last executing test programs: 16.140609523s ago: executing program 0 (id=759): mmap$auto(0x3, 0x4020009, 0x8, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) ioctl$auto_TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptya5\x00', 0x8c01, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x101001, 0x0) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000500)='/dev/tty34\x00', 0x2200, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/amidi2\x00', 0xc30043, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x4, 0x948b, 0x40003, 0x15f4da07, 0x40000000000023, 0x3, 0x3, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mincore$auto(0x1000, 0x8001, 0x0) unshare$auto(0x20000080) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710, @my=0x0}, 0x10) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) munmap$auto(0x100020001202, 0x3) ptrace$auto(0x10, 0x10000000000001, 0xffffffffffffff56, 0x868f) accept4$auto(0xffffffffffffffff, &(0x7f0000000180)=@l2tp={0x2, 0x0, @remote, 0x3}, &(0x7f00000001c0)=0x5, 0x8001) sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) syz_open_procfs$namespace(0x0, &(0x7f0000000080)) fchdir$auto(r0) mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) open(&(0x7f0000000140)='.\x00', 0x258100, 0x0) 12.638148906s ago: executing program 0 (id=774): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x2, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r1 = socket(0xa, 0x5, 0x0) setsockopt$auto(r1, 0x10000000084, 0x12, 0x0, 0x9) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0xe6, 0x0, 0x2, 0xb}, 0xfff}, 0x6, 0x311) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r2 = socket(0x10, 0x2, 0x4) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c72da808bf9779d790fb28"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) r3 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) read$auto_stat_fops_per_vm_kvm_main(r3, 0x0, 0x0) write$auto(r2, &(0x7f0000000000)='\x13\x00', 0x2fe) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) 11.937883305s ago: executing program 3 (id=775): mmap$auto(0xfffffffffffffffb, 0x2, 0x100000021, 0x400009b75, 0xea8a, 0x8000) r0 = socket(0x2, 0x3, 0x2) mmap$auto(0xd737, 0x2000000002020009, 0xf1, 0xcde, 0xfffffffffffffffa, 0x80000000001) open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1ebe02, 0x61) mmap$auto(0x0, 0x11, 0xdf, 0x9b72, r1, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) select$auto(0x81, 0x0, 0x0, &(0x7f00000002c0)={[0x3dcbd9be, 0x80000001, 0xb7, 0x1, 0x948b, 0x3, 0x15f4de0a, 0x5, 0x8000, 0x64, 0x80000001, 0xfffffffffffffffe, 0x6d3f, 0x9, 0x2, 0x8]}, 0x0) write$auto(r2, 0x0, 0x100000a3d9) rt_sigprocmask$auto(0xb1, 0x0, 0x0, 0x7) process_vm_readv$auto(0x0, 0x0, 0x6, &(0x7f0000000100)={0x0, 0x40000002001243}, 0x3, 0xfffffffffffffffc) io_uring_setup$auto(0x58, 0x0) r3 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/usbmon8\x00', 0x640, 0x0) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) setsockopt$auto(0x3, 0x10000000084, 0x80, 0x0, 0x208) sendmsg$auto_MACSEC_CMD_GET_TXSC(0xffffffffffffffff, &(0x7f0000003100)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000580)={&(0x7f0000000740)=ANY=[@ANYBLOB="b4290000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="00db0003800800100001000080bf5bc5537ba1f9c3df64804164640b39a0d57c1fbb3de7462a934e96eafb0d4d9f977e114ef456b337719e6ebfd2e3edf6c43bfffdb02c520369f39fa16950341cb6d7764375ec0e69aa69bc0cb13addc3d6c460d11383a565c9668735163cf8020174a37bdc05f3af1f90df84a368ba1eaebe5352ba07d0e245312d8daf69aed35314b112fb76b38d907de111a7ccb4160d8121dbf6685d50cd920b363954fafc97768059660028eb9fc412e5fc9b92e26ba61c004d800b002c007b09292f2bb20000854c80e9fc487f16040006800008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="0412028068000a8039744f3cf60040d61702242baf06c28a6102d8145567e5fa71f4efb0685fa4b6e2078a73a5835f8fdadfeb781a3c7624bf68170db8ca6b2d23ab13b4cfad2940ac66b78e53beaefc31f7ece153982b9b3c45d9dcf5d91711c00e5ee708003600", @ANYRES32, @ANYBLOB='\b\x00m\x00', @ANYRES32=r3, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="0400438000000014000a0000000000000000000000ffffac1414aa07010380bb9c36e3bdb410c1719857dddcde1460a1be6be7b35b01d1986233eeccb2725bf0ee1057ef0cf7fcefe45f037f26ea454870a7f6c2a385cee50dd82a07e0872e214972762c8a8e7dcfac10eb5bb4fce917bf946ded6d005993e13d76e881f1bb57745f40bd9b99050faab81ef6e33a14ae6a6f57dd33c4f11e4c45963b013c31c9087476e26c0ecfd7ddca0474d3d63d42543ee3fff87142609398847e1990026d6b9a4fd945310735c56d4b1a02ba97e7917b5c3edf09ddb2666381d28dba10ab045577952b1f1d5003145a900cd3b8afc7cbee9b65c3509e87860c36a40b5726b6518c106033508afbc45201e11a4cbd65d008002d00ac1414bb08001500", @ANYRES32=0x0, @ANYBLOB="009800038092000080040003800400e780b8972aebe4c9d23e35fac355c2f2f1af7a8ccd4075651e7751e93cf08367dfe07ce3f9e135afc34480e5c1414e3042b63d58aa2407addf70513588936578b3896332e286558cc159afac836ac0f5d0c9c7a05458f996550c514b784b9d4dd8b0769967133a26c28f37c3690840698d975e1e8853387e089c117e40bd04003780040042800400358000000800", @ANYRES32=0x0, @ANYBLOB="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"], 0x29b4}, 0x1, 0x0, 0x0, 0x40005}, 0x8806) read$auto_mon_fops_binary_mon_bin(r3, 0x0, 0x2f) close_range$auto(0x2, 0xa, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x2000, 0x0) unshare$auto(0x6) r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/afs/cells\x00', 0x2000, 0x0) read$auto_proc_reg_file_ops_compat_inode(r5, &(0x7f0000000040)=""/229, 0xe5) read$auto(r4, 0x0, 0x20) sendmsg$auto_MAC802154_HWSIM_CMD_SET_EDGE(r0, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x40010) r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty26\x00', 0x40002, 0x300) 11.630603042s ago: executing program 2 (id=777): madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) ioctl$auto(0xffffffffffffffff, 0x64c8, 0x1e2) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) unshare$auto(0x40000080) get_mempolicy$auto(0x0, 0x0, 0x3, 0x1ff, 0x3) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x1a6b75d63882a712, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x900, 0x0) ioctl$auto_BLKROGET(r1, 0x125e, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0) openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0) mmap$auto(0x0, 0xe9, 0xdf, 0x9b72, 0x2, 0x8000) recvfrom$auto(0x3, 0x0, 0x800000000e, 0xf90000, 0x0, 0xfffffffffffffffd) mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x0) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x8) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 9.776010846s ago: executing program 2 (id=778): mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) ioctl$auto_TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptya5\x00', 0x62c00, 0x0) close_range$auto(0x2, 0xa, 0x0) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x101001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000500)='/dev/tty34\x00', 0x2200, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x4, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mincore$auto(0x1000, 0x8001, 0x0) unshare$auto(0x20000080) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710}, 0x10) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) munmap$auto(0x20001000, 0x7fb3) ptrace$auto(0x10, 0x10000000000001, 0xffffffffffffff56, 0x868f) accept4$auto(0xffffffffffffffff, &(0x7f0000000180)=@l2tp={0x2, 0x0, @remote, 0x3}, &(0x7f00000001c0)=0x5, 0x8001) sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) fchdir$auto(r1) mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) open(0x0, 0x40000, 0x0) 9.08183395s ago: executing program 3 (id=779): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/trigger\x00', 0x8800, 0x0) r1 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000003640)='/proc/self/numa_maps\x00', 0x40080, 0x0) mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x7fff) r2 = prctl$auto(0x1000000003b, 0x5, 0x4, 0x5, 0x3) mmap$auto(0x0, 0x4, 0x14000000000df, 0x40eb2, r2, 0x300000000000) lseek$auto(r1, 0x7ff, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r3 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x88600, 0x0) ioctl$auto_UBI_IOCATT(r3, 0x40186f40, 0x0) r4 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r4, 0x0, 0x1, 0x0, 0x1e) r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x0, 0x0) clock_nanosleep$auto(0x1, 0x200, &(0x7f0000000140)={0x0, 0x2800000a}, 0x0) ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r5, 0x80045105, &(0x7f0000000200)="a227aaf92e59ba19dc7450122b998ef4f3ceb6a6d8028a7f1eec2ecd7ca918537008e996d97779efd93dc88d9544baad91e6fc7c20b9c2cd6ef589e11602297aeb7fba35085589fac2ae8117552866dff5bb4d131fa76fdb6913be140b6b70e957020f") write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) setsockopt$auto(0xffffffffffffffff, 0x29, 0x1000021, 0x0, 0x18000113) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58) syz_clone(0xb4001280, 0x0, 0x0, 0x0, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x4000006, 0x3, 0x2, 0x5, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0) mmap$auto(0xfffffffffffffffc, 0x5, 0x5, 0xebd, 0xffffffffffffffff, 0x9) r6 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x582, 0x0) write$auto_console_fops_tty_io(r6, &(0x7f0000001240)='4', 0x1) 6.819103859s ago: executing program 0 (id=782): openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x40040, 0x0) mmap$auto(0x2, 0x3, 0x9b2, 0xeb1, 0xfffffffffffffffa, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) mq_timedreceive$auto(r0, 0x0, 0x4e, 0x0, &(0x7f0000000180)={0x5, 0x9}) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) close_range$auto(0x2, 0xa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) lsm_set_self_attr$auto(0xc5, 0x0, 0x5, 0xf) r2 = socket(0x1e, 0x4, 0x0) syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0) sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20020010}, 0x20040014) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) socket(0x10, 0x2, 0x14) close_range$auto(0x2, 0x8, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dri/card0\x00', 0x501, 0x0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x18481, 0x0) read$auto(0x3, 0x0, 0x80) r4 = getpid() process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) 6.425579962s ago: executing program 2 (id=783): io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/trigger\x00', 0x8800, 0x0) r1 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000003640)='/proc/self/numa_maps\x00', 0x40080, 0x0) mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x7fff) r2 = prctl$auto(0x1000000003b, 0x5, 0x4, 0x5, 0x3) mmap$auto(0x0, 0x4, 0x14000000000df, 0x40eb2, r2, 0x300000000000) lseek$auto(r1, 0x7ff, 0x1) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x88600, 0x0) socket(0x2b, 0x1, 0x1) setsockopt$auto(0xffffffffffffffff, 0x0, 0xfffffffd, 0x0, 0x3) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x0, 0x0) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0xfffffffffffffffe, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0xa) clock_nanosleep$auto(0x1, 0x200, &(0x7f0000000140)={0x0, 0x2800000a}, 0x0) ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r4, 0x80045105, &(0x7f0000000200)="a227aaf92e59ba19dc7450122b998ef4f3ceb6a6d8028a7f1eec2ecd7ca918537008e996d97779efd93dc88d9544baad91e6fc7c20b9c2cd6ef589e11602297aeb7fba35085589fac2ae8117552866dff5bb4d131fa76fdb6913be140b6b70e957020f") write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) setsockopt$auto(0xffffffffffffffff, 0x29, 0x1000021, &(0x7f0000000880)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\xff\x1b\x01\x1e\xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\xf2Vw\xbe\x1c$\xddm\x8a\x9d\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5h\xae\xec%\xf9\x94>\xd2,\xf3\x98\'\xb0\t~~\xb4\x98\xbb3=A\x9c\x17\xaa\xce\fh-M\xdb-\x15VX\xfe\xca+\xb5\x95\xb3JL\x0fl\xe84\xbd\xa3nO\x9f\xfa\xb1\x06$\b$i3\x83\xd7\x06\xd6\x1e\xdbB\x9bb\x1cXC\x8c\x8b\xd9\xff\xf2Bf\x99!Z\x13\xff\xca\xf3e\x015\x9b\x86\xd6$\x1a\r3\x91\xb7\x942\xeb\xadVA\xfc\x1f\xbf1\xb7T\xc1\xbf\xc0\xc2\xfc\xe8w\xd33\xb2,\xb0\x9fA3\xc2\xa2\x1cM\x825\x94U\xbbNeb\xd2\xa9\x0f\xed\x8b\xea\xfa\x8a\x04.\xffMIw\x0f\xd6\xae^\xd2\xf1j\xcb\r\xa4\x1d0d\xca\x81\x9c\x80GL\x0e\xe6\x19\x8au\x1a7\xc5|\xf6\x1e\xe00\xc6\"\x83\x1c\xa2\x9e\a\x1c\xea\xa3\x9c\xe1BF\x05b\xf6\xdcf\x04\xd9B\xb9\x98\x9cq\xbd\xfb\xb5~\xf2\x8d\x9f`\xec\xd0\xafY\xcf\x84', 0x18000113) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58) syz_clone(0xb4001280, 0x0, 0x0, 0x0, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x4000006, 0x3, 0x2, 0x5, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0) mmap$auto(0xfffffffffffffffc, 0x5, 0x5, 0xebd, r3, 0x9) r5 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x582, 0x0) write$auto_console_fops_tty_io(r5, &(0x7f0000001240)='4', 0x1) 4.6392426s ago: executing program 3 (id=784): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x521183, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x3, 0xa) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x608100, 0x0) connect$auto(0x3, &(0x7f0000000080)=@tipc=@name={0x1e, 0x2, 0x2, {{0x0, 0x4}, 0x3}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) adjtimex$auto(&(0x7f00000005c0)={0x2, 0x0, 0x6, 0x9, 0x7, 0x7f, 0xfff, 0x0, 0xc15, 0x7, 0x592efafe, {0x557, 0xffffffffffffff57}, 0x100000001, 0x3, 0x857e, 0x5, 0x0, 0xef, 0x9, 0x240000000000, 0x400000, 0x10000, 0x7ff}) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0x103082, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xf, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x6, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) write$auto(0xffffffffffffffff, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(0xffffffffffffffff, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x401, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/mcfilter\x00', 0x101000, 0x0) pread64$auto(r2, 0x0, 0x8, 0xffff) madvise$auto(0x0, 0x200007, 0x8) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/038/001\x00', 0x632041, 0x0) fcntl$auto_F_GETLEASE(r1, 0x401, 0x7) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/consoles\x00', 0x1c9802, 0x0) 4.514515427s ago: executing program 0 (id=785): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f00000005c0)="3b33ad83ff23ac89554ea8470522c1d98ac6da44fb702df43a9948bacb60e30240d0886c2347bf44428ea747351e5321e75c58400b7fe331e42cb9508b8f052c1746d036849a0687ce02d3974d24666eb23f87fcf0c534dbde9b151163b07cbe75529314d8db89435b9b7bb16b18ee1168baabedf68d3b75f300aca70e4227a6e2583048887b62d9212274ea06e41b0d71d025cf81b5d3ba6d99301b6d28d5cf7b62ed913d299542fc12bd4d07fd11502be8fb88104db5fd2e4d338afb96390deb3f2470000000000000000000") (async) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f00000005c0)="3b33ad83ff23ac89554ea8470522c1d98ac6da44fb702df43a9948bacb60e30240d0886c2347bf44428ea747351e5321e75c58400b7fe331e42cb9508b8f052c1746d036849a0687ce02d3974d24666eb23f87fcf0c534dbde9b151163b07cbe75529314d8db89435b9b7bb16b18ee1168baabedf68d3b75f300aca70e4227a6e2583048887b62d9212274ea06e41b0d71d025cf81b5d3ba6d99301b6d28d5cf7b62ed913d299542fc12bd4d07fd11502be8fb88104db5fd2e4d338afb96390deb3f2470000000000000000000") openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (async) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) socket(0xa, 0x1, 0x100) (async) socket(0xa, 0x1, 0x100) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/lru_gen\x00', 0x56640, 0x0) (async) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/lru_gen\x00', 0x56640, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0) mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x20e9, 0x103) r2 = open(&(0x7f00000004c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x8000, 0x1b6) read$auto_kernfs_file_fops_kernfs_internal(r2, 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x11a001, 0x0) (async) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x11a001, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_RPC_STATUS_GET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r4, 0x309, 0x70bd27, 0x25dedbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x100000001ff, 0x7, 0x3, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0xa6d4, 0x62, 0x80000001, 0x5, 0x5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0xc, 0x2, 0x6]}, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r5, 0x4b4c, 0x9) r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/default/forwarding\x00', 0x141241, 0x0) readahead$auto(r6, 0x4, 0x4) (async) readahead$auto(r6, 0x4, 0x4) mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000) io_uring_setup$auto(0x6, 0x0) (async) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto(0xffffffffffffffff, 0x4, 0xffffffffffffffff) sysfs$auto(0x5, 0x100000074e, 0x0) (async) sysfs$auto(0x5, 0x100000074e, 0x0) 4.030890107s ago: executing program 1 (id=786): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x2, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0xe6, 0x0, 0x2, 0xb}, 0xfff}, 0x6, 0x311) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x34000}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) 3.618582023s ago: executing program 2 (id=787): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x521183, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x3, 0xa) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x608100, 0x0) connect$auto(0x3, &(0x7f0000000080)=@tipc=@name={0x1e, 0x2, 0x2, {{0x0, 0x4}, 0x3}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) adjtimex$auto(&(0x7f00000005c0)={0x2, 0x0, 0x6, 0x9, 0x7, 0x7f, 0xfff, 0x0, 0xc15, 0x7, 0x592efafe, {0x557, 0xffffffffffffff57}, 0x100000001, 0x3, 0x857e, 0x5, 0x0, 0xef, 0x9, 0x240000000000, 0x400000, 0x10000, 0x7ff}) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0x103082, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xf, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x6, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(r1, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x401, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/mcfilter\x00', 0x101000, 0x0) pread64$auto(r2, 0x0, 0x8, 0xffff) madvise$auto(0x0, 0x200007, 0x8) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/038/001\x00', 0x632041, 0x0) fcntl$auto_F_GETLEASE(r0, 0x401, 0x7) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/consoles\x00', 0x1c9802, 0x0) 3.351680093s ago: executing program 3 (id=788): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x521183, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x3, 0xa) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x608100, 0x0) connect$auto(0x3, &(0x7f0000000080)=@tipc=@name={0x1e, 0x2, 0x2, {{0x0, 0x4}, 0x3}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) adjtimex$auto(&(0x7f00000005c0)={0x2, 0x0, 0x6, 0x9, 0x7, 0x7f, 0xfff, 0x0, 0xc15, 0x7, 0x592efafe, {0x557, 0xffffffffffffff57}, 0x100000001, 0x3, 0x857e, 0x5, 0x0, 0xef, 0x9, 0x240000000000, 0x400000, 0x10000, 0x7ff}) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000) openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0x103082, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xf, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x6, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) write$auto(0xffffffffffffffff, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) write$auto(0xffffffffffffffff, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) mmap$auto(0x401, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/mcfilter\x00', 0x101000, 0x0) pread64$auto(r2, 0x0, 0x8, 0xffff) madvise$auto(0x0, 0x200007, 0x8) openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/038/001\x00', 0x632041, 0x0) fcntl$auto_F_GETLEASE(r1, 0x401, 0x7) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/consoles\x00', 0x1c9802, 0x0) 2.986550938s ago: executing program 0 (id=789): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000340), 0x191101, 0x0) r1 = socket(0x2, 0x1, 0x106) mq_getsetattr$auto(0xffffffffffffffff, &(0x7f0000000000)={0x81, 0x25, 0x5, 0x80}, 0x0) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, 0x0, 0x4040801) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYRES8=r2, @ANYRES8=r2, @ANYBLOB="7bb5bdab2959dcf499e7c70640e1dcaf0500000000000000fea02bb4b83250b9e1710b605f61e916f670697ef1c8"], 0x14}, 0x1, 0x0, 0x0, 0x20004010}, 0xc1) r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000580)='/dev/audio\x00', 0x0, 0x0) r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r6) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYRESDEC, @ANYRES32, @ANYRESOCT=r3], 0x1c}}, 0x20000040) mmap$auto(0x0, 0x40000c, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) r8 = openat$auto_ocfs2_control_fops_stack_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) readv$auto(r8, &(0x7f00000001c0)={0x0, 0xf7}, 0x7) write$auto(r8, 0x0, 0x2) r9 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0) write$auto(r9, 0x0, 0x1ff) sendmsg$auto_NL80211_CMD_SET_BEACON(r5, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f00000005c0)=ANY=[@ANYRES32=r3, @ANYRES16=r7, @ANYBLOB="000325bd7000fddbdf250e0000000600b10000800000"], 0x1c}, 0x1, 0x0, 0x0, 0x8015}, 0x4000000) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x4, 0x100000008948b, 0x0, 0x8, 0x3, 0x5, 0x62, 0x2, 0x7, 0x6d3e, 0xa422, 0x10000000002, 0x6]}, 0x0) ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000040)={{0xffff, 0xf2cf, 0x1ff, 0x7f}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d621f400fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x6e}) ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0) write$auto(r0, 0x0, 0x5) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/module/pvrusb2/parameters/vbi_nr\x00', 0x208200, 0x0) r10 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vkms/graphics/fb0/rotate\x00', 0xb02, 0x0) sendfile$auto(r10, r10, 0x0, 0x3) 2.634160981s ago: executing program 1 (id=790): r0 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000004200)={&(0x7f00000005c0)={0x1c, r0, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@HWSIM_ATTR_REG_HINT_ALPHA2={0x6, 0xb, ',)'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000060}, 0x1000000000) 2.036840089s ago: executing program 3 (id=791): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = getpid() pidfd_open$auto(r0, 0x0) socket(0xa, 0x801, 0x84) r1 = epoll_create$auto(0x3e) epoll_ctl$auto(r1, 0x1, 0x8000000000000000, 0x0) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) connect$auto(0x3, 0x0, 0x55) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) socket$nl_generic(0x11, 0x3, 0x10) mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dri/card1\x00', 0x6082, 0x0) r2 = socket(0xa, 0x2, 0x0) r3 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000180), 0x80080, 0x0) ioctl$auto_LOOP_CTL_ADD(r3, 0x4c80, 0x0) setsockopt$auto(r2, 0x8, 0x5, 0x0, 0x566) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r4, &(0x7f0000000440)='T\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r5 = socket(0x2, 0x1, 0x0) setsockopt$auto(r5, 0x6, 0x1f, 0x0, 0x3d) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) 2.022421748s ago: executing program 1 (id=792): r0 = socket(0x22, 0x2, 0x24) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x90, r1, 0x10, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x8}, @NL80211_ATTR_EHT_CAPABILITY={0x4}, @NL80211_ATTR_TDLS_OPERATION={0x5, 0x8a, 0x3c}, @NL80211_ATTR_MAC={0x67, 0x6, "118521a64cb330e2ee4ae1740ea2c542b9e49dc16804017b55ddce127b25754f7ab401eb0ebed6d676d90ef9906b9391ec48ce5b6a75dacf53389ed9ea1a63ca1b294a107cdb4f14033d7da4abb1d96d2702e74c410fab323c478d0f348ef134000c60"}]}, 0x90}, 0x1, 0x0, 0x0, 0x40094}, 0x20004800) socket(0x22, 0x2, 0x4) close_range$auto(0x0, 0xfffffffffffff000, 0x0) 1.943048634s ago: executing program 2 (id=793): mmap$auto(0x0, 0x800000000400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000001c0), 0x102, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';') openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r1 = socket(0xa, 0x1, 0x100) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/block/ram0/queue/nomerges\x00', 0xe3102, 0x0) sendfile$auto(r3, r3, 0x0, 0x3) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x11a001, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x100000001ff, 0x7, 0x3, 0x8fd6, 0x948b, 0x1000, 0x15f4da0a, 0x3, 0x5, 0x62, 0x5, 0x20000005, 0x5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x2000000007, 0x6, 0xc, 0x2, 0x6]}, 0x0) mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, r4, 0xfffffffffffffffb) pwrite64$auto(0xffffffffffffffff, &(0x7f0000000000)='./cgroup/memory.pressure\x00', 0x6bc, 0x5) mmap$auto(0x0, 0x7, 0x4000000000df, 0x78, 0x4, 0x300000000000) io_uring_setup$auto(0x6, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC0\x00', 0x802, 0x0) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/tasks\x00', 0x63102, 0x0) sendfile$auto(r1, 0xffffffffffffffff, 0x0, 0x4) sendfile$auto(r5, r5, 0x0, 0x2) sysfs$auto(0x5, 0x100000074e, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) madvise$auto(0x0, 0x8000000000000000, 0x15) 1.6708978s ago: executing program 1 (id=794): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000240), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0_macvtap\x00', 0x0}) sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010026bd7020f8dbdf2501000000", @ANYRES32=0x4, @ANYBLOB="080001004866520008000200", @ANYRES32=0x9, @ANYBLOB='\b\x00\t\x00', @ANYRES32=r2], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x80) 1.338250708s ago: executing program 1 (id=795): mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x7, 0x28000) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) r1 = socket(0x29, 0x6, 0xe) epoll_create$auto(0x4) syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000200), r1) syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x40000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) fcntl$auto(0x3, 0x4, 0xa553) mmap$auto(0x0, 0x20009, 0x2000000df, 0xeb1, 0x401, 0x8000) read$auto(r0, &(0x7f00000001c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0xc) pread64$auto(0xffffffffffffffff, 0x0, 0x8, 0x8000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) getpid() close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) close_range$auto(0x0, 0xfffffffffffff000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) 735.375892ms ago: executing program 3 (id=796): io_uring_setup$auto(0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0) openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/trigger\x00', 0x8800, 0x0) r1 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000003640)='/proc/self/numa_maps\x00', 0x40080, 0x0) mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x7fff) r2 = prctl$auto(0x1000000003b, 0x5, 0x4, 0x5, 0x3) mmap$auto(0x0, 0x4, 0x14000000000df, 0x40eb2, r2, 0x300000000000) lseek$auto(r1, 0x7ff, 0x1) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000000), 0x88600, 0x0) socket(0x2b, 0x1, 0x1) setsockopt$auto(0xffffffffffffffff, 0x0, 0xfffffffd, 0x0, 0x3) r4 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x0, 0x0) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0xfffffffffffffffe, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0xa) clock_nanosleep$auto(0x1, 0x200, &(0x7f0000000140)={0x0, 0x2800000a}, 0x0) ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r4, 0x80045105, &(0x7f0000000200)="a227aaf92e59ba19dc7450122b998ef4f3ceb6a6d8028a7f1eec2ecd7ca918537008e996d97779efd93dc88d9544baad91e6fc7c20b9c2cd6ef589e11602297aeb7fba35085589fac2ae8117552866dff5bb4d131fa76fdb6913be140b6b70e957020f") write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) setsockopt$auto(0xffffffffffffffff, 0x29, 0x1000021, &(0x7f0000000880)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\xff\x1b\x01\x1e\xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\xf2Vw\xbe\x1c$\xddm\x8a\x9d\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5h\xae\xec%\xf9\x94>\xd2,\xf3\x98\'\xb0\t~~\xb4\x98\xbb3=A\x9c\x17\xaa\xce\fh-M\xdb-\x15VX\xfe\xca+\xb5\x95\xb3JL\x0fl\xe84\xbd\xa3nO\x9f\xfa\xb1\x06$\b$i3\x83\xd7\x06\xd6\x1e\xdbB\x9bb\x1cXC\x8c\x8b\xd9\xff\xf2Bf\x99!Z\x13\xff\xca\xf3e\x015\x9b\x86\xd6$\x1a\r3\x91\xb7\x942\xeb\xadVA\xfc\x1f\xbf1\xb7T\xc1\xbf\xc0\xc2\xfc\xe8w\xd33\xb2,\xb0\x9fA3\xc2\xa2\x1cM\x825\x94U\xbbNeb\xd2\xa9\x0f\xed\x8b\xea\xfa\x8a\x04.\xffMIw\x0f\xd6\xae^\xd2\xf1j\xcb\r\xa4\x1d0d\xca\x81\x9c\x80GL\x0e\xe6\x19\x8au\x1a7\xc5|\xf6\x1e\xe00\xc6\"\x83\x1c\xa2\x9e\a\x1c\xea\xa3\x9c\xe1BF\x05b\xf6\xdcf\x04\xd9B\xb9\x98\x9cq\xbd\xfb\xb5~\xf2\x8d\x9f`\xec\xd0\xafY\xcf\x84', 0x18000113) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa}, 0x58) syz_clone(0xb4001280, 0x0, 0x0, 0x0, 0x0, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x4000006, 0x3, 0x2, 0x5, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0) mmap$auto(0xfffffffffffffffc, 0x5, 0x5, 0xebd, r3, 0x9) r5 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event_notrace_pid\x00', 0x582, 0x0) write$auto_console_fops_tty_io(r5, &(0x7f0000001240)='4', 0x1) 129.30667ms ago: executing program 1 (id=797): mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x7, 0x28000) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) r1 = socket(0x29, 0x6, 0xe) epoll_create$auto(0x4) syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000200), r1) syz_genetlink_get_family_id$auto_gtp(0x0, 0xffffffffffffffff) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x40000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) fcntl$auto(0x3, 0x4, 0xa553) mmap$auto(0x0, 0x20009, 0x2000000df, 0xeb1, 0x401, 0x8000) read$auto(r0, &(0x7f00000001c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0xc) pread64$auto(0xffffffffffffffff, 0x0, 0x8, 0x8000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) getpid() close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) close_range$auto(0x0, 0xfffffffffffff000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) 39.910582ms ago: executing program 2 (id=798): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getrandom$auto(0x0, 0x6000000, 0x3) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x2002, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/virtual/block/loop1/queue/wbt_lat_usec\x00', 0x2062, 0x0) write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x9) ioctl$auto(r0, 0x400454ca, 0x38) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0) openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20a01, 0x0) ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0) openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcsa\x00', 0x80, 0x0) mmap$auto(0xb2, 0x14, 0xffb, 0x8000000008015, 0xffffffffffffffff, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) io_uring_setup$auto(0x3501, &(0x7f0000000080)={0x80, 0x1000, 0x8, 0x5, 0x3, 0xfffffff1, 0xffffffffffffffff, [0xbc, 0xffff, 0x40], {0x81, 0x9, 0x0, 0x80000000, 0x3, 0x101, 0xffff, 0x0, 0x6}, {0x7, 0xa, 0xf, 0x7fff, 0x3, 0x0, 0x0, 0xfffffffa, 0xc}}) ioctl$auto_BLKTRACETEARDOWN(r2, 0x1276, 0x0) mmap$auto(0x8000000000002001, 0x20009, 0xdf, 0x15, r3, 0x8000) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x11, 0x0, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x880, 0x0) ioctl$auto(r4, 0x5609, 0xffffffffffffffff) madvise$auto(0x0, 0x20499d, 0x9) open_tree$auto(0xffffffffffffffff, 0x0, 0x74ee) ioctl$auto_NS_GET_PID_FROM_PIDNS(r3, 0x8004b706, &(0x7f0000000180)=0x4) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000050}, 0x400c0) 0s ago: executing program 0 (id=799): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x2, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0xe6, 0x0, 0x2, 0xb}, 0xfff}, 0x6, 0x311) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (fail_nth: 6) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) kernel console output (not intermixed with test programs): /0x1c90 [ 237.009966][ T7644] do_filp_open+0x20b/0x470 [ 237.010003][ T7644] ? __pfx_do_filp_open+0x10/0x10 [ 237.010060][ T7644] ? alloc_fd+0x471/0x7d0 [ 237.010103][ T7644] do_sys_openat2+0x11b/0x1d0 [ 237.010130][ T7644] ? __pfx_do_sys_openat2+0x10/0x10 [ 237.010170][ T7644] __x64_sys_openat+0x174/0x210 [ 237.010199][ T7644] ? __pfx___x64_sys_openat+0x10/0x10 [ 237.010240][ T7644] do_syscall_64+0xcd/0x490 [ 237.010266][ T7644] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.010290][ T7644] RIP: 0033:0x7f7bbe18e929 [ 237.010310][ T7644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 237.010333][ T7644] RSP: 002b:00007f7bbefc4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 237.010356][ T7644] RAX: ffffffffffffffda RBX: 00007f7bbe3b5fa0 RCX: 00007f7bbe18e929 [ 237.010371][ T7644] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 237.010387][ T7644] RBP: 00007f7bbe210b39 R08: 0000000000000000 R09: 0000000000000000 [ 237.010401][ T7644] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 237.010415][ T7644] R13: 0000000000000000 R14: 00007f7bbe3b5fa0 R15: 00007fff13b73f58 [ 237.010449][ T7644] [ 237.010503][ T7644] tty tty26: ldisc open failed (-12), clearing slot 25 [ 237.597555][ T7649] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input33 [ 238.539346][ T7652] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input34 [ 239.141945][ T7668] netlink: 4 bytes leftover after parsing attributes in process `syz.0.398'. [ 240.278448][ T7684] netlink: 12 bytes leftover after parsing attributes in process `syz.2.402'. [ 240.866501][ T7697] FAULT_INJECTION: forcing a failure. [ 240.866501][ T7697] name failslab, interval 1, probability 0, space 0, times 0 [ 240.944782][ T7697] CPU: 0 UID: 0 PID: 7697 Comm: syz.2.405 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 240.944826][ T7697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 240.944861][ T7697] Call Trace: [ 240.944877][ T7697] [ 240.944890][ T7697] dump_stack_lvl+0x16c/0x1f0 [ 240.944947][ T7697] should_fail_ex+0x512/0x640 [ 240.944995][ T7697] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 240.945043][ T7697] should_failslab+0xc2/0x120 [ 240.945076][ T7697] __kmalloc_cache_noprof+0x6a/0x3e0 [ 240.945123][ T7697] ? kstrdup_quotable_cmdline+0x52/0x210 [ 240.945170][ T7697] kstrdup_quotable_cmdline+0x52/0x210 [ 240.945217][ T7697] __report_access+0x4b/0x3c0 [ 240.945256][ T7697] ? _raw_spin_unlock_irq+0x23/0x50 [ 240.945306][ T7697] task_work_run+0x150/0x240 [ 240.945357][ T7697] ? __pfx_task_work_run+0x10/0x10 [ 240.945420][ T7697] exit_to_user_mode_loop+0xeb/0x110 [ 240.945486][ T7697] do_syscall_64+0x3f6/0x490 [ 240.945520][ T7697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 240.945553][ T7697] RIP: 0033:0x7feaaa58e929 [ 240.945577][ T7697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 240.945610][ T7697] RSP: 002b:00007feaab482038 EFLAGS: 00000246 ORIG_RAX: 0000000000000065 [ 240.945641][ T7697] RAX: ffffffffffffffff RBX: 00007feaaa7b6080 RCX: 00007feaaa58e929 [ 240.945662][ T7697] RDX: ffffffffffffff56 RSI: 0010000000000001 RDI: 0000000000000010 [ 240.945683][ T7697] RBP: 00007feaab482090 R08: 0000000000000000 R09: 0000000000000000 [ 240.945702][ T7697] R10: 000000000000868f R11: 0000000000000246 R12: 0000000000000001 [ 240.945719][ T7697] R13: 0000000000000000 R14: 00007feaaa7b6080 R15: 00007ffece984418 [ 240.945759][ T7697] [ 241.224187][ T7697] ptrace attach of "(null)"[5835] was attempted by "./syz-executor exec"[7697] [ 241.289227][ T7705] ptrace attach of "./syz-executor exec"[5842] was attempted by "./syz-executor exec"[7705] [ 241.741528][ T7713] netlink: 4 bytes leftover after parsing attributes in process `syz.0.409'. [ 241.759500][ T7708] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 243.283667][ T7733] Invalid ELF header magic: != ELF [ 243.823243][ T7724] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[7724] [ 244.348872][ T7753] netlink: 'syz.1.418': attribute type 1 has an invalid length. [ 244.386981][ T7750] random: crng reseeded on system resumption [ 244.426982][ T7753] netlink: 93 bytes leftover after parsing attributes in process `syz.1.418'. [ 246.089852][ T7774] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC)b:0 is already present [ 248.000158][ T7818] netlink: 28 bytes leftover after parsing attributes in process `syz.3.434'. [ 249.130453][ T7823] ptrace attach of "./syz-executor exec"[5842] was attempted by "./syz-executor exec"[7823] [ 249.843810][ T7844] program syz.3.440 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 249.861849][ T7844] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 250.529551][ T7857] program syz.1.443 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 250.555918][ T7857] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 250.667459][ T7859] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input36 [ 250.896778][ T7865] netlink: 4 bytes leftover after parsing attributes in process `syz.3.444'. [ 251.003575][ T7865] openvswitch: HfR: Dropping previously announced user features [ 251.379923][ T7868] FAULT_INJECTION: forcing a failure. [ 251.379923][ T7868] name failslab, interval 1, probability 0, space 0, times 0 [ 251.418041][ T7868] CPU: 0 UID: 0 PID: 7868 Comm: syz.2.445 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 251.418074][ T7868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 251.418088][ T7868] Call Trace: [ 251.418095][ T7868] [ 251.418103][ T7868] dump_stack_lvl+0x16c/0x1f0 [ 251.418150][ T7868] should_fail_ex+0x512/0x640 [ 251.418185][ T7868] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 251.418220][ T7868] should_failslab+0xc2/0x120 [ 251.418243][ T7868] __kmalloc_cache_noprof+0x6a/0x3e0 [ 251.418293][ T7868] ? kstrdup_quotable_cmdline+0x132/0x210 [ 251.418320][ T7868] ? kstrdup_quotable_cmdline+0x52/0x210 [ 251.418351][ T7868] kstrdup_quotable_cmdline+0x52/0x210 [ 251.418382][ T7868] __report_access+0x77/0x3c0 [ 251.418409][ T7868] ? _raw_spin_unlock_irq+0x23/0x50 [ 251.418445][ T7868] task_work_run+0x150/0x240 [ 251.418481][ T7868] ? __pfx_task_work_run+0x10/0x10 [ 251.418524][ T7868] exit_to_user_mode_loop+0xeb/0x110 [ 251.418561][ T7868] do_syscall_64+0x3f6/0x490 [ 251.418585][ T7868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 251.418608][ T7868] RIP: 0033:0x7feaaa58e929 [ 251.418625][ T7868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 251.418647][ T7868] RSP: 002b:00007feaab482038 EFLAGS: 00000246 ORIG_RAX: 0000000000000065 [ 251.418668][ T7868] RAX: ffffffffffffffff RBX: 00007feaaa7b6080 RCX: 00007feaaa58e929 [ 251.418683][ T7868] RDX: ffffffffffffff56 RSI: 0010000000000001 RDI: 0000000000000010 [ 251.418697][ T7868] RBP: 00007feaab482090 R08: 0000000000000000 R09: 0000000000000000 [ 251.418711][ T7868] R10: 000000000000868f R11: 0000000000000246 R12: 0000000000000001 [ 251.418724][ T7868] R13: 0000000000000000 R14: 00007feaaa7b6080 R15: 00007ffece984418 [ 251.418752][ T7868] [ 251.418762][ T7868] ptrace attach of "./syz-executor exec"[5835] was attempted by "(null)"[7868] [ 251.517499][ T7860] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input37 [ 252.254673][ T7879] Invalid ELF header magic: != ELF [ 252.685742][ T7886] netlink: 28 bytes leftover after parsing attributes in process `syz.1.449'. [ 252.731711][ T7884] Invalid ELF header magic: != ELF [ 253.089466][ T7886] team0: Port device team_slave_0 removed [ 253.977896][ T7903] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input38 [ 254.582511][ T7912] ptrace attach of "./syz-executor exec"[5842] was attempted by "./syz-executor exec"[7912] [ 254.614669][ T7905] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input39 [ 254.642069][ T7911] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC)b:0 is already present [ 255.784046][ T7930] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[7930] [ 256.458318][ T30] audit: type=1804 audit(6044236367.623:4): pid=7944 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.459" name="/newroot/103/file0" dev="tmpfs" ino=554 res=1 errno=0 [ 256.503773][ T30] audit: type=1800 audit(6044236367.663:5): pid=7944 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.459" name="file0" dev="tmpfs" ino=554 res=0 errno=0 [ 256.569051][ T30] audit: type=1804 audit(6044236367.733:6): pid=7943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.459" name="/newroot/103/file0" dev="tmpfs" ino=554 res=1 errno=0 [ 257.099972][ T7949] netlink: 4 bytes leftover after parsing attributes in process `syz.3.460'. [ 257.338020][ T7949] openvswitch: HfR: Dropping previously announced user features [ 257.539539][ T7957] program syz.0.461 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 257.549360][ T7957] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 257.843246][ T7954] ubi: mtd0 is already attached to ubi0 [ 259.237735][ T7989] netlink: 28 bytes leftover after parsing attributes in process `syz.2.469'. [ 259.493631][ T7989] team0: Port device team_slave_0 removed [ 259.537705][ T7987] netlink: 342 bytes leftover after parsing attributes in process `syz.0.468'. [ 259.576884][ T7987] IPv6: Can't replace route, no match found [ 259.612956][ T7993] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC)b:0 is already present [ 259.872956][ T7997] netlink: 4 bytes leftover after parsing attributes in process `syz.3.472'. [ 259.887587][ T7998] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[7998] [ 259.907473][ T7997] openvswitch: HfR: Dropping previously announced user features [ 260.224849][ T8006] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input40 [ 260.690016][ T8010] Invalid ELF header magic: != ELF [ 261.041435][ T8008] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input41 [ 261.294231][ T8021] program syz.1.475 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 261.416085][ T8021] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 261.632139][ T8026] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 261.814156][ T8025] Invalid ELF header magic: != ELF [ 263.022561][ T8044] ptrace attach of "./syz-executor exec"[5835] was attempted by "./syz-executor exec"[8044] [ 263.559157][ T8058] FAULT_INJECTION: forcing a failure. [ 263.559157][ T8058] name failslab, interval 1, probability 0, space 0, times 0 [ 263.597705][ T8058] CPU: 0 UID: 0 PID: 8058 Comm: syz.2.485 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 263.597741][ T8058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 263.597755][ T8058] Call Trace: [ 263.597763][ T8058] [ 263.597772][ T8058] dump_stack_lvl+0x16c/0x1f0 [ 263.597823][ T8058] should_fail_ex+0x512/0x640 [ 263.597860][ T8058] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 263.597902][ T8058] should_failslab+0xc2/0x120 [ 263.597925][ T8058] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 263.597964][ T8058] ? security_file_alloc+0x34/0x2b0 [ 263.598005][ T8058] security_file_alloc+0x34/0x2b0 [ 263.598041][ T8058] init_file+0x93/0x4c0 [ 263.598066][ T8058] alloc_empty_file+0x73/0x1e0 [ 263.598093][ T8058] path_openat+0xda/0x2cb0 [ 263.598127][ T8058] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 263.598161][ T8058] ? __pfx_path_openat+0x10/0x10 [ 263.598199][ T8058] ? __lock_acquire+0xb8a/0x1c90 [ 263.598234][ T8058] do_filp_open+0x20b/0x470 [ 263.598270][ T8058] ? __pfx_do_filp_open+0x10/0x10 [ 263.598327][ T8058] ? alloc_fd+0x471/0x7d0 [ 263.598367][ T8058] do_sys_openat2+0x11b/0x1d0 [ 263.598395][ T8058] ? __pfx_do_sys_openat2+0x10/0x10 [ 263.598434][ T8058] __x64_sys_openat+0x174/0x210 [ 263.598462][ T8058] ? __pfx___x64_sys_openat+0x10/0x10 [ 263.598502][ T8058] do_syscall_64+0xcd/0x490 [ 263.598527][ T8058] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 263.598551][ T8058] RIP: 0033:0x7feaaa58e929 [ 263.598569][ T8058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 263.598592][ T8058] RSP: 002b:00007feaab4a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 263.598615][ T8058] RAX: ffffffffffffffda RBX: 00007feaaa7b5fa0 RCX: 00007feaaa58e929 [ 263.598631][ T8058] RDX: 0000000000000000 RSI: 0000200000000300 RDI: ffffffffffffff9c [ 263.598646][ T8058] RBP: 00007feaaa610b39 R08: 0000000000000000 R09: 0000000000000000 [ 263.598660][ T8058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 263.598674][ T8058] R13: 0000000000000000 R14: 00007feaaa7b5fa0 R15: 00007ffece984418 [ 263.598703][ T8058] [ 264.198934][ T8065] lo: entered allmulticast mode [ 264.561055][ T8064] lo: left allmulticast mode [ 264.743092][ T8060] i2c i2c-0: new_device: Can't parse I2C address [ 264.756922][ T8080] program syz.2.488 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 264.766603][ T8080] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 264.984574][ T8083] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 265.147826][ T8078] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC)b:0 is already present [ 266.244465][ T8109] Invalid ELF header magic: != ELF [ 266.444055][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 266.450713][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 267.051777][ T8126] program syz.3.501 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 267.063323][ T8126] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 267.136228][ T8128] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 268.546749][ T8152] netlink: 28 bytes leftover after parsing attributes in process `syz.2.506'. [ 268.739199][ T8147] ubi: mtd0 is already attached to ubi0 [ 268.905737][ T8134] ptrace attach of "./syz-executor exec"[5842] was attempted by "./syz-executor exec"[8134] [ 270.757441][ T8176] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC)b:0 is already present [ 271.573321][ T8194] program syz.3.513 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 271.583411][ T8194] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 271.605291][ T8192] netlink: 28 bytes leftover after parsing attributes in process `syz.0.515'. [ 271.879594][ T8201] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 272.004829][ T8192] team0: Port device team_slave_0 removed [ 272.048547][ T8203] Invalid ELF header magic: != ELF [ 273.399709][ T8225] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC)b:0 is already present [ 273.838796][ T8227] bridge0: port 3(vlan1) entered blocking state [ 273.854369][ T8227] bridge0: port 3(vlan1) entered disabled state [ 273.861611][ T8227] vlan1: entered allmulticast mode [ 273.870430][ T8227] veth0_vlan: entered allmulticast mode [ 273.901188][ T8227] vlan1: entered promiscuous mode [ 274.033945][ T8227] bridge0: port 3(vlan1) entered blocking state [ 274.041103][ T8227] bridge0: port 3(vlan1) entered forwarding state [ 274.420169][ T8241] program syz.0.526 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 274.432225][ T8241] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 274.646310][ T8243] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 274.888658][ T8249] netlink: 4 bytes leftover after parsing attributes in process `syz.2.529'. [ 274.948367][ T8249] openvswitch: HfR: Dropping previously announced user features [ 275.099708][ T8253] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[8253] [ 275.268401][ T8247] ubi: mtd0 is already attached to ubi0 [ 276.106839][ T8276] netlink: 326 bytes leftover after parsing attributes in process `syz.0.533'. [ 276.633311][ T8281] ubi: mtd0 is already attached to ubi0 [ 276.956895][ T8291] program syz.2.538 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 276.994979][ T8291] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 277.278469][ T8291] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 278.088618][ T8303] netlink: 4 bytes leftover after parsing attributes in process `syz.3.540'. [ 278.140847][ T8305] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC)b:0 is already present [ 278.191019][ T8303] openvswitch: HfR: Dropping previously announced user features [ 279.149748][ T8318] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input42 [ 279.746636][ T8323] netlink: 338 bytes leftover after parsing attributes in process `syz.1.545'. [ 279.856234][ T8322] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input43 [ 280.726325][ T8343] program syz.3.549 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 280.806858][ T8343] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 281.026215][ T8343] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 281.481306][ T8355] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC)b:0 is already present [ 283.402226][ T8378] ubi: mtd0 is already attached to ubi0 [ 284.594010][ T8389] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input44 [ 284.719229][ T8394] netlink: 28 bytes leftover after parsing attributes in process `syz.1.560'. [ 285.040386][ T8390] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input45 [ 286.888651][ T8423] block nbd7: not configured, cannot reconfigure [ 287.213148][ T8428] program syz.2.569 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 287.245867][ T8428] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 287.799450][ T8436] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 288.471454][ T8441] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC)b:0 is already present [ 288.714469][ T8445] ubi: mtd0 is already attached to ubi0 [ 288.880733][ T8454] program syz.3.574 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 288.891415][ T8454] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 288.974506][ T8457] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 289.014934][ T8457] FAULT_INJECTION: forcing a failure. [ 289.014934][ T8457] name failslab, interval 1, probability 0, space 0, times 0 [ 289.034404][ T8457] CPU: 1 UID: 0 PID: 8457 Comm: syz.3.574 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 289.034446][ T8457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 289.034465][ T8457] Call Trace: [ 289.034477][ T8457] [ 289.034488][ T8457] dump_stack_lvl+0x16c/0x1f0 [ 289.034546][ T8457] should_fail_ex+0x512/0x640 [ 289.034597][ T8457] ? fs_reclaim_acquire+0xae/0x150 [ 289.034640][ T8457] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 289.034689][ T8457] should_failslab+0xc2/0x120 [ 289.034722][ T8457] __kmalloc_noprof+0xd2/0x510 [ 289.034782][ T8457] tomoyo_realpath_from_path+0xc2/0x6e0 [ 289.034835][ T8457] ? tomoyo_profile+0x47/0x60 [ 289.034875][ T8457] tomoyo_path_number_perm+0x245/0x580 [ 289.034915][ T8457] ? tomoyo_path_number_perm+0x237/0x580 [ 289.034961][ T8457] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 289.035014][ T8457] ? find_held_lock+0x2b/0x80 [ 289.035086][ T8457] ? find_held_lock+0x2b/0x80 [ 289.035118][ T8457] ? hook_file_ioctl_common+0x145/0x410 [ 289.035166][ T8457] ? __fget_files+0x20e/0x3c0 [ 289.035222][ T8457] security_file_ioctl+0x9b/0x240 [ 289.035269][ T8457] __x64_sys_ioctl+0xb7/0x210 [ 289.035314][ T8457] do_syscall_64+0xcd/0x490 [ 289.035351][ T8457] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.035384][ T8457] RIP: 0033:0x7fa404b8e929 [ 289.035410][ T8457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 289.035442][ T8457] RSP: 002b:00007fa405a21038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 289.035470][ T8457] RAX: ffffffffffffffda RBX: 00007fa404db6240 RCX: 00007fa404b8e929 [ 289.035491][ T8457] RDX: 00002000000000c0 RSI: 00000000c0405519 RDI: 0000000000000003 [ 289.035510][ T8457] RBP: 00007fa405a21090 R08: 0000000000000000 R09: 0000000000000000 [ 289.035529][ T8457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 289.035547][ T8457] R13: 0000000000000000 R14: 00007fa404db6240 R15: 00007ffd46c73368 [ 289.035590][ T8457] [ 289.287659][ T8457] ERROR: Out of memory at tomoyo_realpath_from_path. [ 289.733884][ T8470] netlink: 342 bytes leftover after parsing attributes in process `syz.2.578'. [ 289.893367][ T8475] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input47 [ 290.183597][ T8483] netlink: 12 bytes leftover after parsing attributes in process `syz.1.582'. [ 290.353448][ T8481] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input48 [ 291.150991][ T8496] FAULT_INJECTION: forcing a failure. [ 291.150991][ T8496] name failslab, interval 1, probability 0, space 0, times 0 [ 291.164846][ T8496] CPU: 1 UID: 0 PID: 8496 Comm: syz.0.584 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 291.164894][ T8496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 291.164915][ T8496] Call Trace: [ 291.164927][ T8496] [ 291.164940][ T8496] dump_stack_lvl+0x16c/0x1f0 [ 291.165011][ T8496] should_fail_ex+0x512/0x640 [ 291.165060][ T8496] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 291.165117][ T8496] should_failslab+0xc2/0x120 [ 291.165150][ T8496] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 291.165203][ T8496] ? alloc_inode+0xc3/0x240 [ 291.165244][ T8496] alloc_inode+0xc3/0x240 [ 291.165280][ T8496] iget_locked+0x2e4/0x830 [ 291.165316][ T8496] ? __pfx_iget_locked+0x10/0x10 [ 291.165355][ T8496] ? find_held_lock+0x2b/0x80 [ 291.165389][ T8496] ? kernfs_root+0xee/0x2a0 [ 291.165447][ T8496] kernfs_get_inode+0x48/0x460 [ 291.165502][ T8496] kernfs_iop_lookup+0x1a7/0x2d0 [ 291.165555][ T8496] __lookup_slow+0x251/0x460 [ 291.165594][ T8496] ? __pfx___lookup_slow+0x10/0x10 [ 291.165658][ T8496] ? lookup_fast+0x156/0x610 [ 291.165698][ T8496] ? __pfx_kernfs_iop_permission+0x10/0x10 [ 291.165750][ T8496] walk_component+0x353/0x5b0 [ 291.165798][ T8496] link_path_walk+0x627/0xe20 [ 291.165859][ T8496] path_lookupat+0x15a/0x6d0 [ 291.165911][ T8496] path_openat+0x16f1/0x2cb0 [ 291.165957][ T8496] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.166014][ T8496] ? __pfx_path_openat+0x10/0x10 [ 291.166066][ T8496] ? __lock_acquire+0xb8a/0x1c90 [ 291.166116][ T8496] do_filp_open+0x20b/0x470 [ 291.166168][ T8496] ? __pfx_do_filp_open+0x10/0x10 [ 291.166248][ T8496] ? alloc_fd+0x471/0x7d0 [ 291.166308][ T8496] do_sys_openat2+0x11b/0x1d0 [ 291.166347][ T8496] ? __pfx_do_sys_openat2+0x10/0x10 [ 291.166403][ T8496] __x64_sys_openat+0x174/0x210 [ 291.166443][ T8496] ? __pfx___x64_sys_openat+0x10/0x10 [ 291.166500][ T8496] do_syscall_64+0xcd/0x490 [ 291.166536][ T8496] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.166569][ T8496] RIP: 0033:0x7f7bbe18e929 [ 291.166594][ T8496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 291.166627][ T8496] RSP: 002b:00007f7bbefc4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 291.166658][ T8496] RAX: ffffffffffffffda RBX: 00007f7bbe3b5fa0 RCX: 00007f7bbe18e929 [ 291.166679][ T8496] RDX: 0000000000202040 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 291.166700][ T8496] RBP: 00007f7bbe210b39 R08: 0000000000000000 R09: 0000000000000000 [ 291.166719][ T8496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 291.166738][ T8496] R13: 0000000000000000 R14: 00007f7bbe3b5fa0 R15: 00007fff13b73f58 [ 291.166781][ T8496] [ 292.473855][ T8512] ubi: mtd0 is already attached to ubi0 [ 292.585209][ T8516] ubi: mtd0 is already attached to ubi0 [ 293.496454][ T8504] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[8504] [ 293.671001][ T8527] ptrace attach of "./syz-executor exec"[5835] was attempted by "./syz-executor exec"[8527] [ 294.496639][ T8534] netlink: 28 bytes leftover after parsing attributes in process `syz.2.590'. [ 295.473385][ T8558] program syz.0.594 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 295.522654][ T8558] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 297.774330][ T8589] FAULT_INJECTION: forcing a failure. [ 297.774330][ T8589] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 297.798246][ T8589] CPU: 1 UID: 0 PID: 8589 Comm: syz.0.599 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 297.798294][ T8589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 297.798314][ T8589] Call Trace: [ 297.798325][ T8589] [ 297.798338][ T8589] dump_stack_lvl+0x16c/0x1f0 [ 297.798389][ T8589] should_fail_ex+0x512/0x640 [ 297.798431][ T8589] should_fail_alloc_page+0xe7/0x130 [ 297.798458][ T8589] prepare_alloc_pages+0x3c2/0x610 [ 297.798492][ T8589] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 297.798537][ T8589] ? find_held_lock+0x2b/0x80 [ 297.798562][ T8589] ? is_bpf_text_address+0x8a/0x1a0 [ 297.798596][ T8589] ? bpf_ksym_find+0x124/0x1c0 [ 297.798624][ T8589] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 297.798661][ T8589] ? is_bpf_text_address+0x94/0x1a0 [ 297.798697][ T8589] ? __kernel_text_address+0xd/0x40 [ 297.798734][ T8589] ? unwind_get_return_address+0x59/0xa0 [ 297.798784][ T8589] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 297.798823][ T8589] ? policy_nodemask+0xea/0x4e0 [ 297.798849][ T8589] alloc_pages_mpol+0x1fb/0x550 [ 297.798874][ T8589] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 297.798896][ T8589] ? kasan_save_stack+0x33/0x60 [ 297.798931][ T8589] ? __kasan_kmalloc+0xaa/0xb0 [ 297.798964][ T8589] ? __get_vm_area_node+0x101/0x330 [ 297.798999][ T8589] alloc_pages_noprof+0x131/0x390 [ 297.799024][ T8589] get_free_pages_noprof+0x10/0xb0 [ 297.799050][ T8589] kasan_populate_vmalloc+0x89/0x1f0 [ 297.799103][ T8589] alloc_vmap_area+0x959/0x29c0 [ 297.799143][ T8589] ? __pfx_alloc_vmap_area+0x10/0x10 [ 297.799179][ T8589] __get_vm_area_node+0x1ca/0x330 [ 297.799215][ T8589] __vmalloc_node_range_noprof+0x271/0x14b0 [ 297.799248][ T8589] ? n_tty_open+0x1a/0x170 [ 297.799274][ T8589] ? do_raw_spin_unlock+0x172/0x230 [ 297.799319][ T8589] ? n_tty_open+0x1a/0x170 [ 297.799353][ T8589] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 297.799385][ T8589] ? console_unlock+0x184/0x210 [ 297.799407][ T8589] ? __pfx_console_unlock+0x10/0x10 [ 297.799432][ T8589] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 297.799465][ T8589] ? n_tty_open+0x1a/0x170 [ 297.799491][ T8589] __vmalloc_node_noprof+0xad/0xf0 [ 297.799521][ T8589] ? n_tty_open+0x1a/0x170 [ 297.799548][ T8589] ? __pfx_n_tty_open+0x10/0x10 [ 297.799576][ T8589] n_tty_open+0x1a/0x170 [ 297.799602][ T8589] ? __pfx_n_tty_open+0x10/0x10 [ 297.799629][ T8589] tty_ldisc_open+0x9f/0x120 [ 297.799664][ T8589] tty_ldisc_setup+0x40/0x100 [ 297.799702][ T8589] tty_init_dev.part.0+0x1ec/0x500 [ 297.799730][ T8589] tty_open+0xa50/0xf90 [ 297.799760][ T8589] ? __pfx_tty_open+0x10/0x10 [ 297.799785][ T8589] ? chrdev_open+0x10b/0x6a0 [ 297.799810][ T8589] ? __pfx_tty_open+0x10/0x10 [ 297.799834][ T8589] chrdev_open+0x234/0x6a0 [ 297.799854][ T8589] ? __pfx_apparmor_file_open+0x10/0x10 [ 297.799886][ T8589] ? __pfx_chrdev_open+0x10/0x10 [ 297.799910][ T8589] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 297.799949][ T8589] do_dentry_open+0x741/0x1c10 [ 297.799987][ T8589] ? __pfx_chrdev_open+0x10/0x10 [ 297.800015][ T8589] vfs_open+0x82/0x3f0 [ 297.800046][ T8589] path_openat+0x1de4/0x2cb0 [ 297.800098][ T8589] ? __pfx_path_openat+0x10/0x10 [ 297.800136][ T8589] ? __lock_acquire+0xb8a/0x1c90 [ 297.800171][ T8589] do_filp_open+0x20b/0x470 [ 297.800208][ T8589] ? __pfx_do_filp_open+0x10/0x10 [ 297.800266][ T8589] ? alloc_fd+0x471/0x7d0 [ 297.800308][ T8589] do_sys_openat2+0x11b/0x1d0 [ 297.800335][ T8589] ? __pfx_do_sys_openat2+0x10/0x10 [ 297.800375][ T8589] __x64_sys_openat+0x174/0x210 [ 297.800404][ T8589] ? __pfx___x64_sys_openat+0x10/0x10 [ 297.800445][ T8589] do_syscall_64+0xcd/0x490 [ 297.800471][ T8589] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 297.800500][ T8589] RIP: 0033:0x7f7bbe18e929 [ 297.800520][ T8589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 297.800543][ T8589] RSP: 002b:00007f7bbefa3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 297.800565][ T8589] RAX: ffffffffffffffda RBX: 00007f7bbe3b6080 RCX: 00007f7bbe18e929 [ 297.800581][ T8589] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 297.800596][ T8589] RBP: 00007f7bbe210b39 R08: 0000000000000000 R09: 0000000000000000 [ 297.800610][ T8589] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 297.800625][ T8589] R13: 0000000000000000 R14: 00007f7bbe3b6080 R15: 00007fff13b73f58 [ 297.800655][ T8589] [ 297.800704][ T8589] warn_alloc: 1 callbacks suppressed [ 297.800717][ T8589] syz.0.599: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 298.293890][ T8589] CPU: 1 UID: 0 PID: 8589 Comm: syz.0.599 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 298.293939][ T8589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 298.293954][ T8589] Call Trace: [ 298.293963][ T8589] [ 298.293972][ T8589] dump_stack_lvl+0x16c/0x1f0 [ 298.294023][ T8589] warn_alloc+0x248/0x3a0 [ 298.294068][ T8589] ? __pfx_warn_alloc+0x10/0x10 [ 298.294123][ T8589] ? kfree+0x2b4/0x4d0 [ 298.294176][ T8589] ? __get_vm_area_node+0x208/0x330 [ 298.294220][ T8589] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 298.294268][ T8589] ? do_raw_spin_unlock+0x172/0x230 [ 298.294333][ T8589] ? n_tty_open+0x1a/0x170 [ 298.294383][ T8589] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 298.294428][ T8589] ? console_unlock+0x184/0x210 [ 298.294455][ T8589] ? __pfx_console_unlock+0x10/0x10 [ 298.294481][ T8589] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 298.294513][ T8589] ? n_tty_open+0x1a/0x170 [ 298.294539][ T8589] __vmalloc_node_noprof+0xad/0xf0 [ 298.294570][ T8589] ? n_tty_open+0x1a/0x170 [ 298.294596][ T8589] ? __pfx_n_tty_open+0x10/0x10 [ 298.294624][ T8589] n_tty_open+0x1a/0x170 [ 298.294650][ T8589] ? __pfx_n_tty_open+0x10/0x10 [ 298.294677][ T8589] tty_ldisc_open+0x9f/0x120 [ 298.294712][ T8589] tty_ldisc_setup+0x40/0x100 [ 298.294750][ T8589] tty_init_dev.part.0+0x1ec/0x500 [ 298.294778][ T8589] tty_open+0xa50/0xf90 [ 298.294808][ T8589] ? __pfx_tty_open+0x10/0x10 [ 298.294833][ T8589] ? chrdev_open+0x10b/0x6a0 [ 298.294858][ T8589] ? __pfx_tty_open+0x10/0x10 [ 298.294882][ T8589] chrdev_open+0x234/0x6a0 [ 298.294902][ T8589] ? __pfx_apparmor_file_open+0x10/0x10 [ 298.294934][ T8589] ? __pfx_chrdev_open+0x10/0x10 [ 298.294964][ T8589] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 298.295028][ T8589] do_dentry_open+0x741/0x1c10 [ 298.295074][ T8589] ? __pfx_chrdev_open+0x10/0x10 [ 298.295102][ T8589] vfs_open+0x82/0x3f0 [ 298.295132][ T8589] path_openat+0x1de4/0x2cb0 [ 298.295179][ T8589] ? __pfx_path_openat+0x10/0x10 [ 298.295217][ T8589] ? __lock_acquire+0xb8a/0x1c90 [ 298.295254][ T8589] do_filp_open+0x20b/0x470 [ 298.295290][ T8589] ? __pfx_do_filp_open+0x10/0x10 [ 298.295348][ T8589] ? alloc_fd+0x471/0x7d0 [ 298.295390][ T8589] do_sys_openat2+0x11b/0x1d0 [ 298.295430][ T8589] ? __pfx_do_sys_openat2+0x10/0x10 [ 298.295486][ T8589] __x64_sys_openat+0x174/0x210 [ 298.295525][ T8589] ? __pfx___x64_sys_openat+0x10/0x10 [ 298.295583][ T8589] do_syscall_64+0xcd/0x490 [ 298.295620][ T8589] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 298.295654][ T8589] RIP: 0033:0x7f7bbe18e929 [ 298.295680][ T8589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 298.295703][ T8589] RSP: 002b:00007f7bbefa3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 298.295726][ T8589] RAX: ffffffffffffffda RBX: 00007f7bbe3b6080 RCX: 00007f7bbe18e929 [ 298.295742][ T8589] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 298.295757][ T8589] RBP: 00007f7bbe210b39 R08: 0000000000000000 R09: 0000000000000000 [ 298.295771][ T8589] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 298.295786][ T8589] R13: 0000000000000000 R14: 00007f7bbe3b6080 R15: 00007fff13b73f58 [ 298.295815][ T8589] [ 298.725606][ T8589] Mem-Info: [ 298.729000][ T8589] active_anon:10140 inactive_anon:0 isolated_anon:0 [ 298.729000][ T8589] active_file:17088 inactive_file:40471 isolated_file:0 [ 298.729000][ T8589] unevictable:768 dirty:680 writeback:0 [ 298.729000][ T8589] slab_reclaimable:10454 slab_unreclaimable:96060 [ 298.729000][ T8589] mapped:32579 shmem:4634 pagetables:1186 [ 298.729000][ T8589] sec_pagetables:0 bounce:0 [ 298.729000][ T8589] kernel_misc_reclaimable:0 [ 298.729000][ T8589] free:1326848 free_pcp:12056 free_cma:0 [ 298.777093][ T8589] Node 0 active_anon:40460kB inactive_anon:0kB active_file:68352kB inactive_file:161684kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:130316kB dirty:2716kB writeback:0kB shmem:16900kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12064kB pagetables:4600kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 298.811152][ T8589] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 298.843188][ T8589] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 298.872528][ T8589] lowmem_reserve[]: 0 2481 2482 2482 2482 [ 298.878771][ T8589] Node 0 DMA32 free:1382088kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB free_highatomic:0KB active_anon:40412kB inactive_anon:0kB active_file:68352kB inactive_file:160108kB unevictable:1536kB writepending:2716kB present:3129332kB managed:2540904kB mlocked:0kB bounce:0kB free_pcp:38244kB local_pcp:21300kB free_cma:0kB [ 298.913582][ T8589] lowmem_reserve[]: 0 0 1 1 1 [ 298.918767][ T8589] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1576kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 298.948262][ T8589] lowmem_reserve[]: 0 0 0 0 0 [ 298.953152][ T8589] Node 1 Normal free:3909932kB boost:0kB min:55788kB low:69732kB high:83676kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:10240kB local_pcp:0kB free_cma:0kB [ 299.044689][ T8589] lowmem_reserve[]: 0 0 0 0 0 [ 299.081778][ T8589] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 299.204024][ T8591] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC)b:0 is already present [ 299.225515][ T8589] Node 0 DMA32: 3747*4kB (UME) 1923*8kB (UME) 493*16kB (UME) 1002*32kB (UME) 782*64kB (UME) 338*128kB (UME) 201*256kB (UM) 85*512kB (UME) 50*1024kB (UME) 1*2048kB (U) 264*4096kB (M) = 1393204kB [ 299.345884][ T8589] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 299.391328][ T8589] Node 1 Normal: 5*4kB (ME) 47*8kB (UME) 44*16kB (UME) 239*32kB (UME) 74*64kB (UME) 23*128kB (UE) 11*256kB (UME) 1*512kB (U) 3*1024kB (UME) 2*2048kB (ME) 948*4096kB (M) = 3909932kB [ 299.417342][ T8589] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 299.427582][ T8589] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 299.443542][ T8589] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 299.500695][ T8589] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 299.533473][ T8589] 58938 total pagecache pages [ 299.555284][ T8589] 0 pages in swap cache [ 299.581362][ T8589] Free swap = 124996kB [ 299.588444][ T8589] Total swap = 124996kB [ 299.594209][ T8589] 2097051 pages RAM [ 299.601633][ T8589] 0 pages HighMem/MovableOnly [ 299.610112][ T8589] 429783 pages reserved [ 299.614911][ T8589] 0 pages cma reserved [ 299.626430][ T8598] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 299.644285][ T8598] netlink: 330 bytes leftover after parsing attributes in process `syz.1.603'. [ 299.661901][ T8589] tty tty26: ldisc open failed (-12), clearing slot 25 [ 300.452588][ T8609] program syz.1.607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 300.480734][ T8609] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 300.754351][ T8609] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 300.939164][ T8609] random: crng reseeded on system resumption [ 301.082358][ T8621] openvswitch: netlink: Message has 20 unknown bytes. [ 301.406008][ T5839] Bluetooth: hci1: Malformed Event: 0x02 [ 301.680471][ T8627] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 301.689596][ T8627] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 301.880770][ T8631] netlink: 28 bytes leftover after parsing attributes in process `syz.0.610'. [ 302.334930][ T8642] program syz.0.614 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 302.500647][ T8652] netlink: 28 bytes leftover after parsing attributes in process `syz.1.616'. [ 302.759563][ T8649] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[8649] [ 303.012831][ T8667] program syz.1.619 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 303.022375][ T8667] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 303.219382][ T8673] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 303.234547][ T8654] Invalid ELF header magic: != ELF [ 303.246197][ T8673] FAULT_INJECTION: forcing a failure. [ 303.246197][ T8673] name failslab, interval 1, probability 0, space 0, times 0 [ 303.311681][ T8673] CPU: 0 UID: 0 PID: 8673 Comm: syz.1.619 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 303.311723][ T8673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 303.311744][ T8673] Call Trace: [ 303.311753][ T8673] [ 303.311766][ T8673] dump_stack_lvl+0x16c/0x1f0 [ 303.311823][ T8673] should_fail_ex+0x512/0x640 [ 303.311859][ T8673] ? fs_reclaim_acquire+0xae/0x150 [ 303.311889][ T8673] ? tomoyo_encode2+0x100/0x3e0 [ 303.311920][ T8673] should_failslab+0xc2/0x120 [ 303.311943][ T8673] __kmalloc_noprof+0xd2/0x510 [ 303.311978][ T8673] ? d_absolute_path+0x136/0x1a0 [ 303.312007][ T8673] tomoyo_encode2+0x100/0x3e0 [ 303.312049][ T8673] tomoyo_encode+0x29/0x50 [ 303.312081][ T8673] tomoyo_realpath_from_path+0x18f/0x6e0 [ 303.312124][ T8673] tomoyo_path_number_perm+0x245/0x580 [ 303.312152][ T8673] ? tomoyo_path_number_perm+0x237/0x580 [ 303.312183][ T8673] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 303.312213][ T8673] ? find_held_lock+0x2b/0x80 [ 303.312262][ T8673] ? find_held_lock+0x2b/0x80 [ 303.312283][ T8673] ? hook_file_ioctl_common+0x145/0x410 [ 303.312317][ T8673] ? __fget_files+0x20e/0x3c0 [ 303.312355][ T8673] security_file_ioctl+0x9b/0x240 [ 303.312387][ T8673] __x64_sys_ioctl+0xb7/0x210 [ 303.312418][ T8673] do_syscall_64+0xcd/0x490 [ 303.312445][ T8673] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 303.312471][ T8673] RIP: 0033:0x7ffb1b98e929 [ 303.312651][ T8673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 303.312675][ T8673] RSP: 002b:00007ffb19793038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 303.312697][ T8673] RAX: ffffffffffffffda RBX: 00007ffb1bbb6320 RCX: 00007ffb1b98e929 [ 303.312712][ T8673] RDX: 00002000000000c0 RSI: 00000000c0405519 RDI: 0000000000000003 [ 303.312727][ T8673] RBP: 00007ffb19793090 R08: 0000000000000000 R09: 0000000000000000 [ 303.312741][ T8673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 303.312755][ T8673] R13: 0000000000000000 R14: 00007ffb1bbb6320 R15: 00007fff99c70738 [ 303.312785][ T8673] [ 303.312810][ T8673] ERROR: Out of memory at tomoyo_realpath_from_path. [ 305.131059][ T8689] can: request_module (can-proto-3) failed. [ 306.611061][ T8708] Invalid ELF header magic: != ELF [ 306.798634][ T8718] FAULT_INJECTION: forcing a failure. [ 306.798634][ T8718] name failslab, interval 1, probability 0, space 0, times 0 [ 306.897668][ T8718] CPU: 0 UID: 0 PID: 8718 Comm: syz.0.629 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 306.897713][ T8718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 306.897732][ T8718] Call Trace: [ 306.897741][ T8718] [ 306.897752][ T8718] dump_stack_lvl+0x16c/0x1f0 [ 306.897811][ T8718] should_fail_ex+0x512/0x640 [ 306.897859][ T8718] ? __kmalloc_noprof+0xbf/0x510 [ 306.897911][ T8718] ? kernfs_fop_write_iter+0x237/0x510 [ 306.897946][ T8718] should_failslab+0xc2/0x120 [ 306.897979][ T8718] __kmalloc_noprof+0xd2/0x510 [ 306.898041][ T8718] kernfs_fop_write_iter+0x237/0x510 [ 306.898084][ T8718] vfs_write+0x6c4/0x1150 [ 306.898134][ T8718] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 306.898173][ T8718] ? __pfx___mutex_lock+0x10/0x10 [ 306.898205][ T8718] ? __pfx_vfs_write+0x10/0x10 [ 306.898283][ T8718] ksys_write+0x12a/0x250 [ 306.898345][ T8718] ? __pfx_ksys_write+0x10/0x10 [ 306.898406][ T8718] do_syscall_64+0xcd/0x490 [ 306.898443][ T8718] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 306.898476][ T8718] RIP: 0033:0x7f7bbe18e929 [ 306.898501][ T8718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 306.898531][ T8718] RSP: 002b:00007f7bbefa3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 306.898559][ T8718] RAX: ffffffffffffffda RBX: 00007f7bbe3b6080 RCX: 00007f7bbe18e929 [ 306.898580][ T8718] RDX: 00000000000002b6 RSI: 0000000000000000 RDI: 0000000000000004 [ 306.898599][ T8718] RBP: 00007f7bbefa3090 R08: 0000000000000000 R09: 0000000000000000 [ 306.898618][ T8718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 306.898637][ T8718] R13: 0000000000000000 R14: 00007f7bbe3b6080 R15: 00007fff13b73f58 [ 306.898677][ T8718] [ 307.188758][ T8721] ptrace attach of "./syz-executor exec"[5835] was attempted by "./syz-executor exec"[8721] [ 308.052988][ T8733] netlink: 4 bytes leftover after parsing attributes in process `syz.3.633'. [ 308.122168][ T8733] openvswitch: HfR: Dropping previously announced user features [ 308.681421][ T8753] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input49 [ 308.758718][ T8752] Invalid ELF header magic: != ELF [ 309.061694][ T8741] ubi: mtd0 is already attached to ubi0 [ 309.837266][ T8760] Invalid ELF header magic: != ELF [ 310.103502][ T8757] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input50 [ 310.621249][ T8770] FAULT_INJECTION: forcing a failure. [ 310.621249][ T8770] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 310.700339][ T8770] CPU: 0 UID: 0 PID: 8770 Comm: syz.3.639 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 310.700373][ T8770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 310.700388][ T8770] Call Trace: [ 310.700395][ T8770] [ 310.700404][ T8770] dump_stack_lvl+0x16c/0x1f0 [ 310.700448][ T8770] should_fail_ex+0x512/0x640 [ 310.700496][ T8770] should_fail_alloc_page+0xe7/0x130 [ 310.700523][ T8770] prepare_alloc_pages+0x3c2/0x610 [ 310.700558][ T8770] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 310.700602][ T8770] ? rcu_is_watching+0x12/0xc0 [ 310.700627][ T8770] ? trace_mm_page_alloc+0x11f/0x1a0 [ 310.700656][ T8770] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 310.700704][ T8770] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 310.700746][ T8770] ? is_bpf_text_address+0x8a/0x1a0 [ 310.700781][ T8770] ? bpf_ksym_find+0x124/0x1c0 [ 310.700810][ T8770] ? is_bpf_text_address+0x94/0x1a0 [ 310.700847][ T8770] ? __kernel_text_address+0xd/0x40 [ 310.700885][ T8770] ? unwind_get_return_address+0x59/0xa0 [ 310.700934][ T8770] alloc_pages_bulk_noprof+0x71c/0x1410 [ 310.700977][ T8770] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 310.701016][ T8770] ? policy_nodemask+0xea/0x4e0 [ 310.701044][ T8770] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 310.701084][ T8770] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 310.701121][ T8770] kasan_populate_vmalloc+0xf1/0x1f0 [ 310.701163][ T8770] alloc_vmap_area+0x959/0x29c0 [ 310.701204][ T8770] ? __pfx_alloc_vmap_area+0x10/0x10 [ 310.701239][ T8770] __get_vm_area_node+0x1ca/0x330 [ 310.701275][ T8770] __vmalloc_node_range_noprof+0x271/0x14b0 [ 310.701309][ T8770] ? n_tty_open+0x1a/0x170 [ 310.701336][ T8770] ? do_raw_spin_unlock+0x172/0x230 [ 310.701381][ T8770] ? n_tty_open+0x1a/0x170 [ 310.701416][ T8770] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 310.701448][ T8770] ? console_unlock+0x184/0x210 [ 310.701470][ T8770] ? __pfx_console_unlock+0x10/0x10 [ 310.701495][ T8770] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 310.701528][ T8770] ? n_tty_open+0x1a/0x170 [ 310.701554][ T8770] __vmalloc_node_noprof+0xad/0xf0 [ 310.701588][ T8770] ? n_tty_open+0x1a/0x170 [ 310.701626][ T8770] ? __pfx_n_tty_open+0x10/0x10 [ 310.701665][ T8770] n_tty_open+0x1a/0x170 [ 310.701706][ T8770] ? __pfx_n_tty_open+0x10/0x10 [ 310.701742][ T8770] tty_ldisc_open+0x9f/0x120 [ 310.701792][ T8770] tty_ldisc_setup+0x40/0x100 [ 310.701843][ T8770] tty_init_dev.part.0+0x1ec/0x500 [ 310.701882][ T8770] tty_open+0xa50/0xf90 [ 310.701924][ T8770] ? __pfx_tty_open+0x10/0x10 [ 310.701959][ T8770] ? chrdev_open+0x10b/0x6a0 [ 310.701995][ T8770] ? __pfx_tty_open+0x10/0x10 [ 310.702028][ T8770] chrdev_open+0x234/0x6a0 [ 310.702058][ T8770] ? __pfx_apparmor_file_open+0x10/0x10 [ 310.702102][ T8770] ? __pfx_chrdev_open+0x10/0x10 [ 310.702134][ T8770] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 310.702190][ T8770] do_dentry_open+0x741/0x1c10 [ 310.702243][ T8770] ? __pfx_chrdev_open+0x10/0x10 [ 310.702283][ T8770] vfs_open+0x82/0x3f0 [ 310.702327][ T8770] path_openat+0x1de4/0x2cb0 [ 310.702392][ T8770] ? __pfx_path_openat+0x10/0x10 [ 310.702448][ T8770] ? __lock_acquire+0xb8a/0x1c90 [ 310.702500][ T8770] do_filp_open+0x20b/0x470 [ 310.702551][ T8770] ? __pfx_do_filp_open+0x10/0x10 [ 310.702619][ T8770] ? alloc_fd+0x471/0x7d0 [ 310.702661][ T8770] do_sys_openat2+0x11b/0x1d0 [ 310.702699][ T8770] ? __pfx_do_sys_openat2+0x10/0x10 [ 310.702739][ T8770] __x64_sys_openat+0x174/0x210 [ 310.702768][ T8770] ? __pfx___x64_sys_openat+0x10/0x10 [ 310.702808][ T8770] do_syscall_64+0xcd/0x490 [ 310.702834][ T8770] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.702858][ T8770] RIP: 0033:0x7fa404b8e929 [ 310.702876][ T8770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 310.702900][ T8770] RSP: 002b:00007fa405a63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 310.702922][ T8770] RAX: ffffffffffffffda RBX: 00007fa404db6080 RCX: 00007fa404b8e929 [ 310.702938][ T8770] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 310.702954][ T8770] RBP: 00007fa404c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 310.702968][ T8770] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 310.702983][ T8770] R13: 0000000000000000 R14: 00007fa404db6080 R15: 00007ffd46c73368 [ 310.703013][ T8770] [ 311.175533][ T8770] syz.3.639: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 311.215328][ T8770] CPU: 1 UID: 0 PID: 8770 Comm: syz.3.639 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 311.215374][ T8770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 311.215393][ T8770] Call Trace: [ 311.215404][ T8770] [ 311.215421][ T8770] dump_stack_lvl+0x16c/0x1f0 [ 311.215482][ T8770] warn_alloc+0x248/0x3a0 [ 311.215537][ T8770] ? __pfx_warn_alloc+0x10/0x10 [ 311.215593][ T8770] ? kfree+0x2b4/0x4d0 [ 311.215646][ T8770] ? __get_vm_area_node+0x208/0x330 [ 311.215698][ T8770] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 311.215744][ T8770] ? do_raw_spin_unlock+0x172/0x230 [ 311.215810][ T8770] ? n_tty_open+0x1a/0x170 [ 311.215868][ T8770] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 311.215914][ T8770] ? console_unlock+0x184/0x210 [ 311.215945][ T8770] ? __pfx_console_unlock+0x10/0x10 [ 311.215983][ T8770] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 311.216030][ T8770] ? n_tty_open+0x1a/0x170 [ 311.216067][ T8770] __vmalloc_node_noprof+0xad/0xf0 [ 311.216111][ T8770] ? n_tty_open+0x1a/0x170 [ 311.216148][ T8770] ? __pfx_n_tty_open+0x10/0x10 [ 311.216188][ T8770] n_tty_open+0x1a/0x170 [ 311.216225][ T8770] ? __pfx_n_tty_open+0x10/0x10 [ 311.216262][ T8770] tty_ldisc_open+0x9f/0x120 [ 311.216311][ T8770] tty_ldisc_setup+0x40/0x100 [ 311.216364][ T8770] tty_init_dev.part.0+0x1ec/0x500 [ 311.216404][ T8770] tty_open+0xa50/0xf90 [ 311.216448][ T8770] ? __pfx_tty_open+0x10/0x10 [ 311.216484][ T8770] ? chrdev_open+0x10b/0x6a0 [ 311.216519][ T8770] ? __pfx_tty_open+0x10/0x10 [ 311.216555][ T8770] chrdev_open+0x234/0x6a0 [ 311.216586][ T8770] ? __pfx_apparmor_file_open+0x10/0x10 [ 311.216633][ T8770] ? __pfx_chrdev_open+0x10/0x10 [ 311.216668][ T8770] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 311.216715][ T8770] do_dentry_open+0x741/0x1c10 [ 311.216753][ T8770] ? __pfx_chrdev_open+0x10/0x10 [ 311.216780][ T8770] vfs_open+0x82/0x3f0 [ 311.216811][ T8770] path_openat+0x1de4/0x2cb0 [ 311.216856][ T8770] ? __pfx_path_openat+0x10/0x10 [ 311.216901][ T8770] ? __lock_acquire+0xb8a/0x1c90 [ 311.216937][ T8770] do_filp_open+0x20b/0x470 [ 311.216974][ T8770] ? __pfx_do_filp_open+0x10/0x10 [ 311.217032][ T8770] ? alloc_fd+0x471/0x7d0 [ 311.217074][ T8770] do_sys_openat2+0x11b/0x1d0 [ 311.217102][ T8770] ? __pfx_do_sys_openat2+0x10/0x10 [ 311.217141][ T8770] __x64_sys_openat+0x174/0x210 [ 311.217170][ T8770] ? __pfx___x64_sys_openat+0x10/0x10 [ 311.217211][ T8770] do_syscall_64+0xcd/0x490 [ 311.217237][ T8770] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 311.217261][ T8770] RIP: 0033:0x7fa404b8e929 [ 311.217279][ T8770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 311.217303][ T8770] RSP: 002b:00007fa405a63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 311.217325][ T8770] RAX: ffffffffffffffda RBX: 00007fa404db6080 RCX: 00007fa404b8e929 [ 311.217341][ T8770] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 311.217357][ T8770] RBP: 00007fa404c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 311.217372][ T8770] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 311.217386][ T8770] R13: 0000000000000000 R14: 00007fa404db6080 R15: 00007ffd46c73368 [ 311.217417][ T8770] [ 311.587369][ T8770] Mem-Info: [ 311.590577][ T8770] active_anon:6259 inactive_anon:4 isolated_anon:0 [ 311.590577][ T8770] active_file:17152 inactive_file:40475 isolated_file:0 [ 311.590577][ T8770] unevictable:768 dirty:850 writeback:0 [ 311.590577][ T8770] slab_reclaimable:10470 slab_unreclaimable:96488 [ 311.590577][ T8770] mapped:29800 shmem:1361 pagetables:1212 [ 311.590577][ T8770] sec_pagetables:0 bounce:0 [ 311.590577][ T8770] kernel_misc_reclaimable:0 [ 311.590577][ T8770] free:1330284 free_pcp:12263 free_cma:0 [ 311.757972][ T8770] Node 0 active_anon:27736kB inactive_anon:16kB active_file:68608kB inactive_file:161700kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:111500kB dirty:3396kB writeback:0kB shmem:3908kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12172kB pagetables:4704kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 311.793540][ T8770] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 311.825695][ T8770] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 311.854998][ T8770] lowmem_reserve[]: 0 2481 2482 2482 2482 [ 311.861090][ T8770] Node 0 DMA32 free:1392624kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB free_highatomic:0KB active_anon:27688kB inactive_anon:16kB active_file:68608kB inactive_file:160124kB unevictable:1536kB writepending:3396kB present:3129332kB managed:2540904kB mlocked:0kB bounce:0kB free_pcp:39808kB local_pcp:20240kB free_cma:0kB [ 311.895012][ T8770] lowmem_reserve[]: 0 0 1 1 1 [ 311.901239][ T8770] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1576kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 312.065679][ T8770] lowmem_reserve[]: 0 0 0 0 0 [ 312.070605][ T8770] Node 1 Normal free:3911140kB boost:0kB min:55788kB low:69732kB high:83676kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:8980kB local_pcp:0kB free_cma:0kB [ 312.194051][ T8770] lowmem_reserve[]: 0 0 0 0 0 [ 312.214286][ T8770] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 312.230082][ T8770] Node 0 DMA32: 2764*4kB (UME) 2126*8kB (UME) 930*16kB (UME) 1075*32kB (UME) 796*64kB (UME) 355*128kB (UME) 213*256kB (UM) 90*512kB (UME) 54*1024kB (UME) 1*2048kB (U) 259*4096kB (M) = 1392544kB [ 312.250167][ T8770] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 312.299203][ T8770] Node 1 Normal: 188*4kB (UME) 49*8kB (UME) 44*16kB (UME) 239*32kB (UME) 78*64kB (UME) 25*128kB (UME) 11*256kB (UME) 1*512kB (U) 3*1024kB (UME) 2*2048kB (ME) 948*4096kB (M) = 3911192kB [ 312.378055][ T8770] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 312.391972][ T8770] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 312.402179][ T8770] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 312.413873][ T8770] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 312.424027][ T8770] 58988 total pagecache pages [ 312.429002][ T8770] 0 pages in swap cache [ 312.433790][ T8770] Free swap = 124996kB [ 312.444277][ T8770] Total swap = 124996kB [ 312.448845][ T8770] 2097051 pages RAM [ 312.452678][ T8770] 0 pages HighMem/MovableOnly [ 312.457897][ T8770] 429783 pages reserved [ 312.462086][ T8770] 0 pages cma reserved [ 312.468198][ T8770] tty tty26: ldisc open failed (-12), clearing slot 25 [ 314.296121][ T8801] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[8801] [ 314.354927][ T8781] ptrace attach of "./syz-executor exec"[5842] was attempted by "./syz-executor exec"[8781] [ 314.456322][ T8804] netlink: 354 bytes leftover after parsing attributes in process `syz.2.645'. [ 314.891258][ T8804] ptrace attach of "./syz-executor exec"[5835] was attempted by "./syz-executor exec"[8804] [ 315.476774][ T8799] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[8799] [ 317.294508][ T8834] netlink: 28 bytes leftover after parsing attributes in process `syz.1.651'. [ 318.784419][ T8846] FAULT_INJECTION: forcing a failure. [ 318.784419][ T8846] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 318.805786][ T8846] CPU: 1 UID: 0 PID: 8846 Comm: syz.1.653 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 318.805832][ T8846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 318.805852][ T8846] Call Trace: [ 318.805863][ T8846] [ 318.805876][ T8846] dump_stack_lvl+0x16c/0x1f0 [ 318.805938][ T8846] should_fail_ex+0x512/0x640 [ 318.806007][ T8846] should_fail_alloc_page+0xe7/0x130 [ 318.806046][ T8846] prepare_alloc_pages+0x3c2/0x610 [ 318.806097][ T8846] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 318.806161][ T8846] ? find_held_lock+0x2b/0x80 [ 318.806197][ T8846] ? is_bpf_text_address+0x8a/0x1a0 [ 318.806245][ T8846] ? bpf_ksym_find+0x124/0x1c0 [ 318.806285][ T8846] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 318.806338][ T8846] ? is_bpf_text_address+0x94/0x1a0 [ 318.806390][ T8846] ? __kernel_text_address+0xd/0x40 [ 318.806458][ T8846] ? unwind_get_return_address+0x59/0xa0 [ 318.806532][ T8846] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 318.806588][ T8846] ? policy_nodemask+0xea/0x4e0 [ 318.806627][ T8846] alloc_pages_mpol+0x1fb/0x550 [ 318.806663][ T8846] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 318.806693][ T8846] ? kasan_save_stack+0x33/0x60 [ 318.806741][ T8846] ? __kasan_kmalloc+0xaa/0xb0 [ 318.806788][ T8846] ? __get_vm_area_node+0x101/0x330 [ 318.806845][ T8846] alloc_pages_noprof+0x131/0x390 [ 318.806880][ T8846] get_free_pages_noprof+0x10/0xb0 [ 318.806916][ T8846] kasan_populate_vmalloc+0x89/0x1f0 [ 318.806976][ T8846] alloc_vmap_area+0x959/0x29c0 [ 318.807039][ T8846] ? __pfx_alloc_vmap_area+0x10/0x10 [ 318.807091][ T8846] __get_vm_area_node+0x1ca/0x330 [ 318.807143][ T8846] __vmalloc_node_range_noprof+0x271/0x14b0 [ 318.807191][ T8846] ? n_tty_open+0x1a/0x170 [ 318.807230][ T8846] ? do_raw_spin_unlock+0x172/0x230 [ 318.807296][ T8846] ? n_tty_open+0x1a/0x170 [ 318.807347][ T8846] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 318.807391][ T8846] ? console_unlock+0x184/0x210 [ 318.807423][ T8846] ? __pfx_console_unlock+0x10/0x10 [ 318.807460][ T8846] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 318.807508][ T8846] ? n_tty_open+0x1a/0x170 [ 318.807545][ T8846] __vmalloc_node_noprof+0xad/0xf0 [ 318.807589][ T8846] ? n_tty_open+0x1a/0x170 [ 318.807627][ T8846] ? __pfx_n_tty_open+0x10/0x10 [ 318.807668][ T8846] n_tty_open+0x1a/0x170 [ 318.807705][ T8846] ? __pfx_n_tty_open+0x10/0x10 [ 318.807743][ T8846] tty_ldisc_open+0x9f/0x120 [ 318.807795][ T8846] tty_ldisc_setup+0x40/0x100 [ 318.807850][ T8846] tty_init_dev.part.0+0x1ec/0x500 [ 318.807891][ T8846] tty_open+0xa50/0xf90 [ 318.807934][ T8846] ? __pfx_tty_open+0x10/0x10 [ 318.807970][ T8846] ? chrdev_open+0x10b/0x6a0 [ 318.808014][ T8846] ? __pfx_tty_open+0x10/0x10 [ 318.808047][ T8846] chrdev_open+0x234/0x6a0 [ 318.808076][ T8846] ? __pfx_apparmor_file_open+0x10/0x10 [ 318.808122][ T8846] ? __pfx_chrdev_open+0x10/0x10 [ 318.808157][ T8846] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 318.808211][ T8846] do_dentry_open+0x741/0x1c10 [ 318.808263][ T8846] ? __pfx_chrdev_open+0x10/0x10 [ 318.808302][ T8846] vfs_open+0x82/0x3f0 [ 318.808345][ T8846] path_openat+0x1de4/0x2cb0 [ 318.808408][ T8846] ? __pfx_path_openat+0x10/0x10 [ 318.808459][ T8846] ? __lock_acquire+0xb8a/0x1c90 [ 318.808509][ T8846] do_filp_open+0x20b/0x470 [ 318.808561][ T8846] ? __pfx_do_filp_open+0x10/0x10 [ 318.808642][ T8846] ? alloc_fd+0x471/0x7d0 [ 318.808701][ T8846] do_sys_openat2+0x11b/0x1d0 [ 318.808741][ T8846] ? __pfx_do_sys_openat2+0x10/0x10 [ 318.808798][ T8846] __x64_sys_openat+0x174/0x210 [ 318.808848][ T8846] ? __pfx___x64_sys_openat+0x10/0x10 [ 318.808908][ T8846] do_syscall_64+0xcd/0x490 [ 318.808945][ T8846] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 318.808979][ T8846] RIP: 0033:0x7ffb1b98e929 [ 318.809015][ T8846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 318.809049][ T8846] RSP: 002b:00007ffb197f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 318.809082][ T8846] RAX: ffffffffffffffda RBX: 00007ffb1bbb6080 RCX: 00007ffb1b98e929 [ 318.809105][ T8846] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 318.809126][ T8846] RBP: 00007ffb1ba10b39 R08: 0000000000000000 R09: 0000000000000000 [ 318.809147][ T8846] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 318.809167][ T8846] R13: 0000000000000000 R14: 00007ffb1bbb6080 R15: 00007fff99c70738 [ 318.809212][ T8846] [ 318.809392][ T8846] tty tty26: ldisc open failed (-12), clearing slot 25 [ 319.435208][ T8852] program syz.3.654 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 319.445676][ T8852] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 319.819730][ T8857] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 320.783263][ T8871] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 320.806845][ T8871] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 320.852714][ T8871] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 320.859929][ T8871] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 320.864787][ T8878] FAULT_INJECTION: forcing a failure. [ 320.864787][ T8878] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 320.984850][ T8878] CPU: 1 UID: 0 PID: 8878 Comm: syz.1.660 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 320.984885][ T8878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 320.984899][ T8878] Call Trace: [ 320.984906][ T8878] [ 320.984915][ T8878] dump_stack_lvl+0x16c/0x1f0 [ 320.984957][ T8878] should_fail_ex+0x512/0x640 [ 320.984998][ T8878] _copy_to_user+0x32/0xd0 [ 320.985021][ T8878] simple_read_from_buffer+0xcb/0x170 [ 320.985055][ T8878] proc_fail_nth_read+0x197/0x270 [ 320.985084][ T8878] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 320.985113][ T8878] ? rw_verify_area+0xcf/0x680 [ 320.985144][ T8878] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 320.985171][ T8878] vfs_read+0x1e1/0xc60 [ 320.985209][ T8878] ? __pfx___mutex_lock+0x10/0x10 [ 320.985231][ T8878] ? __pfx_vfs_read+0x10/0x10 [ 320.985272][ T8878] ? __fget_files+0x20e/0x3c0 [ 320.985313][ T8878] ksys_read+0x12a/0x250 [ 320.985345][ T8878] ? __pfx_ksys_read+0x10/0x10 [ 320.985387][ T8878] do_syscall_64+0xcd/0x490 [ 320.985423][ T8878] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.985453][ T8878] RIP: 0033:0x7ffb1b98d33c [ 320.985477][ T8878] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 320.985508][ T8878] RSP: 002b:00007ffb197f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 320.985537][ T8878] RAX: ffffffffffffffda RBX: 00007ffb1bbb6080 RCX: 00007ffb1b98d33c [ 320.985564][ T8878] RDX: 000000000000000f RSI: 00007ffb197f60a0 RDI: 0000000000000005 [ 320.985584][ T8878] RBP: 00007ffb197f6090 R08: 0000000000000000 R09: 0000000000000000 [ 320.985602][ T8878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 320.985616][ T8878] R13: 0000000000000000 R14: 00007ffb1bbb6080 R15: 00007fff99c70738 [ 320.985645][ T8878] [ 321.370655][ T8884] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input51 [ 322.192789][ T8887] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input52 [ 322.843859][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 322.857399][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 322.928601][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 322.944910][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 323.821773][ T8922] netlink: 20 bytes leftover after parsing attributes in process `syz.2.668'. [ 323.830823][ T8922] nbd: must specify at least one socket [ 325.267393][ T8946] program syz.1.673 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 325.283713][ T8946] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 325.293163][ T8936] ubi: mtd0 is already attached to ubi0 [ 325.755751][ T8949] snd_aloop snd_aloop.0: control 1:262152:7::0 is already present [ 326.579688][ T8964] netlink: zone id is out of range [ 326.617792][ T8964] netlink: zone id is out of range [ 326.681886][ T8964] netlink: zone id is out of range [ 326.841041][ T8964] netlink: zone id is out of range [ 326.847797][ T8964] netlink: zone id is out of range [ 326.854751][ T8964] netlink: zone id is out of range [ 326.867014][ T8964] netlink: zone id is out of range [ 326.873260][ T8964] netlink: zone id is out of range [ 326.881572][ T8964] netlink: zone id is out of range [ 326.887933][ T8964] netlink: zone id is out of range [ 327.892301][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 327.906536][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 328.011503][ T8984] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78008 [ 328.086082][ T8984] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 328.189342][ T8984] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 328.217184][ T8984] page_type: f5(slab) [ 328.232339][ T8984] raw: 00fff00000000040 ffff88801b442140 dead000000000122 0000000000000000 [ 328.319942][ T8984] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 328.367687][ T8984] head: 00fff00000000040 ffff88801b442140 dead000000000122 0000000000000000 [ 328.432393][ T8984] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000 [ 328.506155][ T8984] head: 00fff00000000003 ffffea0001e00201 00000000ffffffff 00000000ffffffff [ 328.551094][ T8984] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 328.662733][ T8984] page dumped because: unmovable page [ 328.728989][ T8984] page_owner tracks the page as allocated [ 328.735166][ T8984] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6460, tgid 6460 (kworker/u8:16), ts 313817114455, free_ts 306256983119 [ 328.782763][ T8984] post_alloc_hook+0x1c0/0x230 [ 328.788182][ T9000] block nbd7: not configured, cannot reconfigure [ 328.804861][ T8984] get_page_from_freelist+0x1321/0x3890 [ 328.881921][ T8984] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 328.916859][ T8984] alloc_pages_mpol+0x1fb/0x550 [ 328.921841][ T8984] new_slab+0x23b/0x330 [ 328.926396][ T8984] ___slab_alloc+0xd9c/0x1940 [ 328.931165][ T8984] __slab_alloc.constprop.0+0x56/0xb0 [ 328.937013][ T8984] __kmalloc_node_track_caller_noprof+0x2ee/0x510 [ 328.943537][ T8984] kmalloc_reserve+0xef/0x2c0 [ 328.948459][ T8984] __alloc_skb+0x166/0x380 [ 328.952962][ T8984] nsim_dev_trap_report_work+0x2b1/0xcf0 [ 328.958857][ T8984] process_one_work+0x9cf/0x1b70 [ 328.964013][ T8984] worker_thread+0x6c8/0xf10 [ 328.968792][ T8984] kthread+0x3c2/0x780 [ 328.973095][ T8984] ret_from_fork+0x5d7/0x6f0 [ 328.981038][ T8984] ret_from_fork_asm+0x1a/0x30 [ 328.986083][ T8984] page last free pid 5822 tgid 5822 stack trace: [ 328.992484][ T8984] __free_frozen_pages+0x7fe/0x1180 [ 328.998492][ T8984] __folio_put+0x329/0x450 [ 329.003007][ T8984] skb_release_data+0x7fb/0x9c0 [ 329.012743][ T8984] __kfree_skb+0x4f/0x70 [ 329.018284][ T8984] tcp_ack+0x19b2/0x5c90 [ 329.023978][ T8984] tcp_rcv_established+0xda1/0x22e0 [ 329.033704][ T8984] tcp_v4_do_rcv+0x5ca/0xa90 [ 329.038719][ T8984] __release_sock+0x31b/0x400 [ 329.043476][ T8984] release_sock+0x5a/0x220 [ 329.061915][ T8984] tcp_sendmsg+0x38/0x50 [ 329.092466][ T8984] inet_sendmsg+0xb9/0x140 [ 329.115730][ T8984] sock_write_iter+0x4aa/0x5b0 [ 329.120625][ T8984] vfs_write+0x6c4/0x1150 [ 329.136177][ T8984] ksys_write+0x1f8/0x250 [ 329.145484][ T8984] do_syscall_64+0xcd/0x490 [ 329.155669][ T8984] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 329.360371][ T9012] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input53 [ 329.943096][ T9023] netlink: 12 bytes leftover after parsing attributes in process `syz.3.687'. [ 330.043296][ T9017] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input54 [ 330.932178][ T9033] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input55 [ 331.917494][ T9036] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input56 [ 332.373534][ T9058] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC)b:0 is already present [ 333.050889][ T9067] FAULT_INJECTION: forcing a failure. [ 333.050889][ T9067] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 333.103894][ T9067] CPU: 1 UID: 0 PID: 9067 Comm: syz.2.696 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 333.103941][ T9067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 333.103961][ T9067] Call Trace: [ 333.103971][ T9067] [ 333.103980][ T9067] dump_stack_lvl+0x16c/0x1f0 [ 333.104024][ T9067] should_fail_ex+0x512/0x640 [ 333.104066][ T9067] should_fail_alloc_page+0xe7/0x130 [ 333.104093][ T9067] prepare_alloc_pages+0x3c2/0x610 [ 333.104128][ T9067] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 333.104172][ T9067] ? find_held_lock+0x2b/0x80 [ 333.104204][ T9067] ? is_bpf_text_address+0x8a/0x1a0 [ 333.104239][ T9067] ? bpf_ksym_find+0x124/0x1c0 [ 333.104266][ T9067] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 333.104304][ T9067] ? is_bpf_text_address+0x94/0x1a0 [ 333.104340][ T9067] ? __kernel_text_address+0xd/0x40 [ 333.104377][ T9067] ? unwind_get_return_address+0x59/0xa0 [ 333.104441][ T9067] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 333.104479][ T9067] ? policy_nodemask+0xea/0x4e0 [ 333.104504][ T9067] alloc_pages_mpol+0x1fb/0x550 [ 333.104528][ T9067] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 333.104549][ T9067] ? kasan_save_stack+0x33/0x60 [ 333.104583][ T9067] ? __kasan_kmalloc+0xaa/0xb0 [ 333.104615][ T9067] ? __get_vm_area_node+0x101/0x330 [ 333.104649][ T9067] alloc_pages_noprof+0x131/0x390 [ 333.104673][ T9067] get_free_pages_noprof+0x10/0xb0 [ 333.104697][ T9067] kasan_populate_vmalloc+0x89/0x1f0 [ 333.104738][ T9067] alloc_vmap_area+0x959/0x29c0 [ 333.104776][ T9067] ? __pfx_alloc_vmap_area+0x10/0x10 [ 333.104810][ T9067] __get_vm_area_node+0x1ca/0x330 [ 333.104844][ T9067] __vmalloc_node_range_noprof+0x271/0x14b0 [ 333.104875][ T9067] ? n_tty_open+0x1a/0x170 [ 333.104920][ T9067] ? do_raw_spin_unlock+0x172/0x230 [ 333.104965][ T9067] ? n_tty_open+0x1a/0x170 [ 333.105010][ T9067] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 333.105054][ T9067] ? console_unlock+0x184/0x210 [ 333.105085][ T9067] ? __pfx_console_unlock+0x10/0x10 [ 333.105114][ T9067] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 333.105147][ T9067] ? n_tty_open+0x1a/0x170 [ 333.105173][ T9067] __vmalloc_node_noprof+0xad/0xf0 [ 333.105210][ T9067] ? n_tty_open+0x1a/0x170 [ 333.105237][ T9067] ? __pfx_n_tty_open+0x10/0x10 [ 333.105266][ T9067] n_tty_open+0x1a/0x170 [ 333.105291][ T9067] ? __pfx_n_tty_open+0x10/0x10 [ 333.105318][ T9067] tty_ldisc_open+0x9f/0x120 [ 333.105353][ T9067] tty_ldisc_setup+0x40/0x100 [ 333.105391][ T9067] tty_init_dev.part.0+0x1ec/0x500 [ 333.105433][ T9067] tty_open+0xa50/0xf90 [ 333.105476][ T9067] ? __pfx_tty_open+0x10/0x10 [ 333.105507][ T9067] ? chrdev_open+0x10b/0x6a0 [ 333.105533][ T9067] ? __pfx_tty_open+0x10/0x10 [ 333.105556][ T9067] chrdev_open+0x234/0x6a0 [ 333.105577][ T9067] ? __pfx_apparmor_file_open+0x10/0x10 [ 333.105609][ T9067] ? __pfx_chrdev_open+0x10/0x10 [ 333.105633][ T9067] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 333.105672][ T9067] do_dentry_open+0x741/0x1c10 [ 333.105710][ T9067] ? __pfx_chrdev_open+0x10/0x10 [ 333.105737][ T9067] vfs_open+0x82/0x3f0 [ 333.105767][ T9067] path_openat+0x1de4/0x2cb0 [ 333.105813][ T9067] ? __pfx_path_openat+0x10/0x10 [ 333.105850][ T9067] ? __lock_acquire+0xb8a/0x1c90 [ 333.105885][ T9067] do_filp_open+0x20b/0x470 [ 333.105921][ T9067] ? __pfx_do_filp_open+0x10/0x10 [ 333.105979][ T9067] ? alloc_fd+0x471/0x7d0 [ 333.106021][ T9067] do_sys_openat2+0x11b/0x1d0 [ 333.106048][ T9067] ? __pfx_do_sys_openat2+0x10/0x10 [ 333.106088][ T9067] __x64_sys_openat+0x174/0x210 [ 333.106121][ T9067] ? __pfx___x64_sys_openat+0x10/0x10 [ 333.106187][ T9067] do_syscall_64+0xcd/0x490 [ 333.106227][ T9067] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 333.106264][ T9067] RIP: 0033:0x7feaaa58e929 [ 333.106291][ T9067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 333.106326][ T9067] RSP: 002b:00007feaab4a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 333.106359][ T9067] RAX: ffffffffffffffda RBX: 00007feaaa7b5fa0 RCX: 00007feaaa58e929 [ 333.106382][ T9067] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 333.106404][ T9067] RBP: 00007feaaa610b39 R08: 0000000000000000 R09: 0000000000000000 [ 333.106425][ T9067] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 333.106445][ T9067] R13: 0000000000000000 R14: 00007feaaa7b5fa0 R15: 00007ffece984418 [ 333.106488][ T9067] [ 333.645804][ T9067] warn_alloc: 1 callbacks suppressed [ 333.645826][ T9067] syz.2.696: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 333.675635][ T9067] CPU: 0 UID: 0 PID: 9067 Comm: syz.2.696 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 333.675683][ T9067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 333.675704][ T9067] Call Trace: [ 333.675715][ T9067] [ 333.675727][ T9067] dump_stack_lvl+0x16c/0x1f0 [ 333.675792][ T9067] warn_alloc+0x248/0x3a0 [ 333.675848][ T9067] ? __pfx_warn_alloc+0x10/0x10 [ 333.675905][ T9067] ? kfree+0x2b4/0x4d0 [ 333.675959][ T9067] ? __get_vm_area_node+0x208/0x330 [ 333.676013][ T9067] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 333.676060][ T9067] ? do_raw_spin_unlock+0x172/0x230 [ 333.676126][ T9067] ? n_tty_open+0x1a/0x170 [ 333.676178][ T9067] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 333.676224][ T9067] ? console_unlock+0x184/0x210 [ 333.676256][ T9067] ? __pfx_console_unlock+0x10/0x10 [ 333.676293][ T9067] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 333.676341][ T9067] ? n_tty_open+0x1a/0x170 [ 333.676379][ T9067] __vmalloc_node_noprof+0xad/0xf0 [ 333.676424][ T9067] ? n_tty_open+0x1a/0x170 [ 333.676463][ T9067] ? __pfx_n_tty_open+0x10/0x10 [ 333.676517][ T9067] n_tty_open+0x1a/0x170 [ 333.676567][ T9067] ? __pfx_n_tty_open+0x10/0x10 [ 333.676602][ T9067] tty_ldisc_open+0x9f/0x120 [ 333.676652][ T9067] tty_ldisc_setup+0x40/0x100 [ 333.676702][ T9067] tty_init_dev.part.0+0x1ec/0x500 [ 333.676742][ T9067] tty_open+0xa50/0xf90 [ 333.676785][ T9067] ? __pfx_tty_open+0x10/0x10 [ 333.676820][ T9067] ? chrdev_open+0x10b/0x6a0 [ 333.676856][ T9067] ? __pfx_tty_open+0x10/0x10 [ 333.676889][ T9067] chrdev_open+0x234/0x6a0 [ 333.676918][ T9067] ? __pfx_apparmor_file_open+0x10/0x10 [ 333.676964][ T9067] ? __pfx_chrdev_open+0x10/0x10 [ 333.676999][ T9067] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 333.677054][ T9067] do_dentry_open+0x741/0x1c10 [ 333.677107][ T9067] ? __pfx_chrdev_open+0x10/0x10 [ 333.677146][ T9067] vfs_open+0x82/0x3f0 [ 333.677189][ T9067] path_openat+0x1de4/0x2cb0 [ 333.677253][ T9067] ? __pfx_path_openat+0x10/0x10 [ 333.677305][ T9067] ? __lock_acquire+0xb8a/0x1c90 [ 333.677356][ T9067] do_filp_open+0x20b/0x470 [ 333.677407][ T9067] ? __pfx_do_filp_open+0x10/0x10 [ 333.677497][ T9067] ? alloc_fd+0x471/0x7d0 [ 333.677558][ T9067] do_sys_openat2+0x11b/0x1d0 [ 333.677596][ T9067] ? __pfx_do_sys_openat2+0x10/0x10 [ 333.677652][ T9067] __x64_sys_openat+0x174/0x210 [ 333.677694][ T9067] ? __pfx___x64_sys_openat+0x10/0x10 [ 333.677751][ T9067] do_syscall_64+0xcd/0x490 [ 333.677788][ T9067] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 333.677821][ T9067] RIP: 0033:0x7feaaa58e929 [ 333.677847][ T9067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 333.677880][ T9067] RSP: 002b:00007feaab4a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 333.677910][ T9067] RAX: ffffffffffffffda RBX: 00007feaaa7b5fa0 RCX: 00007feaaa58e929 [ 333.677932][ T9067] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 333.677953][ T9067] RBP: 00007feaaa610b39 R08: 0000000000000000 R09: 0000000000000000 [ 333.677973][ T9067] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 333.677993][ T9067] R13: 0000000000000000 R14: 00007feaaa7b5fa0 R15: 00007ffece984418 [ 333.678036][ T9067] [ 333.678963][ T9067] Mem-Info: [ 334.036169][ T9067] active_anon:20276 inactive_anon:0 isolated_anon:0 [ 334.036169][ T9067] active_file:16490 inactive_file:42516 isolated_file:0 [ 334.036169][ T9067] unevictable:768 dirty:872 writeback:0 [ 334.036169][ T9067] slab_reclaimable:10512 slab_unreclaimable:96972 [ 334.036169][ T9067] mapped:25278 shmem:15275 pagetables:1204 [ 334.036169][ T9067] sec_pagetables:0 bounce:0 [ 334.036169][ T9067] kernel_misc_reclaimable:0 [ 334.036169][ T9067] free:1318215 free_pcp:7801 free_cma:0 [ 334.113532][ T9067] Node 0 active_anon:80304kB inactive_anon:0kB active_file:65960kB inactive_file:169864kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:101112kB dirty:3484kB writeback:0kB shmem:58564kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12240kB pagetables:4572kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 334.150311][ T9067] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 334.183090][ T9067] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 334.231545][ T9067] lowmem_reserve[]: 0 2481 2482 2482 2482 [ 334.247558][ T9067] Node 0 DMA32 free:1344784kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB free_highatomic:0KB active_anon:78456kB inactive_anon:0kB active_file:65960kB inactive_file:168288kB unevictable:1536kB writepending:3484kB present:3129332kB managed:2540904kB mlocked:0kB bounce:0kB free_pcp:26788kB local_pcp:10744kB free_cma:0kB [ 334.301330][ T9071] ubi: mtd0 is already attached to ubi0 [ 334.310336][ T9067] lowmem_reserve[]: 0 0 1 1 1 [ 334.315203][ T9067] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1576kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 334.410306][ T9067] lowmem_reserve[]: 0 0 0 0 0 [ 334.420424][ T9067] Node 1 Normal free:3912904kB boost:0kB min:55788kB low:69732kB high:83676kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:7216kB local_pcp:7216kB free_cma:0kB [ 334.515671][ T9067] lowmem_reserve[]: 0 0 0 0 0 [ 334.520510][ T9067] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 334.634204][ T9067] Node 0 DMA32: 756*4kB (U) 1622*8kB (UE) 366*16kB (U) 468*32kB (UM) 515*64kB (UM) 370*128kB (UM) 229*256kB (UME) 95*512kB (UM) 60*1024kB (UME) 3*2048kB (UM) 257*4096kB (UM) = 1344672kB [ 334.665575][ T9067] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 334.695212][ T9067] Node 1 Normal: 189*4kB (UME) 49*8kB (UME) 44*16kB (UME) 240*32kB (UME) 77*64kB (UME) 25*128kB (UME) 14*256kB (UME) 3*512kB (UM) 3*1024kB (UME) 2*2048kB (ME) 948*4096kB (M) = 3912956kB [ 334.736084][ T9067] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 334.745876][ T9067] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 334.755498][ T9067] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 334.765163][ T9067] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 334.774596][ T9067] 71884 total pagecache pages [ 334.779433][ T9067] 0 pages in swap cache [ 334.783610][ T9067] Free swap = 124996kB [ 334.787926][ T9067] Total swap = 124996kB [ 334.792270][ T9067] 2097051 pages RAM [ 334.797425][ T9067] 0 pages HighMem/MovableOnly [ 334.802152][ T9067] 429783 pages reserved [ 334.806625][ T9067] 0 pages cma reserved [ 334.810736][ T9067] tty tty26: ldisc open failed (-12), clearing slot 25 [ 334.818467][ T9065] tty tty1: ldisc open failed (-12), clearing slot 0 [ 335.304419][ T9075] ubi: mtd0 is already attached to ubi0 [ 338.475995][ T9130] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input57 [ 338.490912][ T9100] ptrace attach of "./syz-executor exec"[5842] was attempted by "./syz-executor exec"[9100] [ 342.645557][ T9187] FAULT_INJECTION: forcing a failure. [ 342.645557][ T9187] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 342.714147][ T9187] CPU: 0 UID: 0 PID: 9187 Comm: syz.0.723 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 342.714192][ T9187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 342.714211][ T9187] Call Trace: [ 342.714221][ T9187] [ 342.714233][ T9187] dump_stack_lvl+0x16c/0x1f0 [ 342.714291][ T9187] should_fail_ex+0x512/0x640 [ 342.714349][ T9187] _copy_from_user+0x2e/0xd0 [ 342.714394][ T9187] copy_msghdr_from_user+0x98/0x160 [ 342.714427][ T9187] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 342.714468][ T9187] ? __pfx__kstrtoull+0x10/0x10 [ 342.714519][ T9187] ___sys_sendmsg+0xfe/0x1d0 [ 342.714555][ T9187] ? __pfx____sys_sendmsg+0x10/0x10 [ 342.714608][ T9187] ? find_held_lock+0x2b/0x80 [ 342.714668][ T9187] __sys_sendmmsg+0x200/0x420 [ 342.714706][ T9187] ? __pfx___sys_sendmmsg+0x10/0x10 [ 342.714752][ T9187] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 342.714805][ T9187] ? fput+0x70/0xf0 [ 342.714839][ T9187] ? ksys_write+0x1ac/0x250 [ 342.714887][ T9187] ? __pfx_ksys_write+0x10/0x10 [ 342.714944][ T9187] __x64_sys_sendmmsg+0x9c/0x100 [ 342.714976][ T9187] ? lockdep_hardirqs_on+0x7c/0x110 [ 342.715029][ T9187] do_syscall_64+0xcd/0x490 [ 342.715063][ T9187] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 342.715096][ T9187] RIP: 0033:0x7f7bbe18e929 [ 342.715121][ T9187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 342.715153][ T9187] RSP: 002b:00007f7bbefc4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 342.715184][ T9187] RAX: ffffffffffffffda RBX: 00007f7bbe3b5fa0 RCX: 00007f7bbe18e929 [ 342.715205][ T9187] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 342.715225][ T9187] RBP: 00007f7bbefc4090 R08: 0000000000000000 R09: 0000000000000000 [ 342.715244][ T9187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 342.715264][ T9187] R13: 0000000000000000 R14: 00007f7bbe3b5fa0 R15: 00007fff13b73f58 [ 342.715306][ T9187] [ 343.471643][ T9197] FAULT_INJECTION: forcing a failure. [ 343.471643][ T9197] name failslab, interval 1, probability 0, space 0, times 0 [ 343.542596][ T9197] CPU: 1 UID: 0 PID: 9197 Comm: syz.1.725 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 343.542643][ T9197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 343.542664][ T9197] Call Trace: [ 343.542675][ T9197] [ 343.542689][ T9197] dump_stack_lvl+0x16c/0x1f0 [ 343.542750][ T9197] should_fail_ex+0x512/0x640 [ 343.542802][ T9197] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 343.542862][ T9197] should_failslab+0xc2/0x120 [ 343.542897][ T9197] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 343.542952][ T9197] ? __kernfs_new_node+0xd2/0x8e0 [ 343.543008][ T9197] __kernfs_new_node+0xd2/0x8e0 [ 343.543071][ T9197] ? __pfx___kernfs_new_node+0x10/0x10 [ 343.543132][ T9197] ? find_held_lock+0x2b/0x80 [ 343.543167][ T9197] ? kernfs_root+0xee/0x2a0 [ 343.543224][ T9197] kernfs_new_node+0x13c/0x1e0 [ 343.543288][ T9197] __kernfs_create_file+0x53/0x350 [ 343.543334][ T9197] sysfs_add_file_mode_ns+0x207/0x3c0 [ 343.543391][ T9197] internal_create_group+0x578/0xf30 [ 343.543453][ T9197] ? __pfx_internal_create_group+0x10/0x10 [ 343.543510][ T9197] ? kernfs_create_link+0x1bd/0x240 [ 343.543557][ T9197] internal_create_groups+0x9d/0x150 [ 343.543612][ T9197] device_add+0x6d1/0x1a70 [ 343.543655][ T9197] ? __pfx_device_add+0x10/0x10 [ 343.543693][ T9197] ? lockdep_init_map_type+0x5c/0x280 [ 343.543743][ T9197] ? __init_waitqueue_head+0xca/0x150 [ 343.543809][ T9197] netdev_register_kobject+0x182/0x3a0 [ 343.543860][ T9197] register_netdevice+0x13dc/0x2270 [ 343.543908][ T9197] ? __pfx_register_netdevice+0x10/0x10 [ 343.543958][ T9197] ? __pfx_loopback_net_init+0x10/0x10 [ 343.544009][ T9197] register_netdev+0x34/0x50 [ 343.544047][ T9197] loopback_net_init+0x7a/0x170 [ 343.544101][ T9197] ? __pfx_loopback_net_init+0x10/0x10 [ 343.544142][ T9197] ops_init+0x1e2/0x5f0 [ 343.544183][ T9197] setup_net+0x1ff/0x510 [ 343.544217][ T9197] ? lockdep_init_map_type+0x5c/0x280 [ 343.544265][ T9197] ? __pfx_setup_net+0x10/0x10 [ 343.544304][ T9197] ? debug_mutex_init+0x37/0x70 [ 343.544343][ T9197] copy_net_ns+0x2a6/0x5f0 [ 343.544388][ T9197] create_new_namespaces+0x3ea/0xa90 [ 343.544437][ T9197] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 343.544480][ T9197] ksys_unshare+0x45b/0xa40 [ 343.544526][ T9197] ? __pfx_ksys_unshare+0x10/0x10 [ 343.544574][ T9197] ? xfd_validate_state+0x61/0x180 [ 343.544632][ T9197] __x64_sys_unshare+0x31/0x40 [ 343.544678][ T9197] do_syscall_64+0xcd/0x490 [ 343.544714][ T9197] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 343.544748][ T9197] RIP: 0033:0x7ffb1b98e929 [ 343.544776][ T9197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 343.544811][ T9197] RSP: 002b:00007ffb1c728038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 343.544844][ T9197] RAX: ffffffffffffffda RBX: 00007ffb1bbb5fa0 RCX: 00007ffb1b98e929 [ 343.544867][ T9197] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 343.544887][ T9197] RBP: 00007ffb1ba10b39 R08: 0000000000000000 R09: 0000000000000000 [ 343.544908][ T9197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 343.544929][ T9197] R13: 0000000000000000 R14: 00007ffb1bbb5fa0 R15: 00007fff99c70738 [ 343.544973][ T9197] [ 345.008738][ T9223] FAULT_INJECTION: forcing a failure. [ 345.008738][ T9223] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 345.057171][ T9223] CPU: 1 UID: 0 PID: 9223 Comm: syz.1.731 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 345.057207][ T9223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 345.057222][ T9223] Call Trace: [ 345.057230][ T9223] [ 345.057239][ T9223] dump_stack_lvl+0x16c/0x1f0 [ 345.057284][ T9223] should_fail_ex+0x512/0x640 [ 345.057325][ T9223] should_fail_alloc_page+0xe7/0x130 [ 345.057352][ T9223] prepare_alloc_pages+0x3c2/0x610 [ 345.057387][ T9223] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 345.057431][ T9223] ? rcu_is_watching+0x12/0xc0 [ 345.057456][ T9223] ? trace_mm_page_alloc+0x11f/0x1a0 [ 345.057485][ T9223] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 345.057526][ T9223] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 345.057567][ T9223] ? is_bpf_text_address+0x8a/0x1a0 [ 345.057602][ T9223] ? bpf_ksym_find+0x124/0x1c0 [ 345.057630][ T9223] ? is_bpf_text_address+0x94/0x1a0 [ 345.057666][ T9223] ? __kernel_text_address+0xd/0x40 [ 345.057709][ T9223] ? unwind_get_return_address+0x59/0xa0 [ 345.057842][ T9223] alloc_pages_bulk_noprof+0x71c/0x1410 [ 345.057880][ T9223] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 345.057923][ T9223] ? policy_nodemask+0xea/0x4e0 [ 345.057952][ T9223] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 345.057994][ T9223] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 345.058031][ T9223] kasan_populate_vmalloc+0xf1/0x1f0 [ 345.058073][ T9223] alloc_vmap_area+0x959/0x29c0 [ 345.058113][ T9223] ? __pfx_alloc_vmap_area+0x10/0x10 [ 345.058149][ T9223] __get_vm_area_node+0x1ca/0x330 [ 345.058184][ T9223] __vmalloc_node_range_noprof+0x271/0x14b0 [ 345.058235][ T9223] ? n_tty_open+0x1a/0x170 [ 345.058262][ T9223] ? do_raw_spin_unlock+0x172/0x230 [ 345.058308][ T9223] ? n_tty_open+0x1a/0x170 [ 345.058342][ T9223] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 345.058373][ T9223] ? console_unlock+0x184/0x210 [ 345.058395][ T9223] ? __pfx_console_unlock+0x10/0x10 [ 345.058420][ T9223] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 345.058453][ T9223] ? n_tty_open+0x1a/0x170 [ 345.058478][ T9223] __vmalloc_node_noprof+0xad/0xf0 [ 345.058514][ T9223] ? n_tty_open+0x1a/0x170 [ 345.058540][ T9223] ? __pfx_n_tty_open+0x10/0x10 [ 345.058569][ T9223] n_tty_open+0x1a/0x170 [ 345.058595][ T9223] ? __pfx_n_tty_open+0x10/0x10 [ 345.058621][ T9223] tty_ldisc_open+0x9f/0x120 [ 345.058656][ T9223] tty_ldisc_setup+0x40/0x100 [ 345.058693][ T9223] tty_init_dev.part.0+0x1ec/0x500 [ 345.058722][ T9223] tty_open+0xa50/0xf90 [ 345.058752][ T9223] ? __pfx_tty_open+0x10/0x10 [ 345.058777][ T9223] ? chrdev_open+0x10b/0x6a0 [ 345.058802][ T9223] ? __pfx_tty_open+0x10/0x10 [ 345.058826][ T9223] chrdev_open+0x234/0x6a0 [ 345.058846][ T9223] ? __pfx_apparmor_file_open+0x10/0x10 [ 345.058878][ T9223] ? __pfx_chrdev_open+0x10/0x10 [ 345.058902][ T9223] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 345.058941][ T9223] do_dentry_open+0x741/0x1c10 [ 345.058979][ T9223] ? __pfx_chrdev_open+0x10/0x10 [ 345.059014][ T9223] vfs_open+0x82/0x3f0 [ 345.059044][ T9223] path_openat+0x1de4/0x2cb0 [ 345.059098][ T9223] ? __pfx_path_openat+0x10/0x10 [ 345.059137][ T9223] ? __lock_acquire+0xb8a/0x1c90 [ 345.059172][ T9223] do_filp_open+0x20b/0x470 [ 345.059215][ T9223] ? __pfx_do_filp_open+0x10/0x10 [ 345.059273][ T9223] ? alloc_fd+0x471/0x7d0 [ 345.059315][ T9223] do_sys_openat2+0x11b/0x1d0 [ 345.059343][ T9223] ? __pfx_do_sys_openat2+0x10/0x10 [ 345.059383][ T9223] __x64_sys_openat+0x174/0x210 [ 345.059421][ T9223] ? __pfx___x64_sys_openat+0x10/0x10 [ 345.059470][ T9223] do_syscall_64+0xcd/0x490 [ 345.059500][ T9223] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 345.059530][ T9223] RIP: 0033:0x7ffb1b98e929 [ 345.059554][ T9223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 345.059583][ T9223] RSP: 002b:00007ffb197f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 345.059610][ T9223] RAX: ffffffffffffffda RBX: 00007ffb1bbb6080 RCX: 00007ffb1b98e929 [ 345.059626][ T9223] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 345.059642][ T9223] RBP: 00007ffb1ba10b39 R08: 0000000000000000 R09: 0000000000000000 [ 345.059656][ T9223] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 345.059671][ T9223] R13: 0000000000000000 R14: 00007ffb1bbb6080 R15: 00007fff99c70738 [ 345.059701][ T9223] [ 345.063148][ T9213] program syz.0.730 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 345.526796][ T9223] syz.1.731: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 345.589354][ T9223] CPU: 0 UID: 0 PID: 9223 Comm: syz.1.731 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 345.589403][ T9223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 345.589423][ T9223] Call Trace: [ 345.589434][ T9223] [ 345.589447][ T9223] dump_stack_lvl+0x16c/0x1f0 [ 345.589510][ T9223] warn_alloc+0x248/0x3a0 [ 345.589566][ T9223] ? __pfx_warn_alloc+0x10/0x10 [ 345.589624][ T9223] ? kfree+0x2b4/0x4d0 [ 345.589679][ T9223] ? __get_vm_area_node+0x208/0x330 [ 345.589732][ T9223] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 345.589778][ T9223] ? do_raw_spin_unlock+0x172/0x230 [ 345.589845][ T9223] ? n_tty_open+0x1a/0x170 [ 345.589896][ T9223] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 345.589942][ T9223] ? console_unlock+0x184/0x210 [ 345.589973][ T9223] ? __pfx_console_unlock+0x10/0x10 [ 345.590011][ T9223] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 345.590059][ T9223] ? n_tty_open+0x1a/0x170 [ 345.590096][ T9223] __vmalloc_node_noprof+0xad/0xf0 [ 345.590150][ T9223] ? n_tty_open+0x1a/0x170 [ 345.590189][ T9223] ? __pfx_n_tty_open+0x10/0x10 [ 345.590232][ T9223] n_tty_open+0x1a/0x170 [ 345.590271][ T9223] ? __pfx_n_tty_open+0x10/0x10 [ 345.590309][ T9223] tty_ldisc_open+0x9f/0x120 [ 345.590361][ T9223] tty_ldisc_setup+0x40/0x100 [ 345.590414][ T9223] tty_init_dev.part.0+0x1ec/0x500 [ 345.590454][ T9223] tty_open+0xa50/0xf90 [ 345.590500][ T9223] ? __pfx_tty_open+0x10/0x10 [ 345.590536][ T9223] ? chrdev_open+0x10b/0x6a0 [ 345.590574][ T9223] ? __pfx_tty_open+0x10/0x10 [ 345.590611][ T9223] chrdev_open+0x234/0x6a0 [ 345.590640][ T9223] ? __pfx_apparmor_file_open+0x10/0x10 [ 345.590684][ T9223] ? __pfx_chrdev_open+0x10/0x10 [ 345.590717][ T9223] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 345.590771][ T9223] do_dentry_open+0x741/0x1c10 [ 345.590843][ T9223] ? __pfx_chrdev_open+0x10/0x10 [ 345.590882][ T9223] vfs_open+0x82/0x3f0 [ 345.590925][ T9223] path_openat+0x1de4/0x2cb0 [ 345.590989][ T9223] ? __pfx_path_openat+0x10/0x10 [ 345.591042][ T9223] ? __lock_acquire+0xb8a/0x1c90 [ 345.591092][ T9223] do_filp_open+0x20b/0x470 [ 345.591153][ T9223] ? __pfx_do_filp_open+0x10/0x10 [ 345.591237][ T9223] ? alloc_fd+0x471/0x7d0 [ 345.591297][ T9223] do_sys_openat2+0x11b/0x1d0 [ 345.591336][ T9223] ? __pfx_do_sys_openat2+0x10/0x10 [ 345.591384][ T9223] __x64_sys_openat+0x174/0x210 [ 345.591418][ T9223] ? __pfx___x64_sys_openat+0x10/0x10 [ 345.591467][ T9223] do_syscall_64+0xcd/0x490 [ 345.591497][ T9223] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 345.591525][ T9223] RIP: 0033:0x7ffb1b98e929 [ 345.591548][ T9223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 345.591577][ T9223] RSP: 002b:00007ffb197f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 345.591603][ T9223] RAX: ffffffffffffffda RBX: 00007ffb1bbb6080 RCX: 00007ffb1b98e929 [ 345.591622][ T9223] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 345.591640][ T9223] RBP: 00007ffb1ba10b39 R08: 0000000000000000 R09: 0000000000000000 [ 345.591657][ T9223] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 345.591674][ T9223] R13: 0000000000000000 R14: 00007ffb1bbb6080 R15: 00007fff99c70738 [ 345.591709][ T9223] [ 345.594240][ T9223] Mem-Info: [ 345.926060][ T9223] active_anon:6818 inactive_anon:0 isolated_anon:0 [ 345.926060][ T9223] active_file:16569 inactive_file:42519 isolated_file:0 [ 345.926060][ T9223] unevictable:768 dirty:830 writeback:71 [ 345.926060][ T9223] slab_reclaimable:10533 slab_unreclaimable:96209 [ 345.926060][ T9223] mapped:26908 shmem:2298 pagetables:1223 [ 345.926060][ T9223] sec_pagetables:0 bounce:0 [ 345.926060][ T9223] kernel_misc_reclaimable:0 [ 345.926060][ T9223] free:1331784 free_pcp:8224 free_cma:0 [ 345.972835][ T9223] Node 0 active_anon:27272kB inactive_anon:0kB active_file:66276kB inactive_file:169876kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:107632kB dirty:2416kB writeback:1084kB shmem:7656kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12172kB pagetables:4748kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 346.009313][ T9223] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 346.046798][ T9213] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 346.055231][ T9223] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 346.086904][ T9223] lowmem_reserve[]: 0 2481 2482 2482 2482 [ 346.092742][ T9223] Node 0 DMA32 free:1400068kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB free_highatomic:0KB active_anon:27524kB inactive_anon:0kB active_file:66276kB inactive_file:168300kB unevictable:1536kB writepending:3500kB present:3129332kB managed:2540904kB mlocked:0kB bounce:0kB free_pcp:24160kB local_pcp:3560kB free_cma:0kB [ 346.194919][ T9223] lowmem_reserve[]: 0 0 1 1 1 [ 346.233066][ T9223] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1576kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 346.323371][ T9234] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input58 [ 346.356365][ T9223] lowmem_reserve[]: 0 0 0 0 0 [ 346.415000][ T9223] Node 1 Normal free:3911696kB boost:0kB min:55788kB low:69732kB high:83676kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:8472kB local_pcp:0kB free_cma:0kB [ 346.645565][ T9223] lowmem_reserve[]: 0 0 0 0 0 [ 346.708922][ T9223] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 346.848266][ T9223] Node 0 DMA32: 750*4kB (UM) 2540*8kB (UME) 1282*16kB (UME) 965*32kB (UME) 689*64kB (UM) 368*128kB (UM) 230*256kB (UME) 95*512kB (UM) 59*1024kB (UME) 4*2048kB (UM) 258*4096kB (UM) = 1398808kB [ 346.916266][ T9223] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 347.026366][ T9223] Node 1 Normal: 4*4kB (ME) 8*8kB (UME) 16*16kB (UME) 240*32kB (UME) 77*64kB (UME) 25*128kB (UME) 15*256kB (UME) 3*512kB (UM) 3*1024kB (UME) 2*2048kB (ME) 948*4096kB (M) = 3911696kB [ 347.155029][ T9223] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 347.189790][ T9223] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 347.281972][ T9223] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 347.298247][ T9223] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 347.407808][ T9223] 63008 total pagecache pages [ 347.416805][ T9223] 0 pages in swap cache [ 347.437829][ T9246] program syz.3.735 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 347.459479][ T9223] Free swap = 124864kB [ 347.464232][ T9223] Total swap = 124996kB [ 347.476627][ T9246] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 347.505571][ T9223] 2097051 pages RAM [ 347.509561][ T9223] 0 pages HighMem/MovableOnly [ 347.521826][ T9223] 429783 pages reserved [ 347.528593][ T9223] 0 pages cma reserved [ 347.533478][ T9223] tty tty26: ldisc open failed (-12), clearing slot 25 [ 347.666630][ T9248] snd_aloop snd_aloop.0: control 1:262152:9::0 is already present [ 348.646347][ T9259] FAULT_INJECTION: forcing a failure. [ 348.646347][ T9259] name failslab, interval 1, probability 0, space 0, times 0 [ 348.704172][ T9259] CPU: 0 UID: 0 PID: 9259 Comm: syz.3.738 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 348.704218][ T9259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 348.704237][ T9259] Call Trace: [ 348.704248][ T9259] [ 348.704260][ T9259] dump_stack_lvl+0x16c/0x1f0 [ 348.704319][ T9259] should_fail_ex+0x512/0x640 [ 348.704369][ T9259] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 348.704420][ T9259] should_failslab+0xc2/0x120 [ 348.704453][ T9259] __kmalloc_cache_noprof+0x6a/0x3e0 [ 348.704499][ T9259] ? sctp_datamsg_from_user+0x8d/0x1320 [ 348.704551][ T9259] ? __lock_acquire+0xb8a/0x1c90 [ 348.704599][ T9259] sctp_datamsg_from_user+0x8d/0x1320 [ 348.704651][ T9259] ? __sk_mem_raise_allocated+0x94d/0x1670 [ 348.704699][ T9259] ? __sk_mem_schedule+0xd0/0x100 [ 348.704736][ T9259] sctp_sendmsg_to_asoc+0xaf5/0x1bf0 [ 348.704793][ T9259] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 348.704844][ T9259] ? do_raw_spin_lock+0x12c/0x2b0 [ 348.704896][ T9259] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 348.704957][ T9259] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 348.704999][ T9259] sctp_sendmsg+0xef5/0x1ee0 [ 348.705043][ T9259] ? __lock_acquire+0x622/0x1c90 [ 348.705096][ T9259] ? __pfx_sctp_sendmsg+0x10/0x10 [ 348.705144][ T9259] ? __pfx___might_resched+0x10/0x10 [ 348.705191][ T9259] ? import_ubuf+0x1b6/0x220 [ 348.705244][ T9259] ? __pfx_aa_sk_perm+0x10/0x10 [ 348.705283][ T9259] ? __import_iovec+0x1dd/0x650 [ 348.705313][ T9259] ? __might_fault+0xe3/0x190 [ 348.705360][ T9259] ? __might_fault+0x13b/0x190 [ 348.705414][ T9259] ? __pfx_sctp_sendmsg+0x10/0x10 [ 348.705460][ T9259] inet_sendmsg+0x119/0x140 [ 348.705510][ T9259] ____sys_sendmsg+0x973/0xc70 [ 348.705554][ T9259] ? copy_msghdr_from_user+0x10a/0x160 [ 348.705586][ T9259] ? __pfx_____sys_sendmsg+0x10/0x10 [ 348.705635][ T9259] ? __pfx__kstrtoull+0x10/0x10 [ 348.705685][ T9259] ___sys_sendmsg+0x134/0x1d0 [ 348.705720][ T9259] ? __pfx____sys_sendmsg+0x10/0x10 [ 348.705774][ T9259] ? find_held_lock+0x2b/0x80 [ 348.705842][ T9259] __sys_sendmmsg+0x200/0x420 [ 348.705882][ T9259] ? __pfx___sys_sendmmsg+0x10/0x10 [ 348.705931][ T9259] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 348.705984][ T9259] ? fput+0x70/0xf0 [ 348.706018][ T9259] ? ksys_write+0x1ac/0x250 [ 348.706067][ T9259] ? __pfx_ksys_write+0x10/0x10 [ 348.706124][ T9259] __x64_sys_sendmmsg+0x9c/0x100 [ 348.706157][ T9259] ? lockdep_hardirqs_on+0x7c/0x110 [ 348.706210][ T9259] do_syscall_64+0xcd/0x490 [ 348.706246][ T9259] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 348.706279][ T9259] RIP: 0033:0x7fa404b8e929 [ 348.706304][ T9259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 348.706337][ T9259] RSP: 002b:00007fa405a84038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 348.706366][ T9259] RAX: ffffffffffffffda RBX: 00007fa404db5fa0 RCX: 00007fa404b8e929 [ 348.706387][ T9259] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 348.706406][ T9259] RBP: 00007fa405a84090 R08: 0000000000000000 R09: 0000000000000000 [ 348.706426][ T9259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 348.706445][ T9259] R13: 0000000000000000 R14: 00007fa404db5fa0 R15: 00007ffd46c73368 [ 348.706488][ T9259] [ 352.359356][ T9299] netlink: 4 bytes leftover after parsing attributes in process `syz.0.746'. [ 352.550363][ T9302] ubi: mtd0 is already attached to ubi0 [ 352.795296][ T9305] snd_aloop snd_aloop.0: control 16781581:65533:6:'x?F/zF˷fC)b:0 is already present [ 355.238569][ T9350] ptrace attach of "./syz-executor exec"[5835] was attempted by "./syz-executor exec"[9350] [ 356.089806][ T9368] netlink: 4 bytes leftover after parsing attributes in process `syz.1.762'. [ 356.236470][ T9369] ubi: mtd0 is already attached to ubi0 [ 356.358374][ T9368] openvswitch: HfR: Dropping previously announced user features [ 357.802488][ T9397] ptrace attach of "./syz-executor exec"[5842] was attempted by "./syz-executor exec"[9397] [ 359.398967][ T9429] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 360.085750][ T9436] FAULT_INJECTION: forcing a failure. [ 360.085750][ T9436] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 360.187524][ T9436] CPU: 0 UID: 0 PID: 9436 Comm: syz.3.775 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 360.187572][ T9436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 360.187592][ T9436] Call Trace: [ 360.187603][ T9436] [ 360.187615][ T9436] dump_stack_lvl+0x16c/0x1f0 [ 360.187678][ T9436] should_fail_ex+0x512/0x640 [ 360.187738][ T9436] should_fail_alloc_page+0xe7/0x130 [ 360.187777][ T9436] prepare_alloc_pages+0x3c2/0x610 [ 360.187827][ T9436] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 360.187883][ T9436] ? stack_trace_save+0x8e/0xc0 [ 360.187922][ T9436] ? __pfx_stack_trace_save+0x10/0x10 [ 360.187959][ T9436] ? stack_depot_save_flags+0x28/0xa40 [ 360.188025][ T9436] ? kasan_save_stack+0x42/0x60 [ 360.188078][ T9436] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 360.188131][ T9436] ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0 [ 360.188185][ T9436] ? __get_vm_area_node+0x1ca/0x330 [ 360.188226][ T9436] ? __vmalloc_node_noprof+0xad/0xf0 [ 360.188267][ T9436] ? n_tty_open+0x1a/0x170 [ 360.188303][ T9436] ? tty_ldisc_open+0x9f/0x120 [ 360.188362][ T9436] ? tty_ldisc_setup+0x40/0x100 [ 360.188413][ T9436] ? tty_init_dev.part.0+0x1ec/0x500 [ 360.188447][ T9436] ? tty_open+0xa50/0xf90 [ 360.188477][ T9436] ? chrdev_open+0x234/0x6a0 [ 360.188511][ T9436] ? __x64_sys_openat+0x174/0x210 [ 360.188550][ T9436] ? do_syscall_64+0xcd/0x490 [ 360.188580][ T9436] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 360.188625][ T9436] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 360.188683][ T9436] ? policy_nodemask+0xea/0x4e0 [ 360.188720][ T9436] alloc_pages_mpol+0x1fb/0x550 [ 360.188757][ T9436] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 360.188805][ T9436] alloc_pages_noprof+0x131/0x390 [ 360.188842][ T9436] get_free_pages_noprof+0x10/0xb0 [ 360.188878][ T9436] kasan_populate_vmalloc+0x89/0x1f0 [ 360.188939][ T9436] alloc_vmap_area+0x959/0x29c0 [ 360.188998][ T9436] ? __pfx_alloc_vmap_area+0x10/0x10 [ 360.189050][ T9436] __get_vm_area_node+0x1ca/0x330 [ 360.189103][ T9436] __vmalloc_node_range_noprof+0x271/0x14b0 [ 360.189152][ T9436] ? n_tty_open+0x1a/0x170 [ 360.189190][ T9436] ? do_raw_spin_unlock+0x172/0x230 [ 360.189285][ T9436] ? n_tty_open+0x1a/0x170 [ 360.189343][ T9436] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 360.189390][ T9436] ? console_unlock+0x184/0x210 [ 360.189422][ T9436] ? __pfx_console_unlock+0x10/0x10 [ 360.189460][ T9436] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 360.189509][ T9436] ? n_tty_open+0x1a/0x170 [ 360.189546][ T9436] __vmalloc_node_noprof+0xad/0xf0 [ 360.189592][ T9436] ? n_tty_open+0x1a/0x170 [ 360.189629][ T9436] ? __pfx_n_tty_open+0x10/0x10 [ 360.189671][ T9436] n_tty_open+0x1a/0x170 [ 360.189709][ T9436] ? __pfx_n_tty_open+0x10/0x10 [ 360.189748][ T9436] tty_ldisc_open+0x9f/0x120 [ 360.189800][ T9436] tty_ldisc_setup+0x40/0x100 [ 360.189854][ T9436] tty_init_dev.part.0+0x1ec/0x500 [ 360.189896][ T9436] tty_open+0xa50/0xf90 [ 360.189940][ T9436] ? __pfx_tty_open+0x10/0x10 [ 360.189976][ T9436] ? chrdev_open+0x10b/0x6a0 [ 360.190013][ T9436] ? __pfx_tty_open+0x10/0x10 [ 360.190048][ T9436] chrdev_open+0x234/0x6a0 [ 360.190078][ T9436] ? __pfx_apparmor_file_open+0x10/0x10 [ 360.190125][ T9436] ? __pfx_chrdev_open+0x10/0x10 [ 360.190160][ T9436] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 360.190218][ T9436] do_dentry_open+0x741/0x1c10 [ 360.190273][ T9436] ? __pfx_chrdev_open+0x10/0x10 [ 360.190321][ T9436] vfs_open+0x82/0x3f0 [ 360.190365][ T9436] path_openat+0x1de4/0x2cb0 [ 360.190432][ T9436] ? __pfx_path_openat+0x10/0x10 [ 360.190486][ T9436] ? __lock_acquire+0xb8a/0x1c90 [ 360.190543][ T9436] do_filp_open+0x20b/0x470 [ 360.190597][ T9436] ? __pfx_do_filp_open+0x10/0x10 [ 360.190683][ T9436] ? alloc_fd+0x471/0x7d0 [ 360.190744][ T9436] do_sys_openat2+0x11b/0x1d0 [ 360.190782][ T9436] ? __pfx_do_sys_openat2+0x10/0x10 [ 360.190838][ T9436] __x64_sys_openat+0x174/0x210 [ 360.190876][ T9436] ? __pfx___x64_sys_openat+0x10/0x10 [ 360.190935][ T9436] do_syscall_64+0xcd/0x490 [ 360.190972][ T9436] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 360.191005][ T9436] RIP: 0033:0x7fa404b8e929 [ 360.191031][ T9436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 360.191064][ T9436] RSP: 002b:00007fa405a63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 360.191095][ T9436] RAX: ffffffffffffffda RBX: 00007fa404db6080 RCX: 00007fa404b8e929 [ 360.191117][ T9436] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 360.191139][ T9436] RBP: 00007fa404c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 360.191160][ T9436] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 360.191180][ T9436] R13: 0000000000000000 R14: 00007fa404db6080 R15: 00007ffd46c73368 [ 360.191225][ T9436] [ 360.191295][ T9436] syz.3.775: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 360.816128][ T9436] CPU: 0 UID: 0 PID: 9436 Comm: syz.3.775 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 360.816175][ T9436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 360.816196][ T9436] Call Trace: [ 360.816206][ T9436] [ 360.816225][ T9436] dump_stack_lvl+0x16c/0x1f0 [ 360.816292][ T9436] warn_alloc+0x248/0x3a0 [ 360.816345][ T9436] ? __pfx_warn_alloc+0x10/0x10 [ 360.816405][ T9436] ? kfree+0x2b4/0x4d0 [ 360.816459][ T9436] ? __get_vm_area_node+0x208/0x330 [ 360.816517][ T9436] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 360.816564][ T9436] ? do_raw_spin_unlock+0x172/0x230 [ 360.816630][ T9436] ? n_tty_open+0x1a/0x170 [ 360.816679][ T9436] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 360.816724][ T9436] ? console_unlock+0x184/0x210 [ 360.816755][ T9436] ? __pfx_console_unlock+0x10/0x10 [ 360.816790][ T9436] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 360.816837][ T9436] ? n_tty_open+0x1a/0x170 [ 360.816873][ T9436] __vmalloc_node_noprof+0xad/0xf0 [ 360.816917][ T9436] ? n_tty_open+0x1a/0x170 [ 360.816954][ T9436] ? __pfx_n_tty_open+0x10/0x10 [ 360.817004][ T9436] n_tty_open+0x1a/0x170 [ 360.817041][ T9436] ? __pfx_n_tty_open+0x10/0x10 [ 360.817083][ T9436] tty_ldisc_open+0x9f/0x120 [ 360.817134][ T9436] tty_ldisc_setup+0x40/0x100 [ 360.817187][ T9436] tty_init_dev.part.0+0x1ec/0x500 [ 360.817234][ T9436] tty_open+0xa50/0xf90 [ 360.817278][ T9436] ? __pfx_tty_open+0x10/0x10 [ 360.817313][ T9436] ? chrdev_open+0x10b/0x6a0 [ 360.817349][ T9436] ? __pfx_tty_open+0x10/0x10 [ 360.817384][ T9436] chrdev_open+0x234/0x6a0 [ 360.817412][ T9436] ? __pfx_apparmor_file_open+0x10/0x10 [ 360.817463][ T9436] ? __pfx_chrdev_open+0x10/0x10 [ 360.817498][ T9436] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 360.817554][ T9436] do_dentry_open+0x741/0x1c10 [ 360.817608][ T9436] ? __pfx_chrdev_open+0x10/0x10 [ 360.817648][ T9436] vfs_open+0x82/0x3f0 [ 360.817692][ T9436] path_openat+0x1de4/0x2cb0 [ 360.817758][ T9436] ? __pfx_path_openat+0x10/0x10 [ 360.817811][ T9436] ? __lock_acquire+0xb8a/0x1c90 [ 360.817861][ T9436] do_filp_open+0x20b/0x470 [ 360.817914][ T9436] ? __pfx_do_filp_open+0x10/0x10 [ 360.817998][ T9436] ? alloc_fd+0x471/0x7d0 [ 360.818059][ T9436] do_sys_openat2+0x11b/0x1d0 [ 360.818097][ T9436] ? __pfx_do_sys_openat2+0x10/0x10 [ 360.818155][ T9436] __x64_sys_openat+0x174/0x210 [ 360.818196][ T9436] ? __pfx___x64_sys_openat+0x10/0x10 [ 360.818260][ T9436] do_syscall_64+0xcd/0x490 [ 360.818297][ T9436] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 360.818331][ T9436] RIP: 0033:0x7fa404b8e929 [ 360.818358][ T9436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 360.818393][ T9436] RSP: 002b:00007fa405a63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 360.818423][ T9436] RAX: ffffffffffffffda RBX: 00007fa404db6080 RCX: 00007fa404b8e929 [ 360.818446][ T9436] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 360.818467][ T9436] RBP: 00007fa404c10b39 R08: 0000000000000000 R09: 0000000000000000 [ 360.818488][ T9436] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 360.818508][ T9436] R13: 0000000000000000 R14: 00007fa404db6080 R15: 00007ffd46c73368 [ 360.818551][ T9436] [ 360.819752][ T9436] Mem-Info: [ 361.185560][ T9436] active_anon:40900 inactive_anon:0 isolated_anon:0 [ 361.185560][ T9436] active_file:17323 inactive_file:40475 isolated_file:0 [ 361.185560][ T9436] unevictable:768 dirty:704 writeback:0 [ 361.185560][ T9436] slab_reclaimable:10568 slab_unreclaimable:97254 [ 361.185560][ T9436] mapped:43246 shmem:34866 pagetables:1272 [ 361.185560][ T9436] sec_pagetables:0 bounce:0 [ 361.185560][ T9436] kernel_misc_reclaimable:0 [ 361.185560][ T9436] free:1298025 free_pcp:6780 free_cma:0 [ 361.295481][ T9436] Node 0 active_anon:165900kB inactive_anon:0kB active_file:70392kB inactive_file:161700kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:173984kB dirty:2812kB writeback:0kB shmem:140228kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12136kB pagetables:5044kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 361.367796][ T9436] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 361.445861][ T9436] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 361.525501][ T9436] lowmem_reserve[]: 0 2481 2482 2482 2482 [ 361.555501][ T9436] Node 0 DMA32 free:1255652kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB free_highatomic:0KB active_anon:172552kB inactive_anon:0kB active_file:72368kB inactive_file:160124kB unevictable:1536kB writepending:2812kB present:3129332kB managed:2540904kB mlocked:0kB bounce:0kB free_pcp:16136kB local_pcp:5344kB free_cma:0kB [ 361.665334][ T9436] lowmem_reserve[]: 0 0 1 1 1 [ 361.670444][ T9436] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1576kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB [ 361.787240][ T9436] lowmem_reserve[]: 0 0 0 0 0 [ 361.799031][ T9436] Node 1 Normal free:3912264kB boost:0kB min:55788kB low:69732kB high:83676kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:7620kB local_pcp:7492kB free_cma:0kB [ 361.915474][ T9436] lowmem_reserve[]: 0 0 0 0 0 [ 361.920449][ T9436] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 361.943768][ T9436] Node 0 DMA32: 1*4kB (U) 1029*8kB (UME) 182*16kB (UE) 337*32kB (UME) 251*64kB (U) 93*128kB (U) 105*256kB (UME) 94*512kB (UM) 59*1024kB (UME) 4*2048kB (UM) 258*4096kB (UM) = 1250284kB [ 362.008060][ T9436] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 362.051150][ T9436] Node 1 Normal: 72*4kB (UME) 51*8kB (UME) 35*16kB (UM) 229*32kB (UME) 77*64kB (UME) 25*128kB (UME) 15*256kB (UME) 3*512kB (UM) 3*1024kB (UME) 2*2048kB (ME) 948*4096kB (M) = 3912264kB [ 362.103987][ T9436] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 362.139039][ T9436] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 362.151971][ T9436] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 362.170808][ T9436] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 362.225797][ T9436] 97214 total pagecache pages [ 362.239600][ T9436] 0 pages in swap cache [ 362.244147][ T9436] Free swap = 124996kB [ 362.251215][ T9436] Total swap = 124996kB [ 362.260061][ T9436] 2097051 pages RAM [ 362.263928][ T9436] 0 pages HighMem/MovableOnly [ 362.298228][ T9436] 429783 pages reserved [ 362.319396][ T9436] 0 pages cma reserved [ 362.323550][ T9436] tty tty26: ldisc open failed (-12), clearing slot 25 [ 362.382196][ T9443] FAULT_INJECTION: forcing a failure. [ 362.382196][ T9443] name failslab, interval 1, probability 0, space 0, times 0 [ 362.405841][ T9443] CPU: 0 UID: 0 PID: 9443 Comm: syz.1.776 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 362.405887][ T9443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 362.405906][ T9443] Call Trace: [ 362.405917][ T9443] [ 362.405929][ T9443] dump_stack_lvl+0x16c/0x1f0 [ 362.405990][ T9443] should_fail_ex+0x512/0x640 [ 362.406044][ T9443] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 362.406103][ T9443] should_failslab+0xc2/0x120 [ 362.406137][ T9443] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 362.406188][ T9443] ? __pfx___might_resched+0x10/0x10 [ 362.406223][ T9443] ? alloc_vmap_area+0x645/0x29c0 [ 362.406268][ T9443] alloc_vmap_area+0x645/0x29c0 [ 362.406336][ T9443] ? __pfx_alloc_vmap_area+0x10/0x10 [ 362.406388][ T9443] __get_vm_area_node+0x1ca/0x330 [ 362.406445][ T9443] __vmalloc_node_range_noprof+0x271/0x14b0 [ 362.406493][ T9443] ? n_tty_open+0x1a/0x170 [ 362.406530][ T9443] ? do_raw_spin_unlock+0x172/0x230 [ 362.406592][ T9443] ? n_tty_open+0x1a/0x170 [ 362.406642][ T9443] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 362.406687][ T9443] ? console_unlock+0x184/0x210 [ 362.406719][ T9443] ? __pfx_console_unlock+0x10/0x10 [ 362.406754][ T9443] ? __pfx___ldsem_down_write_nested+0x10/0x10 [ 362.406802][ T9443] ? n_tty_open+0x1a/0x170 [ 362.406838][ T9443] __vmalloc_node_noprof+0xad/0xf0 [ 362.406881][ T9443] ? n_tty_open+0x1a/0x170 [ 362.406916][ T9443] ? __pfx_n_tty_open+0x10/0x10 [ 362.406945][ T9443] n_tty_open+0x1a/0x170 [ 362.406970][ T9443] ? __pfx_n_tty_open+0x10/0x10 [ 362.406997][ T9443] tty_ldisc_open+0x9f/0x120 [ 362.407041][ T9443] tty_ldisc_setup+0x40/0x100 [ 362.407082][ T9443] tty_init_dev.part.0+0x1ec/0x500 [ 362.407110][ T9443] tty_open+0xa50/0xf90 [ 362.407140][ T9443] ? __pfx_tty_open+0x10/0x10 [ 362.407165][ T9443] ? chrdev_open+0x10b/0x6a0 [ 362.407197][ T9443] ? __pfx_tty_open+0x10/0x10 [ 362.407225][ T9443] chrdev_open+0x234/0x6a0 [ 362.407245][ T9443] ? __pfx_apparmor_file_open+0x10/0x10 [ 362.407278][ T9443] ? __pfx_chrdev_open+0x10/0x10 [ 362.407302][ T9443] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 362.407347][ T9443] do_dentry_open+0x741/0x1c10 [ 362.407385][ T9443] ? __pfx_chrdev_open+0x10/0x10 [ 362.407413][ T9443] vfs_open+0x82/0x3f0 [ 362.407444][ T9443] path_openat+0x1de4/0x2cb0 [ 362.407502][ T9443] ? __pfx_path_openat+0x10/0x10 [ 362.407546][ T9443] ? __lock_acquire+0xb8a/0x1c90 [ 362.407582][ T9443] do_filp_open+0x20b/0x470 [ 362.407619][ T9443] ? __pfx_do_filp_open+0x10/0x10 [ 362.407677][ T9443] ? alloc_fd+0x471/0x7d0 [ 362.407719][ T9443] do_sys_openat2+0x11b/0x1d0 [ 362.407747][ T9443] ? __pfx_do_sys_openat2+0x10/0x10 [ 362.407786][ T9443] __x64_sys_openat+0x174/0x210 [ 362.407822][ T9443] ? __pfx___x64_sys_openat+0x10/0x10 [ 362.407872][ T9443] do_syscall_64+0xcd/0x490 [ 362.407899][ T9443] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 362.407923][ T9443] RIP: 0033:0x7ffb1b98e929 [ 362.407942][ T9443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 362.407965][ T9443] RSP: 002b:00007ffb197f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 362.407987][ T9443] RAX: ffffffffffffffda RBX: 00007ffb1bbb6080 RCX: 00007ffb1b98e929 [ 362.408003][ T9443] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 362.408018][ T9443] RBP: 00007ffb1ba10b39 R08: 0000000000000000 R09: 0000000000000000 [ 362.408033][ T9443] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 362.408047][ T9443] R13: 0000000000000000 R14: 00007ffb1bbb6080 R15: 00007fff99c70738 [ 362.408079][ T9443] [ 362.408147][ T9443] tty tty26: ldisc open failed (-12), clearing slot 25 [ 363.396463][ T9463] ubi: mtd0 is already attached to ubi0 [ 364.450278][ T9473] ptrace attach of "./syz-executor exec"[5835] was attempted by "./syz-executor exec"[9473] [ 365.459314][ T9482] FAULT_INJECTION: forcing a failure. [ 365.459314][ T9482] name failslab, interval 1, probability 0, space 0, times 0 [ 365.481165][ T9482] CPU: 1 UID: 0 PID: 9482 Comm: syz.1.781 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 365.481207][ T9482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 365.481225][ T9482] Call Trace: [ 365.481236][ T9482] [ 365.481248][ T9482] dump_stack_lvl+0x16c/0x1f0 [ 365.481306][ T9482] should_fail_ex+0x512/0x640 [ 365.481346][ T9482] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 365.481381][ T9482] should_failslab+0xc2/0x120 [ 365.481405][ T9482] __kmalloc_cache_noprof+0x6a/0x3e0 [ 365.481438][ T9482] ? kstrdup_quotable_cmdline+0x52/0x210 [ 365.481472][ T9482] kstrdup_quotable_cmdline+0x52/0x210 [ 365.481504][ T9482] __report_access+0x4b/0x3c0 [ 365.481533][ T9482] ? _raw_spin_unlock_irq+0x23/0x50 [ 365.481570][ T9482] task_work_run+0x150/0x240 [ 365.481607][ T9482] ? __pfx_task_work_run+0x10/0x10 [ 365.481651][ T9482] exit_to_user_mode_loop+0xeb/0x110 [ 365.481689][ T9482] do_syscall_64+0x3f6/0x490 [ 365.481721][ T9482] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.481745][ T9482] RIP: 0033:0x7ffb1b98e929 [ 365.481763][ T9482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 365.481786][ T9482] RSP: 002b:00007ffb19772038 EFLAGS: 00000246 ORIG_RAX: 0000000000000065 [ 365.481807][ T9482] RAX: ffffffffffffffff RBX: 00007ffb1bbb6400 RCX: 00007ffb1b98e929 [ 365.481823][ T9482] RDX: ffffffffffffff56 RSI: 0010000000000001 RDI: 0000000000000010 [ 365.481838][ T9482] RBP: 00007ffb19772090 R08: 0000000000000000 R09: 0000000000000000 [ 365.481852][ T9482] R10: 000000000000868f R11: 0000000000000246 R12: 0000000000000001 [ 365.481866][ T9482] R13: 0000000000000001 R14: 00007ffb1bbb6400 R15: 00007fff99c70738 [ 365.481895][ T9482] [ 365.552536][ T9482] ptrace attach of "(null)"[5831] was attempted by "./syz-executor exec"[9482] [ 368.385586][ T9508] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input59 [ 369.078998][ T9509] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input60 [ 369.950028][ T9527] delete_channel: no stack [ 370.155924][ T9532] netlink: 4 bytes leftover after parsing attributes in process `syz.1.794'. [ 370.202005][ T9532] openvswitch: HfR: Dropping previously announced user features [ 370.307793][ T9536] Invalid ELF header magic: != ELF [ 372.257801][ T9566] [ 372.260228][ T9566] ====================================================== [ 372.267271][ T9566] WARNING: possible circular locking dependency detected [ 372.274398][ T9566] 6.15.0-syzkaller-13473-gc0c9379f235d #0 Not tainted [ 372.281185][ T9566] ------------------------------------------------------ [ 372.288226][ T9566] syz.2.798/9566 is trying to acquire lock: [ 372.294297][ T9566] ffffffff8e52f4c8 (pcpu_alloc_mutex){+.+.}-{4:4}, at: pcpu_alloc_noprof+0xb4c/0x1470 [ 372.303984][ T9566] [ 372.303984][ T9566] but task is already holding lock: [ 372.311363][ T9566] ffff8881423f1e00 (&q->q_usage_counter(io)#18){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 372.322977][ T9566] [ 372.322977][ T9566] which lock already depends on the new lock. [ 372.322977][ T9566] [ 372.333419][ T9566] [ 372.333419][ T9566] the existing dependency chain (in reverse order) is: [ 372.342453][ T9566] [ 372.342453][ T9566] -> #2 (&q->q_usage_counter(io)#18){++++}-{0:0}: [ 372.351125][ T9566] blk_alloc_queue+0x619/0x760 [ 372.356539][ T9566] blk_mq_alloc_queue+0x175/0x290 [ 372.362131][ T9566] __blk_mq_alloc_disk+0x29/0x120 [ 372.367882][ T9566] loop_add+0x49e/0xb70 [ 372.372604][ T9566] loop_init+0x164/0x270 [ 372.377386][ T9566] do_one_initcall+0x120/0x6e0 [ 372.382695][ T9566] kernel_init_freeable+0x5c2/0x900 [ 372.388465][ T9566] kernel_init+0x1c/0x2b0 [ 372.393363][ T9566] ret_from_fork+0x5d7/0x6f0 [ 372.398498][ T9566] ret_from_fork_asm+0x1a/0x30 [ 372.403802][ T9566] [ 372.403802][ T9566] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 372.411055][ T9566] fs_reclaim_acquire+0x102/0x150 [ 372.416624][ T9566] prepare_alloc_pages+0x162/0x610 [ 372.422274][ T9566] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 372.428717][ T9566] __alloc_pages_noprof+0xb/0x1b0 [ 372.434288][ T9566] pcpu_populate_chunk+0x110/0xb00 [ 372.439948][ T9566] pcpu_alloc_noprof+0x86a/0x1470 [ 372.445531][ T9566] xt_percpu_counter_alloc+0x13e/0x1b0 [ 372.451542][ T9566] find_check_entry.constprop.0+0xbf/0xa20 [ 372.457905][ T9566] translate_table+0xd0b/0x17b0 [ 372.463316][ T9566] ip6t_register_table+0x102/0x430 [ 372.468982][ T9566] ip6table_mangle_table_init+0x40/0x60 [ 372.475081][ T9566] xt_find_table_lock+0x2e4/0x520 [ 372.480654][ T9566] xt_request_find_table_lock+0x28/0xf0 [ 372.486755][ T9566] get_info+0x190/0x620 [ 372.491454][ T9566] do_ip6t_get_ctl+0x169/0xa50 [ 372.496759][ T9566] nf_getsockopt+0x79/0xe0 [ 372.501711][ T9566] ipv6_getsockopt+0x1f7/0x280 [ 372.507035][ T9566] tcp_getsockopt+0x9e/0x100 [ 372.512178][ T9566] do_sock_getsockopt+0x3ff/0x800 [ 372.517748][ T9566] __sys_getsockopt+0x123/0x1b0 [ 372.523145][ T9566] __x64_sys_getsockopt+0xbd/0x160 [ 372.528810][ T9566] do_syscall_64+0xcd/0x490 [ 372.533851][ T9566] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 372.540320][ T9566] [ 372.540320][ T9566] -> #0 (pcpu_alloc_mutex){+.+.}-{4:4}: [ 372.548172][ T9566] __lock_acquire+0x126f/0x1c90 [ 372.553575][ T9566] lock_acquire+0x179/0x350 [ 372.558623][ T9566] __mutex_lock+0x199/0xb90 [ 372.563667][ T9566] pcpu_alloc_noprof+0xb4c/0x1470 [ 372.569249][ T9566] blk_stat_alloc_callback+0xc8/0x280 [ 372.575170][ T9566] wbt_init+0xac/0x540 [ 372.579784][ T9566] queue_wb_lat_store+0x354/0x3d0 [ 372.585345][ T9566] queue_attr_store+0x279/0x320 [ 372.590737][ T9566] sysfs_kf_write+0xef/0x150 [ 372.595876][ T9566] kernfs_fop_write_iter+0x354/0x510 [ 372.601718][ T9566] vfs_write+0x6c4/0x1150 [ 372.606592][ T9566] ksys_write+0x12a/0x250 [ 372.611474][ T9566] do_syscall_64+0xcd/0x490 [ 372.616519][ T9566] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 372.622949][ T9566] [ 372.622949][ T9566] other info that might help us debug this: [ 372.622949][ T9566] [ 372.633182][ T9566] Chain exists of: [ 372.633182][ T9566] pcpu_alloc_mutex --> fs_reclaim --> &q->q_usage_counter(io)#18 [ 372.633182][ T9566] [ 372.646862][ T9566] Possible unsafe locking scenario: [ 372.646862][ T9566] [ 372.654337][ T9566] CPU0 CPU1 [ 372.659711][ T9566] ---- ---- [ 372.665084][ T9566] lock(&q->q_usage_counter(io)#18); [ 372.670476][ T9566] lock(fs_reclaim); [ 372.676997][ T9566] lock(&q->q_usage_counter(io)#18); [ 372.684912][ T9566] lock(pcpu_alloc_mutex); [ 372.689439][ T9566] [ 372.689439][ T9566] *** DEADLOCK *** [ 372.689439][ T9566] [ 372.697606][ T9566] 6 locks held by syz.2.798/9566: [ 372.702636][ T9566] #0: ffff8880319a4638 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370 [ 372.711738][ T9566] #1: ffff888036394428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 372.720756][ T9566] #2: ffff888060d25488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510 [ 372.730542][ T9566] #3: ffff888142724c38 (kn->active#129){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510 [ 372.740698][ T9566] #4: ffff8881423f1e00 (&q->q_usage_counter(io)#18){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 372.752410][ T9566] #5: ffff8881423f1e38 (&q->q_usage_counter(queue)#22){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 372.764378][ T9566] [ 372.764378][ T9566] stack backtrace: [ 372.770294][ T9566] CPU: 0 UID: 0 PID: 9566 Comm: syz.2.798 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 372.770325][ T9566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 372.770339][ T9566] Call Trace: [ 372.770349][ T9566] [ 372.770359][ T9566] dump_stack_lvl+0x116/0x1f0 [ 372.770401][ T9566] print_circular_bug+0x275/0x350 [ 372.770433][ T9566] check_noncircular+0x14c/0x170 [ 372.770467][ T9566] __lock_acquire+0x126f/0x1c90 [ 372.770503][ T9566] lock_acquire+0x179/0x350 [ 372.770538][ T9566] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 372.770574][ T9566] ? __pfx___might_resched+0x10/0x10 [ 372.770598][ T9566] ? ksys_write+0x12a/0x250 [ 372.770632][ T9566] ? do_syscall_64+0xcd/0x490 [ 372.770654][ T9566] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 372.770679][ T9566] __mutex_lock+0x199/0xb90 [ 372.770701][ T9566] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 372.770736][ T9566] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 372.770770][ T9566] ? __pfx___mutex_lock+0x10/0x10 [ 372.770801][ T9566] ? pcpu_alloc_noprof+0xb4c/0x1470 [ 372.770834][ T9566] pcpu_alloc_noprof+0xb4c/0x1470 [ 372.770873][ T9566] ? __pfx_wbt_data_dir+0x10/0x10 [ 372.770913][ T9566] ? __pfx_wb_timer_fn+0x10/0x10 [ 372.770937][ T9566] blk_stat_alloc_callback+0xc8/0x280 [ 372.770962][ T9566] ? kasan_save_track+0x14/0x30 [ 372.771000][ T9566] wbt_init+0xac/0x540 [ 372.771026][ T9566] queue_wb_lat_store+0x354/0x3d0 [ 372.771049][ T9566] ? __pfx_queue_wb_lat_store+0x10/0x10 [ 372.771094][ T9566] ? __mutex_trylock_common+0xe9/0x250 [ 372.771128][ T9566] ? __pfx_queue_wb_lat_store+0x10/0x10 [ 372.771165][ T9566] queue_attr_store+0x279/0x320 [ 372.771188][ T9566] ? __pfx_queue_attr_store+0x10/0x10 [ 372.771208][ T9566] ? __lock_acquire+0x622/0x1c90 [ 372.771245][ T9566] ? find_held_lock+0x2b/0x80 [ 372.771267][ T9566] ? sysfs_file_kobj+0xe4/0x290 [ 372.771297][ T9566] ? __pfx_queue_attr_store+0x10/0x10 [ 372.771319][ T9566] sysfs_kf_write+0xef/0x150 [ 372.771348][ T9566] kernfs_fop_write_iter+0x354/0x510 [ 372.771373][ T9566] ? __pfx_sysfs_kf_write+0x10/0x10 [ 372.771404][ T9566] vfs_write+0x6c4/0x1150 [ 372.771437][ T9566] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 372.771464][ T9566] ? __pfx___mutex_lock+0x10/0x10 [ 372.771486][ T9566] ? __pfx_vfs_write+0x10/0x10 [ 372.771528][ T9566] ksys_write+0x12a/0x250 [ 372.771562][ T9566] ? __pfx_ksys_write+0x10/0x10 [ 372.771601][ T9566] do_syscall_64+0xcd/0x490 [ 372.771624][ T9566] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 372.771647][ T9566] RIP: 0033:0x7feaaa58e929 [ 372.771667][ T9566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 372.771690][ T9566] RSP: 002b:00007feaab461038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 372.771711][ T9566] RAX: ffffffffffffffda RBX: 00007feaaa7b6160 RCX: 00007feaaa58e929 [ 372.771728][ T9566] RDX: 0000000000000009 RSI: 00002000000001c0 RDI: 0000000000000004 [ 372.771742][ T9566] RBP: 00007feaaa610b39 R08: 0000000000000000 R09: 0000000000000000 [ 372.771757][ T9566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 372.771771][ T9566] R13: 0000000000000000 R14: 00007feaaa7b6160 R15: 00007ffece984418 [ 372.771792][ T9566] [ 373.453269][ T9559] FAULT_INJECTION: forcing a failure. [ 373.453269][ T9559] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 373.497909][ T9559] CPU: 0 UID: 0 PID: 9559 Comm: syz.0.799 Not tainted 6.15.0-syzkaller-13473-gc0c9379f235d #0 PREEMPT(full) [ 373.497950][ T9559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 373.497967][ T9559] Call Trace: [ 373.497987][ T9559] [ 373.497998][ T9559] dump_stack_lvl+0x16c/0x1f0 [ 373.498052][ T9559] should_fail_ex+0x512/0x640 [ 373.498108][ T9559] _copy_from_iter+0x29f/0x16f0 [ 373.498136][ T9559] ? __pfx__copy_from_iter+0x10/0x10 [ 373.498160][ T9559] ? sctp_addto_chunk+0xfa/0x2a0 [ 373.498185][ T9559] ? __asan_memcpy+0x3c/0x60 [ 373.498222][ T9559] ? sctp_make_datafrag_empty+0x1c3/0x240 [ 373.498249][ T9559] ? __pfx_sctp_make_datafrag_empty+0x10/0x10 [ 373.498297][ T9559] sctp_user_addto_chunk+0x84/0x240 [ 373.498332][ T9559] sctp_datamsg_from_user+0x5b6/0x1320 [ 373.498391][ T9559] sctp_sendmsg_to_asoc+0xaf5/0x1bf0 [ 373.498429][ T9559] ? process_measurement+0x4a6/0x23e0 [ 373.498477][ T9559] ? rcu_is_watching+0x12/0xc0 [ 373.498508][ T9559] ? lock_release+0x201/0x2f0 [ 373.498547][ T9559] ? down_write+0x14d/0x200 [ 373.498584][ T9559] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 373.498620][ T9559] ? do_raw_spin_lock+0x12c/0x2b0 [ 373.498668][ T9559] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 373.498715][ T9559] ? __pfx___might_resched+0x10/0x10 [ 373.498749][ T9559] ? sctp_sendmsg+0xfcd/0x1ee0 [ 373.498790][ T9559] ? rcu_is_watching+0x12/0xc0 [ 373.498821][ T9559] ? sctp_sendmsg+0xfcd/0x1ee0 [ 373.498863][ T9559] ? rcu_is_watching+0x12/0xc0 [ 373.498893][ T9559] ? sctp_sendmsg_check_sflags+0x176/0x320 [ 373.498931][ T9559] sctp_sendmsg+0xef5/0x1ee0 [ 373.498981][ T9559] ? __pfx_sctp_sendmsg+0x10/0x10 [ 373.499026][ T9559] ? __pfx___might_resched+0x10/0x10 [ 373.499064][ T9559] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 373.499109][ T9559] ? import_ubuf+0x1b6/0x220 [ 373.499161][ T9559] ? __pfx_aa_sk_perm+0x10/0x10 [ 373.499198][ T9559] ? __import_iovec+0x1dd/0x650 [ 373.499228][ T9559] ? rcu_is_watching+0x12/0xc0 [ 373.499259][ T9559] ? __might_fault+0xe3/0x190 [ 373.499307][ T9559] ? __pfx_sctp_sendmsg+0x10/0x10 [ 373.499351][ T9559] inet_sendmsg+0x119/0x140 [ 373.499401][ T9559] ____sys_sendmsg+0x973/0xc70 [ 373.499442][ T9559] ? copy_msghdr_from_user+0x10a/0x160 [ 373.499473][ T9559] ? __pfx_____sys_sendmsg+0x10/0x10 [ 373.499517][ T9559] ? __pfx__kstrtoull+0x10/0x10 [ 373.499558][ T9559] ? aa_file_perm+0x4c7/0xfb0 [ 373.499604][ T9559] ___sys_sendmsg+0x134/0x1d0 [ 373.499635][ T9559] ? __pfx____sys_sendmsg+0x10/0x10 [ 373.499674][ T9559] ? rcu_is_watching+0x12/0xc0 [ 373.499719][ T9559] __sys_sendmmsg+0x200/0x420 [ 373.499752][ T9559] ? __pfx___sys_sendmmsg+0x10/0x10 [ 373.499782][ T9559] ? lock_release+0x201/0x2f0 [ 373.499829][ T9559] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 373.499871][ T9559] ? fput+0x70/0xf0 [ 373.499902][ T9559] ? ksys_write+0x1ac/0x250 [ 373.499948][ T9559] ? __pfx_ksys_write+0x10/0x10 [ 373.499988][ T9559] __x64_sys_sendmmsg+0x9c/0x100 [ 373.500010][ T9559] ? trace_irq_enable.constprop.0+0xd4/0x120 [ 373.500047][ T9559] do_syscall_64+0xcd/0x490 [ 373.500069][ T9559] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 373.500098][ T9559] RIP: 0033:0x7f7bbe18e929 [ 373.500116][ T9559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 373.500139][ T9559] RSP: 002b:00007f7bbefc4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 373.500161][ T9559] RAX: ffffffffffffffda RBX: 00007f7bbe3b5fa0 RCX: 00007f7bbe18e929 [ 373.500176][ T9559] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003 [ 373.500190][ T9559] RBP: 00007f7bbefc4090 R08: 0000000000000000 R09: 0000000000000000 [ 373.500205][ T9559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 373.500219][ T9559] R13: 0000000000000000 R14: 00007f7bbe3b5fa0 R15: 00007fff13b73f58 [ 373.500240][ T9559]