program: r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/comedi4\x00', 0x181001, 0x0) ioctl$COMEDI_INSNLIST(r0, 0x8010640b, &(0x7f0000000000)={0x0, 0x0}) (async, rerun: 32) r1 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async, rerun: 32) r2 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="d8000000180081054e81f783db4cb9040a1d080006007c09e8fc55a10a0015000600142603600e1208001f00fff00401a80008000800104004080000055c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb71b14d6d930dfe144ecc447c65e206d25b4084121d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad9e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd4e1ffffffffc1c9b6278754ca397c388b0dd6e4edef3d9300fc0d15", 0xd8}], 0x1}, 0x4000000) (async) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x3) (async) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000180)={{0x1, 0x1, 0x18}, '\x00'}) (async) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000013c0)=@newpolicy={0x27c, 0x13, 0x429, 0x0, 0x0, {{@in6=@empty, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa}}, [@algo_auth={0x1c4, 0x5, {{'streebog512-generic\x00'}, 0xbe0, "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"}}]}, 0x27c}}, 0x0) r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246) ioctl$PPPIOCGFLAGS1(r4, 0x40047454, &(0x7f00000019c0)) (async) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00') read$FUSE(r5, &(0x7f00000029c0)={0x2020}, 0x2020) (async) r6 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GET_LEASE(r6, 0xc01064c8, &(0x7f0000000280)={0x1, 0x0, &(0x7f0000000200)=[0x0]}) ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r6, 0xc02064b9, &(0x7f00000002c0)={0x0, 0x0, 0x0, r7}) ioctl$DRM_IOCTL_MODE_GETENCODER(r5, 0xc01464a6, &(0x7f0000000080)={r7}) [ 74.490022][ T4686] Bluetooth: hci0: command tx timeout [ 74.545673][ T5338] ------------[ cut here ]------------ [ 74.548278][ T5338] WARNING: CPU: 0 PID: 5338 at mm/page_alloc.c:4935 __alloc_frozen_pages_noprof+0x2c8/0x370 [ 74.553088][ T5338] Modules linked in: [ 74.554845][ T5338] CPU: 0 UID: 0 PID: 5338 Comm: syz.0.0 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 74.559539][ T5338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 74.564746][ T5338] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370 [ 74.567663][ T5338] Code: 74 10 4c 89 e7 89 54 24 0c e8 34 14 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 99 3b 75 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24 [ 74.575847][ T5338] RSP: 0018:ffffc9000febf960 EFLAGS: 00010246 [ 74.578518][ T5338] RAX: ffffc9000febf900 RBX: 0000000000000019 RCX: 0000000000000000 [ 74.583034][ T5338] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000febf9c8 [ 74.586413][ T5338] RBP: ffffc9000febfa50 R08: ffffc9000febf9c7 R09: 0000000000000000 [ 74.589792][ T5338] R10: ffffc9000febf9a0 R11: fffff52001fd7f39 R12: 0000000000000000 [ 74.593346][ T5338] R13: 1ffff92001fd7f30 R14: 0000000000040dc0 R15: dffffc0000000000 [ 74.597221][ T5338] FS: 00007f181f4886c0(0000) GS:ffff88808d21b000(0000) knlGS:0000000000000000 [ 74.601670][ T5338] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 74.604408][ T5338] CR2: 00005555765f07c8 CR3: 0000000040263000 CR4: 0000000000352ef0 [ 74.607618][ T5338] Call Trace: [ 74.609207][ T5338] [ 74.610591][ T5338] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 74.613717][ T5338] __alloc_pages_noprof+0xa/0x30 [ 74.616103][ T5338] ___kmalloc_large_node+0x85/0x210 [ 74.618320][ T5338] __kmalloc_large_node_noprof+0x18/0x90 [ 74.621125][ T5338] __kmalloc_noprof+0x36f/0x4f0 [ 74.623390][ T5338] ? comedi_unlocked_ioctl+0x9ee/0xf40 [ 74.625910][ T5338] comedi_unlocked_ioctl+0x9ee/0xf40 [ 74.629152][ T5338] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 74.632174][ T5338] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 74.634888][ T5338] ? tomoyo_path_number_perm+0x4e2/0x5a0 [ 74.637571][ T5338] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 74.640160][ T5338] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 74.642999][ T5338] ? __lock_acquire+0xab9/0xd20 [ 74.645158][ T5338] ? __fget_files+0x2a/0x420 [ 74.647438][ T5338] ? __fget_files+0x2a/0x420 [ 74.649925][ T5338] ? __fget_files+0x3a0/0x420 [ 74.652274][ T5338] ? __fget_files+0x2a/0x420 [ 74.654276][ T5338] ? bpf_lsm_file_ioctl+0x9/0x20 [ 74.656448][ T5338] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 74.659132][ T5338] __se_sys_ioctl+0xfc/0x170 [ 74.661474][ T5338] do_syscall_64+0xfa/0x3b0 [ 74.663844][ T5338] ? lockdep_hardirqs_on+0x9c/0x150 [ 74.666472][ T5338] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.669302][ T5338] ? clear_bhb_loop+0x60/0xb0 [ 74.671497][ T5338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.673984][ T5338] RIP: 0033:0x7f181e58e929 [ 74.675932][ T5338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 74.684943][ T5338] RSP: 002b:00007f181f488038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 74.688584][ T5338] RAX: ffffffffffffffda RBX: 00007f181e7b5fa0 RCX: 00007f181e58e929 [ 74.692017][ T5338] RDX: 0000200000000000 RSI: 000000008010640b RDI: 0000000000000003 [ 74.695708][ T5338] RBP: 00007f181e610b39 R08: 0000000000000000 R09: 0000000000000000 [ 74.699753][ T5338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 74.703413][ T5338] R13: 0000000000000000 R14: 00007f181e7b5fa0 R15: 00007ffe50ef4818 [ 74.706805][ T5338] [ 74.708280][ T5338] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 74.711953][ T5338] CPU: 0 UID: 0 PID: 5338 Comm: syz.0.0 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(full) [ 74.717300][ T5338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 74.721889][ T5338] Call Trace: [ 74.723510][ T5338] [ 74.725001][ T5338] dump_stack_lvl+0x99/0x250 [ 74.727292][ T5338] ? __asan_memcpy+0x40/0x70 [ 74.729370][ T5338] ? __pfx_dump_stack_lvl+0x10/0x10 [ 74.731685][ T5338] ? __pfx__printk+0x10/0x10 [ 74.734017][ T5338] panic+0x2db/0x790 [ 74.735742][ T5338] ? __pfx_panic+0x10/0x10 [ 74.737860][ T5338] ? show_trace_log_lvl+0x4fb/0x550 [ 74.740352][ T5338] __warn+0x31b/0x4b0 [ 74.742402][ T5338] ? __alloc_frozen_pages_noprof+0x2c8/0x370 [ 74.745066][ T5338] ? __alloc_frozen_pages_noprof+0x2c8/0x370 [ 74.747734][ T5338] report_bug+0x2be/0x4f0 [ 74.749748][ T5338] ? __alloc_frozen_pages_noprof+0x2c8/0x370 [ 74.752563][ T5338] ? __alloc_frozen_pages_noprof+0x2c8/0x370 [ 74.755735][ T5338] ? __alloc_frozen_pages_noprof+0x2ca/0x370 [ 74.758504][ T5338] handle_bug+0x84/0x160 [ 74.760826][ T5338] exc_invalid_op+0x1a/0x50 [ 74.762948][ T5338] asm_exc_invalid_op+0x1a/0x20 [ 74.765241][ T5338] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370 [ 74.768131][ T5338] Code: 74 10 4c 89 e7 89 54 24 0c e8 34 14 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 99 3b 75 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24 [ 74.777155][ T5338] RSP: 0018:ffffc9000febf960 EFLAGS: 00010246 [ 74.779865][ T5338] RAX: ffffc9000febf900 RBX: 0000000000000019 RCX: 0000000000000000 [ 74.783275][ T5338] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000febf9c8 [ 74.786938][ T5338] RBP: ffffc9000febfa50 R08: ffffc9000febf9c7 R09: 0000000000000000 [ 74.791822][ T5338] R10: ffffc9000febf9a0 R11: fffff52001fd7f39 R12: 0000000000000000 [ 74.795246][ T5338] R13: 1ffff92001fd7f30 R14: 0000000000040dc0 R15: dffffc0000000000 [ 74.798663][ T5338] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 74.801481][ T5338] __alloc_pages_noprof+0xa/0x30 [ 74.803727][ T5338] ___kmalloc_large_node+0x85/0x210 [ 74.806384][ T5338] __kmalloc_large_node_noprof+0x18/0x90 [ 74.809434][ T5338] __kmalloc_noprof+0x36f/0x4f0 [ 74.811660][ T5338] ? comedi_unlocked_ioctl+0x9ee/0xf40 [ 74.814114][ T5338] comedi_unlocked_ioctl+0x9ee/0xf40 [ 74.816513][ T5338] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 74.819224][ T5338] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 74.822110][ T5338] ? tomoyo_path_number_perm+0x4e2/0x5a0 [ 74.824966][ T5338] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 74.827554][ T5338] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 74.830295][ T5338] ? __lock_acquire+0xab9/0xd20 [ 74.832550][ T5338] ? __fget_files+0x2a/0x420 [ 74.834794][ T5338] ? __fget_files+0x2a/0x420 [ 74.837235][ T5338] ? __fget_files+0x3a0/0x420 [ 74.839443][ T5338] ? __fget_files+0x2a/0x420 [ 74.841653][ T5338] ? bpf_lsm_file_ioctl+0x9/0x20 [ 74.843873][ T5338] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 74.846456][ T5338] __se_sys_ioctl+0xfc/0x170 [ 74.848526][ T5338] do_syscall_64+0xfa/0x3b0 [ 74.850777][ T5338] ? lockdep_hardirqs_on+0x9c/0x150 [ 74.853277][ T5338] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.855998][ T5338] ? clear_bhb_loop+0x60/0xb0 [ 74.858016][ T5338] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.860582][ T5338] RIP: 0033:0x7f181e58e929 [ 74.862724][ T5338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 74.872751][ T5338] RSP: 002b:00007f181f488038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 74.876480][ T5338] RAX: ffffffffffffffda RBX: 00007f181e7b5fa0 RCX: 00007f181e58e929 [ 74.880354][ T5338] RDX: 0000200000000000 RSI: 000000008010640b RDI: 0000000000000003 [ 74.884659][ T5338] RBP: 00007f181e610b39 R08: 0000000000000000 R09: 0000000000000000 [ 74.888147][ T5338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 74.891661][ T5338] R13: 0000000000000000 R14: 00007f181e7b5fa0 R15: 00007ffe50ef4818 [ 74.895377][ T5338] [ 74.897366][ T5338] Kernel Offset: disabled [ 74.899731][ T5338] Rebooting in 86400 seconds..