last executing test programs: 1m26.585852011s ago: executing program 2 (id=2208): bind$auto(0x3, 0x0, 0x6a) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x201, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000040)) landlock_create_ruleset$auto(&(0x7f0000000000)={0x9, 0x402, 0x7}, 0x6, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000000)) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000100)="15") 1m26.115497304s ago: executing program 2 (id=2210): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x5) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) futex_waitv$auto(&(0x7f0000000300)={0x7f, 0x9, 0x2}, 0x1, 0x0, &(0x7f0000000340)={0x92, 0x6}, 0x0) socket(0x11, 0x2, 0x9) (async) capset$auto(0x0, &(0x7f0000000000)={0x4, 0xa, 0x48}) socket(0x15, 0x5, 0x0) (async) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast1}, 0x6a) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) (async, rerun: 64) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) (rerun: 64) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async) close_range$auto(0x0, 0xfffffffffffff000, 0x101) (async, rerun: 32) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xca481, 0x0) (async, rerun: 32) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x1ff, 0x7c9, 0x26, 0x6, 0x1ffde, 0x7, 0x3, 0x20000009, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x6, 0x8, 0x10003, 0x80, 0xffffffffffffffff, 0x0, 0xa, 0x22000, 0x200, 0xffffff28, 0x84, 0x0, 0x0, 0x0, 0x2, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x3, 0x800000000000000, 0x0, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0xffffffffffffffff, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x80000, 0x0, 0xffff, 0x20000010, 0x0, 0x8, 0x10000, 0x0, 0x0, 0x0, 0x6, 0xbdcc, 0x0, 0xfffffffffffffffe]}, 0x1fe, 0x9) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) (async) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) (async) r1 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x1892, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0xb, 0xa505}, 0x800}, 0x7, 0x4008) socketpair$auto(0xfffffffd, 0x8, 0xffffffff, 0x0) unshare$auto(0x4000008c) (async) write$auto(0x3, 0x0, 0xffd8) (async) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async, rerun: 32) r2 = socket(0x11, 0x80003, 0x300) (rerun: 32) sendfile$auto(0x1, r2, 0x0, 0x8fb5) dup2$auto(0x0, 0x3) ioctl$auto(0x3, 0x541b, 0x10000000000402) (async) read$auto(r0, 0x0, 0x20) (async) close_range$auto(0x2, 0x8, 0x0) 1m20.998116821s ago: executing program 2 (id=2219): bind$auto(0x3, 0x0, 0x6a) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0) landlock_create_ruleset$auto(&(0x7f0000000000)={0x9, 0x402, 0x7}, 0x6, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000000)) ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000100)="15") 1m20.412983237s ago: executing program 2 (id=2223): r0 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000004c0), 0xffffffffffffffff) r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) r3 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000140), r4) newfstatat$auto(r3, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x0, 0x6, 0x27b, 0x85, 0xee01, 0x0, 0x0, 0xffff, 0x401, 0xe, 0x1ff, 0x7fffffff, 0x2, 0x100000000, 0x0, 0x3, 0x10}, 0x6) r7 = setfsuid$auto(0x0) setuid$auto(r7) sendmsg$auto_IPVS_CMD_SET_SERVICE(r3, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000300)={&(0x7f0000008740)=ANY=[@ANYBLOB="98a2e32eb96d9bd046aae81f7b12eda3", @ANYRES16=r5, @ANYBLOB="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", @ANYRES32=r6, @ANYBLOB='\b\x00T\x00', @ANYRES32=r7, @ANYBLOB="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", @ANYRES32=r1, @ANYBLOB="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"], 0x2798}, 0x1, 0x0, 0x0, 0x4}, 0x0) r8 = accept$auto(0xffffffffffffffff, &(0x7f0000000500)=@vsock, &(0x7f0000000540)=0xfffffffa) ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000580)={"1eb3a468df860b8b8c235cdc30060ee03280195c928133b94c3012e647354506", 0x6, 0x7f, 0x6b0d, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff}) r10 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000600), 0x1, 0x0) sendmsg$auto_IPVS_CMD_NEW_DEST(0xffffffffffffffff, &(0x7f0000002500)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000024c0)={&(0x7f0000002540)=ANY=[@ANYBLOB="7c1e0000", @ANYRES16=r0, @ANYBLOB="020029bd7000fedbdf2505000000570301804101438004000f8004001f8008003400", @ANYRES32=r1, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="c600f8800400218008000600", @ANYRES32=r8, @ANYBLOB="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", @ANYRES32=r9, @ANYBLOB="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", @ANYRES32, @ANYBLOB="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", @ANYRES32=r10, @ANYBLOB="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"], 0x1e7c}, 0x1, 0x0, 0x0, 0x4}, 0x4005) r11 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) bpf$auto_BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0xfff, 0x1ff, 0xffffffffffffffff, @relative_id=0x4084, 0x8}, 0x7) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r13 = fcntl$auto_F_GETOWN(r12, 0x9, 0x1) prctl$auto(0x10000, 0x7, r13, 0xb, 0x24000000000000) setsockopt$auto_SO_MAX_PACING_RATE(r11, 0xc9, 0x2f, &(0x7f0000000080)='9\x00d1L\xff\x15\xba\xa17=w\xc1\xf8\xff\xff\v\xb5^\xa1/\xfb\xaf\xc8\xfc\\\xa9@\xc0\xee\xa2[', 0xd) write$auto(r11, &(0x7f0000000400)='/dev/audio1\x00', 0x19fffffffffffe) r14 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) r15 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mtd0ro\x00', 0x80, 0x0) ioctl$auto_OTPLOCK(r15, 0x800c4d10, &(0x7f0000000140)={0x15836da, 0x9, 0x3}) r16 = socket(0x5, 0x1, 0x0) getsockopt$auto(r16, 0x6, 0x4, 0xfffffffffffffffe, 0xfffffffffffffffd) r17 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/snd_pcm_oss/uevent\x00', 0x115041, 0x0) write$auto(r17, &(0x7f0000000100)='9\x00d1L\xff\x15\xba\xa17=w\xc1\xf8\xff\xff\v\xb5^\xa1/\xfb\xaf\xc8\xfc\\\xa9@\xc0\xee\xa2[', 0x1) sendfile$auto(r14, r14, 0x0, 0x3) 1m18.199290364s ago: executing program 2 (id=2228): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0) openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/dynamic_events\x00', 0x542, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/suspend_stats/failed_suspend_noirq\x00', 0x8a100, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)=""/38, 0x26) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/xfs/stats/stats_clear\x00', 0x20681, 0x0) mmap$auto(0x0, 0x20009, 0x10000000000df, 0x4eb2, 0x401, 0x8000) pwrite64$auto(0xc8, 0x0, 0xf, 0x7) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x80002, 0x0) read$auto(r2, 0x0, 0x6) write$auto(0x3, 0x0, 0xfdef) select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x3, 0xfffffffffffffffe]}, 0x0) write$auto_fuse_dev_operations_fuse_i(r0, &(0x7f0000000440)="1100000007000000000000000000000001", 0x11) r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net/net_prio.ifpriomap\x00', 0x10b142, 0x0) r5 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1c\x00', 0x40001, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_REWIND2(r5, 0x40084146, &(0x7f0000000040)=0x80000001) sendfile$auto(r4, r4, 0x0, 0x5) r6 = epoll_create$auto(0x3e) epoll_ctl$auto(r6, 0x1, r3, 0x0) 1m17.006167485s ago: executing program 2 (id=2230): openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x82000, 0x0) socket(0x10, 0x2, 0xc) syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff) mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) r0 = socket(0x1d, 0x2, 0x7) r1 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2}, 0x6a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r3}, 0x18) recvmmsg$auto(0x3, &(0x7f0000000100)={{0x0, 0x9, &(0x7f0000000080)={0x0, 0x9}, 0x7, 0x0, 0x1, 0x4}, 0x4}, 0x10000, 0x300, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0x2000009}, 0x9}, 0x3, 0x0) mmap$auto(0xffffffffffffffff, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0xee, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0) read$auto(r4, 0x0, 0x20) getxattrat$auto(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x5000, &(0x7f00000000c0)='nbd\x00', &(0x7f0000000300)={0x400, 0xa50, 0xfff7fffd}, 0xfff) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/usbip-vudc.0/usbip_sockfd\x00', 0x103003, 0x0) write$auto(r6, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xabxo\xd9\x90\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xa5\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5Y\a\xc1\xe9(\x85R\x96\xe4\x86\\\x13\xa9\x1a&\x19\x8a9\x82\xf0\x83\f\xf7\xeb\x00\x00\x00\x00\x00\x00\x00\x00v\x920x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2}, 0x6a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r3}, 0x18) recvmmsg$auto(0x3, &(0x7f0000000100)={{0x0, 0x9, &(0x7f0000000080)={0x0, 0x9}, 0x7, 0x0, 0x1, 0x4}, 0x4}, 0x10000, 0x300, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffcc}, 0x1, 0x0, 0x0, 0x2000009}, 0x9}, 0x3, 0x0) mmap$auto(0xffffffffffffffff, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) ioctl$auto(0x3, 0x400454ca, 0x38) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0xee, 0xdf, 0xeb1, 0x401, 0x8000) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0) read$auto(r4, 0x0, 0x20) getxattrat$auto(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x5000, &(0x7f00000000c0)='nbd\x00', &(0x7f0000000300)={0x400, 0xa50, 0xfff7fffd}, 0xfff) r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/usbip-vudc.0/usbip_sockfd\x00', 0x103003, 0x0) write$auto(r6, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xabxo\xd9\x90\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xa5\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5Y\a\xc1\xe9(\x85R\x96\xe4\x86\\\x13\xa9\x1a&\x19\x8a9\x82\xf0\x83\f\xf7\xeb\x00\x00\x00\x00\x00\x00\x00\x00v\x920xffffffffffffffff, 0xffff, 0xfffff0b6, 0xffff, 0x84, 0xac1, 0x2, 0x36242398, 0xfffff5b2, 0x3bb, 0x8000007, 0xffff, 0x6, 0x81, 0x68198}, 0x6f3) ioctl$auto_SNDRV_TIMER_IOCTL_STATUS32(r3, 0x80585414, &(0x7f0000000300)={0x400, 0x98b8, 0x4, 0x8, 0x10001, 0x32, "6d02d10690344b87d65fdbd3490ab1f60a6ff1635cd34ab72765ccb90ea1e2ebd11babc33a71375cc74940362c919ecebe7e77b237c567b505897148e0afa553"}) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/scsi/drivers/st/max_sg_segs\x00', 0x183080, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f00000001c0)=""/198, 0xc6) sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000) rt_tgsigqueueinfo$auto(0x3, 0x96, 0x7, &(0x7f0000000180)={@siginfo_0_0={0x0, 0x9c2a, 0xffffffff, @_sigsys={0x0, 0x5d35, 0x6}}}) r5 = socket(0xa, 0x801, 0x84) listen$auto(r5, 0x3) open(&(0x7f00000001c0)='./cgroup\x00', 0x0, 0x6f) (async) open(&(0x7f00000001c0)='./cgroup\x00', 0x0, 0x6f) ustat$auto(0x3, &(0x7f0000000000)={0x2, 0x87, "62b2ca47d1f2", "bf5b9212bc13"}) sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 25.001725793s ago: executing program 3 (id=2344): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0x13, 0xfffffffffffffffa, 0x8000) r1 = socket(0x29, 0x2, 0x0) r2 = socket(0x2a, 0xa, 0x2000) sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x2000000}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r2, &(0x7f0000000140)={{0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x200002, 0x8}, 0x801}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r1, 0x8937, 0x24) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="e5b725bd7000fedbdd251900000004000780"], 0x18}, 0x1, 0x0, 0x0, 0x4010}, 0x4048800) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000000780)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000740)={0x0}, 0x1, 0x0, 0x0, 0x2004c0c0}, 0x1000) sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f00000002c0)={0x0, 0x5, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c05"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) mmap$auto(0x0, 0x20009, 0x4000200000df, 0x14, r2, 0x8000) r4 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'bond0\x00'}) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/devices/platform/vhci_hcd.5/usbmon/usbmon19/power/autosuspend_delay_ms\x00', 0x8001, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x4300, 0x0) write$auto(r5, &(0x7f0000000180)='7k\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00,X\xb9\x0e\x11\xfb\x00\x00\x00\x00&!\x8f-\xfb\xea=\xc0\\\xec\xe7D\xe5V\xf1b\xa0\x9a\xa1\x88\xb4\x96\xf5\\\xad4\t\xca\x03\xe4\x15\v]\x00'/67, 0x81) write$auto_ima_measure_policy_ops_ima_fs(r4, 0x0, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(0xffffffffffffffff, 0xc0305710, &(0x7f00000000c0)={0x1, 0xf8, 0x0, 0x1, 0x418, "00000f00ea0200"}) sendmsg$auto_SMC_NETLINK_DUMP_HS_LIMITATION(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40010}, 0x40080) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000002f80)={0x0}, 0x1, 0x0, 0x0, 0x11}, 0x24004842) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/filter\x00', 0x200, 0x0) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) 23.613196617s ago: executing program 3 (id=2348): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x169780, 0x0) bpf$auto_BPF_ENABLE_STATS(0x20, &(0x7f0000000180)=@bpf_attr_0={0x3ff, 0x8, 0xffff, 0x7fffffff, 0xc2, 0xffffffffffffffff, 0x7, "3f8850b8c665dabcdf3c01e5fde04738", 0x0, 0xffffffffffffffff, 0x10001, 0x0, 0x1, 0x2}, 0xffffffc0) setsockopt$auto_SO_DONTROUTE(0xffffffffffffffff, 0x7, 0x5, &(0x7f0000000400)='-\xaf\x00', 0xffffc9e0) r0 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="5c000000aa34bb6d3b8372e7c80763d2e3083194bd398ac49195ce0c7d01174e0fa314ef4736536cef740efc5f9cedb968d3ebafe691824c15f583b3adc34b7c05641c90f68b4c517e5d561f239bdfbb84df43490b51d9916e2b4ed4d2ebca84174c7d9ea5a42f6a42ef2f9824", @ANYRES16=r0, @ANYBLOB="040025bd7000fcdbdf25050000000c00010001000000000000000c000100cf000000000000000c000100cd000000000000000c00010001000000000000000c00010000020000000000000c0001000000000000000000"], 0x5c}, 0x1, 0x0, 0x0, 0x8000}, 0x20000010) mmap$auto(0xf941, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = syz_clone3(&(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0}}, 0x58) waitid$auto_P_PGID(0x2, r1, &(0x7f00000001c0)={@_si_pad}, 0xffffffff, &(0x7f0000000240)={{0x21, 0xbd7}, {0x1, 0x1}, 0x3ff, 0x6, 0x80000001, 0xffffffffffff7fff, 0xa, 0xcfc, 0x8, 0x1959, 0x6, 0x8, 0xccc, 0x0, 0x7, 0x6}) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x7, 0xb}, 0x800009}, 0x5, 0x20000000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) write$auto(r2, 0x0, 0xfffffde9) r3 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x100, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x2, 0x2) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000000)={'ip6_vti0\x00'}) getsockopt$auto_SO_KEEPALIVE(r2, 0x8, 0x9, &(0x7f0000000000)='/dev/usbmon2\x00', &(0x7f0000000180)=0x9) openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000080)='/dev/usbmon2\x00', 0x40080, 0x0) listen$auto(r3, 0x5) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0xb0141, 0x0) socket(0x1f, 0x800, 0xffffff01) ioctl$auto(0xffffffffffffffff, 0xc0285629, 0xffffffffffffffff) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x6482, 0x0) unshare$auto(0x40000080) 20.634539817s ago: executing program 3 (id=2352): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) sendfile$auto(r1, r1, 0x0, 0x3) fadvise64$auto(r1, 0x7, 0x1, 0x1) 12.520821343s ago: executing program 4 (id=2369): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8}) r0 = open(0x0, 0x14927f, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x40086602, 0x0) prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x6) (async) r1 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x6) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) (async) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(r2, &(0x7f00000005c0)='/Eev/audio1\x00VI\xa3\xaa\xb1\xcb\b\xd7lW\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C\x15\xc4D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\x91\xc1\xef(,\b\x83\xf1I\'Z:\x8d\xa0o\xf3\xe0\xb4R\x18\xec\x05\x89[\xfd\xa8\xef[\xe6\xe4*f\xfa\xe9\b\xec t\x95\xf8A\xc1\xa9YVA\x80\xd4I)G\xd9\xffz\x1e/\xd4\xfd\x1e\xdf\xf6\xe6\x95\"q\x80\x8a\xab\xb2\x99\xff\x96c+\x8b\xb6\x11\x95\x02\xf1K\x12\xcb\xaa\\Q\xb1\xd7\xe4\xaaP\b\xc6a\xbf\xed\xfa b\x1d\xde\x13)E\xf8\xa0\xc0I\xba&\xac\x17\x0f\xd3k\x1a\xfc?\x7f\x8f\xa7\xd7\xfc\x11\xc6\xb8\xe1l\x8b\xfbN\x02\x16u\xdb\xee\xbdYN$\x9c&\xa0^K\v\xfd\xdd\xc1\xfe\xcd\xb1\f\x8f^\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x86\xdf\x98\xaf\x8a\x19%\xce\x8e*qIOR\x04\"\xb0\xfaV\xde/5H\xeb\x1aW*\x82J\xa2\x0f_+;_\xfb\x02\xab\xe2A\xe2z\xeab\xc7\xc4\xed(\xeaQM\xeb\x83(Nx\xa9\xed[c\xf2\xb9\r\x8b=o\xb5\x15\xb8\x1b\x8aO\xe1\xa9\xedk\xac\t\xae\x8c\x95K\xe1\xbf\xfb\xecqc\x16\x0f\x0f\xf9\xe3uZ\xc8\xf3\x94\x1d\t\x00\x00\x00\x00\x00\x00\x00\xbc\xc5\xac\xfc_\x18a\xcd\xc3z%\xf5?\xab\xe1\xd0WD:\x12\xba\xcd\xf8\xd5\xa1j\xba\v b\x92m\x8c\xae\x9c^\xcd\x127,u\xf5U\xd6\xd7.X\x9e\x9e\xfb\xa8\x1f\xf2\xf8\x04\xc0\xa7w\xf4\x02\xe3\xc7K\xa6\xc9\xea\x88\x94\xb6\xcb&\xddx\xf6!D\xcc\xe2\xe9\xea\x043\x16C\xd9\x7f:\x81\xd8\x83\xb3;T\xeaH\x92\xbf\x10j\b\xf2\xe7\xc5}\x0e\xb0?\x89\xc5Bu\xf0\x03\xa1,\xb6\xef\x04\x04\x85\x13m\xb6\a\xce\xfb\xf1\x00\xc2\x038h\xf3\xe8\xfcp\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe01K\x81\xc5\x89u\xaf\x03\xd1\xd9\x97G \x8f\xb5\x9f\xea=K\xdb3\xad\\\xbb\x80\xf0\xe4\x17 \xf6\xc9\xfe>\xcf\xe9T\x1a\x82\x1fi\xfe\xcf\xdd\xd8O\x85E\xe1H\xc2\x96\x1e\xc6?t\xec\x9c\x1a\':\xd5\x89\x9f\xc9rSk\x96`\x19\x96\xd8xO\xa7+\xefB\x10\xab\xe0\xdf\x8e\':\xca\xe4v.3\xf6\'G\xff\xee\xfdT\xd9>4\xc3\x8c\x1aNZM\x87\x9c$\x8b \xe5\xbf\f\xa1\x7f0\xccLQ\xc38\xe4\x8c+\xa6\x19@\x9f\x136', 0x100000a3d5) (async) write$auto(r2, &(0x7f00000005c0)='/Eev/audio1\x00VI\xa3\xaa\xb1\xcb\b\xd7lW\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C\x15\xc4D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\x91\xc1\xef(,\b\x83\xf1I\'Z:\x8d\xa0o\xf3\xe0\xb4R\x18\xec\x05\x89[\xfd\xa8\xef[\xe6\xe4*f\xfa\xe9\b\xec t\x95\xf8A\xc1\xa9YVA\x80\xd4I)G\xd9\xffz\x1e/\xd4\xfd\x1e\xdf\xf6\xe6\x95\"q\x80\x8a\xab\xb2\x99\xff\x96c+\x8b\xb6\x11\x95\x02\xf1K\x12\xcb\xaa\\Q\xb1\xd7\xe4\xaaP\b\xc6a\xbf\xed\xfa b\x1d\xde\x13)E\xf8\xa0\xc0I\xba&\xac\x17\x0f\xd3k\x1a\xfc?\x7f\x8f\xa7\xd7\xfc\x11\xc6\xb8\xe1l\x8b\xfbN\x02\x16u\xdb\xee\xbdYN$\x9c&\xa0^K\v\xfd\xdd\xc1\xfe\xcd\xb1\f\x8f^\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x86\xdf\x98\xaf\x8a\x19%\xce\x8e*qIOR\x04\"\xb0\xfaV\xde/5H\xeb\x1aW*\x82J\xa2\x0f_+;_\xfb\x02\xab\xe2A\xe2z\xeab\xc7\xc4\xed(\xeaQM\xeb\x83(Nx\xa9\xed[c\xf2\xb9\r\x8b=o\xb5\x15\xb8\x1b\x8aO\xe1\xa9\xedk\xac\t\xae\x8c\x95K\xe1\xbf\xfb\xecqc\x16\x0f\x0f\xf9\xe3uZ\xc8\xf3\x94\x1d\t\x00\x00\x00\x00\x00\x00\x00\xbc\xc5\xac\xfc_\x18a\xcd\xc3z%\xf5?\xab\xe1\xd0WD:\x12\xba\xcd\xf8\xd5\xa1j\xba\v b\x92m\x8c\xae\x9c^\xcd\x127,u\xf5U\xd6\xd7.X\x9e\x9e\xfb\xa8\x1f\xf2\xf8\x04\xc0\xa7w\xf4\x02\xe3\xc7K\xa6\xc9\xea\x88\x94\xb6\xcb&\xddx\xf6!D\xcc\xe2\xe9\xea\x043\x16C\xd9\x7f:\x81\xd8\x83\xb3;T\xeaH\x92\xbf\x10j\b\xf2\xe7\xc5}\x0e\xb0?\x89\xc5Bu\xf0\x03\xa1,\xb6\xef\x04\x04\x85\x13m\xb6\a\xce\xfb\xf1\x00\xc2\x038h\xf3\xe8\xfcp\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe01K\x81\xc5\x89u\xaf\x03\xd1\xd9\x97G \x8f\xb5\x9f\xea=K\xdb3\xad\\\xbb\x80\xf0\xe4\x17 \xf6\xc9\xfe>\xcf\xe9T\x1a\x82\x1fi\xfe\xcf\xdd\xd8O\x85E\xe1H\xc2\x96\x1e\xc6?t\xec\x9c\x1a\':\xd5\x89\x9f\xc9rSk\x96`\x19\x96\xd8xO\xa7+\xefB\x10\xab\xe0\xdf\x8e\':\xca\xe4v.3\xf6\'G\xff\xee\xfdT\xd9>4\xc3\x8c\x1aNZM\x87\x9c$\x8b \xe5\xbf\f\xa1\x7f0\xccLQ\xc38\xe4\x8c+\xa6\x19@\x9f\x136', 0x100000a3d5) clone$auto(0x8, 0xcada, &(0x7f0000000500)=0x7ff, &(0x7f0000000540)=0x5284, 0x7) (async) r3 = clone$auto(0x8, 0xcada, &(0x7f0000000500)=0x7ff, &(0x7f0000000540)=0x5284, 0x7) capset$auto(&(0x7f0000000580)={0x9, r3}, &(0x7f00000008c0)={0x5, 0x4}) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) madvise$auto(0x0, 0x200007, 0x19) madvise$auto(0x0, 0xffffffffffff0001, 0x15) ioctl$auto_BLKTRACESETUP32(r1, 0xc0401273, &(0x7f00000000c0)={"4e225f7f15f80ed0ad3099cfed60478f5f20d23fb9a52a0885f42004c2c8497f", 0xfffa, 0x2, 0xa, 0xf, 0x800000000000, 0xffffffffffffffff}) (async) ioctl$auto_BLKTRACESETUP32(r1, 0xc0401273, &(0x7f00000000c0)={"4e225f7f15f80ed0ad3099cfed60478f5f20d23fb9a52a0885f42004c2c8497f", 0xfffa, 0x2, 0xa, 0xf, 0x800000000000, 0xffffffffffffffff}) sendmsg$auto_NL80211_CMD_SET_BEACON(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)={0x9c, 0x0, 0x10, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_SUPPORT_MESH_AUTH={0x4}, @NL80211_ATTR_TX_RATES={0x3c, 0x5a, 0x0, 0x1, [@typed={0x4, 0xc1}, @typed={0x8, 0x9d, 0x0, 0x0, @pid=r4}, @generic="cc7bab268bf0e6442ab1fa530c2dd2951d6bb122", @typed={0x8, 0x109, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x7, 0xab, 0x0, 0x0, @binary="407095"}, @typed={0x6, 0xf7, 0x0, 0x0, @str='.\x00'}]}, @NL80211_ATTR_SSID={0xe, 0x34, "79b93a3af3cf55e1eb45"}, @NL80211_ATTR_REG_INDOOR={0x4}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, "2d602f5bcaec978baedcdac259ebb8889791408a9db2edcac99b"}, @NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0x7}, @NL80211_ATTR_TWT_RESPONDER={0x4}, @NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0x5}]}, 0x9c}, 0x1, 0x0, 0x0, 0x2000c040}, 0xc2) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) gettimeofday$auto(&(0x7f0000000080)={0x0, 0x100}, &(0x7f00000010c0)={0xb, 0x2}) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), r0) (async) r5 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), r0) sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r1, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000480)={&(0x7f00000002c0)={0x188, r5, 0x4, 0x70bd29, 0x25dfdbff, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x171, 0x1, 0x0, 0x1, [@nested={0xeb, 0x12a, 0x0, 0x1, [@generic="bb183a5349a5accf126dcbc1c2de67d9294289fee37edb02a39f840930d715127c8de09ccd3cceb70581c93a36c6a8b3fd1321037e52588d6dee4bbb463e2feab8bce7798d27031831f6e8e551883eb9a90313984c50f8509e6d73e26f8bea5c77c4960596cb47e63f372ba847cbc4302dec7baeecb45aa4d7bcf6e4739dd1ebb4ef3298bae72ca59330741ede66fd14019c8224ffe4a0a70db54ff7663b0ee910a7095fd06652f748d7d0feb67a05c3941c303aa95b124993e5995538dd1b7905c66064930275a33b3c49dd9edddc88bd3b9a5001b380dcc2b1e13a570ea64c4e9d8338ef08fd"]}, @generic="2713464b12ab7435625ba0ef199394c60283ed33777e548234af6c36eca124b1d331c51854e727b491340bf0e5ad8566ece7ecce49474bc72cfd8dec724dfa2bf4413cb843c266b1d93adb97cc4013af23f9238539", @nested={0x2c, 0x1, 0x0, 0x1, [@nested={0x4, 0x4}, @nested={0x4, 0xe8}, @typed={0xc, 0x6d, 0x0, 0x0, @u64=0x8}, @typed={0xb, 0x15, 0x0, 0x0, @str='\xc8\x81^/\xc3*\x00'}, @nested={0x4, 0x101}, @typed={0x4, 0x11e}]}]}]}, 0x188}, 0x1, 0x0, 0x0, 0x40045}, 0x8901) (async) sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r1, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000480)={&(0x7f00000002c0)={0x188, r5, 0x4, 0x70bd29, 0x25dfdbff, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x171, 0x1, 0x0, 0x1, [@nested={0xeb, 0x12a, 0x0, 0x1, [@generic="bb183a5349a5accf126dcbc1c2de67d9294289fee37edb02a39f840930d715127c8de09ccd3cceb70581c93a36c6a8b3fd1321037e52588d6dee4bbb463e2feab8bce7798d27031831f6e8e551883eb9a90313984c50f8509e6d73e26f8bea5c77c4960596cb47e63f372ba847cbc4302dec7baeecb45aa4d7bcf6e4739dd1ebb4ef3298bae72ca59330741ede66fd14019c8224ffe4a0a70db54ff7663b0ee910a7095fd06652f748d7d0feb67a05c3941c303aa95b124993e5995538dd1b7905c66064930275a33b3c49dd9edddc88bd3b9a5001b380dcc2b1e13a570ea64c4e9d8338ef08fd"]}, @generic="2713464b12ab7435625ba0ef199394c60283ed33777e548234af6c36eca124b1d331c51854e727b491340bf0e5ad8566ece7ecce49474bc72cfd8dec724dfa2bf4413cb843c266b1d93adb97cc4013af23f9238539", @nested={0x2c, 0x1, 0x0, 0x1, [@nested={0x4, 0x4}, @nested={0x4, 0xe8}, @typed={0xc, 0x6d, 0x0, 0x0, @u64=0x8}, @typed={0xb, 0x15, 0x0, 0x0, @str='\xc8\x81^/\xc3*\x00'}, @nested={0x4, 0x101}, @typed={0x4, 0x11e}]}]}]}, 0x188}, 0x1, 0x0, 0x0, 0x40045}, 0x8901) 12.277275234s ago: executing program 1 (id=2370): r0 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000003b40)={'xfrm0\x00'}) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r1, &(0x7f0000004380)={0x0, 0x38, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x2000c884}, 0x810) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r1) read$auto(r1, &(0x7f0000000040)='nl80211\x00', 0xbe62) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030000020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0005"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40000) openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/fscreate\x00', 0x1, 0x0) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r2 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x100, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_CHANNEL_INFO2(r2, 0x80184132, 0x0) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/security/tomoyo/manager\x00', 0x200, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0) r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r5 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC1D0p\x00', 0x0, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0) read$auto_gpiolib_fops_(r4, &(0x7f0000000240)=""/66, 0x42) ioctl$auto_BLKRRPART(r6, 0x125f, 0x700000000000000) msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004) mmap$auto(0x1, 0x2020006, 0x3, 0xeb1, r5, 0x0) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f0000000340)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cec23\x00', 0x4700, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0xffffffffffffc318, 0x948b, 0x3, 0x15f4da06, 0x3, 0x40000003, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) socket(0x1, 0x1, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) 9.245893565s ago: executing program 4 (id=2371): madvise$auto(0x0, 0x2000040080000004, 0xe) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) sendfile$auto(r1, r1, 0x0, 0x3) (fail_nth: 5) 7.97667265s ago: executing program 0 (id=2373): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) socket(0x2, 0x2, 0x0) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x5, @loopback}, 0xce2a) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) write$auto(0xca, 0x0, 0x2d9) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x2c, 0x1, 0x3) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/block/zram0/mm_stat\x00', 0x10b342, 0x0) pwrite64$auto(r0, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x06\x00\x06\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0x2, 0x3) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ad00, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) write$auto(0x3, 0x0, 0xffd8) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x8101, 0x0, 0xd0, 0x5, 0x6, 0x0, 0x1, 0x3691, 0x0, {0x100000000, 0x10000}, 0x7ffffffffffffffe, 0x40000000000006, 0x9, 0x1008000, 0x0, 0x80000004, 0x4bbd, 0xffffffffffff628e, 0xa747, 0xdeaa, 0x804}) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0x28, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) write$auto(r1, 0x0, 0x100000a3d9) 7.90219175s ago: executing program 1 (id=2374): openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/trace_pipe\x00', 0x68200, 0x0) select$auto(0x5, 0x0, &(0x7f00000001c0)={[0x8, 0x9e7, 0xf, 0x2, 0xe, 0x1, 0x9, 0x4, 0xc68, 0x3, 0x40, 0x8f66, 0x5, 0x9, 0x9, 0x7fffffffffffffff]}, 0x0, 0x0) openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_TASKSTATS_CMD_GET(0xffffffffffffffff, 0x0, 0x20000000) write$auto(0xca, &(0x7f0000000040)='\x04>\x01\r\xfb\xff\xf6OL\xc8\xbe\x94\xf2\xa2\x00\x00', 0x2d9) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x101202, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmsg$auto_IEEE802154_LLSEC_ADD_KEY(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x8001) socket(0x11, 0x2, 0x0) socket(0xa, 0x2, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x101302, 0x0) socket(0x1d, 0x2, 0x46) io_uring_setup$auto(0x6, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x3, 0xd49) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) mmap$auto(0x40000000007, 0x20009, 0x4400000000df, 0xc157, 0x101000000000000, 0x7) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mq_open$auto(0x0, 0x5, 0x0, 0x0) socket(0x11, 0x80003, 0xf) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) close_range$auto(0xffffffffffffffff, r0, 0x2) 6.839603127s ago: executing program 0 (id=2375): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x9, 0x3, 0x7, 0xfffffffffffffffd, 0x5, 0x3, 0x2000000000230006, 0x0, 0x7, 0x5, 0x2, 0x7, 0xaf, 0x9, 0x2, 0x3, 0x103, 0xfffffffffffffff7, 0x0, 0x0, 0x8000002}, 0x1fe, 0x81) socket(0x10, 0x2, 0x0) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r0, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00', @ANYRES16=r1, @ANYBLOB="010326bd7000ffdbdf252d"], 0x20}, 0x1, 0x0, 0x0, 0x2404c012}, 0x80) 6.759303376s ago: executing program 1 (id=2376): mmap$auto(0xffffffffffffffff, 0x400008, 0xde, 0x209b75, 0x2, 0x9) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400) openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/lru_gen_full\x00', 0x8a302, 0x0) socket(0x1a, 0x1, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$auto_SG_GET_RESERVED_SIZE(0xffffffffffffffff, 0x2272, &(0x7f0000000080)) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x5, 0x0) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) times$auto(0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) socket(0x2b, 0x1, 0x0) mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="04002bbd7004ffdbdf250500000008000500030000000c00018008000302"], 0x28}, 0x1, 0x0, 0x0, 0x278e18a297a8387c}, 0x24000802) close_range$auto(0x2, 0x8000, 0x0) socket(0xa, 0x5, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fddbdf250300000004000800040003374b0008"], 0x20}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="db002cbd7000fbdbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) bind$auto(0x3, 0x0, 0x6a) io_uring_setup$auto(0x6, 0x0) 6.62525525s ago: executing program 0 (id=2377): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020008, 0x7, 0xb9, 0xfffffffffffffffa, 0x9) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) fcntl$auto(0x3, 0x4, 0xa553) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x7, 0x13) swapon$auto(&(0x7f0000000000)='/dev/loop7\x00', 0x4) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) socket(0x25, 0x6, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f00000000c0), r1) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="08000001", @ANYRES16=r2, @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800c00038008001500", @ANYRES32, @ANYRESOCT=r0], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0x20000000) mmap$auto(0x0, 0x20009, 0x3, 0x40000000000eb1, 0x401, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe98b, 0xdf, 0x18, 0x401, 0x8000) r3 = openat$auto_ocfs2_control_fops_stack_user(0xffffffffffffff9c, &(0x7f0000000000), 0x280, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = socket(0x15, 0x5, 0x0) setsockopt$auto(r4, 0x114, 0x5, 0x0, 0x8000) read$auto_ocfs2_control_fops_stack_user(r3, &(0x7f0000000040)=""/1, 0x1) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) r5 = fsopen$auto(0x0, 0x1) fsconfig$auto(r5, 0x8, 0x0, 0x0, 0x0) read$auto_vcs_fops_vc_screen(r5, &(0x7f0000000100)=""/183, 0xb7) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) close_range$auto(0x2, 0x8, 0x0) fremovexattr$auto(0xc8, &(0x7f00000001c0)=',%{}\x00') setgroups$auto(0xe32, 0x0) 5.528998208s ago: executing program 0 (id=2378): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0) r1 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f0000000040)="4a67d23edb3100000000000000000075210d2de48306c2fb", 0x49}, 0x5, 0x0, 0x5}, 0x1}, 0x2, 0x3) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) lseek$auto(0x3, 0x2, 0x4) openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x66ab80, 0x0) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000400), 0x101000, 0x0) ioctl$auto_UI_SET_EVBIT(r2, 0x40045564, &(0x7f0000000140)=0xfffffffd) socket(0xf, 0x3, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x189100, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x2, 0xa, 0xe) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) readv$auto(0x3, 0x0, 0x200000000087) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) socket(0xa, 0x1, 0x84) socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_IPVS_CMD_SET_DEST(0xffffffffffffffff, 0x0, 0x60048040) 4.781833487s ago: executing program 4 (id=2379): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x18dd01, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/ksm/ksm_zero_pages\x00', 0x80000, 0x0) mmap$auto(0x0, 0x3, 0xa, 0xebe, 0xfffffffffffffffa, 0x710) sigaltstack$auto(&(0x7f0000000100)={0x0, 0x80000002, 0x8001}, 0x0) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f00000000c0), 0x389182, 0x0) r1 = io_uring_setup$auto(0x8000, 0x0) r2 = ioctl$NS_GET_PARENT(r1, 0xb702, 0x0) setns(r2, 0x2000000) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) mmap$auto(0x0, 0x7f24a6d2, 0xdf, 0x9b72, r0, 0x100400000000040) r3 = openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, 0x0, 0x101000, 0x0) openat$auto_sync_info_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x101100, 0x0) sendmsg$auto_NL80211_CMD_MODIFY_LINK_STA(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x805) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x2, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) r4 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) close_range$auto(r4, r3, 0x1ffffff) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0x6}, 0x55) semctl$auto(0x7, 0x2, 0x13, 0x1) lsm_list_modules$auto(0x0, 0x0, 0x0) statmount$auto(0x0, 0x0, 0x10, 0xd) close_range$auto(0x2, 0x8, 0x0) r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x301802, 0x0) ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0x8208ae63, 0x38) madvise$auto(0x2, 0x241007, 0x15) 4.176460669s ago: executing program 1 (id=2380): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x169780, 0x0) bpf$auto_BPF_ENABLE_STATS(0x20, &(0x7f0000000180)=@bpf_attr_0={0x3ff, 0x8, 0xffff, 0x7fffffff, 0xc2, 0xffffffffffffffff, 0x7, "3f8850b8c665dabcdf3c01e5fde04738", 0x0, 0xffffffffffffffff, 0x10001, 0x0, 0x1, 0x2}, 0xffffffc0) setsockopt$auto_SO_DONTROUTE(0xffffffffffffffff, 0x7, 0x5, &(0x7f0000000400)='-\xaf\x00', 0xffffc9e0) r0 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="5c000000aa34bb6d3b8372e7c80763d2e3083194bd398ac49195ce0c7d01174e0fa314ef4736536cef740efc5f9cedb968d3ebafe691824c15f583b3adc34b7c05641c90f68b4c517e5d561f239bdfbb84df43490b51d9916e2b4ed4d2ebca84174c7d9ea5a42f6a42ef2f9824", @ANYRES16=r0, @ANYBLOB="040025bd7000fcdbdf25050000000c00010001000000000000000c000100cf000000000000000c000100cd000000000000000c00010001000000000000000c00010000020000000000000c0001000000000000000000"], 0x5c}, 0x1, 0x0, 0x0, 0x8000}, 0x20000010) mmap$auto(0xf941, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = syz_clone3(&(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0}}, 0x58) waitid$auto_P_PGID(0x2, r1, &(0x7f00000001c0)={@_si_pad}, 0xffffffff, &(0x7f0000000240)={{0x21, 0xbd7}, {0x1, 0x1}, 0x3ff, 0x6, 0x80000001, 0xffffffffffff7fff, 0xa, 0xcfc, 0x8, 0x1959, 0x6, 0x8, 0xccc, 0x0, 0x7, 0x6}) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x7, 0xb}, 0x800009}, 0x5, 0x20000000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) write$auto(r2, 0x0, 0xfffffde9) r3 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x100, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x2, 0x2) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000000)={'ip6_vti0\x00'}) getsockopt$auto_SO_KEEPALIVE(r2, 0x8, 0x9, &(0x7f0000000000)='/dev/usbmon2\x00', &(0x7f0000000180)=0x9) listen$auto(r3, 0x5) ioctl$auto_MON_IOCQ_URB_LEN(0xffffffffffffffff, 0x9201, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0xb0141, 0x0) socket(0x1f, 0x800, 0xffffff01) ioctl$auto(0xffffffffffffffff, 0xc0285629, 0xffffffffffffffff) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x6482, 0x0) unshare$auto(0x40000080) 3.798432448s ago: executing program 0 (id=2381): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x169780, 0x0) bpf$auto_BPF_ENABLE_STATS(0x20, &(0x7f0000000180)=@bpf_attr_0={0x3ff, 0x8, 0xffff, 0x7fffffff, 0xc2, 0xffffffffffffffff, 0x7, "3f8850b8c665dabcdf3c01e5fde04738", 0x0, 0xffffffffffffffff, 0x10001, 0x0, 0x1, 0x2}, 0xffffffc0) setsockopt$auto_SO_DONTROUTE(0xffffffffffffffff, 0x7, 0x5, &(0x7f0000000400)='-\xaf\x00', 0xffffc9e0) r0 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="5c000000aa34bb6d3b8372e7c80763d2e3083194bd398ac49195ce0c7d01174e0fa314ef4736536cef740efc5f9cedb968d3ebafe691824c15f583b3adc34b7c05641c90f68b4c517e5d561f239bdfbb84df43490b51d9916e2b4ed4d2ebca84174c7d9ea5a42f6a42ef2f9824", @ANYRES16=r0, @ANYBLOB="040025bd7000fcdbdf25050000000c00010001000000000000000c000100cf000000000000000c000100cd000000000000000c00010001000000000000000c00010000020000000000000c0001000000000000000000"], 0x5c}, 0x1, 0x0, 0x0, 0x8000}, 0x20000010) mmap$auto(0xf941, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = syz_clone3(&(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0}}, 0x58) waitid$auto_P_PGID(0x2, r1, &(0x7f00000001c0)={@_si_pad}, 0xffffffff, &(0x7f0000000240)={{0x21, 0xbd7}, {0x1, 0x1}, 0x3ff, 0x6, 0x80000001, 0xffffffffffff7fff, 0xa, 0xcfc, 0x8, 0x1959, 0x6, 0x8, 0xccc, 0x0, 0x7, 0x6}) writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x7, 0xb}, 0x800009}, 0x5, 0x20000000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) write$auto(r2, 0x0, 0xfffffde9) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x100, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x2, 0x2) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x89fc, &(0x7f0000000000)={'ip6_vti0\x00'}) getsockopt$auto_SO_KEEPALIVE(r2, 0x8, 0x9, &(0x7f0000000000)='/dev/usbmon2\x00', &(0x7f0000000180)=0x9) r4 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000080)='/dev/usbmon2\x00', 0x40080, 0x0) ioctl$auto_MON_IOCQ_URB_LEN(r4, 0x9201, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0xb0141, 0x0) socket(0x1f, 0x800, 0xffffff01) ioctl$auto(0xffffffffffffffff, 0xc0285629, 0xffffffffffffffff) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x6482, 0x0) unshare$auto(0x40000080) 626.71276ms ago: executing program 4 (id=2382): r0 = prctl$auto_PR_SET_MM_START_DATA(0x80000001, 0x3, 0xffffffffffffffff, 0xa3, 0x1000) r1 = socket(0x2b, 0x1, 0x1) setsockopt$auto(r1, 0x29, 0x21, 0x0, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) r2 = socket(0x26, 0x80805, 0x0) mmap$auto(0x0, 0x3, 0x9, 0x114009b76, r0, 0x6) r3 = socket(0x22, 0x2, 0x24) mmap$auto(0x3, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x200) r4 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_OVS_FLOW_CMD_GET(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYRES16=r4, @ANYBLOB="010029bd7000fedbdf2503000000040008000c0001800800100004000b"], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0x1ac}}, 0x801) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) getsockopt$auto(r3, 0x3, 0x1, 0x0, &(0x7f00000000c0)=0x1) r6 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) ioctl$auto_PPPIOCSMRU(r6, 0x40047438, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) getsockopt$auto_SO_PEEK_OFF(r2, 0x2b, 0x2a, &(0x7f0000000000)=',,,(!\x00', &(0x7f0000000040)) ioctl$auto(0x3, 0xff09, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000380), r0) socket(0x1d, 0x2, 0x6) r7 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xa, 0x3, 0xe, 0x940, 0xfffffff8, 0x3, 0x4, 0x1, 0x9, 0x5, 0x6, 0x7, 0x1001000, 0x8, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x4, 0x40000081) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r8], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x48840) r9 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r9, &(0x7f0000000240)={0x0, 0x52, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x8044) 559.103296ms ago: executing program 1 (id=2383): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x20e9, 0x103) open(&(0x7f0000000000)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x8000, 0x50) lseek$auto(0x3, 0x7ffffffffffffffd, 0x0) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x51, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002dbd7000f9dbdf2501000000060002000100000005000700570000000800090108000000050004000300000014001f00fe88000000000000000000000000000114002000ff010000000000000000000000000001"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) move_pages$auto(0x0, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) write$auto(r0, &(0x7f0000000040)='S\x00\x00\x00\xfe\xff\xff\xff', 0x8587) 385.858347ms ago: executing program 4 (id=2384): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x9, 0x3, 0x7, 0xfffffffffffffffd, 0x5, 0x3, 0x2000000000230006, 0x0, 0x7, 0x5, 0x2, 0x7, 0xaf, 0x9, 0x2, 0x3, 0x103, 0xfffffffffffffff7, 0x0, 0x0, 0x8000002}, 0x1fe, 0x81) socket(0x10, 0x2, 0x0) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r0, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00', @ANYRES16=r1, @ANYBLOB="010326bd7000ffdbdf252d"], 0x20}, 0x1, 0x0, 0x0, 0x2404c012}, 0x80) 241.519668ms ago: executing program 0 (id=2385): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x810004, 0xfff, 0x8000000008012, 0x3, 0x8000) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) bind$auto(0x3, 0x0, 0x6a) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/security/tomoyo/manager\x00', 0x200, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000480), 0xffffffffffffffff) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000022c0)='/sys/devices/virtual/net/rose9/link_mode\x00', 0x8500, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) read$auto_proc_fail_nth_operations_base(r1, 0x0, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x0, 0x0) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 180.274042ms ago: executing program 4 (id=2386): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) io_uring_setup$auto(0x6, 0x0) openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) sendfile$auto(r0, r0, 0x0, 0x3) 0s ago: executing program 1 (id=2387): madvise$auto(0x0, 0x2000040080000004, 0xe) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) syz_open_procfs$namespace(0xffffffffffffffff, 0x0) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r1 = socket(0x2, 0xa, 0x1) r2 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, r1, 0x10000}, 0x10) mmap$auto(0x200000, 0x200a, 0xfffffffffffffff9, 0xffffffffffff5553, r2, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0) read$auto(r3, 0x0, 0x39b8) madvise$auto(0x0, 0x2003f0, 0x15) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0) ioperm$auto(0x4, 0xbc6, 0x81) getrandom$auto(0x0, 0x6000000, 0x3) close_range$auto(0x2, 0x8000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) pipe$auto(0x0) socket(0xa, 0x801, 0x84) open(&(0x7f0000000000)='.\x00', 0xc00, 0x409) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000440), 0x220901, 0x0) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000d00), 0x48900, 0x0) kernel console output (not intermixed with test programs): ftover after parsing attributes in process `syz.2.1965'. [ 661.154503][T24098] netlink: 252 bytes leftover after parsing attributes in process `syz.2.1965'. [ 661.334589][T24109] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1966'. [ 662.401208][T24149] FAULT_INJECTION: forcing a failure. [ 662.401208][T24149] name failslab, interval 1, probability 0, space 0, times 0 [ 662.469102][T24149] CPU: 0 UID: 0 PID: 24149 Comm: syz.3.1972 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 662.469163][T24149] Tainted: [I]=FIRMWARE_WORKAROUND [ 662.469177][T24149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 662.469196][T24149] Call Trace: [ 662.469208][T24149] [ 662.469221][T24149] dump_stack_lvl+0x16c/0x1f0 [ 662.469277][T24149] should_fail_ex+0x512/0x640 [ 662.469325][T24149] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 662.469375][T24149] should_failslab+0xc2/0x120 [ 662.469407][T24149] __kmalloc_cache_noprof+0x6a/0x3e0 [ 662.469506][T24149] ? acct_on+0x57/0x870 [ 662.469634][T24149] acct_on+0x57/0x870 [ 662.469685][T24149] __x64_sys_acct+0xaf/0x230 [ 662.469733][T24149] ? lockdep_hardirqs_on+0x7c/0x110 [ 662.469783][T24149] do_syscall_64+0xcd/0x490 [ 662.469839][T24149] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 662.469874][T24149] RIP: 0033:0x7f119898e929 [ 662.469902][T24149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 662.469936][T24149] RSP: 002b:00007f1199786038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 662.469968][T24149] RAX: ffffffffffffffda RBX: 00007f1198bb5fa0 RCX: 00007f119898e929 [ 662.469990][T24149] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000080 [ 662.470012][T24149] RBP: 00007f1198a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 662.470040][T24149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 662.470061][T24149] R13: 0000000000000000 R14: 00007f1198bb5fa0 R15: 00007ffff3ea0f98 [ 662.470106][T24149] [ 662.806699][T24130] FAULT_INJECTION: forcing a failure. [ 662.806699][T24130] name failslab, interval 1, probability 0, space 0, times 0 [ 662.980727][T24130] CPU: 1 UID: 0 PID: 24130 Comm: syz.0.1969 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 662.980765][T24130] Tainted: [I]=FIRMWARE_WORKAROUND [ 662.980773][T24130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 662.980786][T24130] Call Trace: [ 662.980794][T24130] [ 662.980802][T24130] dump_stack_lvl+0x16c/0x1f0 [ 662.980839][T24130] should_fail_ex+0x512/0x640 [ 662.980871][T24130] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 662.980903][T24130] should_failslab+0xc2/0x120 [ 662.980924][T24130] __kmalloc_cache_noprof+0x6a/0x3e0 [ 662.980953][T24130] ? lockdep_init_map_type+0x5c/0x280 [ 662.980983][T24130] ? snd_seq_prioq_new+0x3f/0x110 [ 662.981015][T24130] snd_seq_prioq_new+0x3f/0x110 [ 662.981043][T24130] snd_seq_queue_alloc+0x153/0x550 [ 662.981073][T24130] snd_seq_ioctl_create_queue+0xa9/0x380 [ 662.981107][T24130] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 662.981131][T24130] alloc_seq_queue+0xda/0x180 [ 662.981150][T24130] ? __pfx_alloc_seq_queue+0x10/0x10 [ 662.981188][T24130] ? mark_held_locks+0x49/0x80 [ 662.981216][T24130] ? _raw_spin_unlock_irq+0x23/0x50 [ 662.981247][T24130] snd_seq_oss_open+0x38c/0xa20 [ 662.981272][T24130] odev_open+0x6f/0x90 [ 662.981303][T24130] ? __pfx_odev_open+0x10/0x10 [ 662.981335][T24130] soundcore_open+0x409/0x580 [ 662.981369][T24130] ? __pfx_soundcore_open+0x10/0x10 [ 662.981402][T24130] chrdev_open+0x234/0x6a0 [ 662.981442][T24130] ? __pfx_apparmor_file_open+0x10/0x10 [ 662.981471][T24130] ? __pfx_chrdev_open+0x10/0x10 [ 662.981507][T24130] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 662.981541][T24130] do_dentry_open+0x741/0x1c10 [ 662.981574][T24130] ? __pfx_chrdev_open+0x10/0x10 [ 662.981613][T24130] vfs_open+0x82/0x3f0 [ 662.981639][T24130] path_openat+0x1de4/0x2cb0 [ 662.981678][T24130] ? __pfx_path_openat+0x10/0x10 [ 662.981711][T24130] ? __lock_acquire+0xb8a/0x1c90 [ 662.981766][T24130] do_filp_open+0x20b/0x470 [ 662.981800][T24130] ? __pfx_do_filp_open+0x10/0x10 [ 662.981855][T24130] ? alloc_fd+0x471/0x7d0 [ 662.981893][T24130] do_sys_openat2+0x11b/0x1d0 [ 662.981919][T24130] ? __pfx_do_sys_openat2+0x10/0x10 [ 662.981956][T24130] __x64_sys_openat+0x174/0x210 [ 662.981982][T24130] ? __pfx___x64_sys_openat+0x10/0x10 [ 662.982020][T24130] do_syscall_64+0xcd/0x490 [ 662.982057][T24130] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 662.982080][T24130] RIP: 0033:0x7f8f4e78e929 [ 662.982098][T24130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 662.982120][T24130] RSP: 002b:00007f8f4f646038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 662.982142][T24130] RAX: ffffffffffffffda RBX: 00007f8f4e9b6080 RCX: 00007f8f4e78e929 [ 662.982158][T24130] RDX: 0000000000000000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 662.982173][T24130] RBP: 00007f8f4e810b39 R08: 0000000000000000 R09: 0000000000000000 [ 662.982187][T24130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 662.982200][T24130] R13: 0000000000000000 R14: 00007f8f4e9b6080 R15: 00007ffc8c2ce888 [ 662.982229][T24130] [ 664.046616][T24011] delete_channel: no stack [ 664.143082][T24184] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1975'. [ 664.170765][T24156] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 664.193425][T24156] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 664.250291][T24156] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 664.266677][T24156] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 665.804511][T24084] delete_channel: no stack [ 666.213106][T16329] Bluetooth: hci2: command 0x0c1a tx timeout [ 666.219216][T16329] Bluetooth: hci0: command 0x0c1a tx timeout [ 666.293311][ T5851] Bluetooth: hci3: command 0x0c1a tx timeout [ 666.299520][T16329] Bluetooth: hci1: command 0x0c1a tx timeout [ 666.694966][T16329] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 666.695000][T16329] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 666.709880][T16329] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 666.709925][T16329] Bluetooth: hci3: adv larger than maximum supported [ 666.717060][T16329] Bluetooth: hci3: Unknown advertising packet type: 0x7b [ 666.723837][T16329] Bluetooth: hci3: adv larger than maximum supported [ 666.730943][T16329] Bluetooth: hci3: Malformed LE Event: 0x0d [ 669.981999][T24365] FAULT_INJECTION: forcing a failure. [ 669.981999][T24365] name failslab, interval 1, probability 0, space 0, times 0 [ 670.006308][T24366] FAULT_INJECTION: forcing a failure. [ 670.006308][T24366] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 670.029859][T24365] CPU: 1 UID: 0 PID: 24365 Comm: syz.1.1992 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 670.029912][T24365] Tainted: [I]=FIRMWARE_WORKAROUND [ 670.029925][T24365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 670.029944][T24365] Call Trace: [ 670.029966][T24365] [ 670.029978][T24365] dump_stack_lvl+0x16c/0x1f0 [ 670.030031][T24365] should_fail_ex+0x512/0x640 [ 670.030078][T24365] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 670.030133][T24365] should_failslab+0xc2/0x120 [ 670.030162][T24365] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 670.030212][T24365] ? __alloc_skb+0x2b2/0x380 [ 670.030263][T24365] __alloc_skb+0x2b2/0x380 [ 670.030307][T24365] ? __pfx___alloc_skb+0x10/0x10 [ 670.030357][T24365] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 670.030435][T24365] netlink_alloc_large_skb+0x69/0x130 [ 670.030473][T24365] netlink_sendmsg+0x6a1/0xdd0 [ 670.030515][T24365] ? __pfx_netlink_sendmsg+0x10/0x10 [ 670.030567][T24365] ____sys_sendmsg+0xa95/0xc70 [ 670.030606][T24365] ? copy_msghdr_from_user+0x10a/0x160 [ 670.030656][T24365] ? __pfx_____sys_sendmsg+0x10/0x10 [ 670.030714][T24365] ___sys_sendmsg+0x134/0x1d0 [ 670.030766][T24365] ? __pfx____sys_sendmsg+0x10/0x10 [ 670.030823][T24365] ? __lock_acquire+0x622/0x1c90 [ 670.030923][T24365] __sys_sendmsg+0x16d/0x220 [ 670.030974][T24365] ? __pfx___sys_sendmsg+0x10/0x10 [ 670.031054][T24365] do_syscall_64+0xcd/0x490 [ 670.031110][T24365] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 670.031143][T24365] RIP: 0033:0x7f199cd8e929 [ 670.031168][T24365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 670.031200][T24365] RSP: 002b:00007f199db8b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 670.031230][T24365] RAX: ffffffffffffffda RBX: 00007f199cfb6080 RCX: 00007f199cd8e929 [ 670.031250][T24365] RDX: 0000000000000888 RSI: 0000200000000040 RDI: 0000000000000003 [ 670.031269][T24365] RBP: 00007f199db8b090 R08: 0000000000000000 R09: 0000000000000000 [ 670.031289][T24365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 670.031308][T24365] R13: 0000000000000001 R14: 00007f199cfb6080 R15: 00007ffe5e3502b8 [ 670.031350][T24365] [ 670.254933][ C1] vkms_vblank_simulate: vblank timer overrun [ 670.280638][T24366] CPU: 1 UID: 0 PID: 24366 Comm: syz.0.1993 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 670.280689][T24366] Tainted: [I]=FIRMWARE_WORKAROUND [ 670.280700][T24366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 670.280716][T24366] Call Trace: [ 670.280725][T24366] [ 670.280736][T24366] dump_stack_lvl+0x16c/0x1f0 [ 670.280789][T24366] should_fail_ex+0x512/0x640 [ 670.280836][T24366] _copy_from_user+0x2e/0xd0 [ 670.280883][T24366] ____sys_sendmsg+0x607/0xc70 [ 670.280919][T24366] ? __pfx_____sys_sendmsg+0x10/0x10 [ 670.280956][T24366] ? __pfx__kstrtoull+0x10/0x10 [ 670.280997][T24366] ___sys_sendmsg+0x134/0x1d0 [ 670.281042][T24366] ? __pfx____sys_sendmsg+0x10/0x10 [ 670.281103][T24366] ? find_held_lock+0x2b/0x80 [ 670.281158][T24366] __sys_sendmmsg+0x200/0x420 [ 670.281206][T24366] ? __pfx___sys_sendmmsg+0x10/0x10 [ 670.281263][T24366] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 670.281321][T24366] ? fput+0x70/0xf0 [ 670.281344][T24366] ? ksys_write+0x1ac/0x250 [ 670.281396][T24366] ? __pfx_ksys_write+0x10/0x10 [ 670.281437][T24366] __x64_sys_sendmmsg+0x9c/0x100 [ 670.281474][T24366] ? lockdep_hardirqs_on+0x7c/0x110 [ 670.281511][T24366] do_syscall_64+0xcd/0x490 [ 670.281551][T24366] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 670.281577][T24366] RIP: 0033:0x7f8f4e78e929 [ 670.281595][T24366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 670.281620][T24366] RSP: 002b:00007f8f4f646038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 670.281644][T24366] RAX: ffffffffffffffda RBX: 00007f8f4e9b6080 RCX: 00007f8f4e78e929 [ 670.281661][T24366] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 000000000000000e [ 670.281679][T24366] RBP: 00007f8f4f646090 R08: 0000000000000000 R09: 0000000000000000 [ 670.281695][T24366] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 670.281710][T24366] R13: 0000000000000000 R14: 00007f8f4e9b6080 R15: 00007ffc8c2ce888 [ 670.281741][T24366] [ 670.486300][ C1] vkms_vblank_simulate: vblank timer overrun [ 673.762645][T24271] delete_channel: no stack [ 674.265628][T24474] netlink: 9343 bytes leftover after parsing attributes in process `syz.2.2005'. [ 674.425865][T24478] futex_wake_op: syz.1.2006 tries to shift op by -9; fix this program [ 674.434632][T24479] futex_wake_op: syz.1.2006 tries to shift op by -9; fix this program [ 675.621351][T24517] netlink: 252 bytes leftover after parsing attributes in process `syz.1.2009'. [ 675.663788][T24515] netlink: 252 bytes leftover after parsing attributes in process `syz.1.2009'. [ 677.007107][T24541] netlink: 252 bytes leftover after parsing attributes in process `syz.3.2016'. [ 677.123676][T24538] netlink: 252 bytes leftover after parsing attributes in process `syz.3.2016'. [ 677.195690][T24462] delete_channel: no stack [ 679.035910][T24553] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input78 [ 680.018004][T24613] MTRR 2 not used [ 683.452481][T24708] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2038'. [ 683.657821][T24700] FAULT_INJECTION: forcing a failure. [ 683.657821][T24700] name failslab, interval 1, probability 0, space 0, times 0 [ 683.708054][T24700] CPU: 1 UID: 0 PID: 24700 Comm: syz.2.2034 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 683.708096][T24700] Tainted: [I]=FIRMWARE_WORKAROUND [ 683.708105][T24700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 683.708120][T24700] Call Trace: [ 683.708128][T24700] [ 683.708137][T24700] dump_stack_lvl+0x16c/0x1f0 [ 683.708178][T24700] should_fail_ex+0x512/0x640 [ 683.708213][T24700] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 683.708248][T24700] should_failslab+0xc2/0x120 [ 683.708273][T24700] __kmalloc_cache_noprof+0x6a/0x3e0 [ 683.708306][T24700] ? lockdep_init_map_type+0x5c/0x280 [ 683.708340][T24700] ? snd_seq_prioq_new+0x3f/0x110 [ 683.708375][T24700] snd_seq_prioq_new+0x3f/0x110 [ 683.708406][T24700] snd_seq_queue_alloc+0x153/0x550 [ 683.708438][T24700] snd_seq_ioctl_create_queue+0xa9/0x380 [ 683.708475][T24700] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 683.708502][T24700] alloc_seq_queue+0xda/0x180 [ 683.708604][T24700] ? __pfx_alloc_seq_queue+0x10/0x10 [ 683.708644][T24700] ? mark_held_locks+0x49/0x80 [ 683.708676][T24700] ? _raw_spin_unlock_irq+0x23/0x50 [ 683.708711][T24700] snd_seq_oss_open+0x38c/0xa20 [ 683.708739][T24700] odev_open+0x6f/0x90 [ 683.708774][T24700] ? __pfx_odev_open+0x10/0x10 [ 683.708810][T24700] soundcore_open+0x409/0x580 [ 683.708849][T24700] ? __pfx_soundcore_open+0x10/0x10 [ 683.708885][T24700] chrdev_open+0x234/0x6a0 [ 683.708923][T24700] ? __pfx_apparmor_file_open+0x10/0x10 [ 683.708955][T24700] ? __pfx_chrdev_open+0x10/0x10 [ 683.708995][T24700] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 683.709034][T24700] do_dentry_open+0x741/0x1c10 [ 683.709072][T24700] ? __pfx_chrdev_open+0x10/0x10 [ 683.709190][T24700] vfs_open+0x82/0x3f0 [ 683.709222][T24700] path_openat+0x1de4/0x2cb0 [ 683.709268][T24700] ? __pfx_path_openat+0x10/0x10 [ 683.709305][T24700] ? __lock_acquire+0xb8a/0x1c90 [ 683.709343][T24700] do_filp_open+0x20b/0x470 [ 683.709378][T24700] ? __pfx_do_filp_open+0x10/0x10 [ 683.709435][T24700] ? alloc_fd+0x471/0x7d0 [ 683.709476][T24700] do_sys_openat2+0x11b/0x1d0 [ 683.709503][T24700] ? __pfx_do_sys_openat2+0x10/0x10 [ 683.709632][T24700] __x64_sys_openat+0x174/0x210 [ 683.709663][T24700] ? __pfx___x64_sys_openat+0x10/0x10 [ 683.709704][T24700] do_syscall_64+0xcd/0x490 [ 683.709744][T24700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 683.709770][T24700] RIP: 0033:0x7f4a7858e929 [ 683.709790][T24700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 683.709822][T24700] RSP: 002b:00007f4a793d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 683.709846][T24700] RAX: ffffffffffffffda RBX: 00007f4a787b6080 RCX: 00007f4a7858e929 [ 683.709862][T24700] RDX: 0000000000000000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 683.709878][T24700] RBP: 00007f4a78610b39 R08: 0000000000000000 R09: 0000000000000000 [ 683.709894][T24700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 683.709909][T24700] R13: 0000000000000000 R14: 00007f4a787b6080 R15: 00007ffc6c6bdb98 [ 683.709942][T24700] [ 683.827287][T24718] FAULT_INJECTION: forcing a failure. [ 683.827287][T24718] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 684.073765][T24718] CPU: 0 UID: 0 PID: 24718 Comm: syz.1.2041 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 684.073806][T24718] Tainted: [I]=FIRMWARE_WORKAROUND [ 684.073815][T24718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 684.073830][T24718] Call Trace: [ 684.073838][T24718] [ 684.073847][T24718] dump_stack_lvl+0x16c/0x1f0 [ 684.073886][T24718] should_fail_ex+0x512/0x640 [ 684.073925][T24718] _copy_from_user+0x2e/0xd0 [ 684.073963][T24718] copy_msghdr_from_user+0x98/0x160 [ 684.073999][T24718] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 684.074040][T24718] ? kfree+0x24f/0x4d0 [ 684.074077][T24718] ? __pfx__kstrtoull+0x10/0x10 [ 684.074124][T24718] ___sys_sendmsg+0xfe/0x1d0 [ 684.074173][T24718] ? __pfx____sys_sendmsg+0x10/0x10 [ 684.074235][T24718] ? __pfx___might_resched+0x10/0x10 [ 684.074275][T24718] __sys_sendmmsg+0x200/0x420 [ 684.074314][T24718] ? __pfx___sys_sendmmsg+0x10/0x10 [ 684.074359][T24718] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 684.074408][T24718] ? fput+0x70/0xf0 [ 684.074431][T24718] ? ksys_write+0x1ac/0x250 [ 684.074464][T24718] ? __pfx_ksys_write+0x10/0x10 [ 684.074505][T24718] __x64_sys_sendmmsg+0x9c/0x100 [ 684.074540][T24718] ? lockdep_hardirqs_on+0x7c/0x110 [ 684.074574][T24718] do_syscall_64+0xcd/0x490 [ 684.074611][T24718] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 684.074636][T24718] RIP: 0033:0x7f199cd8e929 [ 684.074654][T24718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 684.074678][T24718] RSP: 002b:00007f199db8b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 684.074701][T24718] RAX: ffffffffffffffda RBX: 00007f199cfb6080 RCX: 00007f199cd8e929 [ 684.074717][T24718] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 000000000000000e [ 684.074732][T24718] RBP: 00007f199db8b090 R08: 0000000000000000 R09: 0000000000000000 [ 684.074747][T24718] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 684.074762][T24718] R13: 0000000000000000 R14: 00007f199cfb6080 R15: 00007ffe5e3502b8 [ 684.074791][T24718] [ 685.756351][T24761] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2048'. [ 686.607690][T24811] FAULT_INJECTION: forcing a failure. [ 686.607690][T24811] name failslab, interval 1, probability 0, space 0, times 0 [ 686.643167][T24811] CPU: 1 UID: 0 PID: 24811 Comm: syz.3.2055 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 686.643222][T24811] Tainted: [I]=FIRMWARE_WORKAROUND [ 686.643235][T24811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 686.643255][T24811] Call Trace: [ 686.643266][T24811] [ 686.643279][T24811] dump_stack_lvl+0x16c/0x1f0 [ 686.643335][T24811] should_fail_ex+0x512/0x640 [ 686.643381][T24811] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 686.643437][T24811] should_failslab+0xc2/0x120 [ 686.643469][T24811] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 686.643515][T24811] ? __alloc_skb+0x2b2/0x380 [ 686.643560][T24811] __alloc_skb+0x2b2/0x380 [ 686.643610][T24811] ? __pfx___alloc_skb+0x10/0x10 [ 686.643653][T24811] ? __lock_acquire+0xb8a/0x1c90 [ 686.643696][T24811] netlink_alloc_large_skb+0x69/0x130 [ 686.643733][T24811] netlink_sendmsg+0x6a1/0xdd0 [ 686.643766][T24811] ? __pfx_netlink_sendmsg+0x10/0x10 [ 686.643808][T24811] ____sys_sendmsg+0xa95/0xc70 [ 686.643843][T24811] ? copy_msghdr_from_user+0x10a/0x160 [ 686.643911][T24811] ? __pfx_____sys_sendmsg+0x10/0x10 [ 686.643948][T24811] ? kfree+0x24f/0x4d0 [ 686.643979][T24811] ? __pfx__kstrtoull+0x10/0x10 [ 686.644026][T24811] ___sys_sendmsg+0x134/0x1d0 [ 686.644070][T24811] ? __pfx____sys_sendmsg+0x10/0x10 [ 686.644144][T24811] ? __pfx___might_resched+0x10/0x10 [ 686.644184][T24811] __sys_sendmmsg+0x200/0x420 [ 686.644230][T24811] ? __pfx___sys_sendmmsg+0x10/0x10 [ 686.644286][T24811] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 686.644345][T24811] ? fput+0x70/0xf0 [ 686.644372][T24811] ? ksys_write+0x1ac/0x250 [ 686.644412][T24811] ? __pfx_ksys_write+0x10/0x10 [ 686.644458][T24811] __x64_sys_sendmmsg+0x9c/0x100 [ 686.644500][T24811] ? lockdep_hardirqs_on+0x7c/0x110 [ 686.644540][T24811] do_syscall_64+0xcd/0x490 [ 686.644585][T24811] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 686.644613][T24811] RIP: 0033:0x7f119898e929 [ 686.644635][T24811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 686.644662][T24811] RSP: 002b:00007f1199765038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 686.644688][T24811] RAX: ffffffffffffffda RBX: 00007f1198bb6080 RCX: 00007f119898e929 [ 686.644707][T24811] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 000000000000000e [ 686.644725][T24811] RBP: 00007f1199765090 R08: 0000000000000000 R09: 0000000000000000 [ 686.644742][T24811] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 686.644759][T24811] R13: 0000000000000000 R14: 00007f1198bb6080 R15: 00007ffff3ea0f98 [ 686.644795][T24811] [ 686.913687][ C1] vkms_vblank_simulate: vblank timer overrun [ 687.237688][T24825] FAULT_INJECTION: forcing a failure. [ 687.237688][T24825] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 687.320414][T24825] CPU: 1 UID: 0 PID: 24825 Comm: syz.0.2058 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 687.320455][T24825] Tainted: [I]=FIRMWARE_WORKAROUND [ 687.320464][T24825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 687.320478][T24825] Call Trace: [ 687.320486][T24825] [ 687.320496][T24825] dump_stack_lvl+0x16c/0x1f0 [ 687.320536][T24825] should_fail_ex+0x512/0x640 [ 687.320575][T24825] should_fail_alloc_page+0xe7/0x130 [ 687.320600][T24825] prepare_alloc_pages+0x3c2/0x610 [ 687.320629][T24825] ? rcu_is_watching+0x12/0xc0 [ 687.320657][T24825] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 687.320695][T24825] ? __lock_acquire+0xb8a/0x1c90 [ 687.320739][T24825] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 687.320776][T24825] ? do_raw_spin_lock+0x12c/0x2b0 [ 687.320818][T24825] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 687.320856][T24825] ? find_held_lock+0x2b/0x80 [ 687.320889][T24825] ? __lock_acquire+0xb8a/0x1c90 [ 687.320921][T24825] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 687.320961][T24825] ? policy_nodemask+0xea/0x4e0 [ 687.320986][T24825] alloc_pages_mpol+0x1fb/0x550 [ 687.321010][T24825] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 687.321041][T24825] folio_alloc_mpol_noprof+0x36/0x2f0 [ 687.321070][T24825] shmem_alloc_folio+0x135/0x160 [ 687.321101][T24825] shmem_alloc_and_add_folio+0x499/0xc20 [ 687.321141][T24825] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 687.321179][T24825] ? shmem_allowable_huge_orders+0xcb/0x2f0 [ 687.321225][T24825] shmem_get_folio_gfp+0x67f/0x1600 [ 687.321266][T24825] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 687.321303][T24825] ? __lock_acquire+0x622/0x1c90 [ 687.321339][T24825] shmem_fault+0x1fe/0xa30 [ 687.321374][T24825] ? __pfx_shmem_fault+0x10/0x10 [ 687.321415][T24825] ? __lock_acquire+0xb8a/0x1c90 [ 687.321454][T24825] __do_fault+0x10d/0x490 [ 687.321500][T24825] ? __pfx_filemap_map_pages+0x10/0x10 [ 687.321537][T24825] __handle_mm_fault+0x374c/0x5490 [ 687.321577][T24825] ? __pfx___handle_mm_fault+0x10/0x10 [ 687.321611][T24825] ? __pte_offset_map_lock+0x174/0x310 [ 687.321636][T24825] ? find_held_lock+0x2b/0x80 [ 687.321659][T24825] ? find_held_lock+0x2b/0x80 [ 687.321690][T24825] ? follow_page_pte+0x3af/0x14c0 [ 687.321724][T24825] handle_mm_fault+0x589/0xd10 [ 687.321760][T24825] __get_user_pages+0x589/0x3b80 [ 687.321798][T24825] ? __pfx___get_user_pages+0x10/0x10 [ 687.321825][T24825] ? __pfx_down_read_killable+0x10/0x10 [ 687.321850][T24825] ? __lock_acquire+0xb8a/0x1c90 [ 687.321887][T24825] faultin_page_range+0x249/0x980 [ 687.321923][T24825] madvise_do_behavior+0x268/0x3f0 [ 687.321952][T24825] ? __pfx_madvise_do_behavior+0x10/0x10 [ 687.321995][T24825] do_madvise+0x161/0x230 [ 687.322021][T24825] ? __pfx_do_madvise+0x10/0x10 [ 687.322059][T24825] ? xfd_validate_state+0x61/0x180 [ 687.322090][T24825] ? __pfx_do_writev+0x10/0x10 [ 687.322127][T24825] __x64_sys_madvise+0xa9/0x110 [ 687.322152][T24825] ? lockdep_hardirqs_on+0x7c/0x110 [ 687.322185][T24825] do_syscall_64+0xcd/0x490 [ 687.322235][T24825] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 687.322260][T24825] RIP: 0033:0x7f8f4e78e929 [ 687.322278][T24825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 687.322302][T24825] RSP: 002b:00007f8f4f667038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 687.322324][T24825] RAX: ffffffffffffffda RBX: 00007f8f4e9b5fa0 RCX: 00007f8f4e78e929 [ 687.322340][T24825] RDX: 0000000000000017 RSI: 0000000000100000 RDI: 0000000000000000 [ 687.322358][T24825] RBP: 00007f8f4e810b39 R08: 0000000000000000 R09: 0000000000000000 [ 687.322373][T24825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 687.322387][T24825] R13: 0000000000000000 R14: 00007f8f4e9b5fa0 R15: 00007ffc8c2ce888 [ 687.322435][T24825] [ 687.696493][ C1] vkms_vblank_simulate: vblank timer overrun [ 688.439792][T24838] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2059'. [ 688.826848][T24844] block2mtd: error: cannot open device i [ 689.774929][T24854] FAULT_INJECTION: forcing a failure. [ 689.774929][T24854] name failslab, interval 1, probability 0, space 0, times 0 [ 689.807201][T24854] CPU: 1 UID: 0 PID: 24854 Comm: syz.2.2065 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 689.807279][T24854] Tainted: [I]=FIRMWARE_WORKAROUND [ 689.807292][T24854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 689.807312][T24854] Call Trace: [ 689.807323][T24854] [ 689.807338][T24854] dump_stack_lvl+0x16c/0x1f0 [ 689.807380][T24854] should_fail_ex+0x512/0x640 [ 689.807415][T24854] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 689.807452][T24854] should_failslab+0xc2/0x120 [ 689.807475][T24854] __kmalloc_cache_noprof+0x6a/0x3e0 [ 689.807509][T24854] ? snd_seq_timer_new+0x42/0x190 [ 689.807547][T24854] snd_seq_timer_new+0x42/0x190 [ 689.807581][T24854] snd_seq_queue_alloc+0x177/0x550 [ 689.807614][T24854] snd_seq_ioctl_create_queue+0xa9/0x380 [ 689.807653][T24854] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 689.807680][T24854] alloc_seq_queue+0xda/0x180 [ 689.807703][T24854] ? __pfx_alloc_seq_queue+0x10/0x10 [ 689.807743][T24854] ? mark_held_locks+0x49/0x80 [ 689.807776][T24854] ? _raw_spin_unlock_irq+0x23/0x50 [ 689.807813][T24854] snd_seq_oss_open+0x38c/0xa20 [ 689.807843][T24854] odev_open+0x6f/0x90 [ 689.807883][T24854] ? __pfx_odev_open+0x10/0x10 [ 689.807919][T24854] soundcore_open+0x409/0x580 [ 689.807958][T24854] ? __pfx_soundcore_open+0x10/0x10 [ 689.807995][T24854] chrdev_open+0x234/0x6a0 [ 689.808033][T24854] ? __pfx_apparmor_file_open+0x10/0x10 [ 689.808073][T24854] ? __pfx_chrdev_open+0x10/0x10 [ 689.808129][T24854] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 689.808185][T24854] do_dentry_open+0x741/0x1c10 [ 689.808238][T24854] ? __pfx_chrdev_open+0x10/0x10 [ 689.808306][T24854] vfs_open+0x82/0x3f0 [ 689.808334][T24854] path_openat+0x1de4/0x2cb0 [ 689.808378][T24854] ? __pfx_path_openat+0x10/0x10 [ 689.808414][T24854] ? __lock_acquire+0xb8a/0x1c90 [ 689.808450][T24854] do_filp_open+0x20b/0x470 [ 689.808484][T24854] ? __pfx_do_filp_open+0x10/0x10 [ 689.808575][T24854] ? alloc_fd+0x471/0x7d0 [ 689.808617][T24854] do_sys_openat2+0x11b/0x1d0 [ 689.808645][T24854] ? __pfx_do_sys_openat2+0x10/0x10 [ 689.808684][T24854] __x64_sys_openat+0x174/0x210 [ 689.808713][T24854] ? __pfx___x64_sys_openat+0x10/0x10 [ 689.808754][T24854] do_syscall_64+0xcd/0x490 [ 689.808793][T24854] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 689.808820][T24854] RIP: 0033:0x7f4a7858e929 [ 689.808839][T24854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 689.808863][T24854] RSP: 002b:00007f4a793d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 689.808886][T24854] RAX: ffffffffffffffda RBX: 00007f4a787b6080 RCX: 00007f4a7858e929 [ 689.808903][T24854] RDX: 0000000000000000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 689.808918][T24854] RBP: 00007f4a78610b39 R08: 0000000000000000 R09: 0000000000000000 [ 689.808933][T24854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 689.808948][T24854] R13: 0000000000000000 R14: 00007f4a787b6080 R15: 00007ffc6c6bdb98 [ 689.808978][T24854] [ 690.113128][ C1] vkms_vblank_simulate: vblank timer overrun [ 690.209764][T24852] kexec: Could not allocate control_code_buffer [ 690.363833][T24859] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 690.814148][T24887] netlink: 252 bytes leftover after parsing attributes in process `syz.1.2072'. [ 690.854609][T24887] netlink: 252 bytes leftover after parsing attributes in process `syz.1.2072'. [ 692.701758][T24967] Unable to find swap-space signature [ 693.868631][T24989] netlink: 252 bytes leftover after parsing attributes in process `syz.3.2087'. [ 693.930398][T24989] netlink: 252 bytes leftover after parsing attributes in process `syz.3.2087'. [ 694.028343][T24980] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input79 [ 695.022870][T25026] [U] [ 695.025674][T25026] [U] h+Z&i#e [ 695.029578][T25026] [U] [ 695.032358][T25026] [U] [ 695.035131][T25026] [U] [ 695.039215][T25026] [U] [ 695.041982][T25026] [U] [ 695.044676][T25026] [U] H9w [ 695.047825][T25026] [U] !Ӆ8iRׁ(<%!FSnP*_ [ 695.053768][T25026] [U] qq4j5&2Gv%T9sLX3|)MN! nD ]?S~ IKa$;+# |`mXRav9oPF+WyJё5!ƌHJ`k'Ģ].6|%j@:1wڻ7DW, [ 695.075427][T25026] [U] Da7: Th3Z}!xO;"Fl=;$%31>w [ 695.083796][T25026] [U] \2Ήd莬b1网=ZJDV%^c'A>.]DՄ"JYCmtcf]Ib_7v,ZaM rlBS|gpm e]v!G|+ˌ@8FyHLc^4`ZMɫk4ٽ| zJ|u{(/%3c2E`445*Ϭ2ΠVʎNgr~yb,i p˛hD] [ 695.173493][T25026] [U] 5jvզIwN}n O1HxLko [ 695.179839][T25026] [U] dr8bVN?tP Cv!vW;6+!GX.RƩr [ 695.187007][T25026] [U]  $Ǝu@aύ{gBV(;A7ݞ8lP6Ģ [ 695.194540][T25026] [U] O?:B,#f(xfN1gPUݷX#d\B3xs&lф+Ȩ1\݅?w [ 695.259810][T25026] [U] [ 695.350168][T25026] [U] [ 695.353103][T25026] [U] [ 695.355840][T25026] [U] [ 695.358603][T25026] [U] [ 695.403055][T25033] CPU: 0 UID: 0 PID: 25033 Comm: syz.1.2092 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 695.403111][T25033] Tainted: [I]=FIRMWARE_WORKAROUND [ 695.403124][T25033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 695.403143][T25033] Call Trace: [ 695.403154][T25033] [ 695.403167][T25033] dump_stack_lvl+0x16c/0x1f0 [ 695.403224][T25033] should_fail_ex+0x512/0x640 [ 695.403281][T25033] _copy_to_user+0x32/0xd0 [ 695.403338][T25033] simple_read_from_buffer+0xcb/0x170 [ 695.403387][T25033] proc_fail_nth_read+0x197/0x270 [ 695.403429][T25033] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 695.403479][T25033] ? rw_verify_area+0xcf/0x680 [ 695.403522][T25033] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 695.403563][T25033] vfs_read+0x1e1/0xc60 [ 695.403628][T25033] ? __pfx___mutex_lock+0x10/0x10 [ 695.403678][T25033] ? __pfx_vfs_read+0x10/0x10 [ 695.403737][T25033] ? __fget_files+0x20e/0x3c0 [ 695.403796][T25033] ksys_read+0x12a/0x250 [ 695.403842][T25033] ? __pfx_ksys_read+0x10/0x10 [ 695.403902][T25033] do_syscall_64+0xcd/0x490 [ 695.403956][T25033] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 695.403991][T25033] RIP: 0033:0x7f199cd8d33c [ 695.404017][T25033] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 695.404049][T25033] RSP: 002b:00007f199db8b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 695.404079][T25033] RAX: ffffffffffffffda RBX: 00007f199cfb6080 RCX: 00007f199cd8d33c [ 695.404101][T25033] RDX: 000000000000000f RSI: 00007f199db8b0a0 RDI: 0000000000000005 [ 695.404120][T25033] RBP: 00007f199db8b090 R08: 0000000000000000 R09: 0000000000000000 [ 695.404140][T25033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 695.404159][T25033] R13: 0000000000000001 R14: 00007f199cfb6080 R15: 00007ffe5e3502b8 [ 695.404200][T25033] [ 695.602232][ C0] vkms_vblank_simulate: vblank timer overrun [ 695.721968][T25026] [U] [ 695.724771][T25026] [U] [ 695.727543][T25026] [U] [ 695.730313][T25026] [U] [ 695.735065][T25026] [U] [ 695.737846][T25026] [U] [ 695.740611][T25026] [U] [ 695.743371][T25026] [U] [ 695.746196][T25026] [U] [ 695.748964][T25026] [U] [ 695.751721][T25026] [U] [ 695.754487][T25026] [U] [ 695.757393][T25026] [U] [ 695.760162][T25026] [U] [ 695.762919][T25026] [U] [ 695.765696][T25026] [U] [ 695.769223][T25026] [U] [ 695.772005][T25026] [U] [ 695.774766][T25026] [U] [ 695.777528][T25026] [U] [ 695.781137][T25026] [U] [ 695.783917][T25026] [U] [ 695.786669][T25026] [U] [ 695.789421][T25026] [U] [ 695.792246][T25026] [U] [ 695.795005][T25026] [U] [ 695.797758][T25026] [U] [ 695.800506][T25026] [U] [ 695.806715][T25026] [U] [ 695.809507][T25026] [U] [ 695.812277][T25026] [U] [ 695.815042][T25026] [U] [ 695.819267][T25026] [U] [ 695.822044][T25026] [U] [ 695.824788][T25026] [U] [ 695.827540][T25026] [U] [ 695.947939][T25026] [U] [ 695.950782][T25026] [U] [ 695.953544][T25026] [U] [ 695.956312][T25026] [U] [ 696.058861][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 696.073144][T25026] [U] [ 696.075920][T25026] [U] [ 696.078642][T25026] [U] [ 696.081366][T25026] [U] [ 696.113097][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 696.429957][T25026] [U] [ 696.432767][T25026] [U] [ 696.435539][T25026] [U] [ 696.438313][T25026] [U] [ 696.565062][T25026] [U] [ 696.567893][T25026] [U] [ 696.570668][T25026] [U] [ 696.573440][T25026] [U] [ 696.618705][T25026] [U] [ 696.621536][T25026] [U] [ 696.624314][T25026] [U] [ 696.627091][T25026] [U] [ 696.687500][T25026] [U] [ 696.690339][T25026] [U] [ 696.693276][T25026] [U] [ 696.696054][T25026] [U] [ 696.763348][T25026] [U] [ 696.766180][T25026] [U] [ 696.768951][T25026] [U] [ 696.771714][T25026] [U] [ 696.854786][T25026] [U] [ 696.857582][T25026] [U] [ 696.860325][T25026] [U] [ 696.863185][T25026] [U] [ 696.948211][T25026] [U] [ 696.951053][T25026] [U] [ 696.953822][T25026] [U] [ 696.956582][T25026] [U] [ 697.036075][T25026] [U] [ 697.038900][T25026] [U] [ 697.041671][T25026] [U] [ 697.044446][T25026] [U] [ 697.303513][T25087] FAULT_INJECTION: forcing a failure. [ 697.303513][T25087] name failslab, interval 1, probability 0, space 0, times 0 [ 697.330250][T25087] CPU: 1 UID: 0 PID: 25087 Comm: syz.1.2100 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 697.330309][T25087] Tainted: [I]=FIRMWARE_WORKAROUND [ 697.330323][T25087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 697.330343][T25087] Call Trace: [ 697.330353][T25087] [ 697.330367][T25087] dump_stack_lvl+0x16c/0x1f0 [ 697.330423][T25087] should_fail_ex+0x512/0x640 [ 697.330473][T25087] ? __kmalloc_noprof+0xbf/0x510 [ 697.330527][T25087] ? __netlink_kernel_create+0x17f/0x750 [ 697.330562][T25087] should_failslab+0xc2/0x120 [ 697.330595][T25087] __kmalloc_noprof+0xd2/0x510 [ 697.330650][T25087] ? __netlink_create+0x208/0x2c0 [ 697.330702][T25087] __netlink_kernel_create+0x17f/0x750 [ 697.330742][T25087] ? __pfx___netlink_kernel_create+0x10/0x10 [ 697.330775][T25087] ? fib4_semantics_init+0x25/0x100 [ 697.330838][T25087] fib_net_init+0x26d/0x3f0 [ 697.330872][T25087] ? __pfx___register_sysctl_table+0x10/0x10 [ 697.330928][T25087] ? __pfx_fib_net_init+0x10/0x10 [ 697.330963][T25087] ? lockdep_init_map_type+0x5c/0x280 [ 697.331011][T25087] ? __pfx_nl_fib_input+0x10/0x10 [ 697.331065][T25087] ? devinet_init_net+0x5c2/0x910 [ 697.331110][T25087] ? __pfx_fib_net_init+0x10/0x10 [ 697.331145][T25087] ops_init+0x1e2/0x5f0 [ 697.331202][T25087] setup_net+0x1ff/0x510 [ 697.331253][T25087] ? lockdep_init_map_type+0x5c/0x280 [ 697.331303][T25087] ? __pfx_setup_net+0x10/0x10 [ 697.331360][T25087] ? debug_mutex_init+0x37/0x70 [ 697.331401][T25087] copy_net_ns+0x2a6/0x5f0 [ 697.331441][T25087] create_new_namespaces+0x3ea/0xa90 [ 697.331491][T25087] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 697.331536][T25087] ksys_unshare+0x45b/0xa40 [ 697.331583][T25087] ? __pfx_ksys_unshare+0x10/0x10 [ 697.331633][T25087] ? xfd_validate_state+0x61/0x180 [ 697.331693][T25087] __x64_sys_unshare+0x31/0x40 [ 697.331739][T25087] do_syscall_64+0xcd/0x490 [ 697.331793][T25087] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 697.331827][T25087] RIP: 0033:0x7f199cd8e929 [ 697.331854][T25087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 697.331886][T25087] RSP: 002b:00007f199dbac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 697.331918][T25087] RAX: ffffffffffffffda RBX: 00007f199cfb5fa0 RCX: 00007f199cd8e929 [ 697.331940][T25087] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 697.331961][T25087] RBP: 00007f199ce10b39 R08: 0000000000000000 R09: 0000000000000000 [ 697.331982][T25087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 697.332002][T25087] R13: 0000000000000000 R14: 00007f199cfb5fa0 R15: 00007ffe5e3502b8 [ 697.332055][T25087] [ 697.827340][T25093] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2104'. [ 698.152047][T25059] kexec: Could not allocate control_code_buffer [ 698.816340][T25110] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2106'. [ 699.720787][T25165] ksmbd: Unknown IPC event: 14, ignore. [ 700.975722][T25212] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2116'. [ 702.522346][T25305] FAULT_INJECTION: forcing a failure. [ 702.522346][T25305] name failslab, interval 1, probability 0, space 0, times 0 [ 702.596549][T25305] CPU: 0 UID: 0 PID: 25305 Comm: syz.3.2123 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 702.596603][T25305] Tainted: [I]=FIRMWARE_WORKAROUND [ 702.596616][T25305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 702.596634][T25305] Call Trace: [ 702.596645][T25305] [ 702.596657][T25305] dump_stack_lvl+0x16c/0x1f0 [ 702.596711][T25305] should_fail_ex+0x512/0x640 [ 702.596756][T25305] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 702.596819][T25305] should_failslab+0xc2/0x120 [ 702.596850][T25305] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 702.596899][T25305] ? acpi_ps_alloc_op+0x25f/0x310 [ 702.596952][T25305] acpi_ps_alloc_op+0x25f/0x310 [ 702.596999][T25305] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 702.597051][T25305] acpi_ps_create_op+0x3dc/0xc20 [ 702.597100][T25305] ? trace_kmem_cache_alloc+0x28/0xc0 [ 702.597135][T25305] ? __pfx_acpi_ps_create_op+0x10/0x10 [ 702.597190][T25305] ? acpi_ut_push_generic_state+0x13/0x70 [ 702.597240][T25305] acpi_ps_parse_loop+0xdd8/0x1d00 [ 702.597299][T25305] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 702.597345][T25305] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 702.597394][T25305] ? acpi_ut_create_thread_state+0x63/0x170 [ 702.597448][T25305] acpi_ps_parse_aml+0x3c1/0xcb0 [ 702.597503][T25305] acpi_ps_execute_method+0x55a/0xb30 [ 702.597559][T25305] ? acpi_ut_acquire_mutex+0x125/0x1d0 [ 702.597599][T25305] acpi_ns_evaluate+0x76c/0xca0 [ 702.597634][T25305] ? kasan_save_track+0x14/0x30 [ 702.597685][T25305] acpi_evaluate_object+0x1fa/0xa90 [ 702.597735][T25305] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 702.597770][T25305] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 702.597827][T25305] ? __mutex_trylock_common+0xe9/0x250 [ 702.597881][T25305] acpi_evaluate_integer+0xdd/0x200 [ 702.597922][T25305] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 702.597981][T25305] ? __pfx_status_show+0x10/0x10 [ 702.598026][T25305] status_show+0xa0/0x120 [ 702.598091][T25305] ? __pfx_status_show+0x10/0x10 [ 702.598153][T25305] dev_attr_show+0x53/0xe0 [ 702.598189][T25305] ? __pfx_dev_attr_show+0x10/0x10 [ 702.598220][T25305] sysfs_kf_seq_show+0x213/0x3e0 [ 702.598271][T25305] seq_read_iter+0x509/0x12c0 [ 702.598334][T25305] kernfs_fop_read_iter+0x40f/0x5a0 [ 702.598368][T25305] ? rw_verify_area+0xcf/0x680 [ 702.598415][T25305] vfs_read+0x8bc/0xc60 [ 702.598468][T25305] ? __pfx___mutex_lock+0x10/0x10 [ 702.598518][T25305] ? __pfx_vfs_read+0x10/0x10 [ 702.598598][T25305] ksys_read+0x12a/0x250 [ 702.598644][T25305] ? __pfx_ksys_read+0x10/0x10 [ 702.598708][T25305] do_syscall_64+0xcd/0x490 [ 702.598762][T25305] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 702.598803][T25305] RIP: 0033:0x7f119898e929 [ 702.598832][T25305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 702.598866][T25305] RSP: 002b:00007f1199786038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 702.598900][T25305] RAX: ffffffffffffffda RBX: 00007f1198bb5fa0 RCX: 00007f119898e929 [ 702.598923][T25305] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000004 [ 702.598944][T25305] RBP: 00007f1198a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 702.598965][T25305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 702.598986][T25305] R13: 0000000000000000 R14: 00007f1198bb5fa0 R15: 00007ffff3ea0f98 [ 702.599032][T25305] [ 702.643959][T25305] ACPI Error: [ 702.768453][T25310] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2123'. [ 703.018739][T25305] Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20250404/psparse-529) [ 703.384358][T25342] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2127'. [ 704.421399][T25370] FAULT_INJECTION: forcing a failure. [ 704.421399][T25370] name failslab, interval 1, probability 0, space 0, times 0 [ 704.463181][T25370] CPU: 1 UID: 0 PID: 25370 Comm: syz.3.2131 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 704.463239][T25370] Tainted: [I]=FIRMWARE_WORKAROUND [ 704.463252][T25370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 704.463271][T25370] Call Trace: [ 704.463282][T25370] [ 704.463295][T25370] dump_stack_lvl+0x16c/0x1f0 [ 704.463352][T25370] should_fail_ex+0x512/0x640 [ 704.463417][T25370] should_failslab+0xc2/0x120 [ 704.463451][T25370] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 704.463504][T25370] ? skb_clone+0x190/0x3f0 [ 704.463562][T25370] skb_clone+0x190/0x3f0 [ 704.463625][T25370] netlink_deliver_tap+0xabd/0xd30 [ 704.463689][T25370] netlink_unicast+0x702/0x850 [ 704.463730][T25370] ? __pfx_netlink_unicast+0x10/0x10 [ 704.463762][T25370] ? find_held_lock+0x2b/0x80 [ 704.463809][T25370] rtnl_stats_get+0x70d/0x970 [ 704.463839][T25370] ? __pfx_mpls_get_stats_af_size+0x10/0x10 [ 704.463893][T25370] ? __pfx_rtnl_stats_get+0x10/0x10 [ 704.463939][T25370] ? __pfx_rtnl_stats_get+0x10/0x10 [ 704.463969][T25370] rtnetlink_rcv_msg+0x3c9/0xe90 [ 704.464009][T25370] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 704.464053][T25370] ? ref_tracker_free+0x37c/0x830 [ 704.464091][T25370] netlink_rcv_skb+0x155/0x420 [ 704.464115][T25370] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 704.464154][T25370] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 704.464188][T25370] ? netlink_deliver_tap+0x1ae/0xd30 [ 704.464231][T25370] netlink_unicast+0x58d/0x850 [ 704.464258][T25370] ? __pfx_netlink_unicast+0x10/0x10 [ 704.464290][T25370] netlink_sendmsg+0x8d1/0xdd0 [ 704.464318][T25370] ? __pfx_netlink_sendmsg+0x10/0x10 [ 704.464353][T25370] ____sys_sendmsg+0xa95/0xc70 [ 704.464385][T25370] ? copy_msghdr_from_user+0x10a/0x160 [ 704.464418][T25370] ? __pfx_____sys_sendmsg+0x10/0x10 [ 704.464448][T25370] ? kfree+0x24f/0x4d0 [ 704.464474][T25370] ? __pfx__kstrtoull+0x10/0x10 [ 704.464506][T25370] ___sys_sendmsg+0x134/0x1d0 [ 704.464541][T25370] ? __pfx____sys_sendmsg+0x10/0x10 [ 704.464602][T25370] ? __pfx___might_resched+0x10/0x10 [ 704.464636][T25370] __sys_sendmmsg+0x200/0x420 [ 704.464674][T25370] ? __pfx___sys_sendmmsg+0x10/0x10 [ 704.464718][T25370] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 704.464765][T25370] ? fput+0x70/0xf0 [ 704.464787][T25370] ? ksys_write+0x1ac/0x250 [ 704.464819][T25370] ? __pfx_ksys_write+0x10/0x10 [ 704.464857][T25370] __x64_sys_sendmmsg+0x9c/0x100 [ 704.464890][T25370] ? lockdep_hardirqs_on+0x7c/0x110 [ 704.464923][T25370] do_syscall_64+0xcd/0x490 [ 704.464959][T25370] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 704.464985][T25370] RIP: 0033:0x7f119898e929 [ 704.465004][T25370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 704.465026][T25370] RSP: 002b:00007f1199765038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 704.465049][T25370] RAX: ffffffffffffffda RBX: 00007f1198bb6080 RCX: 00007f119898e929 [ 704.465065][T25370] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 000000000000000e [ 704.465079][T25370] RBP: 00007f1199765090 R08: 0000000000000000 R09: 0000000000000000 [ 704.465094][T25370] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 704.465108][T25370] R13: 0000000000000000 R14: 00007f1198bb6080 R15: 00007ffff3ea0f98 [ 704.465137][T25370] [ 704.790668][ C1] vkms_vblank_simulate: vblank timer overrun [ 705.544206][T25399] tty tty15: ldisc open failed (-12), clearing slot 14 [ 706.427470][T25449] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2137'. [ 707.318850][T25467] raw_sendmsg: syz.0.2141 forgot to set AF_INET. Fix it! [ 707.372099][T25470] FAULT_INJECTION: forcing a failure. [ 707.372099][T25470] name failslab, interval 1, probability 0, space 0, times 0 [ 707.384906][T25470] CPU: 0 UID: 0 PID: 25470 Comm: syz.1.2142 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 707.384958][T25470] Tainted: [I]=FIRMWARE_WORKAROUND [ 707.384971][T25470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 707.384991][T25470] Call Trace: [ 707.385002][T25470] [ 707.385015][T25470] dump_stack_lvl+0x16c/0x1f0 [ 707.385068][T25470] should_fail_ex+0x512/0x640 [ 707.385116][T25470] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 707.385173][T25470] should_failslab+0xc2/0x120 [ 707.385205][T25470] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 707.385257][T25470] ? __alloc_skb+0x2b2/0x380 [ 707.385310][T25470] __alloc_skb+0x2b2/0x380 [ 707.385357][T25470] ? __pfx___alloc_skb+0x10/0x10 [ 707.385409][T25470] ? __pfx_rtnl_stats_get+0x10/0x10 [ 707.385459][T25470] netlink_ack+0x15d/0xb80 [ 707.385508][T25470] netlink_rcv_skb+0x332/0x420 [ 707.385544][T25470] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 707.385602][T25470] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 707.385654][T25470] ? netlink_deliver_tap+0x1ae/0xd30 [ 707.385720][T25470] netlink_unicast+0x58d/0x850 [ 707.385762][T25470] ? __pfx_netlink_unicast+0x10/0x10 [ 707.385811][T25470] netlink_sendmsg+0x8d1/0xdd0 [ 707.385853][T25470] ? __pfx_netlink_sendmsg+0x10/0x10 [ 707.385906][T25470] ____sys_sendmsg+0xa95/0xc70 [ 707.385945][T25470] ? copy_msghdr_from_user+0x10a/0x160 [ 707.385996][T25470] ? __pfx_____sys_sendmsg+0x10/0x10 [ 707.386041][T25470] ? kfree+0x24f/0x4d0 [ 707.386079][T25470] ? __pfx__kstrtoull+0x10/0x10 [ 707.386129][T25470] ___sys_sendmsg+0x134/0x1d0 [ 707.386184][T25470] ? __pfx____sys_sendmsg+0x10/0x10 [ 707.386276][T25470] ? __pfx___might_resched+0x10/0x10 [ 707.386324][T25470] __sys_sendmmsg+0x200/0x420 [ 707.386381][T25470] ? __pfx___sys_sendmmsg+0x10/0x10 [ 707.386457][T25470] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 707.386530][T25470] ? fput+0x70/0xf0 [ 707.386563][T25470] ? ksys_write+0x1ac/0x250 [ 707.386611][T25470] ? __pfx_ksys_write+0x10/0x10 [ 707.386669][T25470] __x64_sys_sendmmsg+0x9c/0x100 [ 707.386718][T25470] ? lockdep_hardirqs_on+0x7c/0x110 [ 707.386765][T25470] do_syscall_64+0xcd/0x490 [ 707.386818][T25470] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 707.386852][T25470] RIP: 0033:0x7f199cd8e929 [ 707.386878][T25470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 707.386909][T25470] RSP: 002b:00007f199db8b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 707.386939][T25470] RAX: ffffffffffffffda RBX: 00007f199cfb6080 RCX: 00007f199cd8e929 [ 707.386977][T25470] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 000000000000000e [ 707.386997][T25470] RBP: 00007f199db8b090 R08: 0000000000000000 R09: 0000000000000000 [ 707.387016][T25470] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002 [ 707.387035][T25470] R13: 0000000000000000 R14: 00007f199cfb6080 R15: 00007ffe5e3502b8 [ 707.387075][T25470] [ 708.087783][T16329] Bluetooth: hci2: unexpected event 0x36 length: 123 > 7 [ 709.275896][ T49] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u8:3: bg 2: bad block bitmap checksum [ 709.311340][ T49] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1297 with max blocks 65 with error 74 [ 709.369861][ T49] EXT4-fs (sda1): This should not happen!! Data will be lost [ 709.369861][ T49] [ 710.667455][T25522] FAULT_INJECTION: forcing a failure. [ 710.667455][T25522] name failslab, interval 1, probability 0, space 0, times 0 [ 710.726254][T25522] CPU: 0 UID: 0 PID: 25522 Comm: syz.2.2154 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 710.726305][T25522] Tainted: [I]=FIRMWARE_WORKAROUND [ 710.726317][T25522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 710.726334][T25522] Call Trace: [ 710.726344][T25522] [ 710.726354][T25522] dump_stack_lvl+0x16c/0x1f0 [ 710.726402][T25522] should_fail_ex+0x512/0x640 [ 710.726442][T25522] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 710.726484][T25522] should_failslab+0xc2/0x120 [ 710.726512][T25522] __kmalloc_cache_noprof+0x6a/0x3e0 [ 710.726550][T25522] ? alloc_pipe_info+0x10e/0x590 [ 710.726598][T25522] alloc_pipe_info+0x10e/0x590 [ 710.726646][T25522] splice_direct_to_actor+0x77d/0xa30 [ 710.726729][T25522] ? __pfx_direct_splice_actor+0x10/0x10 [ 710.726780][T25522] ? __pfx_aa_file_perm+0x10/0x10 [ 710.726822][T25522] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 710.726859][T25522] ? get_pid_task+0xfc/0x250 [ 710.726910][T25522] do_splice_direct+0x174/0x240 [ 710.726948][T25522] ? __pfx_do_splice_direct+0x10/0x10 [ 710.726987][T25522] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 710.727030][T25522] ? rw_verify_area+0xcf/0x680 [ 710.727071][T25522] do_sendfile+0xb06/0xe50 [ 710.727125][T25522] ? __pfx_do_sendfile+0x10/0x10 [ 710.727165][T25522] ? __fget_files+0x20e/0x3c0 [ 710.727219][T25522] __x64_sys_sendfile64+0x1d8/0x220 [ 710.727251][T25522] ? ksys_write+0x1ac/0x250 [ 710.727292][T25522] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 710.727333][T25522] do_syscall_64+0xcd/0x490 [ 710.727379][T25522] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 710.727409][T25522] RIP: 0033:0x7f4a7858e929 [ 710.727432][T25522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 710.727462][T25522] RSP: 002b:00007f4a793d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 710.727491][T25522] RAX: ffffffffffffffda RBX: 00007f4a787b6080 RCX: 00007f4a7858e929 [ 710.727511][T25522] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004 [ 710.727529][T25522] RBP: 00007f4a793d1090 R08: 0000000000000000 R09: 0000000000000000 [ 710.727547][T25522] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 710.727564][T25522] R13: 0000000000000000 R14: 00007f4a787b6080 R15: 00007ffc6c6bdb98 [ 710.727602][T25522] [ 711.335698][T25511] FAULT_INJECTION: forcing a failure. [ 711.335698][T25511] name failslab, interval 1, probability 0, space 0, times 0 [ 711.392750][T25511] CPU: 0 UID: 0 PID: 25511 Comm: syz.3.2152 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 711.392812][T25511] Tainted: [I]=FIRMWARE_WORKAROUND [ 711.392826][T25511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 711.392849][T25511] Call Trace: [ 711.392861][T25511] [ 711.392875][T25511] dump_stack_lvl+0x16c/0x1f0 [ 711.392938][T25511] should_fail_ex+0x512/0x640 [ 711.392988][T25511] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 711.393040][T25511] should_failslab+0xc2/0x120 [ 711.393083][T25511] __kmalloc_cache_noprof+0x6a/0x3e0 [ 711.393132][T25511] ? snd_seq_timer_new+0x42/0x190 [ 711.393188][T25511] snd_seq_timer_new+0x42/0x190 [ 711.393238][T25511] snd_seq_queue_alloc+0x177/0x550 [ 711.393287][T25511] snd_seq_ioctl_create_queue+0xa9/0x380 [ 711.393343][T25511] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 711.393383][T25511] alloc_seq_queue+0xda/0x180 [ 711.393416][T25511] ? __pfx_alloc_seq_queue+0x10/0x10 [ 711.393477][T25511] ? mark_held_locks+0x49/0x80 [ 711.393525][T25511] ? _raw_spin_unlock_irq+0x23/0x50 [ 711.393576][T25511] snd_seq_oss_open+0x38c/0xa20 [ 711.393617][T25511] odev_open+0x6f/0x90 [ 711.393680][T25511] ? __pfx_odev_open+0x10/0x10 [ 711.393730][T25511] soundcore_open+0x409/0x580 [ 711.393803][T25511] ? __pfx_soundcore_open+0x10/0x10 [ 711.393856][T25511] chrdev_open+0x234/0x6a0 [ 711.393908][T25511] ? __pfx_apparmor_file_open+0x10/0x10 [ 711.393956][T25511] ? __pfx_chrdev_open+0x10/0x10 [ 711.394014][T25511] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 711.394079][T25511] do_dentry_open+0x741/0x1c10 [ 711.394135][T25511] ? __pfx_chrdev_open+0x10/0x10 [ 711.394200][T25511] vfs_open+0x82/0x3f0 [ 711.394243][T25511] path_openat+0x1de4/0x2cb0 [ 711.394310][T25511] ? __pfx_path_openat+0x10/0x10 [ 711.394364][T25511] ? __lock_acquire+0xb8a/0x1c90 [ 711.394418][T25511] do_filp_open+0x20b/0x470 [ 711.394469][T25511] ? __pfx_do_filp_open+0x10/0x10 [ 711.394583][T25511] ? alloc_fd+0x471/0x7d0 [ 711.394654][T25511] do_sys_openat2+0x11b/0x1d0 [ 711.394692][T25511] ? __pfx_do_sys_openat2+0x10/0x10 [ 711.394748][T25511] __x64_sys_openat+0x174/0x210 [ 711.394787][T25511] ? __pfx___x64_sys_openat+0x10/0x10 [ 711.394845][T25511] do_syscall_64+0xcd/0x490 [ 711.394901][T25511] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 711.394935][T25511] RIP: 0033:0x7f119898e929 [ 711.394962][T25511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 711.394996][T25511] RSP: 002b:00007f1199765038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 711.395029][T25511] RAX: ffffffffffffffda RBX: 00007f1198bb6080 RCX: 00007f119898e929 [ 711.395051][T25511] RDX: 0000000000000000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 711.395077][T25511] RBP: 00007f1198a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 711.395098][T25511] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 711.395118][T25511] R13: 0000000000000000 R14: 00007f1198bb6080 R15: 00007ffff3ea0f98 [ 711.395163][T25511] [ 712.084163][T25531] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2156'. [ 712.228466][T25536] netlink: 186 bytes leftover after parsing attributes in process `syz.0.2158'. [ 714.646572][T25610] vivid-009: ================= START STATUS ================= [ 714.690575][T25610] vivid-009: Enable Output Cropping: true grabbed [ 714.725890][T25610] vivid-009: Enable Output Composing: true grabbed [ 714.783042][T25610] vivid-009: Enable Output Scaler: true grabbed [ 714.801790][T25610] vivid-009: Tx RGB Quantization Range: Automatic grabbed [ 714.897974][T25610] vivid-009: Transmit Mode: HDMI grabbed [ 714.916134][T25610] vivid-009: Hotplug Present: 0x00000000 [ 714.925735][T25610] vivid-009: RxSense Present: 0x00000000 [ 714.932552][T25610] vivid-009: EDID Present: 0x00000000 [ 714.938353][T25610] vivid-009: ================== END STATUS ================== [ 716.294843][ T30] audit: type=1800 audit(3606.670:90): pid=25702 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2167" name="dbroot" dev="configfs" ino=49780 res=0 errno=0 [ 716.315793][T25704] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2169'. [ 716.347670][T25707] FAULT_INJECTION: forcing a failure. [ 716.347670][T25707] name failslab, interval 1, probability 0, space 0, times 0 [ 716.463407][T25707] CPU: 1 UID: 0 PID: 25707 Comm: syz.2.2168 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 716.463463][T25707] Tainted: [I]=FIRMWARE_WORKAROUND [ 716.463477][T25707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 716.463497][T25707] Call Trace: [ 716.463509][T25707] [ 716.463522][T25707] dump_stack_lvl+0x16c/0x1f0 [ 716.463578][T25707] should_fail_ex+0x512/0x640 [ 716.463627][T25707] ? __kmalloc_noprof+0xbf/0x510 [ 716.463686][T25707] ? alloc_pipe_info+0x1ec/0x590 [ 716.463737][T25707] should_failslab+0xc2/0x120 [ 716.463769][T25707] __kmalloc_noprof+0xd2/0x510 [ 716.463834][T25707] alloc_pipe_info+0x1ec/0x590 [ 716.463892][T25707] splice_direct_to_actor+0x77d/0xa30 [ 716.463942][T25707] ? __pfx_direct_splice_actor+0x10/0x10 [ 716.463992][T25707] ? __pfx_aa_file_perm+0x10/0x10 [ 716.464040][T25707] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 716.464083][T25707] ? get_pid_task+0xfc/0x250 [ 716.464142][T25707] do_splice_direct+0x174/0x240 [ 716.464188][T25707] ? __pfx_do_splice_direct+0x10/0x10 [ 716.464233][T25707] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 716.464283][T25707] ? rw_verify_area+0xcf/0x680 [ 716.464331][T25707] do_sendfile+0xb06/0xe50 [ 716.464392][T25707] ? __pfx_do_sendfile+0x10/0x10 [ 716.464440][T25707] ? __fget_files+0x20e/0x3c0 [ 716.464498][T25707] __x64_sys_sendfile64+0x1d8/0x220 [ 716.464530][T25707] ? ksys_write+0x1ac/0x250 [ 716.464577][T25707] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 716.464625][T25707] do_syscall_64+0xcd/0x490 [ 716.464680][T25707] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 716.464714][T25707] RIP: 0033:0x7f4a7858e929 [ 716.464741][T25707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 716.464774][T25707] RSP: 002b:00007f4a793d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 716.464805][T25707] RAX: ffffffffffffffda RBX: 00007f4a787b6080 RCX: 00007f4a7858e929 [ 716.464828][T25707] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004 [ 716.464848][T25707] RBP: 00007f4a793d1090 R08: 0000000000000000 R09: 0000000000000000 [ 716.464868][T25707] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 716.464887][T25707] R13: 0000000000000000 R14: 00007f4a787b6080 R15: 00007ffc6c6bdb98 [ 716.464931][T25707] [ 718.384514][T25782] FAULT_INJECTION: forcing a failure. [ 718.384514][T25782] name failslab, interval 1, probability 0, space 0, times 0 [ 718.475246][T25782] CPU: 1 UID: 0 PID: 25782 Comm: syz.3.2180 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 718.475301][T25782] Tainted: [I]=FIRMWARE_WORKAROUND [ 718.475315][T25782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 718.475335][T25782] Call Trace: [ 718.475347][T25782] [ 718.475360][T25782] dump_stack_lvl+0x16c/0x1f0 [ 718.475424][T25782] should_fail_ex+0x512/0x640 [ 718.475473][T25782] ? __kmalloc_noprof+0xbf/0x510 [ 718.475526][T25782] ? copy_splice_read+0x1a8/0xba0 [ 718.475568][T25782] should_failslab+0xc2/0x120 [ 718.475601][T25782] __kmalloc_noprof+0xd2/0x510 [ 718.475662][T25782] copy_splice_read+0x1a8/0xba0 [ 718.475722][T25782] ? __pfx_copy_splice_read+0x10/0x10 [ 718.475770][T25782] ? look_up_lock_class+0x6b/0x150 [ 718.475826][T25782] ? lockdep_init_map_type+0x5c/0x280 [ 718.475878][T25782] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 718.475931][T25782] ? __pfx_copy_splice_read+0x10/0x10 [ 718.475978][T25782] do_splice_read+0x282/0x370 [ 718.476032][T25782] splice_direct_to_actor+0x2a1/0xa30 [ 718.476080][T25782] ? __pfx_direct_splice_actor+0x10/0x10 [ 718.476138][T25782] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 718.476181][T25782] ? get_pid_task+0xfc/0x250 [ 718.476239][T25782] do_splice_direct+0x174/0x240 [ 718.476284][T25782] ? __pfx_do_splice_direct+0x10/0x10 [ 718.476330][T25782] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 718.476381][T25782] ? rw_verify_area+0xcf/0x680 [ 718.476441][T25782] do_sendfile+0xb06/0xe50 [ 718.476496][T25782] ? __pfx_do_sendfile+0x10/0x10 [ 718.476545][T25782] ? __fget_files+0x20e/0x3c0 [ 718.476603][T25782] __x64_sys_sendfile64+0x1d8/0x220 [ 718.476636][T25782] ? ksys_write+0x1ac/0x250 [ 718.476684][T25782] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 718.476731][T25782] do_syscall_64+0xcd/0x490 [ 718.476787][T25782] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 718.476821][T25782] RIP: 0033:0x7f119898e929 [ 718.476849][T25782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 718.476882][T25782] RSP: 002b:00007f1199765038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 718.476912][T25782] RAX: ffffffffffffffda RBX: 00007f1198bb6080 RCX: 00007f119898e929 [ 718.476934][T25782] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004 [ 718.476954][T25782] RBP: 00007f1199765090 R08: 0000000000000000 R09: 0000000000000000 [ 718.476974][T25782] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 718.476993][T25782] R13: 0000000000000000 R14: 00007f1198bb6080 R15: 00007ffff3ea0f98 [ 718.477036][T25782] [ 718.948299][T16329] Bluetooth: hci0: ISO packet for unknown connection handle 0 [ 722.943616][T25971] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2197'. [ 724.925966][T26006] FAULT_INJECTION: forcing a failure. [ 724.925966][T26006] name failslab, interval 1, probability 0, space 0, times 0 [ 725.053121][T26006] CPU: 1 UID: 0 PID: 26006 Comm: syz.2.2206 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 725.053188][T26006] Tainted: [I]=FIRMWARE_WORKAROUND [ 725.053201][T26006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 725.053221][T26006] Call Trace: [ 725.053232][T26006] [ 725.053244][T26006] dump_stack_lvl+0x16c/0x1f0 [ 725.053297][T26006] should_fail_ex+0x512/0x640 [ 725.053343][T26006] ? __kvmalloc_node_noprof+0x124/0x620 [ 725.053394][T26006] should_failslab+0xc2/0x120 [ 725.053426][T26006] __kvmalloc_node_noprof+0x137/0x620 [ 725.053475][T26006] ? seq_read_iter+0x826/0x12c0 [ 725.053526][T26006] ? seq_read_iter+0x826/0x12c0 [ 725.053566][T26006] seq_read_iter+0x826/0x12c0 [ 725.053608][T26006] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 725.053676][T26006] kernfs_fop_read_iter+0x40f/0x5a0 [ 725.053732][T26006] copy_splice_read+0x618/0xba0 [ 725.053792][T26006] ? __pfx_copy_splice_read+0x10/0x10 [ 725.053840][T26006] ? look_up_lock_class+0x6b/0x150 [ 725.053895][T26006] ? lockdep_init_map_type+0x5c/0x280 [ 725.053945][T26006] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 725.053995][T26006] ? __pfx_copy_splice_read+0x10/0x10 [ 725.054046][T26006] do_splice_read+0x282/0x370 [ 725.054109][T26006] splice_direct_to_actor+0x2a1/0xa30 [ 725.054156][T26006] ? __pfx_direct_splice_actor+0x10/0x10 [ 725.054209][T26006] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 725.054250][T26006] ? get_pid_task+0xfc/0x250 [ 725.054306][T26006] do_splice_direct+0x174/0x240 [ 725.054348][T26006] ? __pfx_do_splice_direct+0x10/0x10 [ 725.054391][T26006] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 725.054453][T26006] ? rw_verify_area+0xcf/0x680 [ 725.054497][T26006] do_sendfile+0xb06/0xe50 [ 725.054548][T26006] ? __pfx_do_sendfile+0x10/0x10 [ 725.054591][T26006] ? __fget_files+0x20e/0x3c0 [ 725.054645][T26006] __x64_sys_sendfile64+0x1d8/0x220 [ 725.054673][T26006] ? ksys_write+0x1ac/0x250 [ 725.054717][T26006] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 725.054761][T26006] do_syscall_64+0xcd/0x490 [ 725.054818][T26006] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 725.054850][T26006] RIP: 0033:0x7f4a7858e929 [ 725.054874][T26006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 725.054903][T26006] RSP: 002b:00007f4a793f2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 725.054931][T26006] RAX: ffffffffffffffda RBX: 00007f4a787b5fa0 RCX: 00007f4a7858e929 [ 725.054951][T26006] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004 [ 725.054969][T26006] RBP: 00007f4a793f2090 R08: 0000000000000000 R09: 0000000000000000 [ 725.054987][T26006] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 725.055004][T26006] R13: 0000000000000000 R14: 00007f4a787b5fa0 R15: 00007ffc6c6bdb98 [ 725.055044][T26006] [ 726.595097][T25798] delete_channel: no stack [ 726.875457][T26046] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2210'. [ 728.045366][T26046] team0: Port device team_slave_1 removed [ 729.259063][T26003] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 730.352477][T26083] binder: BINDER_SET_CONTEXT_MGR already set [ 730.368160][T26083] binder: 26081:26083 ioctl 40046207 0 returned -16 [ 730.375339][T25996] delete_channel: no stack [ 733.634564][T25903] delete_channel: no stack [ 734.221281][T26173] FAULT_INJECTION: forcing a failure. [ 734.221281][T26173] name failslab, interval 1, probability 0, space 0, times 0 [ 734.242980][T26173] CPU: 0 UID: 0 PID: 26173 Comm: syz.1.2227 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 734.243033][T26173] Tainted: [I]=FIRMWARE_WORKAROUND [ 734.243044][T26173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 734.243059][T26173] Call Trace: [ 734.243068][T26173] [ 734.243077][T26173] dump_stack_lvl+0x16c/0x1f0 [ 734.243118][T26173] should_fail_ex+0x512/0x640 [ 734.243154][T26173] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 734.243191][T26173] should_failslab+0xc2/0x120 [ 734.243214][T26173] __kmalloc_cache_noprof+0x6a/0x3e0 [ 734.243248][T26173] ? snd_seq_timer_new+0x42/0x190 [ 734.243285][T26173] snd_seq_timer_new+0x42/0x190 [ 734.243319][T26173] snd_seq_queue_alloc+0x177/0x550 [ 734.243351][T26173] snd_seq_ioctl_create_queue+0xa9/0x380 [ 734.243390][T26173] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 734.243417][T26173] alloc_seq_queue+0xda/0x180 [ 734.243439][T26173] ? __pfx_alloc_seq_queue+0x10/0x10 [ 734.243479][T26173] ? mark_held_locks+0x49/0x80 [ 734.243512][T26173] ? _raw_spin_unlock_irq+0x23/0x50 [ 734.243547][T26173] snd_seq_oss_open+0x38c/0xa20 [ 734.243576][T26173] odev_open+0x6f/0x90 [ 734.243611][T26173] ? __pfx_odev_open+0x10/0x10 [ 734.243647][T26173] soundcore_open+0x409/0x580 [ 734.243694][T26173] ? __pfx_soundcore_open+0x10/0x10 [ 734.243731][T26173] chrdev_open+0x234/0x6a0 [ 734.243769][T26173] ? __pfx_apparmor_file_open+0x10/0x10 [ 734.243800][T26173] ? __pfx_chrdev_open+0x10/0x10 [ 734.243841][T26173] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 734.243879][T26173] do_dentry_open+0x741/0x1c10 [ 734.243918][T26173] ? __pfx_chrdev_open+0x10/0x10 [ 734.243962][T26173] vfs_open+0x82/0x3f0 [ 734.243992][T26173] path_openat+0x1de4/0x2cb0 [ 734.244037][T26173] ? __pfx_path_openat+0x10/0x10 [ 734.244074][T26173] ? __lock_acquire+0xb8a/0x1c90 [ 734.244111][T26173] do_filp_open+0x20b/0x470 [ 734.244146][T26173] ? __pfx_do_filp_open+0x10/0x10 [ 734.244203][T26173] ? alloc_fd+0x471/0x7d0 [ 734.244244][T26173] do_sys_openat2+0x11b/0x1d0 [ 734.244271][T26173] ? __pfx_do_sys_openat2+0x10/0x10 [ 734.244310][T26173] __x64_sys_openat+0x174/0x210 [ 734.244338][T26173] ? __pfx___x64_sys_openat+0x10/0x10 [ 734.244378][T26173] do_syscall_64+0xcd/0x490 [ 734.244417][T26173] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 734.244442][T26173] RIP: 0033:0x7f199cd8e929 [ 734.244463][T26173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 734.244487][T26173] RSP: 002b:00007f199db8b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 734.244531][T26173] RAX: ffffffffffffffda RBX: 00007f199cfb6080 RCX: 00007f199cd8e929 [ 734.244548][T26173] RDX: 0000000000000000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 734.244564][T26173] RBP: 00007f199ce10b39 R08: 0000000000000000 R09: 0000000000000000 [ 734.244583][T26173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 734.244599][T26173] R13: 0000000000000000 R14: 00007f199cfb6080 R15: 00007ffe5e3502b8 [ 734.244630][T26173] [ 738.464549][T26342] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input80 [ 738.947236][T26345] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input81 [ 741.097295][T26399] FAULT_INJECTION: forcing a failure. [ 741.097295][T26399] name failslab, interval 1, probability 0, space 0, times 0 [ 741.241533][T26399] CPU: 1 UID: 0 PID: 26399 Comm: syz.0.2245 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 741.241577][T26399] Tainted: [I]=FIRMWARE_WORKAROUND [ 741.241587][T26399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 741.241601][T26399] Call Trace: [ 741.241610][T26399] [ 741.241619][T26399] dump_stack_lvl+0x16c/0x1f0 [ 741.241661][T26399] should_fail_ex+0x512/0x640 [ 741.241696][T26399] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 741.241732][T26399] should_failslab+0xc2/0x120 [ 741.241755][T26399] __kmalloc_cache_noprof+0x6a/0x3e0 [ 741.241787][T26399] ? __lock_acquire+0xb8a/0x1c90 [ 741.241820][T26399] ? snd_timer_instance_new+0x47/0x2e0 [ 741.241865][T26399] snd_timer_instance_new+0x47/0x2e0 [ 741.241906][T26399] snd_seq_timer_open+0x1cc/0x5e0 [ 741.241942][T26399] ? __pfx_snd_seq_timer_open+0x10/0x10 [ 741.241978][T26399] ? find_held_lock+0x2b/0x80 [ 741.242007][T26399] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 741.242043][T26399] ? lockdep_hardirqs_on+0x7c/0x110 [ 741.242078][T26399] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 741.242114][T26399] queue_use+0xe3/0x250 [ 741.242141][T26399] snd_seq_queue_alloc+0x2e5/0x550 [ 741.242175][T26399] snd_seq_ioctl_create_queue+0xa9/0x380 [ 741.242214][T26399] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 741.242241][T26399] alloc_seq_queue+0xda/0x180 [ 741.242273][T26399] ? __pfx_alloc_seq_queue+0x10/0x10 [ 741.242314][T26399] ? mark_held_locks+0x49/0x80 [ 741.242346][T26399] ? _raw_spin_unlock_irq+0x23/0x50 [ 741.242385][T26399] snd_seq_oss_open+0x38c/0xa20 [ 741.242414][T26399] odev_open+0x6f/0x90 [ 741.242449][T26399] ? __pfx_odev_open+0x10/0x10 [ 741.242485][T26399] soundcore_open+0x409/0x580 [ 741.242524][T26399] ? __pfx_soundcore_open+0x10/0x10 [ 741.242561][T26399] chrdev_open+0x234/0x6a0 [ 741.242599][T26399] ? __pfx_apparmor_file_open+0x10/0x10 [ 741.242630][T26399] ? __pfx_chrdev_open+0x10/0x10 [ 741.242671][T26399] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 741.242709][T26399] do_dentry_open+0x741/0x1c10 [ 741.242747][T26399] ? __pfx_chrdev_open+0x10/0x10 [ 741.242791][T26399] vfs_open+0x82/0x3f0 [ 741.242820][T26399] path_openat+0x1de4/0x2cb0 [ 741.242865][T26399] ? __pfx_path_openat+0x10/0x10 [ 741.242915][T26399] ? __lock_acquire+0xb8a/0x1c90 [ 741.242966][T26399] do_filp_open+0x20b/0x470 [ 741.243009][T26399] ? __pfx_do_filp_open+0x10/0x10 [ 741.243067][T26399] ? alloc_fd+0x471/0x7d0 [ 741.243108][T26399] do_sys_openat2+0x11b/0x1d0 [ 741.243135][T26399] ? __pfx_do_sys_openat2+0x10/0x10 [ 741.243174][T26399] __x64_sys_openat+0x174/0x210 [ 741.243202][T26399] ? __pfx___x64_sys_openat+0x10/0x10 [ 741.243242][T26399] do_syscall_64+0xcd/0x490 [ 741.243300][T26399] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 741.243325][T26399] RIP: 0033:0x7f8f4e78e929 [ 741.243344][T26399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 741.243368][T26399] RSP: 002b:00007f8f4f646038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 741.243391][T26399] RAX: ffffffffffffffda RBX: 00007f8f4e9b6080 RCX: 00007f8f4e78e929 [ 741.243408][T26399] RDX: 0000000000000000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 741.243423][T26399] RBP: 00007f8f4e810b39 R08: 0000000000000000 R09: 0000000000000000 [ 741.243439][T26399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 741.243453][T26399] R13: 0000000000000000 R14: 00007f8f4e9b6080 R15: 00007ffc8c2ce888 [ 741.243484][T26399] [ 742.454153][T26261] delete_channel: no stack [ 743.658237][T26445] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input82 [ 745.351119][T26556] futex_wake_op: syz.1.2258 tries to shift op by 64; fix this program [ 746.322815][T26601] FAULT_INJECTION: forcing a failure. [ 746.322815][T26601] name failslab, interval 1, probability 0, space 0, times 0 [ 746.392826][T26601] CPU: 1 UID: 0 PID: 26601 Comm: syz.0.2263 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 746.392887][T26601] Tainted: [I]=FIRMWARE_WORKAROUND [ 746.392899][T26601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 746.392918][T26601] Call Trace: [ 746.392929][T26601] [ 746.392942][T26601] dump_stack_lvl+0x16c/0x1f0 [ 746.392995][T26601] should_fail_ex+0x512/0x640 [ 746.393044][T26601] ? fs_reclaim_acquire+0xae/0x150 [ 746.393088][T26601] ? tomoyo_encode2+0x100/0x3e0 [ 746.393132][T26601] should_failslab+0xc2/0x120 [ 746.393165][T26601] __kmalloc_noprof+0xd2/0x510 [ 746.393216][T26601] ? d_absolute_path+0x136/0x1a0 [ 746.393258][T26601] tomoyo_encode2+0x100/0x3e0 [ 746.393310][T26601] tomoyo_encode+0x29/0x50 [ 746.393354][T26601] tomoyo_realpath_from_path+0x18f/0x6e0 [ 746.393415][T26601] tomoyo_path_number_perm+0x245/0x580 [ 746.393455][T26601] ? tomoyo_path_number_perm+0x237/0x580 [ 746.393499][T26601] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 746.393542][T26601] ? find_held_lock+0x2b/0x80 [ 746.393616][T26601] ? find_held_lock+0x2b/0x80 [ 746.393651][T26601] ? hook_file_ioctl_common+0x145/0x410 [ 746.393699][T26601] ? __fget_files+0x20e/0x3c0 [ 746.393753][T26601] security_file_ioctl+0x9b/0x240 [ 746.393807][T26601] __x64_sys_ioctl+0xb7/0x210 [ 746.393851][T26601] do_syscall_64+0xcd/0x490 [ 746.393918][T26601] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 746.393951][T26601] RIP: 0033:0x7f8f4e78e929 [ 746.393977][T26601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 746.394028][T26601] RSP: 002b:00007f8f4f667038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 746.394060][T26601] RAX: ffffffffffffffda RBX: 00007f8f4e9b5fa0 RCX: 00007f8f4e78e929 [ 746.394082][T26601] RDX: 0000000000000000 RSI: 0000000000004c06 RDI: 0000000000000003 [ 746.394102][T26601] RBP: 00007f8f4f667090 R08: 0000000000000000 R09: 0000000000000000 [ 746.394122][T26601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 746.394142][T26601] R13: 0000000000000000 R14: 00007f8f4e9b5fa0 R15: 00007ffc8c2ce888 [ 746.394186][T26601] [ 746.647087][T26601] ERROR: Out of memory at tomoyo_realpath_from_path. [ 749.134142][T26682] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2270'. [ 749.176066][T26682] netlink: 'syz.3.2270': attribute type 1 has an invalid length. [ 749.184009][T26682] netlink: 'syz.3.2270': attribute type 2 has an invalid length. [ 749.194807][T26682] netlink: 'syz.3.2270': attribute type 7 has an invalid length. [ 749.216756][T26682] netlink: 274 bytes leftover after parsing attributes in process `syz.3.2270'. [ 750.732526][T26704] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137 [ 750.848373][T26704] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138 [ 750.949684][T26704] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum [ 751.064967][T26708] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2280'. [ 751.082962][T26709] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 1: bad block bitmap checksum [ 751.127122][T26708] netlink: 'syz.0.2280': attribute type 1 has an invalid length. [ 751.190560][T26708] netlink: 'syz.0.2280': attribute type 2 has an invalid length. [ 751.218070][T26708] netlink: 'syz.0.2280': attribute type 7 has an invalid length. [ 751.253121][T26708] netlink: 274 bytes leftover after parsing attributes in process `syz.0.2280'. [ 752.100922][ T5851] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 752.111388][ T5851] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 752.123076][ T5851] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 752.140331][ T5851] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 752.150086][ T5851] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 753.179420][T26774] FAULT_INJECTION: forcing a failure. [ 753.179420][T26774] name failslab, interval 1, probability 0, space 0, times 0 [ 753.224150][T26774] CPU: 0 UID: 0 PID: 26774 Comm: syz.1.2286 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 753.224191][T26774] Tainted: [I]=FIRMWARE_WORKAROUND [ 753.224200][T26774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 753.224214][T26774] Call Trace: [ 753.224222][T26774] [ 753.224232][T26774] dump_stack_lvl+0x16c/0x1f0 [ 753.224272][T26774] should_fail_ex+0x512/0x640 [ 753.224306][T26774] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 753.224341][T26774] should_failslab+0xc2/0x120 [ 753.224363][T26774] __kmalloc_cache_noprof+0x6a/0x3e0 [ 753.224395][T26774] ? lockdep_init_map_type+0x5c/0x280 [ 753.224428][T26774] ? snd_seq_prioq_new+0x3f/0x110 [ 753.224463][T26774] snd_seq_prioq_new+0x3f/0x110 [ 753.224493][T26774] snd_seq_queue_alloc+0x153/0x550 [ 753.224525][T26774] snd_seq_ioctl_create_queue+0xa9/0x380 [ 753.224563][T26774] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 753.224589][T26774] alloc_seq_queue+0xda/0x180 [ 753.224611][T26774] ? __pfx_alloc_seq_queue+0x10/0x10 [ 753.224649][T26774] ? mark_held_locks+0x49/0x80 [ 753.224680][T26774] ? _raw_spin_unlock_irq+0x23/0x50 [ 753.224714][T26774] snd_seq_oss_open+0x38c/0xa20 [ 753.224742][T26774] odev_open+0x6f/0x90 [ 753.224775][T26774] ? __pfx_odev_open+0x10/0x10 [ 753.224810][T26774] soundcore_open+0x409/0x580 [ 753.224848][T26774] ? __pfx_soundcore_open+0x10/0x10 [ 753.224883][T26774] chrdev_open+0x234/0x6a0 [ 753.224926][T26774] ? __pfx_apparmor_file_open+0x10/0x10 [ 753.224958][T26774] ? __pfx_chrdev_open+0x10/0x10 [ 753.224997][T26774] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 753.225035][T26774] do_dentry_open+0x741/0x1c10 [ 753.225072][T26774] ? __pfx_chrdev_open+0x10/0x10 [ 753.225114][T26774] vfs_open+0x82/0x3f0 [ 753.225142][T26774] path_openat+0x1de4/0x2cb0 [ 753.225186][T26774] ? __pfx_path_openat+0x10/0x10 [ 753.225222][T26774] ? __lock_acquire+0xb8a/0x1c90 [ 753.225258][T26774] do_filp_open+0x20b/0x470 [ 753.225292][T26774] ? __pfx_do_filp_open+0x10/0x10 [ 753.225347][T26774] ? alloc_fd+0x471/0x7d0 [ 753.225386][T26774] do_sys_openat2+0x11b/0x1d0 [ 753.225412][T26774] ? __pfx_do_sys_openat2+0x10/0x10 [ 753.225450][T26774] __x64_sys_openat+0x174/0x210 [ 753.225477][T26774] ? __pfx___x64_sys_openat+0x10/0x10 [ 753.225516][T26774] do_syscall_64+0xcd/0x490 [ 753.225553][T26774] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 753.225578][T26774] RIP: 0033:0x7f199cd8e929 [ 753.225596][T26774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 753.225620][T26774] RSP: 002b:00007f199db8b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 753.225642][T26774] RAX: ffffffffffffffda RBX: 00007f199cfb6080 RCX: 00007f199cd8e929 [ 753.225658][T26774] RDX: 0000000000000000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 753.225673][T26774] RBP: 00007f199ce10b39 R08: 0000000000000000 R09: 0000000000000000 [ 753.225688][T26774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 753.225702][T26774] R13: 0000000000000000 R14: 00007f199cfb6080 R15: 00007ffe5e3502b8 [ 753.225731][T26774] [ 754.213313][T16329] Bluetooth: hci4: command tx timeout [ 755.529209][T26749] chnl_net:caif_netlink_parms(): no params data found [ 756.224559][T26749] bridge0: port 1(bridge_slave_0) entered blocking state [ 756.234737][T26749] bridge0: port 1(bridge_slave_0) entered disabled state [ 756.242092][T26749] bridge_slave_0: entered allmulticast mode [ 756.298977][T26749] bridge_slave_0: entered promiscuous mode [ 756.303184][T16329] Bluetooth: hci4: command tx timeout [ 756.353845][T26749] bridge0: port 2(bridge_slave_1) entered blocking state [ 756.361010][T26749] bridge0: port 2(bridge_slave_1) entered disabled state [ 756.418770][T26749] bridge_slave_1: entered allmulticast mode [ 756.453651][T26749] bridge_slave_1: entered promiscuous mode [ 757.499998][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 757.506490][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 757.771513][T26749] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 758.043192][T26782] delete_channel: no stack [ 758.048781][T26749] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 758.372998][T16329] Bluetooth: hci4: command tx timeout [ 758.484551][T26749] team0: Port device team_slave_0 added [ 758.547934][T26749] team0: Port device team_slave_1 added [ 758.725858][T26749] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 758.753150][T26749] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 758.833150][T26749] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 758.868515][T26749] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 758.886135][T26749] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 758.983255][T26749] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 759.676621][T26749] hsr_slave_0: entered promiscuous mode [ 759.706896][T26749] hsr_slave_1: entered promiscuous mode [ 759.739414][T26749] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 759.767754][T26749] Cannot create hsr debugfs directory [ 759.774757][T27052] FAULT_INJECTION: forcing a failure. [ 759.774757][T27052] name failslab, interval 1, probability 0, space 0, times 0 [ 759.855324][T27052] CPU: 1 UID: 0 PID: 27052 Comm: syz.3.2295 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 759.855384][T27052] Tainted: [I]=FIRMWARE_WORKAROUND [ 759.855398][T27052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 759.855417][T27052] Call Trace: [ 759.855428][T27052] [ 759.855441][T27052] dump_stack_lvl+0x16c/0x1f0 [ 759.855498][T27052] should_fail_ex+0x512/0x640 [ 759.855546][T27052] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 759.855597][T27052] should_failslab+0xc2/0x120 [ 759.855631][T27052] __kmalloc_cache_noprof+0x6a/0x3e0 [ 759.855678][T27052] ? snd_seq_oss_open+0x55/0xa20 [ 759.855718][T27052] snd_seq_oss_open+0x55/0xa20 [ 759.855759][T27052] odev_open+0x6f/0x90 [ 759.855808][T27052] ? __pfx_odev_open+0x10/0x10 [ 759.855859][T27052] soundcore_open+0x409/0x580 [ 759.855912][T27052] ? __pfx_soundcore_open+0x10/0x10 [ 759.855963][T27052] chrdev_open+0x234/0x6a0 [ 759.856015][T27052] ? __pfx_apparmor_file_open+0x10/0x10 [ 759.856060][T27052] ? __pfx_chrdev_open+0x10/0x10 [ 759.856116][T27052] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 759.856172][T27052] do_dentry_open+0x741/0x1c10 [ 759.856223][T27052] ? __pfx_chrdev_open+0x10/0x10 [ 759.856286][T27052] vfs_open+0x82/0x3f0 [ 759.856342][T27052] path_openat+0x1de4/0x2cb0 [ 759.856408][T27052] ? __pfx_path_openat+0x10/0x10 [ 759.856463][T27052] ? __lock_acquire+0xb8a/0x1c90 [ 759.856517][T27052] do_filp_open+0x20b/0x470 [ 759.856570][T27052] ? __pfx_do_filp_open+0x10/0x10 [ 759.856655][T27052] ? alloc_fd+0x471/0x7d0 [ 759.856715][T27052] do_sys_openat2+0x11b/0x1d0 [ 759.856754][T27052] ? __pfx_do_sys_openat2+0x10/0x10 [ 759.856804][T27052] ? __pfx___schedule+0x10/0x10 [ 759.856855][T27052] __x64_sys_openat+0x174/0x210 [ 759.856896][T27052] ? __pfx___x64_sys_openat+0x10/0x10 [ 759.856956][T27052] do_syscall_64+0xcd/0x490 [ 759.857014][T27052] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 759.857050][T27052] RIP: 0033:0x7f119898e929 [ 759.857078][T27052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 759.857112][T27052] RSP: 002b:00007f1199765038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 759.857154][T27052] RAX: ffffffffffffffda RBX: 00007f1198bb6080 RCX: 00007f119898e929 [ 759.857178][T27052] RDX: 0000000000000000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 759.857201][T27052] RBP: 00007f1198a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 759.857222][T27052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 759.857242][T27052] R13: 0000000000000000 R14: 00007f1198bb6080 R15: 00007ffff3ea0f98 [ 759.857284][T27052] [ 760.462987][T16329] Bluetooth: hci4: command tx timeout [ 761.002857][ T49] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 761.207138][ T49] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 761.869080][ T49] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 762.057291][ T49] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 762.386153][T26749] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 762.420443][T26949] delete_channel: no stack [ 762.450384][T26749] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 762.486570][T26749] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 762.529769][T26749] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 763.240195][ T49] bridge_slave_1: left allmulticast mode [ 763.254657][ T49] bridge_slave_1: left promiscuous mode [ 763.260495][ T49] bridge0: port 2(bridge_slave_1) entered disabled state [ 763.306300][ T49] bridge_slave_0: left allmulticast mode [ 763.312112][ T49] bridge_slave_0: left promiscuous mode [ 763.443336][ T49] bridge0: port 1(bridge_slave_0) entered disabled state [ 764.361537][ T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 764.377300][ T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 764.390658][ T49] bond0 (unregistering): Released all slaves [ 764.695759][T27313] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2302'. [ 764.733604][T27313] netlink: 'syz.1.2302': attribute type 1 has an invalid length. [ 764.766563][T27313] netlink: 'syz.1.2302': attribute type 2 has an invalid length. [ 764.795498][T27313] netlink: 'syz.1.2302': attribute type 7 has an invalid length. [ 764.813644][T26749] 8021q: adding VLAN 0 to HW filter on device bond0 [ 764.824050][T27313] netlink: 274 bytes leftover after parsing attributes in process `syz.1.2302'. [ 765.016202][T26749] 8021q: adding VLAN 0 to HW filter on device team0 [ 765.069138][ T7019] bridge0: port 1(bridge_slave_0) entered blocking state [ 765.076365][ T7019] bridge0: port 1(bridge_slave_0) entered forwarding state [ 765.199776][ T7019] bridge0: port 2(bridge_slave_1) entered blocking state [ 765.207032][ T7019] bridge0: port 2(bridge_slave_1) entered forwarding state [ 765.337612][ T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 765.372607][ T49] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 765.400392][ T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 765.427021][ T49] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 765.480959][T26700] delete_channel: no stack [ 765.596076][ T49] veth1_macvtap: left promiscuous mode [ 765.626628][ T49] veth0_macvtap: left promiscuous mode [ 765.640216][ T49] veth1_vlan: left promiscuous mode [ 765.653563][ T49] veth0_vlan: left promiscuous mode [ 767.482437][ T49] team0 (unregistering): Port device team_slave_0 removed [ 768.618559][T27408] FAULT_INJECTION: forcing a failure. [ 768.618559][T27408] name failslab, interval 1, probability 0, space 0, times 0 [ 768.687273][T27408] CPU: 0 UID: 0 PID: 27408 Comm: syz.1.2310 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 768.687326][T27408] Tainted: [I]=FIRMWARE_WORKAROUND [ 768.687338][T27408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 768.687357][T27408] Call Trace: [ 768.687368][T27408] [ 768.687381][T27408] dump_stack_lvl+0x16c/0x1f0 [ 768.687434][T27408] should_fail_ex+0x512/0x640 [ 768.687480][T27408] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 768.687537][T27408] should_failslab+0xc2/0x120 [ 768.687570][T27408] __kmalloc_cache_noprof+0x6a/0x3e0 [ 768.687615][T27408] ? call_usermodehelper_setup+0xaf/0x360 [ 768.687650][T27408] ? __pfx_cleanup_uevent_env+0x10/0x10 [ 768.687686][T27408] call_usermodehelper_setup+0xaf/0x360 [ 768.687726][T27408] kobject_uevent_env+0x1690/0x1870 [ 768.687780][T27408] lo_ioctl+0x7ef/0x2760 [ 768.687829][T27408] ? kasan_save_stack+0x42/0x60 [ 768.687875][T27408] ? kasan_save_stack+0x33/0x60 [ 768.687919][T27408] ? kasan_save_track+0x14/0x30 [ 768.687964][T27408] ? kasan_save_free_info+0x3b/0x60 [ 768.688002][T27408] ? __kasan_slab_free+0x51/0x70 [ 768.688050][T27408] ? kfree+0x2b4/0x4d0 [ 768.688088][T27408] ? tomoyo_path_number_perm+0x470/0x580 [ 768.688125][T27408] ? security_file_ioctl+0x9b/0x240 [ 768.688163][T27408] ? __x64_sys_ioctl+0xb7/0x210 [ 768.688198][T27408] ? do_syscall_64+0xcd/0x490 [ 768.688246][T27408] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 768.688309][T27408] ? __pfx_lo_ioctl+0x10/0x10 [ 768.688400][T27408] ? kasan_quarantine_put+0x10a/0x240 [ 768.688446][T27408] ? lockdep_hardirqs_on+0x7c/0x110 [ 768.688498][T27408] ? find_held_lock+0x2b/0x80 [ 768.688541][T27408] ? tomoyo_path_number_perm+0x295/0x580 [ 768.688597][T27408] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 768.688646][T27408] ? blkdev_common_ioctl+0x1dd/0x2480 [ 768.688681][T27408] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 768.688717][T27408] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 768.688766][T27408] ? __pfx_blkdev_common_ioctl+0x10/0x10 [ 768.688804][T27408] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 768.688866][T27408] ? find_held_lock+0x2b/0x80 [ 768.688901][T27408] ? __pfx_lo_ioctl+0x10/0x10 [ 768.688956][T27408] blkdev_ioctl+0x274/0x6d0 [ 768.688995][T27408] ? __pfx_blkdev_ioctl+0x10/0x10 [ 768.689040][T27408] ? __pfx_blkdev_ioctl+0x10/0x10 [ 768.689080][T27408] __x64_sys_ioctl+0x18e/0x210 [ 768.689123][T27408] do_syscall_64+0xcd/0x490 [ 768.689176][T27408] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 768.689208][T27408] RIP: 0033:0x7f199cd8e929 [ 768.689234][T27408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 768.689265][T27408] RSP: 002b:00007f199dbac038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 768.689296][T27408] RAX: ffffffffffffffda RBX: 00007f199cfb5fa0 RCX: 00007f199cd8e929 [ 768.689317][T27408] RDX: 0000000000000000 RSI: 0000000000004c06 RDI: 0000000000000003 [ 768.689337][T27408] RBP: 00007f199dbac090 R08: 0000000000000000 R09: 0000000000000000 [ 768.689357][T27408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 768.689375][T27408] R13: 0000000000000000 R14: 00007f199cfb5fa0 R15: 00007ffe5e3502b8 [ 768.689416][T27408] [ 769.567771][T27447] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2312'. [ 769.631626][T27453] netlink: 'syz.0.2312': attribute type 1 has an invalid length. [ 769.654776][T27453] netlink: 'syz.0.2312': attribute type 2 has an invalid length. [ 769.664150][T27453] netlink: 'syz.0.2312': attribute type 7 has an invalid length. [ 769.672103][T27453] netlink: 274 bytes leftover after parsing attributes in process `syz.0.2312'. [ 769.850144][T26749] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 770.045996][T27491] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2314'. [ 770.438723][T27491] team0: Port device team_slave_1 removed [ 771.632436][T26749] veth0_vlan: entered promiscuous mode [ 771.655012][T27589] input input83: cannot allocate more than FF_MAX_EFFECTS effects [ 771.698231][T26749] veth1_vlan: entered promiscuous mode [ 771.881745][T26749] veth0_macvtap: entered promiscuous mode [ 772.010459][T26749] veth1_macvtap: entered promiscuous mode [ 772.101788][T27629] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2319'. [ 772.172338][T27629] mac80211_hwsim hwsim8 wlan1: entered allmulticast mode [ 772.286641][T26749] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 772.369166][T26749] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 772.535670][ T30] audit: type=1326 audit(4294970958.909:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27651 comm="syz.1.2320" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f199cd8e929 code=0x0 [ 772.569519][T26749] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 772.582207][T26749] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 772.605976][T26749] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 772.623192][T26749] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 772.714512][ T30] audit: type=1800 audit(4294970959.079:92): pid=27662 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2320" name="SYSVffffffff" dev="tmpfs" ino=0 res=0 errno=0 [ 773.175751][ T7008] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 773.209035][ T7008] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 773.302848][ T7020] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 773.334212][ T7020] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 773.417236][T27684] svc: failed to register nfsdv3 RPC service (errno 111). [ 773.460770][T27684] svc: failed to register nfsaclv3 RPC service (errno 111). [ 773.726007][T27711] blktrace: Concurrent blktraces are not allowed on ram7 [ 773.950706][T27709] FAULT_INJECTION: forcing a failure. [ 773.950706][T27709] name failslab, interval 1, probability 0, space 0, times 0 [ 773.984542][T27709] CPU: 1 UID: 0 PID: 27709 Comm: syz.1.2323 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 773.984601][T27709] Tainted: [I]=FIRMWARE_WORKAROUND [ 773.984615][T27709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 773.984636][T27709] Call Trace: [ 773.984647][T27709] [ 773.984661][T27709] dump_stack_lvl+0x16c/0x1f0 [ 773.984719][T27709] should_fail_ex+0x512/0x640 [ 773.984780][T27709] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 773.984831][T27709] should_failslab+0xc2/0x120 [ 773.984864][T27709] __kmalloc_cache_noprof+0x6a/0x3e0 [ 773.984912][T27709] ? snd_seq_timer_new+0x42/0x190 [ 773.984997][T27709] snd_seq_timer_new+0x42/0x190 [ 773.985058][T27709] snd_seq_queue_alloc+0x177/0x550 [ 773.985107][T27709] snd_seq_ioctl_create_queue+0xa9/0x380 [ 773.985163][T27709] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 773.985201][T27709] alloc_seq_queue+0xda/0x180 [ 773.985234][T27709] ? __pfx_alloc_seq_queue+0x10/0x10 [ 773.985293][T27709] ? mark_held_locks+0x49/0x80 [ 773.985342][T27709] ? _raw_spin_unlock_irq+0x23/0x50 [ 773.985401][T27709] snd_seq_oss_open+0x38c/0xa20 [ 773.985445][T27709] odev_open+0x6f/0x90 [ 773.985496][T27709] ? __pfx_odev_open+0x10/0x10 [ 773.985550][T27709] soundcore_open+0x409/0x580 [ 773.985607][T27709] ? __pfx_soundcore_open+0x10/0x10 [ 773.985658][T27709] chrdev_open+0x234/0x6a0 [ 773.985711][T27709] ? __pfx_apparmor_file_open+0x10/0x10 [ 773.985756][T27709] ? __pfx_chrdev_open+0x10/0x10 [ 773.985816][T27709] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 773.985874][T27709] do_dentry_open+0x741/0x1c10 [ 773.985928][T27709] ? __pfx_chrdev_open+0x10/0x10 [ 773.985993][T27709] vfs_open+0x82/0x3f0 [ 773.986045][T27709] path_openat+0x1de4/0x2cb0 [ 773.986112][T27709] ? __pfx_path_openat+0x10/0x10 [ 773.986168][T27709] ? __lock_acquire+0xb8a/0x1c90 [ 773.986234][T27709] do_filp_open+0x20b/0x470 [ 773.986285][T27709] ? __pfx_do_filp_open+0x10/0x10 [ 773.986368][T27709] ? alloc_fd+0x471/0x7d0 [ 773.986427][T27709] do_sys_openat2+0x11b/0x1d0 [ 773.986466][T27709] ? __pfx_do_sys_openat2+0x10/0x10 [ 773.986522][T27709] __x64_sys_openat+0x174/0x210 [ 773.986561][T27709] ? __pfx___x64_sys_openat+0x10/0x10 [ 773.986619][T27709] do_syscall_64+0xcd/0x490 [ 773.986674][T27709] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 773.986709][T27709] RIP: 0033:0x7f199cd8e929 [ 773.986735][T27709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 773.986770][T27709] RSP: 002b:00007f199db8b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 773.986801][T27709] RAX: ffffffffffffffda RBX: 00007f199cfb6080 RCX: 00007f199cd8e929 [ 773.986824][T27709] RDX: 0000000000000000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 773.986846][T27709] RBP: 00007f199ce10b39 R08: 0000000000000000 R09: 0000000000000000 [ 773.986867][T27709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 773.986887][T27709] R13: 0000000000000000 R14: 00007f199cfb6080 R15: 00007ffe5e3502b8 [ 773.986930][T27709] [ 774.436974][T27703] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 774.528158][T27731] binder: 27728:27731 ioctl 600004 4 returned -22 [ 774.678681][T27700] delete_channel: no stack [ 775.750490][ T5851] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 775.760288][ T5851] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 775.769249][ T5851] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 775.777902][ T5851] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 775.785805][ T5851] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 776.651268][ T7011] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 776.867029][ T7011] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 777.009502][ T7011] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 777.813880][ T5851] Bluetooth: hci1: command tx timeout [ 777.895770][ T7020] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1366 with max blocks 2 with error 117 [ 777.917564][ T7020] EXT4-fs (sda1): This should not happen!! Data will be lost [ 777.917564][ T7020] [ 778.450831][T28021] zswap: compressor 000 not available [ 778.635111][T28035] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2332'. [ 779.325640][ T7011] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 779.358377][ T7011] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 779.410599][ T7011] bond0 (unregistering): Released all slaves [ 779.518536][T27811] chnl_net:caif_netlink_parms(): no params data found [ 779.568462][ T7011] .SR: left promiscuous mode [ 779.893180][ T5851] Bluetooth: hci1: command tx timeout [ 780.715249][T27811] bridge0: port 1(bridge_slave_0) entered blocking state [ 780.753040][T27811] bridge0: port 1(bridge_slave_0) entered disabled state [ 780.760735][T27811] bridge_slave_0: entered allmulticast mode [ 780.799942][T27811] bridge_slave_0: entered promiscuous mode [ 780.829269][T27811] bridge0: port 2(bridge_slave_1) entered blocking state [ 780.859938][T27811] bridge0: port 2(bridge_slave_1) entered disabled state [ 780.874945][T27811] bridge_slave_1: entered allmulticast mode [ 780.915646][T27811] bridge_slave_1: entered promiscuous mode [ 781.348268][T27811] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 781.454846][T27811] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 781.747060][T27811] team0: Port device team_slave_0 added [ 781.915991][T27811] team0: Port device team_slave_1 added [ 781.973347][ T5851] Bluetooth: hci1: command tx timeout [ 782.367090][T27811] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 782.383738][T27811] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 782.446683][T27811] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 782.567387][T27811] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 782.583634][T27811] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 782.643097][T27811] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 782.696668][ T7011] hsr_slave_0: left promiscuous mode [ 782.702804][ T7011] hsr_slave_1: left promiscuous mode [ 782.723739][ T7011] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 782.731228][ T7011] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 782.755638][ T7011] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 782.763519][ T7011] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 782.816032][ T7011] veth1_macvtap: left promiscuous mode [ 782.821693][ T7011] veth0_macvtap: left promiscuous mode [ 782.833557][ T7011] veth1_vlan: left promiscuous mode [ 782.838971][ T7011] veth0_vlan: left promiscuous mode [ 783.437687][T28033] delete_channel: no stack [ 784.052991][ T5851] Bluetooth: hci1: command tx timeout [ 784.248792][ T7011] team0 (unregistering): Port device team_slave_0 removed [ 785.138978][T27811] hsr_slave_0: entered promiscuous mode [ 785.156670][T27811] hsr_slave_1: entered promiscuous mode [ 785.174686][T27811] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 785.197560][T27811] Cannot create hsr debugfs directory [ 785.740984][T28383] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2342'. [ 786.847224][T28450] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2343'. [ 787.464891][T28461] ima: policy update failed [ 787.474083][ T30] audit: type=1802 audit(4294970973.839:93): pid=28461 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.2344" res=0 errno=0 [ 788.075340][T27811] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 788.120273][T27811] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 788.249091][T27811] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 788.274277][T28491] FAULT_INJECTION: forcing a failure. [ 788.274277][T28491] name failslab, interval 1, probability 0, space 0, times 0 [ 788.330166][T27811] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 788.353599][T28491] CPU: 1 UID: 0 PID: 28491 Comm: syz.1.2346 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 788.353653][T28491] Tainted: [I]=FIRMWARE_WORKAROUND [ 788.353667][T28491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 788.353687][T28491] Call Trace: [ 788.353699][T28491] [ 788.353711][T28491] dump_stack_lvl+0x16c/0x1f0 [ 788.353767][T28491] should_fail_ex+0x512/0x640 [ 788.353823][T28491] ? __kmalloc_noprof+0xbf/0x510 [ 788.353876][T28491] ? copy_splice_read+0x1a8/0xba0 [ 788.353916][T28491] should_failslab+0xc2/0x120 [ 788.353949][T28491] __kmalloc_noprof+0xd2/0x510 [ 788.354010][T28491] copy_splice_read+0x1a8/0xba0 [ 788.354064][T28491] ? __pfx_copy_splice_read+0x10/0x10 [ 788.354112][T28491] ? look_up_lock_class+0x6b/0x150 [ 788.354167][T28491] ? lockdep_init_map_type+0x5c/0x280 [ 788.354218][T28491] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 788.354271][T28491] ? __pfx_copy_splice_read+0x10/0x10 [ 788.354314][T28491] do_splice_read+0x282/0x370 [ 788.354362][T28491] splice_direct_to_actor+0x2a1/0xa30 [ 788.354410][T28491] ? __pfx_direct_splice_actor+0x10/0x10 [ 788.354463][T28491] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 788.354507][T28491] ? get_pid_task+0xfc/0x250 [ 788.354565][T28491] do_splice_direct+0x174/0x240 [ 788.354618][T28491] ? __pfx_do_splice_direct+0x10/0x10 [ 788.354664][T28491] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 788.354715][T28491] ? rw_verify_area+0xcf/0x680 [ 788.354761][T28491] do_sendfile+0xb06/0xe50 [ 788.354821][T28491] ? __pfx_do_sendfile+0x10/0x10 [ 788.354869][T28491] ? __fget_files+0x20e/0x3c0 [ 788.354927][T28491] __x64_sys_sendfile64+0x1d8/0x220 [ 788.354958][T28491] ? ksys_write+0x1ac/0x250 [ 788.355005][T28491] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 788.355052][T28491] do_syscall_64+0xcd/0x490 [ 788.355104][T28491] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 788.355139][T28491] RIP: 0033:0x7f199cd8e929 [ 788.355166][T28491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 788.355199][T28491] RSP: 002b:00007f199db8b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 788.355230][T28491] RAX: ffffffffffffffda RBX: 00007f199cfb6080 RCX: 00007f199cd8e929 [ 788.355252][T28491] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000002 [ 788.355271][T28491] RBP: 00007f199db8b090 R08: 0000000000000000 R09: 0000000000000000 [ 788.355292][T28491] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 788.355312][T28491] R13: 0000000000000000 R14: 00007f199cfb6080 R15: 00007ffe5e3502b8 [ 788.355356][T28491] [ 788.497753][T28500] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 400000000 [ 788.991310][T27811] 8021q: adding VLAN 0 to HW filter on device bond0 [ 789.039929][T27811] 8021q: adding VLAN 0 to HW filter on device team0 [ 789.072150][ T7015] bridge0: port 1(bridge_slave_0) entered blocking state [ 789.072317][ T7015] bridge0: port 1(bridge_slave_0) entered forwarding state [ 789.084902][ T7011] bridge0: port 2(bridge_slave_1) entered blocking state [ 789.085034][ T7011] bridge0: port 2(bridge_slave_1) entered forwarding state [ 789.220056][T27811] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 789.220094][T27811] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 790.333703][T27811] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 790.466153][T28493] tty tty12: ldisc open failed (-12), clearing slot 11 [ 790.569086][T27811] veth0_vlan: entered promiscuous mode [ 790.591759][T27811] veth1_vlan: entered promiscuous mode [ 790.732324][T27811] veth0_macvtap: entered promiscuous mode [ 790.781146][T27811] veth1_macvtap: entered promiscuous mode [ 790.820500][T27811] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 790.833024][T27811] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 790.844275][T27811] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 790.853535][T27811] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 790.862722][T27811] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 790.872307][T27811] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 791.107782][T28554] [U] [ 791.110583][T28554] [U] [ 791.113352][T28554] [U] [ 791.116102][T28554] [U] [ 791.125848][T28554] [U] [ 791.128644][T28554] [U] [ 791.131413][T28554] [U] [ 791.134184][T28554] [U] [ 791.165831][T28554] [U] [ 791.168639][T28554] [U] [ 791.171405][T28554] [U] [ 791.174170][T28554] [U] [ 791.220734][T28554] [U] [ 791.223563][T28554] [U] [ 791.226343][T28554] [U] [ 791.229113][T28554] [U] [ 791.303143][T28554] [U] [ 791.305962][T28554] [U] [ 791.308739][T28554] [U] [ 791.311501][T28554] [U] [ 791.410609][ T7020] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 791.427092][ T7020] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 791.585358][ T7021] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 791.611741][ T7021] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 792.376488][T28381] delete_channel: no stack [ 793.015903][ T7021] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 1346 with max blocks 22 with error 117 [ 793.091706][ T7021] EXT4-fs (sda1): This should not happen!! Data will be lost [ 793.091706][ T7021] [ 794.448730][T28682] FAULT_INJECTION: forcing a failure. [ 794.448730][T28682] name failslab, interval 1, probability 0, space 0, times 0 [ 794.493001][T28682] CPU: 1 UID: 0 PID: 28682 Comm: syz.1.2359 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 794.493061][T28682] Tainted: [I]=FIRMWARE_WORKAROUND [ 794.493076][T28682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 794.493097][T28682] Call Trace: [ 794.493109][T28682] [ 794.493122][T28682] dump_stack_lvl+0x16c/0x1f0 [ 794.493180][T28682] should_fail_ex+0x512/0x640 [ 794.493232][T28682] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 794.493284][T28682] should_failslab+0xc2/0x120 [ 794.493318][T28682] __kmalloc_cache_noprof+0x6a/0x3e0 [ 794.493366][T28682] ? shrinker_alloc+0xf5/0xbf0 [ 794.493430][T28682] shrinker_alloc+0xf5/0xbf0 [ 794.493494][T28682] ? mark_held_locks+0x49/0x80 [ 794.493542][T28682] ? pcpu_memcg_post_alloc_hook+0x1e/0x690 [ 794.493601][T28682] ? __pfx_shrinker_alloc+0x10/0x10 [ 794.493673][T28682] ? lockdep_init_map_type+0x5c/0x280 [ 794.493722][T28682] ? __raw_spin_lock_init+0x3a/0x110 [ 794.493774][T28682] ? __init_rwsem+0x12d/0x1b0 [ 794.493831][T28682] alloc_super+0x7c8/0xbd0 [ 794.493882][T28682] ? __pfx_test_keyed_super+0x10/0x10 [ 794.493918][T28682] sget_fc+0x116/0xc20 [ 794.493963][T28682] ? __pfx_set_anon_super_fc+0x10/0x10 [ 794.494006][T28682] ? __pfx_rpc_fill_super+0x10/0x10 [ 794.494052][T28682] get_tree_keyed+0x59/0x1d0 [ 794.494098][T28682] vfs_get_tree+0x8e/0x340 [ 794.494138][T28682] vfs_cmd_create+0xd7/0x2a0 [ 794.494171][T28682] __do_sys_fsconfig+0x7b8/0xbe0 [ 794.494208][T28682] ? __pfx___do_sys_fsconfig+0x10/0x10 [ 794.494261][T28682] do_syscall_64+0xcd/0x490 [ 794.494315][T28682] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 794.494349][T28682] RIP: 0033:0x7f199cd8e929 [ 794.494376][T28682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 794.494409][T28682] RSP: 002b:00007f199dbac038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af [ 794.494449][T28682] RAX: ffffffffffffffda RBX: 00007f199cfb5fa0 RCX: 00007f199cd8e929 [ 794.494472][T28682] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000006 [ 794.494493][T28682] RBP: 00007f199ce10b39 R08: 0000000000000000 R09: 0000000000000000 [ 794.494514][T28682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 794.494534][T28682] R13: 0000000000000000 R14: 00007f199cfb5fa0 R15: 00007ffe5e3502b8 [ 794.494578][T28682] [ 794.813133][T16329] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 794.826925][T16329] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 794.835641][T16329] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 794.851601][T16329] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 794.860589][T16329] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 795.644268][ T49] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 796.198904][ T49] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 796.933112][T16329] Bluetooth: hci3: command tx timeout [ 796.973672][ T49] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 797.264188][T28741] kexec: Could not allocate control_code_buffer [ 797.440208][ T49] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 797.849203][T28686] chnl_net:caif_netlink_parms(): no params data found [ 799.013894][T16329] Bluetooth: hci3: command tx timeout [ 799.047914][T28686] bridge0: port 1(bridge_slave_0) entered blocking state [ 799.059346][T28686] bridge0: port 1(bridge_slave_0) entered disabled state [ 799.067656][T28686] bridge_slave_0: entered allmulticast mode [ 799.075899][T28686] bridge_slave_0: entered promiscuous mode [ 799.113059][T28686] bridge0: port 2(bridge_slave_1) entered blocking state [ 799.127477][T28686] bridge0: port 2(bridge_slave_1) entered disabled state [ 799.137716][T28686] bridge_slave_1: entered allmulticast mode [ 799.169132][T28686] bridge_slave_1: entered promiscuous mode [ 799.198467][ T49] vlan1: left allmulticast mode [ 799.216524][ T49] veth0_vlan: left allmulticast mode [ 799.226140][ T49] vlan1: left promiscuous mode [ 799.246979][ T49] bridge0: port 3(vlan1) entered disabled state [ 799.289317][ T49] bridge_slave_1: left allmulticast mode [ 799.313677][ T49] bridge_slave_1: left promiscuous mode [ 799.321591][ T49] bridge0: port 2(bridge_slave_1) entered disabled state [ 799.347301][ T49] bridge_slave_0: left allmulticast mode [ 799.362943][ T49] bridge_slave_0: left promiscuous mode [ 799.368895][ T49] bridge0: port 1(bridge_slave_0) entered disabled state [ 801.093221][T16329] Bluetooth: hci3: command tx timeout [ 802.714404][ T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 803.074825][ T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 803.173283][T16329] Bluetooth: hci3: command tx timeout [ 803.219145][ T49] bond0 (unregistering): Released all slaves [ 803.455681][T28999] FAULT_INJECTION: forcing a failure. [ 803.455681][T28999] name failslab, interval 1, probability 0, space 0, times 0 [ 803.522394][T28999] CPU: 0 UID: 0 PID: 28999 Comm: syz.4.2371 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 803.522467][T28999] Tainted: [I]=FIRMWARE_WORKAROUND [ 803.522480][T28999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 803.522500][T28999] Call Trace: [ 803.522511][T28999] [ 803.522523][T28999] dump_stack_lvl+0x16c/0x1f0 [ 803.522583][T28999] should_fail_ex+0x512/0x640 [ 803.522631][T28999] ? __kvmalloc_node_noprof+0x124/0x620 [ 803.522684][T28999] should_failslab+0xc2/0x120 [ 803.522716][T28999] __kvmalloc_node_noprof+0x137/0x620 [ 803.522766][T28999] ? seq_read_iter+0x826/0x12c0 [ 803.522817][T28999] ? seq_read_iter+0x826/0x12c0 [ 803.522857][T28999] seq_read_iter+0x826/0x12c0 [ 803.522901][T28999] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 803.522971][T28999] kernfs_fop_read_iter+0x40f/0x5a0 [ 803.523016][T28999] copy_splice_read+0x618/0xba0 [ 803.523071][T28999] ? __pfx_copy_splice_read+0x10/0x10 [ 803.523118][T28999] ? look_up_lock_class+0x6b/0x150 [ 803.523173][T28999] ? lockdep_init_map_type+0x5c/0x280 [ 803.523225][T28999] ? __pfx_pipe_lock_cmp_fn+0x10/0x10 [ 803.523278][T28999] ? __pfx_copy_splice_read+0x10/0x10 [ 803.523320][T28999] do_splice_read+0x282/0x370 [ 803.523375][T28999] splice_direct_to_actor+0x2a1/0xa30 [ 803.523424][T28999] ? __pfx_direct_splice_actor+0x10/0x10 [ 803.523478][T28999] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 803.523520][T28999] ? get_pid_task+0xfc/0x250 [ 803.523579][T28999] do_splice_direct+0x174/0x240 [ 803.523634][T28999] ? __pfx_do_splice_direct+0x10/0x10 [ 803.523686][T28999] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 803.523730][T28999] ? rw_verify_area+0xcf/0x680 [ 803.523774][T28999] do_sendfile+0xb06/0xe50 [ 803.523821][T28999] ? __pfx_do_sendfile+0x10/0x10 [ 803.523862][T28999] ? __fget_files+0x20e/0x3c0 [ 803.523912][T28999] __x64_sys_sendfile64+0x1d8/0x220 [ 803.523939][T28999] ? ksys_write+0x1ac/0x250 [ 803.523981][T28999] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 803.524022][T28999] do_syscall_64+0xcd/0x490 [ 803.524068][T28999] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 803.524099][T28999] RIP: 0033:0x7fb6a5f8e929 [ 803.524123][T28999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 803.524153][T28999] RSP: 002b:00007fb6a6da6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 803.524181][T28999] RAX: ffffffffffffffda RBX: 00007fb6a61b6080 RCX: 00007fb6a5f8e929 [ 803.524201][T28999] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000002 [ 803.524218][T28999] RBP: 00007fb6a6da6090 R08: 0000000000000000 R09: 0000000000000000 [ 803.524236][T28999] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001 [ 803.524254][T28999] R13: 0000000000000000 R14: 00007fb6a61b6080 R15: 00007fff6da1aec8 [ 803.524293][T28999] [ 804.116255][T28686] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 804.207648][T28686] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 804.536460][T16329] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260 [ 804.536514][T16329] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260 [ 804.553373][T16329] Bluetooth: hci0: Unknown advertising packet type: 0x7f [ 804.553450][T16329] Bluetooth: hci0: adv larger than maximum supported [ 804.560811][T16329] Bluetooth: hci0: Unknown advertising packet type: 0x40 [ 804.567692][T16329] Bluetooth: hci0: adv larger than maximum supported [ 804.574959][T16329] Bluetooth: hci0: Malformed LE Event: 0x0d [ 805.437842][T28686] team0: Port device team_slave_0 added [ 805.459457][T28686] team0: Port device team_slave_1 added [ 805.721920][T29071] Unable to find swap-space signature [ 806.752088][T29077] netlink: 266 bytes leftover after parsing attributes in process `syz.1.2376'. [ 806.793850][T28686] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 806.800893][T28686] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 806.864247][T29077] IPv6: NLM_F_CREATE should be specified when creating new route [ 807.044796][T28686] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 807.058003][T28686] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 807.065586][T28686] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 807.092763][T28686] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 808.821191][T28686] hsr_slave_0: entered promiscuous mode [ 808.844209][T28686] hsr_slave_1: entered promiscuous mode [ 808.850659][T28686] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 808.879281][T28686] Cannot create hsr debugfs directory [ 809.431897][ T49] hsr_slave_0: left promiscuous mode [ 809.453989][ T49] hsr_slave_1: left promiscuous mode [ 809.460182][ T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 809.477244][ T49] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 809.496545][ T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 809.509110][ T49] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 809.556536][ T49] veth1_vlan: left promiscuous mode [ 809.572177][ T49] veth0_vlan: left promiscuous mode [ 810.497268][ T49] team0 (unregistering): Port device team_slave_1 removed [ 810.591449][ T49] team0 (unregistering): Port device team_slave_0 removed [ 811.763906][T29296] delete_channel: no stack [ 812.632002][T29311] FAULT_INJECTION: forcing a failure. [ 812.632002][T29311] name failslab, interval 1, probability 0, space 0, times 0 [ 812.673675][T29311] CPU: 0 UID: 0 PID: 29311 Comm: syz.0.2385 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 812.673748][T29311] Tainted: [I]=FIRMWARE_WORKAROUND [ 812.673762][T29311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 812.673783][T29311] Call Trace: [ 812.673794][T29311] [ 812.673807][T29311] dump_stack_lvl+0x16c/0x1f0 [ 812.673862][T29311] should_fail_ex+0x512/0x640 [ 812.673915][T29311] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 812.673966][T29311] should_failslab+0xc2/0x120 [ 812.673999][T29311] __kmalloc_cache_noprof+0x6a/0x3e0 [ 812.674053][T29311] ? snd_seq_prioq_new+0x3f/0x110 [ 812.674103][T29311] snd_seq_prioq_new+0x3f/0x110 [ 812.674147][T29311] snd_seq_queue_alloc+0x12b/0x550 [ 812.674194][T29311] snd_seq_ioctl_create_queue+0xa9/0x380 [ 812.674248][T29311] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 812.674287][T29311] alloc_seq_queue+0xda/0x180 [ 812.674319][T29311] ? __pfx_alloc_seq_queue+0x10/0x10 [ 812.674378][T29311] ? mark_held_locks+0x49/0x80 [ 812.674424][T29311] ? _raw_spin_unlock_irq+0x23/0x50 [ 812.674473][T29311] snd_seq_oss_open+0x38c/0xa20 [ 812.674521][T29311] odev_open+0x6f/0x90 [ 812.674570][T29311] ? __pfx_odev_open+0x10/0x10 [ 812.674621][T29311] soundcore_open+0x409/0x580 [ 812.674677][T29311] ? __pfx_soundcore_open+0x10/0x10 [ 812.674728][T29311] chrdev_open+0x234/0x6a0 [ 812.674780][T29311] ? __pfx_apparmor_file_open+0x10/0x10 [ 812.674825][T29311] ? __pfx_chrdev_open+0x10/0x10 [ 812.674882][T29311] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 812.674937][T29311] do_dentry_open+0x741/0x1c10 [ 812.675001][T29311] ? __pfx_chrdev_open+0x10/0x10 [ 812.675059][T29311] vfs_open+0x82/0x3f0 [ 812.675099][T29311] path_openat+0x1de4/0x2cb0 [ 812.675159][T29311] ? __pfx_path_openat+0x10/0x10 [ 812.675208][T29311] ? __lock_acquire+0xb8a/0x1c90 [ 812.675257][T29311] do_filp_open+0x20b/0x470 [ 812.675304][T29311] ? __pfx_do_filp_open+0x10/0x10 [ 812.675382][T29311] ? alloc_fd+0x471/0x7d0 [ 812.675437][T29311] do_sys_openat2+0x11b/0x1d0 [ 812.675472][T29311] ? __pfx_do_sys_openat2+0x10/0x10 [ 812.675531][T29311] __x64_sys_openat+0x174/0x210 [ 812.675568][T29311] ? __pfx___x64_sys_openat+0x10/0x10 [ 812.675604][T29311] ? ksys_read+0x1ac/0x250 [ 812.675664][T29311] do_syscall_64+0xcd/0x490 [ 812.675715][T29311] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 812.675746][T29311] RIP: 0033:0x7f6d5838e929 [ 812.675772][T29311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 812.675803][T29311] RSP: 002b:00007f6d59261038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 812.675832][T29311] RAX: ffffffffffffffda RBX: 00007f6d585b5fa0 RCX: 00007f6d5838e929 [ 812.675853][T29311] RDX: 0000000000000000 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 812.675873][T29311] RBP: 00007f6d58410b39 R08: 0000000000000000 R09: 0000000000000000 [ 812.675892][T29311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 812.675911][T29311] R13: 0000000000000000 R14: 00007f6d585b5fa0 R15: 00007fff49a7f208 [ 812.675952][T29311] [ 812.986943][ C0] vkms_vblank_simulate: vblank timer overrun [ 813.081919][T29311] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 813.093897][T29311] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 813.102370][T29311] CPU: 1 UID: 0 PID: 29311 Comm: syz.0.2385 Tainted: G I 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(full) [ 813.116067][T29311] Tainted: [I]=FIRMWARE_WORKAROUND [ 813.121215][T29311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 813.131322][T29311] RIP: 0010:try_module_get+0x23/0xd0 [ 813.136676][T29311] Code: 90 90 90 90 90 90 90 f3 0f 1e fa 48 85 ff 0f 84 92 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 55 48 c1 ea 03 53 48 89 fb <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e 89 00 00 00 83 3b 02 74 71 48 [ 813.156344][T29311] RSP: 0018:ffffc9000215f918 EFLAGS: 00010246 [ 813.162482][T29311] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffc9000dd5f000 [ 813.170543][T29311] RDX: 0000000000000000 RSI: ffffffff87d58fc0 RDI: 0000000000000001 [ 813.178654][T29311] RBP: ffff88802a917a00 R08: 0000000000000001 R09: fffffbfff1f86711 [ 813.186668][T29311] R10: ffffffff8fc3388f R11: 0000000000000001 R12: ffff88807d293880 [ 813.194684][T29311] R13: ffff888029f34d80 R14: ffff88802af23c48 R15: ffff88807d2938c8 [ 813.202704][T29311] FS: 00007f6d592616c0(0000) GS:ffff888124821000(0000) knlGS:0000000000000000 [ 813.211694][T29311] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 813.218333][T29311] CR2: 00005608bbe9c950 CR3: 0000000032804000 CR4: 00000000003526f0 [ 813.226355][T29311] Call Trace: [ 813.229668][T29311] [ 813.232629][T29311] dvb_device_open+0x124/0x3b0 [ 813.237463][T29311] ? __pfx_dvb_device_open+0x10/0x10 [ 813.242826][T29311] chrdev_open+0x234/0x6a0 [ 813.247311][T29311] ? __pfx_apparmor_file_open+0x10/0x10 [ 813.252908][T29311] ? __pfx_chrdev_open+0x10/0x10 [ 813.257900][T29311] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 813.264706][T29311] do_dentry_open+0x741/0x1c10 [ 813.269513][T29311] ? __pfx_chrdev_open+0x10/0x10 [ 813.274505][T29311] vfs_open+0x82/0x3f0 [ 813.278608][T29311] path_openat+0x1de4/0x2cb0 [ 813.283245][T29311] ? __pfx_path_openat+0x10/0x10 [ 813.288225][T29311] ? __lock_acquire+0xb8a/0x1c90 [ 813.293211][T29311] do_filp_open+0x20b/0x470 [ 813.297850][T29311] ? __pfx_do_filp_open+0x10/0x10 [ 813.302930][T29311] ? alloc_fd+0x471/0x7d0 [ 813.307306][T29311] do_sys_openat2+0x11b/0x1d0 [ 813.312014][T29311] ? __pfx_do_sys_openat2+0x10/0x10 [ 813.317242][T29311] ? __pfx___might_resched+0x10/0x10 [ 813.322578][T29311] __x64_sys_openat+0x174/0x210 [ 813.327506][T29311] ? __pfx___x64_sys_openat+0x10/0x10 [ 813.332945][T29311] do_syscall_64+0xcd/0x490 [ 813.337511][T29311] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 813.343442][T29311] RIP: 0033:0x7f6d5838e929 [ 813.347890][T29311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 813.367545][T29311] RSP: 002b:00007f6d59261038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 813.375998][T29311] RAX: ffffffffffffffda RBX: 00007f6d585b5fa0 RCX: 00007f6d5838e929 [ 813.383996][T29311] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 813.392083][T29311] RBP: 00007f6d58410b39 R08: 0000000000000000 R09: 0000000000000000 [ 813.400097][T29311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 813.408100][T29311] R13: 0000000000000000 R14: 00007f6d585b5fa0 R15: 00007fff49a7f208 [ 813.416113][T29311] [ 813.419154][T29311] Modules linked in: [ 813.423627][T29311] ---[ end trace 0000000000000000 ]--- SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 813.506718][T29311] RIP: 0010:try_module_get+0x23/0xd0 [ 813.512239][T29311] Code: 90 90 90 90 90 90 90 f3 0f 1e fa 48 85 ff 0f 84 92 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 55 48 c1 ea 03 53 48 89 fb <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e 89 00 00 00 83 3b 02 74 71 48 [ 813.530551][T28686] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 813.595644][T28686] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 813.620837][T29311] RSP: 0018:ffffc9000215f918 EFLAGS: 00010246 [ 813.640222][T29311] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: ffffc9000dd5f000 [ 813.685408][T28686] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 813.692638][T29311] RDX: 0000000000000000 RSI: ffffffff87d58fc0 RDI: 0000000000000001 [ 813.700761][T29311] RBP: ffff88802a917a00 R08: 0000000000000001 R09: fffffbfff1f86711 [ 813.724347][T29311] R10: ffffffff8fc3388f R11: 0000000000000001 R12: ffff88807d293880 [ 813.756429][T29311] R13: ffff888029f34d80 R14: ffff88802af23c48 R15: ffff88807d2938c8 [ 813.778334][T29311] FS: 00007f6d592616c0(0000) GS:ffff888124821000(0000) knlGS:0000000000000000 [ 813.789989][T29311] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 813.796943][T29311] CR2: 0000001b309c0ff8 CR3: 0000000032804000 CR4: 00000000003526f0 [ 813.813004][T29311] Kernel panic - not syncing: Fatal exception [ 813.819442][T29311] Kernel Offset: disabled [ 813.823780][T29311] Rebooting in 86400 seconds..