall_64+0xcd/0x250 [ 198.892876][ T7457] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.892922][ T7457] RIP: 0033:0x7fbed198cda9 [ 198.892949][ T7457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.892980][ T7457] RSP: 002b:00007fbed281f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 198.893011][ T7457] RAX: ffffffffffffffda RBX: 00007fbed1ba5fa0 RCX: 00007fbed198cda9 [ 198.893031][ T7457] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 198.893050][ T7457] RBP: 00007fbed1a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 198.893068][ T7457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 198.893086][ T7457] R13: 0000000000000000 R14: 00007fbed1ba5fa0 R15: 00007ffd10a2e2f8 [ 198.893126][ T7457] [ 198.966750][ T7468] FAULT_INJECTION: forcing a failure. [ 198.966750][ T7468] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 199.182781][ T29] audit: type=1804 audit(4294969345.949:12): pid=7462 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.380" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=29 res=1 errno=0 [ 199.201997][ T7468] CPU: 1 UID: 0 PID: 7468 Comm: syz.1.381 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 199.202041][ T7468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 199.202060][ T7468] Call Trace: [ 199.202072][ T7468] [ 199.202085][ T7468] dump_stack_lvl+0x16c/0x1f0 [ 199.202140][ T7468] should_fail_ex+0x50a/0x650 [ 199.202177][ T7468] ? __pfx___might_resched+0x10/0x10 [ 199.202228][ T7468] should_fail_alloc_page+0xe7/0x130 [ 199.202275][ T7468] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 199.202332][ T7468] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 199.202393][ T7468] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 199.202436][ T7468] ? unwind_get_return_address+0x59/0xa0 [ 199.202487][ T7468] ? arch_stack_walk+0xa7/0x100 [ 199.202558][ T7468] ? hlock_class+0x4e/0x130 [ 199.202610][ T7468] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 199.202671][ T7468] ? __pfx___lock_acquire+0x10/0x10 [ 199.202711][ T7468] ? kasan_save_stack+0x42/0x60 [ 199.202746][ T7468] ? kasan_save_stack+0x33/0x60 [ 199.202779][ T7468] ? kasan_save_track+0x14/0x30 [ 199.202821][ T7468] ? __kasan_slab_alloc+0x89/0x90 [ 199.202859][ T7468] ? kmem_cache_alloc_node_noprof+0x1ca/0x3b0 [ 199.202897][ T7468] ? alloc_vmap_area+0xdc8/0x2a60 [ 199.202947][ T7468] ? __get_vm_area_node+0x19e/0x2f0 [ 199.203000][ T7468] ? __vmalloc_node_range_noprof+0x26a/0x1530 [ 199.203035][ T7468] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 199.203083][ T7468] ? policy_nodemask+0xea/0x4e0 [ 199.203129][ T7468] alloc_pages_mpol+0x1fc/0x540 [ 199.203174][ T7468] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 199.203214][ T7468] ? __page_table_check_ptes_set+0x16b/0x3e0 [ 199.203256][ T7468] ? do_raw_spin_lock+0x12d/0x2c0 [ 199.203306][ T7468] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 199.203363][ T7468] alloc_pages_noprof+0x131/0x390 [ 199.203405][ T7468] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 199.203441][ T7468] get_free_pages_noprof+0xc/0x40 [ 199.203488][ T7468] kasan_populate_vmalloc_pte+0x2d/0x160 [ 199.203523][ T7468] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 199.203559][ T7468] __apply_to_page_range+0x5fd/0xd30 [ 199.203598][ T7468] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 199.203640][ T7468] ? __pfx___apply_to_page_range+0x10/0x10 [ 199.203678][ T7468] ? insert_vmap_area+0x2ef/0x4d0 [ 199.203732][ T7468] alloc_vmap_area+0x93e/0x2a60 [ 199.203800][ T7468] ? __pfx_alloc_vmap_area+0x10/0x10 [ 199.203876][ T7468] __get_vm_area_node+0x19e/0x2f0 [ 199.203939][ T7468] __vmalloc_node_range_noprof+0x26a/0x1530 [ 199.203977][ T7468] ? __snd_dma_alloc_pages+0x50/0x90 [ 199.204030][ T7468] ? find_held_lock+0x2d/0x110 [ 199.204086][ T7468] ? do_alloc_pages+0xd3/0x270 [ 199.204133][ T7468] ? __pfx_lock_release+0x10/0x10 [ 199.204173][ T7468] ? __snd_dma_alloc_pages+0x50/0x90 [ 199.204228][ T7468] ? __mutex_lock+0x1cc/0xb10 [ 199.204280][ T7468] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 199.204317][ T7468] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 199.204374][ T7468] ? __snd_dma_alloc_pages+0x50/0x90 [ 199.204429][ T7468] vmalloc_noprof+0x6b/0x90 [ 199.204461][ T7468] ? __snd_dma_alloc_pages+0x50/0x90 [ 199.204511][ T7468] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 199.204565][ T7468] __snd_dma_alloc_pages+0x50/0x90 [ 199.204619][ T7468] snd_dma_alloc_dir_pages+0x151/0x240 [ 199.204676][ T7468] do_alloc_pages+0x115/0x270 [ 199.204731][ T7468] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 199.204789][ T7468] snd_pcm_hw_params+0x15e6/0x1b20 [ 199.204851][ T7468] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 199.204894][ T7468] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 199.204941][ T7468] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 199.204988][ T7468] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 199.205037][ T7468] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 199.205090][ T7468] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 199.205157][ T7468] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 199.205201][ T7468] ? __mutex_lock+0x1cc/0xb10 [ 199.205279][ T7468] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 199.205331][ T7468] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 199.205382][ T7468] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 199.205433][ T7468] ? __fget_files+0x206/0x3a0 [ 199.205472][ T7468] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 199.205519][ T7468] __x64_sys_ioctl+0x190/0x200 [ 199.205572][ T7468] do_syscall_64+0xcd/0x250 [ 199.205624][ T7468] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.205671][ T7468] RIP: 0033:0x7fa5c158cda9 [ 199.205698][ T7468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.205730][ T7468] RSP: 002b:00007fa5c244a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 199.205759][ T7468] RAX: ffffffffffffffda RBX: 00007fa5c17a6080 RCX: 00007fa5c158cda9 [ 199.205781][ T7468] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 199.205800][ T7468] RBP: 00007fa5c160e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 199.205828][ T7468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 199.205848][ T7468] R13: 0000000000000000 R14: 00007fa5c17a6080 R15: 00007ffdd29cf6f8 [ 199.205889][ T7468] [ 199.499382][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.768242][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.877700][ T7480] netlink: 4 bytes leftover after parsing attributes in process `syz.0.384'. [ 199.974137][ T7482] netlink: 28 bytes leftover after parsing attributes in process `syz.1.385'. [ 200.031703][ T29] audit: type=1804 audit(4294969346.824:13): pid=7470 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.382" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=29 res=1 errno=0 [ 200.033637][ T7470] FAULT_INJECTION: forcing a failure. [ 200.033637][ T7470] name fail_futex, interval 1, probability 0, space 0, times 0 [ 200.090366][ T7470] CPU: 0 UID: 0 PID: 7470 Comm: syz.3.382 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 200.090410][ T7470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 200.090429][ T7470] Call Trace: [ 200.090438][ T7470] [ 200.090448][ T7470] dump_stack_lvl+0x16c/0x1f0 [ 200.090500][ T7470] should_fail_ex+0x50a/0x650 [ 200.090535][ T7470] ? __pfx___futex_wait+0x10/0x10 [ 200.090591][ T7470] get_futex_key+0x4a3/0x1000 [ 200.090650][ T7470] ? __pfx_get_futex_key+0x10/0x10 [ 200.090701][ T7470] ? hlock_class+0x4e/0x130 [ 200.090748][ T7470] ? __lock_acquire+0x15a9/0x3c40 [ 200.090795][ T7470] futex_wake+0xe8/0x4e0 [ 200.090834][ T7470] ? __pfx_futex_wake+0x10/0x10 [ 200.090881][ T7470] ? lock_acquire.part.0+0x11b/0x380 [ 200.090920][ T7470] ? find_held_lock+0x2d/0x110 [ 200.090972][ T7470] do_futex+0x1e5/0x350 [ 200.091002][ T7470] ? __pfx_do_futex+0x10/0x10 [ 200.091046][ T7470] __x64_sys_futex+0x1e1/0x4c0 [ 200.091081][ T7470] ? __do_sys_close_range+0x25c/0x700 [ 200.091121][ T7470] ? __pfx___x64_sys_futex+0x10/0x10 [ 200.091157][ T7470] ? syscall_user_dispatch+0x77/0x140 [ 200.091212][ T7470] do_syscall_64+0xcd/0x250 [ 200.091264][ T7470] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 200.091311][ T7470] RIP: 0033:0x7fe41878cda9 [ 200.091337][ T7470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 200.091370][ T7470] RSP: 002b:00007fe4196520e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 200.091399][ T7470] RAX: ffffffffffffffda RBX: 00007fe4189a5fa8 RCX: 00007fe41878cda9 [ 200.091420][ T7470] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe4189a5fac [ 200.091439][ T7470] RBP: 00007fe4189a5fa0 R08: 00007fe419653000 R09: 0000000000000000 [ 200.091459][ T7470] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe4189a5fac [ 200.091477][ T7470] R13: 0000000000000000 R14: 00007fff6817c150 R15: 00007fff6817c238 [ 200.091514][ T7470] [ 202.307086][ T7510] FAULT_INJECTION: forcing a failure. [ 202.307086][ T7510] name failslab, interval 1, probability 0, space 0, times 0 [ 202.320026][ T7510] CPU: 1 UID: 0 PID: 7510 Comm: syz.1.394 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 202.320065][ T7510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 202.320084][ T7510] Call Trace: [ 202.320093][ T7510] [ 202.320105][ T7510] dump_stack_lvl+0x16c/0x1f0 [ 202.320156][ T7510] should_fail_ex+0x50a/0x650 [ 202.320191][ T7510] ? fs_reclaim_acquire+0xae/0x150 [ 202.320246][ T7510] should_failslab+0xc2/0x120 [ 202.320286][ T7510] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 202.320322][ T7510] ? __pfx___might_resched+0x10/0x10 [ 202.320362][ T7510] ? alloc_vmap_area+0x636/0x2a60 [ 202.320426][ T7510] alloc_vmap_area+0x636/0x2a60 [ 202.320490][ T7510] ? __pfx_alloc_vmap_area+0x10/0x10 [ 202.320551][ T7510] __get_vm_area_node+0x19e/0x2f0 [ 202.320611][ T7510] __vmalloc_node_range_noprof+0x26a/0x1530 [ 202.320658][ T7510] ? __snd_dma_alloc_pages+0x50/0x90 [ 202.320710][ T7510] ? find_held_lock+0x2d/0x110 [ 202.320766][ T7510] ? do_alloc_pages+0xd3/0x270 [ 202.320815][ T7510] ? __pfx_lock_release+0x10/0x10 [ 202.320856][ T7510] ? __snd_dma_alloc_pages+0x50/0x90 [ 202.320911][ T7510] ? __mutex_lock+0x1cc/0xb10 [ 202.320960][ T7510] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 202.320998][ T7510] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 202.321055][ T7510] ? __snd_dma_alloc_pages+0x50/0x90 [ 202.321106][ T7510] vmalloc_noprof+0x6b/0x90 [ 202.321137][ T7510] ? __snd_dma_alloc_pages+0x50/0x90 [ 202.321186][ T7510] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 202.321239][ T7510] __snd_dma_alloc_pages+0x50/0x90 [ 202.321291][ T7510] snd_dma_alloc_dir_pages+0x151/0x240 [ 202.321348][ T7510] do_alloc_pages+0x115/0x270 [ 202.321412][ T7510] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 202.321472][ T7510] snd_pcm_hw_params+0x15e6/0x1b20 [ 202.321527][ T7510] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 202.321574][ T7510] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 202.321627][ T7510] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 202.321677][ T7510] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 202.321731][ T7510] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 202.321784][ T7510] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 202.321848][ T7510] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 202.321892][ T7510] ? __mutex_lock+0x1cc/0xb10 [ 202.321972][ T7510] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 202.322025][ T7510] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 202.322068][ T7510] ? __pfx___might_resched+0x10/0x10 [ 202.322114][ T7510] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 202.322164][ T7510] ? __fget_files+0x206/0x3a0 [ 202.322205][ T7510] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 202.322252][ T7510] __x64_sys_ioctl+0x190/0x200 [ 202.322306][ T7510] do_syscall_64+0xcd/0x250 [ 202.322359][ T7510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.322420][ T7510] RIP: 0033:0x7fa5c158cda9 [ 202.322447][ T7510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.322479][ T7510] RSP: 002b:00007fa5c246b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 202.322510][ T7510] RAX: ffffffffffffffda RBX: 00007fa5c17a5fa0 RCX: 00007fa5c158cda9 [ 202.322530][ T7510] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 202.322550][ T7510] RBP: 00007fa5c160e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 202.322569][ T7510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 202.322588][ T7510] R13: 0000000000000000 R14: 00007fa5c17a5fa0 R15: 00007ffdd29cf6f8 [ 202.322628][ T7510] [ 202.763394][ T7517] netlink: 28 bytes leftover after parsing attributes in process `syz.2.395'. [ 203.178120][ T29] audit: type=1804 audit(4294967298.045:14): pid=7506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.392" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=29 res=1 errno=0 [ 203.229352][ T7506] FAULT_INJECTION: forcing a failure. [ 203.229352][ T7506] name failslab, interval 1, probability 0, space 0, times 0 [ 203.257207][ T7506] CPU: 1 UID: 0 PID: 7506 Comm: syz.3.392 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 203.257247][ T7506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 203.257266][ T7506] Call Trace: [ 203.257274][ T7506] [ 203.257286][ T7506] dump_stack_lvl+0x16c/0x1f0 [ 203.257336][ T7506] should_fail_ex+0x50a/0x650 [ 203.257371][ T7506] ? fs_reclaim_acquire+0xae/0x150 [ 203.257423][ T7506] should_failslab+0xc2/0x120 [ 203.257463][ T7506] __kmalloc_noprof+0xce/0x4f0 [ 203.257500][ T7506] ? kernfs_fop_write_iter+0x223/0x500 [ 203.257547][ T7506] kernfs_fop_write_iter+0x223/0x500 [ 203.257600][ T7506] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 203.257640][ T7506] __kernel_write_iter+0x318/0xa90 [ 203.257676][ T7506] ? __pfx___kernel_write_iter+0x10/0x10 [ 203.257727][ T7506] __kernel_write+0xf6/0x140 [ 203.257758][ T7506] ? __pfx___kernel_write+0x10/0x10 [ 203.257787][ T7506] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 203.257830][ T7506] ? rcu_is_watching+0x12/0xc0 [ 203.257880][ T7506] ? acct_process+0x4b1/0x590 [ 203.257920][ T7506] ? lock_acquire+0x2f/0xb0 [ 203.257954][ T7506] ? acct_process+0x4b1/0x590 [ 203.257996][ T7506] do_acct_process+0xd11/0x1530 [ 203.258039][ T7506] ? __pfx_do_acct_process+0x10/0x10 [ 203.258079][ T7506] ? acct_process+0x1e4/0x590 [ 203.258127][ T7506] ? lock_acquire+0x2f/0xb0 [ 203.258170][ T7506] acct_process+0x4b1/0x590 [ 203.258209][ T7506] ? acct_process+0x9c/0x590 [ 203.258248][ T7506] do_exit+0x17c8/0x2d70 [ 203.258281][ T7506] ? get_signal+0x8f7/0x2610 [ 203.258324][ T7506] ? __pfx_do_exit+0x10/0x10 [ 203.258352][ T7506] ? do_raw_spin_lock+0x12d/0x2c0 [ 203.258398][ T7506] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 203.258449][ T7506] do_group_exit+0xd3/0x2a0 [ 203.258482][ T7506] get_signal+0x2576/0x2610 [ 203.258538][ T7506] ? __pfx_get_signal+0x10/0x10 [ 203.258592][ T7506] ? __pfx_do_futex+0x10/0x10 [ 203.258630][ T7506] arch_do_signal_or_restart+0x90/0x7e0 [ 203.258665][ T7506] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 203.258713][ T7506] ? rcu_is_watching+0x12/0xc0 [ 203.258768][ T7506] syscall_exit_to_user_mode+0x150/0x2a0 [ 203.258816][ T7506] do_syscall_64+0xda/0x250 [ 203.258865][ T7506] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.258909][ T7506] RIP: 0033:0x7fe41878cda9 [ 203.258932][ T7506] Code: Unable to access opcode bytes at 0x7fe41878cd7f. [ 203.258947][ T7506] RSP: 002b:00007fe4196520e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 203.258972][ T7506] RAX: fffffffffffffe00 RBX: 00007fe4189a5fa8 RCX: 00007fe41878cda9 [ 203.258991][ T7506] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe4189a5fa8 [ 203.259009][ T7506] RBP: 00007fe4189a5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 203.259025][ T7506] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe4189a5fac [ 203.259043][ T7506] R13: 0000000000000000 R14: 00007fff6817c150 R15: 00007fff6817c238 [ 203.259083][ T7506] [ 203.709896][ T7530] netlink: 'syz.1.398': attribute type 1 has an invalid length. [ 203.759150][ T7530] netlink: 'syz.1.398': attribute type 1 has an invalid length. [ 203.766991][ T7530] netlink: 'syz.1.398': attribute type 1 has an invalid length. [ 203.868518][ T7530] netlink: 25 bytes leftover after parsing attributes in process `syz.1.398'. [ 203.915581][ T29] audit: type=1804 audit(4294967298.829:15): pid=7526 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.397" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=29 res=1 errno=0 [ 204.133999][ T7525] FAULT_INJECTION: forcing a failure. [ 204.133999][ T7525] name failslab, interval 1, probability 0, space 0, times 0 [ 204.226723][ T7525] CPU: 0 UID: 0 PID: 7525 Comm: syz.0.405 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 204.226771][ T7525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 204.226792][ T7525] Call Trace: [ 204.226802][ T7525] [ 204.226814][ T7525] dump_stack_lvl+0x16c/0x1f0 [ 204.226869][ T7525] should_fail_ex+0x50a/0x650 [ 204.226906][ T7525] ? fs_reclaim_acquire+0xae/0x150 [ 204.226962][ T7525] ? snd_pcm_lib_malloc_pages+0x2aa/0x980 [ 204.227010][ T7525] should_failslab+0xc2/0x120 [ 204.227050][ T7525] __kmalloc_cache_noprof+0x68/0x420 [ 204.227081][ T7525] ? __pfx_lock_release+0x10/0x10 [ 204.227119][ T7525] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 204.227170][ T7525] snd_pcm_lib_malloc_pages+0x2aa/0x980 [ 204.227220][ T7525] ? fixup_unreferenced_params+0x4b3/0xed0 [ 204.227271][ T7525] snd_pcm_hw_params+0x15e6/0x1b20 [ 204.227323][ T7525] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 204.227370][ T7525] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 204.227422][ T7525] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 204.227471][ T7525] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 204.227531][ T7525] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 204.227585][ T7525] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 204.227648][ T7525] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 204.227689][ T7525] ? __mutex_lock+0x1cc/0xb10 [ 204.227766][ T7525] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 204.227816][ T7525] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 204.227858][ T7525] ? __pfx___might_resched+0x10/0x10 [ 204.227904][ T7525] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 204.227950][ T7525] ? __fget_files+0x206/0x3a0 [ 204.227988][ T7525] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 204.228031][ T7525] __x64_sys_ioctl+0x190/0x200 [ 204.228084][ T7525] do_syscall_64+0xcd/0x250 [ 204.228135][ T7525] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.228181][ T7525] RIP: 0033:0x7fbed198cda9 [ 204.228206][ T7525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 204.228237][ T7525] RSP: 002b:00007fbed281f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 204.228267][ T7525] RAX: ffffffffffffffda RBX: 00007fbed1ba5fa0 RCX: 00007fbed198cda9 [ 204.228286][ T7525] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 204.228304][ T7525] RBP: 00007fbed1a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 204.228322][ T7525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 204.228340][ T7525] R13: 0000000000000000 R14: 00007fbed1ba5fa0 R15: 00007ffd10a2e2f8 [ 204.228380][ T7525] [ 205.006705][ T7545] netlink: 1204 bytes leftover after parsing attributes in process `syz.2.402'. [ 205.034285][ T7545] netlink: 8 bytes leftover after parsing attributes in process `syz.2.402'. [ 205.583516][ T7556] netlink: 28 bytes leftover after parsing attributes in process `syz.1.406'. [ 205.768569][ T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!! [ 205.959741][ T7562] netlink: 28 bytes leftover after parsing attributes in process `syz.1.415'. [ 206.276196][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 206.280742][ T7533] Process accounting paused [ 206.403643][ T7565] netlink: 'syz.1.408': attribute type 1 has an invalid length. [ 206.432114][ T7565] netlink: 'syz.1.408': attribute type 1 has an invalid length. [ 206.452396][ T7565] netlink: 'syz.1.408': attribute type 1 has an invalid length. [ 206.482463][ T7565] netlink: 25 bytes leftover after parsing attributes in process `syz.1.408'. [ 206.531068][ T7568] netlink: 'syz.3.409': attribute type 1 has an invalid length. [ 206.574415][ T7568] netlink: 'syz.3.409': attribute type 1 has an invalid length. [ 206.610590][ T7568] netlink: 'syz.3.409': attribute type 1 has an invalid length. [ 206.693731][ T7568] netlink: 25 bytes leftover after parsing attributes in process `syz.3.409'. [ 206.773099][ T7572] netlink: 93 bytes leftover after parsing attributes in process `syz.1.410'. [ 206.801206][ T7561] FAULT_INJECTION: forcing a failure. [ 206.801206][ T7561] name failslab, interval 1, probability 0, space 0, times 0 [ 206.814355][ T7561] CPU: 1 UID: 0 PID: 7561 Comm: syz.2.407 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 206.814398][ T7561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 206.814417][ T7561] Call Trace: [ 206.814427][ T7561] [ 206.814440][ T7561] dump_stack_lvl+0x16c/0x1f0 [ 206.814492][ T7561] should_fail_ex+0x50a/0x650 [ 206.814531][ T7561] ? fs_reclaim_acquire+0xae/0x150 [ 206.814585][ T7561] ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0 [ 206.814629][ T7561] should_failslab+0xc2/0x120 [ 206.814672][ T7561] __kmalloc_cache_noprof+0x68/0x420 [ 206.814704][ T7561] ? snd_pcm_hw_param_first+0x301/0x6b0 [ 206.814746][ T7561] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 206.814796][ T7561] snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0 [ 206.814845][ T7561] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 206.814892][ T7561] ? calc_src_frames.isra.0+0x187/0x1d0 [ 206.814943][ T7561] snd_pcm_oss_change_params_locked+0x13d7/0x3a50 [ 206.815004][ T7561] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 206.815045][ T7561] ? __mutex_lock+0x1cc/0xb10 [ 206.815122][ T7561] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 206.815172][ T7561] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 206.815215][ T7561] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 206.815272][ T7561] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 206.815322][ T7561] ? __fget_files+0x206/0x3a0 [ 206.815379][ T7561] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 206.815426][ T7561] __x64_sys_ioctl+0x190/0x200 [ 206.815478][ T7561] do_syscall_64+0xcd/0x250 [ 206.815529][ T7561] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 206.815576][ T7561] RIP: 0033:0x7f816d78cda9 [ 206.815602][ T7561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 206.815634][ T7561] RSP: 002b:00007f816e682038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 206.815664][ T7561] RAX: ffffffffffffffda RBX: 00007f816d9a5fa0 RCX: 00007f816d78cda9 [ 206.815686][ T7561] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 206.815705][ T7561] RBP: 00007f816d80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 206.815724][ T7561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 206.815743][ T7561] R13: 0000000000000000 R14: 00007f816d9a5fa0 R15: 00007ffc9ff4a618 [ 206.815783][ T7561] [ 208.049099][ T7574] warn_alloc: 2 callbacks suppressed [ 208.049128][ T7574] syz.2.413: vmalloc error: size 16384, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 208.086595][ T7574] CPU: 0 UID: 0 PID: 7574 Comm: syz.2.413 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 208.086642][ T7574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 208.086663][ T7574] Call Trace: [ 208.086671][ T7574] [ 208.086683][ T7574] dump_stack_lvl+0x16c/0x1f0 [ 208.086735][ T7574] warn_alloc+0x24d/0x3a0 [ 208.086775][ T7574] ? __pfx_warn_alloc+0x10/0x10 [ 208.086815][ T7574] ? alloc_pages_mpol+0x25b/0x540 [ 208.086855][ T7574] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 208.086897][ T7574] ? trace_kmalloc+0x2d/0xd0 [ 208.086954][ T7574] __vmalloc_node_range_noprof+0x12bd/0x1530 [ 208.087020][ T7574] ? __snd_dma_alloc_pages+0x50/0x90 [ 208.087080][ T7574] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 208.087116][ T7574] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 208.087169][ T7574] ? __snd_dma_alloc_pages+0x50/0x90 [ 208.087218][ T7574] vmalloc_noprof+0x6b/0x90 [ 208.087249][ T7574] ? __snd_dma_alloc_pages+0x50/0x90 [ 208.087297][ T7574] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 208.087348][ T7574] __snd_dma_alloc_pages+0x50/0x90 [ 208.087401][ T7574] snd_dma_alloc_dir_pages+0x151/0x240 [ 208.087455][ T7574] do_alloc_pages+0x115/0x270 [ 208.087505][ T7574] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 208.087561][ T7574] snd_pcm_hw_params+0x15e6/0x1b20 [ 208.087611][ T7574] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 208.087658][ T7574] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 208.087708][ T7574] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 208.087754][ T7574] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 208.087803][ T7574] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 208.087853][ T7574] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 208.087916][ T7574] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 208.087957][ T7574] ? __mutex_lock+0x1cc/0xb10 [ 208.088052][ T7574] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 208.088101][ T7574] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 208.088143][ T7574] ? __pfx___might_resched+0x10/0x10 [ 208.088188][ T7574] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 208.088235][ T7574] ? __fget_files+0x206/0x3a0 [ 208.088272][ T7574] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 208.088316][ T7574] __x64_sys_ioctl+0x190/0x200 [ 208.088367][ T7574] do_syscall_64+0xcd/0x250 [ 208.088418][ T7574] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.088465][ T7574] RIP: 0033:0x7f816d78cda9 [ 208.088490][ T7574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 208.088521][ T7574] RSP: 002b:00007f816e682038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 208.088551][ T7574] RAX: ffffffffffffffda RBX: 00007f816d9a5fa0 RCX: 00007f816d78cda9 [ 208.088571][ T7574] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000007 [ 208.088590][ T7574] RBP: 00007f816d80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 208.088607][ T7574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 208.088625][ T7574] R13: 0000000000000000 R14: 00007f816d9a5fa0 R15: 00007ffc9ff4a618 [ 208.088665][ T7574] [ 208.088677][ T7574] Mem-Info: [ 208.405801][ T7574] active_anon:67739 inactive_anon:0 isolated_anon:0 [ 208.405801][ T7574] active_file:3999 inactive_file:54273 isolated_file:0 [ 208.405801][ T7574] unevictable:768 dirty:1082 writeback:0 [ 208.405801][ T7574] slab_reclaimable:10654 slab_unreclaimable:97158 [ 208.405801][ T7574] mapped:42613 shmem:56822 pagetables:1075 [ 208.405801][ T7574] sec_pagetables:0 bounce:0 [ 208.405801][ T7574] kernel_misc_reclaimable:0 [ 208.405801][ T7574] free:1274321 free_pcp:1482 free_cma:0 [ 208.458475][ T7574] Node 0 active_anon:271456kB inactive_anon:0kB active_file:15996kB inactive_file:217020kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:169852kB dirty:4324kB writeback:0kB shmem:226252kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10796kB pagetables:4300kB sec_pagetables:0kB all_unreclaimable? no [ 208.497501][ T7574] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 208.633608][ T7574] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 208.753980][ T7574] lowmem_reserve[]: 0 2490 2491 0 0 [ 208.759484][ T7574] Node 0 DMA32 free:1178636kB boost:0kB min:34168kB low:42708kB high:51248kB reserved_highatomic:0KB active_anon:268716kB inactive_anon:0kB active_file:15996kB inactive_file:216708kB unevictable:1536kB writepending:2124kB present:3129332kB managed:2550648kB mlocked:0kB bounce:0kB free_pcp:1592kB local_pcp:224kB free_cma:0kB [ 208.811561][ T7574] lowmem_reserve[]: 0 0 0 0 0 [ 208.818551][ T7587] FAULT_INJECTION: forcing a failure. [ 208.818551][ T7587] name failslab, interval 1, probability 0, space 0, times 0 [ 208.822570][ T7574] Node 0 Normal free:4kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:312kB unevictable:0kB writepending:0kB present:1048580kB managed:364kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 208.863161][ T7587] CPU: 1 UID: 0 PID: 7587 Comm: syz.1.416 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 208.863210][ T7587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 208.863231][ T7587] Call Trace: [ 208.863240][ T7587] [ 208.863253][ T7587] dump_stack_lvl+0x16c/0x1f0 [ 208.863307][ T7587] should_fail_ex+0x50a/0x650 [ 208.863346][ T7587] ? fs_reclaim_acquire+0xae/0x150 [ 208.863405][ T7587] ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0 [ 208.863449][ T7587] should_failslab+0xc2/0x120 [ 208.863493][ T7587] __kmalloc_cache_noprof+0x68/0x420 [ 208.863528][ T7587] ? snd_pcm_hw_param_first+0x301/0x6b0 [ 208.863573][ T7587] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 208.863625][ T7587] snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0 [ 208.863676][ T7587] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 208.863723][ T7587] ? calc_src_frames.isra.0+0x187/0x1d0 [ 208.863778][ T7587] snd_pcm_oss_change_params_locked+0x13d7/0x3a50 [ 208.863842][ T7587] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 208.863886][ T7587] ? __mutex_lock+0x1cc/0xb10 [ 208.863973][ T7587] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 208.864025][ T7587] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 208.864071][ T7587] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 208.864120][ T7587] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 208.864170][ T7587] ? __fget_files+0x206/0x3a0 [ 208.864210][ T7587] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 208.864257][ T7587] __x64_sys_ioctl+0x190/0x200 [ 208.864311][ T7587] do_syscall_64+0xcd/0x250 [ 208.864364][ T7587] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.864411][ T7587] RIP: 0033:0x7fa5c158cda9 [ 208.864437][ T7587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 208.864469][ T7587] RSP: 002b:00007fa5c246b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 208.864500][ T7587] RAX: ffffffffffffffda RBX: 00007fa5c17a5fa0 RCX: 00007fa5c158cda9 [ 208.864522][ T7587] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 208.864542][ T7587] RBP: 00007fa5c160e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 208.864562][ T7587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 208.864582][ T7587] R13: 0000000000000000 R14: 00007fa5c17a5fa0 R15: 00007ffdd29cf6f8 [ 208.864625][ T7587] [ 208.939846][ T7598] netlink: 28 bytes leftover after parsing attributes in process `syz.0.417'. [ 208.954702][ T7574] lowmem_reserve[]: 0 0 0 0 0 [ 209.116105][ T7574] Node 1 Normal free:3910100kB boost:0kB min:55728kB low:69660kB high:83592kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:520kB local_pcp:520kB free_cma:0kB [ 209.116197][ T7574] lowmem_reserve[]: 0 0 0 0 0 [ 209.116261][ T7574] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 209.116466][ T7574] Node 0 DMA32: 1338*4kB (UME) 214*8kB (UME) 10*16kB (UME) 138*32kB (UME) 119*64kB (UME) 9*128kB (UME) 10*256kB (UME) 2*512kB (M) 6*1024kB (UME) 3*2048kB (ME) 279*4096kB (M) = 1179064kB [ 209.116725][ T7574] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 209.116907][ T7574] Node 1 Normal: 225*4kB (UME) 56*8kB (UME) 43*16kB (UME) 179*32kB (UME) 84*64kB (UME) 27*128kB (UM) 17*256kB (UM) 10*512kB (UME) 3*1024kB (U) 3*2048kB (UE) 946*4096kB (UM) = 3910100kB [ 209.117211][ T7574] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 209.117238][ T7574] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 209.117264][ T7574] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 209.117291][ T7574] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 209.117318][ T7574] 116583 total pagecache pages [ 209.117331][ T7574] 0 pages in swap cache [ 209.117343][ T7574] Free swap = 124856kB [ 209.117356][ T7574] Total swap = 124996kB [ 209.117371][ T7574] 2097051 pages RAM [ 209.117383][ T7574] 0 pages HighMem/MovableOnly [ 209.117395][ T7574] 427667 pages reserved [ 209.117407][ T7574] 0 pages cma reserved [ 209.332605][ T7602] netlink: 'syz.2.419': attribute type 1 has an invalid length. [ 209.464430][ T7602] netlink: 'syz.2.419': attribute type 1 has an invalid length. [ 209.476218][ T7602] netlink: 'syz.2.419': attribute type 1 has an invalid length. [ 209.512353][ T7602] netlink: 25 bytes leftover after parsing attributes in process `syz.2.419'. [ 210.870216][ T7634] netlink: 'syz.1.430': attribute type 1 has an invalid length. [ 210.897072][ T7634] netlink: 'syz.1.430': attribute type 1 has an invalid length. [ 210.916554][ T7634] netlink: 'syz.1.430': attribute type 1 has an invalid length. [ 210.947074][ T7634] netlink: 25 bytes leftover after parsing attributes in process `syz.1.430'. [ 211.649743][ T7653] netlink: 338 bytes leftover after parsing attributes in process `syz.2.432'. [ 211.981154][ T7658] Process accounting resumed [ 214.526020][ T7706] netlink: 28 bytes leftover after parsing attributes in process `syz.3.443'. [ 214.589603][ T7709] netlink: 28 bytes leftover after parsing attributes in process `syz.1.446'. [ 216.039840][ T7734] netlink: 'syz.3.450': attribute type 1 has an invalid length. [ 216.098427][ T7734] netlink: 'syz.3.450': attribute type 1 has an invalid length. [ 216.122281][ T7734] netlink: 'syz.3.450': attribute type 1 has an invalid length. [ 216.243983][ T7734] netlink: 25 bytes leftover after parsing attributes in process `syz.3.450'. [ 217.064604][ C0] vcan0: j1939_tp_rxtimer: 0xffff88823bf6ee00: rx timeout, send abort [ 217.073335][ C0] vcan0: j1939_tp_rxtimer: 0xffff88807cb2a000: rx timeout, send abort [ 217.082023][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88823bf6ee00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 217.097760][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88807cb2a000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 218.158363][ T7755] FAULT_INJECTION: forcing a failure. [ 218.158363][ T7755] name failslab, interval 1, probability 0, space 0, times 0 [ 218.203795][ T7755] CPU: 1 UID: 0 PID: 7755 Comm: syz.0.456 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 218.203839][ T7755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 218.203858][ T7755] Call Trace: [ 218.203869][ T7755] [ 218.203881][ T7755] dump_stack_lvl+0x16c/0x1f0 [ 218.203932][ T7755] should_fail_ex+0x50a/0x650 [ 218.203968][ T7755] ? fs_reclaim_acquire+0xae/0x150 [ 218.204029][ T7755] should_failslab+0xc2/0x120 [ 218.204070][ T7755] __kmalloc_noprof+0xce/0x4f0 [ 218.204105][ T7755] ? kasan_quarantine_put+0x10a/0x240 [ 218.204139][ T7755] ? constrain_params_by_rules+0xa0e/0xca0 [ 218.204182][ T7755] ? constrain_params_by_rules+0x176/0xca0 [ 218.204234][ T7755] constrain_params_by_rules+0x176/0xca0 [ 218.204305][ T7755] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 218.204359][ T7755] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 218.204403][ T7755] ? lock_acquire.part.0+0x11b/0x380 [ 218.204467][ T7755] snd_pcm_hw_refine+0x7ec/0xad0 [ 218.204517][ T7755] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 218.204570][ T7755] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 218.204621][ T7755] ? __pfx_lock_release+0x10/0x10 [ 218.204657][ T7755] ? snd_pcm_hw_param_value+0x266/0x5b0 [ 218.204704][ T7755] snd_pcm_hw_param_first+0x328/0x6b0 [ 218.204747][ T7755] ? trace_hw_mask_param+0x19e/0x210 [ 218.204790][ T7755] snd_pcm_hw_params+0x5b2/0x1b20 [ 218.204839][ T7755] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 218.204885][ T7755] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 218.204936][ T7755] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 218.204985][ T7755] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 218.205037][ T7755] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 218.205089][ T7755] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 218.205152][ T7755] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 218.205218][ T7755] ? __mutex_lock+0x1cc/0xb10 [ 218.205303][ T7755] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 218.205353][ T7755] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 218.205396][ T7755] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 218.205442][ T7755] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 218.205490][ T7755] ? __fget_files+0x206/0x3a0 [ 218.205530][ T7755] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 218.205574][ T7755] __x64_sys_ioctl+0x190/0x200 [ 218.205625][ T7755] do_syscall_64+0xcd/0x250 [ 218.205672][ T7755] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.205720][ T7755] RIP: 0033:0x7fbed198cda9 [ 218.205748][ T7755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 218.205780][ T7755] RSP: 002b:00007fbed281f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 218.205810][ T7755] RAX: ffffffffffffffda RBX: 00007fbed1ba5fa0 RCX: 00007fbed198cda9 [ 218.205832][ T7755] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 218.205851][ T7755] RBP: 00007fbed1a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 218.205870][ T7755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 218.205888][ T7755] R13: 0000000000000000 R14: 00007fbed1ba5fa0 R15: 00007ffd10a2e2f8 [ 218.205929][ T7755] [ 219.485407][ T7779] netlink: 28 bytes leftover after parsing attributes in process `syz.1.464'. [ 219.755173][ T7777] Process accounting resumed [ 219.772430][ T7782] netlink: 338 bytes leftover after parsing attributes in process `syz.1.465'. [ 220.204090][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 220.857936][ T7795] netlink: 28 bytes leftover after parsing attributes in process `syz.2.468'. [ 221.194590][ T7785] warn_alloc: 3 callbacks suppressed [ 221.194617][ T7785] syz.3.466: vmalloc error: size 86016, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 221.247724][ T7793] FAULT_INJECTION: forcing a failure. [ 221.247724][ T7793] name failslab, interval 1, probability 0, space 0, times 0 [ 221.257962][ T7785] CPU: 0 UID: 0 PID: 7785 Comm: syz.3.466 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 221.258011][ T7785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 221.258030][ T7785] Call Trace: [ 221.258040][ T7785] [ 221.258052][ T7785] dump_stack_lvl+0x16c/0x1f0 [ 221.258109][ T7785] warn_alloc+0x24d/0x3a0 [ 221.258151][ T7785] ? __pfx_warn_alloc+0x10/0x10 [ 221.258194][ T7785] ? alloc_pages_mpol+0x25b/0x540 [ 221.258240][ T7785] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 221.258294][ T7785] ? trace_kmalloc+0x2d/0xd0 [ 221.258355][ T7785] __vmalloc_node_range_noprof+0x12bd/0x1530 [ 221.258407][ T7785] ? __snd_dma_alloc_pages+0x50/0x90 [ 221.258471][ T7785] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 221.258508][ T7785] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 221.258567][ T7785] ? __snd_dma_alloc_pages+0x50/0x90 [ 221.258620][ T7785] vmalloc_noprof+0x6b/0x90 [ 221.258653][ T7785] ? __snd_dma_alloc_pages+0x50/0x90 [ 221.258702][ T7785] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 221.258756][ T7785] __snd_dma_alloc_pages+0x50/0x90 [ 221.258809][ T7785] snd_dma_alloc_dir_pages+0x151/0x240 [ 221.258867][ T7785] do_alloc_pages+0x115/0x270 [ 221.258921][ T7785] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 221.258980][ T7785] snd_pcm_hw_params+0x15e6/0x1b20 [ 221.259035][ T7785] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 221.259085][ T7785] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 221.259139][ T7785] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 221.259190][ T7785] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 221.259243][ T7785] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 221.259305][ T7785] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 221.259369][ T7785] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 221.259413][ T7785] ? __mutex_lock+0x1cc/0xb10 [ 221.259494][ T7785] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 221.259546][ T7785] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 221.259591][ T7785] ? __pfx___might_resched+0x10/0x10 [ 221.259638][ T7785] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 221.259689][ T7785] ? __fget_files+0x206/0x3a0 [ 221.259729][ T7785] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 221.259777][ T7785] __x64_sys_ioctl+0x190/0x200 [ 221.259831][ T7785] do_syscall_64+0xcd/0x250 [ 221.259883][ T7785] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.259931][ T7785] RIP: 0033:0x7fe41878cda9 [ 221.259958][ T7785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.259990][ T7785] RSP: 002b:00007fe419652038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 221.260021][ T7785] RAX: ffffffffffffffda RBX: 00007fe4189a5fa0 RCX: 00007fe41878cda9 [ 221.260043][ T7785] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000007 [ 221.260064][ T7785] RBP: 00007fe41880e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 221.260083][ T7785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 221.260104][ T7785] R13: 0000000000000000 R14: 00007fe4189a5fa0 R15: 00007fff6817c238 [ 221.260147][ T7785] [ 221.260160][ T7785] Mem-Info: [ 221.285251][ T7793] CPU: 1 UID: 0 PID: 7793 Comm: syz.1.469 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 221.285298][ T7793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 221.285319][ T7793] Call Trace: [ 221.285328][ T7793] [ 221.285341][ T7793] dump_stack_lvl+0x16c/0x1f0 [ 221.285395][ T7793] should_fail_ex+0x50a/0x650 [ 221.285435][ T7793] ? fs_reclaim_acquire+0xae/0x150 [ 221.285493][ T7793] should_failslab+0xc2/0x120 [ 221.285535][ T7793] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 221.285576][ T7793] ? __pfx___might_resched+0x10/0x10 [ 221.285617][ T7793] ? alloc_vmap_area+0x636/0x2a60 [ 221.285676][ T7793] alloc_vmap_area+0x636/0x2a60 [ 221.285744][ T7793] ? __pfx_alloc_vmap_area+0x10/0x10 [ 221.285810][ T7793] __get_vm_area_node+0x19e/0x2f0 [ 221.285873][ T7793] __vmalloc_node_range_noprof+0x26a/0x1530 [ 221.285909][ T7793] ? __snd_dma_alloc_pages+0x50/0x90 [ 221.285962][ T7793] ? find_held_lock+0x2d/0x110 [ 221.286018][ T7793] ? do_alloc_pages+0xd3/0x270 [ 221.286065][ T7793] ? __pfx_lock_release+0x10/0x10 [ 221.286105][ T7793] ? __snd_dma_alloc_pages+0x50/0x90 [ 221.286160][ T7793] ? __mutex_lock+0x1cc/0xb10 [ 221.286217][ T7793] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 221.286263][ T7793] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 221.286321][ T7793] ? __snd_dma_alloc_pages+0x50/0x90 [ 221.286376][ T7793] vmalloc_noprof+0x6b/0x90 [ 221.286409][ T7793] ? __snd_dma_alloc_pages+0x50/0x90 [ 221.286461][ T7793] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 221.286515][ T7793] __snd_dma_alloc_pages+0x50/0x90 [ 221.286569][ T7793] snd_dma_alloc_dir_pages+0x151/0x240 [ 221.286627][ T7793] do_alloc_pages+0x115/0x270 [ 221.286681][ T7793] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 221.286740][ T7793] snd_pcm_hw_params+0x15e6/0x1b20 [ 221.286795][ T7793] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 221.286845][ T7793] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 221.286899][ T7793] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 221.286949][ T7793] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 221.286999][ T7793] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 221.287049][ T7793] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 221.287113][ T7793] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 221.287157][ T7793] ? __mutex_lock+0x1cc/0xb10 [ 221.287242][ T7793] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 221.287294][ T7793] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 221.287340][ T7793] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 221.287388][ T7793] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 221.287440][ T7793] ? __fget_files+0x206/0x3a0 [ 221.287481][ T7793] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 221.287528][ T7793] __x64_sys_ioctl+0x190/0x200 [ 221.287584][ T7793] do_syscall_64+0xcd/0x250 [ 221.287641][ T7793] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.287689][ T7793] RIP: 0033:0x7fa5c158cda9 [ 221.287717][ T7793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.287749][ T7793] RSP: 002b:00007fa5c246b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 221.287781][ T7793] RAX: ffffffffffffffda RBX: 00007fa5c17a5fa0 RCX: 00007fa5c158cda9 [ 221.287803][ T7793] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 221.287823][ T7793] RBP: 00007fa5c160e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 221.287842][ T7793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 221.287862][ T7793] R13: 0000000000000000 R14: 00007fa5c17a5fa0 R15: 00007ffdd29cf6f8 [ 221.287905][ T7793] [ 221.809208][ T7805] netlink: 28 bytes leftover after parsing attributes in process `syz.1.471'. [ 221.814358][ T7785] active_anon:77476 inactive_anon:0 isolated_anon:0 [ 221.814358][ T7785] active_file:3985 inactive_file:59303 isolated_file:0 [ 221.814358][ T7785] unevictable:768 dirty:774 writeback:0 [ 221.814358][ T7785] slab_reclaimable:10750 slab_unreclaimable:97919 [ 221.814358][ T7785] mapped:35904 shmem:69748 pagetables:1029 [ 221.814358][ T7785] sec_pagetables:0 bounce:0 [ 221.814358][ T7785] kernel_misc_reclaimable:0 [ 221.814358][ T7785] free:1256723 free_pcp:2582 free_cma:0 [ 221.994593][ T7785] Node 0 active_anon:303000kB inactive_anon:0kB active_file:15940kB inactive_file:237140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:145184kB dirty:3208kB writeback:0kB shmem:270684kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10652kB pagetables:4216kB sec_pagetables:0kB all_unreclaimable? no [ 222.033986][ T7785] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 222.123499][ T7785] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 222.152396][ T7785] lowmem_reserve[]: 0 2490 2491 0 0 [ 222.177266][ T7785] Node 0 DMA32 free:1114520kB boost:0kB min:34168kB low:42708kB high:51248kB reserved_highatomic:0KB active_anon:298860kB inactive_anon:0kB active_file:15940kB inactive_file:236828kB unevictable:1536kB writepending:3208kB present:3129332kB managed:2550648kB mlocked:0kB bounce:0kB free_pcp:15316kB local_pcp:5644kB free_cma:0kB [ 222.222994][ T7785] lowmem_reserve[]: 0 0 0 0 0 [ 222.227865][ T7785] Node 0 Normal free:4kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:312kB unevictable:0kB writepending:0kB present:1048580kB managed:364kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 222.302854][ T7785] lowmem_reserve[]: 0 0 0 0 0 [ 222.308542][ T7809] netlink: 338 bytes leftover after parsing attributes in process `syz.2.473'. [ 222.312508][ T7785] Node 1 Normal free:3910620kB boost:0kB min:55728kB low:69660kB high:83592kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 222.384412][ T7811] netlink: 28 bytes leftover after parsing attributes in process `syz.1.474'. [ 222.421912][ T7785] lowmem_reserve[]: 0 0 0 0 0 [ 222.426839][ T7785] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 222.501799][ T7785] Node 0 DMA32: 5596*4kB (UM) 412*8kB (UME) 394*16kB (UME) 544*32kB (UM) 227*64kB (UME) 134*128kB (UME) 110*256kB (UM) 10*512kB (UM) 10*1024kB (ME) 5*2048kB (ME) 239*4096kB (M) = 1113776kB [ 222.571140][ T7785] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 222.600940][ T7785] Node 1 Normal: 223*4kB (UE) 54*8kB (UME) 41*16kB (UME) 179*32kB (UME) 83*64kB (UME) 26*128kB (UM) 14*256kB (UM) 11*512kB (UME) 4*1024kB (UM) 3*2048kB (UE) 946*4096kB (UM) = 3910620kB [ 222.679569][ T7785] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 222.704676][ T7785] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 222.730639][ T7785] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 222.799893][ T7785] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 222.829814][ T7785] 123243 total pagecache pages [ 222.834679][ T7785] 0 pages in swap cache [ 222.838890][ T7785] Free swap = 124776kB [ 222.859548][ T7785] Total swap = 124996kB [ 222.869817][ T7785] 2097051 pages RAM [ 222.873717][ T7785] 0 pages HighMem/MovableOnly [ 222.887040][ T7785] 427667 pages reserved [ 222.899370][ T7785] 0 pages cma reserved [ 223.435015][ T7829] netlink: 338 bytes leftover after parsing attributes in process `syz.3.479'. [ 225.089300][ T7836] FAULT_INJECTION: forcing a failure. [ 225.089300][ T7836] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 225.237551][ T7836] CPU: 1 UID: 0 PID: 7836 Comm: syz.0.481 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 225.237609][ T7836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 225.237630][ T7836] Call Trace: [ 225.237641][ T7836] [ 225.237654][ T7836] dump_stack_lvl+0x16c/0x1f0 [ 225.237713][ T7836] should_fail_ex+0x50a/0x650 [ 225.237748][ T7836] ? __pfx___might_resched+0x10/0x10 [ 225.237799][ T7836] should_fail_alloc_page+0xe7/0x130 [ 225.237842][ T7836] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 225.237957][ T7836] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 225.238005][ T7836] ? unwind_get_return_address+0x59/0xa0 [ 225.238056][ T7836] ? arch_stack_walk+0xa7/0x100 [ 225.238119][ T7836] ? hlock_class+0x4e/0x130 [ 225.238276][ T7836] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 225.238342][ T7836] ? __pfx___lock_acquire+0x10/0x10 [ 225.238381][ T7836] ? kasan_save_stack+0x42/0x60 [ 225.238416][ T7836] ? kasan_save_stack+0x33/0x60 [ 225.238448][ T7836] ? kasan_save_track+0x14/0x30 [ 225.238483][ T7836] ? __kasan_slab_alloc+0x89/0x90 [ 225.238520][ T7836] ? kmem_cache_alloc_node_noprof+0x1ca/0x3b0 [ 225.238556][ T7836] ? alloc_vmap_area+0x636/0x2a60 [ 225.238603][ T7836] ? __get_vm_area_node+0x19e/0x2f0 [ 225.238655][ T7836] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 225.238732][ T7836] ? policy_nodemask+0xea/0x4e0 [ 225.238779][ T7836] alloc_pages_mpol+0x1fc/0x540 [ 225.238822][ T7836] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 225.238859][ T7836] ? __page_table_check_ptes_set+0x16b/0x3e0 [ 225.238901][ T7836] ? do_raw_spin_lock+0x12d/0x2c0 [ 225.238950][ T7836] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 225.239021][ T7836] alloc_pages_noprof+0x131/0x390 [ 225.239061][ T7836] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 225.239096][ T7836] get_free_pages_noprof+0xc/0x40 [ 225.239141][ T7836] kasan_populate_vmalloc_pte+0x2d/0x160 [ 225.239177][ T7836] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 225.239213][ T7836] __apply_to_page_range+0x5fd/0xd30 [ 225.239251][ T7836] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 225.239294][ T7836] ? __pfx___apply_to_page_range+0x10/0x10 [ 225.239331][ T7836] ? insert_vmap_area+0x2ef/0x4d0 [ 225.239383][ T7836] alloc_vmap_area+0x93e/0x2a60 [ 225.239451][ T7836] ? __pfx_alloc_vmap_area+0x10/0x10 [ 225.239513][ T7836] __get_vm_area_node+0x19e/0x2f0 [ 225.239566][ T7836] ? lock_acquire.part.0+0x11b/0x380 [ 225.239612][ T7836] __vmalloc_node_range_noprof+0x26a/0x1530 [ 225.239645][ T7836] ? __snd_dma_alloc_pages+0x50/0x90 [ 225.239696][ T7836] ? find_held_lock+0x2d/0x110 [ 225.239764][ T7836] ? do_alloc_pages+0xd3/0x270 [ 225.239808][ T7836] ? __pfx_lock_release+0x10/0x10 [ 225.239846][ T7836] ? __snd_dma_alloc_pages+0x50/0x90 [ 225.239895][ T7836] ? trace_contention_end+0xee/0x140 [ 225.239944][ T7836] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 225.239978][ T7836] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 225.240032][ T7836] ? __snd_dma_alloc_pages+0x50/0x90 [ 225.240084][ T7836] vmalloc_noprof+0x6b/0x90 [ 225.240117][ T7836] ? __snd_dma_alloc_pages+0x50/0x90 [ 225.240162][ T7836] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 225.240215][ T7836] __snd_dma_alloc_pages+0x50/0x90 [ 225.240267][ T7836] snd_dma_alloc_dir_pages+0x151/0x240 [ 225.240322][ T7836] do_alloc_pages+0x115/0x270 [ 225.240368][ T7836] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 225.240419][ T7836] snd_pcm_hw_params+0x15e6/0x1b20 [ 225.240474][ T7836] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 225.240518][ T7836] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 225.240564][ T7836] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 225.240603][ T7836] ? kfree+0x2c4/0x4d0 [ 225.240634][ T7836] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 225.240684][ T7836] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 225.240756][ T7836] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 225.240803][ T7836] ? __pfx___mutex_lock+0x10/0x10 [ 225.240874][ T7836] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 225.240917][ T7836] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 225.240955][ T7836] snd_pcm_oss_sync+0x1d7/0x7f0 [ 225.241001][ T7836] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 225.241042][ T7836] snd_pcm_oss_release+0x28b/0x310 [ 225.241083][ T7836] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 225.241122][ T7836] __fput+0x3ff/0xb70 [ 225.241171][ T7836] task_work_run+0x14e/0x250 [ 225.241209][ T7836] ? __pfx_task_work_run+0x10/0x10 [ 225.241246][ T7836] ? __pfx___do_sys_close_range+0x10/0x10 [ 225.241290][ T7836] syscall_exit_to_user_mode+0x27b/0x2a0 [ 225.241336][ T7836] do_syscall_64+0xda/0x250 [ 225.241385][ T7836] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 225.241426][ T7836] RIP: 0033:0x7fbed198cda9 [ 225.241449][ T7836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 225.241478][ T7836] RSP: 002b:00007fbed281f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 225.241509][ T7836] RAX: 0000000000000000 RBX: 00007fbed1ba5fa0 RCX: 00007fbed198cda9 [ 225.241531][ T7836] RDX: 0000000000000000 RSI: 0000000000008000 RDI: 0000000000000002 [ 225.241549][ T7836] RBP: 00007fbed1a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 225.241568][ T7836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 225.241586][ T7836] R13: 0000000000000000 R14: 00007fbed1ba5fa0 R15: 00007ffd10a2e2f8 [ 225.241626][ T7836] [ 227.054366][ T7864] netlink: 338 bytes leftover after parsing attributes in process `syz.3.489'. [ 227.243042][ T7865] Process accounting resumed [ 228.065743][ T7884] netlink: 'syz.3.494': attribute type 1 has an invalid length. [ 228.090852][ T7882] netlink: 'syz.3.494': attribute type 1 has an invalid length. [ 228.109358][ T7884] netlink: 'syz.3.494': attribute type 1 has an invalid length. [ 228.129441][ T7882] netlink: 'syz.3.494': attribute type 1 has an invalid length. [ 228.168075][ T7884] netlink: 'syz.3.494': attribute type 1 has an invalid length. [ 228.193370][ T7882] netlink: 'syz.3.494': attribute type 1 has an invalid length. [ 228.201059][ T7884] netlink: 25 bytes leftover after parsing attributes in process `syz.3.494'. [ 228.201205][ T7882] netlink: 25 bytes leftover after parsing attributes in process `syz.3.494'. [ 228.514096][ T7898] netlink: 'syz.0.496': attribute type 1 has an invalid length. [ 228.544313][ T7898] netlink: 'syz.0.496': attribute type 1 has an invalid length. [ 228.563748][ T7898] netlink: 'syz.0.496': attribute type 1 has an invalid length. [ 228.586998][ T7899] netlink: 28 bytes leftover after parsing attributes in process `syz.2.498'. [ 228.597237][ T7898] netlink: 25 bytes leftover after parsing attributes in process `syz.0.496'. [ 229.565955][ T7918] FAULT_INJECTION: forcing a failure. [ 229.565955][ T7918] name failslab, interval 1, probability 0, space 0, times 0 [ 229.616109][ T7918] CPU: 0 UID: 0 PID: 7918 Comm: syz.2.501 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 229.616155][ T7918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 229.616172][ T7918] Call Trace: [ 229.616180][ T7918] [ 229.616191][ T7918] dump_stack_lvl+0x16c/0x1f0 [ 229.616238][ T7918] should_fail_ex+0x50a/0x650 [ 229.616270][ T7918] ? fs_reclaim_acquire+0xae/0x150 [ 229.616320][ T7918] ? snd_pcm_oss_open+0x60a/0x1400 [ 229.616354][ T7918] should_failslab+0xc2/0x120 [ 229.616400][ T7918] __kmalloc_cache_noprof+0x68/0x420 [ 229.616440][ T7918] snd_pcm_oss_open+0x60a/0x1400 [ 229.616486][ T7918] ? __pfx___lock_acquire+0x10/0x10 [ 229.616522][ T7918] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 229.616563][ T7918] ? __pfx_default_wake_function+0x10/0x10 [ 229.616599][ T7918] ? find_held_lock+0x2d/0x110 [ 229.616647][ T7918] ? __pfx_lock_release+0x10/0x10 [ 229.616677][ T7918] ? do_raw_spin_lock+0x12d/0x2c0 [ 229.616722][ T7918] ? lock_acquire+0x2f/0xb0 [ 229.616755][ T7918] ? soundcore_open+0x8e/0x580 [ 229.616786][ T7918] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 229.616827][ T7918] soundcore_open+0x409/0x580 [ 229.616862][ T7918] ? __pfx_soundcore_open+0x10/0x10 [ 229.616895][ T7918] chrdev_open+0x237/0x6a0 [ 229.616926][ T7918] ? __pfx_apparmor_file_open+0x10/0x10 [ 229.616971][ T7918] ? __pfx_chrdev_open+0x10/0x10 [ 229.617004][ T7918] ? file_set_fsnotify_mode+0x163/0x5d0 [ 229.617053][ T7918] do_dentry_open+0x735/0x1c40 [ 229.617087][ T7918] ? __pfx_chrdev_open+0x10/0x10 [ 229.617125][ T7918] ? inode_permission+0xdd/0x5f0 [ 229.617174][ T7918] vfs_open+0x82/0x3f0 [ 229.617214][ T7918] ? may_open+0x1f2/0x400 [ 229.617264][ T7918] path_openat+0x1e88/0x2d80 [ 229.617313][ T7918] ? __pfx_path_openat+0x10/0x10 [ 229.617348][ T7918] ? __pfx___lock_acquire+0x10/0x10 [ 229.617398][ T7918] ? lock_acquire.part.0+0x11b/0x380 [ 229.617439][ T7918] ? find_held_lock+0x2d/0x110 [ 229.617496][ T7918] do_filp_open+0x20c/0x470 [ 229.617533][ T7918] ? __pfx_do_filp_open+0x10/0x10 [ 229.617565][ T7918] ? find_held_lock+0x2d/0x110 [ 229.617644][ T7918] ? alloc_fd+0x41f/0x760 [ 229.617688][ T7918] do_sys_openat2+0x17a/0x1e0 [ 229.617732][ T7918] ? __pfx_do_sys_openat2+0x10/0x10 [ 229.617778][ T7918] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 229.617832][ T7918] __x64_sys_openat+0x175/0x210 [ 229.617878][ T7918] ? __pfx___x64_sys_openat+0x10/0x10 [ 229.617940][ T7918] do_syscall_64+0xcd/0x250 [ 229.617991][ T7918] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 229.618037][ T7918] RIP: 0033:0x7f816d78cda9 [ 229.618063][ T7918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 229.618093][ T7918] RSP: 002b:00007f816e682038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 229.618122][ T7918] RAX: ffffffffffffffda RBX: 00007f816d9a5fa0 RCX: 00007f816d78cda9 [ 229.618144][ T7918] RDX: 0000000000101140 RSI: 0000000020000100 RDI: ffffffffffffff9c [ 229.618163][ T7918] RBP: 00007f816d80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 229.618182][ T7918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 229.618199][ T7918] R13: 0000000000000000 R14: 00007f816d9a5fa0 R15: 00007ffc9ff4a618 [ 229.618238][ T7918] [ 230.304146][ T5145] Bluetooth: hci1: unexpected event 0x06 length: 11 > 3 [ 230.663986][ T7949] tipc: Started in network mode [ 230.696698][ T7949] tipc: Node identity ee00, cluster identity 4711 [ 230.713466][ T7949] tipc: Node number set to 60928 [ 230.970890][ T29] audit: type=1806 audit(4294967318.249:16): xattr="." res=0 [ 231.629538][ T7965] FAULT_INJECTION: forcing a failure. [ 231.629538][ T7965] name failslab, interval 1, probability 0, space 0, times 0 [ 231.653964][ T7965] CPU: 0 UID: 0 PID: 7965 Comm: syz.2.506 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 231.654009][ T7965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 231.654029][ T7965] Call Trace: [ 231.654038][ T7965] [ 231.654049][ T7965] dump_stack_lvl+0x16c/0x1f0 [ 231.654102][ T7965] should_fail_ex+0x50a/0x650 [ 231.654138][ T7965] ? fs_reclaim_acquire+0xae/0x150 [ 231.654194][ T7965] should_failslab+0xc2/0x120 [ 231.654248][ T7965] __kmalloc_noprof+0xce/0x4f0 [ 231.654284][ T7965] ? hlock_class+0x4e/0x130 [ 231.654331][ T7965] ? constrain_params_by_rules+0x176/0xca0 [ 231.654383][ T7965] constrain_params_by_rules+0x176/0xca0 [ 231.654443][ T7965] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 231.654487][ T7965] ? lock_acquire.part.0+0x11b/0x380 [ 231.654549][ T7965] ? hlock_class+0x4e/0x130 [ 231.654596][ T7965] ? mark_lock+0xb5/0xc60 [ 231.654631][ T7965] ? snd_interval_refine+0x2fa/0x580 [ 231.654668][ T7965] snd_pcm_hw_refine+0x7ec/0xad0 [ 231.654719][ T7965] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 231.654767][ T7965] ? __pfx_lock_release+0x10/0x10 [ 231.654810][ T7965] ? mark_held_locks+0x9f/0xe0 [ 231.654857][ T7965] snd_pcm_hw_params+0x3e6/0x1b20 [ 231.654903][ T7965] ? kfree+0x2c4/0x4d0 [ 231.654929][ T7965] ? snd_pcm_hw_param_first+0x301/0x6b0 [ 231.654971][ T7965] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 231.655018][ T7965] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 231.655069][ T7965] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 231.655118][ T7965] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 231.655168][ T7965] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 231.655229][ T7965] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 231.655293][ T7965] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 231.655336][ T7965] ? __mutex_lock+0x1cc/0xb10 [ 231.655414][ T7965] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 231.655462][ T7965] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 231.655506][ T7965] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 231.655551][ T7965] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 231.655600][ T7965] ? __fget_files+0x206/0x3a0 [ 231.655639][ T7965] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 231.655684][ T7965] __x64_sys_ioctl+0x190/0x200 [ 231.655737][ T7965] do_syscall_64+0xcd/0x250 [ 231.655788][ T7965] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.655833][ T7965] RIP: 0033:0x7f816d78cda9 [ 231.655859][ T7965] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.655892][ T7965] RSP: 002b:00007f816e682038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 231.655922][ T7965] RAX: ffffffffffffffda RBX: 00007f816d9a5fa0 RCX: 00007f816d78cda9 [ 231.655942][ T7965] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 231.655960][ T7965] RBP: 00007f816d80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 231.655979][ T7965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 231.655998][ T7965] R13: 0000000000000000 R14: 00007f816d9a5fa0 R15: 00007ffc9ff4a618 [ 231.656038][ T7965] [ 232.127759][ T7985] FAULT_INJECTION: forcing a failure. [ 232.127759][ T7985] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 232.141118][ T7985] CPU: 0 UID: 0 PID: 7985 Comm: syz.0.510 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 232.141164][ T7985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 232.141183][ T7985] Call Trace: [ 232.141192][ T7985] [ 232.141203][ T7985] dump_stack_lvl+0x16c/0x1f0 [ 232.141253][ T7985] should_fail_ex+0x50a/0x650 [ 232.141287][ T7985] ? __pfx___might_resched+0x10/0x10 [ 232.141334][ T7985] should_fail_alloc_page+0xe7/0x130 [ 232.141377][ T7985] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 232.141430][ T7985] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 232.141482][ T7985] __alloc_frozen_pages_noprof+0x18e/0x2470 [ 232.141535][ T7985] ? unwind_get_return_address+0x59/0xa0 [ 232.141585][ T7985] ? arch_stack_walk+0xa7/0x100 [ 232.141638][ T7985] ? hlock_class+0x4e/0x130 [ 232.141677][ T7985] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 232.141726][ T7985] ? __pfx___lock_acquire+0x10/0x10 [ 232.141761][ T7985] ? kasan_save_stack+0x42/0x60 [ 232.141792][ T7985] ? kasan_save_stack+0x33/0x60 [ 232.141823][ T7985] ? kasan_save_track+0x14/0x30 [ 232.141854][ T7985] ? __kasan_slab_alloc+0x89/0x90 [ 232.141888][ T7985] ? kmem_cache_alloc_node_noprof+0x1ca/0x3b0 [ 232.141924][ T7985] ? alloc_vmap_area+0x636/0x2a60 [ 232.141968][ T7985] ? __get_vm_area_node+0x19e/0x2f0 [ 232.142015][ T7985] ? __vmalloc_node_range_noprof+0x26a/0x1530 [ 232.142047][ T7985] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 232.142090][ T7985] ? policy_nodemask+0xea/0x4e0 [ 232.142131][ T7985] alloc_pages_mpol+0x1fc/0x540 [ 232.142171][ T7985] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 232.142209][ T7985] ? __page_table_check_ptes_set+0x16b/0x3e0 [ 232.142249][ T7985] ? do_raw_spin_lock+0x12d/0x2c0 [ 232.142296][ T7985] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 232.142349][ T7985] alloc_pages_noprof+0x131/0x390 [ 232.142390][ T7985] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 232.142425][ T7985] get_free_pages_noprof+0xc/0x40 [ 232.142470][ T7985] kasan_populate_vmalloc_pte+0x2d/0x160 [ 232.142514][ T7985] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 232.142550][ T7985] __apply_to_page_range+0x5fd/0xd30 [ 232.142588][ T7985] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10 [ 232.142632][ T7985] ? __pfx___apply_to_page_range+0x10/0x10 [ 232.142668][ T7985] ? insert_vmap_area+0x2ef/0x4d0 [ 232.142722][ T7985] alloc_vmap_area+0x93e/0x2a60 [ 232.142789][ T7985] ? __pfx_alloc_vmap_area+0x10/0x10 [ 232.142850][ T7985] __get_vm_area_node+0x19e/0x2f0 [ 232.142912][ T7985] __vmalloc_node_range_noprof+0x26a/0x1530 [ 232.142948][ T7985] ? __snd_dma_alloc_pages+0x50/0x90 [ 232.142996][ T7985] ? find_held_lock+0x2d/0x110 [ 232.143052][ T7985] ? do_alloc_pages+0xd3/0x270 [ 232.143097][ T7985] ? __pfx_lock_release+0x10/0x10 [ 232.143136][ T7985] ? __snd_dma_alloc_pages+0x50/0x90 [ 232.143186][ T7985] ? __mutex_lock+0x1cc/0xb10 [ 232.143236][ T7985] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 232.143271][ T7985] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 232.143327][ T7985] ? __snd_dma_alloc_pages+0x50/0x90 [ 232.143380][ T7985] vmalloc_noprof+0x6b/0x90 [ 232.143411][ T7985] ? __snd_dma_alloc_pages+0x50/0x90 [ 232.143456][ T7985] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 232.143526][ T7985] __snd_dma_alloc_pages+0x50/0x90 [ 232.143579][ T7985] snd_dma_alloc_dir_pages+0x151/0x240 [ 232.143635][ T7985] do_alloc_pages+0x115/0x270 [ 232.143688][ T7985] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 232.143746][ T7985] snd_pcm_hw_params+0x15e6/0x1b20 [ 232.143799][ T7985] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 232.143844][ T7985] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 232.143895][ T7985] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 232.143944][ T7985] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 232.143996][ T7985] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 232.144048][ T7985] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 232.144110][ T7985] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 232.144153][ T7985] ? __mutex_lock+0x1cc/0xb10 [ 232.144250][ T7985] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 232.144297][ T7985] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 232.144346][ T7985] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 232.144395][ T7985] ? __fget_files+0x206/0x3a0 [ 232.144435][ T7985] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 232.144479][ T7985] __x64_sys_ioctl+0x190/0x200 [ 232.144545][ T7985] do_syscall_64+0xcd/0x250 [ 232.144595][ T7985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.144642][ T7985] RIP: 0033:0x7fbed198cda9 [ 232.144668][ T7985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 232.144700][ T7985] RSP: 002b:00007fbed27bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 232.144731][ T7985] RAX: ffffffffffffffda RBX: 00007fbed1ba6240 RCX: 00007fbed198cda9 [ 232.144752][ T7985] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 232.144771][ T7985] RBP: 00007fbed1a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 232.144790][ T7985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 232.144808][ T7985] R13: 0000000000000000 R14: 00007fbed1ba6240 R15: 00007ffd10a2e2f8 [ 232.144849][ T7985] [ 232.656994][ T7985] warn_alloc: 3 callbacks suppressed [ 232.657021][ T7985] syz.0.510: vmalloc error: size 1048576, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 232.947328][ T7985] CPU: 1 UID: 0 PID: 7985 Comm: syz.0.510 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 232.947376][ T7985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 232.947396][ T7985] Call Trace: [ 232.947405][ T7985] [ 232.947418][ T7985] dump_stack_lvl+0x16c/0x1f0 [ 232.947471][ T7985] warn_alloc+0x24d/0x3a0 [ 232.947518][ T7985] ? __pfx_warn_alloc+0x10/0x10 [ 232.947561][ T7985] ? kfree+0x2c4/0x4d0 [ 232.947601][ T7985] ? __get_vm_area_node+0x1dc/0x2f0 [ 232.947665][ T7985] __vmalloc_node_range_noprof+0xd24/0x1530 [ 232.947700][ T7985] ? find_held_lock+0x2d/0x110 [ 232.947756][ T7985] ? do_alloc_pages+0xd3/0x270 [ 232.947804][ T7985] ? __pfx_lock_release+0x10/0x10 [ 232.947844][ T7985] ? __snd_dma_alloc_pages+0x50/0x90 [ 232.947897][ T7985] ? __mutex_lock+0x1cc/0xb10 [ 232.947948][ T7985] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 232.947985][ T7985] ? __mutex_unlock_slowpath+0x164/0x6a0 [ 232.948041][ T7985] ? __snd_dma_alloc_pages+0x50/0x90 [ 232.948093][ T7985] vmalloc_noprof+0x6b/0x90 [ 232.948126][ T7985] ? __snd_dma_alloc_pages+0x50/0x90 [ 232.948174][ T7985] ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10 [ 232.948238][ T7985] __snd_dma_alloc_pages+0x50/0x90 [ 232.948292][ T7985] snd_dma_alloc_dir_pages+0x151/0x240 [ 232.948348][ T7985] do_alloc_pages+0x115/0x270 [ 232.948402][ T7985] snd_pcm_lib_malloc_pages+0x3df/0x980 [ 232.948462][ T7985] snd_pcm_hw_params+0x15e6/0x1b20 [ 232.948511][ T7985] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 232.948559][ T7985] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 232.948610][ T7985] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 232.948660][ T7985] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 232.948712][ T7985] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 232.948765][ T7985] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 232.948827][ T7985] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 232.948870][ T7985] ? __mutex_lock+0x1cc/0xb10 [ 232.948946][ T7985] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 232.948996][ T7985] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 232.949044][ T7985] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 232.949094][ T7985] ? __fget_files+0x206/0x3a0 [ 232.949136][ T7985] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 232.949181][ T7985] __x64_sys_ioctl+0x190/0x200 [ 232.949246][ T7985] do_syscall_64+0xcd/0x250 [ 232.949296][ T7985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.949342][ T7985] RIP: 0033:0x7fbed198cda9 [ 232.949370][ T7985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 232.949402][ T7985] RSP: 002b:00007fbed27bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 232.949433][ T7985] RAX: ffffffffffffffda RBX: 00007fbed1ba6240 RCX: 00007fbed198cda9 [ 232.949452][ T7985] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 232.949471][ T7985] RBP: 00007fbed1a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 232.949489][ T7985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 232.949507][ T7985] R13: 0000000000000000 R14: 00007fbed1ba6240 R15: 00007ffd10a2e2f8 [ 232.949547][ T7985] [ 233.315838][ T7985] Mem-Info: [ 233.319068][ T7985] active_anon:23504 inactive_anon:0 isolated_anon:0 [ 233.319068][ T7985] active_file:3999 inactive_file:64275 isolated_file:0 [ 233.319068][ T7985] unevictable:768 dirty:871 writeback:0 [ 233.319068][ T7985] slab_reclaimable:11053 slab_unreclaimable:97957 [ 233.319068][ T7985] mapped:32686 shmem:15722 pagetables:975 [ 233.319068][ T7985] sec_pagetables:0 bounce:0 [ 233.319068][ T7985] kernel_misc_reclaimable:0 [ 233.319068][ T7985] free:1305852 free_pcp:3992 free_cma:0 [ 233.768217][ T7985] Node 0 active_anon:105716kB inactive_anon:0kB active_file:15996kB inactive_file:257028kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:111444kB dirty:3484kB writeback:0kB shmem:73152kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10748kB pagetables:3800kB sec_pagetables:0kB all_unreclaimable? no [ 233.833167][ T7997] netlink: 342 bytes leftover after parsing attributes in process `syz.3.515'. [ 233.853381][ T7997] netlink: 342 bytes leftover after parsing attributes in process `syz.3.515'. [ 233.866269][ T7997] netlink: 342 bytes leftover after parsing attributes in process `syz.3.515'. [ 233.922245][ T7985] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 234.012977][ T7999] netlink: 338 bytes leftover after parsing attributes in process `syz.2.516'. [ 234.061552][ T7985] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 234.113925][ T7985] lowmem_reserve[]: 0 2490 2491 0 0 [ 234.143725][ T7985] Node 0 DMA32 free:1298048kB boost:0kB min:34168kB low:42708kB high:51248kB reserved_highatomic:0KB active_anon:100492kB inactive_anon:0kB active_file:15996kB inactive_file:256716kB unevictable:1536kB writepending:3508kB present:3129332kB managed:2550648kB mlocked:0kB bounce:0kB free_pcp:8324kB local_pcp:4768kB free_cma:0kB [ 234.184785][ T7985] lowmem_reserve[]: 0 0 0 0 0 [ 234.200041][ T7985] Node 0 Normal free:4kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:312kB unevictable:0kB writepending:0kB present:1048580kB managed:364kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 234.257601][ T7985] lowmem_reserve[]: 0 0 0 0 0 [ 234.299456][ T7985] Node 1 Normal free:3903764kB boost:0kB min:55728kB low:69660kB high:83592kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:6684kB local_pcp:3028kB free_cma:0kB [ 234.441129][ T7985] lowmem_reserve[]: 0 0 0 0 0 [ 234.446004][ T7985] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 234.489782][ T7985] Node 0 DMA32: 1084*4kB (ME) 49*8kB (UME) 638*16kB (UME) 1121*32kB (UME) 597*64kB (UME) 371*128kB (UME) 237*256kB (M) 96*512kB (M) 34*1024kB (UME) 16*2048kB (UME) 241*4096kB (M) = 1301048kB [ 234.548095][ T7985] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 234.588845][ T7985] Node 1 Normal: 128*4kB (UME) 1*8kB (E) 2*16kB (UM) 129*32kB (UME) 82*64kB (UME) 25*128kB (U) 12*256kB (U) 9*512kB (UE) 4*1024kB (UM) 4*2048kB (UME) 945*4096kB (UM) = 3903816kB [ 234.648478][ T7985] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 234.665347][ T7985] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 234.698224][ T8018] FAULT_INJECTION: forcing a failure. [ 234.698224][ T8018] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 234.719313][ T7985] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 234.737543][ T7985] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 234.779230][ T7985] 77287 total pagecache pages [ 234.784028][ T7985] 0 pages in swap cache [ 234.807991][ T8018] CPU: 1 UID: 0 PID: 8018 Comm: syz.1.519 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 234.808034][ T8018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 234.808053][ T8018] Call Trace: [ 234.808061][ T8018] [ 234.808073][ T8018] dump_stack_lvl+0x16c/0x1f0 [ 234.808120][ T8018] should_fail_ex+0x50a/0x650 [ 234.808161][ T8018] strncpy_from_user+0x3b/0x2d0 [ 234.808196][ T8018] getname_flags.part.0+0x8f/0x550 [ 234.808245][ T8018] getname+0x8d/0xe0 [ 234.808281][ T8018] __x64_sys_execve+0x72/0xb0 [ 234.808313][ T8018] do_syscall_64+0xcd/0x250 [ 234.808362][ T8018] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.808406][ T8018] RIP: 0033:0x7fa5c158cda9 [ 234.808430][ T8018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 234.808460][ T8018] RSP: 002b:00007fa5c246b038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 234.808488][ T8018] RAX: ffffffffffffffda RBX: 00007fa5c17a5fa0 RCX: 00007fa5c158cda9 [ 234.808508][ T8018] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 234.808526][ T8018] RBP: 00007fa5c246b090 R08: 0000000000000000 R09: 0000000000000000 [ 234.808545][ T8018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 234.808562][ T8018] R13: 0000000000000000 R14: 00007fa5c17a5fa0 R15: 00007ffdd29cf6f8 [ 234.808598][ T8018] [ 234.819281][ T7985] Free swap = 124652kB [ 234.977032][ T7985] Total swap = 124996kB [ 234.981787][ T7985] 2097051 pages RAM [ 234.989284][ T7985] 0 pages HighMem/MovableOnly [ 235.002746][ T7985] 427667 pages reserved [ 235.018900][ T7985] 0 pages cma reserved [ 235.482399][ T8034] netlink: 'syz.3.525': attribute type 1 has an invalid length. [ 235.491075][ T8034] netlink: 'syz.3.525': attribute type 1 has an invalid length. [ 235.499058][ T8034] netlink: 'syz.3.525': attribute type 1 has an invalid length. [ 235.507226][ T8034] netlink: 25 bytes leftover after parsing attributes in process `syz.3.525'. [ 235.813051][ T8041] vivid-003: ================= START STATUS ================= [ 235.851081][ T8041] vivid-003: Radio HW Seek Mode: Bounded [ 235.861277][ T8041] vivid-003: Radio Programmable HW Seek: false [ 235.871866][ T8041] vivid-003: RDS Rx I/O Mode: Block I/O [ 235.892157][ T8041] vivid-003: Generate RBDS Instead of RDS: false [ 235.928749][ T8041] vivid-003: RDS Reception: true [ 235.938911][ T8041] vivid-003: RDS Program Type: 0 inactive [ 235.961141][ T8041] vivid-003: RDS PS Name: inactive [ 235.985565][ T8041] vivid-003: RDS Radio Text: inactive [ 236.001004][ T8041] vivid-003: RDS Traffic Announcement: false inactive [ 236.073310][ T8041] vivid-003: RDS Traffic Program: false inactive [ 236.090783][ T8041] vivid-003: RDS Music: false inactive [ 236.096444][ T8041] vivid-003: ================== END STATUS ================== [ 236.375559][ T8051] netlink: 20 bytes leftover after parsing attributes in process `syz.0.528'. [ 236.429984][ T8054] netlink: 28 bytes leftover after parsing attributes in process `syz.1.530'. [ 238.083542][ T8082] netlink: 28 bytes leftover after parsing attributes in process `syz.1.540'. [ 239.133830][ T8086] FAULT_INJECTION: forcing a failure. [ 239.133830][ T8086] name failslab, interval 1, probability 0, space 0, times 0 [ 239.174825][ T8086] CPU: 1 UID: 0 PID: 8086 Comm: syz.1.541 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 239.174871][ T8086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 239.174891][ T8086] Call Trace: [ 239.174900][ T8086] [ 239.174914][ T8086] dump_stack_lvl+0x16c/0x1f0 [ 239.174967][ T8086] should_fail_ex+0x50a/0x650 [ 239.175004][ T8086] ? fs_reclaim_acquire+0xae/0x150 [ 239.175061][ T8086] should_failslab+0xc2/0x120 [ 239.175102][ T8086] __kmalloc_noprof+0xce/0x4f0 [ 239.175135][ T8086] ? kasan_quarantine_put+0x10a/0x240 [ 239.175167][ T8086] ? constrain_params_by_rules+0xa0e/0xca0 [ 239.175209][ T8086] ? constrain_params_by_rules+0x176/0xca0 [ 239.175260][ T8086] constrain_params_by_rules+0x176/0xca0 [ 239.175319][ T8086] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 239.175374][ T8086] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 239.175420][ T8086] ? lock_acquire.part.0+0x11b/0x380 [ 239.175485][ T8086] snd_pcm_hw_refine+0x7ec/0xad0 [ 239.175538][ T8086] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 239.175592][ T8086] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 239.175642][ T8086] ? __pfx_lock_release+0x10/0x10 [ 239.175678][ T8086] ? snd_pcm_hw_param_value+0x266/0x5b0 [ 239.175744][ T8086] snd_pcm_hw_param_first+0x328/0x6b0 [ 239.175789][ T8086] ? trace_hw_mask_param+0x19e/0x210 [ 239.175833][ T8086] snd_pcm_hw_params+0x5b2/0x1b20 [ 239.175886][ T8086] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 239.175933][ T8086] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 239.175985][ T8086] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 239.176035][ T8086] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 239.176088][ T8086] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 239.176139][ T8086] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 239.176205][ T8086] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 239.176248][ T8086] ? __mutex_lock+0x1cc/0xb10 [ 239.176328][ T8086] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 239.176379][ T8086] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 239.176423][ T8086] ? __pfx___might_resched+0x10/0x10 [ 239.176469][ T8086] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 239.176517][ T8086] ? __fget_files+0x206/0x3a0 [ 239.176557][ T8086] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 239.176604][ T8086] __x64_sys_ioctl+0x190/0x200 [ 239.176655][ T8086] do_syscall_64+0xcd/0x250 [ 239.176714][ T8086] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.176762][ T8086] RIP: 0033:0x7fa5c158cda9 [ 239.176788][ T8086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 239.176821][ T8086] RSP: 002b:00007fa5c246b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 239.176851][ T8086] RAX: ffffffffffffffda RBX: 00007fa5c17a5fa0 RCX: 00007fa5c158cda9 [ 239.176872][ T8086] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 239.176891][ T8086] RBP: 00007fa5c160e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 239.176909][ T8086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 239.176928][ T8086] R13: 0000000000000000 R14: 00007fa5c17a5fa0 R15: 00007ffdd29cf6f8 [ 239.176969][ T8086] [ 239.790998][ T8096] FAULT_INJECTION: forcing a failure. [ 239.790998][ T8096] name failslab, interval 1, probability 0, space 0, times 0 [ 239.881127][ T8096] CPU: 1 UID: 0 PID: 8096 Comm: syz.3.543 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 239.881173][ T8096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 239.881191][ T8096] Call Trace: [ 239.881201][ T8096] [ 239.881213][ T8096] dump_stack_lvl+0x16c/0x1f0 [ 239.881265][ T8096] should_fail_ex+0x50a/0x650 [ 239.881301][ T8096] ? fs_reclaim_acquire+0xae/0x150 [ 239.881373][ T8096] should_failslab+0xc2/0x120 [ 239.881413][ T8096] __kmalloc_noprof+0xce/0x4f0 [ 239.881450][ T8096] ? tomoyo_encode2+0x100/0x3e0 [ 239.881493][ T8096] tomoyo_encode2+0x100/0x3e0 [ 239.881532][ T8096] tomoyo_realpath_from_path+0x1a7/0x710 [ 239.881573][ T8096] ? tomoyo_path_number_perm+0x235/0x5b0 [ 239.881626][ T8096] tomoyo_path_number_perm+0x248/0x5b0 [ 239.881676][ T8096] ? tomoyo_path_number_perm+0x235/0x5b0 [ 239.881802][ T8096] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 239.881916][ T8096] ? __pfx_lock_release+0x10/0x10 [ 239.881952][ T8096] ? trace_lock_acquire+0x14e/0x1f0 [ 239.881986][ T8096] ? lock_acquire+0x2f/0xb0 [ 239.882021][ T8096] ? __fget_files+0x40/0x3a0 [ 239.882059][ T8096] ? __fget_files+0x206/0x3a0 [ 239.882096][ T8096] security_file_ioctl+0x9b/0x240 [ 239.882129][ T8096] __x64_sys_ioctl+0xb7/0x200 [ 239.882181][ T8096] do_syscall_64+0xcd/0x250 [ 239.882233][ T8096] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.882291][ T8096] RIP: 0033:0x7fe41878cda9 [ 239.882317][ T8096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 239.882346][ T8096] RSP: 002b:00007fe419631038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 239.882375][ T8096] RAX: ffffffffffffffda RBX: 00007fe4189a6080 RCX: 00007fe41878cda9 [ 239.882395][ T8096] RDX: 0000000000000000 RSI: 00000000c048aeca RDI: 0000000000000004 [ 239.882412][ T8096] RBP: 00007fe419631090 R08: 0000000000000000 R09: 0000000000000000 [ 239.882430][ T8096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 239.882448][ T8096] R13: 0000000000000000 R14: 00007fe4189a6080 R15: 00007fff6817c238 [ 239.882487][ T8096] [ 239.882517][ T8096] ERROR: Out of memory at tomoyo_realpath_from_path. [ 242.310344][ T8120] FAULT_INJECTION: forcing a failure. [ 242.310344][ T8120] name failslab, interval 1, probability 0, space 0, times 0 [ 242.333462][ T8120] CPU: 0 UID: 0 PID: 8120 Comm: syz.0.550 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 242.333511][ T8120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 242.333531][ T8120] Call Trace: [ 242.333541][ T8120] [ 242.333554][ T8120] dump_stack_lvl+0x16c/0x1f0 [ 242.333611][ T8120] should_fail_ex+0x50a/0x650 [ 242.333650][ T8120] ? fs_reclaim_acquire+0xae/0x150 [ 242.333707][ T8120] ? snd_pcm_lib_malloc_pages+0x2aa/0x980 [ 242.333773][ T8120] should_failslab+0xc2/0x120 [ 242.333817][ T8120] __kmalloc_cache_noprof+0x68/0x420 [ 242.333850][ T8120] ? __pfx_lock_release+0x10/0x10 [ 242.333889][ T8120] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 242.333940][ T8120] snd_pcm_lib_malloc_pages+0x2aa/0x980 [ 242.333990][ T8120] ? fixup_unreferenced_params+0x4b3/0xed0 [ 242.334041][ T8120] snd_pcm_hw_params+0x15e6/0x1b20 [ 242.334094][ T8120] ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0 [ 242.334141][ T8120] ? __pfx_snd_pcm_hw_params+0x10/0x10 [ 242.334193][ T8120] ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0 [ 242.334242][ T8120] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 242.334295][ T8120] snd_pcm_kernel_ioctl+0x147/0x2e0 [ 242.334348][ T8120] snd_pcm_oss_change_params_locked+0x1410/0x3a50 [ 242.334411][ T8120] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 242.334466][ T8120] ? __mutex_lock+0x1cc/0xb10 [ 242.334546][ T8120] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 242.334598][ T8120] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 242.334643][ T8120] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 242.334689][ T8120] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 242.334737][ T8120] ? __fget_files+0x206/0x3a0 [ 242.334777][ T8120] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 242.334822][ T8120] __x64_sys_ioctl+0x190/0x200 [ 242.334874][ T8120] do_syscall_64+0xcd/0x250 [ 242.334924][ T8120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 242.334973][ T8120] RIP: 0033:0x7fbed198cda9 [ 242.334999][ T8120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 242.335032][ T8120] RSP: 002b:00007fbed281f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 242.335063][ T8120] RAX: ffffffffffffffda RBX: 00007fbed1ba5fa0 RCX: 00007fbed198cda9 [ 242.335084][ T8120] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 242.335103][ T8120] RBP: 00007fbed1a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 242.335122][ T8120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 242.335140][ T8120] R13: 0000000000000000 R14: 00007fbed1ba5fa0 R15: 00007ffd10a2e2f8 [ 242.335180][ T8120] [ 243.652382][ T8144] vivid-003: ================= START STATUS ================= [ 243.660164][ T8144] vivid-003: Radio HW Seek Mode: Bounded [ 243.666391][ T8144] vivid-003: Radio Programmable HW Seek: false [ 243.672828][ T8144] vivid-003: RDS Rx I/O Mode: Block I/O [ 243.678473][ T8144] vivid-003: Generate RBDS Instead of RDS: false [ 243.686906][ T8144] vivid-003: RDS Reception: true [ 243.692449][ T8144] vivid-003: RDS Program Type: 0 inactive [ 243.698374][ T8144] vivid-003: RDS PS Name: inactive [ 243.704750][ T8144] vivid-003: RDS Radio Text: inactive [ 243.710332][ T8144] vivid-003: RDS Traffic Announcement: false inactive [ 243.755200][ T8144] vivid-003: RDS Traffic Program: false inactive [ 243.800821][ T8144] vivid-003: RDS Music: false inactive [ 243.885272][ T8144] vivid-003: ================== END STATUS ================== [ 243.924173][ T8141] FAULT_INJECTION: forcing a failure. [ 243.924173][ T8141] name failslab, interval 1, probability 0, space 0, times 0 [ 243.937193][ T8141] CPU: 1 UID: 0 PID: 8141 Comm: syz.1.556 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 243.937235][ T8141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 243.937255][ T8141] Call Trace: [ 243.937264][ T8141] [ 243.937276][ T8141] dump_stack_lvl+0x16c/0x1f0 [ 243.937329][ T8141] should_fail_ex+0x50a/0x650 [ 243.937365][ T8141] ? fs_reclaim_acquire+0xae/0x150 [ 243.937421][ T8141] should_failslab+0xc2/0x120 [ 243.937462][ T8141] __kmalloc_noprof+0xce/0x4f0 [ 243.937496][ T8141] ? unwind_get_return_address+0x59/0xa0 [ 243.937546][ T8141] ? constrain_params_by_rules+0x176/0xca0 [ 243.937596][ T8141] constrain_params_by_rules+0x176/0xca0 [ 243.937658][ T8141] ? stack_trace_save+0x95/0xd0 [ 243.937715][ T8141] ? stack_depot_save_flags+0x28/0x9e0 [ 243.937752][ T8141] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 243.937806][ T8141] ? __kasan_kmalloc+0xaa/0xb0 [ 243.937838][ T8141] ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0 [ 243.937877][ T8141] ? snd_pcm_oss_change_params_locked+0x1376/0x3a50 [ 243.937918][ T8141] ? snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 243.937973][ T8141] ? snd_interval_refine+0x2fa/0x580 [ 243.938010][ T8141] snd_pcm_hw_refine+0x7ec/0xad0 [ 243.938060][ T8141] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 243.938123][ T8141] ? _snd_pcm_hw_param_min+0x259/0x630 [ 243.938169][ T8141] snd_pcm_hw_param_near.constprop.0+0x597/0x8f0 [ 243.938219][ T8141] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 243.938266][ T8141] ? calc_src_frames.isra.0+0x187/0x1d0 [ 243.938318][ T8141] snd_pcm_oss_change_params_locked+0x1376/0x3a50 [ 243.938380][ T8141] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 243.938424][ T8141] ? __mutex_lock+0x1cc/0xb10 [ 243.938498][ T8141] snd_pcm_oss_get_active_substream+0x168/0x1d0 [ 243.938548][ T8141] snd_pcm_oss_ioctl+0x21d5/0x3780 [ 243.938592][ T8141] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 243.938638][ T8141] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 243.938698][ T8141] ? __fget_files+0x206/0x3a0 [ 243.938739][ T8141] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 243.938785][ T8141] __x64_sys_ioctl+0x190/0x200 [ 243.938839][ T8141] do_syscall_64+0xcd/0x250 [ 243.938890][ T8141] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.938937][ T8141] RIP: 0033:0x7fa5c158cda9 [ 243.938964][ T8141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 243.938995][ T8141] RSP: 002b:00007fa5c246b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 243.939026][ T8141] RAX: ffffffffffffffda RBX: 00007fa5c17a5fa0 RCX: 00007fa5c158cda9 [ 243.939048][ T8141] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008 [ 243.939067][ T8141] RBP: 00007fa5c160e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 243.939087][ T8141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 243.939106][ T8141] R13: 0000000000000000 R14: 00007fa5c17a5fa0 R15: 00007ffdd29cf6f8 [ 243.939148][ T8141] [ 244.190021][ T8152] ------------[ cut here ]------------ [ 244.195824][ C1] vkms_vblank_simulate: vblank timer overrun [ 244.204101][ T8152] platform vkms: [drm] vblank wait timed out on crtc 0 [ 244.371113][ T8152] WARNING: CPU: 0 PID: 8152 at drivers/gpu/drm/drm_vblank.c:1307 drm_wait_one_vblank+0x334/0x550 [ 244.382277][ T8152] Modules linked in: [ 244.386276][ T8152] CPU: 0 UID: 0 PID: 8152 Comm: syz.0.557 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 244.397027][ T8152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 244.407504][ T8152] RIP: 0010:drm_wait_one_vblank+0x334/0x550 [ 244.413535][ T8152] Code: 85 ed 0f 84 54 01 00 00 e8 59 98 60 fc 4c 89 e7 e8 21 d2 8a 00 89 e9 4c 89 ea 48 c7 c7 80 48 e8 8b 48 89 c6 e8 3d 80 21 fc 90 <0f> 0b 90 90 e9 0d fe ff ff e8 2e 98 60 fc 90 48 8d 7b 08 48 b8 00 [ 244.433890][ T8152] RSP: 0018:ffffc90004e5fb28 EFLAGS: 00010286 [ 244.440170][ T8152] RAX: 0000000000000000 RBX: ffff88802572c000 RCX: ffffc9000f0a3000 [ 244.448291][ T8152] RDX: 0000000000080000 RSI: ffffffff8179c506 RDI: 0000000000000001 [ 244.456507][ T8152] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 244.464700][ T8152] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888025a76010 [ 244.472987][ T8152] R13: ffff888141b42560 R14: 1ffff920009cbf67 R15: 0000000000003613 [ 244.481490][ T8152] FS: 00007fbed27bc6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 244.490737][ T8152] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 244.497487][ T8152] CR2: 0000001b306f4ff8 CR3: 00000000313b6000 CR4: 00000000003526f0 [ 244.506086][ T8152] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 244.514287][ T8152] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 244.522579][ T8152] Call Trace: [ 244.526006][ T8152] [ 244.529085][ T8152] ? __warn+0xea/0x3c0 [ 244.533270][ T8152] ? preempt_schedule_notrace+0x62/0xe0 [ 244.538988][ T8152] ? drm_wait_one_vblank+0x334/0x550 [ 244.544387][ T8152] ? report_bug+0x3c0/0x580 [ 244.549066][ T8152] ? handle_bug+0x54/0xa0 [ 244.553504][ T8152] ? exc_invalid_op+0x17/0x50 [ 244.558476][ T8152] ? asm_exc_invalid_op+0x1a/0x20 [ 244.563693][ T8152] ? __warn_printk+0x1a6/0x350 [ 244.568589][ T8152] ? drm_wait_one_vblank+0x334/0x550 [ 244.573986][ T8152] ? drm_wait_one_vblank+0x333/0x550 [ 244.579962][ T8152] ? __pfx_drm_wait_one_vblank+0x10/0x10 [ 244.585972][ T8152] ? mark_held_locks+0x9f/0xe0 [ 244.591061][ T8152] ? __pfx_autoremove_wake_function+0x10/0x10 [ 244.597333][ T8152] ? lockdep_hardirqs_on+0x7c/0x110 [ 244.602629][ T8152] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 244.608641][ T8152] ? drm_vblank_get+0x150/0x280 [ 244.613698][ T8152] drm_fb_helper_ioctl+0x156/0x1a0 [ 244.619070][ T8152] ? __pfx_drm_fb_helper_ioctl+0x10/0x10 [ 244.625243][ T8152] do_fb_ioctl+0x3d4/0x7d0 [ 244.629800][ T8152] ? __pfx_do_fb_ioctl+0x10/0x10 [ 244.634838][ T8152] ? do_vfs_ioctl+0x513/0x1950 [ 244.639776][ T8152] ? kmem_cache_free+0x2e2/0x4d0 [ 244.644835][ T8152] ? __fget_files+0x206/0x3a0 [ 244.649971][ T8152] fb_ioctl+0xe5/0x150 [ 244.654127][ T8152] ? __pfx_fb_ioctl+0x10/0x10 [ 244.658954][ T8152] __x64_sys_ioctl+0x190/0x200 [ 244.663823][ T8152] do_syscall_64+0xcd/0x250 [ 244.668470][ T8152] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.674444][ T8152] RIP: 0033:0x7fbed198cda9 [ 244.679228][ T8152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.699401][ T8152] RSP: 002b:00007fbed27bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 244.708147][ T8152] RAX: ffffffffffffffda RBX: 00007fbed1ba6240 RCX: 00007fbed198cda9 [ 244.716292][ T8152] RDX: 0000000000000000 RSI: 0000000040044620 RDI: 0000000000000009 [ 244.724341][ T8152] RBP: 00007fbed1a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 244.732510][ T8152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 244.740670][ T8152] R13: 0000000000000000 R14: 00007fbed1ba6240 R15: 00007ffd10a2e2f8 [ 244.748813][ T8152] [ 244.751891][ T8152] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 244.759222][ T8152] CPU: 0 UID: 0 PID: 8152 Comm: syz.0.557 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 244.769618][ T8152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 244.779711][ T8152] Call Trace: [ 244.783016][ T8152] [ 244.785981][ T8152] dump_stack_lvl+0x3d/0x1f0 [ 244.790626][ T8152] panic+0x71d/0x800 [ 244.794557][ T8152] ? __pfx_panic+0x10/0x10 [ 244.799004][ T8152] ? show_trace_log_lvl+0x29d/0x3d0 [ 244.804299][ T8152] ? drm_wait_one_vblank+0x334/0x550 [ 244.809638][ T8152] check_panic_on_warn+0xab/0xb0 [ 244.814615][ T8152] __warn+0xf6/0x3c0 [ 244.818547][ T8152] ? preempt_schedule_notrace+0x62/0xe0 [ 244.824145][ T8152] ? drm_wait_one_vblank+0x334/0x550 [ 244.829502][ T8152] report_bug+0x3c0/0x580 [ 244.833906][ T8152] handle_bug+0x54/0xa0 [ 244.838202][ T8152] exc_invalid_op+0x17/0x50 [ 244.842772][ T8152] asm_exc_invalid_op+0x1a/0x20 [ 244.847671][ T8152] RIP: 0010:drm_wait_one_vblank+0x334/0x550 [ 244.853618][ T8152] Code: 85 ed 0f 84 54 01 00 00 e8 59 98 60 fc 4c 89 e7 e8 21 d2 8a 00 89 e9 4c 89 ea 48 c7 c7 80 48 e8 8b 48 89 c6 e8 3d 80 21 fc 90 <0f> 0b 90 90 e9 0d fe ff ff e8 2e 98 60 fc 90 48 8d 7b 08 48 b8 00 [ 244.873275][ T8152] RSP: 0018:ffffc90004e5fb28 EFLAGS: 00010286 [ 244.879382][ T8152] RAX: 0000000000000000 RBX: ffff88802572c000 RCX: ffffc9000f0a3000 [ 244.887385][ T8152] RDX: 0000000000080000 RSI: ffffffff8179c506 RDI: 0000000000000001 [ 244.895537][ T8152] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 244.903639][ T8152] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888025a76010 [ 244.911646][ T8152] R13: ffff888141b42560 R14: 1ffff920009cbf67 R15: 0000000000003613 [ 244.919659][ T8152] ? __warn_printk+0x1a6/0x350 [ 244.924642][ T8152] ? drm_wait_one_vblank+0x333/0x550 [ 244.929990][ T8152] ? __pfx_drm_wait_one_vblank+0x10/0x10 [ 244.935678][ T8152] ? mark_held_locks+0x9f/0xe0 [ 244.940482][ T8152] ? __pfx_autoremove_wake_function+0x10/0x10 [ 244.946595][ T8152] ? lockdep_hardirqs_on+0x7c/0x110 [ 244.951838][ T8152] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 244.957691][ T8152] ? drm_vblank_get+0x150/0x280 [ 244.962689][ T8152] drm_fb_helper_ioctl+0x156/0x1a0 [ 244.967839][ T8152] ? __pfx_drm_fb_helper_ioctl+0x10/0x10 [ 244.973527][ T8152] do_fb_ioctl+0x3d4/0x7d0 [ 244.978005][ T8152] ? __pfx_do_fb_ioctl+0x10/0x10 [ 244.982985][ T8152] ? do_vfs_ioctl+0x513/0x1950 [ 244.987802][ T8152] ? kmem_cache_free+0x2e2/0x4d0 [ 244.992819][ T8152] ? __fget_files+0x206/0x3a0 [ 244.997630][ T8152] fb_ioctl+0xe5/0x150 [ 245.001779][ T8152] ? __pfx_fb_ioctl+0x10/0x10 [ 245.006511][ T8152] __x64_sys_ioctl+0x190/0x200 [ 245.011764][ T8152] do_syscall_64+0xcd/0x250 [ 245.016317][ T8152] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 245.022261][ T8152] RIP: 0033:0x7fbed198cda9 [ 245.026712][ T8152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 245.046613][ T8152] RSP: 002b:00007fbed27bc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 245.055149][ T8152] RAX: ffffffffffffffda RBX: 00007fbed1ba6240 RCX: 00007fbed198cda9 [ 245.063248][ T8152] RDX: 0000000000000000 RSI: 0000000040044620 RDI: 0000000000000009 [ 245.071310][ T8152] RBP: 00007fbed1a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 245.079396][ T8152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 245.087394][ T8152] R13: 0000000000000000 R14: 00007fbed1ba6240 R15: 00007ffd10a2e2f8 [ 245.095419][ T8152] [ 245.098816][ T8152] Kernel Offset: disabled [ 245.103280][ T8152] Rebooting in 86400 seconds..