last executing test programs: 9.028150591s ago: executing program 2 (id=634): mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000) socketpair$auto(0x1e, 0x5, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0xa, 0x1, 0x84) uname$auto(0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) r0 = socket(0x2, 0x801, 0x84) getsockopt$auto(r0, 0x84, 0x2, 0x0, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x64, 0x0, 0x1c) 8.354250559s ago: executing program 2 (id=638): r0 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0) ioctl$auto_IMDELTIMER(r0, 0x80044941, 0x0) adjtimex$auto(&(0x7f0000000200)={0x5f95, 0x0, 0x2, 0x2000000a, 0xff7d, 0xbc58, 0x4000005, 0x0, 0x5, 0x8, 0x80000000, {0x7ff, 0xf423f}, 0x2744, 0x200000001, 0xff, 0x7, 0x0, 0x3c8, 0x8, 0x8, 0xffffffffffffffff, 0x1560cc85, 0x9}) sendmmsg$auto(r0, &(0x7f0000000240)={{&(0x7f0000000000)="41a01a3a1b3a80ada9917abde8538919ca952a3a221c47806572c6be036ba070da5d11406271e2e1caaca43be101152129b8fe81c1e6e804a99fbaeabd38243df64f7a1fb8b0d16d860fbed6560b733e5dccd9e6393e5811dee4a771d24c1bc6010ede0f2a3c161c0dbe2bc3ef14efc0707aaadf3368e739", 0xfffffff8, &(0x7f0000000180)={&(0x7f0000000080)="ad21c732274f944ea3775a7800abb012694bd5c65f778d24fc3ce53f42773b999ab3a6d090d02b844bebc5f85119df15f2dbb237f3e4af20d269ef6a3b9b6e4cecf7e3a4e99c80da9deabc575bd317eb97105a1a07ee84e7237c6502e2b562ffc1a1860fbe3f35b785667fd54bdea4ea23cd01925b3b377006b28a20a82a6201a2bc0711fd961e118ae37b042438b423993cf17eeff7c63bfa1326335e8e29", 0x5}, 0x5, &(0x7f00000001c0)="c70a459e5c127f5cf92a6e6f17bb7d1b10c9249f5895e2095f39c3c71244c50bfa6c12abdeeb512e0d5a87acf5191e6aee3ab0598f48611e9b140f5479130cfb94a80e21f0b9afefcb4a44a04fedeea4deb48b54bf57ef0fbc8fdf974dbc82ed5588a549d1ce8376ad34bba537e8e907ff", 0x0, 0x7ff}, 0x78}, 0xfffffffa, 0x2) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) renameat2$auto(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) sendmmsg$auto(r0, &(0x7f0000000440)={{&(0x7f0000000280)="0efcb3efdcf282e7d6fc97b5ed091751a9fddd599a9ba5739dfc07d7a17e6df868a1b6d0689fbf07b74a70fb78d5a99f2fc1aa0130cc8ad90d23cad982ab4af9c58cbf257231b1556fc64cd23ca1a68373e8ac74d7dc73e42f892a46e0681f3a85e87f130573029ba037a94a3de569160e", 0x5, &(0x7f00000003c0)={&(0x7f0000000340)="dc716b1ac7b770d9d47be14c7a019793973c1d90bc16effd82eddfc86bdc64ad3a7f7ef3870d2dfc9735bc0e300aa184a514cc506796", 0x9}, 0xb, &(0x7f0000000400)="79433ea18dbffb92", 0x7, 0x3469}, 0x80}, 0xffff4535, 0x401) mlock$auto(0xfbe8, 0x4) syz_clone(0x8124400, 0x0, 0x0, 0x0, 0x0, 0x0) 5.700650847s ago: executing program 2 (id=648): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event2\x00', 0x101000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0) ppoll$auto(&(0x7f0000000000)={r0, 0x40}, 0x2, 0x0, 0x0, 0x8) read$auto_nsim_dev_trap_fa_cookie_fops_dev(r1, &(0x7f0000000200)=""/238, 0xee) ioctl$auto_SNDCTL_DSP_SYNC(r0, 0x5001, 0xfffffffffffffffc) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) 4.309556579s ago: executing program 3 (id=655): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/nr0/flags\x00', 0xb02, 0x0) sendfile$auto(r0, r0, 0x0, 0x3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r1, 0x0, 0x1f40) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) sysfs$auto(0xd4, 0x3, 0x9) openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) sendmmsg$auto(r0, &(0x7f0000000240)={{&(0x7f0000000040)="fd9694961e1d7cdab22330487c012b9edaca369788e6d3977bd2c864fd55b964bc1f223ce813c601ada0fb7c34ab95760393813ef2e17cf0c7210905dabf6231a7df369f8b8453e10c45a0dad2876952f52f87f86142f6816e583c01ebcf57fc3b5bec0ba19163804890171aae2ff9", 0x0, &(0x7f0000000140)={&(0x7f00000000c0)="cc76de47a7ed0dbe28818b69549f15fd0e9d0063d78c1eb222df60e602f42986eae8932d1ce74e99e36a11ff5f2c2c696c94ab30a90e18935dd7dcf7b740b0c4d3619fbc29416f", 0x4}, 0x1ff, &(0x7f0000000180)="15f8a725d4e9a63cbbcd198745dbe225919fac0ad9b764ef658c6b279e789b2fdd361501f7b903265615db5072b7eab1867bc9367bf064bc79de38045552afa22246c229a68a612eeba865ac6e52f3b169f678750f9d49ef63b5ca03e0c99118b1ec36425e2fbd1d981823a48c1235395e0b1ee232a75bf82f2e624162444c933975dd3206d5ac95bbfa2f4662236f704b08715d8eebf7b8c1b358a8b6bfbef090fe9763d1f334288953d2b5afae4982d5b53f9b3013", 0x0, 0x3}, 0x700000}, 0x5, 0x80) 4.157004469s ago: executing program 1 (id=656): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r0 = socket(0x1e, 0x4, 0x0) setreuid$auto(0x9, 0x1) r1 = geteuid() keyctl$auto(0x1f, r1, r1, 0x5, 0x8) setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14) connect$auto(0x4, 0x0, 0x10) 3.97324739s ago: executing program 1 (id=657): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0xc8, 0x400454ca, 0x5c8d) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) io_uring_setup$auto(0x6, 0x0) clock_nanosleep$auto(0x2, 0x1000, 0x0, 0x0) mlockall$auto(0x6) setreuid$auto(0x40000000003, 0xdf36) brk$auto(0x7b5900000000) setsockopt$auto(0xffffffffffffffff, 0x29, 0x21, 0x0, 0x1ff) ioctl$auto(0xc8, 0x800454df, 0x5c8d) 3.541543729s ago: executing program 2 (id=658): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) socket(0x1e, 0x805, 0x0) sysfs$auto(0x2, 0x200000001d, 0x0) fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x1, &(0x7f0000000200)='I\xee\"\xe3\xb7\xcfD\xe5\xb1\x05\x1e#\xff1<\xd9h[e\xdf\xc0M\xa2\x00\v\x97\xb5\xd4\x94\x99u\x9e\xf4O\x1a\xb1\x05\xb8\xcb\x96\fd\xa3\xf9&\xc9~\x10\x06X\a\xc8\xb7\x97\xc7M\x83\'^\xc9\x9e\xccAsv\xce8sw\v\xac\xcd\xa2B\xf8.\xce\xe6n\xfe\xd6\xc8^W>Rz`C+\x0e\x8c<\xc5\x8f\xe6\x0f\x14\xfa\x9ea4>\xd8O[{\xede\xfd\xbc\xc7\xbd4_\xbc\xc6\x06\xe5h\x9e\xf5/4\xe8\xcfc\x95\xbb~\xd9.\xb3\x84\xb8K\xa7\xca\xda\xc8\x11u\xa1\x1d\x9d\xe1%\xc0m\xf6%1\xba\xe7^\xed0\xdc\x86\xeaG)?p,Up \xe9\b\x14\xaf\xbf\xd9\xc3,\xb8\x17\x10\x9f\x92\x95@),A\xb4\x92Q\x86\xbe\xed=p\x1b\x9d\xd4\x99_]K\xce.\x00\x00\x00\x8eDv\x0fl\xed\x93ey\xf9\x19\xf0\x9d\xf5\xfe\xed\xc7Q\xc0ZJ\xc9*7\xf2\x1a\xa7\xb3\xc6v\v\xe1u\x16:\x15\xefel\xf0\x8c/\xa2\x95\xc1\xacd\xc9\a\xe5\x888F\xaa\xce\x94\xa2zsx\xea\x96\x7f~]\xdbj\xd1#\x94K\xcf\x11l\xe5Z\xec\xa6B\x90\xb6\xa3`\x88\xd4\x87\x17\x8a\xedFx\x95#\x83\x99\x00\xc6Z\x1au\x8e\xa7}\xa7\xe9\x83X\xa3\xad\xe2T\xea\xa0\xba\xd7R8T\x00\x8e0h\x8ck4\x15\xf3sh0\xd3\x1e\xedU@\xab\xc0g\xeeT\xc5\x8d\x9b\x188x)\xf0i]\xdcf\xdd\xf9\xffA\"ZQ\x8d\x15\xff\xf3WYX\x8a/\xb36\x1d\x8e7\xb2d3\xe8\xf4\x1e3\xec\xfe\xbf\xbbo\xbb\xd2Z\x89:\xa2\xc8n8k\xa8\xba\xa5E\x9f\xbe>3,\xcb\xa2\xa7q \xe2', &(0x7f0000000280), 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 3.532405692s ago: executing program 3 (id=659): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) capget$auto(0x0, 0xfffffffffffffffe) capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8}) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/arch_status\x00', 0x200, 0x0) socket(0x2, 0x802, 0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) 3.300588715s ago: executing program 2 (id=660): r0 = socket$nl_generic(0x10, 0x3, 0x10) poll$auto(&(0x7f0000003640)={r0, 0x7, 0x6}, 0x4, 0x100000) r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000003900), r0) sendmsg$auto_NETDEV_CMD_QUEUE_GET(r1, &(0x7f00000039c0)={0x0, 0x0, &(0x7f0000003980)={&(0x7f0000003940)={0x14, r2, 0x301, 0x70bd2e, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0xc4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) read$auto(0x3, 0x0, 0x80) close_range$auto(0x2, 0x8, 0x0) fanotify_init$auto(0x5, 0x2000000000002) r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0) ioctl$auto(0x3, 0xc0184d08, r3) 3.170429037s ago: executing program 3 (id=662): mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x602, 0x1) socket(0x2, 0x2, 0x73) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="1f000000", @ANYBLOB="1200", @ANYRES8], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.904454661s ago: executing program 3 (id=663): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x2, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0xa0280, 0x0) openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r1, 0x2284, r0) 2.73669235s ago: executing program 2 (id=664): mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socket(0x2, 0x801, 0x106) mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000) setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) 2.514715969s ago: executing program 1 (id=665): openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x2aa82, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x280, 0x0) sendmsg$auto_MACSEC_CMD_GET_TXSC(0xffffffffffffffff, 0x0, 0x8014) write$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a) r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x640, 0x0) read$auto_mon_fops_binary_mon_bin(r1, 0x0, 0x0) ioctl$auto_MON_IOCG_STATS(r1, 0x80089203, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0xa901, 0x0) 2.448308951s ago: executing program 3 (id=666): r0 = socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x1f, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84}, 0x1fe, 0xd) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c00"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x840}, 0x7, 0x88) 2.343850871s ago: executing program 0 (id=667): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r0, 0x0, 0x7) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0) ioctl$auto_TCFLSH2(r2, 0x80045439, 0x0) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) 1.643850332s ago: executing program 0 (id=668): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = io_uring_setup$auto(0x6, 0x0) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0) read$auto(r2, 0x0, 0x20) writev$auto(r1, &(0x7f0000000200)={0x0, 0x3}, 0x3) ioctl$auto_USBDEVFS_REAPURBNDELAY(r0, 0x4008550d, 0x0) pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9) 1.083319329s ago: executing program 3 (id=669): r0 = socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) ioctl$auto(r0, 0x8917, 0x24) 914.651795ms ago: executing program 0 (id=670): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x101401, 0x0) pipe$auto(0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x2, 0x73) socket(0x18, 0x3, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0xfffffdef) 870.122925ms ago: executing program 1 (id=671): mmap$auto(0x0, 0x2020409, 0xa, 0xeb1, 0xffffffffffffffff, 0x8000) socket(0x10, 0x2, 0x0) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x1e, 0x1, 0x0) listen$auto(r0, 0x9) socket(0x2b, 0x1, 0x1) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe\x00', 0x2000, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x1ff, 0xd5b, 0xc, 0x8001, 0x1, 0x2, 0x15f4da0a, 0x59, 0x3, 0x300000000000600, 0x8000, 0x7, 0x5, 0x5, 0x9]}, 0x0) close_range$auto(0x2, 0x8, 0x0) 678.453677ms ago: executing program 0 (id=672): mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, 0x0, 0x20000, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000001680)='/sys/kernel/tracing/uprobe_events\x00', 0x2, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x2584, 0x0) ioctl$auto(0x3, 0x40045542, 0xb551) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000300)='/dev/midi2\x00', 0x80b00, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x11, 0x80003, 0x300) 306.901923ms ago: executing program 0 (id=673): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x80000000000000a, 0x2, 0x0) socket(0xa, 0x801, 0x84) socket(0x2, 0x3, 0x6) pipe$auto(0x0) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(r0, r0, 0x0) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video31\x00', 0x180, 0x0) ioctl$auto(r1, 0xc0585611, r1) 186.77844ms ago: executing program 1 (id=674): openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) mmap$auto(0x0, 0x4020009, 0xdd, 0xeb1, 0x401, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth0\x00'}) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket(0xa, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) r0 = socket(0x18, 0x5, 0x1) connect$auto(r0, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) write$auto(0x3, 0x0, 0x5c8) 157.977418ms ago: executing program 0 (id=675): openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cpu/0/msr\x00', 0x400, 0x0) write$auto_console_fops_tty_io(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r0, 0x0, 0x1f42) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f00000000c0)={0x0, 0x7}, 0x3) shmctl$auto(0x7ff, 0x7270, 0x0) msgctl$auto_IPC_SET(0xfffffffc, 0x1, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x1001, 0x0) 0s ago: executing program 1 (id=676): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0x2) socket(0x2, 0x801, 0x106) socket(0xa, 0x2, 0x0) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x8, @old_prog_fd=r0}, 0xa3) bpf$auto(0x2, 0x0, 0x9) kernel console output (not intermixed with test programs): len=0, err=-2) [ 111.965135][ T5987] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 114.201780][ T6048] sp0: Synchronizing with TNC [ 115.151513][ T6071] mkiss: ax0: crc mode is auto. [ 115.533926][ T6078] Zero length message leads to an empty skb [ 115.595800][ T6079] netlink: 110 bytes leftover after parsing attributes in process `syz.3.34'. [ 116.553292][ T6089] netlink: 330 bytes leftover after parsing attributes in process `syz.1.37'. [ 116.839156][ T6097] netlink: 186 bytes leftover after parsing attributes in process `syz.1.40'. [ 117.307479][ T6107] sp0: Synchronizing with TNC [ 117.336592][ T6107] sp0: Found TNC [ 118.337394][ T6127] netlink: 4 bytes leftover after parsing attributes in process `syz.1.52'. [ 118.373106][ T6127] netlink: 25 bytes leftover after parsing attributes in process `syz.1.52'. [ 119.219964][ T6142] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 120.976072][ T6168] netlink: 350 bytes leftover after parsing attributes in process `syz.3.67'. [ 121.119394][ T6170] input: f¬ as /devices/virtual/input/input5 [ 123.726512][ T6191] netlink: 194 bytes leftover after parsing attributes in process `syz.3.75'. [ 124.019404][ T6200] __vm_enough_memory: pid: 6200, comm: syz.2.76, bytes: 4398046511104 not enough memory for the allocation [ 125.518140][ T6218] netlink: 338 bytes leftover after parsing attributes in process `syz.2.82'. [ 126.010363][ T6232] FAULT_INJECTION: forcing a failure. [ 126.010363][ T6232] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 126.026657][ T6232] CPU: 1 UID: 0 PID: 6232 Comm: syz.0.87 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 126.026700][ T6232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 126.026723][ T6232] Call Trace: [ 126.026734][ T6232] [ 126.026747][ T6232] dump_stack_lvl+0x16c/0x1f0 [ 126.026793][ T6232] should_fail_ex+0x512/0x640 [ 126.026836][ T6232] should_fail_alloc_page+0xe7/0x130 [ 126.026879][ T6232] prepare_alloc_pages+0x3c2/0x610 [ 126.026930][ T6232] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 126.026973][ T6232] ? rcu_is_watching+0x12/0xc0 [ 126.027003][ T6232] ? trace_mm_page_alloc+0x11f/0x1a0 [ 126.027051][ T6232] ? __alloc_frozen_pages_noprof+0x294/0x23f0 [ 126.027093][ T6232] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 126.027135][ T6232] ? mark_held_locks+0x49/0x80 [ 126.027188][ T6232] ? get_il_weight+0xea/0x290 [ 126.027232][ T6232] ? get_il_weight+0xf4/0x290 [ 126.027274][ T6232] alloc_pages_bulk_noprof+0x71c/0x1410 [ 126.027316][ T6232] ? policy_nodemask+0xea/0x4e0 [ 126.027360][ T6232] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 126.027399][ T6232] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 126.027465][ T6232] kasan_populate_vmalloc+0xf1/0x1f0 [ 126.027508][ T6232] alloc_vmap_area+0x959/0x29c0 [ 126.027571][ T6232] ? __pfx_alloc_vmap_area+0x10/0x10 [ 126.027627][ T6232] __get_vm_area_node+0x1ca/0x330 [ 126.027686][ T6232] __vmalloc_node_range_noprof+0x271/0x14b0 [ 126.027717][ T6232] ? n_tty_open+0x1a/0x170 [ 126.027765][ T6232] ? __lock_acquire+0xb97/0x1ce0 [ 126.027806][ T6232] ? n_tty_open+0x1a/0x170 [ 126.027856][ T6232] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 126.027890][ T6232] ? find_held_lock+0x2b/0x80 [ 126.027921][ T6232] ? n_tty_open+0x12b/0x170 [ 126.027962][ T6232] ? n_tty_open+0x1a/0x170 [ 126.027999][ T6232] __vmalloc_node_noprof+0xad/0xf0 [ 126.028048][ T6232] ? n_tty_open+0x1a/0x170 [ 126.028086][ T6232] ? __pfx_n_tty_open+0x10/0x10 [ 126.028127][ T6232] n_tty_open+0x1a/0x170 [ 126.028167][ T6232] ? __pfx_n_tty_open+0x10/0x10 [ 126.028206][ T6232] tty_ldisc_open+0x9c/0x120 [ 126.028236][ T6232] tty_ldisc_setup+0x87/0x100 [ 126.028268][ T6232] tty_init_dev.part.0+0x1ec/0x500 [ 126.028309][ T6232] tty_open+0xa50/0xf90 [ 126.028354][ T6232] ? __pfx_tty_open+0x10/0x10 [ 126.028392][ T6232] ? chrdev_open+0x58c/0x6a0 [ 126.028444][ T6232] ? __pfx_tty_open+0x10/0x10 [ 126.028481][ T6232] chrdev_open+0x234/0x6a0 [ 126.028521][ T6232] ? __pfx_chrdev_open+0x10/0x10 [ 126.028564][ T6232] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 126.028607][ T6232] do_dentry_open+0x982/0x1530 [ 126.028645][ T6232] ? __pfx_chrdev_open+0x10/0x10 [ 126.028692][ T6232] vfs_open+0x82/0x3f0 [ 126.028742][ T6232] path_openat+0x1de4/0x2cb0 [ 126.028791][ T6232] ? __pfx_path_openat+0x10/0x10 [ 126.028838][ T6232] do_filp_open+0x20b/0x470 [ 126.028874][ T6232] ? __pfx_do_filp_open+0x10/0x10 [ 126.028940][ T6232] ? alloc_fd+0x471/0x7d0 [ 126.028982][ T6232] do_sys_openat2+0x11b/0x1d0 [ 126.029028][ T6232] ? __pfx_do_sys_openat2+0x10/0x10 [ 126.029092][ T6232] __x64_sys_openat+0x174/0x210 [ 126.029141][ T6232] ? __pfx___x64_sys_openat+0x10/0x10 [ 126.029205][ T6232] do_syscall_64+0xcd/0x490 [ 126.029242][ T6232] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.029274][ T6232] RIP: 0033:0x7fdcd7d8eb69 [ 126.029307][ T6232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 126.029336][ T6232] RSP: 002b:00007fdcd8b2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 126.029369][ T6232] RAX: ffffffffffffffda RBX: 00007fdcd7fb5fa0 RCX: 00007fdcd7d8eb69 [ 126.029389][ T6232] RDX: 0000000000040001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 126.029408][ T6232] RBP: 00007fdcd7e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 126.029426][ T6232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 126.029450][ T6232] R13: 0000000000000000 R14: 00007fdcd7fb5fa0 R15: 00007ffdf5287b48 [ 126.029488][ T6232] [ 126.429025][ T6232] syz.0.87: vmalloc error: size 9128, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 126.447907][ T6232] CPU: 0 UID: 0 PID: 6232 Comm: syz.0.87 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 126.447956][ T6232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 126.447976][ T6232] Call Trace: [ 126.447987][ T6232] [ 126.447999][ T6232] dump_stack_lvl+0x16c/0x1f0 [ 126.448039][ T6232] warn_alloc+0x248/0x3a0 [ 126.448092][ T6232] ? __pfx_warn_alloc+0x10/0x10 [ 126.448132][ T6232] ? kfree+0x2b4/0x4d0 [ 126.448169][ T6232] ? __get_vm_area_node+0x208/0x330 [ 126.448225][ T6232] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 126.448264][ T6232] ? __lock_acquire+0xb97/0x1ce0 [ 126.448306][ T6232] ? n_tty_open+0x1a/0x170 [ 126.448356][ T6232] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 126.448390][ T6232] ? find_held_lock+0x2b/0x80 [ 126.448421][ T6232] ? n_tty_open+0x12b/0x170 [ 126.448464][ T6232] ? n_tty_open+0x1a/0x170 [ 126.448502][ T6232] __vmalloc_node_noprof+0xad/0xf0 [ 126.448552][ T6232] ? n_tty_open+0x1a/0x170 [ 126.448591][ T6232] ? __pfx_n_tty_open+0x10/0x10 [ 126.448639][ T6232] n_tty_open+0x1a/0x170 [ 126.448678][ T6232] ? __pfx_n_tty_open+0x10/0x10 [ 126.448719][ T6232] tty_ldisc_open+0x9c/0x120 [ 126.448749][ T6232] tty_ldisc_setup+0x87/0x100 [ 126.448782][ T6232] tty_init_dev.part.0+0x1ec/0x500 [ 126.448826][ T6232] tty_open+0xa50/0xf90 [ 126.448871][ T6232] ? __pfx_tty_open+0x10/0x10 [ 126.448908][ T6232] ? chrdev_open+0x58c/0x6a0 [ 126.448953][ T6232] ? __pfx_tty_open+0x10/0x10 [ 126.448989][ T6232] chrdev_open+0x234/0x6a0 [ 126.449029][ T6232] ? __pfx_chrdev_open+0x10/0x10 [ 126.449071][ T6232] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 126.449113][ T6232] do_dentry_open+0x982/0x1530 [ 126.449152][ T6232] ? __pfx_chrdev_open+0x10/0x10 [ 126.449199][ T6232] vfs_open+0x82/0x3f0 [ 126.449249][ T6232] path_openat+0x1de4/0x2cb0 [ 126.449298][ T6232] ? __pfx_path_openat+0x10/0x10 [ 126.449345][ T6232] do_filp_open+0x20b/0x470 [ 126.449382][ T6232] ? __pfx_do_filp_open+0x10/0x10 [ 126.449447][ T6232] ? alloc_fd+0x471/0x7d0 [ 126.449491][ T6232] do_sys_openat2+0x11b/0x1d0 [ 126.449537][ T6232] ? __pfx_do_sys_openat2+0x10/0x10 [ 126.449600][ T6232] __x64_sys_openat+0x174/0x210 [ 126.449655][ T6232] ? __pfx___x64_sys_openat+0x10/0x10 [ 126.449742][ T6232] do_syscall_64+0xcd/0x490 [ 126.449782][ T6232] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.449813][ T6232] RIP: 0033:0x7fdcd7d8eb69 [ 126.449838][ T6232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 126.449868][ T6232] RSP: 002b:00007fdcd8b2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 126.449898][ T6232] RAX: ffffffffffffffda RBX: 00007fdcd7fb5fa0 RCX: 00007fdcd7d8eb69 [ 126.449919][ T6232] RDX: 0000000000040001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 126.449939][ T6232] RBP: 00007fdcd7e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 126.449959][ T6232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 126.449977][ T6232] R13: 0000000000000000 R14: 00007fdcd7fb5fa0 R15: 00007ffdf5287b48 [ 126.450018][ T6232] [ 126.768438][ T6232] Mem-Info: [ 126.774051][ T6232] active_anon:50405 inactive_anon:0 isolated_anon:0 [ 126.774051][ T6232] active_file:12586 inactive_file:39832 isolated_file:0 [ 126.774051][ T6232] unevictable:768 dirty:231 writeback:0 [ 126.774051][ T6232] slab_reclaimable:11146 slab_unreclaimable:92033 [ 126.774051][ T6232] mapped:24238 shmem:46418 pagetables:1155 [ 126.774051][ T6232] sec_pagetables:0 bounce:0 [ 126.774051][ T6232] kernel_misc_reclaimable:0 [ 126.774051][ T6232] free:1273960 free_pcp:30082 free_cma:0 [ 126.828833][ T6232] Node 0 active_anon:201620kB inactive_anon:0kB active_file:50344kB inactive_file:159124kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:96952kB dirty:920kB writeback:0kB shmem:184136kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11412kB pagetables:4516kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 126.862054][ T6232] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:104kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 126.892729][ T6232] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 126.922693][ T6232] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 126.928530][ T6232] Node 0 DMA32 free:1195944kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:201576kB inactive_anon:0kB active_file:50344kB inactive_file:157796kB unevictable:1536kB writepending:920kB present:3129332kB managed:2539676kB mlocked:0kB bounce:0kB free_pcp:94996kB local_pcp:57448kB free_cma:0kB [ 126.962456][ T6232] lowmem_reserve[]: 0 0 1 1 1 [ 126.967256][ T6232] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1328kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 126.996801][ T6232] lowmem_reserve[]: 0 0 0 0 0 [ 127.002198][ T6232] Node 1 Normal free:3884528kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:25840kB local_pcp:9312kB free_cma:0kB [ 127.033833][ T6232] lowmem_reserve[]: 0 0 0 0 0 [ 127.038686][ T6232] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 127.054772][ T6232] Node 0 DMA32: 828*4kB (UM) 151*8kB (UE) 24*16kB (UME) 18*32kB (UME) 6*64kB (UME) 1*128kB (M) 4*256kB (UME) 2*512kB (U) 4*1024kB (UE) 2*2048kB (UM) 288*4096kB (M) = 1195880kB [ 127.072952][ T6232] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 127.085165][ T6232] Node 1 Normal: 176*4kB (UME) 58*8kB (UME) 40*16kB (UME) 51*32kB (UME) 20*64kB (UME) 9*128kB (UME) 3*256kB (UME) 2*512kB (UE) 0*1024kB 1*2048kB (U) 946*4096kB (M) = 3884528kB [ 127.103438][ T6232] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 127.113314][ T6232] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 127.122804][ T6232] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 127.132887][ T6232] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 127.142355][ T6232] 98833 total pagecache pages [ 127.147703][ T6232] 0 pages in swap cache [ 127.154025][ T6232] Free swap = 124996kB [ 127.158381][ T6232] Total swap = 124996kB [ 127.162759][ T6232] 2097051 pages RAM [ 127.166586][ T6232] 0 pages HighMem/MovableOnly [ 127.171705][ T6232] 430170 pages reserved [ 127.175882][ T6232] 0 pages cma reserved [ 127.180350][ T6232] pty pty228: ldisc open failed (-12), clearing slot 228 [ 127.880016][ T6224] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 127.883310][ T5872] Bluetooth: hci0: command 0x0c1a tx timeout [ 127.893434][ T6224] Bluetooth: hci0: Opcode 0x0406 failed: -110 [ 128.048953][ T6252] netlink: 18 bytes leftover after parsing attributes in process `syz.2.95'. [ 128.216580][ T6256] FAULT_INJECTION: forcing a failure. [ 128.216580][ T6256] name failslab, interval 1, probability 0, space 0, times 0 [ 128.238728][ T6256] CPU: 0 UID: 0 PID: 6256 Comm: syz.0.97 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 128.238773][ T6256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 128.238793][ T6256] Call Trace: [ 128.238804][ T6256] [ 128.238815][ T6256] dump_stack_lvl+0x16c/0x1f0 [ 128.238853][ T6256] should_fail_ex+0x512/0x640 [ 128.238890][ T6256] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 128.238932][ T6256] should_failslab+0xc2/0x120 [ 128.238972][ T6256] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 128.239012][ T6256] ? can_rx_register+0x582/0x6f0 [ 128.239082][ T6256] can_rx_register+0x582/0x6f0 [ 128.239130][ T6256] ? __pfx_raw_rcv+0x10/0x10 [ 128.239166][ T6256] ? __pfx_can_rx_register+0x10/0x10 [ 128.239233][ T6256] raw_enable_filters+0xe0/0x210 [ 128.239356][ T6256] raw_enable_allfilters+0x8b/0x2b0 [ 128.239391][ T6256] ? __local_bh_enable_ip+0xa4/0x120 [ 128.239436][ T6256] raw_bind+0x48a/0xe50 [ 128.239468][ T6256] ? apparmor_socket_bind+0x105/0x200 [ 128.239528][ T6256] __sys_bind+0x1a4/0x260 [ 128.239578][ T6256] ? __pfx___sys_bind+0x10/0x10 [ 128.239642][ T6256] ? xfd_validate_state+0x61/0x180 [ 128.239690][ T6256] ? __sys_setsockopt+0x140/0x1a0 [ 128.239730][ T6256] __x64_sys_bind+0x72/0xb0 [ 128.239778][ T6256] ? lockdep_hardirqs_on+0x7c/0x110 [ 128.239810][ T6256] do_syscall_64+0xcd/0x490 [ 128.239847][ T6256] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.239878][ T6256] RIP: 0033:0x7fdcd7d8eb69 [ 128.239901][ T6256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 128.239931][ T6256] RSP: 002b:00007fdcd8b2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031 [ 128.239960][ T6256] RAX: ffffffffffffffda RBX: 00007fdcd7fb5fa0 RCX: 00007fdcd7d8eb69 [ 128.239980][ T6256] RDX: 000000000000006a RSI: 0000200000000040 RDI: 0000000000000003 [ 128.240000][ T6256] RBP: 00007fdcd7e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 128.240020][ T6256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 128.240039][ T6256] R13: 0000000000000000 R14: 00007fdcd7fb5fa0 R15: 00007ffdf5287b48 [ 128.240081][ T6256] [ 128.570207][ T6224] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 128.583943][ T6224] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 128.624465][ T6224] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 128.709644][ T6224] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 128.727449][ T6224] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 128.734009][ T6224] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 128.758224][ T30] audit: type=1800 audit(1754365105.710:2): pid=6260 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.99" name="lu_gp_id" dev="configfs" ino=8805 res=0 errno=0 [ 128.797264][ T6224] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 128.834124][ T6224] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 128.860072][ T6224] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 128.871752][ T6224] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 128.995795][ T6260] ALUA LU Group already has a valid ID, ignoring request [ 129.355461][ T6275] process 'syz.3.104' launched './file0' with NULL argv: empty string added [ 129.509453][ T6278] netlink: 252 bytes leftover after parsing attributes in process `syz.2.105'. [ 129.630262][ T6280] netlink: 244 bytes leftover after parsing attributes in process `syz.3.106'. [ 129.871481][ T6285] netlink: 8 bytes leftover after parsing attributes in process `syz.3.109'. [ 129.962867][ T5872] Bluetooth: hci0: command 0x0c1a tx timeout [ 130.084099][ T6290] netlink: 'syz.3.111': attribute type 17 has an invalid length. [ 130.096241][ T6290] netlink: 326 bytes leftover after parsing attributes in process `syz.3.111'. [ 130.596329][ T6292] syz.0.113 (6292) used greatest stack depth: 17544 bytes left [ 130.605841][ T5872] Bluetooth: hci1: command 0x0c1a tx timeout [ 130.762833][ T5872] Bluetooth: hci2: command 0x0c1a tx timeout [ 130.840241][ T5872] Bluetooth: hci3: command 0x0c1a tx timeout [ 131.299898][ T6317] netlink: 266 bytes leftover after parsing attributes in process `syz.2.122'. [ 131.322395][ T6317] IPv6: NLM_F_CREATE should be specified when creating new route [ 132.039966][ T5872] Bluetooth: hci0: command 0x0c1a tx timeout [ 132.682133][ T5872] Bluetooth: hci1: command 0x0c1a tx timeout [ 132.840220][ T5872] Bluetooth: hci2: command 0x0c1a tx timeout [ 132.852938][ T6338] netlink: zone id is out of range [ 132.888937][ T6333] netlink: set zone limit has 8 unknown bytes [ 132.927046][ T5872] Bluetooth: hci3: command 0x0c1a tx timeout [ 132.951612][ T6338] netlink: del zone limit has 4 unknown bytes [ 132.966140][ T6342] netlink: 98 bytes leftover after parsing attributes in process `syz.1.131'. [ 133.618062][ T6347] FAULT_INJECTION: forcing a failure. [ 133.618062][ T6347] name failslab, interval 1, probability 0, space 0, times 0 [ 133.654424][ T6347] CPU: 0 UID: 0 PID: 6347 Comm: syz.2.134 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 133.654474][ T6347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 133.654495][ T6347] Call Trace: [ 133.654507][ T6347] [ 133.654520][ T6347] dump_stack_lvl+0x16c/0x1f0 [ 133.654563][ T6347] should_fail_ex+0x512/0x640 [ 133.654606][ T6347] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 133.654654][ T6347] should_failslab+0xc2/0x120 [ 133.654700][ T6347] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 133.654743][ T6347] ? __kernfs_new_node+0xd2/0x8e0 [ 133.654793][ T6347] __kernfs_new_node+0xd2/0x8e0 [ 133.654843][ T6347] ? __pfx___kernfs_new_node+0x10/0x10 [ 133.654899][ T6347] ? find_held_lock+0x2b/0x80 [ 133.654935][ T6347] ? kernfs_root+0xee/0x2a0 [ 133.654988][ T6347] kernfs_new_node+0x13c/0x1e0 [ 133.655055][ T6347] __kernfs_create_file+0x53/0x350 [ 133.655096][ T6347] sysfs_add_file_mode_ns+0x207/0x3c0 [ 133.655149][ T6347] internal_create_group+0x578/0xf30 [ 133.655208][ T6347] ? __pfx_internal_create_group+0x10/0x10 [ 133.655260][ T6347] ? kernfs_create_link+0x1bd/0x240 [ 133.655302][ T6347] internal_create_groups+0x9d/0x150 [ 133.655352][ T6347] device_add+0x6d1/0x1aa0 [ 133.655410][ T6347] ? __pfx_device_add+0x10/0x10 [ 133.655459][ T6347] ? lockdep_init_map_type+0x5c/0x280 [ 133.655508][ T6347] ? __init_waitqueue_head+0xca/0x150 [ 133.655574][ T6347] netdev_register_kobject+0x1a9/0x3d0 [ 133.655625][ T6347] register_netdevice+0x13dc/0x2270 [ 133.655675][ T6347] ? __pfx_register_netdevice+0x10/0x10 [ 133.655714][ T6347] ? rcu_is_watching+0x12/0xc0 [ 133.655749][ T6347] ? trace_kmalloc+0x2b/0xd0 [ 133.655796][ T6347] ? __kmalloc_noprof+0x242/0x510 [ 133.655856][ T6347] register_netdev+0x34/0x50 [ 133.655893][ T6347] mkiss_open+0x4cd/0x9a0 [ 133.655942][ T6347] ? __pfx_mkiss_open+0x10/0x10 [ 133.655990][ T6347] tty_ldisc_open+0x9c/0x120 [ 133.656030][ T6347] tty_set_ldisc+0x32b/0x780 [ 133.656069][ T6347] tty_ioctl+0xc2e/0x1680 [ 133.656109][ T6347] ? __pfx_tty_ioctl+0x10/0x10 [ 133.656161][ T6347] ? find_held_lock+0x2b/0x80 [ 133.656193][ T6347] ? hook_file_ioctl_common+0x145/0x410 [ 133.656240][ T6347] ? __fget_files+0x20e/0x3c0 [ 133.656282][ T6347] ? __pfx_tty_ioctl+0x10/0x10 [ 133.656322][ T6347] __x64_sys_ioctl+0x18b/0x210 [ 133.656378][ T6347] do_syscall_64+0xcd/0x490 [ 133.656418][ T6347] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.656453][ T6347] RIP: 0033:0x7f285a18eb69 [ 133.656480][ T6347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.656512][ T6347] RSP: 002b:00007f285af17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 133.656542][ T6347] RAX: ffffffffffffffda RBX: 00007f285a3b5fa0 RCX: 00007f285a18eb69 [ 133.656564][ T6347] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000005 [ 133.656583][ T6347] RBP: 00007f285a211df1 R08: 0000000000000000 R09: 0000000000000000 [ 133.656603][ T6347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 133.656622][ T6347] R13: 0000000000000000 R14: 00007f285a3b5fa0 R15: 00007fff22f41018 [ 133.656664][ T6347] [ 134.800066][ T5872] Bluetooth: hci1: command 0x0c1a tx timeout [ 134.925086][ T5872] Bluetooth: hci2: command 0x0c1a tx timeout [ 135.013836][ T5872] Bluetooth: hci3: command 0x0c1a tx timeout [ 136.040495][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805a901800: rx timeout, send abort [ 136.050234][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805a901c00: rx timeout, send abort [ 136.058974][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805a901c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 136.326781][ T6382] FAULT_INJECTION: forcing a failure. [ 136.326781][ T6382] name failslab, interval 1, probability 0, space 0, times 0 [ 136.410652][ T6382] CPU: 0 UID: 0 PID: 6382 Comm: syz.1.145 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 136.410695][ T6382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 136.410713][ T6382] Call Trace: [ 136.410729][ T6382] [ 136.410742][ T6382] dump_stack_lvl+0x16c/0x1f0 [ 136.410780][ T6382] should_fail_ex+0x512/0x640 [ 136.410815][ T6382] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 136.410855][ T6382] should_failslab+0xc2/0x120 [ 136.410894][ T6382] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 136.410929][ T6382] ? __proc_create+0xc3/0x8e0 [ 136.410977][ T6382] ? __proc_create+0x2ce/0x8e0 [ 136.411027][ T6382] __proc_create+0x2ce/0x8e0 [ 136.411071][ T6382] ? __pfx___proc_create+0x10/0x10 [ 136.411122][ T6382] ? _raw_write_unlock+0x28/0x50 [ 136.411154][ T6382] proc_create_reg+0x7d/0x180 [ 136.411201][ T6382] proc_create_data+0x86/0x110 [ 136.411249][ T6382] ? __pfx_proc_create_data+0x10/0x10 [ 136.411297][ T6382] ? cache_register_net+0x137/0x5e0 [ 136.411334][ T6382] cache_register_net+0x1e0/0x5e0 [ 136.411366][ T6382] nfsd_export_init+0xb6/0x250 [ 136.411396][ T6382] ? __pfx_nfsd_net_init+0x10/0x10 [ 136.411423][ T6382] nfsd_net_init+0x33/0x3d0 [ 136.411452][ T6382] ? __pfx_nfsd_net_init+0x10/0x10 [ 136.411481][ T6382] ops_init+0x1df/0x5f0 [ 136.411517][ T6382] setup_net+0x10f/0x380 [ 136.411546][ T6382] ? lockdep_init_map_type+0x5c/0x280 [ 136.411587][ T6382] ? __pfx_setup_net+0x10/0x10 [ 136.411621][ T6382] ? debug_mutex_init+0x37/0x70 [ 136.411654][ T6382] copy_net_ns+0x2a6/0x5f0 [ 136.411697][ T6382] create_new_namespaces+0x3ea/0xa90 [ 136.411748][ T6382] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 136.411785][ T6382] ksys_unshare+0x45b/0xa40 [ 136.411828][ T6382] ? __pfx_ksys_unshare+0x10/0x10 [ 136.411870][ T6382] ? xfd_validate_state+0x61/0x180 [ 136.411925][ T6382] __x64_sys_unshare+0x31/0x40 [ 136.411965][ T6382] do_syscall_64+0xcd/0x490 [ 136.411999][ T6382] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.412028][ T6382] RIP: 0033:0x7ff00b98eb69 [ 136.412051][ T6382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 136.412080][ T6382] RSP: 002b:00007ff00c80d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 136.412107][ T6382] RAX: ffffffffffffffda RBX: 00007ff00bbb5fa0 RCX: 00007ff00b98eb69 [ 136.412126][ T6382] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 136.412143][ T6382] RBP: 00007ff00ba11df1 R08: 0000000000000000 R09: 0000000000000000 [ 136.412161][ T6382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 136.412178][ T6382] R13: 0000000000000000 R14: 00007ff00bbb5fa0 R15: 00007ffc3f4014d8 [ 136.412215][ T6382] [ 136.959597][ T6390] random: crng reseeded on system resumption [ 137.467159][ T6406] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size [ 138.410742][ T6420] netlink: 'syz.0.157': attribute type 29 has an invalid length. [ 138.664325][ T6423] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 138.965502][ T6426] netlink: 338 bytes leftover after parsing attributes in process `syz.1.159'. [ 138.983896][ T6426] netlink: 338 bytes leftover after parsing attributes in process `syz.1.159'. [ 139.317408][ T6439] netlink: 338 bytes leftover after parsing attributes in process `syz.1.165'. [ 139.371994][ T6439] netlink: 338 bytes leftover after parsing attributes in process `syz.1.165'. [ 139.414800][ T6439] netlink: 290 bytes leftover after parsing attributes in process `syz.1.165'. [ 139.636912][ T6452] ima: policy update failed [ 139.672641][ T30] audit: type=1802 audit(1754365116.640:3): pid=6452 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.169" res=0 errno=0 [ 139.688569][ T6452] netlink: 25 bytes leftover after parsing attributes in process `syz.3.169'. [ 139.737756][ T6445] zswap: compressor not available [ 140.070520][ T6465] sp0: Synchronizing with TNC [ 140.184336][ T6470] sp0: Synchronizing with TNC [ 141.815391][ T6500] mkiss: ax0: crc mode is auto. [ 142.330092][ T6498] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 142.350637][ T6498] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 142.356838][ T6498] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 142.448844][ T6498] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 142.891160][ T6507] syz.3.191 uses obsolete (PF_INET,SOCK_PACKET) [ 142.921859][ T6514] FAULT_INJECTION: forcing a failure. [ 142.921859][ T6514] name failslab, interval 1, probability 0, space 0, times 0 [ 142.949865][ T6514] CPU: 1 UID: 0 PID: 6514 Comm: syz.1.193 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 142.949924][ T6514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 142.949943][ T6514] Call Trace: [ 142.949953][ T6514] [ 142.949964][ T6514] dump_stack_lvl+0x16c/0x1f0 [ 142.950002][ T6514] should_fail_ex+0x512/0x640 [ 142.950042][ T6514] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 142.950081][ T6514] should_failslab+0xc2/0x120 [ 142.950125][ T6514] __kmalloc_cache_noprof+0x6a/0x3e0 [ 142.950159][ T6514] ? ptp_open+0xe4/0x550 [ 142.950211][ T6514] ptp_open+0xe4/0x550 [ 142.950262][ T6514] ? __pfx_ptp_open+0x10/0x10 [ 142.950319][ T6514] ? __pfx_ptp_open+0x10/0x10 [ 142.950362][ T6514] posix_clock_open+0x178/0x290 [ 142.950401][ T6514] ? __pfx_posix_clock_open+0x10/0x10 [ 142.950437][ T6514] chrdev_open+0x234/0x6a0 [ 142.950480][ T6514] ? __pfx_chrdev_open+0x10/0x10 [ 142.950524][ T6514] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 142.950567][ T6514] do_dentry_open+0x982/0x1530 [ 142.950607][ T6514] ? __pfx_chrdev_open+0x10/0x10 [ 142.950657][ T6514] vfs_open+0x82/0x3f0 [ 142.950710][ T6514] path_openat+0x1de4/0x2cb0 [ 142.950760][ T6514] ? __pfx_path_openat+0x10/0x10 [ 142.950809][ T6514] do_filp_open+0x20b/0x470 [ 142.950848][ T6514] ? __pfx_do_filp_open+0x10/0x10 [ 142.950923][ T6514] ? alloc_fd+0x471/0x7d0 [ 142.950970][ T6514] do_sys_openat2+0x11b/0x1d0 [ 142.951020][ T6514] ? __pfx_do_sys_openat2+0x10/0x10 [ 142.951087][ T6514] __x64_sys_openat+0x174/0x210 [ 142.951139][ T6514] ? __pfx___x64_sys_openat+0x10/0x10 [ 142.951209][ T6514] do_syscall_64+0xcd/0x490 [ 142.951248][ T6514] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 142.951280][ T6514] RIP: 0033:0x7ff00b98eb69 [ 142.951306][ T6514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 142.951337][ T6514] RSP: 002b:00007ff00c7ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 142.951366][ T6514] RAX: ffffffffffffffda RBX: 00007ff00bbb6080 RCX: 00007ff00b98eb69 [ 142.951388][ T6514] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 142.951409][ T6514] RBP: 00007ff00ba11df1 R08: 0000000000000000 R09: 0000000000000000 [ 142.951428][ T6514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 142.951465][ T6514] R13: 0000000000000000 R14: 00007ff00bbb6080 R15: 00007ffc3f4014d8 [ 142.951507][ T6514] [ 143.247675][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 143.257656][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 143.648180][ T5872] Bluetooth: hci0: command 0x0c1a tx timeout [ 143.728858][ T6528] netlink: 306 bytes leftover after parsing attributes in process `syz.3.198'. [ 143.739760][ T6528] netlink: 4 bytes leftover after parsing attributes in process `syz.3.198'. [ 143.754024][ T6528] netlink: 4 bytes leftover after parsing attributes in process `syz.3.198'. [ 144.372478][ T5872] Bluetooth: hci2: command 0x0c1a tx timeout [ 144.378655][ T5872] Bluetooth: hci1: command 0x0c1a tx timeout [ 144.531898][ T5872] Bluetooth: hci3: command 0x0c1a tx timeout [ 145.268400][ T6552] mkiss: ax0: crc mode is auto. [ 145.739012][ T6568] netlink: 330 bytes leftover after parsing attributes in process `syz.3.209'. [ 145.750088][ T6563] zswap: compressor not available [ 145.800031][ T6568] : renamed from bond_slave_1 (while UP) [ 147.289533][ T5872] Bluetooth: hci2: unexpected event 0x09 length: 11 > 3 [ 147.461214][ T6598] sctp: [Deprecated]: syz.3.221 (pid 6598) Use of int in max_burst socket option. [ 147.461214][ T6598] Use struct sctp_assoc_value instead [ 148.280751][ T6609] FAULT_INJECTION: forcing a failure. [ 148.280751][ T6609] name failslab, interval 1, probability 0, space 0, times 0 [ 148.347504][ T6609] CPU: 1 UID: 0 PID: 6609 Comm: syz.3.225 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 148.347552][ T6609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 148.347572][ T6609] Call Trace: [ 148.347582][ T6609] [ 148.347596][ T6609] dump_stack_lvl+0x16c/0x1f0 [ 148.347649][ T6609] should_fail_ex+0x512/0x640 [ 148.347691][ T6609] ? __kvmalloc_node_noprof+0x124/0x620 [ 148.347734][ T6609] should_failslab+0xc2/0x120 [ 148.347780][ T6609] __kvmalloc_node_noprof+0x137/0x620 [ 148.347820][ T6609] ? fib4_semantics_init+0x25/0x100 [ 148.347879][ T6609] ? fib4_semantics_init+0x25/0x100 [ 148.347926][ T6609] fib4_semantics_init+0x25/0x100 [ 148.347977][ T6609] fib_net_init+0x1fc/0x3f0 [ 148.348013][ T6609] ? __pfx___register_sysctl_table+0x10/0x10 [ 148.348064][ T6609] ? __pfx_fib_net_init+0x10/0x10 [ 148.348099][ T6609] ? lockdep_init_map_type+0x5c/0x280 [ 148.348147][ T6609] ? do_init_timer+0xc9/0x110 [ 148.348187][ T6609] ? devinet_init_net+0x5c2/0x910 [ 148.348233][ T6609] ? __pfx_fib_net_init+0x10/0x10 [ 148.348269][ T6609] ops_init+0x1df/0x5f0 [ 148.348309][ T6609] setup_net+0x10f/0x380 [ 148.348363][ T6609] ? lockdep_init_map_type+0x5c/0x280 [ 148.348408][ T6609] ? __pfx_setup_net+0x10/0x10 [ 148.348447][ T6609] ? debug_mutex_init+0x37/0x70 [ 148.348485][ T6609] copy_net_ns+0x2a6/0x5f0 [ 148.348533][ T6609] create_new_namespaces+0x3ea/0xa90 [ 148.348582][ T6609] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 148.348626][ T6609] ksys_unshare+0x45b/0xa40 [ 148.348680][ T6609] ? __pfx_ksys_unshare+0x10/0x10 [ 148.348729][ T6609] ? xfd_validate_state+0x61/0x180 [ 148.348792][ T6609] __x64_sys_unshare+0x31/0x40 [ 148.348838][ T6609] do_syscall_64+0xcd/0x490 [ 148.348877][ T6609] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 148.348911][ T6609] RIP: 0033:0x7fd03db8eb69 [ 148.348937][ T6609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 148.348969][ T6609] RSP: 002b:00007fd03e980038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 148.349001][ T6609] RAX: ffffffffffffffda RBX: 00007fd03ddb5fa0 RCX: 00007fd03db8eb69 [ 148.349023][ T6609] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 148.349042][ T6609] RBP: 00007fd03dc11df1 R08: 0000000000000000 R09: 0000000000000000 [ 148.349062][ T6609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 148.349081][ T6609] R13: 0000000000000000 R14: 00007fd03ddb5fa0 R15: 00007ffd41d38838 [ 148.349123][ T6609] [ 150.445526][ T6632] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 150.891511][ T6641] netlink: 4 bytes leftover after parsing attributes in process `syz.0.237'. [ 150.914214][ T6641] netlink: 17 bytes leftover after parsing attributes in process `syz.0.237'. [ 151.650368][ T6652] netlink: 342 bytes leftover after parsing attributes in process `syz.0.240'. [ 152.855947][ T6676] fanotify: failed to encode fid (type=0, len=0, err=-2) @[ 153.604822][ T6691] netlink: 330 bytes leftover after parsing attributes in process `syz.0.254'. [ 153.727192][ T6691] gretap0: refused to change device tx_queue_len [ 153.923681][ T6694] usb usb23: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 155.094130][ T6714] FAULT_INJECTION: forcing a failure. [ 155.094130][ T6714] name failslab, interval 1, probability 0, space 0, times 0 [ 155.137532][ T6714] CPU: 0 UID: 0 PID: 6714 Comm: syz.0.261 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 155.137582][ T6714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 155.137603][ T6714] Call Trace: [ 155.137614][ T6714] [ 155.137627][ T6714] dump_stack_lvl+0x16c/0x1f0 [ 155.137669][ T6714] should_fail_ex+0x512/0x640 [ 155.137708][ T6714] ? __kmalloc_noprof+0xbf/0x510 [ 155.137769][ T6714] ? acpi_ns_get_normalized_pathname+0x75/0xd0 [ 155.137815][ T6714] should_failslab+0xc2/0x120 [ 155.137860][ T6714] __kmalloc_noprof+0xd2/0x510 [ 155.137911][ T6714] acpi_ns_get_normalized_pathname+0x75/0xd0 [ 155.137962][ T6714] acpi_ns_evaluate+0x1e1/0xca0 [ 155.138006][ T6714] ? kasan_save_track+0x14/0x30 [ 155.138049][ T6714] acpi_evaluate_object+0x1fa/0xa90 [ 155.138107][ T6714] ? do_syscall_64+0xcd/0x490 [ 155.138139][ T6714] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 155.138173][ T6714] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 155.138229][ T6714] ? __mutex_trylock_common+0xe9/0x250 [ 155.138282][ T6714] acpi_evaluate_integer+0xdd/0x200 [ 155.138330][ T6714] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 155.138400][ T6714] ? __pfx_status_show+0x10/0x10 [ 155.138433][ T6714] status_show+0xa0/0x120 [ 155.138466][ T6714] ? __pfx_status_show+0x10/0x10 [ 155.138511][ T6714] dev_attr_show+0x53/0xe0 [ 155.138557][ T6714] ? __pfx_dev_attr_show+0x10/0x10 [ 155.138599][ T6714] sysfs_kf_seq_show+0x213/0x3e0 [ 155.138645][ T6714] seq_read_iter+0x509/0x12c0 [ 155.138679][ T6714] ? __mutex_trylock_common+0xe9/0x250 [ 155.138747][ T6714] kernfs_fop_read_iter+0x40f/0x5a0 [ 155.138778][ T6714] ? rw_verify_area+0xcf/0x6c0 [ 155.138816][ T6714] vfs_read+0x8bf/0xc60 [ 155.138860][ T6714] ? __pfx___mutex_lock+0x10/0x10 [ 155.138897][ T6714] ? __pfx_vfs_read+0x10/0x10 [ 155.138964][ T6714] ksys_read+0x12a/0x250 [ 155.139003][ T6714] ? __pfx_ksys_read+0x10/0x10 [ 155.139054][ T6714] do_syscall_64+0xcd/0x490 [ 155.139093][ T6714] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 155.139126][ T6714] RIP: 0033:0x7fdcd7d8eb69 [ 155.139153][ T6714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 155.139185][ T6714] RSP: 002b:00007fdcd8b2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 155.139217][ T6714] RAX: ffffffffffffffda RBX: 00007fdcd7fb5fa0 RCX: 00007fdcd7d8eb69 [ 155.139239][ T6714] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000003 [ 155.139259][ T6714] RBP: 00007fdcd7e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 155.139278][ T6714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 155.139298][ T6714] R13: 0000000000000000 R14: 00007fdcd7fb5fa0 R15: 00007ffdf5287b48 [ 155.139341][ T6714] [ 155.139368][ T6714] ACPI Error: Could not allocate 15 bytes (20250404/nsnames-308) [ 155.619699][ T6718] netlink: 266 bytes leftover after parsing attributes in process `syz.3.263'. [ 155.655490][ T6718] IPv6: NLM_F_CREATE should be specified when creating new route [ 157.277152][ T6754] netlink: 342 bytes leftover after parsing attributes in process `syz.3.280'. [ 157.507523][ T30] audit: type=1326 audit(1754365134.470:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6758 comm="syz.1.282" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff00b98eb69 code=0x0 [ 157.569116][ T6762] FAULT_INJECTION: forcing a failure. [ 157.569116][ T6762] name failslab, interval 1, probability 0, space 0, times 0 [ 157.630322][ T6762] CPU: 1 UID: 0 PID: 6762 Comm: syz.3.283 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 157.630369][ T6762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 157.630389][ T6762] Call Trace: [ 157.630400][ T6762] [ 157.630412][ T6762] dump_stack_lvl+0x16c/0x1f0 [ 157.630452][ T6762] should_fail_ex+0x512/0x640 [ 157.630493][ T6762] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 157.630540][ T6762] should_failslab+0xc2/0x120 [ 157.630586][ T6762] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 157.630628][ T6762] ? __alloc_skb+0x2b2/0x380 [ 157.630665][ T6762] __alloc_skb+0x2b2/0x380 [ 157.630696][ T6762] ? __pfx___alloc_skb+0x10/0x10 [ 157.630744][ T6762] tipc_buf_acquire+0x26/0xe0 [ 157.630792][ T6762] tipc_msg_build+0x112/0x1150 [ 157.630860][ T6762] ? __pfx_tipc_msg_build+0x10/0x10 [ 157.630918][ T6762] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 157.630967][ T6762] __tipc_sendmsg+0xa30/0x19a0 [ 157.631027][ T6762] ? __pfx___tipc_sendmsg+0x10/0x10 [ 157.631071][ T6762] ? __lock_acquire+0xb97/0x1ce0 [ 157.631129][ T6762] ? __pfx_woken_wake_function+0x10/0x10 [ 157.631208][ T6762] ? __local_bh_enable_ip+0xa4/0x120 [ 157.631254][ T6762] tipc_sendmsg+0x4f/0x70 [ 157.631300][ T6762] sock_write_iter+0x4fc/0x5b0 [ 157.631347][ T6762] ? __pfx_sock_write_iter+0x10/0x10 [ 157.631410][ T6762] ? __futex_wait+0x24c/0x2f0 [ 157.631461][ T6762] ? copy_iovec_from_user+0x131/0x170 [ 157.631512][ T6762] do_iter_readv_writev+0x654/0x950 [ 157.631552][ T6762] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 157.631597][ T6762] ? bpf_lsm_file_permission+0x9/0x10 [ 157.631647][ T6762] ? security_file_permission+0x71/0x210 [ 157.631689][ T6762] ? rw_verify_area+0xcf/0x6c0 [ 157.631727][ T6762] vfs_writev+0x35f/0xde0 [ 157.631768][ T6762] ? __lock_acquire+0x62e/0x1ce0 [ 157.631825][ T6762] ? __pfx_vfs_writev+0x10/0x10 [ 157.631894][ T6762] ? __fget_files+0x20e/0x3c0 [ 157.631943][ T6762] ? do_writev+0x28c/0x340 [ 157.631975][ T6762] do_writev+0x28c/0x340 [ 157.632011][ T6762] ? __pfx_do_writev+0x10/0x10 [ 157.632059][ T6762] do_syscall_64+0xcd/0x490 [ 157.632100][ T6762] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.632133][ T6762] RIP: 0033:0x7fd03db8eb69 [ 157.632159][ T6762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 157.632190][ T6762] RSP: 002b:00007fd03e980038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 157.632221][ T6762] RAX: ffffffffffffffda RBX: 00007fd03ddb5fa0 RCX: 00007fd03db8eb69 [ 157.632244][ T6762] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 157.632264][ T6762] RBP: 00007fd03dc11df1 R08: 0000000000000000 R09: 0000000000000000 [ 157.632285][ T6762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 157.632305][ T6762] R13: 0000000000000000 R14: 00007fd03ddb5fa0 R15: 00007ffd41d38838 [ 157.632348][ T6762] [ 159.322887][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805b91bc00: rx timeout, send abort [ 159.831268][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805b91bc00: abort rx timeout. Force session deactivation [ 160.071544][ T6800] netlink: 4 bytes leftover after parsing attributes in process `syz.0.296'. [ 160.125546][ T6800] netlink: 25 bytes leftover after parsing attributes in process `syz.0.296'. [ 161.045962][ T6818] netlink: 8 bytes leftover after parsing attributes in process `syz.3.302'. [ 161.167891][ T6820] netlink: 138 bytes leftover after parsing attributes in process `syz.3.303'. [ 162.228059][ T6837] FAULT_INJECTION: forcing a failure. [ 162.228059][ T6837] name failslab, interval 1, probability 0, space 0, times 0 [ 162.274515][ T6837] CPU: 1 UID: 0 PID: 6837 Comm: syz.0.308 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 162.274566][ T6837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 162.274586][ T6837] Call Trace: [ 162.274597][ T6837] [ 162.274609][ T6837] dump_stack_lvl+0x16c/0x1f0 [ 162.274650][ T6837] should_fail_ex+0x512/0x640 [ 162.274691][ T6837] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 162.274730][ T6837] should_failslab+0xc2/0x120 [ 162.274773][ T6837] __kmalloc_cache_noprof+0x6a/0x3e0 [ 162.274809][ T6837] ? tty_open+0x13e/0xf90 [ 162.274850][ T6837] ? __pfx_tty_open+0x10/0x10 [ 162.274890][ T6837] tty_open+0x13e/0xf90 [ 162.274937][ T6837] ? __pfx_tty_open+0x10/0x10 [ 162.274977][ T6837] ? chrdev_open+0x58c/0x6a0 [ 162.275024][ T6837] ? __pfx_tty_open+0x10/0x10 [ 162.275064][ T6837] chrdev_open+0x234/0x6a0 [ 162.275108][ T6837] ? __pfx_chrdev_open+0x10/0x10 [ 162.275152][ T6837] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 162.275197][ T6837] do_dentry_open+0x982/0x1530 [ 162.275239][ T6837] ? __pfx_chrdev_open+0x10/0x10 [ 162.275301][ T6837] vfs_open+0x82/0x3f0 [ 162.275356][ T6837] path_openat+0x1de4/0x2cb0 [ 162.275410][ T6837] ? __pfx_path_openat+0x10/0x10 [ 162.275463][ T6837] do_filp_open+0x20b/0x470 [ 162.275504][ T6837] ? __pfx_do_filp_open+0x10/0x10 [ 162.275573][ T6837] ? alloc_fd+0x471/0x7d0 [ 162.275621][ T6837] do_sys_openat2+0x11b/0x1d0 [ 162.275672][ T6837] ? __pfx_do_sys_openat2+0x10/0x10 [ 162.275741][ T6837] __x64_sys_openat+0x174/0x210 [ 162.275794][ T6837] ? __pfx___x64_sys_openat+0x10/0x10 [ 162.275864][ T6837] do_syscall_64+0xcd/0x490 [ 162.275904][ T6837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 162.275937][ T6837] RIP: 0033:0x7fdcd7d8eb69 [ 162.275963][ T6837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 162.275996][ T6837] RSP: 002b:00007fdcd8b2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 162.276028][ T6837] RAX: ffffffffffffffda RBX: 00007fdcd7fb5fa0 RCX: 00007fdcd7d8eb69 [ 162.276050][ T6837] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 162.276071][ T6837] RBP: 00007fdcd7e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 162.276091][ T6837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 162.276110][ T6837] R13: 0000000000000000 R14: 00007fdcd7fb5fa0 R15: 00007ffdf5287b48 [ 162.276152][ T6837] [ 163.070961][ T6847] FAULT_INJECTION: forcing a failure. [ 163.070961][ T6847] name failslab, interval 1, probability 0, space 0, times 0 [ 163.098389][ T6847] CPU: 1 UID: 0 PID: 6847 Comm: syz.3.313 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 163.098441][ T6847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 163.098461][ T6847] Call Trace: [ 163.098472][ T6847] [ 163.098485][ T6847] dump_stack_lvl+0x16c/0x1f0 [ 163.098527][ T6847] should_fail_ex+0x512/0x640 [ 163.098574][ T6847] ? __kmalloc_noprof+0xbf/0x510 [ 163.098617][ T6847] ? lsm_blob_alloc+0x68/0x90 [ 163.098661][ T6847] should_failslab+0xc2/0x120 [ 163.098706][ T6847] __kmalloc_noprof+0xd2/0x510 [ 163.098757][ T6847] lsm_blob_alloc+0x68/0x90 [ 163.098805][ T6847] security_sk_alloc+0x30/0x270 [ 163.098870][ T6847] sk_prot_alloc+0xfb/0x2a0 [ 163.098918][ T6847] sk_alloc+0x36/0xc20 [ 163.098952][ T6847] inet6_create+0x381/0x12b0 [ 163.099001][ T6847] ? inet6_create+0x7f/0x12b0 [ 163.099051][ T6847] __sock_create+0x338/0x8d0 [ 163.099105][ T6847] smc_create_clcsk+0x37/0xd0 [ 163.099154][ T6847] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 163.099193][ T6847] inet6_create+0xb2d/0x12b0 [ 163.099253][ T6847] ? inet6_create+0x7f/0x12b0 [ 163.099303][ T6847] __sock_create+0x338/0x8d0 [ 163.099358][ T6847] __sys_socket+0x14d/0x260 [ 163.099405][ T6847] ? __pfx___sys_socket+0x10/0x10 [ 163.099453][ T6847] ? xfd_validate_state+0x61/0x180 [ 163.099501][ T6847] ? __pfx_do_writev+0x10/0x10 [ 163.099546][ T6847] __x64_sys_socket+0x72/0xb0 [ 163.099591][ T6847] ? lockdep_hardirqs_on+0x7c/0x110 [ 163.099623][ T6847] do_syscall_64+0xcd/0x490 [ 163.099669][ T6847] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 163.099703][ T6847] RIP: 0033:0x7fd03db8eb69 [ 163.099730][ T6847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 163.099762][ T6847] RSP: 002b:00007fd03e980038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 163.099790][ T6847] RAX: ffffffffffffffda RBX: 00007fd03ddb5fa0 RCX: 00007fd03db8eb69 [ 163.099810][ T6847] RDX: 0000000000000100 RSI: 0000000000000001 RDI: 000000000000000a [ 163.099838][ T6847] RBP: 00007fd03dc11df1 R08: 0000000000000000 R09: 0000000000000000 [ 163.099857][ T6847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 163.099876][ T6847] R13: 0000000000000000 R14: 00007fd03ddb5fa0 R15: 00007ffd41d38838 [ 163.099914][ T6847] [ 163.919596][ T6858] FAULT_INJECTION: forcing a failure. [ 163.919596][ T6858] name failslab, interval 1, probability 0, space 0, times 0 [ 163.919660][ T6858] CPU: 1 UID: 0 PID: 6858 Comm: syz.1.318 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 163.919691][ T6858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 163.919705][ T6858] Call Trace: [ 163.919713][ T6858] [ 163.919721][ T6858] dump_stack_lvl+0x16c/0x1f0 [ 163.919751][ T6858] should_fail_ex+0x512/0x640 [ 163.919799][ T6858] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 163.919863][ T6858] should_failslab+0xc2/0x120 [ 163.919920][ T6858] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 163.919964][ T6858] ? d_instantiate+0x77/0x90 [ 163.920010][ T6858] ? alloc_empty_file+0x55/0x1e0 [ 163.920068][ T6858] alloc_empty_file+0x55/0x1e0 [ 163.920122][ T6858] alloc_file_pseudo+0x13a/0x230 [ 163.920180][ T6858] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 163.920252][ T6858] ioctx_alloc+0x5ab/0x2120 [ 163.920310][ T6858] ? find_held_lock+0x2b/0x80 [ 163.920347][ T6858] ? __pfx_ioctx_alloc+0x10/0x10 [ 163.920385][ T6858] ? __might_fault+0x13b/0x190 [ 163.920438][ T6858] __x64_sys_io_setup+0xc9/0x210 [ 163.920484][ T6858] do_syscall_64+0xcd/0x490 [ 163.920528][ T6858] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 163.920565][ T6858] RIP: 0033:0x7ff00b98eb69 [ 163.920594][ T6858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 163.920628][ T6858] RSP: 002b:00007ff00c80d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce [ 163.920660][ T6858] RAX: ffffffffffffffda RBX: 00007ff00bbb5fa0 RCX: 00007ff00b98eb69 [ 163.920684][ T6858] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff [ 163.920707][ T6858] RBP: 00007ff00ba11df1 R08: 0000000000000000 R09: 0000000000000000 [ 163.920728][ T6858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 163.920749][ T6858] R13: 0000000000000000 R14: 00007ff00bbb5fa0 R15: 00007ffc3f4014d8 [ 163.920796][ T6858] [ 164.313405][ T6864] sp0: Synchronizing with TNC [ 164.515440][ T6860] FAULT_INJECTION: forcing a failure. [ 164.515440][ T6860] name failslab, interval 1, probability 0, space 0, times 0 [ 164.515568][ T6860] CPU: 1 UID: 0 PID: 6860 Comm: syz.0.317 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 164.515608][ T6860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 164.515627][ T6860] Call Trace: [ 164.515636][ T6860] [ 164.515648][ T6860] dump_stack_lvl+0x16c/0x1f0 [ 164.515690][ T6860] should_fail_ex+0x512/0x640 [ 164.515729][ T6860] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 164.515775][ T6860] should_failslab+0xc2/0x120 [ 164.515819][ T6860] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 164.515858][ T6860] ? __pfx___might_resched+0x10/0x10 [ 164.515890][ T6860] ? __alloc_skb+0x2b2/0x380 [ 164.515921][ T6860] ? rcu_is_watching+0x12/0xc0 [ 164.515966][ T6860] __alloc_skb+0x2b2/0x380 [ 164.515993][ T6860] ? __pfx___alloc_skb+0x10/0x10 [ 164.516017][ T6860] ? rcu_is_watching+0x12/0xc0 [ 164.516061][ T6860] inet6_ifmcaddr_notify+0xd6/0x1d0 [ 164.516125][ T6860] ? __pfx_inet6_ifmcaddr_notify+0x10/0x10 [ 164.516187][ T6860] __ipv6_dev_mc_dec+0x297/0x340 [ 164.516228][ T6860] ipv6_mc_destroy_dev+0x2cd/0x690 [ 164.516266][ T6860] ? __local_bh_enable_ip+0xa4/0x120 [ 164.516314][ T6860] addrconf_ifdown.isra.0+0x1400/0x1aa0 [ 164.516380][ T6860] ? __pfx_addrconf_ifdown.isra.0+0x10/0x10 [ 164.516449][ T6860] addrconf_notify+0x220/0x19e0 [ 164.516476][ T6860] ? ip6mr_device_event+0x1bc/0x230 [ 164.516516][ T6860] notifier_call_chain+0xbc/0x410 [ 164.516562][ T6860] ? __pfx_addrconf_notify+0x10/0x10 [ 164.516597][ T6860] call_netdevice_notifiers_info+0xbe/0x140 [ 164.516648][ T6860] unregister_netdevice_many_notify+0xf76/0x24c0 [ 164.516696][ T6860] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 164.516732][ T6860] ? ppp_release+0x167/0x230 [ 164.516771][ T6860] ? __pfx___mutex_lock+0x10/0x10 [ 164.516809][ T6860] unregister_netdevice_queue+0x305/0x3f0 [ 164.516845][ T6860] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 164.516884][ T6860] ? __pfx_locks_remove_file+0x10/0x10 [ 164.516929][ T6860] ? __pfx_ppp_release+0x10/0x10 [ 164.516961][ T6860] ppp_release+0x209/0x230 [ 164.516993][ T6860] __fput+0x402/0xb70 [ 164.517060][ T6860] task_work_run+0x150/0x240 [ 164.517109][ T6860] ? __pfx_task_work_run+0x10/0x10 [ 164.517168][ T6860] ? __pfx___do_sys_close_range+0x10/0x10 [ 164.517222][ T6860] exit_to_user_mode_loop+0xeb/0x110 [ 164.517273][ T6860] do_syscall_64+0x3f6/0x490 [ 164.517306][ T6860] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 164.517342][ T6860] RIP: 0033:0x7fdcd7d8eb69 [ 164.517365][ T6860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 164.517394][ T6860] RSP: 002b:00007fdcd8b2d038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 164.517421][ T6860] RAX: 0000000000000000 RBX: 00007fdcd7fb5fa0 RCX: 00007fdcd7d8eb69 [ 164.517440][ T6860] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 164.517456][ T6860] RBP: 00007fdcd7e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 164.517473][ T6860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 164.517489][ T6860] R13: 0000000000000000 R14: 00007fdcd7fb5fa0 R15: 00007ffdf5287b48 [ 164.517525][ T6860] [ 165.224675][ T6872] FAULT_INJECTION: forcing a failure. [ 165.224675][ T6872] name failslab, interval 1, probability 0, space 0, times 0 [ 165.224724][ T6872] CPU: 1 UID: 0 PID: 6872 Comm: syz.1.323 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 165.224778][ T6872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 165.224798][ T6872] Call Trace: [ 165.224809][ T6872] [ 165.224821][ T6872] dump_stack_lvl+0x16c/0x1f0 [ 165.224861][ T6872] should_fail_ex+0x512/0x640 [ 165.224901][ T6872] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 165.224942][ T6872] should_failslab+0xc2/0x120 [ 165.224987][ T6872] __kmalloc_cache_noprof+0x6a/0x3e0 [ 165.225023][ T6872] ? single_open+0x4d/0x1f0 [ 165.225080][ T6872] ? __pfx_show_smaps_rollup+0x10/0x10 [ 165.225120][ T6872] single_open+0x4d/0x1f0 [ 165.225187][ T6872] smaps_rollup_open+0x6f/0x170 [ 165.225227][ T6872] do_dentry_open+0x982/0x1530 [ 165.225271][ T6872] ? __pfx_smaps_rollup_open+0x10/0x10 [ 165.225317][ T6872] vfs_open+0x82/0x3f0 [ 165.225373][ T6872] path_openat+0x1de4/0x2cb0 [ 165.225428][ T6872] ? __pfx_path_openat+0x10/0x10 [ 165.225481][ T6872] do_filp_open+0x20b/0x470 [ 165.225522][ T6872] ? __pfx_do_filp_open+0x10/0x10 [ 165.225577][ T6872] ? __pfx_kfree_link+0x10/0x10 [ 165.225642][ T6872] ? alloc_fd+0x471/0x7d0 [ 165.225690][ T6872] do_sys_openat2+0x11b/0x1d0 [ 165.225741][ T6872] ? __pfx_do_sys_openat2+0x10/0x10 [ 165.225819][ T6872] __x64_sys_openat+0x174/0x210 [ 165.225874][ T6872] ? __pfx___x64_sys_openat+0x10/0x10 [ 165.225945][ T6872] do_syscall_64+0xcd/0x490 [ 165.225985][ T6872] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.226019][ T6872] RIP: 0033:0x7ff00b98eb69 [ 165.226046][ T6872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 165.226079][ T6872] RSP: 002b:00007ff00c80d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 165.226111][ T6872] RAX: ffffffffffffffda RBX: 00007ff00bbb5fa0 RCX: 00007ff00b98eb69 [ 165.226133][ T6872] RDX: 00000000001a3000 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 165.226168][ T6872] RBP: 00007ff00ba11df1 R08: 0000000000000000 R09: 0000000000000000 [ 165.226189][ T6872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 165.226210][ T6872] R13: 0000000000000000 R14: 00007ff00bbb5fa0 R15: 00007ffc3f4014d8 [ 165.226253][ T6872] [ 165.441269][ T6878] netlink: 342 bytes leftover after parsing attributes in process `syz.1.325'. [ 165.449329][ T6878] netlink: 342 bytes leftover after parsing attributes in process `syz.1.325'. [ 165.449669][ T6878] netlink: 342 bytes leftover after parsing attributes in process `syz.1.325'. [ 165.450071][ T6878] netlink: 342 bytes leftover after parsing attributes in process `syz.1.325'. [ 166.938181][ T6899] netlink: 54 bytes leftover after parsing attributes in process `syz.1.332'. [ 166.938920][ T6898] ima: policy update failed [ 166.992660][ T30] audit: type=1802 audit(1754365143.900:5): pid=6898 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.332" res=0 errno=0 [ 167.441255][ T6908] FAULT_INJECTION: forcing a failure. [ 167.441255][ T6908] name failslab, interval 1, probability 0, space 0, times 0 [ 167.498800][ T6908] CPU: 1 UID: 0 PID: 6908 Comm: syz.0.336 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 167.498847][ T6908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 167.498867][ T6908] Call Trace: [ 167.498878][ T6908] [ 167.498891][ T6908] dump_stack_lvl+0x16c/0x1f0 [ 167.498934][ T6908] should_fail_ex+0x512/0x640 [ 167.498974][ T6908] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 167.499013][ T6908] should_failslab+0xc2/0x120 [ 167.499060][ T6908] __kmalloc_cache_noprof+0x6a/0x3e0 [ 167.499096][ T6908] ? copy_time_ns+0xf6/0x580 [ 167.499136][ T6908] copy_time_ns+0xf6/0x580 [ 167.499167][ T6908] ? copy_cgroup_ns+0x71/0x700 [ 167.499207][ T6908] create_new_namespaces+0x48a/0xa90 [ 167.499256][ T6908] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 167.499300][ T6908] ksys_unshare+0x45b/0xa40 [ 167.499347][ T6908] ? __pfx_ksys_unshare+0x10/0x10 [ 167.499393][ T6908] ? xfd_validate_state+0x61/0x180 [ 167.499456][ T6908] __x64_sys_unshare+0x31/0x40 [ 167.499502][ T6908] do_syscall_64+0xcd/0x490 [ 167.499542][ T6908] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 167.499588][ T6908] RIP: 0033:0x7fdcd7d8eb69 [ 167.499615][ T6908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 167.499648][ T6908] RSP: 002b:00007fdcd8b2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 167.499679][ T6908] RAX: ffffffffffffffda RBX: 00007fdcd7fb5fa0 RCX: 00007fdcd7d8eb69 [ 167.499701][ T6908] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 167.499720][ T6908] RBP: 00007fdcd7e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 167.499740][ T6908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 167.499763][ T6908] R13: 0000000000000000 R14: 00007fdcd7fb5fa0 R15: 00007ffdf5287b48 [ 167.499800][ T6908] [ 168.013153][ T6913] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 168.290458][ T6925] netlink: 342 bytes leftover after parsing attributes in process `syz.3.341'. [ 168.312409][ T6925] netlink: 342 bytes leftover after parsing attributes in process `syz.3.341'. [ 168.349471][ T6925] netlink: 342 bytes leftover after parsing attributes in process `syz.3.341'. [ 168.381470][ T6925] netlink: 302 bytes leftover after parsing attributes in process `syz.3.341'. [ 168.804358][ T6935] netlink: 'syz.2.345': attribute type 4 has an invalid length. [ 168.821051][ T6933] netlink: 13 bytes leftover after parsing attributes in process `syz.1.344'. [ 169.151800][ T6941] loop6: detected capacity change from 0 to 8 [ 169.496997][ T6948] FAULT_INJECTION: forcing a failure. [ 169.496997][ T6948] name failslab, interval 1, probability 0, space 0, times 0 [ 169.515298][ T6948] CPU: 1 UID: 0 PID: 6948 Comm: syz.1.349 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 169.515347][ T6948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 169.515375][ T6948] Call Trace: [ 169.515386][ T6948] [ 169.515399][ T6948] dump_stack_lvl+0x16c/0x1f0 [ 169.515440][ T6948] should_fail_ex+0x512/0x640 [ 169.515480][ T6948] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 169.515519][ T6948] should_failslab+0xc2/0x120 [ 169.515564][ T6948] __kmalloc_cache_noprof+0x6a/0x3e0 [ 169.515599][ T6948] ? debug_mutex_init+0x37/0x70 [ 169.515628][ T6948] ? do_inotify_init+0xa2/0x5f0 [ 169.515677][ T6948] do_inotify_init+0xa2/0x5f0 [ 169.515720][ T6948] ? rcu_is_watching+0x12/0xc0 [ 169.515753][ T6948] __x64_sys_inotify_init1+0x30/0x40 [ 169.515795][ T6948] do_syscall_64+0xcd/0x490 [ 169.515829][ T6948] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 169.515859][ T6948] RIP: 0033:0x7ff00b98eb69 [ 169.515882][ T6948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 169.515910][ T6948] RSP: 002b:00007ff00c80d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000126 [ 169.515938][ T6948] RAX: ffffffffffffffda RBX: 00007ff00bbb5fa0 RCX: 00007ff00b98eb69 [ 169.515957][ T6948] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0003000000000000 [ 169.515974][ T6948] RBP: 00007ff00ba11df1 R08: 0000000000000000 R09: 0000000000000000 [ 169.515992][ T6948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 169.516009][ T6948] R13: 0000000000000000 R14: 00007ff00bbb5fa0 R15: 00007ffc3f4014d8 [ 169.516044][ T6948] [ 171.478180][ T6971] FAULT_INJECTION: forcing a failure. [ 171.478180][ T6971] name failslab, interval 1, probability 0, space 0, times 0 [ 171.586851][ T6971] CPU: 0 UID: 0 PID: 6971 Comm: syz.1.358 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 171.586901][ T6971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 171.586920][ T6971] Call Trace: [ 171.586931][ T6971] [ 171.586944][ T6971] dump_stack_lvl+0x16c/0x1f0 [ 171.586986][ T6971] should_fail_ex+0x512/0x640 [ 171.587026][ T6971] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 171.587073][ T6971] should_failslab+0xc2/0x120 [ 171.587120][ T6971] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 171.587171][ T6971] ? ptlock_alloc+0x1f/0x70 [ 171.587211][ T6971] ptlock_alloc+0x1f/0x70 [ 171.587244][ T6971] pte_alloc_one+0x82/0x3a0 [ 171.587280][ T6971] __pte_alloc+0x6d/0x3c0 [ 171.587326][ T6971] ? __pfx___pte_alloc+0x10/0x10 [ 171.587371][ T6971] ? __pfx___might_resched+0x10/0x10 [ 171.587404][ T6971] ? copy_page_range+0x1fa8/0x5c80 [ 171.587451][ T6971] copy_page_range+0x3b83/0x5c80 [ 171.587536][ T6971] ? __pfx_copy_page_range+0x10/0x10 [ 171.587586][ T6971] ? __pfx___might_resched+0x10/0x10 [ 171.587618][ T6971] ? __pfx_mas_store+0x10/0x10 [ 171.587655][ T6971] ? __vma_enter_locked+0x163/0x3f0 [ 171.587693][ T6971] ? dup_mmap+0xe38/0x21d0 [ 171.587742][ T6971] ? down_write+0x14d/0x200 [ 171.587786][ T6971] ? up_write+0x1b2/0x520 [ 171.587839][ T6971] dup_mmap+0xe88/0x21d0 [ 171.587906][ T6971] ? __pfx_dup_mmap+0x10/0x10 [ 171.587986][ T6971] copy_process+0x4081/0x7690 [ 171.588030][ T6971] ? __pfx___futex_wait+0x10/0x10 [ 171.588098][ T6971] ? __pfx_copy_process+0x10/0x10 [ 171.588141][ T6971] ? futex_private_hash_put+0x176/0x300 [ 171.588188][ T6971] ? futex_private_hash_put+0x18a/0x300 [ 171.588249][ T6971] kernel_clone+0xfc/0x930 [ 171.588297][ T6971] ? __pfx_kernel_clone+0x10/0x10 [ 171.588367][ T6971] __do_sys_clone+0xce/0x120 [ 171.588410][ T6971] ? __pfx___do_sys_clone+0x10/0x10 [ 171.588459][ T6971] ? ksys_unshare+0x687/0xa40 [ 171.588523][ T6971] ? xfd_validate_state+0x61/0x180 [ 171.588589][ T6971] do_syscall_64+0xcd/0x490 [ 171.588628][ T6971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 171.588661][ T6971] RIP: 0033:0x7ff00b98eb69 [ 171.588688][ T6971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 171.588721][ T6971] RSP: 002b:00007ff00c7ebfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 171.588752][ T6971] RAX: ffffffffffffffda RBX: 00007ff00bbb6080 RCX: 00007ff00b98eb69 [ 171.588775][ T6971] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411 [ 171.588795][ T6971] RBP: 00007ff00ba11df1 R08: 0000000000000000 R09: 0000000000000000 [ 171.588815][ T6971] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 171.588835][ T6971] R13: 0000000000000000 R14: 00007ff00bbb6080 R15: 00007ffc3f4014d8 [ 171.588879][ T6971] [ 171.955311][ T6981] __nla_validate_parse: 1 callbacks suppressed [ 171.955336][ T6981] netlink: 146 bytes leftover after parsing attributes in process `syz.2.360'. [ 173.099679][ T7001] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 173.915535][ T7008] netlink: 326 bytes leftover after parsing attributes in process `syz.2.369'. [ 174.072449][ T7012] netlink: 354 bytes leftover after parsing attributes in process `syz.3.370'. [ 174.268169][ T7016] vivid-003: ================= START STATUS ================= [ 174.294611][ T7016] vivid-003: Radio HW Seek Mode: Bounded [ 174.313581][ T7016] vivid-003: Radio Programmable HW Seek: false [ 174.329939][ T7016] vivid-003: RDS Rx I/O Mode: Block I/O [ 174.335762][ T7016] vivid-003: Generate RBDS Instead of RDS: false [ 174.343208][ T7016] vivid-003: RDS Reception: true [ 174.348421][ T7016] vivid-003: RDS Program Type: 0 inactive [ 174.383701][ T7016] vivid-003: RDS PS Name: inactive [ 174.398358][ T7016] vivid-003: RDS Radio Text: inactive [ 174.421844][ T7016] vivid-003: RDS Traffic Announcement: false inactive [ 174.445830][ T7016] vivid-003: RDS Traffic Program: false inactive [ 174.472227][ T7016] vivid-003: RDS Music: false inactive [ 174.487909][ T7016] vivid-003: ================== END STATUS ================== [ 174.843622][ T7026] netlink: 4 bytes leftover after parsing attributes in process `syz.1.376'. [ 174.855687][ T7027] netlink: 338 bytes leftover after parsing attributes in process `syz.3.375'. [ 176.212060][ T7048] netlink: 28 bytes leftover after parsing attributes in process `syz.1.384'. [ 176.240581][ T7048] bridge_slave_1: left allmulticast mode [ 176.257445][ T7048] bridge_slave_1: left promiscuous mode [ 176.275849][ T7048] bridge0: port 2(bridge_slave_1) entered disabled state [ 176.381252][ T7048] bridge_slave_0: left allmulticast mode [ 176.387164][ T7048] bridge_slave_0: left promiscuous mode [ 176.397853][ T7048] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.730122][ T7082] netlink: 'syz.2.396': attribute type 4 has an invalid length. [ 178.737847][ T7082] netlink: 314 bytes leftover after parsing attributes in process `syz.2.396'. [ 178.783943][ T7082] IPv6: NLM_F_CREATE should be specified when creating new route [ 178.792122][ T7082] IPv6: NLM_F_REPLACE set, but no existing node found! [ 181.391630][ T7129] netlink: 330 bytes leftover after parsing attributes in process `syz.0.412'. [ 181.423393][ T7127] FAULT_INJECTION: forcing a failure. [ 181.423393][ T7127] name failslab, interval 1, probability 0, space 0, times 0 [ 181.511923][ T7127] CPU: 1 UID: 0 PID: 7127 Comm: syz.1.411 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 181.511973][ T7127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 181.511994][ T7127] Call Trace: [ 181.512005][ T7127] [ 181.512018][ T7127] dump_stack_lvl+0x16c/0x1f0 [ 181.512057][ T7127] should_fail_ex+0x512/0x640 [ 181.512097][ T7127] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 181.512144][ T7127] should_failslab+0xc2/0x120 [ 181.512191][ T7127] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 181.512232][ T7127] ? acpi_ut_create_generic_state+0x5c/0xb0 [ 181.512304][ T7127] acpi_ut_create_generic_state+0x5c/0xb0 [ 181.512359][ T7127] acpi_ds_scope_stack_push+0x4b/0x1d0 [ 181.512401][ T7127] acpi_ds_init_aml_walk+0x2bb/0x590 [ 181.512446][ T7127] acpi_ps_execute_method+0x32d/0xb30 [ 181.512489][ T7127] ? acpi_ut_acquire_mutex+0x125/0x1d0 [ 181.512539][ T7127] acpi_ns_evaluate+0x76c/0xca0 [ 181.512583][ T7127] ? kasan_save_track+0x14/0x30 [ 181.512626][ T7127] acpi_evaluate_object+0x1fa/0xa90 [ 181.512685][ T7127] ? do_syscall_64+0xcd/0x490 [ 181.512719][ T7127] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.512756][ T7127] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 181.512813][ T7127] ? __mutex_trylock_common+0xe9/0x250 [ 181.512866][ T7127] acpi_evaluate_integer+0xdd/0x200 [ 181.512916][ T7127] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 181.512992][ T7127] ? __pfx_status_show+0x10/0x10 [ 181.513025][ T7127] status_show+0xa0/0x120 [ 181.513059][ T7127] ? __pfx_status_show+0x10/0x10 [ 181.513105][ T7127] dev_attr_show+0x53/0xe0 [ 181.513153][ T7127] ? __pfx_dev_attr_show+0x10/0x10 [ 181.513196][ T7127] sysfs_kf_seq_show+0x213/0x3e0 [ 181.513244][ T7127] seq_read_iter+0x509/0x12c0 [ 181.513286][ T7127] ? __mutex_trylock_common+0xe9/0x250 [ 181.513349][ T7127] kernfs_fop_read_iter+0x40f/0x5a0 [ 181.513382][ T7127] ? rw_verify_area+0xcf/0x6c0 [ 181.513421][ T7127] vfs_read+0x8bf/0xc60 [ 181.513465][ T7127] ? __pfx___mutex_lock+0x10/0x10 [ 181.513501][ T7127] ? __pfx_vfs_read+0x10/0x10 [ 181.513568][ T7127] ksys_read+0x12a/0x250 [ 181.513606][ T7127] ? __pfx_ksys_read+0x10/0x10 [ 181.513658][ T7127] do_syscall_64+0xcd/0x490 [ 181.513697][ T7127] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.513731][ T7127] RIP: 0033:0x7ff00b98eb69 [ 181.513757][ T7127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.513789][ T7127] RSP: 002b:00007ff00c80d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 181.513821][ T7127] RAX: ffffffffffffffda RBX: 00007ff00bbb5fa0 RCX: 00007ff00b98eb69 [ 181.513842][ T7127] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000003 [ 181.513862][ T7127] RBP: 00007ff00ba11df1 R08: 0000000000000000 R09: 0000000000000000 [ 181.513882][ T7127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 181.513901][ T7127] R13: 0000000000000000 R14: 00007ff00bbb5fa0 R15: 00007ffc3f4014d8 [ 181.513944][ T7127] [ 181.514055][ T7127] ACPI Error: [ 181.858974][ T7136] FAULT_INJECTION: forcing a failure. [ 181.858974][ T7136] name failslab, interval 1, probability 0, space 0, times 0 [ 181.916835][ T7127] ffff88807a9c7000 walk still has a scope list (20250404/dswstate-694) [ 181.935481][ T7136] CPU: 1 UID: 0 PID: 7136 Comm: syz.3.413 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 181.935529][ T7136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 181.935549][ T7136] Call Trace: [ 181.935559][ T7136] [ 181.935571][ T7136] dump_stack_lvl+0x16c/0x1f0 [ 181.935611][ T7136] should_fail_ex+0x512/0x640 [ 181.935651][ T7136] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 181.935702][ T7136] should_failslab+0xc2/0x120 [ 181.935749][ T7136] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 181.935791][ T7136] ? radix_tree_node_alloc.constprop.0+0x7c/0x350 [ 181.935851][ T7136] radix_tree_node_alloc.constprop.0+0x7c/0x350 [ 181.935913][ T7136] radix_tree_insert+0x247/0x630 [ 181.935977][ T7136] qrtr_node_enqueue+0x1077/0x12e0 [ 181.936026][ T7136] ? __asan_memcpy+0x3c/0x60 [ 181.936064][ T7136] ? __pfx_qrtr_node_enqueue+0x10/0x10 [ 181.936102][ T7136] ? skb_set_owner_w+0x31f/0x710 [ 181.936155][ T7136] ? skb_copy_header+0x20/0x2b0 [ 181.936208][ T7136] ? __pfx_skb_set_owner_w+0x10/0x10 [ 181.936310][ T7136] ? __pskb_copy_fclone+0x48e/0xb50 [ 181.936351][ T7136] ? __pfx__copy_from_iter+0x10/0x10 [ 181.936407][ T7136] qrtr_bcast_enqueue+0xc7/0x1b0 [ 181.936458][ T7136] qrtr_sendmsg+0x444/0x7b0 [ 181.936499][ T7136] ? __pfx_qrtr_bcast_enqueue+0x10/0x10 [ 181.936537][ T7136] ? __pfx_qrtr_sendmsg+0x10/0x10 [ 181.936584][ T7136] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 181.936646][ T7136] sock_write_iter+0x4fc/0x5b0 [ 181.936694][ T7136] ? __pfx_sock_write_iter+0x10/0x10 [ 181.936758][ T7136] ? __futex_wait+0x24c/0x2f0 [ 181.936811][ T7136] ? copy_iovec_from_user+0x131/0x170 [ 181.936861][ T7136] do_iter_readv_writev+0x654/0x950 [ 181.936900][ T7136] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 181.936944][ T7136] ? bpf_lsm_file_permission+0x9/0x10 [ 181.936992][ T7136] ? security_file_permission+0x71/0x210 [ 181.937033][ T7136] ? rw_verify_area+0xcf/0x6c0 [ 181.937069][ T7136] vfs_writev+0x35f/0xde0 [ 181.937109][ T7136] ? __lock_acquire+0x62e/0x1ce0 [ 181.937158][ T7136] ? __pfx_vfs_writev+0x10/0x10 [ 181.937227][ T7136] ? __fget_files+0x20e/0x3c0 [ 181.937287][ T7136] ? do_writev+0x28c/0x340 [ 181.937321][ T7136] do_writev+0x28c/0x340 [ 181.937358][ T7136] ? __pfx_do_writev+0x10/0x10 [ 181.937408][ T7136] do_syscall_64+0xcd/0x490 [ 181.937450][ T7136] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.937484][ T7136] RIP: 0033:0x7fd03db8eb69 [ 181.937511][ T7136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.937543][ T7136] RSP: 002b:00007fd03e980038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 181.937576][ T7136] RAX: ffffffffffffffda RBX: 00007fd03ddb5fa0 RCX: 00007fd03db8eb69 [ 181.937599][ T7136] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 181.937619][ T7136] RBP: 00007fd03dc11df1 R08: 0000000000000000 R09: 0000000000000000 [ 181.937640][ T7136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 181.937659][ T7136] R13: 0000000000000000 R14: 00007fd03ddb5fa0 R15: 00007ffd41d38838 [ 181.937704][ T7136] [ 183.334319][ T7162] openvswitch: netlink: IP tunnel dst address not specified [ 183.752746][ T7169] netlink: 'syz.2.425': attribute type 21 has an invalid length. [ 183.760637][ T7169] netlink: 326 bytes leftover after parsing attributes in process `syz.2.425'. [ 184.501159][ T7182] FAULT_INJECTION: forcing a failure. [ 184.501159][ T7182] name failslab, interval 1, probability 0, space 0, times 0 [ 184.514707][ T7182] CPU: 0 UID: 0 PID: 7182 Comm: syz.3.430 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 184.514762][ T7182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 184.514783][ T7182] Call Trace: [ 184.514794][ T7182] [ 184.514807][ T7182] dump_stack_lvl+0x16c/0x1f0 [ 184.514848][ T7182] should_fail_ex+0x512/0x640 [ 184.514890][ T7182] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 184.514930][ T7182] should_failslab+0xc2/0x120 [ 184.514984][ T7182] __kmalloc_cache_noprof+0x6a/0x3e0 [ 184.515018][ T7182] ? allocate_file_region_entries+0x15b/0x620 [ 184.515059][ T7182] ? allocate_file_region_entries+0x1a0/0x620 [ 184.515106][ T7182] allocate_file_region_entries+0x1a0/0x620 [ 184.515157][ T7182] ? __pfx_allocate_file_region_entries+0x10/0x10 [ 184.515212][ T7182] region_chg+0x85/0x140 [ 184.515254][ T7182] __vma_reservation_common+0x43b/0x740 [ 184.515301][ T7182] ? __pfx___vma_reservation_common+0x10/0x10 [ 184.515346][ T7182] ? __pfx___might_resched+0x10/0x10 [ 184.515380][ T7182] ? folio_zero_user+0x1da/0x7c0 [ 184.515420][ T7182] hugetlb_fault+0x198e/0x2f40 [ 184.515462][ T7182] ? __pfx_hugetlb_fault+0x10/0x10 [ 184.515514][ T7182] ? find_vma+0xbf/0x140 [ 184.515558][ T7182] ? __pfx_find_vma+0x10/0x10 [ 184.515607][ T7182] handle_mm_fault+0xbfa/0xd10 [ 184.515644][ T7182] ? trace_raw_output_exceptions+0x121/0x150 [ 184.515702][ T7182] do_user_addr_fault+0x7a6/0x1370 [ 184.515760][ T7182] ? rcu_is_watching+0x12/0xc0 [ 184.515800][ T7182] exc_page_fault+0x5c/0xb0 [ 184.515834][ T7182] asm_exc_page_fault+0x26/0x30 [ 184.515867][ T7182] RIP: 0010:rep_movs_alternative+0x11/0x90 [ 184.515916][ T7182] Code: e9 14 23 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f [ 184.515948][ T7182] RSP: 0018:ffffc9000ae17db0 EFLAGS: 00050206 [ 184.515983][ T7182] RAX: 000000000000002f RBX: 0000000000000005 RCX: 0000000000000005 [ 184.516003][ T7182] RDX: ffffed100a59dec0 RSI: ffff888052cef5fb RDI: 0000000000000000 [ 184.516025][ T7182] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed100a59debf [ 184.516045][ T7182] R10: ffff888052cef5ff R11: 0000000000000000 R12: ffff888052cef5fb [ 184.516067][ T7182] R13: 0000000000000005 R14: 00007ffffffff000 R15: 0000000000000000 [ 184.516110][ T7182] _copy_to_user+0xbb/0xd0 [ 184.516161][ T7182] __do_sys_getcwd+0x483/0x930 [ 184.516222][ T7182] ? __pfx___do_sys_getcwd+0x10/0x10 [ 184.516268][ T7182] ? fput+0x9b/0xd0 [ 184.516316][ T7182] ? xfd_validate_state+0x61/0x180 [ 184.516366][ T7182] ? __pfx_ksys_write+0x10/0x10 [ 184.516419][ T7182] do_syscall_64+0xcd/0x490 [ 184.516459][ T7182] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.516493][ T7182] RIP: 0033:0x7fd03db8eb69 [ 184.516518][ T7182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 184.516549][ T7182] RSP: 002b:00007fd03e980038 EFLAGS: 00000246 ORIG_RAX: 000000000000004f [ 184.516579][ T7182] RAX: ffffffffffffffda RBX: 00007fd03ddb5fa0 RCX: 00007fd03db8eb69 [ 184.516601][ T7182] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000000 [ 184.516621][ T7182] RBP: 00007fd03dc11df1 R08: 0000000000000000 R09: 0000000000000000 [ 184.516642][ T7182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 184.516662][ T7182] R13: 0000000000000000 R14: 00007fd03ddb5fa0 R15: 00007ffd41d38838 [ 184.516706][ T7182] [ 188.078481][ T7229] zswap: compressor 000 not available [ 189.346211][ T7254] netlink: 28 bytes leftover after parsing attributes in process `syz.1.456'. [ 189.382265][ T7254] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 189.501491][ T7254] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 190.569917][ T7277] netlink: 186 bytes leftover after parsing attributes in process `syz.2.465'. [ 191.938088][ T7316] netlink: 342 bytes leftover after parsing attributes in process `syz.0.481'. [ 191.952721][ T7316] IPv6: NLM_F_CREATE should be specified when creating new route [ 191.961433][ T7316] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 191.968852][ T7316] IPv6: NLM_F_CREATE should be set when creating new route [ 191.976163][ T7316] IPv6: NLM_F_CREATE should be set when creating new route [ 192.050908][ T7319] FAULT_INJECTION: forcing a failure. [ 192.050908][ T7319] name failslab, interval 1, probability 0, space 0, times 0 [ 192.067026][ T7316] netlink: 342 bytes leftover after parsing attributes in process `syz.0.481'. [ 192.072416][ T7319] CPU: 0 UID: 0 PID: 7319 Comm: syz.1.482 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 192.072473][ T7319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 192.072496][ T7319] Call Trace: [ 192.072507][ T7319] [ 192.072520][ T7319] dump_stack_lvl+0x16c/0x1f0 [ 192.072566][ T7319] should_fail_ex+0x512/0x640 [ 192.072612][ T7319] ? __kmalloc_cache_node_noprof+0x5a/0x420 [ 192.072661][ T7319] should_failslab+0xc2/0x120 [ 192.072714][ T7319] __kmalloc_cache_node_noprof+0x6d/0x420 [ 192.072761][ T7319] ? __get_vm_area_node+0x101/0x330 [ 192.072828][ T7319] __get_vm_area_node+0x101/0x330 [ 192.072893][ T7319] __vmalloc_node_range_noprof+0x271/0x14b0 [ 192.072930][ T7319] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 192.072983][ T7319] ? local_lock_release+0x99/0x140 [ 192.073044][ T7319] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 192.073098][ T7319] ? rcu_read_unlock+0x17/0x60 [ 192.073148][ T7319] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 192.073191][ T7319] ? __memcg_slab_post_alloc_hook+0x4a0/0x960 [ 192.073253][ T7319] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 192.073302][ T7319] __vmalloc_node_noprof+0xad/0xf0 [ 192.073364][ T7319] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 192.073413][ T7319] fpu_alloc_guest_fpstate+0x24/0x450 [ 192.073461][ T7319] kvm_arch_vcpu_create+0x54e/0xb20 [ 192.073525][ T7319] kvm_vm_ioctl+0xfec/0x4000 [ 192.073582][ T7319] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 192.073647][ T7319] ? kasan_quarantine_put+0x10a/0x240 [ 192.073687][ T7319] ? lockdep_hardirqs_on+0x7c/0x110 [ 192.073730][ T7319] ? find_held_lock+0x2b/0x80 [ 192.073768][ T7319] ? tomoyo_path_number_perm+0x295/0x580 [ 192.073819][ T7319] ? tomoyo_path_number_perm+0x18d/0x580 [ 192.073861][ T7319] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 192.073899][ T7319] ? futex_wake+0x1ad/0x530 [ 192.073968][ T7319] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 192.074028][ T7319] ? do_vfs_ioctl+0x128/0x14f0 [ 192.074088][ T7319] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 192.074163][ T7319] ? find_held_lock+0x2b/0x80 [ 192.074199][ T7319] ? hook_file_ioctl_common+0x145/0x410 [ 192.074254][ T7319] ? __fget_files+0x20e/0x3c0 [ 192.074309][ T7319] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 192.074347][ T7319] __x64_sys_ioctl+0x18b/0x210 [ 192.074410][ T7319] do_syscall_64+0xcd/0x490 [ 192.074456][ T7319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.074498][ T7319] RIP: 0033:0x7ff00b98eb69 [ 192.074528][ T7319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 192.074563][ T7319] RSP: 002b:00007ff00c80d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 192.074599][ T7319] RAX: ffffffffffffffda RBX: 00007ff00bbb5fa0 RCX: 00007ff00b98eb69 [ 192.074625][ T7319] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 192.074647][ T7319] RBP: 00007ff00ba11df1 R08: 0000000000000000 R09: 0000000000000000 [ 192.074670][ T7319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 192.074691][ T7319] R13: 0000000000000000 R14: 00007ff00bbb5fa0 R15: 00007ffc3f4014d8 [ 192.074737][ T7319] [ 192.074909][ T7319] syz.1.482: vmalloc error: size 896, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 192.432492][ T7319] CPU: 0 UID: 0 PID: 7319 Comm: syz.1.482 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 192.432540][ T7319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 192.432560][ T7319] Call Trace: [ 192.432572][ T7319] [ 192.432584][ T7319] dump_stack_lvl+0x16c/0x1f0 [ 192.432627][ T7319] warn_alloc+0x248/0x3a0 [ 192.432667][ T7319] ? __pfx_warn_alloc+0x10/0x10 [ 192.432704][ T7319] ? rcu_is_watching+0x12/0xc0 [ 192.432737][ T7319] ? trace_kmalloc+0x2b/0xd0 [ 192.432781][ T7319] ? __kmalloc_cache_node_noprof+0x272/0x420 [ 192.432823][ T7319] ? __kasan_kmalloc+0x8a/0xb0 [ 192.432860][ T7319] ? __get_vm_area_node+0x208/0x330 [ 192.432928][ T7319] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 192.432968][ T7319] ? local_lock_release+0x99/0x140 [ 192.433017][ T7319] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 192.433065][ T7319] ? rcu_read_unlock+0x17/0x60 [ 192.433110][ T7319] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 192.433148][ T7319] ? __memcg_slab_post_alloc_hook+0x4a0/0x960 [ 192.433203][ T7319] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 192.433242][ T7319] __vmalloc_node_noprof+0xad/0xf0 [ 192.433297][ T7319] ? fpu_alloc_guest_fpstate+0x24/0x450 [ 192.433341][ T7319] fpu_alloc_guest_fpstate+0x24/0x450 [ 192.433384][ T7319] kvm_arch_vcpu_create+0x54e/0xb20 [ 192.433448][ T7319] kvm_vm_ioctl+0xfec/0x4000 [ 192.433498][ T7319] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 192.433557][ T7319] ? kasan_quarantine_put+0x10a/0x240 [ 192.433594][ T7319] ? lockdep_hardirqs_on+0x7c/0x110 [ 192.433632][ T7319] ? find_held_lock+0x2b/0x80 [ 192.433667][ T7319] ? tomoyo_path_number_perm+0x295/0x580 [ 192.433710][ T7319] ? tomoyo_path_number_perm+0x18d/0x580 [ 192.433749][ T7319] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 192.433783][ T7319] ? futex_wake+0x1ad/0x530 [ 192.433845][ T7319] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 192.433900][ T7319] ? do_vfs_ioctl+0x128/0x14f0 [ 192.433955][ T7319] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 192.434021][ T7319] ? find_held_lock+0x2b/0x80 [ 192.434053][ T7319] ? hook_file_ioctl_common+0x145/0x410 [ 192.434101][ T7319] ? __fget_files+0x20e/0x3c0 [ 192.434141][ T7319] ? __pfx_kvm_vm_ioctl+0x10/0x10 [ 192.434176][ T7319] __x64_sys_ioctl+0x18b/0x210 [ 192.434239][ T7319] do_syscall_64+0xcd/0x490 [ 192.434280][ T7319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.434314][ T7319] RIP: 0033:0x7ff00b98eb69 [ 192.434340][ T7319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 192.434371][ T7319] RSP: 002b:00007ff00c80d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 192.434402][ T7319] RAX: ffffffffffffffda RBX: 00007ff00bbb5fa0 RCX: 00007ff00b98eb69 [ 192.434423][ T7319] RDX: 0000000000000002 RSI: 000000000000ae41 RDI: 0000000000000003 [ 192.434449][ T7319] RBP: 00007ff00ba11df1 R08: 0000000000000000 R09: 0000000000000000 [ 192.434470][ T7319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 192.434489][ T7319] R13: 0000000000000000 R14: 00007ff00bbb5fa0 R15: 00007ffc3f4014d8 [ 192.434532][ T7319] [ 192.434543][ T7319] Mem-Info: [ 192.759484][ T7319] active_anon:7009 inactive_anon:0 isolated_anon:0 [ 192.759484][ T7319] active_file:13647 inactive_file:48318 isolated_file:0 [ 192.759484][ T7319] unevictable:768 dirty:231 writeback:0 [ 192.759484][ T7319] slab_reclaimable:10707 slab_unreclaimable:92523 [ 192.759484][ T7319] mapped:25469 shmem:1409 pagetables:1129 [ 192.759484][ T7319] sec_pagetables:0 bounce:0 [ 192.759484][ T7319] kernel_misc_reclaimable:0 [ 192.759484][ T7319] free:1312669 free_pcp:24376 free_cma:0 [ 192.810798][ T7319] Node 0 active_anon:28236kB inactive_anon:0kB active_file:54588kB inactive_file:193056kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:102064kB dirty:920kB writeback:0kB shmem:4300kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11472kB pagetables:4512kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 192.931868][ T7319] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:216kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:12kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:104kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 192.992406][ T7319] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 193.050482][ T7319] lowmem_reserve[]: 0 2480 2481 2481 2481 [ 193.065518][ T7319] Node 0 DMA32 free:1348316kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:29808kB inactive_anon:0kB active_file:54588kB inactive_file:191728kB unevictable:1536kB writepending:924kB present:3129332kB managed:2539676kB mlocked:0kB bounce:0kB free_pcp:72416kB local_pcp:24176kB free_cma:0kB [ 193.120408][ T7319] lowmem_reserve[]: 0 0 1 1 1 [ 193.130843][ T7319] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1328kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 193.177451][ T7319] lowmem_reserve[]: 0 0 0 0 0 [ 193.182358][ T7319] Node 1 Normal free:3888636kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:216kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:22080kB local_pcp:8416kB free_cma:0kB [ 193.235645][ T7319] lowmem_reserve[]: 0 0 0 0 0 [ 193.242558][ T7319] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 193.256385][ T7319] Node 0 DMA32: 713*4kB (UME) 1368*8kB (UME) 1139*16kB (UME) 1138*32kB (UME) 735*64kB (UME) 347*128kB (UME) 181*256kB (UME) 86*512kB (UM) 35*1024kB (UME) 3*2048kB (UM) 258*4096kB (M) = 1349012kB [ 193.288162][ T7319] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 193.311394][ T7319] Node 1 Normal: 241*4kB (UME) 57*8kB (UME) 41*16kB (UME) 89*32kB (UME) 29*64kB (UME) 9*128kB (UME) 5*256kB (UME) 5*512kB (UME) 0*1024kB 1*2048kB (U) 946*4096kB (M) = 3888636kB [ 193.370156][ T7319] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 193.387652][ T7319] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 193.407412][ T7319] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 193.428216][ T7319] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 193.464651][ T7319] 65073 total pagecache pages [ 193.471282][ T7319] 26 pages in swap cache [ 193.475864][ T7319] Free swap = 124884kB [ 193.491398][ T7319] Total swap = 124996kB [ 193.496204][ T7319] 2097051 pages RAM [ 193.513366][ T7319] 0 pages HighMem/MovableOnly [ 193.527231][ T7319] 430170 pages reserved [ 193.531623][ T7319] 0 pages cma reserved [ 193.535820][ T7319] kvm: failed to allocate vcpu's fpu [ 194.003950][ T7353] netlink: 186 bytes leftover after parsing attributes in process `syz.3.494'. [ 194.374562][ T7365] capability: warning: `syz.0.499' uses 32-bit capabilities (legacy support in use) [ 195.671444][ T7385] netlink: 342 bytes leftover after parsing attributes in process `syz.2.507'. [ 195.695560][ T7385] netlink: 'syz.2.507': attribute type 1 has an invalid length. [ 195.723924][ T7385] netlink: 'syz.2.507': attribute type 2 has an invalid length. [ 195.744182][ T7385] netlink: 'syz.2.507': attribute type 7 has an invalid length. [ 195.767362][ T7385] netlink: 214 bytes leftover after parsing attributes in process `syz.2.507'. [ 196.113622][ T7399] FAULT_INJECTION: forcing a failure. [ 196.113622][ T7399] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 196.127362][ T7399] CPU: 0 UID: 0 PID: 7399 Comm: syz.1.513 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 196.127408][ T7399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 196.127426][ T7399] Call Trace: [ 196.127436][ T7399] [ 196.127447][ T7399] dump_stack_lvl+0x16c/0x1f0 [ 196.127491][ T7399] should_fail_ex+0x512/0x640 [ 196.127539][ T7399] should_fail_alloc_page+0xe7/0x130 [ 196.127593][ T7399] prepare_alloc_pages+0x3c2/0x610 [ 196.127654][ T7399] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 196.127701][ T7399] ? do_sys_poll+0x24a/0xdf0 [ 196.127733][ T7399] ? stack_trace_save+0x8e/0xc0 [ 196.127769][ T7399] ? __pfx_stack_trace_save+0x10/0x10 [ 196.127808][ T7399] ? stack_depot_save_flags+0x29/0x9c0 [ 196.127850][ T7399] ? lock_acquire+0x179/0x350 [ 196.127911][ T7399] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 196.127951][ T7399] ? do_sys_poll+0x24a/0xdf0 [ 196.127983][ T7399] ? kasan_save_stack+0x33/0x60 [ 196.128022][ T7399] ? __kasan_kmalloc+0xaa/0xb0 [ 196.128057][ T7399] ? __kmalloc_noprof+0x223/0x510 [ 196.128095][ T7399] ? do_sys_poll+0x24a/0xdf0 [ 196.128125][ T7399] ? __x64_sys_poll+0x1a6/0x450 [ 196.128159][ T7399] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.128201][ T7399] ? __lock_acquire+0xb97/0x1ce0 [ 196.128252][ T7399] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 196.128307][ T7399] ? policy_nodemask+0xea/0x4e0 [ 196.128356][ T7399] alloc_pages_mpol+0x1fb/0x550 [ 196.128403][ T7399] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 196.128459][ T7399] alloc_pages_noprof+0x131/0x390 [ 196.128507][ T7399] get_free_pages_noprof+0x10/0xb0 [ 196.128553][ T7399] __pollwait+0x295/0x490 [ 196.128588][ T7399] pipe_poll+0x239/0x660 [ 196.128625][ T7399] ? __pfx___pollwait+0x10/0x10 [ 196.128655][ T7399] ? __pfx_pipe_poll+0x10/0x10 [ 196.128692][ T7399] do_sys_poll+0x559/0xdf0 [ 196.128740][ T7399] ? __pfx_do_sys_poll+0x10/0x10 [ 196.128777][ T7399] ? __pfx___schedule+0x10/0x10 [ 196.128859][ T7399] ? __futex_wait+0x24c/0x2f0 [ 196.128920][ T7399] ? __pfx___pollwait+0x10/0x10 [ 196.128959][ T7399] ? __pfx_pollwake+0x10/0x10 [ 196.128994][ T7399] ? __pfx_pollwake+0x10/0x10 [ 196.129030][ T7399] ? __pfx_pollwake+0x10/0x10 [ 196.129065][ T7399] ? __pfx_pollwake+0x10/0x10 [ 196.129102][ T7399] ? __pfx_pollwake+0x10/0x10 [ 196.129138][ T7399] ? __pfx_pollwake+0x10/0x10 [ 196.129175][ T7399] ? __pfx_pollwake+0x10/0x10 [ 196.129211][ T7399] ? __pfx_pollwake+0x10/0x10 [ 196.129245][ T7399] ? __pfx_pollwake+0x10/0x10 [ 196.129278][ T7399] ? __pfx_timespec64_add_safe+0x10/0x10 [ 196.129325][ T7399] ? ktime_get_ts64+0x2d2/0x400 [ 196.129369][ T7399] ? read_tsc+0x9/0x20 [ 196.129407][ T7399] ? ktime_get_ts64+0x256/0x400 [ 196.129456][ T7399] __x64_sys_poll+0x1a6/0x450 [ 196.129492][ T7399] ? __pfx___x64_sys_poll+0x10/0x10 [ 196.129541][ T7399] do_syscall_64+0xcd/0x490 [ 196.129580][ T7399] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.129614][ T7399] RIP: 0033:0x7ff00b98eb69 [ 196.129640][ T7399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.129672][ T7399] RSP: 002b:00007ff00c80d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 196.129702][ T7399] RAX: ffffffffffffffda RBX: 00007ff00bbb5fa0 RCX: 00007ff00b98eb69 [ 196.129724][ T7399] RDX: 000000000000800a RSI: 000000000000007f RDI: 0000200000000180 [ 196.129743][ T7399] RBP: 00007ff00ba11df1 R08: 0000000000000000 R09: 0000000000000000 [ 196.129763][ T7399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 196.129782][ T7399] R13: 0000000000000000 R14: 00007ff00bbb5fa0 R15: 00007ffc3f4014d8 [ 196.129825][ T7399] [ 197.015044][ T7396] zswap: compressor not available [ 197.706510][ T7419] netlink: 338 bytes leftover after parsing attributes in process `syz.0.519'. [ 197.720603][ T7419] netlink: 338 bytes leftover after parsing attributes in process `syz.0.519'. [ 197.738135][ T7419] netlink: 210 bytes leftover after parsing attributes in process `syz.0.519'. [ 198.072667][ T7431] netlink: 186 bytes leftover after parsing attributes in process `syz.3.523'. [ 198.670613][ T7447] netlink: 334 bytes leftover after parsing attributes in process `syz.1.529'. [ 200.386702][ T7481] lo: entered allmulticast mode [ 200.460459][ T7486] lo: left allmulticast mode [ 201.219289][ T7501] netlink: 18 bytes leftover after parsing attributes in process `syz.1.545'. [ 201.694678][ T5872] Bluetooth: hci2: Malformed LE Event: 0x1d [ 201.735540][ T5872] Bluetooth: hci0: Malformed Event: 0x13 [ 201.856094][ T7511] netlink: 338 bytes leftover after parsing attributes in process `syz.1.549'. [ 201.868107][ T7511] netlink: 338 bytes leftover after parsing attributes in process `syz.1.549'. [ 201.890602][ T7511] netlink: 250 bytes leftover after parsing attributes in process `syz.1.549'. [ 202.096832][ T7515] netlink: 342 bytes leftover after parsing attributes in process `syz.1.551'. [ 202.123479][ T7515] netlink: 294 bytes leftover after parsing attributes in process `syz.1.551'. [ 202.171775][ T7517] netlink: 17 bytes leftover after parsing attributes in process `syz.0.552'. [ 202.191663][ T7517] netlink: 4 bytes leftover after parsing attributes in process `syz.0.552'. [ 202.423469][ T7522] netlink: 17 bytes leftover after parsing attributes in process `syz.0.554'. [ 202.461878][ T7522] netlink: 4 bytes leftover after parsing attributes in process `syz.0.554'. [ 203.166876][ T7545] FAULT_INJECTION: forcing a failure. [ 203.166876][ T7545] name failslab, interval 1, probability 0, space 0, times 0 [ 203.180333][ T7545] CPU: 1 UID: 0 PID: 7545 Comm: syz.1.561 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 203.180387][ T7545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 203.180407][ T7545] Call Trace: [ 203.180417][ T7545] [ 203.180428][ T7545] dump_stack_lvl+0x16c/0x1f0 [ 203.180468][ T7545] should_fail_ex+0x512/0x640 [ 203.180522][ T7545] ? __kmalloc_noprof+0xbf/0x510 [ 203.180568][ T7545] ? __do_sys_futex_waitv+0x127/0x2c0 [ 203.180612][ T7545] should_failslab+0xc2/0x120 [ 203.180658][ T7545] __kmalloc_noprof+0xd2/0x510 [ 203.180710][ T7545] __do_sys_futex_waitv+0x127/0x2c0 [ 203.180758][ T7545] ? __pfx___do_sys_futex_waitv+0x10/0x10 [ 203.180815][ T7545] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 203.180888][ T7545] do_syscall_64+0xcd/0x490 [ 203.180932][ T7545] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.180966][ T7545] RIP: 0033:0x7ff00b98eb69 [ 203.180992][ T7545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.181028][ T7545] RSP: 002b:00007ff00c80d038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c1 [ 203.181060][ T7545] RAX: ffffffffffffffda RBX: 00007ff00bbb5fa0 RCX: 00007ff00b98eb69 [ 203.181087][ T7545] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000200000000300 [ 203.181107][ T7545] RBP: 00007ff00ba11df1 R08: 0000000000000000 R09: 0000000000000000 [ 203.181127][ T7545] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000000 [ 203.181148][ T7545] R13: 0000000000000000 R14: 00007ff00bbb5fa0 R15: 00007ffc3f4014d8 [ 203.181196][ T7545] [ 203.878869][ T7550] FAULT_INJECTION: forcing a failure. [ 203.878869][ T7550] name failslab, interval 1, probability 0, space 0, times 0 [ 203.925746][ T7550] CPU: 1 UID: 0 PID: 7550 Comm: syz.2.562 Not tainted 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 203.925797][ T7550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 203.925817][ T7550] Call Trace: [ 203.925828][ T7550] [ 203.925841][ T7550] dump_stack_lvl+0x16c/0x1f0 [ 203.925882][ T7550] should_fail_ex+0x512/0x640 [ 203.925922][ T7550] ? __kmalloc_cache_node_noprof+0x5a/0x420 [ 203.925965][ T7550] should_failslab+0xc2/0x120 [ 203.926008][ T7550] __kmalloc_cache_node_noprof+0x6d/0x420 [ 203.926048][ T7550] ? __alloc_workqueue+0x506/0x1810 [ 203.926098][ T7550] __alloc_workqueue+0x506/0x1810 [ 203.926157][ T7550] alloc_workqueue_noprof+0xd2/0x200 [ 203.926203][ T7550] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 203.926257][ T7550] ? rcu_is_watching+0x12/0xc0 [ 203.926293][ T7550] ? __kmalloc_noprof+0x242/0x510 [ 203.926331][ T7550] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 203.926390][ T7550] ieee80211_register_hw+0x1e8f/0x4060 [ 203.926470][ T7550] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 203.926516][ T7550] ? find_held_lock+0x2b/0x80 [ 203.926549][ T7550] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 203.926602][ T7550] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 203.926639][ T7550] ? __hrtimer_setup+0x176/0x280 [ 203.926695][ T7550] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 203.926772][ T7550] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 203.926836][ T7550] hwsim_new_radio_nl+0xb51/0x12c0 [ 203.926890][ T7550] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 203.926954][ T7550] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 203.927001][ T7550] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 203.927055][ T7550] genl_family_rcv_msg_doit+0x209/0x2f0 [ 203.927102][ T7550] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 203.927160][ T7550] ? bpf_lsm_capable+0x9/0x10 [ 203.927190][ T7550] ? security_capable+0x7e/0x260 [ 203.927240][ T7550] ? ns_capable+0xd7/0x110 [ 203.927279][ T7550] genl_rcv_msg+0x55c/0x800 [ 203.927318][ T7550] ? __pfx_genl_rcv_msg+0x10/0x10 [ 203.927349][ T7550] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 203.927395][ T7550] netlink_rcv_skb+0x158/0x420 [ 203.927427][ T7550] ? __pfx_genl_rcv_msg+0x10/0x10 [ 203.927459][ T7550] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 203.927497][ T7550] ? netlink_deliver_tap+0x1ae/0xd30 [ 203.927526][ T7550] genl_rcv+0x28/0x40 [ 203.927552][ T7550] netlink_unicast+0x5a7/0x870 [ 203.927582][ T7550] ? __pfx_netlink_unicast+0x10/0x10 [ 203.927608][ T7550] ? __pfx___might_resched+0x10/0x10 [ 203.927631][ T7550] ? __lock_acquire+0xb97/0x1ce0 [ 203.927671][ T7550] netlink_sendmsg+0x8d1/0xdd0 [ 203.927702][ T7550] ? __pfx_netlink_sendmsg+0x10/0x10 [ 203.927731][ T7550] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 203.927774][ T7550] ____sys_sendmsg+0xa98/0xc70 [ 203.927807][ T7550] ? copy_msghdr_from_user+0x10a/0x160 [ 203.927832][ T7550] ? __pfx_____sys_sendmsg+0x10/0x10 [ 203.927870][ T7550] ? __pfx_futex_wake_mark+0x10/0x10 [ 203.927911][ T7550] ___sys_sendmsg+0x134/0x1d0 [ 203.927938][ T7550] ? __pfx____sys_sendmsg+0x10/0x10 [ 203.927999][ T7550] __sys_sendmsg+0x16d/0x220 [ 203.928024][ T7550] ? __pfx___sys_sendmsg+0x10/0x10 [ 203.928048][ T7550] ? __x64_sys_futex+0x1e0/0x4c0 [ 203.928101][ T7550] do_syscall_64+0xcd/0x490 [ 203.928129][ T7550] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.928154][ T7550] RIP: 0033:0x7f285a18eb69 [ 203.928173][ T7550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.928195][ T7550] RSP: 002b:00007f285af17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 203.928218][ T7550] RAX: ffffffffffffffda RBX: 00007f285a3b5fa0 RCX: 00007f285a18eb69 [ 203.928233][ T7550] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000005 [ 203.928248][ T7550] RBP: 00007f285a211df1 R08: 0000000000000000 R09: 0000000000000000 [ 203.928262][ T7550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 203.928275][ T7550] R13: 0000000000000000 R14: 00007f285a3b5fa0 R15: 00007fff22f41018 [ 203.928305][ T7550] [ 204.740571][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 204.753869][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 206.637763][ T7594] erspan0: entered allmulticast mode [ 206.659671][ T7594] usbip-vudc usbip-vudc.0: gadget not bound [ 208.230314][ T7626] __nla_validate_parse: 1 callbacks suppressed [ 208.230342][ T7626] netlink: 8 bytes leftover after parsing attributes in process `syz.1.592'. [ 208.516976][ T7634] FAULT_INJECTION: forcing a failure. [ 208.516976][ T7634] name failslab, interval 1, probability 0, space 0, times 0 [ 208.576781][ T7634] CPU: 1 UID: 0 PID: 7634 Comm: syz.2.593 Tainted: GF R 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 208.576831][ T7634] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 208.576841][ T7634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 208.576855][ T7634] Call Trace: [ 208.576863][ T7634] [ 208.576871][ T7634] dump_stack_lvl+0x16c/0x1f0 [ 208.576900][ T7634] should_fail_ex+0x512/0x640 [ 208.576929][ T7634] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 208.576962][ T7634] should_failslab+0xc2/0x120 [ 208.577005][ T7634] __kmalloc_cache_noprof+0x6a/0x3e0 [ 208.577031][ T7634] ? i2cdev_open+0x95/0x190 [ 208.577069][ T7634] ? __pfx_i2cdev_open+0x10/0x10 [ 208.577105][ T7634] i2cdev_open+0x95/0x190 [ 208.577141][ T7634] chrdev_open+0x234/0x6a0 [ 208.577171][ T7634] ? __pfx_apparmor_file_open+0x10/0x10 [ 208.577210][ T7634] ? __pfx_chrdev_open+0x10/0x10 [ 208.577242][ T7634] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 208.577275][ T7634] do_dentry_open+0x982/0x1530 [ 208.577305][ T7634] ? __pfx_chrdev_open+0x10/0x10 [ 208.577341][ T7634] vfs_open+0x82/0x3f0 [ 208.577380][ T7634] path_openat+0x1de4/0x2cb0 [ 208.577417][ T7634] ? __pfx_path_openat+0x10/0x10 [ 208.577453][ T7634] do_filp_open+0x20b/0x470 [ 208.577481][ T7634] ? __pfx_do_filp_open+0x10/0x10 [ 208.577530][ T7634] ? alloc_fd+0x471/0x7d0 [ 208.577563][ T7634] do_sys_openat2+0x11b/0x1d0 [ 208.577599][ T7634] ? __pfx_do_sys_openat2+0x10/0x10 [ 208.577647][ T7634] __x64_sys_openat+0x174/0x210 [ 208.577685][ T7634] ? __pfx___x64_sys_openat+0x10/0x10 [ 208.577734][ T7634] do_syscall_64+0xcd/0x490 [ 208.577762][ T7634] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.577786][ T7634] RIP: 0033:0x7f285a18eb69 [ 208.577804][ T7634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 208.577827][ T7634] RSP: 002b:00007f2857ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 208.577849][ T7634] RAX: ffffffffffffffda RBX: 00007f285a3b6080 RCX: 00007f285a18eb69 [ 208.577864][ T7634] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 208.577879][ T7634] RBP: 00007f285a211df1 R08: 0000000000000000 R09: 0000000000000000 [ 208.577893][ T7634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 208.577907][ T7634] R13: 0000000000000000 R14: 00007f285a3b6080 R15: 00007fff22f41018 [ 208.577935][ T7634] [ 209.996714][ T7654] netlink: 342 bytes leftover after parsing attributes in process `syz.3.602'. [ 210.018002][ T7654] netlink: 302 bytes leftover after parsing attributes in process `syz.3.602'. [ 210.413191][ T7665] tipc: Started in network mode [ 210.451457][ T7665] tipc: Node identity ee00, cluster identity 4711 [ 210.460979][ T7665] tipc: Node number set to 60928 [ 210.481821][ T7664] delete_channel: no stack [ 210.656496][ T7675] netlink: 334 bytes leftover after parsing attributes in process `syz.2.611'. [ 212.570325][ T7711] netlink: 'syz.2.623': attribute type 16 has an invalid length. [ 212.578353][ T7711] netlink: 50 bytes leftover after parsing attributes in process `syz.2.623'. [ 213.215825][ T7724] netlink: 330 bytes leftover after parsing attributes in process `syz.2.629'. [ 213.248632][ T7725] netlink: 330 bytes leftover after parsing attributes in process `syz.0.631'. [ 213.636446][ T7734] FAULT_INJECTION: forcing a failure. [ 213.636446][ T7734] name failslab, interval 1, probability 0, space 0, times 0 [ 213.649598][ T7734] CPU: 0 UID: 0 PID: 7734 Comm: syz.0.635 Tainted: GF R 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 213.649658][ T7734] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 213.649672][ T7734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 213.649692][ T7734] Call Trace: [ 213.649703][ T7734] [ 213.649715][ T7734] dump_stack_lvl+0x16c/0x1f0 [ 213.649756][ T7734] should_fail_ex+0x512/0x640 [ 213.649796][ T7734] ? bpf_ksym_find+0x124/0x1c0 [ 213.649833][ T7734] should_failslab+0xc2/0x120 [ 213.649879][ T7734] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 213.649922][ T7734] ? skb_clone+0x190/0x3f0 [ 213.649956][ T7734] ? __lock_acquire+0x62e/0x1ce0 [ 213.650005][ T7734] skb_clone+0x190/0x3f0 [ 213.650041][ T7734] dev_queue_xmit_nit+0x3e7/0xca0 [ 213.650090][ T7734] dev_hard_start_xmit+0x5c3/0x740 [ 213.650141][ T7734] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 213.650188][ T7734] __dev_queue_xmit+0xa46/0x4490 [ 213.650258][ T7734] ? __pfx___dev_queue_xmit+0x10/0x10 [ 213.650343][ T7734] ? __asan_memcpy+0x3c/0x60 [ 213.650381][ T7734] ? __asan_memcpy+0x3c/0x60 [ 213.650415][ T7734] ? __skb_clone+0x570/0x760 [ 213.650477][ T7734] netlink_deliver_tap+0xa87/0xd30 [ 213.650530][ T7734] netlink_unicast+0x64c/0x870 [ 213.650574][ T7734] ? __pfx_netlink_unicast+0x10/0x10 [ 213.650613][ T7734] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 213.650663][ T7734] netlink_sendmsg+0x8d1/0xdd0 [ 213.650709][ T7734] ? __pfx_netlink_sendmsg+0x10/0x10 [ 213.650752][ T7734] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 213.650814][ T7734] __sys_sendto+0x4a3/0x520 [ 213.650869][ T7734] ? __pfx___sys_sendto+0x10/0x10 [ 213.650936][ T7734] ? find_held_lock+0x2b/0x80 [ 213.651000][ T7734] __x64_sys_sendto+0xe0/0x1c0 [ 213.651052][ T7734] ? do_syscall_64+0x91/0x490 [ 213.651086][ T7734] ? lockdep_hardirqs_on+0x7c/0x110 [ 213.651120][ T7734] do_syscall_64+0xcd/0x490 [ 213.651159][ T7734] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 213.651194][ T7734] RIP: 0033:0x7fdcd7d909fc [ 213.651221][ T7734] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b [ 213.651256][ T7734] RSP: 002b:00007fdcd8b2bec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 213.651288][ T7734] RAX: ffffffffffffffda RBX: 00007fdcd8b2bfc0 RCX: 00007fdcd7d909fc [ 213.651311][ T7734] RDX: 000000000000001c RSI: 00007fdcd8b2c010 RDI: 0000000000000004 [ 213.651332][ T7734] RBP: 0000000000000000 R08: 00007fdcd8b2bf14 R09: 000000000000000c [ 213.651353][ T7734] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004 [ 213.651373][ T7734] R13: 00007fdcd8b2bf68 R14: 00007fdcd8b2c010 R15: 0000000000000000 [ 213.651417][ T7734] [ 214.043102][ T7736] FAULT_INJECTION: forcing a failure. [ 214.043102][ T7736] name failslab, interval 1, probability 0, space 0, times 0 [ 214.117713][ T7736] CPU: 1 UID: 0 PID: 7736 Comm: syz.3.636 Tainted: GF R 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 214.117774][ T7736] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 214.117788][ T7736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 214.117807][ T7736] Call Trace: [ 214.117817][ T7736] [ 214.117830][ T7736] dump_stack_lvl+0x16c/0x1f0 [ 214.117870][ T7736] should_fail_ex+0x512/0x640 [ 214.117910][ T7736] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 214.117950][ T7736] should_failslab+0xc2/0x120 [ 214.117995][ T7736] __kmalloc_cache_noprof+0x6a/0x3e0 [ 214.118032][ T7736] ? nd_alloc_stack+0x85/0x110 [ 214.118089][ T7736] nd_alloc_stack+0x85/0x110 [ 214.118138][ T7736] step_into+0x1ac7/0x2270 [ 214.118181][ T7736] ? __pfx_step_into+0x10/0x10 [ 214.118212][ T7736] ? __d_lookup+0x266/0x4a0 [ 214.118267][ T7736] ? lookup_fast+0x156/0x610 [ 214.118307][ T7736] walk_component+0xfc/0x5b0 [ 214.118346][ T7736] link_path_walk+0x627/0xe20 [ 214.118397][ T7736] path_lookupat+0x15a/0x6d0 [ 214.118440][ T7736] ? __lock_acquire+0xb97/0x1ce0 [ 214.118491][ T7736] filename_lookup+0x224/0x5f0 [ 214.118533][ T7736] ? __pfx_filename_lookup+0x10/0x10 [ 214.118609][ T7736] ? getname_flags.part.0+0x1c5/0x550 [ 214.118671][ T7736] user_path_at+0x3a/0x60 [ 214.118710][ T7736] vfs_open_tree+0x2ca/0x910 [ 214.118754][ T7736] ? __pfx_vfs_open_tree+0x10/0x10 [ 214.118796][ T7736] ? xfd_validate_state+0x61/0x180 [ 214.118855][ T7736] __x64_sys_open_tree+0x84/0x130 [ 214.118900][ T7736] do_syscall_64+0xcd/0x490 [ 214.118940][ T7736] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.118973][ T7736] RIP: 0033:0x7fd03db8eb69 [ 214.119000][ T7736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 214.119032][ T7736] RSP: 002b:00007fd03e980038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ac [ 214.119064][ T7736] RAX: ffffffffffffffda RBX: 00007fd03ddb5fa0 RCX: 00007fd03db8eb69 [ 214.119087][ T7736] RDX: 0000000000000101 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 214.119108][ T7736] RBP: 00007fd03dc11df1 R08: 0000000000000000 R09: 0000000000000000 [ 214.119128][ T7736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 214.119148][ T7736] R13: 0000000000000000 R14: 00007fd03ddb5fa0 R15: 00007ffd41d38838 [ 214.119192][ T7736] [ 216.152039][ T7757] sp0: Synchronizing with TNC [ 216.989334][ T7770] FAULT_INJECTION: forcing a failure. [ 216.989334][ T7770] name failslab, interval 1, probability 0, space 0, times 0 [ 217.113203][ T7770] CPU: 0 UID: 0 PID: 7770 Comm: syz.1.650 Tainted: GF R 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 217.113264][ T7770] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 217.113278][ T7770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 217.113297][ T7770] Call Trace: [ 217.113308][ T7770] [ 217.113321][ T7770] dump_stack_lvl+0x16c/0x1f0 [ 217.113361][ T7770] should_fail_ex+0x512/0x640 [ 217.113401][ T7770] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 217.113447][ T7770] should_failslab+0xc2/0x120 [ 217.113495][ T7770] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 217.113535][ T7770] ? __kernfs_new_node+0xd2/0x8e0 [ 217.113584][ T7770] __kernfs_new_node+0xd2/0x8e0 [ 217.113631][ T7770] ? __pfx___kernfs_new_node+0x10/0x10 [ 217.113676][ T7770] ? find_held_lock+0x2b/0x80 [ 217.113705][ T7770] ? kernfs_root+0xee/0x2a0 [ 217.113748][ T7770] kernfs_new_node+0x13c/0x1e0 [ 217.113795][ T7770] __kernfs_create_file+0x53/0x350 [ 217.113827][ T7770] sysfs_add_file_mode_ns+0x207/0x3c0 [ 217.113872][ T7770] internal_create_group+0x578/0xf30 [ 217.113919][ T7770] ? __pfx_internal_create_group+0x10/0x10 [ 217.113963][ T7770] ? kernfs_create_link+0x1bd/0x240 [ 217.113996][ T7770] internal_create_groups+0x9d/0x150 [ 217.114038][ T7770] device_add+0x6d1/0x1aa0 [ 217.114080][ T7770] ? __pfx_device_add+0x10/0x10 [ 217.114127][ T7770] ? lockdep_init_map_type+0x5c/0x280 [ 217.114169][ T7770] ? __init_waitqueue_head+0xca/0x150 [ 217.114225][ T7770] rfkill_register+0x1ad/0xb40 [ 217.114268][ T7770] nfc_register_device+0x11f/0x3c0 [ 217.114303][ T7770] nci_register_device+0x7f1/0xb80 [ 217.114350][ T7770] ? __pfx_nci_register_device+0x10/0x10 [ 217.114398][ T7770] ? lockdep_init_map_type+0x5c/0x280 [ 217.114444][ T7770] virtual_ncidev_open+0x141/0x220 [ 217.114492][ T7770] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 217.114537][ T7770] misc_open+0x35a/0x420 [ 217.114582][ T7770] ? __pfx_misc_open+0x10/0x10 [ 217.114625][ T7770] chrdev_open+0x234/0x6a0 [ 217.114664][ T7770] ? __pfx_chrdev_open+0x10/0x10 [ 217.114702][ T7770] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 217.114741][ T7770] do_dentry_open+0x982/0x1530 [ 217.114777][ T7770] ? __pfx_chrdev_open+0x10/0x10 [ 217.114820][ T7770] vfs_open+0x82/0x3f0 [ 217.114868][ T7770] path_openat+0x1de4/0x2cb0 [ 217.114914][ T7770] ? __pfx_path_openat+0x10/0x10 [ 217.114958][ T7770] do_filp_open+0x20b/0x470 [ 217.114992][ T7770] ? __pfx_do_filp_open+0x10/0x10 [ 217.115051][ T7770] ? alloc_fd+0x471/0x7d0 [ 217.115090][ T7770] do_sys_openat2+0x11b/0x1d0 [ 217.115140][ T7770] ? __pfx_do_sys_openat2+0x10/0x10 [ 217.115200][ T7770] __x64_sys_openat+0x174/0x210 [ 217.115245][ T7770] ? __pfx___x64_sys_openat+0x10/0x10 [ 217.115304][ T7770] do_syscall_64+0xcd/0x490 [ 217.115337][ T7770] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 217.115367][ T7770] RIP: 0033:0x7ff00b98eb69 [ 217.115389][ T7770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 217.115417][ T7770] RSP: 002b:00007ff00c80d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 217.115444][ T7770] RAX: ffffffffffffffda RBX: 00007ff00bbb5fa0 RCX: 00007ff00b98eb69 [ 217.115464][ T7770] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 217.115482][ T7770] RBP: 00007ff00ba11df1 R08: 0000000000000000 R09: 0000000000000000 [ 217.115499][ T7770] R10: 000000000000001f R11: 0000000000000246 R12: 0000000000000000 [ 217.115516][ T7770] R13: 0000000000000000 R14: 00007ff00bbb5fa0 R15: 00007ffc3f4014d8 [ 217.115552][ T7770] [ 218.509892][ T7794] FAULT_INJECTION: forcing a failure. [ 218.509892][ T7794] name failslab, interval 1, probability 0, space 0, times 0 [ 218.562803][ T7794] CPU: 0 UID: 0 PID: 7794 Comm: syz.3.655 Tainted: GF R 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 218.562865][ T7794] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 218.562880][ T7794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 218.562899][ T7794] Call Trace: [ 218.562910][ T7794] [ 218.562923][ T7794] dump_stack_lvl+0x16c/0x1f0 [ 218.562963][ T7794] should_fail_ex+0x512/0x640 [ 218.563011][ T7794] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 218.563057][ T7794] should_failslab+0xc2/0x120 [ 218.563105][ T7794] __kmalloc_cache_noprof+0x6a/0x3e0 [ 218.563138][ T7794] ? lockdep_init_map_type+0x5c/0x280 [ 218.563185][ T7794] ? nci_hci_allocate+0x45/0x330 [ 218.563227][ T7794] nci_hci_allocate+0x45/0x330 [ 218.563264][ T7794] nci_allocate_device+0x26f/0x430 [ 218.563319][ T7794] virtual_ncidev_open+0x6f/0x220 [ 218.563374][ T7794] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 218.563429][ T7794] misc_open+0x35a/0x420 [ 218.563481][ T7794] ? __pfx_misc_open+0x10/0x10 [ 218.563533][ T7794] chrdev_open+0x234/0x6a0 [ 218.563576][ T7794] ? __pfx_apparmor_file_open+0x10/0x10 [ 218.563632][ T7794] ? __pfx_chrdev_open+0x10/0x10 [ 218.563679][ T7794] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 218.563729][ T7794] do_dentry_open+0x982/0x1530 [ 218.563771][ T7794] ? __pfx_chrdev_open+0x10/0x10 [ 218.563825][ T7794] vfs_open+0x82/0x3f0 [ 218.563882][ T7794] path_openat+0x1de4/0x2cb0 [ 218.563938][ T7794] ? __pfx_path_openat+0x10/0x10 [ 218.563991][ T7794] do_filp_open+0x20b/0x470 [ 218.564033][ T7794] ? __pfx_do_filp_open+0x10/0x10 [ 218.564112][ T7794] ? alloc_fd+0x471/0x7d0 [ 218.564162][ T7794] do_sys_openat2+0x11b/0x1d0 [ 218.564214][ T7794] ? __pfx_do_sys_openat2+0x10/0x10 [ 218.564283][ T7794] __x64_sys_openat+0x174/0x210 [ 218.564338][ T7794] ? __pfx___x64_sys_openat+0x10/0x10 [ 218.564409][ T7794] do_syscall_64+0xcd/0x490 [ 218.564450][ T7794] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.564488][ T7794] RIP: 0033:0x7fd03db8eb69 [ 218.564515][ T7794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 218.564547][ T7794] RSP: 002b:00007fd03e980038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 218.564578][ T7794] RAX: ffffffffffffffda RBX: 00007fd03ddb5fa0 RCX: 00007fd03db8eb69 [ 218.564600][ T7794] RDX: 0000000000000002 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 218.564621][ T7794] RBP: 00007fd03dc11df1 R08: 0000000000000000 R09: 0000000000000000 [ 218.564641][ T7794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 218.564661][ T7794] R13: 0000000000000000 R14: 00007fd03ddb5fa0 R15: 00007ffd41d38838 [ 218.564704][ T7794] [ 220.057708][ T7822] mmap: syz.1.665 (7822) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 220.282578][ T7824] netlink: 338 bytes leftover after parsing attributes in process `syz.3.666'. [ 220.328352][ T7824] netlink: 338 bytes leftover after parsing attributes in process `syz.3.666'. [ 220.375214][ T7829] FAULT_INJECTION: forcing a failure. [ 220.375214][ T7829] name failslab, interval 1, probability 0, space 0, times 0 [ 220.414498][ T7829] CPU: 0 UID: 0 PID: 7829 Comm: syz.0.667 Tainted: GF R 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 220.414555][ T7829] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 220.414568][ T7829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 220.414591][ T7829] Call Trace: [ 220.414602][ T7829] [ 220.414614][ T7829] dump_stack_lvl+0x16c/0x1f0 [ 220.414661][ T7829] should_fail_ex+0x512/0x640 [ 220.414700][ T7829] ? __kvmalloc_node_noprof+0x124/0x620 [ 220.414742][ T7829] should_failslab+0xc2/0x120 [ 220.414786][ T7829] __kvmalloc_node_noprof+0x137/0x620 [ 220.414822][ T7829] ? lockdep_init_map_type+0x5c/0x280 [ 220.414868][ T7829] ? alloc_netdev_mqs+0xae5/0x1500 [ 220.414911][ T7829] ? alloc_netdev_mqs+0xae5/0x1500 [ 220.414942][ T7829] alloc_netdev_mqs+0xae5/0x1500 [ 220.414985][ T7829] slip_open+0x35c/0x1150 [ 220.415025][ T7829] ? __pfx___might_resched+0x10/0x10 [ 220.415058][ T7829] ? __pfx_n_tty_close+0x10/0x10 [ 220.415102][ T7829] ? find_held_lock+0x2b/0x80 [ 220.415134][ T7829] ? __pfx_slip_open+0x10/0x10 [ 220.415171][ T7829] ? down_write+0x14d/0x200 [ 220.415211][ T7829] ? __pfx_slip_open+0x10/0x10 [ 220.415251][ T7829] tty_ldisc_open+0x9c/0x120 [ 220.415286][ T7829] tty_set_ldisc+0x32b/0x780 [ 220.415325][ T7829] tty_ioctl+0xc2e/0x1680 [ 220.415363][ T7829] ? __pfx_tty_ioctl+0x10/0x10 [ 220.415413][ T7829] ? find_held_lock+0x2b/0x80 [ 220.415444][ T7829] ? hook_file_ioctl_common+0x145/0x410 [ 220.415490][ T7829] ? __fget_files+0x20e/0x3c0 [ 220.415532][ T7829] ? __pfx_tty_ioctl+0x10/0x10 [ 220.415570][ T7829] __x64_sys_ioctl+0x18b/0x210 [ 220.415624][ T7829] do_syscall_64+0xcd/0x490 [ 220.415670][ T7829] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.415703][ T7829] RIP: 0033:0x7fdcd7d8eb69 [ 220.415729][ T7829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.415761][ T7829] RSP: 002b:00007fdcd8b2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 220.415791][ T7829] RAX: ffffffffffffffda RBX: 00007fdcd7fb5fa0 RCX: 00007fdcd7d8eb69 [ 220.415812][ T7829] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000006 [ 220.415831][ T7829] RBP: 00007fdcd7e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 220.415851][ T7829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 220.415871][ T7829] R13: 0000000000000000 R14: 00007fdcd7fb5fa0 R15: 00007ffdf5287b48 [ 220.415913][ T7829] [ 220.417958][ T7824] netlink: 134 bytes leftover after parsing attributes in process `syz.3.666'. [ 221.014474][ T7833] FAULT_INJECTION: forcing a failure. [ 221.014474][ T7833] name failslab, interval 1, probability 0, space 0, times 0 [ 221.047431][ T7833] CPU: 1 UID: 0 PID: 7833 Comm: syz.0.668 Tainted: GF R 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 221.047491][ T7833] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 221.047507][ T7833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 221.047528][ T7833] Call Trace: [ 221.047539][ T7833] [ 221.047551][ T7833] dump_stack_lvl+0x16c/0x1f0 [ 221.047591][ T7833] should_fail_ex+0x512/0x640 [ 221.047632][ T7833] ? __kmalloc_noprof+0xbf/0x510 [ 221.047672][ T7833] ? __netif_set_xps_queue+0x80f/0x22d0 [ 221.047705][ T7833] should_failslab+0xc2/0x120 [ 221.047744][ T7833] __kmalloc_noprof+0xd2/0x510 [ 221.047785][ T7833] __netif_set_xps_queue+0x80f/0x22d0 [ 221.047841][ T7833] xps_rxqs_store+0x238/0x320 [ 221.047900][ T7833] ? __pfx_xps_rxqs_store+0x10/0x10 [ 221.047944][ T7833] netdev_queue_attr_store+0x61/0x90 [ 221.047980][ T7833] ? __pfx_netdev_queue_attr_store+0x10/0x10 [ 221.048026][ T7833] sysfs_kf_write+0xef/0x150 [ 221.048066][ T7833] kernfs_fop_write_iter+0x351/0x510 [ 221.048094][ T7833] ? __pfx_sysfs_kf_write+0x10/0x10 [ 221.048129][ T7833] do_iter_readv_writev+0x654/0x950 [ 221.048163][ T7833] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 221.048211][ T7833] vfs_writev+0x35f/0xde0 [ 221.048251][ T7833] ? __pfx_vfs_writev+0x10/0x10 [ 221.048308][ T7833] ? __fget_files+0x20e/0x3c0 [ 221.048347][ T7833] ? do_pwritev+0x1a6/0x270 [ 221.048376][ T7833] do_pwritev+0x1a6/0x270 [ 221.048407][ T7833] ? __pfx_do_pwritev+0x10/0x10 [ 221.048451][ T7833] do_syscall_64+0xcd/0x490 [ 221.048489][ T7833] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.048518][ T7833] RIP: 0033:0x7fdcd7d8eb69 [ 221.048541][ T7833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.048570][ T7833] RSP: 002b:00007fdcd8b2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000128 [ 221.048598][ T7833] RAX: ffffffffffffffda RBX: 00007fdcd7fb5fa0 RCX: 00007fdcd7d8eb69 [ 221.048618][ T7833] RDX: 0000000000000005 RSI: 0000200000001000 RDI: 0000000000000003 [ 221.048636][ T7833] RBP: 00007fdcd7e11df1 R08: 0000000000000009 R09: 0000000000000000 [ 221.048652][ T7833] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 221.048668][ T7833] R13: 0000000000000000 R14: 00007fdcd7fb5fa0 R15: 00007ffdf5287b48 [ 221.048704][ T7833] [ 222.410243][ T7851] random: crng reseeded on system resumption [ 222.441906][ T7851] FAULT_INJECTION: forcing a failure. [ 222.441906][ T7851] name failslab, interval 1, probability 0, space 0, times 0 [ 222.485880][ T7851] CPU: 1 UID: 0 PID: 7851 Comm: syz.0.675 Tainted: GF R 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 222.485941][ T7851] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 222.485955][ T7851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 222.485976][ T7851] Call Trace: [ 222.485986][ T7851] [ 222.485999][ T7851] dump_stack_lvl+0x16c/0x1f0 [ 222.486040][ T7851] should_fail_ex+0x512/0x640 [ 222.486088][ T7851] should_failslab+0xc2/0x120 [ 222.486135][ T7851] __kmalloc_cache_noprof+0x6a/0x3e0 [ 222.486169][ T7851] ? do_raw_spin_lock+0x12c/0x2b0 [ 222.486220][ T7851] ? find_held_lock+0x2b/0x80 [ 222.486250][ T7851] ? async_schedule_node_domain+0x54/0x120 [ 222.486295][ T7851] ? __pfx___async_dev_cache_fw_image+0x10/0x10 [ 222.486332][ T7851] async_schedule_node_domain+0x54/0x120 [ 222.486376][ T7851] dev_cache_fw_image+0x38e/0x490 [ 222.486410][ T7851] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 222.486449][ T7851] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 222.486484][ T7851] dpm_for_each_dev+0x5d/0xb0 [ 222.486536][ T7851] fw_pm_notify+0x81/0x150 [ 222.486586][ T7851] notifier_call_chain+0xbc/0x410 [ 222.486628][ T7851] ? __pfx_fw_pm_notify+0x10/0x10 [ 222.486697][ T7851] blocking_notifier_call_chain_robust+0xc8/0x160 [ 222.486747][ T7851] ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10 [ 222.486811][ T7851] pm_notifier_call_chain_robust+0x27/0x60 [ 222.486860][ T7851] snapshot_open+0x218/0x2b0 [ 222.486903][ T7851] ? __pfx_snapshot_open+0x10/0x10 [ 222.486947][ T7851] misc_open+0x35a/0x420 [ 222.487000][ T7851] ? __pfx_misc_open+0x10/0x10 [ 222.487050][ T7851] chrdev_open+0x234/0x6a0 [ 222.487093][ T7851] ? __pfx_apparmor_file_open+0x10/0x10 [ 222.487149][ T7851] ? __pfx_chrdev_open+0x10/0x10 [ 222.487196][ T7851] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 222.487242][ T7851] do_dentry_open+0x982/0x1530 [ 222.487284][ T7851] ? __pfx_chrdev_open+0x10/0x10 [ 222.487337][ T7851] vfs_open+0x82/0x3f0 [ 222.487391][ T7851] path_openat+0x1de4/0x2cb0 [ 222.487446][ T7851] ? __pfx_path_openat+0x10/0x10 [ 222.487499][ T7851] do_filp_open+0x20b/0x470 [ 222.487540][ T7851] ? __pfx_do_filp_open+0x10/0x10 [ 222.487612][ T7851] ? alloc_fd+0x471/0x7d0 [ 222.487670][ T7851] do_sys_openat2+0x11b/0x1d0 [ 222.487723][ T7851] ? __pfx_do_sys_openat2+0x10/0x10 [ 222.487793][ T7851] __x64_sys_openat+0x174/0x210 [ 222.487847][ T7851] ? __pfx___x64_sys_openat+0x10/0x10 [ 222.487917][ T7851] do_syscall_64+0xcd/0x490 [ 222.487959][ T7851] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.487992][ T7851] RIP: 0033:0x7fdcd7d8eb69 [ 222.488020][ T7851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.488053][ T7851] RSP: 002b:00007fdcd8b2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 222.488084][ T7851] RAX: ffffffffffffffda RBX: 00007fdcd7fb5fa0 RCX: 00007fdcd7d8eb69 [ 222.488106][ T7851] RDX: 0000000000001001 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 222.488129][ T7851] RBP: 00007fdcd7e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 222.488148][ T7851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 222.488168][ T7851] R13: 0000000000000000 R14: 00007fdcd7fb5fa0 R15: 00007ffdf5287b48 [ 222.488213][ T7851] [ 222.816081][ T7851] [ 222.818458][ T7851] ============================================ [ 222.824633][ T7851] WARNING: possible recursive locking detected [ 222.830818][ T7851] 6.16.0-syzkaller-11699-g7e161a991ea7 #0 Tainted: GF R [ 222.839175][ T7851] -------------------------------------------- [ 222.845354][ T7851] syz.0.675/7851 is trying to acquire lock: [ 222.851280][ T7851] ffffffff8f518b88 (fw_lock){+.+.}-{4:4}, at: assign_fw+0x4e/0x640 [ 222.859279][ T7851] [ 222.859279][ T7851] but task is already holding lock: [ 222.866674][ T7851] ffffffff8f518b88 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x69/0x150 [ 222.874963][ T7851] [ 222.874963][ T7851] other info that might help us debug this: [ 222.883056][ T7851] Possible unsafe locking scenario: [ 222.883056][ T7851] [ 222.890531][ T7851] CPU0 [ 222.893846][ T7851] ---- [ 222.897168][ T7851] lock(fw_lock); [ 222.900933][ T7851] lock(fw_lock); [ 222.904699][ T7851] [ 222.904699][ T7851] *** DEADLOCK *** [ 222.904699][ T7851] [ 222.912874][ T7851] May be due to missing lock nesting notation [ 222.912874][ T7851] [ 222.921263][ T7851] 5 locks held by syz.0.675/7851: [ 222.926320][ T7851] #0: ffffffff8f303108 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420 [ 222.934833][ T7851] #1: ffffffff8e484768 (system_transition_mutex){+.+.}-{4:4}, at: lock_system_sleep+0x87/0xa0 [ 222.945246][ T7851] #2: ffffffff8e4c4bd0 ((pm_chain_head).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain_robust+0xa8/0x160 [ 222.957149][ T7851] #3: ffffffff8f518b88 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x69/0x150 [ 222.965867][ T7851] #4: ffffffff8f513588 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2d/0xb0 [ 222.975242][ T7851] [ 222.975242][ T7851] stack backtrace: [ 222.981152][ T7851] CPU: 1 UID: 0 PID: 7851 Comm: syz.0.675 Tainted: GF R 6.16.0-syzkaller-11699-g7e161a991ea7 #0 PREEMPT(full) [ 222.981203][ T7851] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 222.981215][ T7851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 222.981233][ T7851] Call Trace: [ 222.981242][ T7851] [ 222.981252][ T7851] dump_stack_lvl+0x116/0x1f0 [ 222.981286][ T7851] print_deadlock_bug+0x1e9/0x240 [ 222.981340][ T7851] __lock_acquire+0x1133/0x1ce0 [ 222.981382][ T7851] ? kasan_save_track+0x14/0x30 [ 222.981417][ T7851] lock_acquire+0x179/0x350 [ 222.981454][ T7851] ? assign_fw+0x4e/0x640 [ 222.981480][ T7851] ? __pfx___might_resched+0x10/0x10 [ 222.981507][ T7851] ? path_openat+0x1de4/0x2cb0 [ 222.981538][ T7851] ? do_filp_open+0x20b/0x470 [ 222.981569][ T7851] ? do_sys_openat2+0x11b/0x1d0 [ 222.981618][ T7851] ? assign_fw+0x4e/0x640 [ 222.981641][ T7851] __mutex_lock+0x193/0x10b0 [ 222.981671][ T7851] ? assign_fw+0x4e/0x640 [ 222.981699][ T7851] ? __pfx___mutex_lock+0x10/0x10 [ 222.981734][ T7851] ? kasan_quarantine_put+0x10a/0x240 [ 222.981765][ T7851] ? lockdep_hardirqs_on+0x7c/0x110 [ 222.981793][ T7851] ? assign_fw+0x4e/0x640 [ 222.981817][ T7851] assign_fw+0x4e/0x640 [ 222.981840][ T7851] ? _request_firmware+0x957/0x1470 [ 222.981870][ T7851] _request_firmware+0x988/0x1470 [ 222.981902][ T7851] ? __pfx__request_firmware+0x10/0x10 [ 222.981931][ T7851] ? dump_stack_lvl+0x1a3/0x1f0 [ 222.981961][ T7851] __async_dev_cache_fw_image+0xb1/0x340 [ 222.981991][ T7851] ? __pfx___async_dev_cache_fw_image+0x10/0x10 [ 222.982022][ T7851] ? mark_held_locks+0x49/0x80 [ 222.982057][ T7851] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 222.982103][ T7851] ? __pfx___async_dev_cache_fw_image+0x10/0x10 [ 222.982134][ T7851] async_schedule_node_domain+0xd1/0x120 [ 222.982169][ T7851] dev_cache_fw_image+0x38e/0x490 [ 222.982195][ T7851] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 222.982224][ T7851] ? __pfx_dev_cache_fw_image+0x10/0x10 [ 222.982249][ T7851] dpm_for_each_dev+0x5d/0xb0 [ 222.982291][ T7851] fw_pm_notify+0x81/0x150 [ 222.982332][ T7851] notifier_call_chain+0xbc/0x410 [ 222.982370][ T7851] ? __pfx_fw_pm_notify+0x10/0x10 [ 222.982416][ T7851] blocking_notifier_call_chain_robust+0xc8/0x160 [ 222.982456][ T7851] ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10 [ 222.982502][ T7851] pm_notifier_call_chain_robust+0x27/0x60 [ 222.982541][ T7851] snapshot_open+0x218/0x2b0 [ 222.982574][ T7851] ? __pfx_snapshot_open+0x10/0x10 [ 222.982614][ T7851] misc_open+0x35a/0x420 [ 222.982657][ T7851] ? __pfx_misc_open+0x10/0x10 [ 222.982700][ T7851] chrdev_open+0x234/0x6a0 [ 222.982747][ T7851] ? __pfx_apparmor_file_open+0x10/0x10 [ 222.982791][ T7851] ? __pfx_chrdev_open+0x10/0x10 [ 222.982827][ T7851] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 222.982861][ T7851] do_dentry_open+0x982/0x1530 [ 222.982893][ T7851] ? __pfx_chrdev_open+0x10/0x10 [ 222.982931][ T7851] vfs_open+0x82/0x3f0 [ 222.982971][ T7851] path_openat+0x1de4/0x2cb0 [ 222.983007][ T7851] ? __pfx_path_openat+0x10/0x10 [ 222.983049][ T7851] do_filp_open+0x20b/0x470 [ 222.983081][ T7851] ? __pfx_do_filp_open+0x10/0x10 [ 222.983124][ T7851] ? alloc_fd+0x471/0x7d0 [ 222.983156][ T7851] do_sys_openat2+0x11b/0x1d0 [ 222.983199][ T7851] ? __pfx_do_sys_openat2+0x10/0x10 [ 222.983264][ T7851] __x64_sys_openat+0x174/0x210 [ 222.983309][ T7851] ? __pfx___x64_sys_openat+0x10/0x10 [ 222.983364][ T7851] do_syscall_64+0xcd/0x490 [ 222.983397][ T7851] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.983425][ T7851] RIP: 0033:0x7fdcd7d8eb69 [ 222.983450][ T7851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.983479][ T7851] RSP: 002b:00007fdcd8b2d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 222.983506][ T7851] RAX: ffffffffffffffda RBX: 00007fdcd7fb5fa0 RCX: 00007fdcd7d8eb69 [ 222.983524][ T7851] RDX: 0000000000001001 RSI: 0000200000000180 RDI: ffffffffffffff9c [ 222.983543][ T7851] RBP: 00007fdcd7e11df1 R08: 0000000000000000 R09: 0000000000000000 [ 222.983560][ T7851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 222.983577][ T7851] R13: 0000000000000000 R14: 00007fdcd7fb5fa0 R15: 00007ffdf5287b48 [ 222.983643][ T7851]