last executing test programs: 4m55.605090706s ago: executing program 3 (id=169): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x3, 0x3b) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9) recvmmsg$auto(0x3, 0x0, 0x3, 0x0, 0x0) 4m55.017695664s ago: executing program 3 (id=176): mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) socket(0x10, 0x3, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x9, 0x7ffffffd, 0x0, 0x100, 0xee01, 0x0, 0x0, 0x4346, 0xfd3, 0x2, 0xffffffffffff3307, 0x4, 0x80000000081, 0x8, 0x2}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 4m54.834433648s ago: executing program 3 (id=178): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) clone$auto(0x20003b46, 0x1, 0x0, 0x0, 0x7) setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8) 4m54.746068359s ago: executing program 3 (id=179): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 4m53.943422958s ago: executing program 3 (id=187): fsconfig$auto_HIDEPID_NO_ACCESS(0xffffffffffffffff, 0xffff0000, 0x0, &(0x7f0000000080)="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", 0x1) r0 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0) bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0x538, 0x80, 0x10000, 0x0, r0, 0x1000, "72fea04183dce563f03f2a25077b3383", 0x0, r0, 0x4, 0x6, 0x101, 0x1, r0}, 0x6f3) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x8, 0x0, 0x7, 0x0, 0xfffffffffffffffd, 0x200}, 0x5}, 0x3, 0x4, 0x0) mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='nfs4\x00', 0x200, &(0x7f00000001c0)) 4m51.71690077s ago: executing program 3 (id=199): r0 = getpid() r1 = gettid() r2 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) read$auto_lowpan_enable_fops_(r2, &(0x7f00000002c0)=""/120, 0x78) rt_tgsigqueueinfo$auto(r0, r1, 0x21, &(0x7f0000000400)={@siginfo_0_0={0x3, 0x1c51, 0xfffffffe, @_sigsys={0x0, 0x2, 0xffffffff}}}) 4m51.062734095s ago: executing program 32 (id=199): r0 = getpid() r1 = gettid() r2 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) read$auto_lowpan_enable_fops_(r2, &(0x7f00000002c0)=""/120, 0x78) rt_tgsigqueueinfo$auto(r0, r1, 0x21, &(0x7f0000000400)={@siginfo_0_0={0x3, 0x1c51, 0xfffffffe, @_sigsys={0x0, 0x2, 0xffffffff}}}) 2m33.328132267s ago: executing program 0 (id=1005): mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) read$auto(0x3, 0x0, 0x80) 2m32.039761891s ago: executing program 0 (id=1014): mmap$auto(0x0, 0x99, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x2000, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0) 2m31.670477571s ago: executing program 0 (id=1017): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x4004) sendmsg$auto_ETHTOOL_MSG_PHY_GET(0xffffffffffffffff, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16, @ANYBLOB="010326bd7000ffdbdf252d"], 0x20}, 0x1, 0x0, 0x0, 0x2404c012}, 0x80) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00"], 0x1ac}}, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x100, 0x0) 2m31.571832097s ago: executing program 0 (id=1019): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)={0x4c, 0x0, 0x300, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_COLOR_CHANGE_COLOR={0x5, 0x130, 0xd}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0xa}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0x2}, @NL80211_ATTR_MBSSID_CONFIG={0x1c, 0x132, 0x0, 0x1, [@NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x6}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_EMA={0x4}, @NL80211_MBSSID_CONFIG_ATTR_INDEX={0x5, 0x3, 0x1}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080) write$auto(0x3, 0x0, 0xfffffdef) connect$auto(0x3, 0x0, 0x55) 2m31.061820455s ago: executing program 0 (id=1022): mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0xa, 0x0) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x8643, 0x15e) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) rename$auto(&(0x7f0000000480)='./file0\x00', 0x0) 2m30.756965956s ago: executing program 0 (id=1026): ioctl$auto_FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_GET_RADIO(r0, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000280)={0x14, r1, 0xf3e97f51700e57cf, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8020) 2m26.472161856s ago: executing program 4 (id=1049): mmap$auto(0x0, 0x20006, 0x4, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) setsockopt$auto(0x3, 0x10000000084, 0x71, 0x0, 0x8) close_range$auto(0x2, 0x8, 0x0) 2m25.174239683s ago: executing program 4 (id=1055): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x10, 0x2, 0x0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="000229bd0000fbdbdf35020000000800fbffffffffff0737010005"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00211459a600fbdbdf250200000008000300000000001b"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) r0 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0, @ANYBLOB="8b0500000000fedbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x14}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2m24.981153232s ago: executing program 4 (id=1066): r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000900), 0x20000, 0x0) ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000080)={{0x3, 0x401, 0x2, 0x2}, "72dce9fd6dfbf163a86b4a1fece25e4f0d80c8661fe67254c879b5e6971e97015cfdba56c71a466a40ebf312776e33a7f7c199516ba4eccb2a7d4d588017a9604dea8c5d0a3917bd1faa848558e49406", 0x80}) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x12b343, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x5}, 0xa) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000200), r2) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000280)={'veth1_to_hsr\x00', 0x0}) sendmsg$auto_NET_SHAPER_CMD_CAP_GET2(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r3, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@NET_SHAPER_A_CAPS_IFINDEX={0x8, 0x1, r4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x20040400) ioctl$auto_UI_DEV_DESTROY(r0, 0x5502, 0x0) 2m24.510102443s ago: executing program 4 (id=1068): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mlockall$auto(0x800000000000005) r0 = mq_open$auto(0x0, 0x62, 0xfffc, 0x0) mq_timedreceive$auto(r0, 0x0, 0x4dcd, 0x0, 0x0) openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x141f02, 0x0) 2m23.945023276s ago: executing program 4 (id=1061): mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0xa, 0x0) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x8643, 0x15e) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) rename$auto(&(0x7f0000000480)='./file0\x00', 0x0) 2m23.759628873s ago: executing program 4 (id=1063): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x23, 0x80805, 0x0) epoll_create$auto(0x4) epoll_pwait$auto(r0, 0x0, 0x3, 0x6, 0x0, 0x8) 2m15.568885809s ago: executing program 33 (id=1026): ioctl$auto_FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_GET_RADIO(r0, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000280)={0x14, r1, 0xf3e97f51700e57cf, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8020) 2m8.576528126s ago: executing program 34 (id=1063): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x23, 0x80805, 0x0) epoll_create$auto(0x4) epoll_pwait$auto(r0, 0x0, 0x3, 0x6, 0x0, 0x8) 3.328402861s ago: executing program 1 (id=1817): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) prctl$auto(0x39, 0x1, 0x4, 0x5, 0x7) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x9) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x40242, 0x0) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) writev$auto(r0, &(0x7f0000000200)={0x0, 0x10}, 0x3) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0) unshare$auto(0x20000080) 2.941651805s ago: executing program 2 (id=1822): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) select$auto(0x8, 0x0, 0x0, 0x0, 0x0) mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) process_vm_readv$auto(0x0, 0x0, 0x40000000001, 0x0, 0xa, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0) r0 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/environ\x00', 0x88f80, 0x0) readv$auto(r0, &(0x7f0000001780)={0x0, 0x400}, 0x7f) ioctl$auto(0x3, 0x400454ca, 0x38) write$auto(0x3, 0x0, 0xffd8) 2.789779435s ago: executing program 5 (id=1826): socket(0x10, 0x3, 0x6) sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)={0xfc, 0x0, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@NL802154_ATTR_TX_POWER={0x8, 0xb, 0x12c}, @NL802154_ATTR_SEC_LEVEL={0xe0, 0x2d, 0x0, 0x1, [@nested={0xc5, 0xc8, 0x0, 0x1, [@nested={0x4, 0x54}, @generic="9ad9b167f7a912e0f4b130f09b4a0d4e9329190f6bfabf21e00d9e0e6dac1c274649f9dc5067b857d80112dfd2f69754f98e662a16991b088ed19efb3f07c4037a186f68a581c982e25681e7589713a70f11606ed0d33960b2fff7cee645ab0cb08c1b36800f9d8b6a9f3c9c32a40b207fcdaf8572559aad68b5e45adfc413283c7269638259c4c5f4d0a8fad3b0627b96b6c41167ff22a3974fb4ab87ecec6bcba509815b79516126a9d715f73231e386c4385343b5c52873", @typed={0x4, 0x10a}]}, @typed={0x8, 0xaa, 0x0, 0x0, @ipv4=@broadcast}, @nested={0xc, 0x127, 0x0, 0x1, [@typed={0x8, 0x23, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x20}}]}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x2000c800}, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x10, 0x2, 0x4) socket(0x10, 0x3, 0x6) r0 = socket(0x10, 0x2, 0x4) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r1, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014100005800c00c50003000000000000000c02368008027a8087010c800800e800", @ANYRES32=r0, @ANYBLOB="0800fb"], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.789677645s ago: executing program 1 (id=1827): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x0, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/pcm0p/sub4/info\x00', 0xa0000, 0x0) pread64$auto(r1, 0x0, 0x200000000004, 0x4) ioctl$auto(0x3, 0x402c542b, 0x38) ioctl$auto_TIOCSTI2(r0, 0x5412, 0x0) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xeffb}, 0x3) 2.631780688s ago: executing program 5 (id=1829): close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x11, 0x80003, 0x300) socket(0x29, 0x5, 0x0) open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x0, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0xc01) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) 2.419962262s ago: executing program 1 (id=1830): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x8000, 0x0) read$auto(r0, 0x0, 0x9) close_range$auto(0x2, 0x8, 0x0) socket(0x1e, 0x805, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0) ioctl$auto(0x3, 0x40045532, 0x38) r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x88c00, 0x0) ioctl$auto_SNDRV_PCM_IOCTL_SW_PARAMS2(r1, 0xc0884113, &(0x7f0000000340)={0x0, 0x6, 0x1, 0xf9e1, 0x3, 0x200000008001, 0x4000000000000a99, 0x3, 0x0, 0x628d, 0x7, 0x6, "1000000000000000006072487dadd02e6a5fafa16c75e4d8f7baa0812900bf978caf0300576a57de7e23cd667c1218b934b475ead70a1f6e"}) 2.414269345s ago: executing program 5 (id=1831): r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x288202, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) 2.274055598s ago: executing program 6 (id=1832): mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4810}, 0x800) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x7, 0x5, 0x1007181, 0x8a0d, 0x7, 0x7, 0x7ff, 0x89, 0x26, 0x4, 0x200000000001, 0x384, 0xfffffffffffffffa, 0x8, 0x0, 0x30, 0x0, 0x864, 0xe, 0x22000, 0x9, 0x0, 0x84}, 0x9, 0xd) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="0c001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.171614584s ago: executing program 6 (id=1833): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x29, 0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket(0x26, 0x80805, 0x0) socket(0xa, 0x3, 0x6) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) flistxattr$auto(r0, 0x0, 0x9) 1.873582187s ago: executing program 2 (id=1834): close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto(0x3, 0xae41, r1) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x10000000000048, 0x0) r2 = fsopen$auto(0x0, 0x1) ioctl$auto(0x3, 0x4020aeb2, r2) 1.873473606s ago: executing program 6 (id=1835): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x1, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0) pipe$auto(0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0x400caed0, r0) 1.653686452s ago: executing program 1 (id=1836): mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) socket(0x2, 0x3, 0x4) r0 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) newfstatat$auto(r0, 0x0, 0x0, 0xfffffffe) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) r1 = socket(0x11, 0x80003, 0x300) name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000000c0)='/\x00R\xa6\x00\xc8\xda\xdc\xb1\xb4#\xe4\xeb\xe1e/\x1b/\xb9L\xc6P\x82\xba\x90@\xb8\xb5\xb1\xe8\"\x88s\xdf\x15\xaa\x18\xa9\x86\xc7\x87g>8\xae\x99\xd4~\xc6\xa7\\\xcc\xfeV\x83\f\xdc\xdc~\x8e\xd5\x18\x13\x16\xc5\x93E\x10\xcb\x1c\x02\x00\xd2\xa4_\xa3\xdcS\xe2\xe2\xc6\x85p\xfa\xc3/G\x86\xea\x9f\xb0\x9a\xcc6\x1a\x06\x91\x9f\xcfC\xedU\x00f`\x02\x04\xef\xfe\x10\xec\x17\x83%K\x04\xd5s\x86\xe4\x9d\x15\f\x8c\xd9wj\xe5t\x82o7\xc05ul\xacU\xbf\xc0\xfe\xb4\xd7\t\xe0s]\xcd\xac\x87\xa5\xa6.t\xa9\xe8\xa6>\xf2\xd0\xb1\x83\x83\x91\a\xdc\xe9\xaa\x1dx\x06\xa77\xd6\xe1\xe9\x94\xb9Xi\xbbv_\x9a_bv%\xcb\xc7\xdd\xa3\xb4\tpr%\xdf\xc9\x06\xa2\xe7\xe1\xde\x16\xf7\x03x\xf8\v\v\x1a\xfcm\x87r\xc1\b\xca\x97\xb0\xeb\xd6F\x8f^\x94\xdf\x9ax\xf4\x03e[l\xa5', &(0x7f0000000200)={0x0, 0x6}, 0x0, 0x1001) setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x4) write$auto(0x3, 0x0, 0xffeb) 1.652769948s ago: executing program 5 (id=1844): r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r0, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x288202, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x2, 0xa, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) 1.219086918s ago: executing program 2 (id=1837): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) eventfd$auto(0x8e) openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x22a40, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0xffffffffffffffff) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto(r1, 0x4020ae76, r2) close_range$auto(0x2, 0x8, 0x0) 1.218976078s ago: executing program 6 (id=1838): close_range$auto(0x0, 0xfffffffffffff000, 0x2) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x11, 0x80003, 0x300) socket(0x29, 0x5, 0x0) open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x0, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0xc01) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) 1.218387781s ago: executing program 1 (id=1846): r0 = getpid() r1 = gettid() iopl$auto(0x3) r2 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$auto_lowpan_enable_fops_(r2, &(0x7f00000002c0)=""/120, 0x78) rt_tgsigqueueinfo$auto(r0, r1, 0x21, &(0x7f0000000400)={@siginfo_0_0={0x3, 0x1c51, 0xfffffffe, @_sigsys={0x0, 0x2, 0xffffffff}}}) 963.043817ms ago: executing program 5 (id=1839): mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bond_slave_1\x00', 0x0}) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_AGE={0x8, 0x3, 0x200}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_IFINDEX={0x8, 0x2, r1}, @HSR_A_IFINDEX={0x8}, @HSR_A_IF1_AGE={0x8, 0x3, 0x6}]}, 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 854.346547ms ago: executing program 2 (id=1840): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14) ioctl$auto(r0, 0x2, 0x4) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) close_range$auto(0x2, 0x8, 0x0) 636.84236ms ago: executing program 2 (id=1841): mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000) syslog$auto(0x1, &(0x7f0000000080)='..\x00k\xce\xa0\x17\bI3\'^O\x86Ik\xd8@\x18\x05\xfa\xabK\xc5tw\xd7\x1d\x00\x80\x00\x00\x00\x00\x00\x00j<\v\xf47\n\xa7\xd2\x8b\x11eZ\xc0\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06\"\xb8\xa8\x91c\x13\x88\n1q\x1a3\x01vn\x8d\xbc', 0x2005) r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)) fcntl$auto(r0, 0x402, 0x2) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)) r2 = gettid() fcntl$auto(r1, 0x402, r2) r3 = set_tid_address$auto(0x0) r4 = syz_open_procfs$namespace(r3, &(0x7f0000000080)) getdents$auto(r4, 0x0, 0x41) 636.736716ms ago: executing program 6 (id=1842): r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) read$auto(r0, 0x0, 0x1f40) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) read$auto_proc_fail_nth_operations_base(r1, &(0x7f0000000040)=""/221, 0xdd) io_uring_register$auto(0xffffffffffffffff, 0xffff5594, 0x0, 0x1) write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, 0x0, 0x0) r2 = prctl$auto(0x201c, 0x800000005, 0x0, 0x40000200000c, 0x3fffffffff) poll$auto(&(0x7f0000000180)={r2, 0xfff6, 0x9816}, 0x7f, 0x800a) 629.146827ms ago: executing program 5 (id=1843): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x1c9180, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(0xffffffffffffffff, 0x0, 0x40) mincore$auto(0x1000, 0x8001, 0x0) fcntl$auto(0x8000000000000001, 0x7, 0x8) fcntl$auto(0x8000000000000001, 0x26, 0x8) clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6) fcntl$auto(0x8000000000000001, 0x26, 0x8) close_range$auto(0x2, 0x8, 0x0) 6.308752ms ago: executing program 6 (id=1845): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0) r0 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r0, &(0x7f0000000040)=""/4096, 0xfffffe82) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x80) recvmmsg$auto(0xffffffffffffffff, 0x0, 0x4, 0x6586, 0x0) openat$auto_nsim_dev_take_snapshot_fops_dev(0xffffffffffffff9c, 0x0, 0x500, 0x0) 767.053µs ago: executing program 2 (id=1847): mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/compaction_proactiveness\x00', 0x40001, 0x0) close_range$auto(0x2, 0x8, 0x0) semctl$auto(0xa, 0x2, 0x13, 0x21) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) setrlimit$auto(0x7, &(0x7f0000000080)={0x0, 0x6}) write$auto(r0, 0x0, 0x5) 0s ago: executing program 1 (id=1848): ioctl$auto(0x3, 0x40086200, 0x38) connect$auto(0x3, &(0x7f0000000280)=@tipc=@id={0x1e, 0x3, 0x1, {0x4e20, 0x2}}, 0x54) recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) landlock_create_ruleset$auto(&(0x7f0000000000)={0x3, 0x4, 0x7}, 0x0, 0x10000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000) io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3) kernel console output (not intermixed with test programs): 0764][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 319.218135][ T9639] CPU: 0 UID: 0 PID: 9639 Comm: syz.2.1129 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 319.218191][ T9639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 319.218211][ T9639] Call Trace: [ 319.218221][ T9639] [ 319.218234][ T9639] dump_stack_lvl+0x16c/0x1f0 [ 319.218274][ T9639] should_fail_ex+0x512/0x640 [ 319.218314][ T9639] ? page_copy_sane+0xcd/0x2d0 [ 319.218358][ T9639] copy_folio_from_iter_atomic+0x375/0x1aa0 [ 319.218424][ T9639] ? fault_in_readable+0x135/0x1d0 [ 319.218471][ T9639] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10 [ 319.218518][ T9639] ? fault_in_readable+0x179/0x1d0 [ 319.218563][ T9639] ? __pfx_fault_in_readable+0x10/0x10 [ 319.218607][ T9639] ? rcu_is_watching+0x12/0xc0 [ 319.218651][ T9639] ? I_BDEV+0xd/0x20 [ 319.218689][ T9639] ? inode_to_bdi+0x9e/0x160 [ 319.218740][ T9639] iomap_file_buffered_write+0x535/0xac0 [ 319.218807][ T9639] ? __pfx_iomap_file_buffered_write+0x10/0x10 [ 319.218861][ T9639] ? inode_set_ctime_current+0x2a1/0x8f0 [ 319.218935][ T9639] ? __pfx_down_read+0x10/0x10 [ 319.218975][ T9639] ? preempt_count_add+0x76/0x150 [ 319.219021][ T9639] ? mnt_put_write_access_file+0xc1/0xf0 [ 319.219059][ T9639] blkdev_write_iter+0x575/0xe00 [ 319.219101][ T9639] vfs_write+0x6c4/0x1150 [ 319.219139][ T9639] ? __pfx_blkdev_write_iter+0x10/0x10 [ 319.219187][ T9639] ? __pfx_vfs_write+0x10/0x10 [ 319.219221][ T9639] ? find_held_lock+0x2b/0x80 [ 319.219278][ T9639] ksys_write+0x12a/0x250 [ 319.219314][ T9639] ? __pfx_ksys_write+0x10/0x10 [ 319.219364][ T9639] do_syscall_64+0xcd/0x490 [ 319.219402][ T9639] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 319.219435][ T9639] RIP: 0033:0x7fd59058ebe9 [ 319.219459][ T9639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 319.219491][ T9639] RSP: 002b:00007fd591463038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 319.219520][ T9639] RAX: ffffffffffffffda RBX: 00007fd5907b5fa0 RCX: 00007fd59058ebe9 [ 319.219540][ T9639] RDX: 000000007ffffffd RSI: 0000200000000040 RDI: 0000000000000005 [ 319.219561][ T9639] RBP: 00007fd590611e19 R08: 0000000000000000 R09: 0000000000000000 [ 319.219579][ T9639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 319.219597][ T9639] R13: 00007fd5907b6038 R14: 00007fd5907b5fa0 R15: 00007ffe1dfedfc8 [ 319.219638][ T9639] [ 319.528917][ T74] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 319.565666][ T74] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 320.034877][ T9656] FAULT_INJECTION: forcing a failure. [ 320.034877][ T9656] name failslab, interval 1, probability 0, space 0, times 0 [ 320.060375][ T9656] CPU: 0 UID: 0 PID: 9656 Comm: syz.1.1133 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 320.060423][ T9656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 320.060443][ T9656] Call Trace: [ 320.060454][ T9656] [ 320.060467][ T9656] dump_stack_lvl+0x16c/0x1f0 [ 320.060507][ T9656] should_fail_ex+0x512/0x640 [ 320.060545][ T9656] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 320.060584][ T9656] should_failslab+0xc2/0x120 [ 320.060626][ T9656] __kmalloc_cache_noprof+0x6a/0x3e0 [ 320.060659][ T9656] ? lockdep_hardirqs_on+0x7c/0x110 [ 320.060691][ T9656] ? snd_seq_fifo_new+0x42/0x260 [ 320.060740][ T9656] ? seq_create_client1+0x420/0x5e0 [ 320.060778][ T9656] ? __pfx_snd_seq_open+0x10/0x10 [ 320.060817][ T9656] snd_seq_fifo_new+0x42/0x260 [ 320.060867][ T9656] snd_seq_open+0x15c/0x550 [ 320.060906][ T9656] ? __pfx_snd_seq_open+0x10/0x10 [ 320.060942][ T9656] snd_open+0x22d/0x4c0 [ 320.060981][ T9656] ? __pfx_snd_open+0x10/0x10 [ 320.061018][ T9656] chrdev_open+0x231/0x6a0 [ 320.061060][ T9656] ? __pfx_apparmor_file_open+0x10/0x10 [ 320.061125][ T9656] ? __pfx_chrdev_open+0x10/0x10 [ 320.061170][ T9656] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 320.061215][ T9656] do_dentry_open+0x97f/0x1530 [ 320.061256][ T9656] ? __pfx_chrdev_open+0x10/0x10 [ 320.061304][ T9656] vfs_open+0x82/0x3f0 [ 320.061355][ T9656] path_openat+0x1de4/0x2cb0 [ 320.061405][ T9656] ? __pfx_path_openat+0x10/0x10 [ 320.061460][ T9656] do_filp_open+0x20b/0x470 [ 320.061518][ T9656] ? __pfx_do_filp_open+0x10/0x10 [ 320.061589][ T9656] ? alloc_fd+0x471/0x7d0 [ 320.061637][ T9656] do_sys_openat2+0x11b/0x1d0 [ 320.061687][ T9656] ? __pfx_do_sys_openat2+0x10/0x10 [ 320.061755][ T9656] __x64_sys_openat+0x174/0x210 [ 320.061805][ T9656] ? __pfx___x64_sys_openat+0x10/0x10 [ 320.061873][ T9656] do_syscall_64+0xcd/0x490 [ 320.061914][ T9656] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 320.061948][ T9656] RIP: 0033:0x7f7dffb8ebe9 [ 320.061974][ T9656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 320.062008][ T9656] RSP: 002b:00007f7dfddf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 320.062039][ T9656] RAX: ffffffffffffffda RBX: 00007f7dffdb5fa0 RCX: 00007f7dffb8ebe9 [ 320.062061][ T9656] RDX: 0000000000000100 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 320.062090][ T9656] RBP: 00007f7dffc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 320.062111][ T9656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 320.062131][ T9656] R13: 00007f7dffdb6038 R14: 00007f7dffdb5fa0 R15: 00007ffe6fb40b78 [ 320.062174][ T9656] [ 320.810727][ T9670] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 322.455302][ T9700] FAULT_INJECTION: forcing a failure. [ 322.455302][ T9700] name failslab, interval 1, probability 0, space 0, times 0 [ 322.516482][ T9700] CPU: 1 UID: 0 PID: 9700 Comm: syz.2.1143 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 322.516529][ T9700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 322.516548][ T9700] Call Trace: [ 322.516559][ T9700] [ 322.516570][ T9700] dump_stack_lvl+0x16c/0x1f0 [ 322.516609][ T9700] should_fail_ex+0x512/0x640 [ 322.516659][ T9700] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 322.516695][ T9700] should_failslab+0xc2/0x120 [ 322.516737][ T9700] __kmalloc_cache_noprof+0x6a/0x3e0 [ 322.516770][ T9700] ? snd_mixer_oss_put_volume1_sw.constprop.0.isra.0+0xdc/0x610 [ 322.516821][ T9700] snd_mixer_oss_put_volume1_sw.constprop.0.isra.0+0xdc/0x610 [ 322.516885][ T9700] snd_mixer_oss_put_recsrc1_sw+0x87/0xc0 [ 322.516927][ T9700] snd_mixer_oss_ioctl1+0xb4f/0x1e40 [ 322.516962][ T9700] ? lockdep_hardirqs_on+0x7c/0x110 [ 322.516995][ T9700] ? __pfx_snd_mixer_oss_put_recsrc1_sw+0x10/0x10 [ 322.517034][ T9700] ? __pfx_snd_mixer_oss_ioctl1+0x10/0x10 [ 322.517070][ T9700] ? tomoyo_path_number_perm+0x295/0x580 [ 322.517110][ T9700] ? tomoyo_path_number_perm+0x18d/0x580 [ 322.517146][ T9700] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 322.517176][ T9700] ? futex_wake+0x1ad/0x530 [ 322.517239][ T9700] snd_mixer_oss_ioctl_card+0x102/0x170 [ 322.517275][ T9700] ? __pfx_snd_mixer_oss_ioctl_card+0x10/0x10 [ 322.517323][ T9700] snd_pcm_oss_ioctl+0x137c/0x37a0 [ 322.517366][ T9700] ? find_held_lock+0x2b/0x80 [ 322.517396][ T9700] ? hook_file_ioctl_common+0x145/0x410 [ 322.517432][ T9700] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 322.517481][ T9700] ? __fget_files+0x20e/0x3c0 [ 322.517525][ T9700] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 322.517571][ T9700] __x64_sys_ioctl+0x18e/0x210 [ 322.517622][ T9700] do_syscall_64+0xcd/0x490 [ 322.517658][ T9700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 322.517689][ T9700] RIP: 0033:0x7fd59058ebe9 [ 322.517712][ T9700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 322.517743][ T9700] RSP: 002b:00007fd591463038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 322.517771][ T9700] RAX: ffffffffffffffda RBX: 00007fd5907b5fa0 RCX: 00007fd59058ebe9 [ 322.517790][ T9700] RDX: 0000000000000000 RSI: 00000000c0044dff RDI: 0000000000000003 [ 322.517808][ T9700] RBP: 00007fd590611e19 R08: 0000000000000000 R09: 0000000000000000 [ 322.517852][ T9700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 322.517871][ T9700] R13: 00007fd5907b6038 R14: 00007fd5907b5fa0 R15: 00007ffe1dfedfc8 [ 322.517913][ T9700] [ 322.943920][ T9712] FAULT_INJECTION: forcing a failure. [ 322.943920][ T9712] name failslab, interval 1, probability 0, space 0, times 0 [ 322.958177][ T9712] CPU: 1 UID: 0 PID: 9712 Comm: syz.6.1147 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 322.958224][ T9712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 322.958243][ T9712] Call Trace: [ 322.958255][ T9712] [ 322.958267][ T9712] dump_stack_lvl+0x16c/0x1f0 [ 322.958311][ T9712] should_fail_ex+0x512/0x640 [ 322.958349][ T9712] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 322.958407][ T9712] should_failslab+0xc2/0x120 [ 322.958453][ T9712] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 322.958497][ T9712] ? kstrdup_const+0x63/0x80 [ 322.958547][ T9712] kstrdup+0x53/0x100 [ 322.958588][ T9712] kstrdup_const+0x63/0x80 [ 322.958627][ T9712] __kernfs_new_node+0x9b/0x8e0 [ 322.958679][ T9712] ? __pfx___kernfs_new_node+0x10/0x10 [ 322.958731][ T9712] ? find_held_lock+0x2b/0x80 [ 322.958764][ T9712] ? kernfs_root+0xee/0x2a0 [ 322.958811][ T9712] kernfs_new_node+0x13c/0x1e0 [ 322.958878][ T9712] __kernfs_create_file+0x53/0x350 [ 322.958918][ T9712] cgroup_addrm_files+0x546/0xc20 [ 322.958984][ T9712] ? __lock_acquire+0x62e/0x1ce0 [ 322.959025][ T9712] ? __pfx_cgroup_addrm_files+0x10/0x10 [ 322.959086][ T9712] ? css_next_child+0xcf/0x2d0 [ 322.959130][ T9712] ? css_next_descendant_pre+0x58/0x1a0 [ 322.959180][ T9712] css_populate_dir+0x343/0x580 [ 322.959221][ T9712] cgroup_mkdir+0x5cb/0x11f0 [ 322.959277][ T9712] ? __pfx_cgroup_mkdir+0x10/0x10 [ 322.959330][ T9712] kernfs_iop_mkdir+0x111/0x190 [ 322.959373][ T9712] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 322.959419][ T9712] vfs_mkdir+0x590/0x8c0 [ 322.959455][ T9712] do_mkdirat+0x304/0x3e0 [ 322.959498][ T9712] ? __pfx_do_mkdirat+0x10/0x10 [ 322.959542][ T9712] ? getname_flags.part.0+0x1c5/0x550 [ 322.959598][ T9712] __x64_sys_mkdir+0xef/0x140 [ 322.959638][ T9712] do_syscall_64+0xcd/0x490 [ 322.959677][ T9712] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 322.959709][ T9712] RIP: 0033:0x7f54f358ebe9 [ 322.959734][ T9712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 322.959767][ T9712] RSP: 002b:00007f54f4376038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 322.959798][ T9712] RAX: ffffffffffffffda RBX: 00007f54f37b5fa0 RCX: 00007f54f358ebe9 [ 322.959819][ T9712] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000280 [ 322.959846][ T9712] RBP: 00007f54f3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 322.959865][ T9712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 322.959884][ T9712] R13: 00007f54f37b6038 R14: 00007f54f37b5fa0 R15: 00007ffec44feca8 [ 322.959928][ T9712] [ 323.045934][ C0] vcan0: j1939_tp_rxtimer: 0xffff888023aec800: rx timeout, send abort [ 323.051380][ T9712] cgroup: cgroup_addrm_files: failed to add cgroup.clone_children, err=-12 [ 323.053955][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888023aec800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session. [ 323.244959][ T5215] ERROR: Out of memory at tomoyo_memory_ok. [ 323.474598][ T9722] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1150'. [ 323.516565][ T9723] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1148'. [ 323.744171][ T9728] netlink: 17 bytes leftover after parsing attributes in process `syz.6.1151'. [ 323.790673][ T9728] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1151'. [ 324.025348][ T9735] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1152'. [ 324.459780][ T9748] FAULT_INJECTION: forcing a failure. [ 324.459780][ T9748] name failslab, interval 1, probability 0, space 0, times 0 [ 324.518447][ T9748] CPU: 1 UID: 0 PID: 9748 Comm: syz.6.1157 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 324.518497][ T9748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 324.518517][ T9748] Call Trace: [ 324.518527][ T9748] [ 324.518539][ T9748] dump_stack_lvl+0x16c/0x1f0 [ 324.518582][ T9748] should_fail_ex+0x512/0x640 [ 324.518620][ T9748] ? fs_reclaim_acquire+0xae/0x150 [ 324.518672][ T9748] should_failslab+0xc2/0x120 [ 324.518714][ T9748] __kmalloc_cache_noprof+0x6a/0x3e0 [ 324.518757][ T9748] ? device_add+0xccc/0x1aa0 [ 324.518801][ T9748] device_add+0xccc/0x1aa0 [ 324.518836][ T9748] ? dev_set_name+0xc7/0x100 [ 324.518876][ T9748] ? __pfx_dev_set_name+0x10/0x10 [ 324.518919][ T9748] ? __pfx_device_add+0x10/0x10 [ 324.518955][ T9748] ? __pfx___might_resched+0x10/0x10 [ 324.518984][ T9748] ? is_dynamic_key+0xb4/0x160 [ 324.519030][ T9748] __add_disk+0x457/0xf00 [ 324.519068][ T9748] add_disk_fwnode+0x13f/0x5d0 [ 324.519103][ T9748] nbd_dev_add+0x783/0xbb0 [ 324.519134][ T9748] ? find_held_lock+0x2b/0x80 [ 324.519160][ T9748] ? __pfx_nbd_dev_add+0x10/0x10 [ 324.519189][ T9748] ? nbd_genl_connect+0x98e/0x1c60 [ 324.519243][ T9748] ? bpf_lsm_capable+0x9/0x10 [ 324.519269][ T9748] ? __radix_tree_lookup+0x21f/0x2c0 [ 324.519320][ T9748] nbd_genl_connect+0x8b0/0x1c60 [ 324.519361][ T9748] ? __pfx_nbd_genl_connect+0x10/0x10 [ 324.519397][ T9748] ? __nla_parse+0x40/0x60 [ 324.519447][ T9748] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 324.519501][ T9748] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 324.519549][ T9748] genl_family_rcv_msg_doit+0x209/0x2f0 [ 324.519593][ T9748] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 324.519632][ T9748] ? genl_get_cmd+0x194/0x580 [ 324.519682][ T9748] ? __radix_tree_lookup+0x21f/0x2c0 [ 324.519745][ T9748] genl_rcv_msg+0x55c/0x800 [ 324.519790][ T9748] ? __pfx_genl_rcv_msg+0x10/0x10 [ 324.519831][ T9748] ? __pfx_nbd_genl_connect+0x10/0x10 [ 324.519879][ T9748] netlink_rcv_skb+0x158/0x420 [ 324.519907][ T9748] ? __pfx_genl_rcv_msg+0x10/0x10 [ 324.519941][ T9748] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 324.519985][ T9748] ? netlink_deliver_tap+0x1ae/0xd30 [ 324.520017][ T9748] genl_rcv+0x28/0x40 [ 324.520044][ T9748] netlink_unicast+0x5a7/0x870 [ 324.520077][ T9748] ? __pfx_netlink_unicast+0x10/0x10 [ 324.520105][ T9748] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 324.520132][ T9748] ? __lock_acquire+0xb97/0x1ce0 [ 324.520173][ T9748] netlink_sendmsg+0x8d1/0xdd0 [ 324.520206][ T9748] ? __pfx_netlink_sendmsg+0x10/0x10 [ 324.520239][ T9748] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 324.520285][ T9748] ____sys_sendmsg+0xa98/0xc70 [ 324.520321][ T9748] ? copy_msghdr_from_user+0x10a/0x160 [ 324.520347][ T9748] ? __pfx_____sys_sendmsg+0x10/0x10 [ 324.520389][ T9748] ? __pfx_futex_wake_mark+0x10/0x10 [ 324.520432][ T9748] ___sys_sendmsg+0x134/0x1d0 [ 324.520460][ T9748] ? __pfx____sys_sendmsg+0x10/0x10 [ 324.520526][ T9748] __sys_sendmsg+0x16d/0x220 [ 324.520553][ T9748] ? __pfx___sys_sendmsg+0x10/0x10 [ 324.520580][ T9748] ? __x64_sys_futex+0x1e0/0x4c0 [ 324.520631][ T9748] do_syscall_64+0xcd/0x490 [ 324.520661][ T9748] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 324.520687][ T9748] RIP: 0033:0x7f54f358ebe9 [ 324.520707][ T9748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 324.520738][ T9748] RSP: 002b:00007f54f4376038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 324.520762][ T9748] RAX: ffffffffffffffda RBX: 00007f54f37b5fa0 RCX: 00007f54f358ebe9 [ 324.520779][ T9748] RDX: 0000000000008880 RSI: 0000200000001e00 RDI: 0000000000000006 [ 324.520795][ T9748] RBP: 00007f54f3611e19 R08: 0000000000000000 R09: 0000000000000000 [ 324.520811][ T9748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 324.520826][ T9748] R13: 00007f54f37b6038 R14: 00007f54f37b5fa0 R15: 00007ffec44feca8 [ 324.520859][ T9748] [ 324.971693][ T9753] FAULT_INJECTION: forcing a failure. [ 324.971693][ T9753] name failslab, interval 1, probability 0, space 0, times 0 [ 324.986075][ T9753] CPU: 0 UID: 0 PID: 9753 Comm: syz.2.1158 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 324.986124][ T9753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 324.986145][ T9753] Call Trace: [ 324.986156][ T9753] [ 324.986169][ T9753] dump_stack_lvl+0x16c/0x1f0 [ 324.986212][ T9753] should_fail_ex+0x512/0x640 [ 324.986252][ T9753] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 324.986297][ T9753] should_failslab+0xc2/0x120 [ 324.986344][ T9753] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 324.986383][ T9753] ? mark_held_locks+0x49/0x80 [ 324.986427][ T9753] ? key_alloc+0x3e0/0x1330 [ 324.986469][ T9753] key_alloc+0x3e0/0x1330 [ 324.986523][ T9753] ? __pfx_key_alloc+0x10/0x10 [ 324.986561][ T9753] ? __pfx_key_default_cmp+0x10/0x10 [ 324.986607][ T9753] ? __pfx_keyring_search_iterator+0x10/0x10 [ 324.986658][ T9753] keyring_alloc+0x44/0xc0 [ 324.986704][ T9753] look_up_user_keyrings+0x510/0x760 [ 324.986745][ T9753] ? __pfx_look_up_user_keyrings+0x10/0x10 [ 324.986793][ T9753] lookup_user_key+0x1a3/0x1300 [ 324.986833][ T9753] ? __pfx_lookup_user_key+0x10/0x10 [ 324.986866][ T9753] ? do_futex+0x122/0x350 [ 324.986920][ T9753] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 324.986976][ T9753] ? fput+0x9b/0xd0 [ 324.987033][ T9753] keyctl_keyring_clear+0x24/0x1a0 [ 324.987088][ T9753] __do_sys_keyctl+0x355/0x590 [ 324.987121][ T9753] do_syscall_64+0xcd/0x490 [ 324.987164][ T9753] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 324.987198][ T9753] RIP: 0033:0x7fd59058ebe9 [ 324.987225][ T9753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 324.987259][ T9753] RSP: 002b:00007fd591463038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 324.987291][ T9753] RAX: ffffffffffffffda RBX: 00007fd5907b5fa0 RCX: 00007fd59058ebe9 [ 324.987314][ T9753] RDX: 0000000000000002 RSI: 00000000fffffffb RDI: 0000000000000007 [ 324.987335][ T9753] RBP: 00007fd590611e19 R08: 0000000000000008 R09: 0000000000000000 [ 324.987356][ T9753] R10: 000000000000003e R11: 0000000000000246 R12: 0000000000000000 [ 324.987377][ T9753] R13: 00007fd5907b6038 R14: 00007fd5907b5fa0 R15: 00007ffe1dfedfc8 [ 324.987421][ T9753] [ 325.301021][ T9755] [U] - [ 325.303852][ T9755] [U] [ 325.312017][ T9748] nbd: failed to add new device [ 325.335215][ T9755] [U] [ 327.266157][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805a095c00: rx timeout, send abort [ 327.274784][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88805a095c00: 0x0ffff: (3) A timeout occurred and this is the connection abort to close the session. [ 327.985628][ T1306] ieee802154 phy0 wpan0: encryption failed: -22 [ 327.992659][ T1306] ieee802154 phy1 wpan1: encryption failed: -22 [ 328.404441][ T9840] FAULT_INJECTION: forcing a failure. [ 328.404441][ T9840] name failslab, interval 1, probability 0, space 0, times 0 [ 328.502082][ T9840] CPU: 0 UID: 0 PID: 9840 Comm: syz.2.1184 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 328.502131][ T9840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 328.502151][ T9840] Call Trace: [ 328.502162][ T9840] [ 328.502175][ T9840] dump_stack_lvl+0x16c/0x1f0 [ 328.502217][ T9840] should_fail_ex+0x512/0x640 [ 328.502257][ T9840] ? fs_reclaim_acquire+0xae/0x150 [ 328.502321][ T9840] ? tomoyo_encode2+0x100/0x3e0 [ 328.502360][ T9840] should_failslab+0xc2/0x120 [ 328.502406][ T9840] __kmalloc_noprof+0xd2/0x510 [ 328.502443][ T9840] ? d_absolute_path+0x136/0x1a0 [ 328.502497][ T9840] tomoyo_encode2+0x100/0x3e0 [ 328.502543][ T9840] tomoyo_encode+0x29/0x50 [ 328.502583][ T9840] tomoyo_realpath_from_path+0x18f/0x6e0 [ 328.502637][ T9840] tomoyo_check_open_permission+0x2ab/0x3c0 [ 328.502675][ T9840] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 328.502776][ T9840] ? do_raw_spin_lock+0x12c/0x2b0 [ 328.502834][ T9840] tomoyo_file_open+0x6b/0x90 [ 328.502880][ T9840] security_file_open+0x84/0x1e0 [ 328.502918][ T9840] do_dentry_open+0x596/0x1530 [ 328.502967][ T9840] vfs_open+0x82/0x3f0 [ 328.503016][ T9840] path_openat+0x1de4/0x2cb0 [ 328.503066][ T9840] ? __pfx_path_openat+0x10/0x10 [ 328.503113][ T9840] do_filp_open+0x20b/0x470 [ 328.503176][ T9840] ? __pfx_do_filp_open+0x10/0x10 [ 328.503242][ T9840] ? alloc_fd+0x471/0x7d0 [ 328.503291][ T9840] do_sys_openat2+0x11b/0x1d0 [ 328.503338][ T9840] ? __pfx_do_sys_openat2+0x10/0x10 [ 328.503401][ T9840] __x64_sys_openat+0x174/0x210 [ 328.503449][ T9840] ? __pfx___x64_sys_openat+0x10/0x10 [ 328.503511][ T9840] do_syscall_64+0xcd/0x490 [ 328.503548][ T9840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 328.503579][ T9840] RIP: 0033:0x7fd59058ebe9 [ 328.503603][ T9840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 328.503632][ T9840] RSP: 002b:00007fd591463038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 328.503662][ T9840] RAX: ffffffffffffffda RBX: 00007fd5907b5fa0 RCX: 00007fd59058ebe9 [ 328.503682][ T9840] RDX: 0000000000002000 RSI: 0000200000000340 RDI: ffffffffffffff9c [ 328.503702][ T9840] RBP: 00007fd590611e19 R08: 0000000000000000 R09: 0000000000000000 [ 328.503720][ T9840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 328.503738][ T9840] R13: 00007fd5907b6038 R14: 00007fd5907b5fa0 R15: 00007ffe1dfedfc8 [ 328.503778][ T9840] [ 328.503806][ T9840] ERROR: Out of memory at tomoyo_realpath_from_path. [ 330.679200][ T9900] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1203'. [ 330.688983][ T9900] netlink: 334 bytes leftover after parsing attributes in process `syz.6.1203'. [ 332.779144][ T9954] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 332.907136][ T5218] ERROR: Out of memory at tomoyo_memory_ok. [ 333.185880][ T9964] netlink: 'syz.2.1219': attribute type 33 has an invalid length. [ 333.194177][ T9964] netlink: 322 bytes leftover after parsing attributes in process `syz.2.1219'. [ 333.480941][ T9969] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 334.315067][ T9989] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 334.588042][T10001] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1229'. [ 334.664081][T10001] : renamed from lo [ 334.678220][T10005] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 336.421867][T10044] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1247'. [ 336.471129][T10044] : renamed from lo (while UP) [ 338.462047][ T5881] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 339.275566][ T30] audit: type=1800 audit(4294967319.130:9): pid=10098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1255" name="lu_gp_id" dev="configfs" ino=38781 res=0 errno=0 [ 339.370932][T10106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1256'. [ 339.391235][T10106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1256'. [ 340.033310][T10121] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1260'. [ 340.086446][T10125] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1260'. [ 343.754242][T10206] FAULT_INJECTION: forcing a failure. [ 343.754242][T10206] name failslab, interval 1, probability 0, space 0, times 0 [ 343.815643][T10206] CPU: 1 UID: 0 PID: 10206 Comm: syz.2.1281 Not tainted 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 343.815686][T10206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 343.815704][T10206] Call Trace: [ 343.815714][T10206] [ 343.815726][T10206] dump_stack_lvl+0x16c/0x1f0 [ 343.815767][T10206] should_fail_ex+0x512/0x640 [ 343.815803][T10206] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 343.815839][T10206] should_failslab+0xc2/0x120 [ 343.815880][T10206] __kmalloc_cache_noprof+0x6a/0x3e0 [ 343.815921][T10206] ? resv_map_alloc+0x7e/0x400 [ 343.815969][T10206] resv_map_alloc+0x7e/0x400 [ 343.816013][T10206] hugetlbfs_get_inode+0x33f/0x730 [ 343.816052][T10206] hugetlb_file_setup+0x15b/0x620 [ 343.816089][T10206] ksys_mmap_pgoff+0x189/0x5c0 [ 343.816138][T10206] __x64_sys_mmap+0x125/0x190 [ 343.816190][T10206] do_syscall_64+0xcd/0x490 [ 343.816225][T10206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 343.816255][T10206] RIP: 0033:0x7fd59058ebe9 [ 343.816278][T10206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 343.816308][T10206] RSP: 002b:00007fd591463038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 343.816337][T10206] RAX: ffffffffffffffda RBX: 00007fd5907b5fa0 RCX: 00007fd59058ebe9 [ 343.816357][T10206] RDX: 0000000000400002 RSI: 0000000000a00006 RDI: 0000000000000000 [ 343.816376][T10206] RBP: 00007fd590611e19 R08: 0000000000000602 R09: 0000300000000000 [ 343.816395][T10206] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 343.816414][T10206] R13: 00007fd5907b6038 R14: 00007fd5907b5fa0 R15: 00007ffe1dfedfc8 [ 343.816452][T10206] [ 344.392217][ T30] audit: type=1800 audit(4294967324.237:10): pid=10218 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1284" name="lu_gp_id" dev="configfs" ino=39643 res=0 errno=0 [ 344.423776][T10218] ALUA lu_gp_id: 393216 exceeds maximum: 0x0000ffff                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                           [ 407.103561][ C1] vcan0: j1939_tp_rxtimer: 0xffff88803123f800: rx timeout, send abort [ 407.112056][ C1] vcan0: j1939_tp_rxtimer: 0xffff88803123cc00: rx timeout, send abort [ 407.120571][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88803123f800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 407.135206][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88803123cc00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 407.158961][ T5215] ERROR: Out of memory at tomoyo_memory_ok. [ 407.376751][T11536] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1671'. syzkaller syzkaller login: [ 408.476665][T11559] netlink: 'syz.1.1680': attribute type 29 has an invalid length. [ 409.327591][T11580] loop6: detected capacity change from 0 to 8 [ 409.811187][T11591] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1694'. [ 410.491423][T11604] serio: Serial port pty6 [ 410.736764][ C1] vcan0: j1939_tp_rxtimer: 0xffff88807dfdc400: rx timeout, send abort [ 411.245525][ C1] vcan0: j1939_tp_rxtimer: 0xffff88807dfdc400: abort rx timeout. Force session deactivation [ 411.676377][T11629] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1710'. [ 411.730831][T11632] netlink: 25 bytes leftover after parsing attributes in process `syz.5.1710'. [ 411.895308][T11636] __vm_enough_memory: pid: 11636, comm: syz.6.1711, bytes: 4398046511104 not enough memory for the allocation [ 412.854040][T11646] FAULT_INJECTION: forcing a failure. [ 412.854040][T11646] name failslab, interval 1, probability 0, space 0, times 0 [ 412.923242][T11646] CPU: 1 UID: 0 PID: 11646 Comm: syz.1.1716 Tainted: GF R 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 412.923306][T11646] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 412.923321][T11646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 412.923342][T11646] Call Trace: [ 412.923353][T11646] [ 412.923366][T11646] dump_stack_lvl+0x16c/0x1f0 [ 412.923409][T11646] should_fail_ex+0x512/0x640 [ 412.923450][T11646] ? fs_reclaim_acquire+0xae/0x150 [ 412.923504][T11646] should_failslab+0xc2/0x120 [ 412.923551][T11646] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 412.923599][T11646] ? security_inode_alloc+0x3b/0x2b0 [ 412.923657][T11646] security_inode_alloc+0x3b/0x2b0 [ 412.923690][T11646] inode_init_always_gfp+0xce4/0x1030 [ 412.923743][T11646] alloc_inode+0x86/0x240 [ 412.923791][T11646] sock_alloc+0x40/0x280 [ 412.923831][T11646] do_accept+0xf7/0x530 [ 412.923881][T11646] ? 0xffffffff81000000 [ 412.923903][T11646] ? do_raw_spin_lock+0x12c/0x2b0 [ 412.923955][T11646] ? __pfx_do_accept+0x10/0x10 [ 412.924033][T11646] ? 0xffffffff81000000 [ 412.924055][T11646] __sys_accept4+0x100/0x1c0 [ 412.924106][T11646] ? __pfx___sys_accept4+0x10/0x10 [ 412.924157][T11646] ? __pfx_do_writev+0x10/0x10 [ 412.924203][T11646] __x64_sys_accept+0x74/0xb0 [ 412.924250][T11646] ? lockdep_hardirqs_on+0x7c/0x110 [ 412.924285][T11646] do_syscall_64+0xcd/0x490 [ 412.924325][T11646] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 412.924358][T11646] RIP: 0033:0x7f7dffb8ebe9 [ 412.924384][T11646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 412.924417][T11646] RSP: 002b:00007f7dfddf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b [ 412.924448][T11646] RAX: ffffffffffffffda RBX: 00007f7dffdb5fa0 RCX: 00007f7dffb8ebe9 [ 412.924471][T11646] RDX: ffffffff81000000 RSI: ffffffffffffffff RDI: 0000000000000003 [ 412.924492][T11646] RBP: 00007f7dffc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 412.924513][T11646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 412.924534][T11646] R13: 00007f7dffdb6038 R14: 00007f7dffdb5fa0 R15: 00007ffe6fb40b78 [ 412.924568][T11646] ? 0xffffffff81000000 [ 412.924598][T11646] [ 413.809126][T11664] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1722'. [ 413.884939][T11667] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1722'. [ 414.033773][T11671] sp0: Synchronizing with TNC [ 414.038912][T11664] netlink: 210 bytes leftover after parsing attributes in process `syz.1.1722'. [ 414.501783][T11680] FAULT_INJECTION: forcing a failure. [ 414.501783][T11680] name failslab, interval 1, probability 0, space 0, times 0 [ 414.515818][T11680] CPU: 1 UID: 0 PID: 11680 Comm: syz.2.1728 Tainted: GF R 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 414.515861][T11680] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 414.515871][T11680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 414.515885][T11680] Call Trace: [ 414.515892][T11680] [ 414.515901][T11680] dump_stack_lvl+0x16c/0x1f0 [ 414.515930][T11680] should_fail_ex+0x512/0x640 [ 414.515959][T11680] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 414.516001][T11680] should_failslab+0xc2/0x120 [ 414.516033][T11680] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 414.516063][T11680] ? __alloc_skb+0x2b2/0x380 [ 414.516091][T11680] __alloc_skb+0x2b2/0x380 [ 414.516113][T11680] ? __pfx___alloc_skb+0x10/0x10 [ 414.516146][T11680] tipc_buf_acquire+0x26/0xe0 [ 414.516181][T11680] tipc_msg_build+0x112/0x1150 [ 414.516222][T11680] ? __pfx_tipc_msg_build+0x10/0x10 [ 414.516262][T11680] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 414.516296][T11680] __tipc_sendmsg+0xa30/0x19a0 [ 414.516338][T11680] ? __pfx___tipc_sendmsg+0x10/0x10 [ 414.516369][T11680] ? __lock_acquire+0xb97/0x1ce0 [ 414.516408][T11680] ? __pfx_woken_wake_function+0x10/0x10 [ 414.516462][T11680] ? __local_bh_enable_ip+0xa4/0x120 [ 414.516499][T11680] tipc_sendmsg+0x4f/0x70 [ 414.516536][T11680] sock_write_iter+0x4fc/0x5b0 [ 414.516569][T11680] ? __pfx_sock_write_iter+0x10/0x10 [ 414.516612][T11680] ? __futex_wait+0x24c/0x2f0 [ 414.516648][T11680] ? copy_iovec_from_user+0x131/0x170 [ 414.516688][T11680] do_iter_readv_writev+0x657/0x950 [ 414.516716][T11680] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 414.516754][T11680] ? bpf_lsm_file_permission+0x9/0x10 [ 414.516790][T11680] ? security_file_permission+0x71/0x210 [ 414.516820][T11680] ? rw_verify_area+0xcf/0x6c0 [ 414.516850][T11680] vfs_writev+0x35f/0xde0 [ 414.516878][T11680] ? __lock_acquire+0x62e/0x1ce0 [ 414.516912][T11680] ? __pfx_vfs_writev+0x10/0x10 [ 414.516958][T11680] ? __fget_files+0x20e/0x3c0 [ 414.516992][T11680] ? do_writev+0x28c/0x340 [ 414.517015][T11680] do_writev+0x28c/0x340 [ 414.517050][T11680] ? __pfx_do_writev+0x10/0x10 [ 414.517085][T11680] do_syscall_64+0xcd/0x490 [ 414.517114][T11680] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 414.517138][T11680] RIP: 0033:0x7fd59058ebe9 [ 414.517156][T11680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 414.517180][T11680] RSP: 002b:00007fd591463038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 414.517202][T11680] RAX: ffffffffffffffda RBX: 00007fd5907b5fa0 RCX: 00007fd59058ebe9 [ 414.517218][T11680] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 414.517232][T11680] RBP: 00007fd590611e19 R08: 0000000000000000 R09: 0000000000000000 [ 414.517246][T11680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 414.517260][T11680] R13: 00007fd5907b6038 R14: 00007fd5907b5fa0 R15: 00007ffe1dfedfc8 [ 414.517294][T11680] [ 416.017051][T11700] FAULT_INJECTION: forcing a failure. [ 416.017051][T11700] name failslab, interval 1, probability 0, space 0, times 0 [ 416.055390][T11698] vivid-003: ================= START STATUS ================= [ 416.100213][T11698] vivid-003: Radio HW Seek Mode: Bounded [ 416.108560][T11700] CPU: 1 UID: 0 PID: 11700 Comm: syz.2.1736 Tainted: GF R 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 416.108619][T11700] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 416.108633][T11700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 416.108663][T11700] Call Trace: [ 416.108674][T11700] [ 416.108687][T11700] dump_stack_lvl+0x16c/0x1f0 [ 416.108728][T11700] should_fail_ex+0x512/0x640 [ 416.108769][T11700] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 416.108815][T11700] should_failslab+0xc2/0x120 [ 416.108859][T11700] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 416.108901][T11700] ? __kernfs_new_node+0xd2/0x8e0 [ 416.108948][T11700] __kernfs_new_node+0xd2/0x8e0 [ 416.108997][T11700] ? __pfx___kernfs_new_node+0x10/0x10 [ 416.109051][T11700] ? find_held_lock+0x2b/0x80 [ 416.109088][T11700] ? kernfs_root+0xee/0x2a0 [ 416.109140][T11700] kernfs_new_node+0x13c/0x1e0 [ 416.109198][T11700] __kernfs_create_file+0x53/0x350 [ 416.109238][T11700] sysfs_add_file_mode_ns+0x207/0x3c0 [ 416.109290][T11700] sysfs_merge_group+0x1aa/0x340 [ 416.109336][T11700] ? __pfx_sysfs_merge_group+0x10/0x10 [ 416.109387][T11700] ? __pfx_dev_add_physical_location+0x10/0x10 [ 416.109436][T11700] ? bus_to_subsys+0x131/0x160 [ 416.109493][T11700] dpm_sysfs_add+0x237/0x280 [ 416.109539][T11700] device_add+0x9a6/0x1aa0 [ 416.109589][T11700] ? __pfx_device_add+0x10/0x10 [ 416.109635][T11700] ? lockdep_init_map_type+0x5c/0x280 [ 416.109692][T11700] ? __init_waitqueue_head+0xca/0x150 [ 416.109757][T11700] rfkill_register+0x1ad/0xb40 [ 416.109809][T11700] nfc_register_device+0x11f/0x3c0 [ 416.109852][T11700] nci_register_device+0x7f1/0xb80 [ 416.109907][T11700] ? __pfx_nci_register_device+0x10/0x10 [ 416.109966][T11700] ? lockdep_init_map_type+0x5c/0x280 [ 416.110019][T11700] virtual_ncidev_open+0x141/0x220 [ 416.110074][T11700] ? __pfx_virtual_ncidev_open+0x10/0x10 [ 416.110127][T11700] misc_open+0x35a/0x420 [ 416.110180][T11700] ? __pfx_misc_open+0x10/0x10 [ 416.110231][T11700] chrdev_open+0x231/0x6a0 [ 416.110274][T11700] ? __pfx_apparmor_file_open+0x10/0x10 [ 416.110329][T11700] ? __pfx_chrdev_open+0x10/0x10 [ 416.110377][T11700] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 416.110426][T11700] do_dentry_open+0x97f/0x1530 [ 416.110468][T11700] ? __pfx_chrdev_open+0x10/0x10 [ 416.110522][T11700] vfs_open+0x82/0x3f0 [ 416.110578][T11700] path_openat+0x1de4/0x2cb0 [ 416.110634][T11700] ? __pfx_path_openat+0x10/0x10 [ 416.110696][T11700] do_filp_open+0x20b/0x470 [ 416.110737][T11700] ? __pfx_do_filp_open+0x10/0x10 [ 416.110811][T11700] ? alloc_fd+0x471/0x7d0 [ 416.110858][T11700] do_sys_openat2+0x11b/0x1d0 [ 416.110902][T11700] ? __pfx_do_sys_openat2+0x10/0x10 [ 416.110959][T11700] __x64_sys_openat+0x174/0x210 [ 416.111004][T11700] ? __pfx___x64_sys_openat+0x10/0x10 [ 416.111063][T11700] do_syscall_64+0xcd/0x490 [ 416.111097][T11700] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 416.111124][T11700] RIP: 0033:0x7fd59058ebe9 [ 416.111148][T11700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 416.111175][T11700] RSP: 002b:00007fd591463038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 416.111201][T11700] RAX: ffffffffffffffda RBX: 00007fd5907b5fa0 RCX: 00007fd59058ebe9 [ 416.111219][T11700] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c [ 416.111236][T11700] RBP: 00007fd590611e19 R08: 0000000000000000 R09: 0000000000000000 [ 416.111253][T11700] R10: 000000000000001f R11: 0000000000000246 R12: 0000000000000000 [ 416.111270][T11700] R13: 00007fd5907b6038 R14: 00007fd5907b5fa0 R15: 00007ffe1dfedfc8 [ 416.111305][T11700] [ 416.142211][T11698] vivid-003: Radio Programmable HW Seek: [ 416.506608][T11709] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 416.679740][T11698] false [ 416.688631][T11698] vivid-003: RDS Rx I/O Mode: Block I/O [ 416.710871][T11698] vivid-003: Generate RBDS Instead of RDS: false [ 416.751354][T11698] vivid-003: RDS Reception: true [ 416.771668][T11698] vivid-003: RDS Program Type: 0 inactive [ 416.786556][T11698] vivid-003: RDS PS Name: inactive [ 416.798628][T11698] vivid-003: RDS Radio Text: inactive [ 416.825742][T11698] vivid-003: RDS Traffic Announcement: false inactive [ 416.856573][T11698] vivid-003: RDS Traffic Program: false inactive [ 416.885749][T11698] vivid-003: RDS Music: false inactive [ 416.911833][T11698] vivid-003: ================== END STATUS ================== [ 417.956693][T11726] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1743'. [ 417.967617][T11726] netlink: 350 bytes leftover after parsing attributes in process `syz.1.1743'. [ 418.179890][T11731] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1746'. [ 418.191185][T11731] bridge_slave_1: left allmulticast mode [ 418.204420][T11731] bridge_slave_1: left promiscuous mode [ 418.222224][T11731] bridge0: port 2(bridge_slave_1) entered disabled state [ 418.268709][T11731] bridge_slave_0: left allmulticast mode [ 418.275391][T11731] bridge_slave_0: left promiscuous mode [ 418.296065][T11731] bridge0: port 1(bridge_slave_0) entered disabled state [ 418.627514][T11737] FAULT_INJECTION: forcing a failure. [ 418.627514][T11737] name fail_futex, interval 1, probability 0, space 0, times 0 [ 418.643232][T11737] CPU: 1 UID: 0 PID: 11737 Comm: syz.2.1747 Tainted: GF R 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 418.643292][T11737] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 418.643306][T11737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 418.643325][T11737] Call Trace: [ 418.643335][T11737] [ 418.643346][T11737] dump_stack_lvl+0x16c/0x1f0 [ 418.643388][T11737] should_fail_ex+0x512/0x640 [ 418.643431][T11737] should_fail_futex+0x4c/0x60 [ 418.643468][T11737] futex_lock_pi_atomic+0x101/0xd50 [ 418.643530][T11737] futex_lock_pi+0x23f/0x7c0 [ 418.643581][T11737] ? __pfx_futex_lock_pi+0x10/0x10 [ 418.643624][T11737] ? __futex_wait+0x24c/0x2f0 [ 418.643674][T11737] ? lockdep_hardirqs_on+0x7c/0x110 [ 418.643728][T11737] ? futex_private_hash_put+0x18a/0x300 [ 418.643774][T11737] ? __pfx_futex_wake_mark+0x10/0x10 [ 418.643837][T11737] ? ksys_write+0x190/0x250 [ 418.643882][T11737] do_futex+0x11a/0x350 [ 418.643925][T11737] ? __pfx_do_futex+0x10/0x10 [ 418.643976][T11737] __x64_sys_futex+0x1e0/0x4c0 [ 418.644021][T11737] ? fput+0x9b/0xd0 [ 418.644066][T11737] ? __pfx___x64_sys_futex+0x10/0x10 [ 418.644119][T11737] ? xfd_validate_state+0x61/0x180 [ 418.644170][T11737] ? __pfx_ksys_write+0x10/0x10 [ 418.644222][T11737] do_syscall_64+0xcd/0x490 [ 418.644261][T11737] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 418.644294][T11737] RIP: 0033:0x7fd59058ebe9 [ 418.644320][T11737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 418.644352][T11737] RSP: 002b:00007fd591463038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 418.644384][T11737] RAX: ffffffffffffffda RBX: 00007fd5907b5fa0 RCX: 00007fd59058ebe9 [ 418.644404][T11737] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 418.644422][T11737] RBP: 00007fd590611e19 R08: 0000000000000000 R09: 000000008000fff2 [ 418.644442][T11737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 418.644461][T11737] R13: 00007fd5907b6038 R14: 00007fd5907b5fa0 R15: 00007ffe1dfedfc8 [ 418.644503][T11737] [ 420.009355][T11762] netlink: 146 bytes leftover after parsing attributes in process `syz.6.1756'. [ 420.408790][T11772] sp0: Synchronizing with TNC [ 420.593238][T11777] netlink: 'syz.2.1761': attribute type 1 has an invalid length. [ 420.619581][T11777] netlink: 'syz.2.1761': attribute type 6 has an invalid length. [ 420.829160][T11781] netlink: 25 bytes leftover after parsing attributes in process `syz.5.1762'. [ 420.906837][T11784] netlink: 266 bytes leftover after parsing attributes in process `syz.2.1764'. [ 420.969079][T11781] ima: policy update failed [ 420.976700][ T30] audit: type=1802 audit(4294968423.788:14): pid=11781 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.1762" res=0 errno=0 [ 421.136451][T11791] netlink: 186 bytes leftover after parsing attributes in process `syz.2.1768'. [ 421.343287][T11795] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1769'. [ 421.414617][T11795] bridge_slave_1: left allmulticast mode [ 421.428320][T11795] bridge_slave_1: left promiscuous mode [ 421.448456][T11795] bridge0: port 2(bridge_slave_1) entered disabled state [ 421.502405][T11795] bridge_slave_0: left allmulticast mode [ 421.516654][T11795] bridge_slave_0: left promiscuous mode [ 421.535619][T11795] bridge0: port 1(bridge_slave_0) entered disabled state [ 421.736941][T11799] sp0: Synchronizing with TNC [ 423.126915][T11831] netlink: 504 bytes leftover after parsing attributes in process `syz.6.1781'. [ 423.144105][T11831] netlink: 350 bytes leftover after parsing attributes in process `syz.6.1781'. [ 423.755020][T11843] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1786'. [ 423.782448][T11843] dummy0: left allmulticast mode [ 423.793086][T11843] dummy0: left promiscuous mode [ 423.798523][T11843] bridge0: port 3(dummy0) entered disabled state [ 423.808854][T11843] bridge_slave_1: left allmulticast mode [ 423.818656][T11843] bridge_slave_1: left promiscuous mode [ 423.826989][T11843] bridge0: port 2(bridge_slave_1) entered disabled state [ 423.858878][T11843] bridge_slave_0: left allmulticast mode [ 423.867407][T11843] bridge_slave_0: left promiscuous mode [ 423.881591][T11843] bridge0: port 1(bridge_slave_0) entered disabled state [ 424.439161][T11850] netlink: 244 bytes leftover after parsing attributes in process `syz.1.1788'. [ 424.785858][T11857] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1792'. [ 424.795347][T11857] : renamed from bond_slave_1 (while UP) [ 424.983607][T11862] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 425.168788][T11860] FAULT_INJECTION: forcing a failure. [ 425.168788][T11860] name fail_futex, interval 1, probability 0, space 0, times 0 [ 425.182174][T11860] CPU: 0 UID: 0 PID: 11860 Comm: syz.5.1793 Tainted: GF R 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 425.182232][T11860] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 425.182245][T11860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 425.182263][T11860] Call Trace: [ 425.182273][T11860] [ 425.182285][T11860] dump_stack_lvl+0x16c/0x1f0 [ 425.182325][T11860] should_fail_ex+0x512/0x640 [ 425.182371][T11860] should_fail_futex+0x4c/0x60 [ 425.182412][T11860] futex_lock_pi_atomic+0x148/0xd50 [ 425.182471][T11860] futex_lock_pi+0x23f/0x7c0 [ 425.182548][T11860] ? __pfx_futex_lock_pi+0x10/0x10 [ 425.182622][T11860] ? find_held_lock+0x2b/0x80 [ 425.182667][T11860] ? futex_private_hash_put+0x18a/0x300 [ 425.182715][T11860] ? __pfx_futex_wake_mark+0x10/0x10 [ 425.182786][T11860] ? ksys_write+0x190/0x250 [ 425.182833][T11860] do_futex+0x11a/0x350 [ 425.182878][T11860] ? __pfx_do_futex+0x10/0x10 [ 425.182932][T11860] __x64_sys_futex+0x1e0/0x4c0 [ 425.182977][T11860] ? fput+0x9b/0xd0 [ 425.183021][T11860] ? __pfx___x64_sys_futex+0x10/0x10 [ 425.183065][T11860] ? xfd_validate_state+0x61/0x180 [ 425.183113][T11860] ? __pfx_ksys_write+0x10/0x10 [ 425.183163][T11860] do_syscall_64+0xcd/0x490 [ 425.183202][T11860] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 425.183234][T11860] RIP: 0033:0x7ffb4418ebe9 [ 425.183259][T11860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 425.183290][T11860] RSP: 002b:00007ffb450d0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 425.183321][T11860] RAX: ffffffffffffffda RBX: 00007ffb443b5fa0 RCX: 00007ffb4418ebe9 [ 425.183342][T11860] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 425.183360][T11860] RBP: 00007ffb44211e19 R08: 0000000000000000 R09: 000000008000fff2 [ 425.183379][T11860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 425.183397][T11860] R13: 00007ffb443b6038 R14: 00007ffb443b5fa0 R15: 00007ffe4ac63618 [ 425.183440][T11860] [ 425.858768][T11876] FAULT_INJECTION: forcing a failure. [ 425.858768][T11876] name fail_futex, interval 1, probability 0, space 0, times 0 [ 425.872591][T11876] CPU: 1 UID: 0 PID: 11876 Comm: syz.6.1808 Tainted: GF R 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 425.872635][T11876] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 425.872644][T11876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 425.872659][T11876] Call Trace: [ 425.872667][T11876] [ 425.872675][T11876] dump_stack_lvl+0x16c/0x1f0 [ 425.872706][T11876] should_fail_ex+0x512/0x640 [ 425.872739][T11876] should_fail_futex+0x4c/0x60 [ 425.872768][T11876] futex_lock_pi_atomic+0x101/0xd50 [ 425.872808][T11876] futex_lock_pi+0x23f/0x7c0 [ 425.872846][T11876] ? __pfx_futex_lock_pi+0x10/0x10 [ 425.872878][T11876] ? __futex_wait+0x24c/0x2f0 [ 425.872916][T11876] ? lockdep_hardirqs_on+0x7c/0x110 [ 425.872956][T11876] ? futex_private_hash_put+0x18a/0x300 [ 425.872989][T11876] ? __pfx_futex_wake_mark+0x10/0x10 [ 425.873032][T11876] ? ksys_write+0x190/0x250 [ 425.873065][T11876] do_futex+0x11a/0x350 [ 425.873094][T11876] ? __pfx_do_futex+0x10/0x10 [ 425.873131][T11876] __x64_sys_futex+0x1e0/0x4c0 [ 425.873162][T11876] ? fput+0x9b/0xd0 [ 425.873194][T11876] ? __pfx___x64_sys_futex+0x10/0x10 [ 425.873224][T11876] ? xfd_validate_state+0x61/0x180 [ 425.873258][T11876] ? __pfx_ksys_write+0x10/0x10 [ 425.873293][T11876] do_syscall_64+0xcd/0x490 [ 425.873321][T11876] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 425.873344][T11876] RIP: 0033:0x7f54f358ebe9 [ 425.873362][T11876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 425.873386][T11876] RSP: 002b:00007f54f4376038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 425.873407][T11876] RAX: ffffffffffffffda RBX: 00007f54f37b5fa0 RCX: 00007f54f358ebe9 [ 425.873423][T11876] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 425.873436][T11876] RBP: 00007f54f3611e19 R08: 0000000000000000 R09: 000000008000fff2 [ 425.873450][T11876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 425.873472][T11876] R13: 00007f54f37b6038 R14: 00007f54f37b5fa0 R15: 00007ffec44feca8 [ 425.873502][T11876] [ 426.984505][T11892] netlink: 98 bytes leftover after parsing attributes in process `syz.5.1805'. [ 427.187976][T11900] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1807'. [ 427.225055][T11900] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 427.264023][T11900] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 427.289262][T11900] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 427.298714][T11900] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 427.411295][T11903] netlink: 266 bytes leftover after parsing attributes in process `syz.6.1809'. [ 427.433559][T11903] IPv6: NLM_F_CREATE should be specified when creating new route [ 430.331032][T11941] FAULT_INJECTION: forcing a failure. [ 430.331032][T11941] name failslab, interval 1, probability 0, space 0, times 0 [ 430.374366][T11941] CPU: 0 UID: 0 PID: 11941 Comm: syz.1.1817 Tainted: GF R 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 430.374424][T11941] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 430.374437][T11941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 430.374456][T11941] Call Trace: [ 430.374467][T11941] [ 430.374479][T11941] dump_stack_lvl+0x16c/0x1f0 [ 430.374522][T11941] should_fail_ex+0x512/0x640 [ 430.374564][T11941] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 430.374605][T11941] should_failslab+0xc2/0x120 [ 430.374650][T11941] __kmalloc_cache_noprof+0x6a/0x3e0 [ 430.374688][T11941] ? copy_time_ns+0xf6/0x580 [ 430.374728][T11941] copy_time_ns+0xf6/0x580 [ 430.374758][T11941] ? copy_cgroup_ns+0x71/0x700 [ 430.374798][T11941] create_new_namespaces+0x48a/0xa90 [ 430.374844][T11941] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 430.374892][T11941] ksys_unshare+0x45b/0xa40 [ 430.374938][T11941] ? __pfx_ksys_unshare+0x10/0x10 [ 430.374986][T11941] ? xfd_validate_state+0x61/0x180 [ 430.375048][T11941] __x64_sys_unshare+0x31/0x40 [ 430.375091][T11941] do_syscall_64+0xcd/0x490 [ 430.375129][T11941] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.375162][T11941] RIP: 0033:0x7f7dffb8ebe9 [ 430.375186][T11941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 430.375218][T11941] RSP: 002b:00007f7dfddf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 430.375246][T11941] RAX: ffffffffffffffda RBX: 00007f7dffdb5fa0 RCX: 00007f7dffb8ebe9 [ 430.375267][T11941] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 430.375288][T11941] RBP: 00007f7dffc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 430.375316][T11941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 430.375336][T11941] R13: 00007f7dffdb6038 R14: 00007f7dffdb5fa0 R15: 00007ffe6fb40b78 [ 430.375376][T11941] [ 430.680446][T11945] netlink: 266 bytes leftover after parsing attributes in process `syz.5.1819'. [ 430.691251][T11945] IPv6: NLM_F_CREATE should be specified when creating new route [ 430.840958][T11952] netlink: 244 bytes leftover after parsing attributes in process `syz.5.1826'. [ 432.725763][T11994] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1839'. [ 432.755509][T11994] : renamed from bond_slave_1 (while UP) [ 433.043925][T12002] FAULT_INJECTION: forcing a failure. [ 433.043925][T12002] name fail_futex, interval 1, probability 0, space 0, times 0 [ 433.065820][T12002] CPU: 1 UID: 0 PID: 12002 Comm: syz.6.1842 Tainted: GF R 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 433.065885][T12002] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 433.065900][T12002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 433.065920][T12002] Call Trace: [ 433.065931][T12002] [ 433.065945][T12002] dump_stack_lvl+0x16c/0x1f0 [ 433.065987][T12002] should_fail_ex+0x512/0x640 [ 433.066036][T12002] get_futex_key+0x1d0/0x1560 [ 433.066083][T12002] ? __pfx_get_futex_key+0x10/0x10 [ 433.066135][T12002] ? __pfx___schedule+0x10/0x10 [ 433.066164][T12002] ? do_raw_spin_unlock+0x172/0x230 [ 433.066226][T12002] futex_wait_setup+0x9d/0x550 [ 433.066290][T12002] __futex_wait+0x194/0x2f0 [ 433.066343][T12002] ? __pfx___futex_wait+0x10/0x10 [ 433.066402][T12002] ? __pfx_futex_wake_mark+0x10/0x10 [ 433.066460][T12002] ? futex_private_hash_put+0x176/0x300 [ 433.066506][T12002] ? futex_private_hash_put+0x18a/0x300 [ 433.066550][T12002] futex_wait+0xe8/0x380 [ 433.066605][T12002] ? __pfx_futex_wait+0x10/0x10 [ 433.066672][T12002] ? __pfx_pollwake+0x10/0x10 [ 433.066710][T12002] do_futex+0x229/0x350 [ 433.066754][T12002] ? __pfx_do_futex+0x10/0x10 [ 433.066800][T12002] ? ktime_get_ts64+0x2d2/0x400 [ 433.066849][T12002] __x64_sys_futex+0x1e0/0x4c0 [ 433.066900][T12002] ? __pfx___x64_sys_futex+0x10/0x10 [ 433.066945][T12002] ? xfd_validate_state+0x61/0x180 [ 433.066993][T12002] ? __pfx___x64_sys_poll+0x10/0x10 [ 433.067042][T12002] do_syscall_64+0xcd/0x490 [ 433.067083][T12002] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 433.067116][T12002] RIP: 0033:0x7f54f358ebe9 [ 433.067149][T12002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 433.067184][T12002] RSP: 002b:00007f54f43760e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 433.067215][T12002] RAX: ffffffffffffffda RBX: 00007f54f37b5fa8 RCX: 00007f54f358ebe9 [ 433.067237][T12002] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f54f37b5fa8 [ 433.067258][T12002] RBP: 00007f54f37b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 433.067279][T12002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 433.067299][T12002] R13: 00007f54f37b6038 R14: 00007ffec44febc0 R15: 00007ffec44feca8 [ 433.067342][T12002] [ 433.661504][T12008] ================================================================== [ 433.669726][T12008] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0 [ 433.677521][T12008] Read of size 8 at addr ffff888144af4818 by task syz.1.1848/12008 [ 433.685511][T12008] [ 433.687882][T12008] CPU: 1 UID: 0 PID: 12008 Comm: syz.1.1848 Tainted: GF R 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 433.687940][T12008] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 433.687954][T12008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 433.687974][T12008] Call Trace: [ 433.687985][T12008] [ 433.687997][T12008] dump_stack_lvl+0x116/0x1f0 [ 433.688039][T12008] print_report+0xcd/0x630 [ 433.688084][T12008] ? __virt_addr_valid+0x81/0x610 [ 433.688125][T12008] ? __phys_addr+0xe8/0x180 [ 433.688166][T12008] ? dvb_device_open+0x36a/0x3b0 [ 433.688204][T12008] kasan_report+0xe0/0x110 [ 433.688247][T12008] ? dvb_device_open+0x36a/0x3b0 [ 433.688286][T12008] ? __pfx_dvb_device_open+0x10/0x10 [ 433.688322][T12008] dvb_device_open+0x36a/0x3b0 [ 433.688360][T12008] ? __pfx_dvb_device_open+0x10/0x10 [ 433.688396][T12008] chrdev_open+0x231/0x6a0 [ 433.688437][T12008] ? __pfx_apparmor_file_open+0x10/0x10 [ 433.688492][T12008] ? __pfx_chrdev_open+0x10/0x10 [ 433.688537][T12008] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 433.688580][T12008] do_dentry_open+0x97f/0x1530 [ 433.688621][T12008] ? __pfx_chrdev_open+0x10/0x10 [ 433.688669][T12008] vfs_open+0x82/0x3f0 [ 433.688720][T12008] path_openat+0x1de4/0x2cb0 [ 433.688777][T12008] ? __pfx_path_openat+0x10/0x10 [ 433.688823][T12008] do_filp_open+0x20b/0x470 [ 433.688863][T12008] ? __pfx_do_filp_open+0x10/0x10 [ 433.688920][T12008] ? alloc_fd+0x471/0x7d0 [ 433.688959][T12008] do_sys_openat2+0x11b/0x1d0 [ 433.689010][T12008] ? __pfx_do_sys_openat2+0x10/0x10 [ 433.689061][T12008] ? fdget+0x187/0x210 [ 433.689095][T12008] ? __sys_connect+0xe0/0x160 [ 433.689151][T12008] __x64_sys_openat+0x174/0x210 [ 433.689205][T12008] ? __pfx___x64_sys_openat+0x10/0x10 [ 433.689266][T12008] do_syscall_64+0xcd/0x490 [ 433.689303][T12008] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 433.689337][T12008] RIP: 0033:0x7f7dffb8ebe9 [ 433.689362][T12008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 433.689394][T12008] RSP: 002b:00007f7dfddf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 433.689426][T12008] RAX: ffffffffffffffda RBX: 00007f7dffdb5fa0 RCX: 00007f7dffb8ebe9 [ 433.689448][T12008] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 433.689467][T12008] RBP: 00007f7dffc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 433.689486][T12008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 433.689505][T12008] R13: 00007f7dffdb6038 R14: 00007f7dffdb5fa0 R15: 00007ffe6fb40b78 [ 433.689538][T12008] [ 433.689549][T12008] [ 433.952496][T12008] Allocated by task 11889: [ 433.956925][T12008] kasan_save_stack+0x33/0x60 [ 433.961644][T12008] kasan_save_track+0x14/0x30 [ 433.966366][T12008] __kasan_kmalloc+0xaa/0xb0 [ 433.970986][T12008] __kvmalloc_node_noprof+0x27b/0x620 [ 433.976376][T12008] io_alloc_cache_init+0x33/0x170 [ 433.981426][T12008] io_uring_setup+0x680/0x2080 [ 433.986212][T12008] __x64_sys_io_uring_setup+0xc2/0x170 [ 433.991697][T12008] do_syscall_64+0xcd/0x490 [ 433.996223][T12008] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 434.002138][T12008] [ 434.004476][T12008] Freed by task 13: [ 434.008298][T12008] kasan_save_stack+0x33/0x60 [ 434.013046][T12008] kasan_save_track+0x14/0x30 [ 434.017748][T12008] kasan_save_free_info+0x3b/0x60 [ 434.022789][T12008] __kasan_slab_free+0x60/0x70 [ 434.027596][T12008] kfree+0x2b4/0x4d0 [ 434.031508][T12008] io_alloc_cache_free+0x1eb/0x2e0 [ 434.036732][T12008] io_free_alloc_caches+0x70/0x80 [ 434.041793][T12008] io_ring_exit_work+0x7d8/0x10a0 [ 434.046833][T12008] process_one_work+0x9cc/0x1b70 [ 434.051802][T12008] worker_thread+0x6c8/0xf10 [ 434.056408][T12008] kthread+0x3c5/0x780 [ 434.060508][T12008] ret_from_fork+0x5d7/0x6f0 [ 434.065141][T12008] ret_from_fork_asm+0x1a/0x30 [ 434.069943][T12008] [ 434.072279][T12008] The buggy address belongs to the object at ffff888144af4800 [ 434.072279][T12008] which belongs to the cache kmalloc-256 of size 256 [ 434.086342][T12008] The buggy address is located 24 bytes inside of [ 434.086342][T12008] freed 256-byte region [ffff888144af4800, ffff888144af4900) [ 434.100082][T12008] [ 434.102426][T12008] The buggy address belongs to the physical page: [ 434.108857][T12008] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x144af4 [ 434.117814][T12008] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 434.126360][T12008] anon flags: 0x57ff00000000040(head|node=1|zone=2|lastcpupid=0x7ff) [ 434.134440][T12008] page_type: f5(slab) [ 434.138441][T12008] raw: 057ff00000000040 ffff88801b841b40 ffffea0001f39b00 0000000000000005 [ 434.147049][T12008] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 434.155662][T12008] head: 057ff00000000040 ffff88801b841b40 ffffea0001f39b00 0000000000000005 [ 434.164370][T12008] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000 [ 434.173078][T12008] head: 057ff00000000001 ffffea000512bd01 00000000ffffffff 00000000ffffffff [ 434.181782][T12008] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 434.190469][T12008] page dumped because: kasan: bad access detected [ 434.196910][T12008] page_owner tracks the page as allocated [ 434.202633][T12008] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 27358859676, free_ts 0 [ 434.222374][T12008] post_alloc_hook+0x1c0/0x230 [ 434.227168][T12008] get_page_from_freelist+0x132b/0x38e0 [ 434.232762][T12008] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 434.238695][T12008] alloc_pages_mpol+0x1fb/0x550 [ 434.243584][T12008] new_slab+0x247/0x330 [ 434.247763][T12008] ___slab_alloc+0xcf2/0x1740 [ 434.252463][T12008] __slab_alloc.constprop.0+0x56/0xb0 [ 434.257863][T12008] __kmalloc_cache_noprof+0xfb/0x3e0 [ 434.263181][T12008] bus_add_driver+0x92/0x690 [ 434.267806][T12008] driver_register+0x15c/0x4b0 [ 434.272731][T12008] i2c_register_driver+0xd9/0x1c0 [ 434.277782][T12008] do_one_initcall+0x120/0x6e0 [ 434.282578][T12008] kernel_init_freeable+0x5c2/0x910 [ 434.287806][T12008] kernel_init+0x1c/0x2b0 [ 434.292193][T12008] ret_from_fork+0x5d7/0x6f0 [ 434.296838][T12008] ret_from_fork_asm+0x1a/0x30 [ 434.301643][T12008] page_owner free stack trace missing [ 434.307046][T12008] [ 434.309386][T12008] Memory state around the buggy address: [ 434.315041][T12008] ffff888144af4700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 434.323120][T12008] ffff888144af4780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 434.331209][T12008] >ffff888144af4800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 434.339281][T12008] ^ [ 434.344152][T12008] ffff888144af4880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 434.352231][T12008] ffff888144af4900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 434.360311][T12008] ================================================================== [ 434.430174][T12008] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 434.437498][T12008] CPU: 1 UID: 0 PID: 12008 Comm: syz.1.1848 Tainted: GF R 6.16.0-syzkaller-11895-gcca7a0aae895 #0 PREEMPT(full) [ 434.450846][T12008] Tainted: [F]=FORCED_MODULE, [R]=FORCED_RMMOD [ 434.457034][T12008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 434.467129][T12008] Call Trace: [ 434.470439][T12008] [ 434.473407][T12008] dump_stack_lvl+0x3d/0x1f0 [ 434.478045][T12008] vpanic+0x6e8/0x7a0 [ 434.482097][T12008] ? __pfx_vpanic+0x10/0x10 [ 434.486660][T12008] ? __pfx_vprintk_emit+0x10/0x10 [ 434.491845][T12008] ? dvb_device_open+0x36a/0x3b0 [ 434.496904][T12008] panic+0xca/0xd0 [ 434.500688][T12008] ? __pfx_panic+0x10/0x10 [ 434.505148][T12008] ? dvb_device_open+0x36a/0x3b0 [ 434.510112][T12008] ? preempt_schedule_common+0x44/0xc0 [ 434.515601][T12008] ? preempt_schedule_thunk+0x16/0x30 [ 434.521020][T12008] check_panic_on_warn+0xab/0xb0 [ 434.526002][T12008] end_report+0x107/0x170 [ 434.530393][T12008] kasan_report+0xee/0x110 [ 434.534838][T12008] ? dvb_device_open+0x36a/0x3b0 [ 434.539812][T12008] ? __pfx_dvb_device_open+0x10/0x10 [ 434.545123][T12008] dvb_device_open+0x36a/0x3b0 [ 434.549927][T12008] ? __pfx_dvb_device_open+0x10/0x10 [ 434.555241][T12008] chrdev_open+0x231/0x6a0 [ 434.559696][T12008] ? __pfx_apparmor_file_open+0x10/0x10 [ 434.565310][T12008] ? __pfx_chrdev_open+0x10/0x10 [ 434.570453][T12008] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 434.576984][T12008] do_dentry_open+0x97f/0x1530 [ 434.581777][T12008] ? __pfx_chrdev_open+0x10/0x10 [ 434.586775][T12008] vfs_open+0x82/0x3f0 [ 434.590881][T12008] path_openat+0x1de4/0x2cb0 [ 434.595505][T12008] ? __pfx_path_openat+0x10/0x10 [ 434.600525][T12008] do_filp_open+0x20b/0x470 [ 434.605079][T12008] ? __pfx_do_filp_open+0x10/0x10 [ 434.610147][T12008] ? alloc_fd+0x471/0x7d0 [ 434.614502][T12008] do_sys_openat2+0x11b/0x1d0 [ 434.619218][T12008] ? __pfx_do_sys_openat2+0x10/0x10 [ 434.624454][T12008] ? fdget+0x187/0x210 [ 434.628547][T12008] ? __sys_connect+0xe0/0x160 [ 434.633264][T12008] __x64_sys_openat+0x174/0x210 [ 434.638156][T12008] ? __pfx___x64_sys_openat+0x10/0x10 [ 434.643578][T12008] do_syscall_64+0xcd/0x490 [ 434.648106][T12008] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 434.654022][T12008] RIP: 0033:0x7f7dffb8ebe9 [ 434.658454][T12008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 434.678087][T12008] RSP: 002b:00007f7dfddf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 434.686537][T12008] RAX: ffffffffffffffda RBX: 00007f7dffdb5fa0 RCX: 00007f7dffb8ebe9 [ 434.694531][T12008] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 434.702519][T12008] RBP: 00007f7dffc11e19 R08: 0000000000000000 R09: 0000000000000000 [ 434.710506][T12008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 434.718490][T12008] R13: 00007f7dffdb6038 R14: 00007f7dffdb5fa0 R15: 00007ffe6fb40b78 [ 434.726492][T12008] [ 434.729816][T12008] Kernel Offset: disabled [ 434.734144][T12008] Rebooting in 86400 seconds..