last executing test programs: 21m28.204446241s ago: executing program 2 (id=1333): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000240)=@bpf_attr_11={0xfffffffffffffffe, 0x2, 0xa34, 0xb0, 0x8, 0x401, 0x4}, 0xff8) mmap$auto(0x1, 0x20009, 0x8, 0xeb1, 0x7f, 0x8000) rseq$auto(0x0, 0xfffffff5, 0x0, 0x5) sysfs$auto(0x2, 0x10000000000002a, 0x0) mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c) sendmsg$auto_NL802154_CMD_DEL_SEC_LEVEL(0xffffffffffffffff, 0x0, 0x8000800) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) r0 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001580)='/sys/kernel/debug/tracing/events/vmalloc/enable\x00', 0x204, 0x1a00) read$auto(r0, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) listmount$auto(&(0x7f0000000100)={0xba, @raw, 0xffffffffffffffff, 0xfffffffffffffff7}, 0x0, 0xf4240, 0x1) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x60040, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x15) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 21m27.034504544s ago: executing program 2 (id=1337): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20461, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)="2d296699eb5df9d24db978ee2ae789f693d6325d33d31c0a16", 0x19) 21m26.773916025s ago: executing program 2 (id=1339): r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0x10, 0x3, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_USER_PVERSION(r1, 0x40045702, 0x0) r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop12\x00', 0x8200, 0x0) fadvise64$auto(r2, 0xffffffffffffff81, 0x400000000000006, 0x10000005) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4004895}, 0x20000800) futex_waitv$auto(&(0x7f0000000000)={0x0, 0x7e8, 0x2}, 0x2, 0x800004, 0x0, 0x623d) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_REGISTER_FRAME(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000500)=ANY=[], 0x310}, 0x1, 0x0, 0x0, 0x4000000}, 0x80) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) madvise$auto(0x0, 0x200007, 0x8) ioctl$auto_userfaultfd_dev_fops_userfaultfd(r0, 0x0, &(0x7f0000000100)="449199ac77e7a0d9ce178e4275731fd7e494ed471b1d1cd4f5c47d3189ebb7012e") 21m25.707983837s ago: executing program 2 (id=1342): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x401, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$auto(r0, 0x84, 0x72, 0x0, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) mmap$auto(0x0, 0x10000, 0xde, 0x11, r1, 0x28000) madvise$auto(0x0, 0x2000040080000004, 0xe) fcntl$auto_F_SETLK(r1, 0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) pwritev$auto(0x3, 0x0, 0x5, 0x3, 0x9) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r3, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000180)={0x14, r4, 0x1, 0x870bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000040), r2) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000640)={'wlan1\x00'}) sendmsg$auto_NETDEV_CMD_NAPI_GET(0xffffffffffffffff, 0x0, 0x2400c870) r5 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c00"], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 21m25.024142903s ago: executing program 2 (id=1347): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x100, 0x0) epoll_create$auto(0x8) epoll_ctl$auto(r0, 0x5, r0, 0x0) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x401, 0xfffffffffffffffd, 0xd4, 0x4, 0x28c, 0x0, 0x3, 0x368e, 0x9, {0xfffffffe, 0x10000}, 0x5, 0x6, 0xfffffffffff7fffd, 0x1007ffd, 0x0, 0xfe, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804}) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x20282, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) tkill$auto(0x1, 0x7) keyctl$auto_KEYCTL_SESSION_TO_PARENT(0x12, 0x0, 0x0, 0x0, 0x48eafc79) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x84280, 0x0) io_uring_setup$auto(0x3, &(0x7f00000000c0)={0x5, 0xd2cf6a, 0x7fff0, 0x5, 0x3, 0x7, r1, [0x10, 0x9, 0xfffffc00], {0x901, 0x3, 0x9, 0xc, 0x600, 0x3, 0x48a9, 0x5, 0x1}, {0x9, 0x7, 0x0, 0x6, 0x5, 0x9, 0x5, 0x7, 0xfc}}) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fffe000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x48a22, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x0, 0x0) bind$auto(0x3, 0x0, 0x6a) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x163340, 0x6a) socket(0x2, 0x80802, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4, @multicast2}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) kcmp$auto_KCMP_EPOLL_TFD(0xffffffffffffffff, 0x0, 0x7, 0xffffffffffffffff, 0x4) 21m24.136204259s ago: executing program 2 (id=1353): mmap$auto(0x0, 0x20009, 0x0, 0x100000eb3, 0x40000000000a1, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x2, 0x0) fcntl$auto(0x3, 0x4, 0xa553) r1 = openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000040), 0x8402, 0x0) ioctl$auto_FS_IOC_GETFSSYSFSPATH(r1, 0x80811501, 0x1) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000040)) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) unshare$auto(0x40000080) keyctl$auto(0x1f, 0x1, 0x0, 0x3, 0x3ff) close_range$auto(0x0, r1, 0x9) pread64$auto(0xffffffffffffffff, &(0x7f0000000200)='/proc/self/net/ip6_tables_targets\x00', 0x34b, 0x10000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x101002, 0x0) set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x7b, 0x4) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) 21m23.686065975s ago: executing program 32 (id=1353): mmap$auto(0x0, 0x20009, 0x0, 0x100000eb3, 0x40000000000a1, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x2, 0x0) fcntl$auto(0x3, 0x4, 0xa553) r1 = openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000040), 0x8402, 0x0) ioctl$auto_FS_IOC_GETFSSYSFSPATH(r1, 0x80811501, 0x1) ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000040)) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) unshare$auto(0x40000080) keyctl$auto(0x1f, 0x1, 0x0, 0x3, 0x3ff) close_range$auto(0x0, r1, 0x9) pread64$auto(0xffffffffffffffff, &(0x7f0000000200)='/proc/self/net/ip6_tables_targets\x00', 0x34b, 0x10000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x101002, 0x0) set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x7b, 0x4) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) 17m59.93050389s ago: executing program 1 (id=2003): mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-touch8\x00', 0x0, 0x0) read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f0000000040)=""/4096, 0x1000) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_drm_connector_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000001200)='/sys/kernel/debug/dri/vkms/Writeback-1/force\x00', 0x60041, 0x0) write$auto_drm_connector_fops_drm_debugfs(r1, &(0x7f0000001240)="b3827964b69f25ba34ba41a7", 0xc) r2 = prctl$auto_PR_SET_MM_END_DATA(0x5, 0x4, 0xffffffffffffffff, 0x3, 0x7) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_REQ_SET_REG(r2, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)={0x180, r3, 0x10, 0x70bd2b, 0x25dfdbff, {}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'nr0\x00'}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0xe}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x7fff}, @NL80211_ATTR_VENDOR_ID={0x8}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x3}, @NL80211_ATTR_SSID={0x1f, 0x34, "69bce3f52867e764985a0e636cef832ad8cd472facbcdfa5b0fdf6"}, @NL80211_ATTR_MLD_ADDR={0xfe, 0x13a, "517b9fb1d865ede5a6f8fb8e9093ec5828b6dbe5470f1db9a4e41ae9ddd60e83e2d754621c2b86b5aa28b699675ca767de4dd2019f8b0cac7295eb48f9d95f6407943d1bf13a80e8eb483fab54c69924f75d7285d598bf1ccd397b04e59066088d6bdbbf00aad4ac086bc365cdf89e750bdf3f317fca44f243acc976c12088e211a8a95ffc7a3898cb575622c344b33c469131c348e8b29409b82345ff9a236b71349352f6b272169031b184eec37dfc056551bf137d5156a7eb666c3533e9a605c0fbf9e9595e76e735aa0cbe03598296df4eb44bcb62e24e7809e4513661526e70d4e581c9a16808f0cbca16dc2effb9074bb426ca877fbfdd"}, @NL80211_ATTR_KEY_DATA={0x16, 0x7, "06fcf1da7d944348f9b72338fac003718c05"}]}, 0x180}, 0x1, 0x0, 0x0, 0x4040000}, 0x24000050) prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0) 17m58.564141795s ago: executing program 1 (id=2008): keyctl$auto_KEYCTL_GET_KEYRING_ID(0x0, 0x0, 0x5, 0x401, 0x0) r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/kernel/debug/x86/tlb_single_page_flush_ceiling\x00', 0x22001, 0x0) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/config/target/version\x00', 0x10100, 0x0) timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6) timer_settime$auto(0x0, 0x801, &(0x7f0000000100)={{0xa6, 0x7}, {0x0, 0x3}}, 0x0) r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0) ioctl$auto_USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000001040)={0x80, 0x6, 0x2fd, 0x1, 0x101, 0x0, &(0x7f0000000040)}) write$auto_debugfs_full_proxy_file_operations_internal(r0, 0x0, 0x2d) setsockopt$auto_SO_SNDBUF(r0, 0xd00, 0x7, &(0x7f0000000000)='/sys/kernel/debug/x86/tlb_single_page_flush_ceiling\x00', 0x4) 17m58.291274646s ago: executing program 1 (id=2010): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0xfffffff4, 0x0, 0x5) r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$auto_VHOST_SET_BACKEND_FEATURES(r1, 0x4008af25, 0x0) mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0) r2 = openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) rseq$auto(&(0x7f0000000580)={0x5, 0x85, 0x9416, 0x1, 0x7, 0x6, "551e7285968d8e86bd4794a0e875ee9f7b35db28d0a7e72b7a19039c336389cb57a05ba0582cc612c6c0be4beb4cc54d8337d40c93638ba34c4a0435c32a206e808194584d8c359d418662d18943a5e3c6234e712a096205457b56f0a1e5d4d19835696295a54f38117d9d751e23b5fb61daa5a6b2c75148106dc167a20061e3fe55cc53ffadf62b0945da4b27515a0102a8d2d002a842362b4744b8972a5e11e8a6aab89c7b85947f3901d696d459641aa7e6b89b73387ec5fa2d2af6c992213d82c5774c4bcd4187585bcf652af094e988e75002e01f607abf5e25ae0f5548fd13175b681fc059c1f9160aef893bae78cf6cf62c30fa3f0c5c60cbe383a9c0cc1289519b0c7cff81cc3b4fec739fad19c662b0f98d607b61d825d10e2dd3b27b0f7a6b1adc5a452f344c39da5f086ea7c5d99674ca69c4f5635776e67c151bad72f906cd65231da3a55d6056e23b00686723714fabd752f3e2c86dafdee9d379230c0abeabfde9cf88cae099f3ccc76ea7e64a3734ced5ffe749a8012db53ad4d6a5e347bdd83bb409c1bdb762f4aba145df74833d73ccd583797d4fb4ed3e0c7c29d502aacaef02e114d9e60ca6b0bcb28f825f5d49e94ccd2f830933c39a3ba3782505453e3de872ad8da84a6a22aaa62970428bb9a95d1817dbeeded1c53c5d508dea6cc53d80153b05f954c263278bb9c8bc02f3b1805dd9299dc8b97ebff0165d615ba7bf5ce8c490f4dd273642a18267b0a61a594cb1d608f3dffb292991ea32bb647a6f9b951f283e118dc73b45843b5aa883410e402e3bec9ba889ec237462042cedaed761cca0c3b7058d3ffc276c9a75e18b79804f4e21650d911edbedb9fedd31959a8783b1e39d7d6408554bddb2a5d67703d225fe4422bf2367ca483e77fe479495be3235f4c77b3872a9e33946d2602486b83e84e7d8d1742d369e2d00b9dbb552385502c0f597b3615bed54de65af106b58d2b6bebbdd3fe625152527af965b67e9424da7be2e2574e1492aed568d4faaa9da508e0a2e687876fa291e38b7c3ef38643e2c49e0d46d0f2d53352da2f184c4ced2305865ab0ad1435644419773ea82336ffdf62dd325a6a8b2d199d96dba8a13bb5a86ff65b80818ceb37ee8a2b2a8813b33e474e5b110e1ed13dbc4f52efabbce38935a8ada53a0ed5a1a01453a254a1dc528492159591aa192ff6cfa0b372caf236c78d1a0c94dc37916746358b4cf3cc1c0132657818ce6465e58936dbf5991dfb74ff97382c066ba0ceb06ac4f0c005e4c9166e94161bc08e1c23df7ed3419b10ae229aa6bafb19e6af003c9e319956723d839dc50a7edd8d80bce971ba504e0aac811d76e65acffdc4f7e9836396ba98b824be6cc704c59f5849642b191437a5cf902fc1ac491e8c59241586c6791b282b5cfae57eb7e6792048c4769b5b3f21987ec5097e530fd001da5d2999db4ded708225e9a53a2b48d2be3401a063da3c19168769eccaef710d7c2e06818bb05c4a9aa0ce2785a5a6d2846bac9836f1905a9b042029dcc59d918450b6affb522fbf78116941c5cef4ecb82a2134ee8e67ea6091170b67bfc3abec9e2cfc8208d4ba3bb732230fe6a9470c1152ebdc31bbce93cb742b4484bc1cef4298ce897a36c7e8b3ef8bd1b0e3d4dfa46da8bf89b06d67d8a5da465e8f68f999ec38ef8d1b7972125d2d8492680f6698419313afb74b5f715c90aa5ca0a6ea5561acd89a25d0fd066234b1752d6535251be347d8e69afea162f0ae84aa08a1a5475e6860af5956babe0530b6349e918fa97f14e6a83f7e2054c85ec37424757c49c6b76a889cde8473eebc495ac1088fda54f5c70bb17ef4873bf7b524ae892cd8267adfcd1e7054ac0c8b904855f816cbab8a6c5332d2221060b97931130187e1f07b0b9fad917c06f56d3f9fbca9d0ad93c300d88a6025359eb609e86c2b604d6834cde1351ccb0ba238715d6a77953f58b23a78db05bc38cf1e47d5336226a966af0a88fa19b4d992fc82310b7fceee45a202bfdf759dedee618361082881f91f85020e5282fd6a4ff376455f09bd1ca73b165498937eb7396525f9be44e1d5455f2fb0e9b0d79a2b05104239ddb65afabac40f2568353278905243edcffa25dbe93c91fd0982c77eb13c90cde8107888e9891ed1f3fd75b91f275544db3fb132c587243bdd433ad395ec44311df726aa04c20709aa456adebeba0e42ba8be3710f9e8f307febbb8bf1971d6e02b435ec6e209f6d3e3200f51b17e97c7b8eed34b6b297b03db790c857329989e778133d2f9ca40e62aafa5a053d416a09d36a78e1b0716aa049da6fc9fedc96a02d10a13260d6f7cc86a7c681b97ec9987e16bb190e75137bc3e3ce64b51a599f1ebed0683f55240e49eeb6588a13b55c266ee997d1b237f0deefa3bd5670293249c6e79decfc6ee39a08d1ffb71231ed36b9aea01fd0804fc591b7100e6cf5cf97ddb1871afe44a534f2eeafb12d217c6684d474f19bf7d957b11429843723823da2e555a9a9f9d5af6d1ddd40a59a67c459581604f280f4412b0a4b8736bbdd1cd2d4d27cd273ad39d3d52036832e968f93ff343a92f4001c8a2c43ec1f3377c67f3b49f6297de1e2dc5a10abafbf034a029e5d1d89e627fc3741ab5fa68afc24fdf22b6ef215e0927fff8bdb671ef6314ecaa7a8397292e699b693600e49f9e428604fed71f05f2775c224eead65c378539b80ff7f475c68933366da1f76e0542991277c4147358c34ad37a5d81bd1810f39ebf7ece6a0054f4bf5f846bd9"}, 0x6, 0x3, 0xff) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) mmap$auto(0x1, 0x40009, 0xdf, 0x13, 0xffffffffffffffff, 0x10001) msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004) socket(0x15, 0xa, 0x5) connect$auto(0x3, &(0x7f0000000080)=@l2={0x1f, 0x6, @none, 0x5}, 0x2) ioperm$auto(0x5, 0x8000020000008001, 0x2000000000000149) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) fcntl$auto_F_UNLCK(r2, 0x8, 0x2) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) kexec_load$auto(0xff, 0x2, &(0x7f0000000080)={@kbuf=0x0, 0x2, 0x8000, 0x3000}, 0x4) select$auto(0x2, &(0x7f0000000100)={[0x3, 0x7ff, 0x1, 0x8, 0x94c1, 0x0, 0x5, 0x14, 0x9, 0x2, 0x1, 0x7, 0xd11, 0x420, 0x4, 0x27de]}, &(0x7f0000000180)={[0x7fffffffffffffff, 0x586, 0x5, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0xfffffffffffffff7, 0x7, 0x40, 0x7fffffffffffffff, 0x0, 0x1, 0x5d, 0x8, 0x6]}, &(0x7f0000000200)={[0x96c, 0xb, 0x8000000000000001, 0x7, 0x54bf, 0xf50, 0xcb20, 0x1, 0x8, 0x8000, 0x2, 0x7f, 0x6df, 0x8ad5, 0x2, 0x3]}, &(0x7f0000000040)={0x7fffffff, 0x3}) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0x3b, 0x5, 0x8) 17m55.32858126s ago: executing program 1 (id=2015): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/usb-serial/drivers/empeg/new_id\x00', 0xe9101, 0x0) write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000180)="09fb31", 0x3) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) ioctl$auto_SNDRV_RAWMIDI_IOCTL_DROP(r1, 0x40045730, &(0x7f0000000100)=0x400) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) socket(0x15, 0x5, 0x0) r2 = socket(0x10, 0x2, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(r3, &(0x7f00000030c0)={0x0, 0x0, &(0x7f0000003080)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYBLOB="045626"], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x40) syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003900), r3) r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r3) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r2, &(0x7f0000002cc0)={0x0, 0xff9e, &(0x7f0000002c80)={&(0x7f00000003c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010027bd7000fcdbdf250a0000ff15000000140001"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), r5) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000280)={'dummy0\x00', 0x0}) sendmsg$auto_NETDEV_CMD_BIND_RX(r5, &(0x7f00000001c0)={0x0, 0xfffffffffffffd45, &(0x7f0000000180)={&(0x7f0000000140)={0x28, r6, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@NETDEV_A_DMABUF_IFINDEX={0x8, 0x1, r7}, @NETDEV_A_DMABUF_FD={0x8}, @NETDEV_A_DMABUF_QUEUES={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4040050}, 0x4) sendmsg$auto_NL80211_CMD_START_AP(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, 0x0, 0x0, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0xffff}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r7}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040000}, 0x4000000) ioctl$auto(0x3, 0x8b35, r1) ioctl$auto_RTC_ALM_SET(0xffffffffffffffff, 0x40247007, 0x0) 17m55.038535434s ago: executing program 1 (id=2017): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000240), 0x60881, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) r0 = socket(0x22, 0xa, 0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) setsockopt$auto_SO_MAX_PACING_RATE(r1, 0x4, 0x2f, &(0x7f0000000080)='!\\&\x00', 0x10001) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xa083, 0x0) r3 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) fstat$auto(r0, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x27, 0x6) r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi2\x00', 0x0, 0x0) ioctl$auto(r4, 0xc0445624, r4) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x7fffffff, 0x300000000000) open(&(0x7f0000001bc0)='./file0\x00', 0x4140, 0x6) getsockopt$auto_SO_INCOMING_CPU(r3, 0x4, 0x31, &(0x7f00000002c0)='!\xaf\x86\x01\x13g\xcdi\xed\b\x006#\xf0\xa0\xbf\x13\xe8+x', &(0x7f00000003c0)=0x6) mount$auto(0x0, &(0x7f0000001500)='./file0\x00', &(0x7f00000000c0)='cifs\x00s \xfe\xcd\x94=\xbf\xfd\x02;\xffP\xf26\xea\x97\x95\xad\xb6\x1d\\\xd3\x89\xe0\n\x0f\xf7]\xafa\xcc\xbbgv7\x04\"\xb4\xe1\xc8#\x1b\xf0&\xc3\x15\xea\x1f\xcf0#e\x14\xe6\xf9\xc9\xec\x1d\x1d\xa7\xcd\x94\xae\x01\x00\x00\x00\x00\x00\x00\x000\xc3\xeem\x8e\xfb`\x1a[\x01\xf6Re\xad x\xbc\x00\x0f\x0f\xc6f\x82\x16\x8e\xab\xf6)^\xbe{=\xa3\xeb\xc44\f\r\xf6\x17\x87\xe8\xb0\xd9V\xfb\xc6U\xe9\xb7\xe6\xa2\xdb\xbbP\xf14S\xe6\xce|?\xa0\xf3\x8f^?5\x1bb^R\x11\xf6\xe8\xfc\v\xfa\x96\x89%\x02\xc0\xa9\xc9\xd2\xb0b\x86\xd1\x1c\xa2\xca\xc9\x90\xd7\xe1\xbf%\xdbzh\xfc\xaa4KhoD\xe7\xda\x12^\x8b\x81\xb3B5\xfd-\x83\x9f\xe7ZHh^9\x18z*\x02\xa8Fu\x80\xee\xc6\x98v\xf6\xa7\xdf\xd8\x9ans\x16\xa7\x03\xd9\xc2\xee\"\xa7\xefx\xd5,Q\xfe\xe6\va\x06\x00\x00\x00\x00\x00\x00\x00\xaa\x89!,m\x16M\x19no\x1e+ 1\xa7\x1c\x95\xa0\xd6`\xd1\xf8r\xea\x13sFn)\x05\xc8\x1e\xf8a\xf5H\x86\x9a\xc4\x81\xbf\xa1h`\xe0\xd8\xdd\xeb9k\xa4\x1fA}\x80\x9e\x8a\x031\\D@\a\x8b\xc7.\xc1\xe4Z\xd4C\x19g^\x06\x06\x82', 0x8002, &(0x7f00000001c0)) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x2, 0x0) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/enable\x00', 0x8002, 0x0) 17m54.470271592s ago: executing program 1 (id=2018): r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer2\x00', 0x581c02, 0x0) fchdir$auto(r0) mmap$auto(0x0, 0x38000000000, 0x400005, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) pwrite64$auto(0xc8, 0x0, 0xfdf2, 0x3a) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) socket(0x11, 0xa, 0x300) sendmmsg$auto(0x4, 0x0, 0x400, 0x7) ioprio_set$auto(0x5, 0x0, 0x3e4) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), 0xffffffffffffffff) getpid() openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) r1 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) readv$auto(r1, &(0x7f0000000680)={&(0x7f0000000540), 0x40200}, 0x3) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYRES16=0x0, @ANYBLOB, @ANYBLOB], 0x68}, 0x1, 0x0, 0x0, 0x20000084}, 0x44098) socket(0x2, 0x3, 0x100) pidfd_send_signal$auto_SIGCONT(0xffffffffffffffff, 0x12, 0x0, 0x7) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4004) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_NEW(0xffffffffffffffff, 0x0, 0x80) madvise$auto(0x0, 0xffffffffffff0006, 0x17) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2) r2 = openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/projid_map\x00', 0x141800, 0x0) read$auto(r2, &(0x7f0000000100)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x3) 17m39.120645252s ago: executing program 33 (id=2018): r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer2\x00', 0x581c02, 0x0) fchdir$auto(r0) mmap$auto(0x0, 0x38000000000, 0x400005, 0x40eb1, 0x602, 0x300000000000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) pwrite64$auto(0xc8, 0x0, 0xfdf2, 0x3a) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) socket(0x11, 0xa, 0x300) sendmmsg$auto(0x4, 0x0, 0x400, 0x7) ioprio_set$auto(0x5, 0x0, 0x3e4) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), 0xffffffffffffffff) getpid() openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) r1 = openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) readv$auto(r1, &(0x7f0000000680)={&(0x7f0000000540), 0x40200}, 0x3) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYRES16=0x0, @ANYBLOB, @ANYBLOB], 0x68}, 0x1, 0x0, 0x0, 0x20000084}, 0x44098) socket(0x2, 0x3, 0x100) pidfd_send_signal$auto_SIGCONT(0xffffffffffffffff, 0x12, 0x0, 0x7) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4004) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_NEW(0xffffffffffffffff, 0x0, 0x80) madvise$auto(0x0, 0xffffffffffff0006, 0x17) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2) r2 = openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/projid_map\x00', 0x141800, 0x0) read$auto(r2, &(0x7f0000000100)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x3) 5m1.974338726s ago: executing program 3 (id=4397): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x102, 0x7) r1 = getpid() r2 = pidfd_open$auto(r1, 0x0) r3 = socket(0xf, 0x3, 0x2) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x63}, 0x1, 0x0, 0x0, 0x4080}, 0x20000000) process_madvise$auto_MADV_COLD(r2, 0x0, 0x1, 0x14, 0x0) r4 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r4, 0x29, 0x4e, &(0x7f0000000040)='!\x00', 0x1ff) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r5) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001f80)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="2f212cbd7000c9edd8fa6574a16208000300", @ANYRES32=r7], 0x2c}}, 0x4000000) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="20002dbd7000fddbdf2521000000"], 0x14}, 0x1, 0x0, 0x0, 0x4008894}, 0x0) r8 = wait4$auto(r1, &(0x7f0000000040)=0x7, 0x4, &(0x7f0000000080)={{0x4, 0x2}, {0x3, 0x101}, 0xfffffffffffffffa, 0x1941, 0x3, 0x3, 0x9, 0x2, 0x7, 0x74a, 0x7, 0x4, 0x8000, 0x1, 0xa2e7}) sendmsg$auto_NL80211_CMD_START_NAN(r0, &(0x7f0000000900)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000140)={&(0x7f0000000200)={0x6f0, r6, 0x300, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_STA_FLAGS={0x47c, 0x11, 0x0, 0x1, [@generic="a73533da26014b5b4b850238c0c809d91f352b6d487797e57f3cd532d53ed65d80a218f92d2ebaea06462cdd076943d1465ab015e992c75f153927aa6051635b2141c8de27409fa653d2a9423d1e5044ce86c2bc14b3876ae3d9e9fef6f1ff70d36a3d922b014e62a06f0d939c6fc41dfa0f87b200828c6e1965e565c6230dd6e4c6a2add32944d580f13ea1ea7ec12b728d8946cdf626718d1cb07257f86af8ce50e8e97a2c099d7a503090861d615e7a8b7d310f373aeac863a6b553aa074e2d4be618bc88bbeb04f47fe3cf985b6737cd1058f9597a39c9a5f5189ee0f765980c781b258224e954", @typed={0x8, 0x47, 0x0, 0x0, @ipv4=@private=0xa010101}, @nested={0xf3, 0x97, 0x0, 0x1, [@typed={0x14, 0xa2, 0x0, 0x0, @ipv6=@private0}, @generic="b040b8b5c250a07500bd6df884e946a8ff559cf4eb533bf741ab471cf09d2c8059b32bfc419cac", @nested={0x4, 0xa1}, @generic="431ad8e564dc53147ee7aeeeab55d9d98e744ca26458685f291d68acea97a21848a4c90ee1c98ba11114dc92da00f03a33063b5d6c5b2e4da2ea90e7f6c98b8d6494268d2a0032e272e0537fabfbaef0bae802f0c5e292b53dbd935e8610a5c88037298d5222cccee137e94bec3f0ffa895222fc5f49e9dca39d86638852ac62d532d2e2f99a20cb029ff1d1ac2b4812ee4585579ceae558d97d9d740aab9a9b9ff2eb5a233319ecc4ac75eeae08a441"]}, @nested={0xac, 0x9d, 0x0, 0x1, [@nested={0x4, 0x128}, @generic="3e46874594eefdf1ce8829a2fd6a18a7cc31286840144ebf0e33c5f7b74e810498589c149117d8f8076cbf7c1012eefa90d1bea9b6cc50f0aa3e450348c280cdde71b7250cd644663331eade8cd546f0880de1804721060b3221a02e9b3467f3c52d8caf9c45765eb41528f569a97a58aed835b00524c6ce9b73a682d9aef34eeb0838926ab5a434cde1fcaa75209030974e32be6a046d6f6cd39ecb91ab2fbd0332f04e"]}, @generic="c12f5f6b50fc0646fcc6c2fa0cdf9115c42e4ea3c7ab5c474ef45935fe76a862ead8c2b581601c443ab58fdfe5", @generic="b99a57b0d2e896425b938415cbfb88d47363a972e20dd4693a86d5506af9f560ac1d4c48ffc7230eeff080213afb22ebda3028586b5d0b7614979e8e48772b982e1fbb9c4b100d653da184659773a962bed92210c59cccca5c2aad0f9d11a7f7129dca95f86f717acca76d2f3e8b180400aa8dfa7e9b83b80141873bfa4fd7c7a84d6741c36ea1c8c6964397c27b0cef8e99b2847b10f31bc9819bef816ea05f5c44e606d5fbb2610332f1a1d1475780dda8c3c8a2bed0dc3ae8d5848d8a99a93411285cce7fdced270b4cdf5110d4c53cfef5ae14dba89bd40996dbbe8f6756b8634074", @typed={0x8, 0xe, 0x0, 0x0, @pid=r8}, @generic="85b44ad46e9d5d6c1a355a1d8e07f28a6ad9137be33159ad662570c948897c8e9ebde10afd9630842dc8d8016aa6b77fe88f9fca3106ab9257d0afd1e646e7348813688f305b9973e789da60dc6d56d50165cd700abafe42927b859c84266b4495812f870246bf1aebc1bb8388c0e66f4d568cbd6e6f2d52ea833175f3d7325da2da08354b704f0d3a73a5904c210dbbccf5bb0cb73c5bc096d2ddf26f1dbfc5871eb7d9b83c91fd232a6e9d530beddbd3a14e3ed65d2edde84fa9d0a5081b07d248635ff520199541cc8510da00"]}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_WIPHY_NAME={0x7, 0x2, ',/\x00'}, @NL80211_ATTR_PMKID={0x8b, 0x55, "c4299c7fde95cd5bb328668043ed4f066b4f0b84ceb0d438cb21d002774c84ee0b72d8c60a3f251d80dc591d855b44eec8651096063ada50f2528de7026b635393a888104af971e2e7ecaa34f5a29c2479fc5860072125420290f6f5dd6bb56b420500336dab0956add054ddc5badd6a36858f80edfda6024f4473e0991878ea3cceab7f864611"}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_FILS_DISCOVERY={0x1c0, 0x126, 0x0, 0x1, [@NL80211_FILS_DISCOVERY_ATTR_TMPL={0xd4, 0x3, "ef02a9deef1f5253b207efcdf673c00fa65bad6d95f5d2b6e660d07cdbd302d43228e3b77e57bf3ea9de2c07ee52ba9a32e6628357fbf2c28dc11f87bcd4a2ae7c67bb5aaf8e764a223c7feebd14e5ce9ab62fe37ae338688cfbd825a9233e741b74f578b469a92dd403668553f0c22f3fd3603637527d7bc203e451ca4514abdf6f64b4347e736d5dc7e94180e5fc3d89ea7cfd8f78ea9c603f2e64c183674c830679aed66d96ba6b6c6130be4fe18ffbc52054a202a153301647b09c451bf02b392c24f5e2f31c287f3919106fdd8f"}, @NL80211_FILS_DISCOVERY_ATTR_INT_MIN={0x8, 0x1, 0x1}, @NL80211_FILS_DISCOVERY_ATTR_TMPL={0xe0, 0x3, "af184ad8dc621b294b62184a856ce0ac0ef5f0306c2857eec4cb712550613f74c810c3a0bfa7c12337c7f90daf8342c5f30a876feb397db95059fe445fc07dc85a06f7dbe4c1d625262d4f5a485a573baf6f2b08294984ef61793cec70a88d8ad7e106767be4b3dffd3882a8ade0423f5c6395ecb512e76cfde6777427031f3208bd01f7590aecaf2fa9b899364bca396f6081d640eb33c021e689949a38624660dfef055a7eee100bb90dc0260ebf67991f98bb4306037254d19c3bb038ea518a045990bdc460ef6d0ab5f681fbe9d15e67fa18e3dc21cc47d2ea86"}]}, @NL80211_ATTR_FREQ_FIXED={0x4}]}, 0x6f0}, 0x1, 0x0, 0x0, 0x4000}, 0x20000010) 5m1.865339031s ago: executing program 3 (id=4398): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup\x00', 0x2, 0x0) mmap$auto(0xffffffffffffffff, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(r0, 0x0, 0x5) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x581402, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0x40000eb1, 0x401, 0x8000) acct$auto(&(0x7f0000000000)='/sys/kernel/config/target/core/alua/lu_\xf6\r\x00\x00default_nu_gp/lu_gp_id\x1f\xd7\xba(-\xc4*e\xff\xad\xbae\xd9.\xff\x19\x9fx\xa4f\xb7U9\xae7\xf6n\x17f\xe9nt\a\x1aD\xdeo\vT\x8b\xb2D1\xd1\xf7#\xe2\xb5\'U}W\xbb\xa6\x9d\xaeD\xb2\xa8t\xff\xa3\xa5\x93p\xb3\xee~\xd3\xaca\"\x956#\xf6\xc2\x92p\x83\x8fT\xaa\xeby\x89\a\x81\x97A\x98&\x86\x11$\xf94\xb4\xaf\xc9\x81Qb\x14F.E\xde\xd6\x10\x8b\xa7\vve|\xe9\xa3d\x13\xd8J\xfc\xeap\xba\xe7VMk\xe9\x9c\xdf\xbf\xc2\xa05\x9f\xdcI\xa2/\xc1W\xf9\xfc\x86n\x8e\x9a:\x92\xb4d\x8d\t\x859\n\x8f\xab\xed\xfd\x81\xad\xc1\xc2\x0f_Ic') r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/phram/parameters/phram\x00', 0x4a481, 0x0) write$auto(r1, &(0x7f0000000040)='7\x02\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) clone$auto(0x6, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4000006) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2400, 0x0) madvise$auto(0x0, 0x200007, 0x19) r2 = fsopen$auto(0x0, 0x7) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/006/001\x00', 0x40940, 0x0) r3 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x40640, 0x0) r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r2) sendmsg$auto_NL80211_CMD_ASSOCIATE(r2, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x2c, r4, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0x6}, @NL80211_ATTR_SAE_PASSWORD={0xd, 0x115, "90ef70b5c34a9a7991"}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000) mmap$auto(0x200000001fff, 0x9, 0x8, 0x8000000008011, r3, 0x0) mlock$auto(0xfbe8, 0x4) munlock$auto(0x1, 0x2) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) madvise$auto(0x0, 0x400000002, 0x817) madvise$auto(0x0, 0x400053, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/bond0/bonding/arp_validate\x00', 0x2002, 0x0) r5 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fremovexattr$auto(r5, &(0x7f00000001c0)='/proc/tty/driver/serial\x00') 5m1.243718183s ago: executing program 3 (id=4401): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x40000108, 0x400, 0xc0}]}) mmap$auto(0x0, 0x400006, 0xdf, 0x800000000009b72, 0x2, 0x7) syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) (async) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) (async) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) (async) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$auto(0x3, 0xae41, r1) (async) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x40000108, 0x400, 0xc0}]}) (async) mmap$auto(0x0, 0x400006, 0xdf, 0x800000000009b72, 0x2, 0x7) (async) syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff) (async) 5m1.006569145s ago: executing program 3 (id=4403): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0) umount2$auto(&(0x7f0000000040)='.\x00', 0x5) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0xffd8) iopl$auto(0x3) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/ip6_vti0/stable_secret\x00', 0x2, 0x0) pwrite64$auto(r0, 0x0, 0x1, 0x27) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0x22a080, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) capset$auto(0x0, 0x0) migrate_pages$auto(0x0, 0xa, 0x0, 0x0) socket(0x2, 0x1, 0x0) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x101000, 0x0) 4m58.536514128s ago: executing program 3 (id=4409): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0x10, &(0x7f0000000000)={0x0, 0xd6c6}, 0x2, 0x0, 0xe, 0x4}, 0x3}, 0x200, 0xb07e) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) r0 = socket(0x2, 0x80802, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, 0x0, 0x20100, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) setsockopt$auto(r0, 0x11, 0x67, 0x0, 0x8) socket(0x10, 0x2, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0xd6c6, 0x9}, 0x7}, 0x3, 0x0) 4m58.282898285s ago: executing program 3 (id=4411): mbind$auto(0x0, 0x7, 0x10000000000008, 0x0, 0x80000000, 0x10000) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0x8, 0x0) shutdown$auto(0x200000003, 0x2) fchown$auto(0xffffffffffffffff, 0x0, 0x0) recvmmsg$auto(0x3, 0x0, 0x86873cbd, 0xa, 0x0) lstat$auto(&(0x7f0000000000)='./file0\x00', 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) close_range$auto(0x2, 0x8, 0x0) connect$auto(0x3, 0x0, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r1, 0x5381, 0xffffffffffffffff) socket(0x10, 0x2, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) syz_clone3(&(0x7f0000000500)={0x200248400, &(0x7f0000000200), &(0x7f0000000240), 0x0, {}, &(0x7f00000002c0)=""/111, 0x6f, 0x0, &(0x7f0000000440)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x7, {r0}}, 0x58) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) fspick$auto(r0, &(0x7f0000000040)='./file0\x00', 0xf4f) write$auto(r2, 0x0, 0x81) keyctl$auto(0xe, 0x1, 0x0, 0x5eaf, 0x8) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event2\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x5, 0x84) io_uring_setup$auto(0x2, 0x0) 4m43.000894488s ago: executing program 34 (id=4411): mbind$auto(0x0, 0x7, 0x10000000000008, 0x0, 0x80000000, 0x10000) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0x8, 0x0) shutdown$auto(0x200000003, 0x2) fchown$auto(0xffffffffffffffff, 0x0, 0x0) recvmmsg$auto(0x3, 0x0, 0x86873cbd, 0xa, 0x0) lstat$auto(&(0x7f0000000000)='./file0\x00', 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) close_range$auto(0x2, 0x8, 0x0) connect$auto(0x3, 0x0, 0x6) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r1, 0x5381, 0xffffffffffffffff) socket(0x10, 0x2, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) syz_clone3(&(0x7f0000000500)={0x200248400, &(0x7f0000000200), &(0x7f0000000240), 0x0, {}, &(0x7f00000002c0)=""/111, 0x6f, 0x0, &(0x7f0000000440)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x7, {r0}}, 0x58) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) fspick$auto(r0, &(0x7f0000000040)='./file0\x00', 0xf4f) write$auto(r2, 0x0, 0x81) keyctl$auto(0xe, 0x1, 0x0, 0x5eaf, 0x8) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event2\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x5, 0x84) io_uring_setup$auto(0x2, 0x0) 19.850217044s ago: executing program 6 (id=5268): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) socket(0x15, 0x5, 0x0) select$auto(0x11, 0x0, 0x0, 0x0, 0x0) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/oom_adj\x00', 0x400000, 0x0) r0 = open(&(0x7f00000000c0)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) flock$auto(r0, 0x6) openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x80040, 0x40, 0xe}, 0x18) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) socket(0x2, 0x3, 0x4) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/arch_status\x00', 0x40000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f00000000c0), 0x101b02, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) io_uring_setup$auto(0x85, 0x0) r1 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000140), 0x382, 0x0) write$auto_rfkill_fops_core(r1, 0x0, 0x700) socket$nl_generic(0x10, 0x3, 0x10) socket(0x22, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0x8042, 0x0) socketpair$auto(0xfffffffe, 0xfffffffe, 0x8000000000000000, 0x0) r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r2, 0x4601, 0x0) 18.361499525s ago: executing program 6 (id=5277): r0 = set_tid_address$auto(0x0) setxattr$auto(0x0, &(0x7f0000000200)='*\x00', 0x0, 0x800000, 0x0) msync$auto(0x6a8, 0x6, 0xfffffff8) ioprio_get$auto_IOPRIO_WHO_PROCESS(0x1, r0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000180)='/:$]\x00', 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) poll$auto(&(0x7f0000003640)={r2, 0x7, 0x6}, 0x6, 0x100000) r4 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003900), r2) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x3, 0x4) sendmsg$auto_NETDEV_CMD_QUEUE_GET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000003980)={&(0x7f0000000000)={0x54, r4, 0x301, 0x70bd2b, 0x25dfdbfd, {}, [@NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x950}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0xfffffffb}, @NETDEV_A_QUEUE_IFINDEX={0x8}, @NETDEV_A_QUEUE_IFINDEX={0x8}, @NETDEV_A_QUEUE_IFINDEX={0x8}, @NETDEV_A_QUEUE_IFINDEX={0x8}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x4}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x6}]}, 0x54}, 0x1, 0x0, 0x0, 0x2004c005}, 0xc4) open(0x0, 0x7ffd, 0x12) kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) unshare$auto(0x20000080) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710}, 0x10) unshare$auto(0x40000080) io_uring_setup$auto(0x4c2, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) 15.053575516s ago: executing program 6 (id=5279): r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) keyctl$auto(0xe, 0x1, 0x0, 0x5eaf, 0x8) r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r1, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f00000001c0)={0x34, r2, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x20, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_ADDR={0x14, 0x1, "5e1f970f497f9f23d63e72850177cde9"}, @NFSD_A_SOCK_TRANSPORT_NAME={0x6, 0x2, '-\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x0) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\x13\x12dQ\x01y\xeb', 0x7e) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/block/loop12/hctx0/cpu1/poll_rq_list\x00', 0x101480, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 11.814579255s ago: executing program 5 (id=5283): mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) mount$auto(0x0, &(0x7f00000002c0)='}[,&*}\x00', 0x0, 0x2ee, &(0x7f0000000340)="98db5ad8") r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/swradio12\x00', 0x0, 0x0) poll$auto(&(0x7f0000000080)={r0, 0xffff, 0x9}, 0x3, 0xc505) mmap$auto(0x400, 0x2020009, 0x9, 0xeb1, r0, 0x63a0) socket(0x2, 0xa, 0xa) mmap$auto(0x0, 0x4004, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/net/ip_tables_targets\x00', 0x113102, 0x0) read$auto(r2, &(0x7f0000000000)='/proc/scsi/sg/devices\x00', 0xc9e3) socket(0x15, 0x2, 0x20003) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x8f3b7a51b8162d21, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) r3 = open(0x0, 0x591083, 0x408) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8}) linkat$auto(r3, 0x0, r1, 0x0, 0x1001) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) select$auto(0x800e, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x4, 0x1, 0x5c4, 0x7, 0x95f4da0b, 0x10004, 0x3, 0x400062, 0x80000001, 0x7, 0x9, 0x9, 0x2, 0x400000000001]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) futex_wait$auto(0x0, 0x2, 0x1, 0x2, &(0x7f0000000040)={0x8, 0x10000000001}, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x103280, 0x0) mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0xffffffffffffffff, 0x8, 0x2) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) 10.526769172s ago: executing program 5 (id=5287): r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x48402, 0x0) read$auto(r0, 0x0, 0xc) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) socket(0xf, 0x1, 0xfff) madvise$auto(0x192ad524, 0x1, 0x19) listxattrat$auto(0xffffffffffffffff, &(0x7f0000001c80)='./file0\x00', 0x1000, 0x0, 0x3) kill$auto(0x0, 0x21) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/lru_gen/enabled\x00', 0xb02, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) pread64$auto(r1, 0x0, 0x20000000001, 0x7fff) write$auto(0x3, 0x0, 0x7fffffff) madvise$auto(0x0, 0x200007, 0x8) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x2cb8}, 0x1, 0x0, 0x0, 0x40}, 0x2404c084) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x88) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x3fd, 0x8000) 7.514926982s ago: executing program 0 (id=5293): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0xc) openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000008c0)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x2, 0x0) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) socket(0xf, 0x1, 0xfff) madvise$auto(0x192ad524, 0x1, 0x19) listxattrat$auto(0xffffffffffffffff, &(0x7f0000001c80)='./file0\x00', 0x1000, 0x0, 0x3) kill$auto(0x0, 0x21) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/lru_gen/enabled\x00', 0xb02, 0x0) r1 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) pread64$auto(r1, 0x0, 0x20000000001, 0x7fff) write$auto(0x3, 0x0, 0x7fffffff) madvise$auto(0x0, 0x200007, 0x8) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x2cb8}, 0x1, 0x0, 0x0, 0x40}, 0x2404c084) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x88) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x3fd, 0x8000) 6.17057123s ago: executing program 0 (id=5294): syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xfffffeff, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x2, 0x83, 0x101, 0x17f, 0x2}, {0xff, 0x1, 0x52, 0x5, 0x1, 0x40, 0x4, 0x8, 0x100000004}}) io_uring_setup$auto(0xd364, &(0x7f0000000000)={0x400, 0x10002, 0x7f, 0x7, 0x6, 0x5, r0, [], {0x2, 0x4, 0x6, 0x2, 0x40, 0x4, 0x7, 0x7, 0x80000000}, {0x7, 0x1ff, 0x80000001, 0x8, 0x6b, 0x9, 0x0, 0xfffffffa, 0xb1}}) io_uring_enter$auto(0x3, 0x5, 0xffffffff, 0x3, 0x0, 0x2) 5.925143406s ago: executing program 4 (id=5295): ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR322(0xffffffffffffffff, 0xc0844123, &(0x7f00000003c0)={0x5, @status={0x6, 0x0, 0xcad, 0xa, 0xdd, 0x5, 0x54d8e21, 0x401}, @control={0x1, 0x5}}) r0 = openat$auto_hpet_fops_hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x648802, 0x0) mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, r0, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mdstat\x00', 0x1c1080, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffe}, 0xfffffffffffffe93, 0x2, 0xc) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_seg6(&(0x7f0000002e40), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SET_TUNSRC(r1, &(0x7f0000002f00)={0x0, 0x0, &(0x7f0000002ec0)={&(0x7f00000005c0)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x4048c01}, 0x24) sendmsg$auto_SEG6_CMD_GET_TUNSRC(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000340)={&(0x7f0000000900)=ANY=[@ANYBLOB], 0x5c}, 0x1, 0x0, 0x0, 0x24000015}, 0x20001000) r2 = prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) r3 = socket(0x2, 0x1, 0x0) getdents$auto(0xffffffffffffffff, &(0x7f0000000080)={0x7, 0xc, 0x3ff}, 0x201) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_seg6(0x0, 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SET_TUNSRC(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYRES16=r5, @ANYBLOB], 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x800) socket(0x21, 0x5, 0xffffffff) socket$nl_generic(0x10, 0x3, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000740)=ANY=[@ANYRES8=r4, @ANYRES16=r7, @ANYBLOB="067b67e4394bc1692b01002cbd7000fedbdf250400000004001d07080009000000010011a2ffcdd353042f39c0927e108b25a7e15a2bb5070a2b1044325e0efa6ab97d68b153eda60cb9761a783a2e333bf842fe6c00000000000035714a536f6dacc9e15a017b7d2a31b3d3b0a2bc3e137c2e58684b0b456e0a6eb70d31f0ce945b5942560466cce814c2e5f2cc92cf8a7369926a1d504dc966d517cf808dae82ce6e94019cda45bb139cdba2602ed0befd015f3f938adf8b5f5d5ee1f984e04ff30b3d155b5ed5412cf364144c779661c0697ca1f82d8505"], 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r8 = socket(0x5, 0x2, 0x88) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r8, @new_prog_fd=0x4, 0x4, @old_map_fd=r4}, 0xa3) prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000200), r3) read$auto_proc_projid_map_operations_base(r2, &(0x7f0000000100)=""/226, 0xe2) 5.846743214s ago: executing program 0 (id=5296): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x24895}, 0x840) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) io_uring_setup$auto(0x6, 0x0) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto(r1, 0xc0b45545, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0x1a000}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x80000001, 0x9}}, 0x2, 0x0) unshare$auto(0x40000080) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$auto_OVS_METER_CMD_GET(r3, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x50, r4, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [@OVS_METER_ATTR_MAX_METERS={0x8, 0x7, 0x204b}, @OVS_METER_ATTR_CLEAR={0x4}, @OVS_METER_ATTR_MAX_BANDS={0x8, 0x8, 0x7}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_STATS={0x14, 0x3, {0xfffffffffffffffd, 0x7}}, @OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_USED={0xc, 0x5, 0x8}]}, 0x50}, 0x1, 0x0, 0x0, 0x40}, 0x890) newfstatat$auto(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000200)={0x2, 0x6, 0x65c86b34, 0xc5dc67eb, 0x0, 0x0, 0x0, 0xffffffff, 0xe2, 0x5, 0x40, 0x100000001, 0x7, 0x2, 0xd9, 0xf5, 0x1b807}, 0x0) capset$auto(&(0x7f0000000100)={0x6, 0x0}, &(0x7f0000000180)={0x5, 0xfff, 0x5}) sendmsg$auto_OVS_METER_CMD_SET(r0, &(0x7f0000000840)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000800)={&(0x7f00000002c0)=ANY=[@ANYBLOB="40050000", @ANYRES16=r4, @ANYBLOB="00012cbd7000fedbdf2502000000040006000c0005000800000000000000140003000e00000000000000000000000000000008000100010000800400060008000800020000001400030088d0000000000000dcffffffffffffffdf040480fa17bc9dbcee5f038f29c32fafedebfc0ca81cfa78ea16415ea91d38af49400c6a41c2852c67bd9c1cdbc1253c74c54fd2b493fbef26e17592052dc8951a9d6a3400335d273669e20ba58cfc98c2520a124444d053608230d694408ab27aede01cdcae26c9fcc5a6cef3f1979b6a42986a6612b73da2e13872b34608001600", @ANYRES32=r2, @ANYBLOB="fe0078800c005100ff7f0000000000003f4d67803231e3c70fe4bcf6c27ff7a7636d7361a0c70f6c10ba39884b97c3eeac759004f2043bb7dd2c8539c869468d4b1450519fae1a674fe500a5ac878a6bc81f46673953160b1037edb465b607406325c9e03ad24ede98451b60b54c5785e0a1900cc1b110c6fc964bc5f3ec190d36e77136897927462a65b1a6ea395e3dcf6c9d25f22096686b5f726efd077fe0a900320c2ccd1571f563e528487ee7a147f8e0ec8dfc4a1d64c75a742fc8dc2e2d389ccfc0e2f4d59ba06977650cce50b7c1847f96bbc417ef45ef71e374eddc72f05fc36547040066800400d680040011800800da00", @ANYRES32=r2, @ANYBLOB="04009e800000e302e780d8005500780be977f51a645363b971ed262db13bfe4681ca2ae57f7fc16a63e5d63ec86c3a03b1dff860d6c26ae879a26984dae896a76c04fadcb81f04298c76277bca595a7d040db9c72f249c7dcfe28c0807943e1bf16d2a47a8b1304307dd8e0039d6e9dec86a76cb395ca18aedfa2cfd2fda5f1ea02fa926f8654e4a49ccd7e868ccfd7c84c36c68881307ba21b6b978bef1a05edc2688cccd8b10cf148a7fb8c3b6ec88670bc58b00fd879d1badad0dff50af02af65e41bd7145660365b32c1c572eb6e51c6fcfd27002d072d0163325cf7f800ca8c51a19c1ab9e47503b6df50075d0b131d969fbaeb8102bf118e3a67437806de7e8b8b46f18bddcfbd557f6a3234b5e22564c8f59a285027c560d44f6dbba2ef6663e95be603164c8f6bc1a0bf50b3304653bb1189479bac876b32122a449ed14ea46f65e87c824b031bcda5c2eb2530be6214c2bf3eb805cf0d0900bd02e702c90309aaf54e94df536c420dd86110011543ada59e08242fa4cae2456dd978a15fe204703e85e8816a7b74d7fe9366a9822440edac9e0d90841e784e0f9d06e6aaa691cc2887d013b002f313b57681ba75b817018559268cfde6216968e7108aaab58de0faaf35bb91b2304809bd465fa3b0a866bae44f3d54f8484564f562a2302b0f8b24319d9a4c7ca5d6b01afcc806a8e90a9c378735750ccc75fa0c00aa000300000000000000d7beb3af31997b1ce8736a2cdebbad1eb41948062c82f10c07c21fa27da0317f4eccab1c7c1ab1f29203ce244680d33b986e2057c18d7bad1640b2f60aebbbb45d888f71eca81147b038cb2ac059090e6deac594b7c4ef470324641166a174b62a365b314cdb611d96278c58237b65fb19ec5383c5a850e71c907a8c4d2de67be12639ca9a17aa89e35e229b79008a098e244c7d9b6ab1acc658b34314ccdf8092eeb13acfe819f4fa5b58b32456bd5410baae8f00df4dc39c583643c3f356e13c88da90edff9adedfe28a177f935208008f00", @ANYRES32=r5, @ANYBLOB="0400f9800400d580006700648004003680886ace210da333ee2f4c1382f946d4195d9bd256e0caa2bc169e33782fa54a48cb38639fcc4d6305836a78baac835a9b45ddcfe82a873c461a23555b01d3bc0800de00ac1e00010c00f60001040000000000000c00a3000700000000000000000800bf00", @ANYRES32=r6, @ANYBLOB="0400670000"], 0x540}, 0x1, 0x0, 0x0, 0x20040015}, 0x1) setsockopt$auto(r2, 0x104000000000010e, 0xb, 0x0, 0x400) r7 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_DEBUG_GET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x1c, r7, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@ETHTOOL_A_DEBUG_HEADER={0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x20044840) 5.228232282s ago: executing program 4 (id=5297): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0) select$auto(0x11, 0x0, 0x0, 0x0, 0x0) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/oom_adj\x00', 0x149602, 0x0) read$auto(r1, 0x0, 0x1f40) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x4}, 0x3) read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000280)=""/211, 0xd3) mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 4.138007957s ago: executing program 6 (id=5298): unshare$auto(0x40000080) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, 0x0, 0x24000044) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = ioctl$auto_SW_SYNC_GET_DEADLINE(0xffffffffffffffff, 0xc0105702, &(0x7f00000000c0)={0xcc75, 0x0, r0}) syz_genetlink_get_family_id$auto_nlctrl(0x0, r1) (async) socket(0x10, 0x2, 0x0) (async) unshare$auto(0x2) (async) mmap$auto(0x0, 0xfff, 0xdf, 0xeb1, 0x401, 0x8000) (async) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) ioctl$auto_SNAPSHOT_S2RAM(r2, 0x330b, 0x0) read$auto(r2, 0x0, 0x20) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) r4 = openat$auto_state_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x81, 0x0) mmap$auto(0xfffffffffffffffa, 0x4020009, 0xdf, 0xeb1, r4, 0x8000) (async) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async) pselect6$auto(0x1, 0x0, &(0x7f0000000240)={[0xf, 0x5e9, 0x8, 0x8e, 0xd, 0xfffffffffffff801, 0x2d44b40f, 0x831f, 0x4, 0xb911, 0x2, 0x81, 0x4, 0x6, 0x1, 0x5]}, 0x0, 0x0, 0x0) (async) unshare$auto(0x3) (async) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/stat/rt_cache\x00', 0x20000, 0x0) (async) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x8000, 0x0) (async) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async) iopl$auto(0x3) (async) clone$auto(0x0, 0x4, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) 3.945393931s ago: executing program 4 (id=5299): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/misc/hw_random/rng_current\x00', 0x129102, 0x0) socket(0x15, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a) setsockopt$auto(0x3, 0x114, 0x1, 0xffffffffffffffff, 0x3) write$auto(r0, &(0x7f0000000000)='&%\x00', 0x1) semctl$auto_GETNCNT(0xe004, 0xfffff94a, 0xe, 0xdf2) 3.507584896s ago: executing program 4 (id=5300): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) recvfrom$auto(r0, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) sendmsg$auto_NETDEV_CMD_QSTATS_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x20008800}, 0x1) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x14, 0x0, 0x2, 0x70bd29, 0x25dfdbff, {0x4, 0x0, 0x4002}}, 0x14}, 0x1, 0x0, 0x0, 0x20040000}, 0x4004001) 3.159081408s ago: executing program 5 (id=5301): mmap$auto(0x2, 0x4, 0x10000, 0x8b74, 0x1000000002, 0x8000) (async) io_uring_setup$auto(0x86, 0x0) (async) close_range$auto(0x2, 0x8000, 0x0) (async) socket(0x2, 0x1, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async) r0 = open(&(0x7f00000000c0)='./cgroup\x00', 0x22402, 0xb5d1af1605322cb0) syz_clone3(&(0x7f00000003c0)={0x383201180, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) (async) mmap$auto(0x0, 0x2020409, 0xa, 0xeb1, 0xffffffffffffffff, 0x8000) (async) io_uring_setup$auto(0x82, 0x0) (async) close_range$auto(0x2, 0xa, 0x0) (async) openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f000000e680), 0x2, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0) (async) socket(0xa, 0x2, 0x3a) (async) prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x3, 0xffffffffffffffff, 0x10, 0x7) (async) openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x60000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x300, 0x0) r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x4400, 0x0) read$auto_tap_fops_tap(r1, &(0x7f0000000240)=""/146, 0x92) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/bus/pci/00/04.0\x00', 0x83280, 0x0) pread64$auto(r2, 0x0, 0x1ff, 0xf4) (async) adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2100000000, 0x10000}, 0x6, 0x6, 0xffffffffffffffdd, 0x1008000, 0x0, 0xcd, 0x83, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x1800}) (async) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) memfd_secret$auto(0x0) (async) ioctl$auto_IMADDTIMER(0xffffffffffffffff, 0x80044940, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async) openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000002140), 0xa002, 0x0) 2.437561502s ago: executing program 0 (id=5302): mremap$auto(0x110c230000, 0x4, 0x4, 0x7, 0xfffffffffffff000) 2.166575513s ago: executing program 0 (id=5303): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x200003, 0x2, 0x40eb4, 0x602, 0x2fffffffffff) io_uring_setup$auto(0x2, 0x0) mprotect$auto(0x0, 0x806121, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) capset$auto(&(0x7f0000000180)={0x19980330}, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) ioctl$auto(r0, 0x4b33, r0) bpf$auto_BPF_MAP_CREATE(0x0, &(0x7f00000001c0)=@enable_stats, 0x4) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptyt2\x00', 0x68140, 0x0) ioctl$auto(r1, 0x5457, 0xd8) read$auto_dvb_dvr_fops_dmxdev(0xffffffffffffffff, &(0x7f00000000c0)=""/66, 0x42) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x2, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 2.11210187s ago: executing program 5 (id=5304): socket(0x26, 0x1, 0x300) r0 = openat$auto_suspend_stats_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x440, 0x0) pread64$auto(r0, &(0x7f00000000c0)='/dev/nvme-fabrics\x00', 0x10, 0x9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0) open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x1b}, 0x403) r1 = socket(0x11, 0x3, 0x9) sendmmsg$auto(r1, &(0x7f0000000480)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000380)='C', 0x49}, 0x8, &(0x7f0000000300), 0x6, 0x1000}, 0x5}, 0x2, 0xfd) socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000040)='./file0\x00', 0x44, 0x0) read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) mmap$auto(0x0, 0x4020009, 0xfffffffffffffffd, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r3, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000200)=ANY=[@ANYBLOB="1406bf969500000000ffffffff00", @ANYRES16=r4, @ANYBLOB="01002bbd7008fcdbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000) sendmsg$auto_NFSD_CMD_LISTENER_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="01de99a93dc84317b451f089f0302a6a00ffdbf78306000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x0) syz_clone3(0x0, 0x0) mmap$auto(0x0, 0x10000, 0x8000, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x1) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) madvise$auto(0x0, 0x2003f0, 0x15) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf1\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x1004e, 0x6) 2.111963348s ago: executing program 4 (id=5305): r0 = set_tid_address$auto(0x0) ioprio_get$auto_IOPRIO_WHO_PROCESS(0x1, r0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) write$auto(0xffffffffffffffff, &(0x7f0000000180)='/:$]\x00', 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) open(0x0, 0x7ffd, 0x12) kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0x2000040080000004, 0xe) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) unshare$auto(0x20000080) connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710}, 0x10) unshare$auto(0x40000080) io_uring_setup$auto(0x4c2, 0x0) madvise$auto(0xf400, 0xffffffffffff0001, 0x15) 2.087423427s ago: executing program 6 (id=5306): ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR322(0xffffffffffffffff, 0xc0844123, &(0x7f00000003c0)={0x5, @status={0x6, 0x0, 0xcad, 0xa, 0xdd, 0x5, 0x54d8e21, 0x401}, @control={0x1, 0x5}}) r0 = openat$auto_hpet_fops_hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x648802, 0x0) mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, r0, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mdstat\x00', 0x1c1080, 0x0) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffe}, 0xfffffffffffffe93, 0x2, 0xc) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_seg6(&(0x7f0000002e40), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SET_TUNSRC(r1, &(0x7f0000002f00)={0x0, 0x0, &(0x7f0000002ec0)={&(0x7f00000005c0)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x4048c01}, 0x24) sendmsg$auto_SEG6_CMD_GET_TUNSRC(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000340)={&(0x7f0000000900)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYBLOB="04002abd7000fddb435e9d4f120037000400a6de8db053311caf23c2cdf2b686cf86ae46865d77e0571310b9a77e29d21aa2b1629a66b59bf40c15269b80d52565b9ab620e0008000200e4020500060005000000d1f07fa8d34ccc8702fd5c80e3132014a7005f7999cfdf61605a09000000000000000000006c005ba48692e04531b904c000e30f6b9602c791038eb297e63f5654a0cc6ae782bcbbdf7aa093e24a02af5872c1463094d3d79e227136b96bc709f53d2747da36ae3361089997671b35ec16e44950025cc958c4016b275c93c002f0dc4ba95bbc32574031c0d9"], 0x5c}, 0x1, 0x0, 0x0, 0x24000015}, 0x20001000) r2 = prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) r3 = socket(0x2, 0x1, 0x0) getdents$auto(0xffffffffffffffff, &(0x7f0000000080)={0x7, 0xc, 0x3ff}, 0x201) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SET_TUNSRC(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010028bd7000fbdb030000007e3558e6f552344c4f000000000000000000000134e007ee0cd8e45f4bd8aac1571a027cc73b16ce94ab778fa21e7cd9012e4c2e9f2f515f5ab817afaf338af070ba7c2b0128c961912e363d503baec808c88c688a3057f98e13f6e8c96ff5c27eeb83eb3999c000fd1c272daf5f2f9347dc5a4bf3e9847ef0efd1667a645390363fe183aba878c3d1bf56475ffa2694cc18d771ccca412644d678d364f98a7d028c94410e924e3e2f96e431395682babf099a486f43f3feb65bc29fae012cebd04f65a04301648e87dbb5a98b852bdc5501499c3247699ac2a77f453e0aa7fc"], 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x800) socket(0x21, 0x5, 0xffffffff) socket$nl_generic(0x10, 0x3, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000740)=ANY=[@ANYRES8=r4, @ANYRES16=r7, @ANYBLOB="067b67e4394bc1692b01002cbd7000fedbdf250400000004001d07080009000000010011a2ffcdd353042f39c0927e108b25a7e15a2bb5070a2b1044325e0efa6ab97d68b153eda60cb9761a783a2e333bf842fe6c00000000000035714a536f6dacc9e15a017b7d2a31b3d3b0a2bc3e137c2e58684b0b456e0a6eb70d31f0ce945b5942560466cce814c2e5f2cc92cf8a7369926a1d504dc966d517cf808dae82ce6e94019cda45bb139cdba2602ed0befd015f3f938adf8b5f5d5ee1f984e04ff30b3d155b5ed5412cf364144c779661c0697ca1f82d8505cd5ff91948d10c"], 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r8 = socket(0x5, 0x2, 0x88) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r8, @new_prog_fd=0x4, 0x4, @old_map_fd=r4}, 0xa3) prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000200), r3) read$auto_proc_projid_map_operations_base(r2, &(0x7f0000000100)=""/226, 0xe2) 803.994788ms ago: executing program 5 (id=5307): sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000) r0 = socket(0x2, 0x3, 0x6) r1 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) bpf$auto_BPF_ENABLE_STATS(0x20, &(0x7f0000000180)=@bpf_attr_0={0x3ff, 0x8, 0xffff, 0x7fffffff, 0xc2, r0, 0x7, "3f8850b8c665dabcdf3c01e5fde04738", 0x0, r0, 0x10001, 0x0, 0x1, 0x2, r0, r0}, 0xffffffc0) openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) write$auto_console_fops_tty_io(r3, &(0x7f0000000280)="671f264add69b6440843b6d6688a2b5ad9df2669e6f9cd236532b20ed763ac8caf4b9b4c", 0x24) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x103a42, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/module/psmouse/parameters/proto\x00', 0x20a42, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000001840)=""/4092, 0x83ffe632b5c9ab37) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) mprotect$auto(0x9, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x400, 0x9}, 0x7}, 0x3, 0x0) socket(0x2, 0x1, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) statmount$auto(&(0x7f0000000000)={0x7e, @raw, 0x80000028, 0xd9a, 0x2}, 0x0, 0x7ffffffff000, 0x0) socket(0x2, 0x5, 0x0) connect$auto(0x3, 0xfffffffffffffffe, 0x0) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, 0x0, 0x381502, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0x8000000000000eb1, 0xffffffffffffffff, 0xe4) socket(0x11, 0x80003, 0x300) socket(0x11, 0x80003, 0x300) name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000001c0)='/\x00', &(0x7f0000000200)={0x0, 0x200}, 0x0, 0x1001) openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x10800, 0x0) 803.138283ms ago: executing program 0 (id=5315): r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x48402, 0x0) read$auto(r0, 0x0, 0xc) mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x7fffffff) write$auto(0x1, 0x0, 0x80000000) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) socket(0xf, 0x1, 0xfff) madvise$auto(0x192ad524, 0x1, 0x19) listxattrat$auto(0xffffffffffffffff, &(0x7f0000001c80)='./file0\x00', 0x1000, 0x0, 0x3) kill$auto(0x0, 0x21) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/lru_gen/enabled\x00', 0xb02, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0) pread64$auto(r1, 0x0, 0x20000000001, 0x7fff) write$auto(0x3, 0x0, 0x7fffffff) madvise$auto(0x0, 0x200007, 0x8) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x2cb8}, 0x1, 0x0, 0x0, 0x40}, 0x2404c084) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x2, 0x88) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x3fd, 0x8000) 691.017345ms ago: executing program 6 (id=5308): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff) syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) rt_sigaction$auto(0x1, &(0x7f00000001c0)={&(0x7f0000000080)=0x0, 0x7fffffffffffffff, 0x0, {0x5}}, 0x0, 0x8) mmap$auto(0x0, 0x5, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x29, 0x2, 0x0) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/rpc/use-gss-proxy\x00', 0x48041, 0x0) write$auto(r0, 0x0, 0x6) rt_sigaction$auto(0x4, &(0x7f0000000300)={&(0x7f0000000240)=0x0, 0x0, 0x0, {0x1}}, 0x0, 0x8) r1 = gettid() rt_sigqueueinfo$auto(r1, 0x1, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4000000000db, 0x12, 0x400, 0x18002) mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0xa) openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000100)='/dev/audio1\x00', 0x100000a3d9) socket(0xa, 0x801, 0x84) setsockopt$auto(0x3, 0x29, 0x43, 0x0, 0x9) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xe1, 0x9b72, 0x2, 0x8000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), r3) sendmsg$auto_NETDEV_CMD_NAPI_GET2(r3, &(0x7f0000003f40)={0x0, 0x0, &(0x7f0000003f00)={&(0x7f0000003e80)={0x14, r4, 0x309, 0x70bd2b, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0) write$auto(r5, 0x0, 0xfffffdef) 151.709µs ago: executing program 4 (id=5309): prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, 0x0, 0x800) sendmsg$auto_HSR_C_GET_NODE_STATUS(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x20040084}, 0x40090) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, 0x0, 0xc800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="18"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x3f4, 0x9}, 0x7}, 0x3, 0x0) 0s ago: executing program 5 (id=5310): mmap$auto(0x80000001, 0x401, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x40001, 0x0) io_uring_setup$auto(0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0) openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cpu/0/msr\x00', 0x400, 0x0) write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/bluetooth/hci7/force_wakeup\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x1f42) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f00000000c0)={0x0, 0x7}, 0x3) shmctl$auto(0x7ff, 0x7270, 0x0) msgctl$auto_IPC_SET(0xfffffffc, 0x1, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x1001, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';') r3 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x40, 0x0) ioctl$auto(0x3, 0x40086200, r3) kernel console output (not intermixed with test programs): reate_transport+0x169/0x730 [ 1770.093203][T27917] rpc_create+0x38e/0x7f0 [ 1770.093249][T27917] ? __pfx_rpc_create+0x10/0x10 [ 1770.093303][T27917] ? __lock_acquire+0xb97/0x1ce0 [ 1770.093384][T27917] ? __pfx___might_resched+0x10/0x10 [ 1770.093422][T27917] ? rcu_is_watching+0x12/0xc0 [ 1770.093465][T27917] rpcb_create_local_net+0x11a/0x300 [ 1770.093499][T27917] ? __pfx_rpcb_create_local_net+0x10/0x10 [ 1770.093559][T27917] ? rpcb_create_local+0x1da/0x270 [ 1770.093610][T27917] rpcb_create_local+0x22d/0x270 [ 1770.093648][T27917] svc_bind+0x1e8/0x260 [ 1770.093690][T27917] nfsd_create_serv+0x2d2/0x480 [ 1770.093745][T27917] ? __pfx_nfsd_create_serv+0x10/0x10 [ 1770.093801][T27917] ? __nla_validate_parse+0x600/0x2880 [ 1770.093859][T27917] nfsd_nl_listener_set_doit+0xdd/0x1b10 [ 1770.093918][T27917] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 1770.093961][T27917] ? __nla_parse+0x40/0x60 [ 1770.094016][T27917] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 1770.094062][T27917] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1770.094122][T27917] genl_family_rcv_msg_doit+0x209/0x2f0 [ 1770.094169][T27917] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1770.094211][T27917] ? rcu_is_watching+0x12/0xc0 [ 1770.094282][T27917] ? bpf_lsm_capable+0x9/0x10 [ 1770.094314][T27917] ? security_capable+0x7e/0x260 [ 1770.094374][T27917] genl_rcv_msg+0x55c/0x800 [ 1770.094424][T27917] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1770.094468][T27917] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 1770.094525][T27917] netlink_rcv_skb+0x158/0x420 [ 1770.094563][T27917] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1770.094617][T27917] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1770.094672][T27917] ? netlink_deliver_tap+0x1ae/0xd30 [ 1770.094716][T27917] genl_rcv+0x28/0x40 [ 1770.094753][T27917] netlink_unicast+0x5a7/0x870 [ 1770.094797][T27917] ? __pfx_netlink_unicast+0x10/0x10 [ 1770.094834][T27917] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 1770.094870][T27917] ? __lock_acquire+0xb97/0x1ce0 [ 1770.094928][T27917] netlink_sendmsg+0x8d1/0xdd0 [ 1770.094973][T27917] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1770.095018][T27917] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 1770.095080][T27917] ____sys_sendmsg+0xa98/0xc70 [ 1770.095128][T27917] ? copy_msghdr_from_user+0x10a/0x160 [ 1770.095163][T27917] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1770.095217][T27917] ? __pfx_futex_wake_mark+0x10/0x10 [ 1770.095274][T27917] ___sys_sendmsg+0x134/0x1d0 [ 1770.095311][T27917] ? __pfx____sys_sendmsg+0x10/0x10 [ 1770.095399][T27917] __sys_sendmsg+0x16d/0x220 [ 1770.095434][T27917] ? __pfx___sys_sendmsg+0x10/0x10 [ 1770.095468][T27917] ? __x64_sys_futex+0x1e0/0x4c0 [ 1770.095536][T27917] do_syscall_64+0xcd/0x490 [ 1770.095578][T27917] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1770.095622][T27917] RIP: 0033:0x7f0320b8eb69 [ 1770.095650][T27917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1770.095686][T27917] RSP: 002b:00007f031e9f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1770.095720][T27917] RAX: ffffffffffffffda RBX: 00007f0320db5fa0 RCX: 00007f0320b8eb69 [ 1770.095743][T27917] RDX: 0000000000000000 RSI: 0000200000003140 RDI: 0000000000000004 [ 1770.095764][T27917] RBP: 00007f0320c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1770.095785][T27917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1770.095806][T27917] R13: 0000000000000000 R14: 00007f0320db5fa0 R15: 00007ffce100f3e8 [ 1770.095850][T27917] [ 1774.211523][T27975] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4684'. [ 1774.457204][T27978] FAULT_INJECTION: forcing a failure. [ 1774.457204][T27978] name failslab, interval 1, probability 0, space 0, times 0 [ 1774.481144][T27978] CPU: 0 UID: 0 PID: 27978 Comm: syz.0.4685 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1774.481191][T27978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1774.481210][T27978] Call Trace: [ 1774.481221][T27978] [ 1774.481234][T27978] dump_stack_lvl+0x16c/0x1f0 [ 1774.481272][T27978] should_fail_ex+0x512/0x640 [ 1774.481309][T27978] ? __kmalloc_noprof+0xbf/0x510 [ 1774.481351][T27978] ? argv_split+0x188/0x440 [ 1774.481394][T27978] should_failslab+0xc2/0x120 [ 1774.481437][T27978] __kmalloc_noprof+0xd2/0x510 [ 1774.481476][T27978] ? __asan_memcpy+0x3c/0x60 [ 1774.481515][T27978] argv_split+0x188/0x440 [ 1774.481565][T27978] ? __pfx___trace_eprobe_create+0x10/0x10 [ 1774.481600][T27978] trace_probe_create+0x7d/0x100 [ 1774.481641][T27978] ? __pfx_trace_probe_create+0x10/0x10 [ 1774.481695][T27978] create_dyn_event+0xee/0x1c0 [ 1774.481728][T27978] trace_parse_run_command+0x1a6/0x400 [ 1774.481773][T27978] ? __pfx_create_dyn_event+0x10/0x10 [ 1774.481809][T27978] ? __pfx_dyn_event_write+0x10/0x10 [ 1774.481839][T27978] vfs_write+0x2a0/0x1150 [ 1774.481883][T27978] ? __pfx___mutex_lock+0x10/0x10 [ 1774.481917][T27978] ? __pfx_vfs_write+0x10/0x10 [ 1774.481966][T27978] ? __fget_files+0x20e/0x3c0 [ 1774.482012][T27978] ksys_write+0x12a/0x250 [ 1774.482048][T27978] ? __pfx_ksys_write+0x10/0x10 [ 1774.482115][T27978] do_syscall_64+0xcd/0x490 [ 1774.482171][T27978] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1774.482204][T27978] RIP: 0033:0x7f2aca78eb69 [ 1774.482230][T27978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1774.482260][T27978] RSP: 002b:00007f2acb693038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1774.482290][T27978] RAX: ffffffffffffffda RBX: 00007f2aca9b5fa0 RCX: 00007f2aca78eb69 [ 1774.482311][T27978] RDX: 0000000000000014 RSI: 0000200000000140 RDI: 0000000000000007 [ 1774.482331][T27978] RBP: 00007f2acb693090 R08: 0000000000000000 R09: 0000000000000000 [ 1774.482351][T27978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1774.482380][T27978] R13: 0000000000000000 R14: 00007f2aca9b5fa0 R15: 00007ffd8e0ec9d8 [ 1774.482420][T27978] [ 1775.790997][T27986] FAULT_INJECTION: forcing a failure. [ 1775.790997][T27986] name failslab, interval 1, probability 0, space 0, times 0 [ 1775.806289][T27986] CPU: 1 UID: 0 PID: 27986 Comm: syz.0.4686 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1775.806340][T27986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1775.806362][T27986] Call Trace: [ 1775.806376][T27986] [ 1775.806391][T27986] dump_stack_lvl+0x16c/0x1f0 [ 1775.806435][T27986] should_fail_ex+0x512/0x640 [ 1775.806477][T27986] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1775.806519][T27986] should_failslab+0xc2/0x120 [ 1775.806567][T27986] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1775.806604][T27986] ? pkcs7_note_OID+0xbd/0x190 [ 1775.806638][T27986] ? x509_cert_parse+0x50/0x900 [ 1775.806697][T27986] x509_cert_parse+0x50/0x900 [ 1775.806748][T27986] ? kasan_save_stack+0x42/0x60 [ 1775.806786][T27986] ? kasan_save_stack+0x33/0x60 [ 1775.806825][T27986] ? kasan_save_track+0x14/0x30 [ 1775.806868][T27986] pkcs7_extract_cert+0xa4/0x320 [ 1775.806911][T27986] asn1_ber_decoder+0xc5f/0x1df0 [ 1775.806977][T27986] ? __pfx_asn1_ber_decoder+0x10/0x10 [ 1775.807065][T27986] pkcs7_parse_message+0x288/0x720 [ 1775.807107][T27986] verify_pkcs7_signature+0x30/0xa0 [ 1775.807165][T27986] valid_regdb+0x211/0x590 [ 1775.807201][T27986] ? __pfx___mutex_lock+0x10/0x10 [ 1775.807242][T27986] ? __pfx_valid_regdb+0x10/0x10 [ 1775.807288][T27986] reg_reload_regdb+0x11a/0x460 [ 1775.807330][T27986] ? __pfx_reg_reload_regdb+0x10/0x10 [ 1775.807375][T27986] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 1775.807426][T27986] ? nl80211_pre_doit+0x1b0/0xb10 [ 1775.807483][T27986] genl_family_rcv_msg_doit+0x209/0x2f0 [ 1775.807533][T27986] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1775.807577][T27986] ? rcu_is_watching+0x12/0xc0 [ 1775.807628][T27986] ? bpf_lsm_capable+0x9/0x10 [ 1775.807661][T27986] ? security_capable+0x7e/0x260 [ 1775.807723][T27986] genl_rcv_msg+0x55c/0x800 [ 1775.807775][T27986] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1775.807820][T27986] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 1775.807870][T27986] ? __pfx_nl80211_reload_regdb+0x10/0x10 [ 1775.807907][T27986] ? __pfx_nl80211_post_doit+0x10/0x10 [ 1775.807964][T27986] netlink_rcv_skb+0x158/0x420 [ 1775.808003][T27986] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1775.808055][T27986] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1775.808112][T27986] ? netlink_deliver_tap+0x1ae/0xd30 [ 1775.808155][T27986] genl_rcv+0x28/0x40 [ 1775.808193][T27986] netlink_unicast+0x5a7/0x870 [ 1775.808238][T27986] ? __pfx_netlink_unicast+0x10/0x10 [ 1775.808277][T27986] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 1775.808313][T27986] ? __lock_acquire+0xb97/0x1ce0 [ 1775.808371][T27986] netlink_sendmsg+0x8d1/0xdd0 [ 1775.808417][T27986] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1775.808462][T27986] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 1775.808524][T27986] ____sys_sendmsg+0xa98/0xc70 [ 1775.808573][T27986] ? copy_msghdr_from_user+0x10a/0x160 [ 1775.808609][T27986] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1775.808666][T27986] ? __pfx_futex_wake_mark+0x10/0x10 [ 1775.808727][T27986] ___sys_sendmsg+0x134/0x1d0 [ 1775.808766][T27986] ? __pfx____sys_sendmsg+0x10/0x10 [ 1775.808857][T27986] __sys_sendmsg+0x16d/0x220 [ 1775.808894][T27986] ? __pfx___sys_sendmsg+0x10/0x10 [ 1775.808931][T27986] ? __x64_sys_futex+0x1e0/0x4c0 [ 1775.809002][T27986] do_syscall_64+0xcd/0x490 [ 1775.809054][T27986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1775.809091][T27986] RIP: 0033:0x7f2aca78eb69 [ 1775.809119][T27986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1775.809154][T27986] RSP: 002b:00007f2acb672038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1775.809187][T27986] RAX: ffffffffffffffda RBX: 00007f2aca9b6080 RCX: 00007f2aca78eb69 [ 1775.809211][T27986] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000008 [ 1775.809234][T27986] RBP: 00007f2aca811df1 R08: 0000000000000000 R09: 0000000000000000 [ 1775.809256][T27986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1775.809278][T27986] R13: 0000000000000000 R14: 00007f2aca9b6080 R15: 00007ffd8e0ec9d8 [ 1775.809323][T27986] [ 1781.165345][T28031] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input30 [ 1786.886894][T28089] ovs_: entered promiscuous mode [ 1789.751240][T28114] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4713'. [ 1790.230837][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 1790.237211][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 1791.253889][T28146] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31 [ 1791.929152][T28163] FAULT_INJECTION: forcing a failure. [ 1791.929152][T28163] name failslab, interval 1, probability 0, space 0, times 0 [ 1792.026612][T28163] CPU: 1 UID: 0 PID: 28163 Comm: syz.4.4726 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1792.026664][T28163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1792.026691][T28163] Call Trace: [ 1792.026702][T28163] [ 1792.026716][T28163] dump_stack_lvl+0x16c/0x1f0 [ 1792.026760][T28163] should_fail_ex+0x512/0x640 [ 1792.026802][T28163] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1792.026843][T28163] should_failslab+0xc2/0x120 [ 1792.026889][T28163] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1792.026927][T28163] ? kernfs_fop_open+0x244/0xda0 [ 1792.026969][T28163] kernfs_fop_open+0x244/0xda0 [ 1792.027012][T28163] do_dentry_open+0x982/0x1530 [ 1792.027055][T28163] ? __pfx_kernfs_fop_open+0x10/0x10 [ 1792.027097][T28163] vfs_open+0x82/0x3f0 [ 1792.027154][T28163] path_openat+0x1de4/0x2cb0 [ 1792.027209][T28163] ? __pfx_path_openat+0x10/0x10 [ 1792.027263][T28163] do_filp_open+0x20b/0x470 [ 1792.027306][T28163] ? __pfx_do_filp_open+0x10/0x10 [ 1792.027410][T28163] ? alloc_fd+0x471/0x7d0 [ 1792.027461][T28163] do_sys_openat2+0x11b/0x1d0 [ 1792.027514][T28163] ? __pfx_do_sys_openat2+0x10/0x10 [ 1792.027585][T28163] __x64_sys_openat+0x174/0x210 [ 1792.027646][T28163] ? __pfx___x64_sys_openat+0x10/0x10 [ 1792.027718][T28163] do_syscall_64+0xcd/0x490 [ 1792.027759][T28163] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1792.027794][T28163] RIP: 0033:0x7ff9b2f8eb69 [ 1792.027821][T28163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1792.027856][T28163] RSP: 002b:00007ff9b3d5c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1792.027890][T28163] RAX: ffffffffffffffda RBX: 00007ff9b31b6080 RCX: 00007ff9b2f8eb69 [ 1792.027914][T28163] RDX: 0000000000002002 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 1792.027938][T28163] RBP: 00007ff9b3011df1 R08: 0000000000000000 R09: 0000000000000000 [ 1792.027959][T28163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1792.027979][T28163] R13: 0000000000000000 R14: 00007ff9b31b6080 R15: 00007ffdc6f713c8 [ 1792.028021][T28163] [ 1793.336762][T28176] openvswitch: ovs_: Dropping previously announced user features [ 1796.089675][T28237] netlink: 'syz.4.4742': attribute type 2 has an invalid length. [ 1796.191247][T28207] FAULT_INJECTION: forcing a failure. [ 1796.191247][T28207] name failslab, interval 1, probability 0, space 0, times 0 [ 1796.270257][T28207] CPU: 0 UID: 0 PID: 28207 Comm: syz.0.4739 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1796.270308][T28207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1796.270329][T28207] Call Trace: [ 1796.270340][T28207] [ 1796.270352][T28207] dump_stack_lvl+0x16c/0x1f0 [ 1796.270393][T28207] should_fail_ex+0x512/0x640 [ 1796.270434][T28207] ? fs_reclaim_acquire+0xae/0x150 [ 1796.270488][T28207] should_failslab+0xc2/0x120 [ 1796.270535][T28207] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1796.270581][T28207] ? tomoyo_init_log+0x197/0x2140 [ 1796.270627][T28207] tomoyo_init_log+0x197/0x2140 [ 1796.270667][T28207] ? kasan_save_stack+0x33/0x60 [ 1796.270708][T28207] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1796.270777][T28207] ? __pfx_tomoyo_init_log+0x10/0x10 [ 1796.270818][T28207] ? tomoyo_profile+0x47/0x60 [ 1796.270865][T28207] ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0 [ 1796.270904][T28207] tomoyo_supervisor+0x302/0x13b0 [ 1796.270965][T28207] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 1796.271024][T28207] ? __pfx_vsnprintf+0x10/0x10 [ 1796.271077][T28207] ? tomoyo_encode2+0x329/0x3e0 [ 1796.271124][T28207] ? tomoyo_check_path_number_acl+0xa6/0x2f0 [ 1796.271184][T28207] tomoyo_path_number_perm+0x448/0x580 [ 1796.271226][T28207] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1796.271311][T28207] ? find_held_lock+0x2b/0x80 [ 1796.271347][T28207] ? hook_file_ioctl_common+0x145/0x410 [ 1796.271396][T28207] ? __fget_files+0x20e/0x3c0 [ 1796.271442][T28207] security_file_ioctl+0x9b/0x240 [ 1796.271481][T28207] __x64_sys_ioctl+0xb7/0x210 [ 1796.271540][T28207] do_syscall_64+0xcd/0x490 [ 1796.271579][T28207] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1796.271612][T28207] RIP: 0033:0x7f2aca78eb69 [ 1796.271641][T28207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1796.271676][T28207] RSP: 002b:00007f2acb693038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1796.271709][T28207] RAX: ffffffffffffffda RBX: 00007f2aca9b5fa0 RCX: 00007f2aca78eb69 [ 1796.271734][T28207] RDX: 00002000000011c0 RSI: 0000000000005404 RDI: 000000000000000d [ 1796.271755][T28207] RBP: 00007f2aca811df1 R08: 0000000000000000 R09: 0000000000000000 [ 1796.271775][T28207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1796.271795][T28207] R13: 0000000000000000 R14: 00007f2aca9b5fa0 R15: 00007ffd8e0ec9d8 [ 1796.271837][T28207] [ 1798.743552][T28276] FAULT_INJECTION: forcing a failure. [ 1798.743552][T28276] name failslab, interval 1, probability 0, space 0, times 0 [ 1798.820489][T28276] CPU: 1 UID: 0 PID: 28276 Comm: syz.6.4754 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1798.820541][T28276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1798.820565][T28276] Call Trace: [ 1798.820578][T28276] [ 1798.820593][T28276] dump_stack_lvl+0x16c/0x1f0 [ 1798.820637][T28276] should_fail_ex+0x512/0x640 [ 1798.820679][T28276] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 1798.820730][T28276] should_failslab+0xc2/0x120 [ 1798.820778][T28276] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 1798.820823][T28276] ? sock_alloc_inode+0x25/0x1c0 [ 1798.820874][T28276] ? __pfx_sock_alloc_inode+0x10/0x10 [ 1798.820915][T28276] sock_alloc_inode+0x25/0x1c0 [ 1798.820956][T28276] alloc_inode+0x64/0x240 [ 1798.821008][T28276] sock_alloc+0x40/0x280 [ 1798.821057][T28276] sock_create_lite+0x82/0x120 [ 1798.821103][T28276] __netlink_kernel_create+0xbd/0x750 [ 1798.821140][T28276] ? trace_kmalloc+0x2b/0xd0 [ 1798.821188][T28276] ? __kvmalloc_node_noprof+0x298/0x620 [ 1798.821228][T28276] ? __pfx___netlink_kernel_create+0x10/0x10 [ 1798.821265][T28276] ? fib4_semantics_init+0x25/0x100 [ 1798.821332][T28276] fib_net_init+0x26d/0x3f0 [ 1798.821369][T28276] ? __pfx___register_sysctl_table+0x10/0x10 [ 1798.821424][T28276] ? __pfx_fib_net_init+0x10/0x10 [ 1798.821464][T28276] ? lockdep_init_map_type+0x5c/0x280 [ 1798.821513][T28276] ? __pfx_nl_fib_input+0x10/0x10 [ 1798.821561][T28276] ? devinet_init_net+0x5c2/0x910 [ 1798.821609][T28276] ? __pfx_fib_net_init+0x10/0x10 [ 1798.821647][T28276] ops_init+0x1df/0x5f0 [ 1798.821689][T28276] setup_net+0x10f/0x380 [ 1798.821725][T28276] ? lockdep_init_map_type+0x5c/0x280 [ 1798.821775][T28276] ? __pfx_setup_net+0x10/0x10 [ 1798.821816][T28276] ? debug_mutex_init+0x37/0x70 [ 1798.821856][T28276] copy_net_ns+0x2a6/0x5f0 [ 1798.821904][T28276] create_new_namespaces+0x3ea/0xa90 [ 1798.821956][T28276] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1798.822002][T28276] ksys_unshare+0x45b/0xa40 [ 1798.822060][T28276] ? __pfx_ksys_unshare+0x10/0x10 [ 1798.822112][T28276] ? xfd_validate_state+0x61/0x180 [ 1798.822177][T28276] __x64_sys_unshare+0x31/0x40 [ 1798.822225][T28276] do_syscall_64+0xcd/0x490 [ 1798.822267][T28276] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1798.822302][T28276] RIP: 0033:0x7f252ed8eb69 [ 1798.822331][T28276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1798.822367][T28276] RSP: 002b:00007f252fcc3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1798.822401][T28276] RAX: ffffffffffffffda RBX: 00007f252efb5fa0 RCX: 00007f252ed8eb69 [ 1798.822426][T28276] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1798.822448][T28276] RBP: 00007f252ee11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1798.822470][T28276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1798.822492][T28276] R13: 0000000000000000 R14: 00007f252efb5fa0 R15: 00007ffd213c4868 [ 1798.822537][T28276] [ 1799.441641][T28276] FAULT_INJECTION: forcing a failure. [ 1799.441641][T28276] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1799.488082][T28276] CPU: 0 UID: 0 PID: 28276 Comm: syz.6.4754 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1799.488143][T28276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1799.488165][T28276] Call Trace: [ 1799.488178][T28276] [ 1799.488192][T28276] dump_stack_lvl+0x16c/0x1f0 [ 1799.488234][T28276] should_fail_ex+0x512/0x640 [ 1799.488284][T28276] get_futex_key+0x1d0/0x1560 [ 1799.488334][T28276] ? __pfx_get_futex_key+0x10/0x10 [ 1799.488392][T28276] futex_wake+0xea/0x530 [ 1799.488448][T28276] ? __pfx_futex_wake+0x10/0x10 [ 1799.488500][T28276] ? kasan_quarantine_put+0x10a/0x240 [ 1799.488548][T28276] ? kmem_cache_free+0x2d1/0x4d0 [ 1799.488594][T28276] do_futex+0x1e3/0x350 [ 1799.488640][T28276] ? __pfx_do_futex+0x10/0x10 [ 1799.488695][T28276] __x64_sys_futex+0x1e0/0x4c0 [ 1799.488756][T28276] ? __pfx___x64_sys_futex+0x10/0x10 [ 1799.488803][T28276] ? xfd_validate_state+0x61/0x180 [ 1799.488869][T28276] do_syscall_64+0xcd/0x490 [ 1799.488911][T28276] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1799.488946][T28276] RIP: 0033:0x7f252ed8eb69 [ 1799.488975][T28276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1799.489012][T28276] RSP: 002b:00007f252fcc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1799.489046][T28276] RAX: ffffffffffffffda RBX: 00007f252efb5fa8 RCX: 00007f252ed8eb69 [ 1799.489069][T28276] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f252efb5fac [ 1799.489093][T28276] RBP: 00007f252efb5fa0 R08: 00007f252fcc4000 R09: 0000000000000000 [ 1799.489123][T28276] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f252efb5fac [ 1799.489146][T28276] R13: 0000000000000000 R14: 00007ffd213c4780 R15: 00007ffd213c4868 [ 1799.489190][T28276] [ 1800.084877][T28282] openvswitch: ovs_: Dropping previously announced user features [ 1800.264405][T28280] warn_alloc: 1 callbacks suppressed [ 1800.264431][T28280] syz.6.4754: vmalloc error: size 268435456, failed to allocated page array size 524288, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 1800.405917][T28280] CPU: 0 UID: 0 PID: 28280 Comm: syz.6.4754 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1800.405964][T28280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1800.405983][T28280] Call Trace: [ 1800.405994][T28280] [ 1800.406007][T28280] dump_stack_lvl+0x16c/0x1f0 [ 1800.406047][T28280] warn_alloc+0x248/0x3a0 [ 1800.406089][T28280] ? __pfx_warn_alloc+0x10/0x10 [ 1800.406144][T28280] ? packet_set_ring+0xb07/0x18d0 [ 1800.406191][T28280] ? __vmalloc_node_noprof+0xad/0xf0 [ 1800.406253][T28280] __vmalloc_node_range_noprof+0x101b/0x14b0 [ 1800.406300][T28280] ? packet_set_ring+0xb07/0x18d0 [ 1800.406358][T28280] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 1800.406392][T28280] ? alloc_pages_mpol+0x25a/0x550 [ 1800.406440][T28280] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1800.406490][T28280] ? packet_set_ring+0xb07/0x18d0 [ 1800.406538][T28280] __vmalloc_node_noprof+0xad/0xf0 [ 1800.406593][T28280] ? packet_set_ring+0xb07/0x18d0 [ 1800.406646][T28280] packet_set_ring+0xb07/0x18d0 [ 1800.406714][T28280] packet_setsockopt+0x121b/0x33c0 [ 1800.406775][T28280] ? __pfx___might_resched+0x10/0x10 [ 1800.406811][T28280] ? __lock_acquire+0x62e/0x1ce0 [ 1800.406869][T28280] ? __pfx_packet_setsockopt+0x10/0x10 [ 1800.406925][T28280] ? aa_sk_perm+0x2f4/0xb10 [ 1800.406963][T28280] ? file_init_path+0x4fe/0x760 [ 1800.407015][T28280] ? __pfx_aa_sk_perm+0x10/0x10 [ 1800.407058][T28280] ? find_held_lock+0x2b/0x80 [ 1800.407095][T28280] ? aa_sock_opt_perm+0xfd/0x1c0 [ 1800.407146][T28280] ? __pfx_packet_setsockopt+0x10/0x10 [ 1800.407203][T28280] do_sock_setsockopt+0xf0/0x1d0 [ 1800.407250][T28280] __sys_setsockopt+0x120/0x1a0 [ 1800.407290][T28280] __x64_sys_setsockopt+0xbd/0x160 [ 1800.407321][T28280] ? do_syscall_64+0x91/0x490 [ 1800.407358][T28280] ? lockdep_hardirqs_on+0x7c/0x110 [ 1800.407393][T28280] do_syscall_64+0xcd/0x490 [ 1800.407433][T28280] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1800.407465][T28280] RIP: 0033:0x7f252ed8eb69 [ 1800.407493][T28280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1800.407526][T28280] RSP: 002b:00007f252fc81038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 1800.407555][T28280] RAX: ffffffffffffffda RBX: 00007f252efb6160 RCX: 00007f252ed8eb69 [ 1800.407580][T28280] RDX: 0000000000000005 RSI: 0000000000000107 RDI: 0000000000000008 [ 1800.407600][T28280] RBP: 00007f252ee11df1 R08: 000000000000ce24 R09: 0000000000000000 [ 1800.407621][T28280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1800.407641][T28280] R13: 0000000000000000 R14: 00007f252efb6160 R15: 00007ffd213c4868 [ 1800.407683][T28280] [ 1800.682944][T28280] Mem-Info: [ 1800.686104][T28280] active_anon:16106 inactive_anon:40484 isolated_anon:19 [ 1800.686104][T28280] active_file:22815 inactive_file:44382 isolated_file:0 [ 1800.686104][T28280] unevictable:768 dirty:3844 writeback:1024 [ 1800.686104][T28280] slab_reclaimable:12324 slab_unreclaimable:101442 [ 1800.686104][T28280] mapped:57748 shmem:38844 pagetables:1624 [ 1800.686104][T28280] sec_pagetables:0 bounce:0 [ 1800.686104][T28280] kernel_misc_reclaimable:0 [ 1800.686104][T28280] free:1225710 free_pcp:18633 free_cma:0 [ 1800.732575][T28280] Node 0 active_anon:64424kB inactive_anon:161936kB active_file:90772kB inactive_file:177400kB unevictable:1536kB isolated(anon):76kB isolated(file):0kB mapped:230608kB dirty:15376kB writeback:4096kB shmem:153940kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12940kB pagetables:6360kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1800.765730][T28280] Node 1 active_anon:0kB inactive_anon:0kB active_file:488kB inactive_file:128kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:484kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1800.798309][T28280] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1800.827277][T28280] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 1800.833139][T28280] Node 0 DMA32 free:1017036kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:64380kB inactive_anon:162336kB active_file:89524kB inactive_file:177328kB unevictable:1536kB writepending:19472kB present:3129332kB managed:2539676kB mlocked:0kB bounce:0kB free_pcp:39524kB local_pcp:10792kB free_cma:0kB [ 1800.866305][T28280] lowmem_reserve[]: 0 0 1 1 1 [ 1800.871244][T28280] Node 0 Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:1248kB inactive_file:72kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 1800.902468][T28280] lowmem_reserve[]: 0 0 0 0 0 [ 1800.907277][T28280] Node 1 Normal free:3870428kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:488kB inactive_file:128kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:34452kB local_pcp:14036kB free_cma:0kB [ 1800.940606][T28280] lowmem_reserve[]: 0 0 0 0 0 [ 1800.946070][T28280] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 1800.988087][T28280] Node 0 DMA32: 1*4kB (M) 2*8kB (UM) 0*16kB 3*32kB (ME) 17*64kB (UM) 163*128kB (UME) 232*256kB (UM) 105*512kB (UME) 83*1024kB (UM) 1*2048kB (E) 194*4096kB (UM) = 1016884kB [ 1801.039923][T28280] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 1801.060255][T28288] FAULT_INJECTION: forcing a failure. [ 1801.060255][T28288] name failslab, interval 1, probability 0, space 0, times 0 [ 1801.077570][T28280] Node 1 Normal: 250*4kB (UME) 31*8kB (UME) 45*16kB (UM) 251*32kB (UM) 116*64kB (UME) 56*128kB (UME) 31*256kB (UM) 22*512kB (UME) 19*1024kB (M) 17*2048kB (UME) 921*4096kB (UM) = 3870480kB [ 1801.127568][T28288] CPU: 0 UID: 0 PID: 28288 Comm: syz.4.4757 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1801.127617][T28288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1801.127638][T28288] Call Trace: [ 1801.127650][T28288] [ 1801.127663][T28288] dump_stack_lvl+0x16c/0x1f0 [ 1801.127706][T28288] should_fail_ex+0x512/0x640 [ 1801.127746][T28288] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1801.127786][T28288] should_failslab+0xc2/0x120 [ 1801.127840][T28288] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1801.127876][T28288] ? rcu_is_watching+0x12/0xc0 [ 1801.127911][T28288] ? single_open+0x4d/0x1f0 [ 1801.127962][T28288] ? __pfx_apparmor_file_open+0x10/0x10 [ 1801.128021][T28288] ? __pfx_filesystems_proc_show+0x10/0x10 [ 1801.128065][T28288] single_open+0x4d/0x1f0 [ 1801.128115][T28288] ? __pfx_proc_single_open+0x10/0x10 [ 1801.128165][T28288] proc_reg_open+0x2a8/0x5f0 [ 1801.128214][T28288] do_dentry_open+0x982/0x1530 [ 1801.128257][T28288] ? __pfx_proc_reg_open+0x10/0x10 [ 1801.128311][T28288] vfs_open+0x82/0x3f0 [ 1801.128365][T28288] path_openat+0x1de4/0x2cb0 [ 1801.128420][T28288] ? __pfx_path_openat+0x10/0x10 [ 1801.128472][T28288] do_filp_open+0x20b/0x470 [ 1801.128514][T28288] ? __pfx_do_filp_open+0x10/0x10 [ 1801.128585][T28288] ? alloc_fd+0x471/0x7d0 [ 1801.128632][T28288] do_sys_openat2+0x11b/0x1d0 [ 1801.128684][T28288] ? __pfx_do_sys_openat2+0x10/0x10 [ 1801.128764][T28288] __x64_sys_openat+0x174/0x210 [ 1801.128836][T28288] ? __pfx___x64_sys_openat+0x10/0x10 [ 1801.128918][T28288] do_syscall_64+0xcd/0x490 [ 1801.128965][T28288] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1801.129004][T28288] RIP: 0033:0x7ff9b2f8eb69 [ 1801.129035][T28288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1801.129076][T28288] RSP: 002b:00007ff9b3d7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1801.129114][T28288] RAX: ffffffffffffffda RBX: 00007ff9b31b5fa0 RCX: 00007ff9b2f8eb69 [ 1801.129142][T28288] RDX: 00000000001a1442 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 1801.129167][T28288] RBP: 00007ff9b3011df1 R08: 0000000000000000 R09: 0000000000000000 [ 1801.129193][T28288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1801.129218][T28288] R13: 0000000000000000 R14: 00007ff9b31b5fa0 R15: 00007ffdc6f713c8 [ 1801.129266][T28288] [ 1801.147158][T28280] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1801.147194][T28280] Node 0 hugepages_total=7 hugepages_free=6 hugepages_surp=0 hugepages_size=2048kB [ 1801.147225][T28280] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1801.147254][T28280] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1801.147283][T28280] 107453 total pagecache pages [ 1801.147297][T28280] 466 pages in swap cache [ 1801.147311][T28280] Free swap = 123132kB [ 1801.147325][T28280] Total swap = 124996kB [ 1801.147340][T28280] 2097051 pages RAM [ 1801.147354][T28280] 0 pages HighMem/MovableOnly [ 1801.147367][T28280] 430170 pages reserved [ 1801.147380][T28280] 0 pages cma reserved [ 1803.531789][T28314] CIFS: VFS: Invalid SecurityFlags: [ 1805.395337][T28319] FAULT_INJECTION: forcing a failure. [ 1805.395337][T28319] name failslab, interval 1, probability 0, space 0, times 0 [ 1805.452742][T28319] CPU: 1 UID: 0 PID: 28319 Comm: syz.6.4765 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1805.452789][T28319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1805.452809][T28319] Call Trace: [ 1805.452822][T28319] [ 1805.452836][T28319] dump_stack_lvl+0x16c/0x1f0 [ 1805.452877][T28319] should_fail_ex+0x512/0x640 [ 1805.452919][T28319] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 1805.452972][T28319] should_failslab+0xc2/0x120 [ 1805.453020][T28319] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 1805.453068][T28319] ? rhashtable_init_noprof+0x4ed/0x7e0 [ 1805.453110][T28319] ? rhashtable_init_noprof+0x55e/0x7e0 [ 1805.453152][T28319] ? nf_ct_net_init+0x11c/0x370 [ 1805.453190][T28319] kmemdup_noprof+0x29/0x60 [ 1805.453233][T28319] nf_ct_net_init+0x11c/0x370 [ 1805.453267][T28319] ? __pfx_nf_ct_net_init+0x10/0x10 [ 1805.453300][T28319] ops_init+0x1df/0x5f0 [ 1805.453343][T28319] setup_net+0x10f/0x380 [ 1805.453378][T28319] ? lockdep_init_map_type+0x5c/0x280 [ 1805.453428][T28319] ? __pfx_setup_net+0x10/0x10 [ 1805.453477][T28319] ? debug_mutex_init+0x37/0x70 [ 1805.453517][T28319] copy_net_ns+0x2a6/0x5f0 [ 1805.453565][T28319] create_new_namespaces+0x3ea/0xa90 [ 1805.453617][T28319] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1805.453661][T28319] ksys_unshare+0x45b/0xa40 [ 1805.453710][T28319] ? __pfx_ksys_unshare+0x10/0x10 [ 1805.453762][T28319] ? xfd_validate_state+0x61/0x180 [ 1805.453827][T28319] __x64_sys_unshare+0x31/0x40 [ 1805.453874][T28319] do_syscall_64+0xcd/0x490 [ 1805.453916][T28319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1805.453950][T28319] RIP: 0033:0x7f252ed8eb69 [ 1805.453977][T28319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1805.454011][T28319] RSP: 002b:00007f252fca2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1805.454046][T28319] RAX: ffffffffffffffda RBX: 00007f252efb6080 RCX: 00007f252ed8eb69 [ 1805.454068][T28319] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1805.454089][T28319] RBP: 00007f252ee11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1805.454111][T28319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1805.454131][T28319] R13: 0000000000000000 R14: 00007f252efb6080 R15: 00007ffd213c4868 [ 1805.454176][T28319] [ 1806.527387][T28322] blktrace: Concurrent blktraces are not allowed on loop2 [ 1807.541914][T28332] openvswitch: ovs_: Dropping previously announced user features [ 1808.125850][T28339] FAULT_INJECTION: forcing a failure. [ 1808.125850][T28339] name failslab, interval 1, probability 0, space 0, times 0 [ 1808.152275][T28346] openvswitch: ovs_: Dropping previously announced user features [ 1808.172134][T28339] CPU: 1 UID: 2054 PID: 28339 Comm: syz.6.4771 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1808.172185][T28339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1808.172207][T28339] Call Trace: [ 1808.172219][T28339] [ 1808.172233][T28339] dump_stack_lvl+0x16c/0x1f0 [ 1808.172275][T28339] should_fail_ex+0x512/0x640 [ 1808.172317][T28339] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1808.172366][T28339] should_failslab+0xc2/0x120 [ 1808.172413][T28339] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1808.172456][T28339] ? __pfx___might_resched+0x10/0x10 [ 1808.172491][T28339] ? __anon_vma_prepare+0xae/0x5e0 [ 1808.172535][T28339] __anon_vma_prepare+0xae/0x5e0 [ 1808.172578][T28339] madvise_vma_behavior+0x2164/0x2c50 [ 1808.172635][T28339] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 1808.172672][T28339] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 1808.172728][T28339] ? __pfx_mas_prev+0x10/0x10 [ 1808.172775][T28339] ? find_vma_prev+0xda/0x160 [ 1808.172824][T28339] ? find_held_lock+0x2b/0x80 [ 1808.172858][T28339] ? __pfx_find_vma_prev+0x10/0x10 [ 1808.172908][T28339] ? futex_unqueue+0x133/0x2c0 [ 1808.172974][T28339] ? __futex_wait+0x24c/0x2f0 [ 1808.173034][T28339] madvise_walk_vmas+0x31f/0x9c0 [ 1808.173095][T28339] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 1808.173161][T28339] madvise_do_behavior+0x1e2/0x530 [ 1808.173213][T28339] ? futex_private_hash_put+0x18a/0x300 [ 1808.173258][T28339] ? __pfx_madvise_do_behavior+0x10/0x10 [ 1808.173313][T28339] ? down_read+0x13d/0x480 [ 1808.173375][T28339] do_madvise+0x176/0x240 [ 1808.173426][T28339] ? __pfx_do_madvise+0x10/0x10 [ 1808.173475][T28339] ? do_futex+0x122/0x350 [ 1808.173548][T28339] ? xfd_validate_state+0x61/0x180 [ 1808.173599][T28339] ? __pfx_ksys_write+0x10/0x10 [ 1808.173648][T28339] __x64_sys_madvise+0xa9/0x110 [ 1808.173698][T28339] ? lockdep_hardirqs_on+0x7c/0x110 [ 1808.173733][T28339] do_syscall_64+0xcd/0x490 [ 1808.173774][T28339] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1808.173810][T28339] RIP: 0033:0x7f252ed8eb69 [ 1808.173838][T28339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1808.173874][T28339] RSP: 002b:00007f252fcc3038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 1808.173906][T28339] RAX: ffffffffffffffda RBX: 00007f252efb5fa0 RCX: 00007f252ed8eb69 [ 1808.173930][T28339] RDX: 0000000000000066 RSI: 0000000000000003 RDI: 0000000000000000 [ 1808.173958][T28339] RBP: 00007f252ee11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1808.173980][T28339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1808.174001][T28339] R13: 0000000000000000 R14: 00007f252efb5fa0 R15: 00007ffd213c4868 [ 1808.174047][T28339] [ 1808.472261][T28344] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1808.510045][T28349] FAULT_INJECTION: forcing a failure. [ 1808.510045][T28349] name failslab, interval 1, probability 0, space 0, times 0 [ 1808.526098][T28349] CPU: 0 UID: 0 PID: 28349 Comm: syz.4.4774 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1808.526145][T28349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1808.526167][T28349] Call Trace: [ 1808.526179][T28349] [ 1808.526192][T28349] dump_stack_lvl+0x16c/0x1f0 [ 1808.526233][T28349] should_fail_ex+0x512/0x640 [ 1808.526273][T28349] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1808.526318][T28349] should_failslab+0xc2/0x120 [ 1808.526363][T28349] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1808.526403][T28349] ? fcntl_dirnotify+0x23b/0xb60 [ 1808.526453][T28349] fcntl_dirnotify+0x23b/0xb60 [ 1808.526506][T28349] do_fcntl+0xe62/0x15a0 [ 1808.526553][T28349] ? __pfx_do_fcntl+0x10/0x10 [ 1808.526611][T28349] ? tomoyo_file_fcntl+0x6c/0xc0 [ 1808.526664][T28349] __x64_sys_fcntl+0x163/0x200 [ 1808.526716][T28349] do_syscall_64+0xcd/0x490 [ 1808.526754][T28349] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1808.526788][T28349] RIP: 0033:0x7ff9b2f8eb69 [ 1808.526814][T28349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1808.526847][T28349] RSP: 002b:00007ff9b3d7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 1808.526878][T28349] RAX: ffffffffffffffda RBX: 00007ff9b31b5fa0 RCX: 00007ff9b2f8eb69 [ 1808.526907][T28349] RDX: 0000000000000002 RSI: 0000000000000402 RDI: 0000000000000004 [ 1808.526928][T28349] RBP: 00007ff9b3011df1 R08: 0000000000000000 R09: 0000000000000000 [ 1808.526949][T28349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1808.526969][T28349] R13: 0000000000000000 R14: 00007ff9b31b5fa0 R15: 00007ffdc6f713c8 [ 1808.527011][T28349] [ 1810.931860][T28373] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1812.127772][T28384] FAULT_INJECTION: forcing a failure. [ 1812.127772][T28384] name failslab, interval 1, probability 0, space 0, times 0 [ 1812.140499][T28384] CPU: 1 UID: 0 PID: 28384 Comm: syz.4.4780 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1812.140533][T28384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1812.140548][T28384] Call Trace: [ 1812.140557][T28384] [ 1812.140566][T28384] dump_stack_lvl+0x16c/0x1f0 [ 1812.140595][T28384] should_fail_ex+0x512/0x640 [ 1812.140625][T28384] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1812.140659][T28384] should_failslab+0xc2/0x120 [ 1812.140692][T28384] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1812.140721][T28384] ? __proc_create+0xc3/0x8e0 [ 1812.140757][T28384] ? __proc_create+0x2ce/0x8e0 [ 1812.140797][T28384] __proc_create+0x2ce/0x8e0 [ 1812.140834][T28384] ? __pfx___proc_create+0x10/0x10 [ 1812.140869][T28384] ? proc_register+0x30f/0x5f0 [ 1812.140917][T28384] ? _raw_write_unlock+0x28/0x50 [ 1812.140944][T28384] proc_create_reg+0x7d/0x180 [ 1812.140986][T28384] proc_create_net_data+0x8e/0x1c0 [ 1812.141024][T28384] ? __pfx_proc_create_net_data+0x10/0x10 [ 1812.141063][T28384] ? __pfx___netlink_kernel_create+0x10/0x10 [ 1812.141089][T28384] ? fib4_semantics_init+0x25/0x100 [ 1812.141134][T28384] fib_proc_init+0xf4/0x1b0 [ 1812.141160][T28384] fib_net_init+0x2af/0x3f0 [ 1812.141186][T28384] ? __pfx___register_sysctl_table+0x10/0x10 [ 1812.141225][T28384] ? __pfx_fib_net_init+0x10/0x10 [ 1812.141252][T28384] ? lockdep_init_map_type+0x5c/0x280 [ 1812.141288][T28384] ? __pfx_nl_fib_input+0x10/0x10 [ 1812.141321][T28384] ? devinet_init_net+0x5c2/0x910 [ 1812.141355][T28384] ? __pfx_fib_net_init+0x10/0x10 [ 1812.141382][T28384] ops_init+0x1df/0x5f0 [ 1812.141412][T28384] setup_net+0x10f/0x380 [ 1812.141436][T28384] ? lockdep_init_map_type+0x5c/0x280 [ 1812.141472][T28384] ? __pfx_setup_net+0x10/0x10 [ 1812.141500][T28384] ? debug_mutex_init+0x37/0x70 [ 1812.141528][T28384] copy_net_ns+0x2a6/0x5f0 [ 1812.141561][T28384] create_new_namespaces+0x3ea/0xa90 [ 1812.141597][T28384] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 1812.141629][T28384] ksys_unshare+0x45b/0xa40 [ 1812.141665][T28384] ? __pfx_ksys_unshare+0x10/0x10 [ 1812.141711][T28384] ? xfd_validate_state+0x61/0x180 [ 1812.141755][T28384] __x64_sys_unshare+0x31/0x40 [ 1812.141787][T28384] do_syscall_64+0xcd/0x490 [ 1812.141815][T28384] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1812.141839][T28384] RIP: 0033:0x7ff9b2f8eb69 [ 1812.141859][T28384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1812.141888][T28384] RSP: 002b:00007ff9b3d7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 1812.141910][T28384] RAX: ffffffffffffffda RBX: 00007ff9b31b5fa0 RCX: 00007ff9b2f8eb69 [ 1812.141926][T28384] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 1812.141941][T28384] RBP: 00007ff9b3011df1 R08: 0000000000000000 R09: 0000000000000000 [ 1812.141956][T28384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1812.141970][T28384] R13: 0000000000000000 R14: 00007ff9b31b5fa0 R15: 00007ffdc6f713c8 [ 1812.142000][T28384] [ 1813.670893][T28393] zswap: compressor 000 not available [ 1814.188637][T28401] netlink: 350 bytes leftover after parsing attributes in process `syz.4.4783'. [ 1817.226910][T28443] openvswitch: ovs_: Dropping previously announced user features [ 1817.451609][T28449] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1817.623872][T28455] netlink: 338 bytes leftover after parsing attributes in process `syz.6.4796'. [ 1818.320336][T28461] scsi_strcpy_devinfo: vendor string '/&c~n] | [ 1818.320336][T28461] M' is too long [ 1818.332178][T28461] scsi_strcpy_devinfo: model string 'Dd5 K2b [ 1818.332178][T28461] W ' is too long [ 1820.045425][T10428] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1820.056662][T10428] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1820.067978][T10428] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1820.077474][T10428] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1820.085485][T10428] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1820.650991][T28228] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1820.917617][T28228] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1821.074355][T28478] chnl_net:caif_netlink_parms(): no params data found g&[ 1821.374963][T28491] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1821.383374][T28228] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1821.778454][T28228] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1822.052763][T28478] bridge0: port 1(bridge_slave_0) entered blocking state [ 1822.097281][T28478] bridge0: port 1(bridge_slave_0) entered disabled state [ 1822.108178][T10428] Bluetooth: hci4: command tx timeout [ 1822.139001][T28478] bridge_slave_0: entered allmulticast mode [ 1822.206241][T28478] bridge_slave_0: entered promiscuous mode [ 1822.218829][T28478] bridge0: port 2(bridge_slave_1) entered blocking state [ 1822.247270][T28478] bridge0: port 2(bridge_slave_1) entered disabled state [ 1822.254587][T28478] bridge_slave_1: entered allmulticast mode [ 1822.284910][T28478] bridge_slave_1: entered promiscuous mode [ 1822.374420][T28493] KVM: debugfs: duplicate directory 28493-3 [ 1822.509330][T28490] delete_channel: no stack [ 1822.699853][T28478] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1822.808621][T28478] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1823.170558][T28478] team0: Port device team_slave_0 added [ 1823.245890][T28478] team0: Port device team_slave_1 added [ 1823.400943][T28228] bridge_slave_1: left allmulticast mode [ 1823.406676][T28228] bridge_slave_1: left promiscuous mode [ 1823.458158][T28228] bridge0: port 2(bridge_slave_1) entered disabled state [ 1823.546987][T28228] bridge_slave_0: left allmulticast mode [ 1823.562784][T28228] bridge_slave_0: left promiscuous mode [ 1823.568645][T28228] bridge0: port 1(bridge_slave_0) entered disabled state [ 1824.175986][T10428] Bluetooth: hci4: command tx timeout [ 1825.254138][T28228] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1825.276489][T28228] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1825.291659][T28228] bond0 (unregistering): Released all slaves [ 1825.331246][T28478] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1825.346430][T28478] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1825.416025][T28478] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1825.436683][T28478] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1825.444019][T28478] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1825.475896][T28478] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1825.597670][T28228] HfR: left promiscuous mode [ 1825.688345][T28228] ovs_: left promiscuous mode [ 1826.141713][T28478] hsr_slave_0: entered promiscuous mode [ 1826.177216][T28478] hsr_slave_1: entered promiscuous mode [ 1826.190342][T28478] debugfs: 'hsr0' already exists in 'hsr' [ 1826.196536][T28478] Cannot create hsr debugfs directory [ 1826.244146][T10428] Bluetooth: hci4: command tx timeout [ 1827.895507][T28228] hsr_slave_0: left promiscuous mode [ 1827.914742][T28228] hsr_slave_1: left promiscuous mode [ 1827.984243][T28228] veth1_macvtap: left promiscuous mode [ 1827.989856][T28228] veth0_macvtap: left promiscuous mode [ 1828.017662][T28228] veth1_vlan: left promiscuous mode [ 1828.054064][T28228] veth0_vlan: left promiscuous mode [ 1828.322283][T10428] Bluetooth: hci4: command tx timeout [ 1830.173549][T28228] team0 (unregistering): Port device team_slave_0 removed [ 1831.071329][T28612] FAULT_INJECTION: forcing a failure. [ 1831.071329][T28612] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1831.084287][T28612] CPU: 1 UID: 0 PID: 28612 Comm: syz.5.4821 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1831.084334][T28612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1831.084354][T28612] Call Trace: [ 1831.084368][T28612] [ 1831.084382][T28612] dump_stack_lvl+0x16c/0x1f0 [ 1831.084423][T28612] should_fail_ex+0x512/0x640 [ 1831.084470][T28612] should_fail_futex+0x4c/0x60 [ 1831.084511][T28612] futex_lock_pi_atomic+0x101/0xd50 [ 1831.084568][T28612] futex_lock_pi+0x23f/0x7c0 [ 1831.084623][T28612] ? __pfx_futex_lock_pi+0x10/0x10 [ 1831.084671][T28612] ? __futex_wait+0x24c/0x2f0 [ 1831.084751][T28612] ? futex_private_hash_put+0x18a/0x300 [ 1831.084798][T28612] ? __pfx_futex_wake_mark+0x10/0x10 [ 1831.084859][T28612] ? ksys_write+0x190/0x250 [ 1831.084905][T28612] do_futex+0x11a/0x350 [ 1831.084947][T28612] ? __pfx_do_futex+0x10/0x10 [ 1831.084999][T28612] __x64_sys_futex+0x1e0/0x4c0 [ 1831.085051][T28612] ? fput+0x9b/0xd0 [ 1831.085095][T28612] ? __pfx___x64_sys_futex+0x10/0x10 [ 1831.085138][T28612] ? xfd_validate_state+0x61/0x180 [ 1831.085186][T28612] ? __pfx_ksys_write+0x10/0x10 [ 1831.085235][T28612] do_syscall_64+0xcd/0x490 [ 1831.085275][T28612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1831.085308][T28612] RIP: 0033:0x7f0320b8eb69 [ 1831.085334][T28612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1831.085367][T28612] RSP: 002b:00007f031e9f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1831.085398][T28612] RAX: ffffffffffffffda RBX: 00007f0320db5fa0 RCX: 00007f0320b8eb69 [ 1831.085420][T28612] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1831.085441][T28612] RBP: 00007f0320c11df1 R08: 0000000000000000 R09: 000000008000fff2 [ 1831.085461][T28612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1831.085480][T28612] R13: 0000000000000000 R14: 00007f0320db5fa0 R15: 00007ffce100f3e8 [ 1831.085521][T28612] [ 1832.377979][T28624] FAULT_INJECTION: forcing a failure. [ 1832.377979][T28624] name failslab, interval 1, probability 0, space 0, times 0 [ 1832.400187][T28624] CPU: 1 UID: 0 PID: 28624 Comm: syz.4.4824 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1832.400231][T28624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1832.400250][T28624] Call Trace: [ 1832.400262][T28624] [ 1832.400275][T28624] dump_stack_lvl+0x16c/0x1f0 [ 1832.400313][T28624] should_fail_ex+0x512/0x640 [ 1832.400351][T28624] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 1832.400399][T28624] should_failslab+0xc2/0x120 [ 1832.400443][T28624] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 1832.400487][T28624] ? __trace_eprobe_create+0x101a/0x1be0 [ 1832.400528][T28624] kstrdup+0x53/0x100 [ 1832.400567][T28624] ? __pfx___trace_eprobe_create+0x10/0x10 [ 1832.400600][T28624] __trace_eprobe_create+0x101a/0x1be0 [ 1832.400645][T28624] ? __pfx___trace_eprobe_create+0x10/0x10 [ 1832.400682][T28624] ? rcu_is_watching+0x12/0xc0 [ 1832.400714][T28624] ? trace_kmalloc+0x2b/0xd0 [ 1832.400756][T28624] ? __kmalloc_noprof+0x242/0x510 [ 1832.400795][T28624] ? __pfx___asan_memcpy+0x1/0x10 [ 1832.400837][T28624] ? argv_split+0x36e/0x440 [ 1832.400888][T28624] ? __pfx___trace_eprobe_create+0x10/0x10 [ 1832.400921][T28624] trace_probe_create+0xec/0x100 [ 1832.400963][T28624] ? __pfx_trace_probe_create+0x10/0x10 [ 1832.401015][T28624] create_dyn_event+0xee/0x1c0 [ 1832.401050][T28624] trace_parse_run_command+0x1a6/0x400 [ 1832.401115][T28624] ? __pfx_create_dyn_event+0x10/0x10 [ 1832.401172][T28624] ? __pfx_dyn_event_write+0x10/0x10 [ 1832.401202][T28624] vfs_write+0x2a0/0x1150 [ 1832.401247][T28624] ? __pfx___mutex_lock+0x10/0x10 [ 1832.401283][T28624] ? __pfx_vfs_write+0x10/0x10 [ 1832.401333][T28624] ? __fget_files+0x20e/0x3c0 [ 1832.401382][T28624] ksys_write+0x12a/0x250 [ 1832.401419][T28624] ? __pfx_ksys_write+0x10/0x10 [ 1832.401470][T28624] do_syscall_64+0xcd/0x490 [ 1832.401509][T28624] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1832.401542][T28624] RIP: 0033:0x7ff9b2f8eb69 [ 1832.401567][T28624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1832.401598][T28624] RSP: 002b:00007ff9b3d7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1832.401628][T28624] RAX: ffffffffffffffda RBX: 00007ff9b31b5fa0 RCX: 00007ff9b2f8eb69 [ 1832.401649][T28624] RDX: 0000000000000014 RSI: 0000200000000140 RDI: 0000000000000007 [ 1832.401669][T28624] RBP: 00007ff9b3d7d090 R08: 0000000000000000 R09: 0000000000000000 [ 1832.401688][T28624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1832.401708][T28624] R13: 0000000000000000 R14: 00007ff9b31b5fa0 R15: 00007ffdc6f713c8 [ 1832.401750][T28624] [ 1834.837330][T28478] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1834.889785][T28478] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1835.014285][T28478] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1835.093867][T28478] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1836.375561][T28478] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1836.527097][T28478] 8021q: adding VLAN 0 to HW filter on device team0 [ 1836.584873][T28697] FAULT_INJECTION: forcing a failure. [ 1836.584873][T28697] name failslab, interval 1, probability 0, space 0, times 0 [ 1836.608931][T25792] bridge0: port 1(bridge_slave_0) entered blocking state [ 1836.616082][T25792] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1836.667694][T28697] CPU: 1 UID: 0 PID: 28697 Comm: syz.6.4836 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1836.667743][T28697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1836.667764][T28697] Call Trace: [ 1836.667775][T28697] [ 1836.667788][T28697] dump_stack_lvl+0x16c/0x1f0 [ 1836.667827][T28697] should_fail_ex+0x512/0x640 [ 1836.667866][T28697] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 1836.667909][T28697] should_failslab+0xc2/0x120 [ 1836.667955][T28697] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 1836.667997][T28697] ? __kernfs_new_node+0xd2/0x8e0 [ 1836.668045][T28697] __kernfs_new_node+0xd2/0x8e0 [ 1836.668093][T28697] ? __pfx___kernfs_new_node+0x10/0x10 [ 1836.668156][T28697] ? find_held_lock+0x2b/0x80 [ 1836.668192][T28697] ? kernfs_root+0xee/0x2a0 [ 1836.668243][T28697] kernfs_new_node+0x13c/0x1e0 [ 1836.668299][T28697] __kernfs_create_file+0x53/0x350 [ 1836.668338][T28697] sysfs_add_file_mode_ns+0x207/0x3c0 [ 1836.668390][T28697] sysfs_merge_group+0x1aa/0x340 [ 1836.668433][T28697] ? kernfs_add_one+0x14e/0x840 [ 1836.668500][T28697] ? __pfx_sysfs_merge_group+0x10/0x10 [ 1836.668571][T28697] ? __pfx_dev_add_physical_location+0x10/0x10 [ 1836.668620][T28697] ? bus_to_subsys+0x131/0x160 [ 1836.668680][T28697] dpm_sysfs_add+0x237/0x280 [ 1836.668730][T28697] device_add+0x9a6/0x1aa0 [ 1836.668783][T28697] ? __pfx_device_add+0x10/0x10 [ 1836.668849][T28697] device_create_groups_vargs+0x1f8/0x270 [ 1836.668906][T28697] device_create+0xed/0x130 [ 1836.668957][T28697] ? __pfx_device_create+0x10/0x10 [ 1836.669010][T28697] ? do_init_timer+0xc9/0x110 [ 1836.669052][T28697] ? ieee80211_roc_setup+0x136/0x270 [ 1836.669105][T28697] ? ieee80211_alloc_hw_nm+0x231/0x2260 [ 1836.669150][T28697] mac80211_hwsim_new_radio+0x369/0x54d0 [ 1836.669223][T28697] ? __asan_memset+0x23/0x50 [ 1836.669261][T28697] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 1836.669326][T28697] hwsim_new_radio_nl+0xb51/0x12c0 [ 1836.669381][T28697] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1836.669445][T28697] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 1836.669501][T28697] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1836.669558][T28697] genl_family_rcv_msg_doit+0x209/0x2f0 [ 1836.669607][T28697] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1836.669668][T28697] ? bpf_lsm_capable+0x9/0x10 [ 1836.669700][T28697] ? security_capable+0x7e/0x260 [ 1836.669757][T28697] ? ns_capable+0xd7/0x110 [ 1836.669798][T28697] genl_rcv_msg+0x55c/0x800 [ 1836.669848][T28697] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1836.669907][T28697] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 1836.669970][T28697] netlink_rcv_skb+0x158/0x420 [ 1836.670007][T28697] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1836.670052][T28697] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1836.670105][T28697] ? netlink_deliver_tap+0x1ae/0xd30 [ 1836.670147][T28697] genl_rcv+0x28/0x40 [ 1836.670183][T28697] netlink_unicast+0x5a7/0x870 [ 1836.670227][T28697] ? __pfx_netlink_unicast+0x10/0x10 [ 1836.670263][T28697] ? __pfx___might_resched+0x10/0x10 [ 1836.670297][T28697] ? __lock_acquire+0xb97/0x1ce0 [ 1836.670352][T28697] netlink_sendmsg+0x8d1/0xdd0 [ 1836.670397][T28697] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1836.670439][T28697] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 1836.670507][T28697] ____sys_sendmsg+0xa98/0xc70 [ 1836.670555][T28697] ? copy_msghdr_from_user+0x10a/0x160 [ 1836.670590][T28697] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1836.670645][T28697] ? __pfx_futex_wake_mark+0x10/0x10 [ 1836.670701][T28697] ___sys_sendmsg+0x134/0x1d0 [ 1836.670758][T28697] ? __pfx____sys_sendmsg+0x10/0x10 [ 1836.670880][T28697] __sys_sendmsg+0x16d/0x220 [ 1836.670918][T28697] ? __pfx___sys_sendmsg+0x10/0x10 [ 1836.670953][T28697] ? __x64_sys_futex+0x1e0/0x4c0 [ 1836.671025][T28697] do_syscall_64+0xcd/0x490 [ 1836.671066][T28697] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1836.671099][T28697] RIP: 0033:0x7f252ed8eb69 [ 1836.671126][T28697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1836.671160][T28697] RSP: 002b:00007f252fcc3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1836.671193][T28697] RAX: ffffffffffffffda RBX: 00007f252efb5fa0 RCX: 00007f252ed8eb69 [ 1836.671217][T28697] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000006 [ 1836.671239][T28697] RBP: 00007f252ee11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1836.671261][T28697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1836.671282][T28697] R13: 0000000000000000 R14: 00007f252efb5fa0 R15: 00007ffd213c4868 [ 1836.671327][T28697] [ 1836.676888][T25792] bridge0: port 2(bridge_slave_1) entered blocking state [ 1837.116947][T25792] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1837.135079][T28700] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1838.676022][T28478] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1838.832045][T28478] veth0_vlan: entered promiscuous mode [ 1838.864432][T28478] veth1_vlan: entered promiscuous mode [ 1838.998540][T28478] veth0_macvtap: entered promiscuous mode [ 1839.055566][T28478] veth1_macvtap: entered promiscuous mode [ 1839.201290][T28478] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1839.243113][T28478] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1839.337793][T25792] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1839.389686][T25792] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1839.431068][T25792] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1839.458825][T25792] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1839.768661][T25792] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1839.796430][T25792] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1839.930310][T25792] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1839.996955][T25792] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1841.434947][T28782] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1842.580688][T28799] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4850'. [ 1843.162427][T28809] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 1843.195430][T28809] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 1843.831784][T28832] ubi0: attaching mtd0 [ 1843.839939][T28832] ubi0: scanning is finished [ 1843.858896][T28832] ubi0 error: ubi_read_volume_table: the layout volume was not found [ 1844.267164][T28851] FAULT_INJECTION: forcing a failure. [ 1844.267164][T28851] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1844.304702][T28851] CPU: 0 UID: 0 PID: 28851 Comm: syz.6.4859 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1844.304751][T28851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1844.304772][T28851] Call Trace: [ 1844.304784][T28851] [ 1844.304797][T28851] dump_stack_lvl+0x16c/0x1f0 [ 1844.304838][T28851] should_fail_ex+0x512/0x640 [ 1844.304886][T28851] should_fail_alloc_page+0xe7/0x130 [ 1844.304937][T28851] prepare_alloc_pages+0x3c2/0x610 [ 1844.304990][T28851] ? rcu_is_watching+0x12/0xc0 [ 1844.305030][T28851] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1844.305073][T28851] ? stack_depot_save_flags+0x29/0x9c0 [ 1844.305131][T28851] ? __lock_acquire+0x62e/0x1ce0 [ 1844.305188][T28851] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1844.305249][T28851] ? __lock_acquire+0x62e/0x1ce0 [ 1844.305303][T28851] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1844.305360][T28851] ? policy_nodemask+0xea/0x4e0 [ 1844.305410][T28851] alloc_pages_mpol+0x1fb/0x550 [ 1844.305459][T28851] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1844.305510][T28851] ? __lock_acquire+0x62e/0x1ce0 [ 1844.305561][T28851] folio_alloc_mpol_noprof+0x36/0x2f0 [ 1844.305617][T28851] vma_alloc_folio_noprof+0xed/0x1e0 [ 1844.305671][T28851] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 1844.305735][T28851] do_pte_missing+0x2230/0x3ba0 [ 1844.305772][T28851] ? find_held_lock+0x2b/0x80 [ 1844.305817][T28851] __handle_mm_fault+0x152a/0x2a50 [ 1844.305862][T28851] ? __pfx___handle_mm_fault+0x10/0x10 [ 1844.305903][T28851] ? __pte_offset_map_lock+0x174/0x310 [ 1844.305952][T28851] ? find_held_lock+0x2b/0x80 [ 1844.305999][T28851] ? follow_page_pte.constprop.0+0x5cf/0x1390 [ 1844.306064][T28851] handle_mm_fault+0x589/0xd10 [ 1844.306119][T28851] __get_user_pages+0x551/0x34a0 [ 1844.306190][T28851] ? __pfx___get_user_pages+0x10/0x10 [ 1844.306257][T28851] populate_vma_page_range+0x267/0x3f0 [ 1844.306316][T28851] ? __pfx_populate_vma_page_range+0x10/0x10 [ 1844.306372][T28851] ? __pfx_find_vma_intersection+0x10/0x10 [ 1844.306425][T28851] ? do_mmap+0x69c/0x1210 [ 1844.306480][T28851] __mm_populate+0x1d8/0x380 [ 1844.306535][T28851] ? __pfx___mm_populate+0x10/0x10 [ 1844.306595][T28851] ? up_write+0x1b2/0x520 [ 1844.306651][T28851] vm_mmap_pgoff+0x37f/0x470 [ 1844.306707][T28851] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1844.306766][T28851] ? __x64_sys_futex+0x1e0/0x4c0 [ 1844.306809][T28851] ? __x64_sys_futex+0x1e9/0x4c0 [ 1844.306860][T28851] ksys_mmap_pgoff+0x7d/0x5c0 [ 1844.306908][T28851] ? xfd_validate_state+0x61/0x180 [ 1844.306957][T28851] ? __pfx_ksys_read+0x10/0x10 [ 1844.307002][T28851] __x64_sys_mmap+0x125/0x190 [ 1844.307061][T28851] do_syscall_64+0xcd/0x490 [ 1844.307111][T28851] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1844.307146][T28851] RIP: 0033:0x7f252ed8eb69 [ 1844.307175][T28851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1844.307209][T28851] RSP: 002b:00007f252fca2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1844.307242][T28851] RAX: ffffffffffffffda RBX: 00007f252efb6080 RCX: 00007f252ed8eb69 [ 1844.307266][T28851] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000401000 [ 1844.307288][T28851] RBP: 00007f252ee11df1 R08: 0000000000000002 R09: 0000000000008000 [ 1844.307310][T28851] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 1844.307331][T28851] R13: 0000000000000000 R14: 00007f252efb6080 R15: 00007ffd213c4868 [ 1844.307377][T28851] [ 1844.790997][T28832] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 1846.702938][T28885] FAULT_INJECTION: forcing a failure. [ 1846.702938][T28885] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1846.734443][T28885] CPU: 0 UID: 0 PID: 28885 Comm: syz.6.4865 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1846.734490][T28885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1846.734505][T28885] Call Trace: [ 1846.734513][T28885] [ 1846.734522][T28885] dump_stack_lvl+0x16c/0x1f0 [ 1846.734551][T28885] should_fail_ex+0x512/0x640 [ 1846.734584][T28885] _copy_to_user+0x32/0xd0 [ 1846.734619][T28885] simple_read_from_buffer+0xcb/0x170 [ 1846.734663][T28885] proc_fail_nth_read+0x197/0x240 [ 1846.734690][T28885] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1846.734718][T28885] ? rw_verify_area+0xcf/0x6c0 [ 1846.734740][T28885] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1846.734765][T28885] vfs_read+0x1e1/0xc60 [ 1846.734795][T28885] ? __pfx___mutex_lock+0x10/0x10 [ 1846.734820][T28885] ? __pfx_vfs_read+0x10/0x10 [ 1846.734854][T28885] ? __fget_files+0x20e/0x3c0 [ 1846.734888][T28885] ksys_read+0x12a/0x250 [ 1846.734916][T28885] ? __pfx_ksys_read+0x10/0x10 [ 1846.734951][T28885] do_syscall_64+0xcd/0x490 [ 1846.734979][T28885] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1846.735004][T28885] RIP: 0033:0x7f252ed8d57c [ 1846.735024][T28885] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1846.735048][T28885] RSP: 002b:00007f252fca2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1846.735070][T28885] RAX: ffffffffffffffda RBX: 00007f252efb6080 RCX: 00007f252ed8d57c [ 1846.735086][T28885] RDX: 000000000000000f RSI: 00007f252fca20a0 RDI: 0000000000000003 [ 1846.735100][T28885] RBP: 00007f252fca2090 R08: 0000000000000000 R09: 0000000000000000 [ 1846.735115][T28885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1846.735129][T28885] R13: 0000000000000001 R14: 00007f252efb6080 R15: 00007ffd213c4868 [ 1846.735159][T28885] [ 1851.332568][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 1851.352104][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 1851.886004][T28966] random: crng reseeded on system resumption [ 1853.460225][T10428] Bluetooth: hci5: unexpected event 0x06 length: 124 > 3 [ 1856.011089][T29044] FAULT_INJECTION: forcing a failure. [ 1856.011089][T29044] name failslab, interval 1, probability 0, space 0, times 0 [ 1856.069721][T29044] CPU: 1 UID: 0 PID: 29044 Comm: syz.6.4899 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1856.069768][T29044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1856.069789][T29044] Call Trace: [ 1856.069801][T29044] [ 1856.069814][T29044] dump_stack_lvl+0x16c/0x1f0 [ 1856.069855][T29044] should_fail_ex+0x512/0x640 [ 1856.069896][T29044] ? __kmalloc_noprof+0xbf/0x510 [ 1856.069939][T29044] ? __trace_probe_log_err+0x149/0x400 [ 1856.069977][T29044] should_failslab+0xc2/0x120 [ 1856.070023][T29044] __kmalloc_noprof+0xd2/0x510 [ 1856.070061][T29044] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1856.070116][T29044] __trace_probe_log_err+0x149/0x400 [ 1856.070172][T29044] __trace_eprobe_create+0xdaa/0x1be0 [ 1856.070221][T29044] ? __pfx___trace_eprobe_create+0x10/0x10 [ 1856.070259][T29044] ? rcu_is_watching+0x12/0xc0 [ 1856.070295][T29044] ? trace_kmalloc+0x2b/0xd0 [ 1856.070340][T29044] ? __kmalloc_noprof+0x242/0x510 [ 1856.070379][T29044] ? __pfx___asan_memcpy+0x1/0x10 [ 1856.070420][T29044] ? argv_split+0x36e/0x440 [ 1856.070475][T29044] ? __pfx___trace_eprobe_create+0x10/0x10 [ 1856.070511][T29044] trace_probe_create+0xec/0x100 [ 1856.070555][T29044] ? __pfx_trace_probe_create+0x10/0x10 [ 1856.070611][T29044] create_dyn_event+0xee/0x1c0 [ 1856.070647][T29044] trace_parse_run_command+0x1a6/0x400 [ 1856.070700][T29044] ? __pfx_create_dyn_event+0x10/0x10 [ 1856.070738][T29044] ? __pfx_dyn_event_write+0x10/0x10 [ 1856.070770][T29044] vfs_write+0x2a0/0x1150 [ 1856.070816][T29044] ? __pfx___mutex_lock+0x10/0x10 [ 1856.070852][T29044] ? __pfx_vfs_write+0x10/0x10 [ 1856.070905][T29044] ? __fget_files+0x20e/0x3c0 [ 1856.070954][T29044] ksys_write+0x12a/0x250 [ 1856.070998][T29044] ? __pfx_ksys_write+0x10/0x10 [ 1856.071052][T29044] do_syscall_64+0xcd/0x490 [ 1856.071097][T29044] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1856.071138][T29044] RIP: 0033:0x7f252ed8eb69 [ 1856.071164][T29044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1856.071196][T29044] RSP: 002b:00007f252fca2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1856.071227][T29044] RAX: ffffffffffffffda RBX: 00007f252efb6080 RCX: 00007f252ed8eb69 [ 1856.071249][T29044] RDX: 0000000000000014 RSI: 0000200000000140 RDI: 0000000000000007 [ 1856.071270][T29044] RBP: 00007f252fca2090 R08: 0000000000000000 R09: 0000000000000000 [ 1856.071290][T29044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1856.071311][T29044] R13: 0000000000000000 R14: 00007f252efb6080 R15: 00007ffd213c4868 [ 1856.071354][T29044] [ 1857.125707][T29067] netlink: 194 bytes leftover after parsing attributes in process `syz.4.4904'. [ 1857.706008][T29080] netlink: 334 bytes leftover after parsing attributes in process `syz.6.4911'. [ 1860.691880][T29134] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4923'. [ 1861.083562][T29142] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888078000000 pfn:0x78000 [ 1861.142017][T29142] head: order:4 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 1861.151068][T29142] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 1861.167664][T29142] page_type: f8(unknown) [ 1861.201508][T29142] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 1861.210557][T29142] raw: ffff888078000000 0000000000000000 00000000f8000000 0000000000000000 [ 1861.219653][T29142] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 1861.228831][T29142] head: ffff888078000000 0000000000000000 00000000f8000000 0000000000000000 [ 1861.237647][T29142] head: 00fff00000000004 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 1861.246439][T29142] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000010 [ 1861.255188][T29142] page dumped because: unmovable page [ 1861.264317][T29142] page_owner tracks the page as allocated [ 1861.273463][T29142] page last allocated via order 4, migratetype Unmovable, gfp_mask 0x40820(GFP_ATOMIC|__GFP_COMP), pid 27169, tgid 27169 (syz-executor), ts 1725308801702, free_ts 1687015790370 [ 1861.302884][T29142] post_alloc_hook+0x1c0/0x230 [ 1861.309594][T29142] get_page_from_freelist+0x132b/0x38e0 [ 1861.316308][T29142] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 1861.325303][T29142] alloc_pages_mpol+0x1fb/0x550 [ 1861.330251][T29142] ___kmalloc_large_node+0xed/0x160 [ 1861.337152][T29142] __kmalloc_large_node_noprof+0x1c/0x70 [ 1861.344117][T29142] __kmalloc_noprof.cold+0xc/0x61 [ 1861.349496][T29142] batadv_hash_new+0xb2/0x2e0 [ 1861.366240][T29142] batadv_originator_init+0x57/0x240 [ 1861.372687][T29142] batadv_mesh_init+0x4c3/0x9a0 [ 1861.379677][T29142] batadv_meshif_init_late+0xbd4/0xf30 [ 1861.388651][T29142] register_netdevice+0x650/0x2270 [ 1861.395338][T29142] batadv_meshif_newlink+0x8f/0xc0 [ 1861.402022][T29142] rtnl_newlink+0xc45/0x2000 [ 1861.408795][T29142] rtnetlink_rcv_msg+0x95b/0xe90 [ 1861.417848][T29142] netlink_rcv_skb+0x158/0x420 [ 1861.424657][T29142] page last free pid 24234 tgid 24234 stack trace: [ 1861.432431][T29142] __free_frozen_pages+0x7d5/0x10f0 [ 1861.440203][T29142] kasan_depopulate_vmalloc_pte+0x5f/0x80 [ 1861.449156][T29142] __apply_to_page_range+0xa92/0x1350 [ 1861.455909][T29142] kasan_release_vmalloc+0xd1/0xe0 [ 1861.465030][T29142] purge_vmap_node+0x1c4/0xa30 [ 1861.471852][T29142] __purge_vmap_area_lazy+0xa06/0xc60 [ 1861.480995][T29142] drain_vmap_area_work+0x27/0x40 [ 1861.502961][T29142] process_one_work+0x9cc/0x1b70 [ 1861.509624][T29142] worker_thread+0x6c8/0xf10 [ 1861.515419][T29142] kthread+0x3c5/0x780 [ 1861.519806][T29142] ret_from_fork+0x5d4/0x6f0 [ 1861.528402][T29142] ret_from_fork_asm+0x1a/0x30 [ 1862.847552][T29177] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1862.995310][T29182] FAULT_INJECTION: forcing a failure. [ 1862.995310][T29182] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.083221][T29182] CPU: 1 UID: 0 PID: 29182 Comm: syz.6.4938 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1863.083267][T29182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1863.083286][T29182] Call Trace: [ 1863.083297][T29182] [ 1863.083309][T29182] dump_stack_lvl+0x16c/0x1f0 [ 1863.083347][T29182] should_fail_ex+0x512/0x640 [ 1863.083392][T29182] should_failslab+0xc2/0x120 [ 1863.083436][T29182] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1863.083471][T29182] ? proc_thread_self_get_link+0x1c6/0x240 [ 1863.083520][T29182] proc_thread_self_get_link+0x1c6/0x240 [ 1863.083577][T29182] ? __pfx_proc_thread_self_get_link+0x10/0x10 [ 1863.083618][T29182] step_into+0x195e/0x2270 [ 1863.083659][T29182] ? __pfx_step_into+0x10/0x10 [ 1863.083695][T29182] ? lookup_fast+0x156/0x610 [ 1863.083749][T29182] walk_component+0xfc/0x5b0 [ 1863.083785][T29182] link_path_walk+0x627/0xe20 [ 1863.083833][T29182] path_openat+0x1b0/0x2cb0 [ 1863.083869][T29182] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1863.083916][T29182] ? __pfx_path_openat+0x10/0x10 [ 1863.083965][T29182] do_filp_open+0x20b/0x470 [ 1863.084008][T29182] ? __pfx_do_filp_open+0x10/0x10 [ 1863.084075][T29182] ? alloc_fd+0x471/0x7d0 [ 1863.084121][T29182] do_sys_openat2+0x11b/0x1d0 [ 1863.084178][T29182] ? __pfx_do_sys_openat2+0x10/0x10 [ 1863.084243][T29182] __x64_sys_openat+0x174/0x210 [ 1863.084295][T29182] ? __pfx___x64_sys_openat+0x10/0x10 [ 1863.084365][T29182] do_syscall_64+0xcd/0x490 [ 1863.084405][T29182] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1863.084438][T29182] RIP: 0033:0x7f252ed8d4d0 [ 1863.084464][T29182] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 1863.084496][T29182] RSP: 002b:00007f252fcc2fe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1863.084527][T29182] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f252ed8d4d0 [ 1863.084549][T29182] RDX: 0000000000000002 RSI: 00007f252ee120d6 RDI: 00000000ffffff9c [ 1863.084570][T29182] RBP: 00007f252ee120d6 R08: 0000000000000000 R09: 00007f252fcc4000 [ 1863.084591][T29182] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000000d [ 1863.084611][T29182] R13: 0000000000000000 R14: 00007f252efb5fa0 R15: 00007ffd213c4868 [ 1863.084653][T29182] [ 1863.529198][T29194] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1863.541853][T29194] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1864.291554][ T30] audit: type=1400 audit(4294967688.159:25): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=29202 comm="syz.5.4944" [ 1864.313567][T29204] zswap: compressor not available [ 1864.517024][T29213] __vm_enough_memory: pid: 29213, comm: syz.6.4945, bytes: 4398046511104 not enough memory for the allocation [ 1865.139486][T29218] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4948'. [ 1866.414745][T29243] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1868.611593][T29279] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4963'. [ 1869.148230][T29288] nfsd: Unknown parameter 'Z' [ 1869.760435][ T30] audit: type=1800 audit(4294967693.661:26): pid=29299 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.4970" name="dbroot" dev="configfs" ino=130941 res=0 errno=0 [ 1870.219660][T29297] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 1870.964704][T29300] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1874.062379][T29380] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input32 [ 1875.203110][T29408] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5003'. [ 1878.178222][T29473] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5016'. [ 1878.258857][T29477] nfs4: Unknown parameter '' [ 1878.525011][T29490] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1878.797759][T29449] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1880.084254][T29508] input: jJǸ-9%vJ86 as /devices/virtual/input/input33 [ 1884.679554][T29593] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1884.852356][T29600] FAULT_INJECTION: forcing a failure. [ 1884.852356][T29600] name failslab, interval 1, probability 0, space 0, times 0 [ 1885.035179][T29600] CPU: 1 UID: 0 PID: 29600 Comm: syz.5.5043 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1885.035227][T29600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1885.035247][T29600] Call Trace: [ 1885.035259][T29600] [ 1885.035272][T29600] dump_stack_lvl+0x16c/0x1f0 [ 1885.035323][T29600] should_fail_ex+0x512/0x640 [ 1885.035363][T29600] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1885.035404][T29600] should_failslab+0xc2/0x120 [ 1885.035449][T29600] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1885.035485][T29600] ? tracing_log_err+0x4bc/0x6d0 [ 1885.035538][T29600] tracing_log_err+0x4bc/0x6d0 [ 1885.035581][T29600] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1885.035630][T29600] __trace_probe_log_err+0x31b/0x400 [ 1885.035682][T29600] __trace_eprobe_create+0xdaa/0x1be0 [ 1885.035731][T29600] ? __pfx___trace_eprobe_create+0x10/0x10 [ 1885.035770][T29600] ? rcu_is_watching+0x12/0xc0 [ 1885.035806][T29600] ? trace_kmalloc+0x2b/0xd0 [ 1885.035851][T29600] ? __kmalloc_noprof+0x242/0x510 [ 1885.035892][T29600] ? __pfx___asan_memcpy+0x1/0x10 [ 1885.035935][T29600] ? argv_split+0x36e/0x440 [ 1885.035988][T29600] ? __pfx___trace_eprobe_create+0x10/0x10 [ 1885.036024][T29600] trace_probe_create+0xec/0x100 [ 1885.036068][T29600] ? __pfx_trace_probe_create+0x10/0x10 [ 1885.036125][T29600] create_dyn_event+0xee/0x1c0 [ 1885.036165][T29600] trace_parse_run_command+0x1a6/0x400 [ 1885.036213][T29600] ? __pfx_create_dyn_event+0x10/0x10 [ 1885.036252][T29600] ? __pfx_dyn_event_write+0x10/0x10 [ 1885.036284][T29600] vfs_write+0x2a0/0x1150 [ 1885.036337][T29600] ? __pfx___mutex_lock+0x10/0x10 [ 1885.036375][T29600] ? __pfx_vfs_write+0x10/0x10 [ 1885.036427][T29600] ? __fget_files+0x20e/0x3c0 [ 1885.036477][T29600] ksys_write+0x12a/0x250 [ 1885.036516][T29600] ? __pfx_ksys_write+0x10/0x10 [ 1885.036569][T29600] do_syscall_64+0xcd/0x490 [ 1885.036610][T29600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1885.036644][T29600] RIP: 0033:0x7f0320b8eb69 [ 1885.036671][T29600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1885.036704][T29600] RSP: 002b:00007f031e9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1885.036735][T29600] RAX: ffffffffffffffda RBX: 00007f0320db5fa0 RCX: 00007f0320b8eb69 [ 1885.036757][T29600] RDX: 0000000000000014 RSI: 0000200000000140 RDI: 0000000000000007 [ 1885.036779][T29600] RBP: 00007f031e9f6090 R08: 0000000000000000 R09: 0000000000000000 [ 1885.036800][T29600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1885.036820][T29600] R13: 0000000000000000 R14: 00007f0320db5fa0 R15: 00007ffce100f3e8 [ 1885.036863][T29600] [ 1894.451746][T29772] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1895.002575][T29781] zswap: compressor not available [ 1895.469911][T29793] FAULT_INJECTION: forcing a failure. [ 1895.469911][T29793] name failslab, interval 1, probability 0, space 0, times 0 [ 1895.530787][T29793] CPU: 0 UID: 0 PID: 29793 Comm: syz.4.5091 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1895.530836][T29793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1895.530857][T29793] Call Trace: [ 1895.530869][T29793] [ 1895.530882][T29793] dump_stack_lvl+0x16c/0x1f0 [ 1895.530923][T29793] should_fail_ex+0x512/0x640 [ 1895.530964][T29793] ? fs_reclaim_acquire+0xae/0x150 [ 1895.531018][T29793] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1895.531062][T29793] should_failslab+0xc2/0x120 [ 1895.531108][T29793] __kmalloc_noprof+0xd2/0x510 [ 1895.531169][T29793] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1895.531225][T29793] tomoyo_check_open_permission+0x2ab/0x3c0 [ 1895.531266][T29793] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 1895.531353][T29793] ? find_held_lock+0x2b/0x80 [ 1895.531400][T29793] tomoyo_file_open+0x6b/0x90 [ 1895.531450][T29793] security_file_open+0x84/0x1e0 [ 1895.531493][T29793] do_dentry_open+0x596/0x1530 [ 1895.531548][T29793] vfs_open+0x82/0x3f0 [ 1895.531606][T29793] path_openat+0x1de4/0x2cb0 [ 1895.531662][T29793] ? __pfx_path_openat+0x10/0x10 [ 1895.531714][T29793] do_filp_open+0x20b/0x470 [ 1895.531756][T29793] ? __pfx_do_filp_open+0x10/0x10 [ 1895.531816][T29793] ? __pfx_kfree_link+0x10/0x10 [ 1895.531880][T29793] ? alloc_fd+0x471/0x7d0 [ 1895.531929][T29793] do_sys_openat2+0x11b/0x1d0 [ 1895.531981][T29793] ? __pfx_do_sys_openat2+0x10/0x10 [ 1895.532051][T29793] __x64_sys_openat+0x174/0x210 [ 1895.532106][T29793] ? __pfx___x64_sys_openat+0x10/0x10 [ 1895.532178][T29793] do_syscall_64+0xcd/0x490 [ 1895.532218][T29793] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1895.532253][T29793] RIP: 0033:0x7ff9b2f8d4d0 [ 1895.532279][T29793] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44 [ 1895.532310][T29793] RSP: 002b:00007ff9b3d7cfe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1895.532346][T29793] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007ff9b2f8d4d0 [ 1895.532368][T29793] RDX: 0000000000000002 RSI: 00007ff9b30120d6 RDI: 00000000ffffff9c [ 1895.532389][T29793] RBP: 00007ff9b30120d6 R08: 0000000000000000 R09: 00007ff9b3d7e000 [ 1895.532411][T29793] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000000e [ 1895.532431][T29793] R13: 0000000000000000 R14: 00007ff9b31b5fa0 R15: 00007ffdc6f713c8 [ 1895.532474][T29793] [ 1895.532560][T29793] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1896.041001][T29793] FAULT_INJECTION: forcing a failure. [ 1896.041001][T29793] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1896.205808][T29793] CPU: 0 UID: 0 PID: 29793 Comm: syz.4.5091 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1896.205856][T29793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1896.205877][T29793] Call Trace: [ 1896.205888][T29793] [ 1896.205901][T29793] dump_stack_lvl+0x16c/0x1f0 [ 1896.205941][T29793] should_fail_ex+0x512/0x640 [ 1896.205990][T29793] _copy_to_user+0x32/0xd0 [ 1896.206041][T29793] simple_read_from_buffer+0xcb/0x170 [ 1896.206080][T29793] proc_fail_nth_read+0x197/0x240 [ 1896.206120][T29793] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1896.206161][T29793] ? rw_verify_area+0xcf/0x6c0 [ 1896.206194][T29793] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1896.206231][T29793] vfs_read+0x1e1/0xc60 [ 1896.206276][T29793] ? __pfx___mutex_lock+0x10/0x10 [ 1896.206313][T29793] ? __pfx_vfs_read+0x10/0x10 [ 1896.206373][T29793] ? __fget_files+0x20e/0x3c0 [ 1896.206424][T29793] ksys_read+0x12a/0x250 [ 1896.206462][T29793] ? __pfx_ksys_read+0x10/0x10 [ 1896.206513][T29793] do_syscall_64+0xcd/0x490 [ 1896.206553][T29793] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1896.206587][T29793] RIP: 0033:0x7ff9b2f8d57c [ 1896.206614][T29793] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 1896.206647][T29793] RSP: 002b:00007ff9b3d7d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1896.206678][T29793] RAX: ffffffffffffffda RBX: 00007ff9b31b5fa0 RCX: 00007ff9b2f8d57c [ 1896.206700][T29793] RDX: 000000000000000f RSI: 00007ff9b3d7d0a0 RDI: 0000000000000004 [ 1896.206721][T29793] RBP: 00007ff9b3d7d090 R08: 0000000000000000 R09: 0000000000000000 [ 1896.206742][T29793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1896.206763][T29793] R13: 0000000000000000 R14: 00007ff9b31b5fa0 R15: 00007ffdc6f713c8 [ 1896.206807][T29793] [ 1897.499184][T29821] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1898.644370][T29836] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5100'. [ 1898.693539][T29836] geneve1: entered promiscuous mode [ 1898.712095][T29836] geneve1: entered allmulticast mode [ 1898.878244][T29839] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1899.638482][T29851] binder: 29850:29851 unknown command 4294967282 [ 1899.675653][T29851] binder: 29850:29851 ioctl c0306201 2000000000c0 returned -22 [ 1899.716000][T29853] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1900.842362][T29880] FAULT_INJECTION: forcing a failure. [ 1900.842362][T29880] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1900.855337][T29880] CPU: 1 UID: 0 PID: 29880 Comm: syz.6.5111 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1900.855387][T29880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1900.855408][T29880] Call Trace: [ 1900.855420][T29880] [ 1900.855433][T29880] dump_stack_lvl+0x16c/0x1f0 [ 1900.855475][T29880] should_fail_ex+0x512/0x640 [ 1900.855522][T29880] should_fail_futex+0x4c/0x60 [ 1900.855561][T29880] futex_lock_pi_atomic+0x148/0xd50 [ 1900.855619][T29880] futex_lock_pi+0x23f/0x7c0 [ 1900.855675][T29880] ? __pfx_futex_lock_pi+0x10/0x10 [ 1900.855743][T29880] ? find_held_lock+0x2b/0x80 [ 1900.855788][T29880] ? futex_private_hash_put+0x18a/0x300 [ 1900.855837][T29880] ? __pfx_futex_wake_mark+0x10/0x10 [ 1900.855911][T29880] ? ksys_write+0x190/0x250 [ 1900.855962][T29880] do_futex+0x11a/0x350 [ 1900.856006][T29880] ? __pfx_do_futex+0x10/0x10 [ 1900.856063][T29880] __x64_sys_futex+0x1e0/0x4c0 [ 1900.856111][T29880] ? fput+0x9b/0xd0 [ 1900.856159][T29880] ? __pfx___x64_sys_futex+0x10/0x10 [ 1900.856204][T29880] ? xfd_validate_state+0x61/0x180 [ 1900.856254][T29880] ? __pfx_ksys_write+0x10/0x10 [ 1900.856305][T29880] do_syscall_64+0xcd/0x490 [ 1900.856346][T29880] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1900.856380][T29880] RIP: 0033:0x7f252ed8eb69 [ 1900.856408][T29880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1900.856443][T29880] RSP: 002b:00007f252fcc3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1900.856476][T29880] RAX: ffffffffffffffda RBX: 00007f252efb5fa0 RCX: 00007f252ed8eb69 [ 1900.856500][T29880] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 1900.856521][T29880] RBP: 00007f252ee11df1 R08: 0000000000000000 R09: 000000008000fff2 [ 1900.856543][T29880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1900.856564][T29880] R13: 0000000000000000 R14: 00007f252efb5fa0 R15: 00007ffd213c4868 [ 1900.856609][T29880] [ 1902.650083][T29877] can: request_module (can-proto-5) failed. [ 1903.122092][T29918] nfsd: Unknown parameter 'Z' [ 1903.976080][T29940] FAULT_INJECTION: forcing a failure. [ 1903.976080][T29940] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1904.028972][T29940] CPU: 0 UID: 0 PID: 29940 Comm: syz.4.5124 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1904.029018][T29940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1904.029037][T29940] Call Trace: [ 1904.029048][T29940] [ 1904.029059][T29940] dump_stack_lvl+0x16c/0x1f0 [ 1904.029096][T29940] should_fail_ex+0x512/0x640 [ 1904.029138][T29940] should_fail_alloc_page+0xe7/0x130 [ 1904.029182][T29940] prepare_alloc_pages+0x3c2/0x610 [ 1904.029227][T29940] ? rcu_is_watching+0x12/0xc0 [ 1904.029261][T29940] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1904.029298][T29940] ? stack_depot_save_flags+0x29/0x9c0 [ 1904.029340][T29940] ? __lock_acquire+0x62e/0x1ce0 [ 1904.029388][T29940] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1904.029440][T29940] ? __lock_acquire+0x62e/0x1ce0 [ 1904.029484][T29940] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1904.029532][T29940] ? policy_nodemask+0xea/0x4e0 [ 1904.029576][T29940] alloc_pages_mpol+0x1fb/0x550 [ 1904.029624][T29940] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1904.029675][T29940] ? __lock_acquire+0x62e/0x1ce0 [ 1904.029725][T29940] folio_alloc_mpol_noprof+0x36/0x2f0 [ 1904.029780][T29940] vma_alloc_folio_noprof+0xed/0x1e0 [ 1904.029838][T29940] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 1904.029905][T29940] do_pte_missing+0x2230/0x3ba0 [ 1904.029941][T29940] ? find_held_lock+0x2b/0x80 [ 1904.029986][T29940] __handle_mm_fault+0x152a/0x2a50 [ 1904.030032][T29940] ? __pfx___handle_mm_fault+0x10/0x10 [ 1904.030066][T29940] ? __pte_offset_map_lock+0x174/0x310 [ 1904.030109][T29940] ? find_held_lock+0x2b/0x80 [ 1904.030149][T29940] ? follow_page_pte.constprop.0+0x5cf/0x1390 [ 1904.030206][T29940] handle_mm_fault+0x589/0xd10 [ 1904.030245][T29940] __get_user_pages+0x551/0x34a0 [ 1904.030305][T29940] ? __pfx___get_user_pages+0x10/0x10 [ 1904.030361][T29940] populate_vma_page_range+0x267/0x3f0 [ 1904.030412][T29940] ? __pfx_populate_vma_page_range+0x10/0x10 [ 1904.030460][T29940] ? __pfx_find_vma_intersection+0x10/0x10 [ 1904.030506][T29940] ? do_mmap+0x69c/0x1210 [ 1904.030552][T29940] __mm_populate+0x1d8/0x380 [ 1904.030601][T29940] ? __pfx___mm_populate+0x10/0x10 [ 1904.030653][T29940] ? up_write+0x1b2/0x520 [ 1904.030706][T29940] vm_mmap_pgoff+0x37f/0x470 [ 1904.030760][T29940] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1904.030820][T29940] ? __x64_sys_futex+0x1e0/0x4c0 [ 1904.030871][T29940] ? __x64_sys_futex+0x1e9/0x4c0 [ 1904.030923][T29940] ksys_mmap_pgoff+0x7d/0x5c0 [ 1904.030971][T29940] ? xfd_validate_state+0x61/0x180 [ 1904.031019][T29940] ? __pfx_ksys_read+0x10/0x10 [ 1904.031064][T29940] __x64_sys_mmap+0x125/0x190 [ 1904.031125][T29940] do_syscall_64+0xcd/0x490 [ 1904.031164][T29940] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1904.031200][T29940] RIP: 0033:0x7ff9b2f8eb69 [ 1904.031228][T29940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1904.031264][T29940] RSP: 002b:00007ff9b3d5c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1904.031297][T29940] RAX: ffffffffffffffda RBX: 00007ff9b31b6080 RCX: 00007ff9b2f8eb69 [ 1904.031320][T29940] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000001000000 [ 1904.031342][T29940] RBP: 00007ff9b3011df1 R08: 0000000000000002 R09: 0000000000008000 [ 1904.031364][T29940] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 1904.031386][T29940] R13: 0000000000000000 R14: 00007ff9b31b6080 R15: 00007ffdc6f713c8 [ 1904.031429][T29940] [ 1905.130811][T29949] netlink: 330 bytes leftover after parsing attributes in process `syz.0.5126'. [ 1905.140222][T29949] net veth1_virt_wifi )_: renamed from virt_wifi0 [ 1905.681020][T29962] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26) [ 1906.110697][T29961] ima: policy update failed [ 1906.125371][ T30] audit: type=1802 audit(4294967730.238:27): pid=29961 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.5129" res=0 errno=0 [ 1906.573319][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 1906.580518][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 1906.833819][T29980] can: request_module (can-proto-5) failed. [ 1908.078053][T30011] netlink: 342 bytes leftover after parsing attributes in process `syz.0.5141'. [ 1908.109315][T30011] netlink: 274 bytes leftover after parsing attributes in process `syz.0.5141'. [ 1908.410232][T30028] FAULT_INJECTION: forcing a failure. [ 1908.410232][T30028] name failslab, interval 1, probability 0, space 0, times 0 [ 1908.445631][T30028] CPU: 1 UID: 0 PID: 30028 Comm: syz.0.5146 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1908.445683][T30028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1908.445706][T30028] Call Trace: [ 1908.445718][T30028] [ 1908.445732][T30028] dump_stack_lvl+0x16c/0x1f0 [ 1908.445777][T30028] should_fail_ex+0x512/0x640 [ 1908.445819][T30028] ? __kmalloc_node_noprof+0xc5/0x500 [ 1908.445868][T30028] should_failslab+0xc2/0x120 [ 1908.445914][T30028] __kmalloc_node_noprof+0xd8/0x500 [ 1908.445955][T30028] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1908.446005][T30028] ? alloc_slab_obj_exts+0x41/0xa0 [ 1908.446046][T30028] alloc_slab_obj_exts+0x41/0xa0 [ 1908.446081][T30028] new_slab+0x27d/0x330 [ 1908.446117][T30028] ___slab_alloc+0xcf2/0x1740 [ 1908.446153][T30028] ? alloc_empty_file+0x55/0x1e0 [ 1908.446224][T30028] ? alloc_empty_file+0x55/0x1e0 [ 1908.446288][T30028] ? __slab_alloc.constprop.0+0x56/0xb0 [ 1908.446324][T30028] __slab_alloc.constprop.0+0x56/0xb0 [ 1908.446366][T30028] kmem_cache_alloc_noprof+0xef/0x3b0 [ 1908.446410][T30028] ? alloc_empty_file+0x55/0x1e0 [ 1908.446465][T30028] alloc_empty_file+0x55/0x1e0 [ 1908.446519][T30028] path_openat+0xda/0x2cb0 [ 1908.446557][T30028] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1908.446606][T30028] ? __pfx_path_openat+0x10/0x10 [ 1908.446658][T30028] do_filp_open+0x20b/0x470 [ 1908.446700][T30028] ? __pfx_do_filp_open+0x10/0x10 [ 1908.446771][T30028] ? alloc_fd+0x471/0x7d0 [ 1908.446817][T30028] do_sys_openat2+0x11b/0x1d0 [ 1908.446867][T30028] ? __pfx_do_sys_openat2+0x10/0x10 [ 1908.446935][T30028] __x64_sys_openat+0x174/0x210 [ 1908.446990][T30028] ? __pfx___x64_sys_openat+0x10/0x10 [ 1908.447060][T30028] do_syscall_64+0xcd/0x490 [ 1908.447101][T30028] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1908.447136][T30028] RIP: 0033:0x7f79b0b8eb69 [ 1908.447163][T30028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1908.447198][T30028] RSP: 002b:00007f79b1abc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1908.447231][T30028] RAX: ffffffffffffffda RBX: 00007f79b0db5fa0 RCX: 00007f79b0b8eb69 [ 1908.447265][T30028] RDX: 00000000001c2b02 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1908.447286][T30028] RBP: 00007f79b0c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1908.447308][T30028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1908.447330][T30028] R13: 0000000000000000 R14: 00007f79b0db5fa0 R15: 00007fffb6b0c208 [ 1908.447373][T30028] [ 1911.398340][T30066] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1912.399632][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 1912.406090][ T1305] ieee802154 phy1 wpan1: encryption failed: -22 [ 1912.620089][T30087] random: crng reseeded on system resumption [ 1916.589894][T30158] FAULT_INJECTION: forcing a failure. [ 1916.589894][T30158] name failslab, interval 1, probability 0, space 0, times 0 [ 1916.638065][T30158] CPU: 1 UID: 0 PID: 30158 Comm: syz.4.5177 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1916.638111][T30158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1916.638133][T30158] Call Trace: [ 1916.638143][T30158] [ 1916.638157][T30158] dump_stack_lvl+0x16c/0x1f0 [ 1916.638196][T30158] should_fail_ex+0x512/0x640 [ 1916.638236][T30158] ? fs_reclaim_acquire+0xae/0x150 [ 1916.638290][T30158] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 1916.638332][T30158] should_failslab+0xc2/0x120 [ 1916.638378][T30158] __kmalloc_noprof+0xd2/0x510 [ 1916.638428][T30158] tomoyo_realpath_from_path+0xc2/0x6e0 [ 1916.638476][T30158] ? tomoyo_profile+0x47/0x60 [ 1916.638540][T30158] tomoyo_path_number_perm+0x245/0x580 [ 1916.638574][T30158] ? tomoyo_path_number_perm+0x237/0x580 [ 1916.638613][T30158] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 1916.638652][T30158] ? find_held_lock+0x2b/0x80 [ 1916.638726][T30158] ? find_held_lock+0x2b/0x80 [ 1916.638757][T30158] ? hook_file_ioctl_common+0x145/0x410 [ 1916.638802][T30158] ? __fget_files+0x20e/0x3c0 [ 1916.638847][T30158] security_file_ioctl+0x9b/0x240 [ 1916.638886][T30158] __x64_sys_ioctl+0xb7/0x210 [ 1916.638942][T30158] do_syscall_64+0xcd/0x490 [ 1916.638981][T30158] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1916.639015][T30158] RIP: 0033:0x7ff9b2f8eb69 [ 1916.639041][T30158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1916.639073][T30158] RSP: 002b:00007ff9b3d7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1916.639104][T30158] RAX: ffffffffffffffda RBX: 00007ff9b31b5fa0 RCX: 00007ff9b2f8eb69 [ 1916.639126][T30158] RDX: 0000000000000074 RSI: 000000000000541b RDI: 0000000000000003 [ 1916.639146][T30158] RBP: 00007ff9b3d7d090 R08: 0000000000000000 R09: 0000000000000000 [ 1916.639166][T30158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1916.639187][T30158] R13: 0000000000000000 R14: 00007ff9b31b5fa0 R15: 00007ffdc6f713c8 [ 1916.639231][T30158] [ 1916.937274][T30158] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1918.729053][T30205] FAULT_INJECTION: forcing a failure. [ 1918.729053][T30205] name failslab, interval 1, probability 0, space 0, times 0 [ 1918.751822][T30205] CPU: 0 UID: 0 PID: 30205 Comm: syz.6.5190 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1918.751870][T30205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1918.751890][T30205] Call Trace: [ 1918.751902][T30205] [ 1918.751914][T30205] dump_stack_lvl+0x16c/0x1f0 [ 1918.751955][T30205] should_fail_ex+0x512/0x640 [ 1918.751996][T30205] ? __kmalloc_noprof+0xbf/0x510 [ 1918.752039][T30205] ? tracing_log_err+0x4e4/0x6d0 [ 1918.752082][T30205] should_failslab+0xc2/0x120 [ 1918.752127][T30205] __kmalloc_noprof+0xd2/0x510 [ 1918.752178][T30205] tracing_log_err+0x4e4/0x6d0 [ 1918.752222][T30205] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1918.752271][T30205] __trace_probe_log_err+0x31b/0x400 [ 1918.752322][T30205] __trace_eprobe_create+0xdaa/0x1be0 [ 1918.752372][T30205] ? __pfx___trace_eprobe_create+0x10/0x10 [ 1918.752411][T30205] ? rcu_is_watching+0x12/0xc0 [ 1918.752446][T30205] ? trace_kmalloc+0x2b/0xd0 [ 1918.752493][T30205] ? __kmalloc_noprof+0x242/0x510 [ 1918.752533][T30205] ? __pfx___asan_memcpy+0x1/0x10 [ 1918.752584][T30205] ? argv_split+0x36e/0x440 [ 1918.752638][T30205] ? __pfx___trace_eprobe_create+0x10/0x10 [ 1918.752674][T30205] trace_probe_create+0xec/0x100 [ 1918.752718][T30205] ? __pfx_trace_probe_create+0x10/0x10 [ 1918.752774][T30205] create_dyn_event+0xee/0x1c0 [ 1918.752812][T30205] trace_parse_run_command+0x1a6/0x400 [ 1918.752859][T30205] ? __pfx_create_dyn_event+0x10/0x10 [ 1918.752898][T30205] ? __pfx_dyn_event_write+0x10/0x10 [ 1918.752929][T30205] vfs_write+0x2a0/0x1150 [ 1918.752976][T30205] ? __pfx___mutex_lock+0x10/0x10 [ 1918.753013][T30205] ? __pfx_vfs_write+0x10/0x10 [ 1918.753065][T30205] ? __fget_files+0x20e/0x3c0 [ 1918.753116][T30205] ksys_write+0x12a/0x250 [ 1918.753155][T30205] ? __pfx_ksys_write+0x10/0x10 [ 1918.753209][T30205] do_syscall_64+0xcd/0x490 [ 1918.753250][T30205] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1918.753285][T30205] RIP: 0033:0x7f252ed8eb69 [ 1918.753312][T30205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1918.753345][T30205] RSP: 002b:00007f252fcc3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1918.753376][T30205] RAX: ffffffffffffffda RBX: 00007f252efb5fa0 RCX: 00007f252ed8eb69 [ 1918.753399][T30205] RDX: 0000000000000014 RSI: 0000200000000140 RDI: 0000000000000007 [ 1918.753420][T30205] RBP: 00007f252fcc3090 R08: 0000000000000000 R09: 0000000000000000 [ 1918.753441][T30205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1918.753461][T30205] R13: 0000000000000000 R14: 00007f252efb5fa0 R15: 00007ffd213c4868 [ 1918.753506][T30205] [ 1919.872545][T30228] FAULT_INJECTION: forcing a failure. [ 1919.872545][T30228] name failslab, interval 1, probability 0, space 0, times 0 [ 1919.959933][T30228] CPU: 0 UID: 0 PID: 30228 Comm: syz.0.5195 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1919.959979][T30228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1919.959999][T30228] Call Trace: [ 1919.960010][T30228] [ 1919.960023][T30228] dump_stack_lvl+0x16c/0x1f0 [ 1919.960064][T30228] should_fail_ex+0x512/0x640 [ 1919.960103][T30228] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1919.960142][T30228] should_failslab+0xc2/0x120 [ 1919.960185][T30228] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1919.960227][T30228] ? find_held_lock+0x2b/0x80 [ 1919.960257][T30228] ? alloc_pipe_info+0x10e/0x590 [ 1919.960306][T30228] alloc_pipe_info+0x10e/0x590 [ 1919.960353][T30228] splice_direct_to_actor+0x77d/0xa30 [ 1919.960390][T30228] ? __lock_acquire+0x62e/0x1ce0 [ 1919.960434][T30228] ? __pfx_direct_splice_actor+0x10/0x10 [ 1919.960473][T30228] ? __pfx_aa_file_perm+0x10/0x10 [ 1919.960521][T30228] ? find_held_lock+0x2b/0x80 [ 1919.960554][T30228] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 1919.960586][T30228] ? get_pid_task+0xfc/0x250 [ 1919.960643][T30228] do_splice_direct+0x174/0x240 [ 1919.960677][T30228] ? __pfx_do_splice_direct+0x10/0x10 [ 1919.960713][T30228] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 1919.960752][T30228] ? rw_verify_area+0xcf/0x6c0 [ 1919.960788][T30228] do_sendfile+0xb06/0xe50 [ 1919.960831][T30228] ? __pfx_do_sendfile+0x10/0x10 [ 1919.960867][T30228] ? __fget_files+0x20e/0x3c0 [ 1919.960912][T30228] __x64_sys_sendfile64+0x1d8/0x220 [ 1919.960956][T30228] ? ksys_write+0x1ac/0x250 [ 1919.960992][T30228] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 1919.961051][T30228] do_syscall_64+0xcd/0x490 [ 1919.961090][T30228] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1919.961123][T30228] RIP: 0033:0x7f79b0b8eb69 [ 1919.961149][T30228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1919.961191][T30228] RSP: 002b:00007f79b1abc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1919.961230][T30228] RAX: ffffffffffffffda RBX: 00007f79b0db5fa0 RCX: 00007f79b0b8eb69 [ 1919.961252][T30228] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003 [ 1919.961272][T30228] RBP: 00007f79b1abc090 R08: 0000000000000000 R09: 0000000000000000 [ 1919.961293][T30228] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 1919.961313][T30228] R13: 0000000000000000 R14: 00007f79b0db5fa0 R15: 00007fffb6b0c208 [ 1919.961354][T30228] [ 1920.556584][T30248] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input34 [ 1928.500983][T30363] FAULT_INJECTION: forcing a failure. [ 1928.500983][T30363] name failslab, interval 1, probability 0, space 0, times 0 [ 1928.538042][T30363] CPU: 0 UID: 0 PID: 30363 Comm: syz.5.5228 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1928.538092][T30363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1928.538112][T30363] Call Trace: [ 1928.538121][T30363] [ 1928.538131][T30363] dump_stack_lvl+0x16c/0x1f0 [ 1928.538161][T30363] should_fail_ex+0x512/0x640 [ 1928.538190][T30363] ? kmem_cache_alloc_bulk_noprof+0x6d/0xbc0 [ 1928.538224][T30363] should_failslab+0xc2/0x120 [ 1928.538258][T30363] kmem_cache_alloc_bulk_noprof+0x85/0xbc0 [ 1928.538292][T30363] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1928.538329][T30363] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 1928.538359][T30363] ? mas_alloc_nodes+0x18b/0x8b0 [ 1928.538400][T30363] ? mas_alloc_nodes+0x2f1/0x8b0 [ 1928.538436][T30363] mas_alloc_nodes+0x2f1/0x8b0 [ 1928.538482][T30363] mas_node_count_gfp+0x105/0x130 [ 1928.538522][T30363] mas_preallocate+0x7e0/0xde0 [ 1928.538557][T30363] ? __pfx_mas_preallocate+0x10/0x10 [ 1928.538595][T30363] ? rcu_read_unlock+0x17/0x60 [ 1928.538633][T30363] vma_link+0x135/0x6a0 [ 1928.538664][T30363] ? __pfx_vma_link+0x10/0x10 [ 1928.538698][T30363] ? rcu_is_watching+0x12/0xc0 [ 1928.538729][T30363] ? anon_vma_clone+0x405/0x5c0 [ 1928.538755][T30363] ? anon_vma_name+0x81/0x2f0 [ 1928.538794][T30363] copy_vma+0x6c2/0xaa0 [ 1928.538828][T30363] ? __pfx_copy_vma+0x10/0x10 [ 1928.538855][T30363] ? __lock_acquire+0xb97/0x1ce0 [ 1928.538899][T30363] ? register_lock_class+0x41/0x4c0 [ 1928.538947][T30363] ? rcu_is_watching+0x12/0xc0 [ 1928.538971][T30363] ? finish_task_switch.isra.0+0x221/0xc10 [ 1928.539002][T30363] copy_vma_and_data+0x1cf/0x790 [ 1928.539034][T30363] ? __pfx_copy_vma_and_data+0x10/0x10 [ 1928.539069][T30363] ? __vma_enter_locked+0x163/0x3f0 [ 1928.539096][T30363] ? find_held_lock+0x2b/0x80 [ 1928.539120][T30363] ? move_vma+0x536/0x1780 [ 1928.539154][T30363] move_vma+0x548/0x1780 [ 1928.539186][T30363] ? __pfx_move_vma+0x10/0x10 [ 1928.539211][T30363] ? mm_get_unmapped_area+0x95/0xe0 [ 1928.539248][T30363] ? shmem_get_unmapped_area+0x170/0xa00 [ 1928.539273][T30363] ? cap_mmap_addr+0x4b/0x120 [ 1928.539310][T30363] ? bpf_lsm_mmap_addr+0x9/0x10 [ 1928.539345][T30363] ? security_mmap_addr+0x6c/0x1e0 [ 1928.539374][T30363] ? __get_unmapped_area+0x267/0x440 [ 1928.539413][T30363] ? vrm_set_new_addr+0x208/0x290 [ 1928.539443][T30363] mremap_to+0x1b7/0x450 [ 1928.539473][T30363] do_mremap+0x1004/0x1f80 [ 1928.539514][T30363] ? __pfx_do_mremap+0x10/0x10 [ 1928.539548][T30363] ? up_write+0x1b2/0x520 [ 1928.539590][T30363] __do_sys_mremap+0x119/0x170 [ 1928.539618][T30363] ? __pfx___do_sys_mremap+0x10/0x10 [ 1928.539654][T30363] ? __x64_sys_futex+0x1e0/0x4c0 [ 1928.539708][T30363] do_syscall_64+0xcd/0x490 [ 1928.539737][T30363] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1928.539763][T30363] RIP: 0033:0x7f0320b8eb69 [ 1928.539783][T30363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1928.539808][T30363] RSP: 002b:00007f031e9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 1928.539832][T30363] RAX: ffffffffffffffda RBX: 00007f0320db5fa0 RCX: 00007f0320b8eb69 [ 1928.539849][T30363] RDX: 0000000000000008 RSI: 0000000000000002 RDI: 0000000000000000 [ 1928.539863][T30363] RBP: 00007f0320c11df1 R08: 00007effffffb000 R09: 0000000000000000 [ 1928.539879][T30363] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 1928.539894][T30363] R13: 0000000000000000 R14: 00007f0320db5fa0 R15: 00007ffce100f3e8 [ 1928.539924][T30363] [ 1932.194988][T30411] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1932.994963][T30421] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1937.910795][T30506] netlink: 338 bytes leftover after parsing attributes in process `syz.4.5261'. [ 1939.383187][T30531] FAULT_INJECTION: forcing a failure. [ 1939.383187][T30531] name failslab, interval 1, probability 0, space 0, times 0 [ 1939.399214][T30531] CPU: 0 UID: 5 PID: 30531 Comm: syz.0.5265 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1939.399259][T30531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1939.399280][T30531] Call Trace: [ 1939.399291][T30531] [ 1939.399304][T30531] dump_stack_lvl+0x16c/0x1f0 [ 1939.399344][T30531] should_fail_ex+0x512/0x640 [ 1939.399383][T30531] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 1939.399423][T30531] should_failslab+0xc2/0x120 [ 1939.399467][T30531] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1939.399525][T30531] ? sctp_endpoint_new+0x7c/0xcd0 [ 1939.399563][T30531] sctp_endpoint_new+0x7c/0xcd0 [ 1939.399603][T30531] sctp_init_sock+0xe2d/0x1330 [ 1939.399654][T30531] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 1939.399708][T30531] sctp_v6_init_sock+0x16/0x70 [ 1939.399780][T30531] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 1939.399833][T30531] inet6_create+0xb2d/0x12b0 [ 1939.399881][T30531] ? inet6_create+0x7f/0x12b0 [ 1939.399929][T30531] __sock_create+0x338/0x8d0 [ 1939.399982][T30531] __sys_socket+0x14d/0x260 [ 1939.400028][T30531] ? __pfx___sys_socket+0x10/0x10 [ 1939.400073][T30531] ? xfd_validate_state+0x61/0x180 [ 1939.400121][T30531] ? __pfx_ksys_write+0x10/0x10 [ 1939.400168][T30531] __x64_sys_socket+0x72/0xb0 [ 1939.400212][T30531] ? lockdep_hardirqs_on+0x7c/0x110 [ 1939.400244][T30531] do_syscall_64+0xcd/0x490 [ 1939.400283][T30531] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1939.400316][T30531] RIP: 0033:0x7f79b0b8eb69 [ 1939.400342][T30531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1939.400373][T30531] RSP: 002b:00007f79b1abc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1939.400404][T30531] RAX: ffffffffffffffda RBX: 00007f79b0db5fa0 RCX: 00007f79b0b8eb69 [ 1939.400426][T30531] RDX: 0000000000000084 RSI: 0000000000000001 RDI: 000000000000000a [ 1939.400445][T30531] RBP: 00007f79b0c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1939.400466][T30531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1939.400486][T30531] R13: 0000000000000000 R14: 00007f79b0db5fa0 R15: 00007fffb6b0c208 [ 1939.400528][T30531] [ 1941.848191][T10428] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18 [ 1945.009224][T18261] Bluetooth: hci4: command 0x0406 tx timeout [ 1945.719689][T30588] FAULT_INJECTION: forcing a failure. [ 1945.719689][T30588] name failslab, interval 1, probability 0, space 0, times 0 [ 1945.769679][T30588] CPU: 0 UID: 0 PID: 30588 Comm: syz.6.5279 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1945.769729][T30588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1945.769751][T30588] Call Trace: [ 1945.769763][T30588] [ 1945.769776][T30588] dump_stack_lvl+0x16c/0x1f0 [ 1945.769819][T30588] should_fail_ex+0x512/0x640 [ 1945.769861][T30588] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 1945.769914][T30588] should_failslab+0xc2/0x120 [ 1945.769971][T30588] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 1945.770020][T30588] ? xs_format_common_peer_ports+0x219/0x370 [ 1945.770079][T30588] kstrdup+0x53/0x100 [ 1945.770124][T30588] xs_format_common_peer_ports+0x219/0x370 [ 1945.770177][T30588] ? __pfx_xs_format_common_peer_ports+0x10/0x10 [ 1945.770226][T30588] ? __pfx___debug_object_init+0x10/0x10 [ 1945.770300][T30588] ? lockdep_init_map_type+0x5c/0x280 [ 1945.770351][T30588] ? do_init_timer+0xc9/0x110 [ 1945.770392][T30588] xs_setup_tcp+0x8da/0xad0 [ 1945.770453][T30588] xprt_create_transport+0x169/0x730 [ 1945.770515][T30588] rpc_create+0x38e/0x7f0 [ 1945.770564][T30588] ? __pfx_rpc_create+0x10/0x10 [ 1945.770621][T30588] ? __lock_acquire+0xb97/0x1ce0 [ 1945.770705][T30588] ? __pfx___might_resched+0x10/0x10 [ 1945.770745][T30588] ? rcu_is_watching+0x12/0xc0 [ 1945.770788][T30588] rpcb_create_local_net+0x11a/0x300 [ 1945.770826][T30588] ? __pfx_rpcb_create_local_net+0x10/0x10 [ 1945.770886][T30588] ? rpcb_create_local+0x1da/0x270 [ 1945.770930][T30588] rpcb_create_local+0x22d/0x270 [ 1945.770978][T30588] svc_bind+0x1e8/0x260 [ 1945.771020][T30588] nfsd_create_serv+0x2d2/0x480 [ 1945.771075][T30588] ? __pfx_nfsd_create_serv+0x10/0x10 [ 1945.771131][T30588] ? __nla_validate_parse+0x600/0x2880 [ 1945.771201][T30588] nfsd_nl_listener_set_doit+0xdd/0x1b10 [ 1945.771259][T30588] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 1945.771299][T30588] ? __nla_parse+0x40/0x60 [ 1945.771351][T30588] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 1945.771398][T30588] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 1945.771452][T30588] genl_family_rcv_msg_doit+0x209/0x2f0 [ 1945.771533][T30588] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 1945.771574][T30588] ? rcu_is_watching+0x12/0xc0 [ 1945.771621][T30588] ? bpf_lsm_capable+0x9/0x10 [ 1945.771652][T30588] ? security_capable+0x7e/0x260 [ 1945.771710][T30588] genl_rcv_msg+0x55c/0x800 [ 1945.771757][T30588] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1945.771802][T30588] ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10 [ 1945.771878][T30588] netlink_rcv_skb+0x158/0x420 [ 1945.771917][T30588] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1945.771972][T30588] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1945.772031][T30588] ? netlink_deliver_tap+0x1ae/0xd30 [ 1945.772075][T30588] genl_rcv+0x28/0x40 [ 1945.772114][T30588] netlink_unicast+0x5a7/0x870 [ 1945.772160][T30588] ? __pfx_netlink_unicast+0x10/0x10 [ 1945.772211][T30588] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 1945.772247][T30588] ? __lock_acquire+0xb97/0x1ce0 [ 1945.772322][T30588] netlink_sendmsg+0x8d1/0xdd0 [ 1945.772370][T30588] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1945.772416][T30588] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 1945.772480][T30588] ____sys_sendmsg+0xa98/0xc70 [ 1945.772528][T30588] ? copy_msghdr_from_user+0x10a/0x160 [ 1945.772565][T30588] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1945.772632][T30588] ___sys_sendmsg+0x134/0x1d0 [ 1945.772674][T30588] ? __pfx____sys_sendmsg+0x10/0x10 [ 1945.772766][T30588] __sys_sendmsg+0x16d/0x220 [ 1945.772804][T30588] ? __pfx___sys_sendmsg+0x10/0x10 [ 1945.772839][T30588] ? __x64_sys_futex+0x1e0/0x4c0 [ 1945.772911][T30588] do_syscall_64+0xcd/0x490 [ 1945.772959][T30588] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1945.772995][T30588] RIP: 0033:0x7f252ed8eb69 [ 1945.773021][T30588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1945.773056][T30588] RSP: 002b:00007f252fcc3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1945.773089][T30588] RAX: ffffffffffffffda RBX: 00007f252efb5fa0 RCX: 00007f252ed8eb69 [ 1945.773112][T30588] RDX: 0000000000000000 RSI: 0000200000003140 RDI: 0000000000000004 [ 1945.773133][T30588] RBP: 00007f252ee11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1945.773155][T30588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1945.773175][T30588] R13: 0000000000000000 R14: 00007f252efb5fa0 R15: 00007ffd213c4868 [ 1945.773218][T30588] [ 1947.921654][T30600] FAULT_INJECTION: forcing a failure. [ 1947.921654][T30600] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1947.945029][T30600] CPU: 1 UID: 0 PID: 30600 Comm: syz.5.5280 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1947.945075][T30600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1947.945094][T30600] Call Trace: [ 1947.945105][T30600] [ 1947.945118][T30600] dump_stack_lvl+0x16c/0x1f0 [ 1947.945156][T30600] should_fail_ex+0x512/0x640 [ 1947.945200][T30600] get_futex_key+0x1d0/0x1560 [ 1947.945244][T30600] ? __pfx_get_futex_key+0x10/0x10 [ 1947.945296][T30600] futex_wait_setup+0x9d/0x550 [ 1947.945355][T30600] __futex_wait+0x194/0x2f0 [ 1947.945406][T30600] ? __pfx___futex_wait+0x10/0x10 [ 1947.945460][T30600] ? __pfx_futex_wake_mark+0x10/0x10 [ 1947.945514][T30600] ? futex_private_hash_put+0x176/0x300 [ 1947.945558][T30600] ? futex_private_hash_put+0x18a/0x300 [ 1947.945599][T30600] futex_wait+0xe8/0x380 [ 1947.945646][T30600] ? __pfx_futex_wait+0x10/0x10 [ 1947.945703][T30600] ? __fget_files+0x204/0x3c0 [ 1947.945745][T30600] do_futex+0x229/0x350 [ 1947.945786][T30600] ? __pfx_do_futex+0x10/0x10 [ 1947.945826][T30600] ? fdget+0x187/0x210 [ 1947.945859][T30600] ? __sys_sendmsg+0x18c/0x220 [ 1947.945897][T30600] __x64_sys_futex+0x1e0/0x4c0 [ 1947.945962][T30600] ? __pfx___x64_sys_futex+0x10/0x10 [ 1947.946029][T30600] do_syscall_64+0xcd/0x490 [ 1947.946069][T30600] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1947.946103][T30600] RIP: 0033:0x7f0320b8eb69 [ 1947.946129][T30600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1947.946162][T30600] RSP: 002b:00007f031e9f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1947.946192][T30600] RAX: ffffffffffffffda RBX: 00007f0320db5fa8 RCX: 00007f0320b8eb69 [ 1947.946215][T30600] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0320db5fa8 [ 1947.946236][T30600] RBP: 00007f0320db5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1947.946257][T30600] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0320db5fac [ 1947.946278][T30600] R13: 0000000000000000 R14: 00007ffce100f300 R15: 00007ffce100f3e8 [ 1947.946330][T30600] [ 1948.926812][T30617] nfsd: Unknown parameter 'Z' [ 1949.349512][T30624] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input35 [ 1949.931672][T30626] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input36 [ 1951.103399][T10428] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 1954.092974][T30650] FAULT_INJECTION: forcing a failure. [ 1954.092974][T30650] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1954.125131][T30650] CPU: 1 UID: 0 PID: 30650 Comm: syz.4.5292 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1954.125181][T30650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1954.125203][T30650] Call Trace: [ 1954.125215][T30650] [ 1954.125236][T30650] dump_stack_lvl+0x16c/0x1f0 [ 1954.125279][T30650] should_fail_ex+0x512/0x640 [ 1954.125345][T30650] get_futex_key+0x1d0/0x1560 [ 1954.125394][T30650] ? __pfx_get_futex_key+0x10/0x10 [ 1954.125439][T30650] ? __pfx___schedule+0x10/0x10 [ 1954.125495][T30650] ? find_held_lock+0x2b/0x80 [ 1954.125537][T30650] futex_wait_setup+0x9d/0x550 [ 1954.125604][T30650] __futex_wait+0x194/0x2f0 [ 1954.125659][T30650] ? __pfx___futex_wait+0x10/0x10 [ 1954.125720][T30650] ? __pfx_futex_wake_mark+0x10/0x10 [ 1954.125780][T30650] ? futex_private_hash_put+0x176/0x300 [ 1954.125829][T30650] ? futex_private_hash_put+0x18a/0x300 [ 1954.125876][T30650] futex_wait+0xe8/0x380 [ 1954.125928][T30650] ? __pfx_futex_wait+0x10/0x10 [ 1954.125992][T30650] ? __fget_files+0x204/0x3c0 [ 1954.126041][T30650] do_futex+0x229/0x350 [ 1954.126091][T30650] ? __pfx_do_futex+0x10/0x10 [ 1954.126136][T30650] ? fdget+0x187/0x210 [ 1954.126172][T30650] ? __sys_sendmsg+0x18c/0x220 [ 1954.126214][T30650] __x64_sys_futex+0x1e0/0x4c0 [ 1954.126273][T30650] ? __pfx___x64_sys_futex+0x10/0x10 [ 1954.126338][T30650] do_syscall_64+0xcd/0x490 [ 1954.126380][T30650] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1954.126415][T30650] RIP: 0033:0x7ff9b2f8eb69 [ 1954.126443][T30650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1954.126478][T30650] RSP: 002b:00007ff9b3d7d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1954.126512][T30650] RAX: ffffffffffffffda RBX: 00007ff9b31b5fa8 RCX: 00007ff9b2f8eb69 [ 1954.126536][T30650] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff9b31b5fa8 [ 1954.126559][T30650] RBP: 00007ff9b31b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 1954.126581][T30650] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff9b31b5fac [ 1954.126603][T30650] R13: 0000000000000000 R14: 00007ffdc6f712e0 R15: 00007ffdc6f713c8 [ 1954.126645][T30650] [ 1954.349796][ C1] vkms_vblank_simulate: vblank timer overrun [ 1955.567830][T30671] FAULT_INJECTION: forcing a failure. [ 1955.567830][T30671] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1955.656445][T30671] CPU: 1 UID: 0 PID: 30671 Comm: syz.4.5297 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1955.656505][T30671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1955.656531][T30671] Call Trace: [ 1955.656544][T30671] [ 1955.656558][T30671] dump_stack_lvl+0x16c/0x1f0 [ 1955.656601][T30671] should_fail_ex+0x512/0x640 [ 1955.656655][T30671] should_fail_alloc_page+0xe7/0x130 [ 1955.656710][T30671] prepare_alloc_pages+0x3c2/0x610 [ 1955.656769][T30671] ? rcu_is_watching+0x12/0xc0 [ 1955.656810][T30671] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 1955.656858][T30671] ? stack_depot_save_flags+0x29/0x9c0 [ 1955.656912][T30671] ? __lock_acquire+0x62e/0x1ce0 [ 1955.656971][T30671] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 1955.657035][T30671] ? __lock_acquire+0x62e/0x1ce0 [ 1955.657093][T30671] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1955.657149][T30671] ? policy_nodemask+0xea/0x4e0 [ 1955.657199][T30671] alloc_pages_mpol+0x1fb/0x550 [ 1955.657247][T30671] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 1955.657298][T30671] ? __lock_acquire+0x62e/0x1ce0 [ 1955.657360][T30671] folio_alloc_mpol_noprof+0x36/0x2f0 [ 1955.657422][T30671] vma_alloc_folio_noprof+0xed/0x1e0 [ 1955.657475][T30671] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 1955.657549][T30671] do_pte_missing+0x2230/0x3ba0 [ 1955.657591][T30671] ? find_held_lock+0x2b/0x80 [ 1955.657642][T30671] __handle_mm_fault+0x152a/0x2a50 [ 1955.657697][T30671] ? __pfx___handle_mm_fault+0x10/0x10 [ 1955.657737][T30671] ? __pte_offset_map_lock+0x174/0x310 [ 1955.657792][T30671] ? find_held_lock+0x2b/0x80 [ 1955.657839][T30671] ? follow_page_pte.constprop.0+0x5cf/0x1390 [ 1955.657910][T30671] handle_mm_fault+0x589/0xd10 [ 1955.657956][T30671] __get_user_pages+0x551/0x34a0 [ 1955.658030][T30671] ? __pfx___get_user_pages+0x10/0x10 [ 1955.658115][T30671] populate_vma_page_range+0x267/0x3f0 [ 1955.658174][T30671] ? __pfx_populate_vma_page_range+0x10/0x10 [ 1955.658229][T30671] ? __pfx_find_vma_intersection+0x10/0x10 [ 1955.658286][T30671] ? do_mmap+0x69c/0x1210 [ 1955.658350][T30671] __mm_populate+0x1d8/0x380 [ 1955.658409][T30671] ? __pfx___mm_populate+0x10/0x10 [ 1955.658471][T30671] ? up_write+0x1b2/0x520 [ 1955.658528][T30671] vm_mmap_pgoff+0x37f/0x470 [ 1955.658589][T30671] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 1955.658655][T30671] ? __x64_sys_futex+0x1e0/0x4c0 [ 1955.658703][T30671] ? __x64_sys_futex+0x1e9/0x4c0 [ 1955.658754][T30671] ksys_mmap_pgoff+0x7d/0x5c0 [ 1955.658807][T30671] ? xfd_validate_state+0x61/0x180 [ 1955.658857][T30671] ? __pfx_ksys_read+0x10/0x10 [ 1955.658906][T30671] __x64_sys_mmap+0x125/0x190 [ 1955.658971][T30671] do_syscall_64+0xcd/0x490 [ 1955.659012][T30671] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1955.659052][T30671] RIP: 0033:0x7ff9b2f8eb69 [ 1955.659080][T30671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1955.659118][T30671] RSP: 002b:00007ff9b3d5c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 1955.659159][T30671] RAX: ffffffffffffffda RBX: 00007ff9b31b6080 RCX: 00007ff9b2f8eb69 [ 1955.659182][T30671] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000002000000 [ 1955.659204][T30671] RBP: 00007ff9b3011df1 R08: 0000000000000002 R09: 0000000000008000 [ 1955.659225][T30671] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 1955.659251][T30671] R13: 0000000000000000 R14: 00007ff9b31b6080 R15: 00007ffdc6f713c8 [ 1955.659296][T30671] [ 1958.628955][T30703] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22 [ 1960.819511][T30726] random: crng reseeded on system resumption [ 1960.825912][T30726] FAULT_INJECTION: forcing a failure. [ 1960.825912][T30726] name failslab, interval 1, probability 0, space 0, times 0 [ 1960.926415][T30726] CPU: 1 UID: 0 PID: 30726 Comm: syz.5.5310 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1960.926451][T30726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1960.926467][T30726] Call Trace: [ 1960.926480][T30726] [ 1960.926490][T30726] dump_stack_lvl+0x16c/0x1f0 [ 1960.926520][T30726] should_fail_ex+0x512/0x640 [ 1960.926556][T30726] should_failslab+0xc2/0x120 [ 1960.926592][T30726] __kmalloc_cache_noprof+0x6a/0x3e0 [ 1960.926616][T30726] ? do_raw_spin_lock+0x12c/0x2b0 [ 1960.926655][T30726] ? find_held_lock+0x2b/0x80 [ 1960.926677][T30726] ? async_schedule_node_domain+0x54/0x120 [ 1960.926717][T30726] ? __pfx___async_dev_cache_fw_image+0x10/0x10 [ 1960.926744][T30726] async_schedule_node_domain+0x54/0x120 [ 1960.926777][T30726] dev_cache_fw_image+0x38e/0x490 [ 1960.926804][T30726] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 1960.926833][T30726] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 1960.926858][T30726] dpm_for_each_dev+0x5d/0xb0 [ 1960.926898][T30726] fw_pm_notify+0x81/0x150 [ 1960.926935][T30726] notifier_call_chain+0xbc/0x410 [ 1960.926966][T30726] ? __pfx_fw_pm_notify+0x10/0x10 [ 1960.927011][T30726] blocking_notifier_call_chain_robust+0xc8/0x160 [ 1960.927048][T30726] ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10 [ 1960.927094][T30726] pm_notifier_call_chain_robust+0x27/0x60 [ 1960.927129][T30726] snapshot_open+0x218/0x2b0 [ 1960.927159][T30726] ? __pfx_snapshot_open+0x10/0x10 [ 1960.927190][T30726] misc_open+0x35a/0x420 [ 1960.927230][T30726] ? __pfx_misc_open+0x10/0x10 [ 1960.927268][T30726] chrdev_open+0x234/0x6a0 [ 1960.927300][T30726] ? __pfx_apparmor_file_open+0x10/0x10 [ 1960.927341][T30726] ? __pfx_chrdev_open+0x10/0x10 [ 1960.927374][T30726] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1960.927412][T30726] do_dentry_open+0x982/0x1530 [ 1960.927456][T30726] ? __pfx_chrdev_open+0x10/0x10 [ 1960.927503][T30726] vfs_open+0x82/0x3f0 [ 1960.927547][T30726] path_openat+0x1de4/0x2cb0 [ 1960.927588][T30726] ? __pfx_path_openat+0x10/0x10 [ 1960.927626][T30726] do_filp_open+0x20b/0x470 [ 1960.927656][T30726] ? __pfx_do_filp_open+0x10/0x10 [ 1960.927713][T30726] ? alloc_fd+0x471/0x7d0 [ 1960.927749][T30726] do_sys_openat2+0x11b/0x1d0 [ 1960.927787][T30726] ? __pfx_do_sys_openat2+0x10/0x10 [ 1960.927837][T30726] __x64_sys_openat+0x174/0x210 [ 1960.927876][T30726] ? __pfx___x64_sys_openat+0x10/0x10 [ 1960.927927][T30726] do_syscall_64+0xcd/0x490 [ 1960.927959][T30726] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1960.927985][T30726] RIP: 0033:0x7f0320b8eb69 [ 1960.928005][T30726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1960.928030][T30726] RSP: 002b:00007f031e9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1960.928052][T30726] RAX: ffffffffffffffda RBX: 00007f0320db5fa0 RCX: 00007f0320b8eb69 [ 1960.928069][T30726] RDX: 0000000000001001 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 1960.928085][T30726] RBP: 00007f0320c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1960.928100][T30726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1960.928115][T30726] R13: 0000000000000000 R14: 00007f0320db5fa0 R15: 00007ffce100f3e8 [ 1960.928146][T30726] [ 1961.337817][T30726] [ 1961.340200][T30726] ====================================================== [ 1961.347282][T30726] WARNING: possible circular locking dependency detected [ 1961.354333][T30726] 6.16.0-syzkaller-11699-g7e161a991ea7 #0 Not tainted [ 1961.361281][T30726] ------------------------------------------------------ [ 1961.368397][T30726] syz.5.5310/30726 is trying to acquire lock: [ 1961.374621][T30726] ffff88803143bf48 (&ima_iint_mutex_key[depth]){+.+.}-{4:4}, at: process_measurement+0x7e0/0x23e0 [ 1961.385338][T30726] [ 1961.385338][T30726] but task is already holding lock: [ 1961.392707][T30726] ffffffff8f513588 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2d/0xb0 [ 1961.401714][T30726] [ 1961.401714][T30726] which lock already depends on the new lock. [ 1961.401714][T30726] [ 1961.412300][T30726] [ 1961.412300][T30726] the existing dependency chain (in reverse order) is: [ 1961.421419][T30726] [ 1961.421419][T30726] -> #4 (dpm_list_mtx){+.+.}-{4:4}: [ 1961.428861][T30726] __mutex_lock+0x193/0x10b0 [ 1961.433998][T30726] device_pm_add+0x87/0x3e0 [ 1961.439049][T30726] device_add+0x9cd/0x1aa0 [ 1961.444021][T30726] device_create_groups_vargs+0x1f8/0x270 [ 1961.450303][T30726] device_create+0xed/0x130 [ 1961.455378][T30726] msr_device_create+0x31/0x70 [ 1961.460720][T30726] cpuhp_invoke_callback+0x3d5/0xa10 [ 1961.466758][T30726] cpuhp_thread_fun+0x47e/0x6f0 [ 1961.472183][T30726] smpboot_thread_fn+0x3f4/0xae0 [ 1961.477692][T30726] kthread+0x3c5/0x780 [ 1961.482336][T30726] ret_from_fork+0x5d4/0x6f0 [ 1961.487483][T30726] ret_from_fork_asm+0x1a/0x30 [ 1961.492788][T30726] [ 1961.492788][T30726] -> #3 (cpuhp_state-up){+.+.}-{0:0}: [ 1961.500366][T30726] cpuhp_thread_fun+0x193/0x6f0 [ 1961.505759][T30726] smpboot_thread_fn+0x3f4/0xae0 [ 1961.511258][T30726] kthread+0x3c5/0x780 [ 1961.515899][T30726] ret_from_fork+0x5d4/0x6f0 [ 1961.521058][T30726] ret_from_fork_asm+0x1a/0x30 [ 1961.526386][T30726] [ 1961.526386][T30726] -> #2 (cpu_hotplug_lock){++++}-{0:0}: [ 1961.534151][T30726] cpus_read_lock+0x42/0x160 [ 1961.539329][T30726] ring_buffer_resize+0x105/0x15c0 [ 1961.544990][T30726] tracing_update_buffers+0x15e/0x1f0 [ 1961.550923][T30726] ftrace_event_write+0x14a/0x290 [ 1961.556504][T30726] vfs_write+0x2a0/0x1150 [ 1961.561388][T30726] ksys_write+0x12a/0x250 [ 1961.566263][T30726] do_syscall_64+0xcd/0x490 [ 1961.571307][T30726] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1961.577742][T30726] [ 1961.577742][T30726] -> #1 (trace_types_lock){+.+.}-{4:4}: [ 1961.585501][T30726] __mutex_lock+0x193/0x10b0 [ 1961.590663][T30726] tracing_check_open_get_tr.part.0+0x49/0x190 [ 1961.597362][T30726] tracing_open+0x70/0xdf0 [ 1961.602328][T30726] do_dentry_open+0x982/0x1530 [ 1961.607636][T30726] vfs_open+0x82/0x3f0 [ 1961.612251][T30726] dentry_open+0x71/0xd0 [ 1961.617041][T30726] ima_calc_file_hash+0x2b6/0x490 [ 1961.622607][T30726] ima_collect_measurement+0x899/0xa40 [ 1961.628633][T30726] process_measurement+0x11fa/0x23e0 [ 1961.634463][T30726] ima_file_check+0xc5/0x110 [ 1961.639640][T30726] security_file_post_open+0x8e/0x210 [ 1961.645562][T30726] path_openat+0x1404/0x2cb0 [ 1961.650709][T30726] do_filp_open+0x20b/0x470 [ 1961.655783][T30726] do_sys_openat2+0x11b/0x1d0 [ 1961.661017][T30726] __x64_sys_openat+0x174/0x210 [ 1961.666417][T30726] do_syscall_64+0xcd/0x490 [ 1961.671548][T30726] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1961.677984][T30726] [ 1961.677984][T30726] -> #0 (&ima_iint_mutex_key[depth]){+.+.}-{4:4}: [ 1961.686620][T30726] __lock_acquire+0x12a6/0x1ce0 [ 1961.692012][T30726] lock_acquire+0x179/0x350 [ 1961.697070][T30726] __mutex_lock+0x193/0x10b0 [ 1961.702209][T30726] process_measurement+0x7e0/0x23e0 [ 1961.707958][T30726] ima_file_check+0xc5/0x110 [ 1961.713799][T30726] security_file_post_open+0x8e/0x210 [ 1961.719711][T30726] path_openat+0x1404/0x2cb0 [ 1961.724837][T30726] do_file_open_root+0x322/0x610 [ 1961.730326][T30726] file_open_root+0x2a7/0x450 [ 1961.735543][T30726] kernel_read_file_from_path_initns+0x189/0x260 [ 1961.742511][T30726] _request_firmware+0x744/0x1470 [ 1961.748077][T30726] __async_dev_cache_fw_image+0xb1/0x340 [ 1961.754275][T30726] async_schedule_node_domain+0xd1/0x120 [ 1961.760472][T30726] dev_cache_fw_image+0x38e/0x490 [ 1961.766028][T30726] dpm_for_each_dev+0x5d/0xb0 [ 1961.771251][T30726] fw_pm_notify+0x81/0x150 [ 1961.776223][T30726] notifier_call_chain+0xbc/0x410 [ 1961.781786][T30726] blocking_notifier_call_chain_robust+0xc8/0x160 [ 1961.788756][T30726] pm_notifier_call_chain_robust+0x27/0x60 [ 1961.795110][T30726] snapshot_open+0x218/0x2b0 [ 1961.800261][T30726] misc_open+0x35a/0x420 [ 1961.805059][T30726] chrdev_open+0x234/0x6a0 [ 1961.810028][T30726] do_dentry_open+0x982/0x1530 [ 1961.815416][T30726] vfs_open+0x82/0x3f0 [ 1961.820026][T30726] path_openat+0x1de4/0x2cb0 [ 1961.825151][T30726] do_filp_open+0x20b/0x470 [ 1961.830189][T30726] do_sys_openat2+0x11b/0x1d0 [ 1961.835414][T30726] __x64_sys_openat+0x174/0x210 [ 1961.840933][T30726] do_syscall_64+0xcd/0x490 [ 1961.845969][T30726] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1961.852568][T30726] [ 1961.852568][T30726] other info that might help us debug this: [ 1961.852568][T30726] [ 1961.862806][T30726] Chain exists of: [ 1961.862806][T30726] &ima_iint_mutex_key[depth] --> cpuhp_state-up --> dpm_list_mtx [ 1961.862806][T30726] [ 1961.876470][T30726] Possible unsafe locking scenario: [ 1961.876470][T30726] [ 1961.883922][T30726] CPU0 CPU1 [ 1961.889286][T30726] ---- ---- [ 1961.894650][T30726] lock(dpm_list_mtx); [ 1961.898813][T30726] lock(cpuhp_state-up); [ 1961.905670][T30726] lock(dpm_list_mtx); [ 1961.912353][T30726] lock(&ima_iint_mutex_key[depth]); [ 1961.917732][T30726] [ 1961.917732][T30726] *** DEADLOCK *** [ 1961.917732][T30726] [ 1961.925890][T30726] 5 locks held by syz.5.5310/30726: [ 1961.931095][T30726] #0: ffffffff8f303108 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420 [ 1961.939586][T30726] #1: ffffffff8e484768 (system_transition_mutex){+.+.}-{4:4}, at: lock_system_sleep+0x87/0xa0 [ 1961.950057][T30726] #2: ffffffff8e4c4bd0 ((pm_chain_head).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain_robust+0xa8/0x160 [ 1961.961926][T30726] #3: ffffffff8f518b88 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x69/0x150 [ 1961.970594][T30726] #4: ffffffff8f513588 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2d/0xb0 [ 1961.979945][T30726] [ 1961.979945][T30726] stack backtrace: [ 1961.985922][T30726] CPU: 1 UID: 0 PID: 30726 Comm: syz.5.5310 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 1961.985955][T30726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 1961.985969][T30726] Call Trace: [ 1961.985978][T30726] [ 1961.985987][T30726] dump_stack_lvl+0x116/0x1f0 [ 1961.986014][T30726] print_circular_bug+0x275/0x350 [ 1961.986047][T30726] check_noncircular+0x14c/0x170 [ 1961.986082][T30726] __lock_acquire+0x12a6/0x1ce0 [ 1961.986120][T30726] lock_acquire+0x179/0x350 [ 1961.986151][T30726] ? process_measurement+0x7e0/0x23e0 [ 1961.986191][T30726] ? __pfx___might_resched+0x10/0x10 [ 1961.986218][T30726] ? process_measurement+0x7e0/0x23e0 [ 1961.986255][T30726] __mutex_lock+0x193/0x10b0 [ 1961.986280][T30726] ? process_measurement+0x7e0/0x23e0 [ 1961.986321][T30726] ? __pfx___mutex_lock+0x10/0x10 [ 1961.986346][T30726] ? __pfx___might_resched+0x10/0x10 [ 1961.986371][T30726] ? find_held_lock+0x2b/0x80 [ 1961.986395][T30726] ? down_write+0x14d/0x200 [ 1961.986426][T30726] ? process_measurement+0x7e0/0x23e0 [ 1961.986463][T30726] process_measurement+0x7e0/0x23e0 [ 1961.986505][T30726] ? __pfx_process_measurement+0x10/0x10 [ 1961.986547][T30726] ? find_held_lock+0x2b/0x80 [ 1961.986569][T30726] ? fscrypt_file_open+0x47c/0x590 [ 1961.986618][T30726] ? __pfx___fsnotify_parent+0x10/0x10 [ 1961.986643][T30726] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1961.986674][T30726] ima_file_check+0xc5/0x110 [ 1961.986711][T30726] ? __pfx_ima_file_check+0x10/0x10 [ 1961.986750][T30726] ? vfs_open+0x2e3/0x3f0 [ 1961.986787][T30726] security_file_post_open+0x8e/0x210 [ 1961.986815][T30726] path_openat+0x1404/0x2cb0 [ 1961.986846][T30726] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1961.986884][T30726] ? kmem_cache_alloc_noprof+0x21e/0x3b0 [ 1961.986914][T30726] ? __pfx_path_openat+0x10/0x10 [ 1961.986942][T30726] ? __asan_memcpy+0x3c/0x60 [ 1961.986968][T30726] do_file_open_root+0x322/0x610 [ 1961.986999][T30726] ? __pfx_do_file_open_root+0x10/0x10 [ 1961.987041][T30726] ? vsnprintf+0x318/0x1160 [ 1961.987064][T30726] file_open_root+0x2a7/0x450 [ 1961.987095][T30726] ? __pfx_file_open_root+0x10/0x10 [ 1961.987124][T30726] ? find_held_lock+0x2b/0x80 [ 1961.987148][T30726] ? kernel_read_file_from_path_initns+0x17a/0x260 [ 1961.987189][T30726] kernel_read_file_from_path_initns+0x189/0x260 [ 1961.987228][T30726] ? __pfx_kernel_read_file_from_path_initns+0x10/0x10 [ 1961.987266][T30726] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1961.987304][T30726] ? _request_firmware+0x503/0x1470 [ 1961.987331][T30726] _request_firmware+0x744/0x1470 [ 1961.987369][T30726] ? __pfx__request_firmware+0x10/0x10 [ 1961.987395][T30726] ? dump_stack_lvl+0x1a3/0x1f0 [ 1961.987421][T30726] __async_dev_cache_fw_image+0xb1/0x340 [ 1961.987448][T30726] ? __pfx___async_dev_cache_fw_image+0x10/0x10 [ 1961.987475][T30726] ? mark_held_locks+0x49/0x80 [ 1961.987506][T30726] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1961.987546][T30726] ? __pfx___async_dev_cache_fw_image+0x10/0x10 [ 1961.987573][T30726] async_schedule_node_domain+0xd1/0x120 [ 1961.987608][T30726] dev_cache_fw_image+0x38e/0x490 [ 1961.987632][T30726] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 1961.987656][T30726] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 1961.987679][T30726] dpm_for_each_dev+0x5d/0xb0 [ 1961.987716][T30726] fw_pm_notify+0x81/0x150 [ 1961.987753][T30726] notifier_call_chain+0xbc/0x410 [ 1961.987785][T30726] ? __pfx_fw_pm_notify+0x10/0x10 [ 1961.987825][T30726] blocking_notifier_call_chain_robust+0xc8/0x160 [ 1961.987860][T30726] ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10 [ 1961.987900][T30726] pm_notifier_call_chain_robust+0x27/0x60 [ 1961.987934][T30726] snapshot_open+0x218/0x2b0 [ 1961.987964][T30726] ? __pfx_snapshot_open+0x10/0x10 [ 1961.987994][T30726] misc_open+0x35a/0x420 [ 1961.988032][T30726] ? __pfx_misc_open+0x10/0x10 [ 1961.988069][T30726] chrdev_open+0x234/0x6a0 [ 1961.988100][T30726] ? __pfx_apparmor_file_open+0x10/0x10 [ 1961.988140][T30726] ? __pfx_chrdev_open+0x10/0x10 [ 1961.988172][T30726] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 1961.988202][T30726] do_dentry_open+0x982/0x1530 [ 1961.988231][T30726] ? __pfx_chrdev_open+0x10/0x10 [ 1961.988265][T30726] vfs_open+0x82/0x3f0 [ 1961.988302][T30726] path_openat+0x1de4/0x2cb0 [ 1961.988335][T30726] ? __pfx_path_openat+0x10/0x10 [ 1961.988366][T30726] do_filp_open+0x20b/0x470 [ 1961.988394][T30726] ? __pfx_do_filp_open+0x10/0x10 [ 1961.988433][T30726] ? alloc_fd+0x471/0x7d0 [ 1961.988461][T30726] do_sys_openat2+0x11b/0x1d0 [ 1961.988499][T30726] ? __pfx_do_sys_openat2+0x10/0x10 [ 1961.988542][T30726] __x64_sys_openat+0x174/0x210 [ 1961.988581][T30726] ? __pfx___x64_sys_openat+0x10/0x10 [ 1961.988629][T30726] do_syscall_64+0xcd/0x490 [ 1961.988656][T30726] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1961.988681][T30726] RIP: 0033:0x7f0320b8eb69 [ 1961.988700][T30726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1961.988724][T30726] RSP: 002b:00007f031e9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1961.988747][T30726] RAX: ffffffffffffffda RBX: 00007f0320db5fa0 RCX: 00007f0320b8eb69 [ 1961.988763][T30726] RDX: 0000000000001001 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 1961.988779][T30726] RBP: 00007f0320c11df1 R08: 0000000000000000 R09: 0000000000000000 [ 1961.988795][T30726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1961.988810][T30726] R13: 0000000000000000 R14: 00007f0320db5fa0 R15: 00007ffce100f3e8 [ 1961.988832][T30726]