last executing test programs:

7m20.485709403s ago: executing program 2 (id=1298):
fcntl$auto_F_GETOWN(0xffffffffffffffff, 0x9, 0x4)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd3\xa8q\x8d;(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\v\x02\x03O(\x90\r/\xc5;\x00\xb7\xb3\xf5\x8aG+\xc8v\x8c\x0ej\x01\xe2MZ\xc7\xd7\xc2\xd0\f\x8c.\f\xad`\x91Q\xae\xc8\x85\x87\xbaL\x86\xdb\xae\xfck\xdc\x84Lb_\xbfW!\xcfq\"Z\x18\r\x1a\xda\xc0@\x1c\xfbsW\x86T\xcf\xc5\x0fe\x18\xaaK\xbbAS\x7f\xcfd\xa4\xc5\xfc\xf8\xa2.\xd4M\x86\xd5\x89\xd4m\xb7_\xbb5\xb7\x95\x1d\xca\xbe\xa4\n\xd9#R\x99\xe2O\x19H\x1f\x1e\xda\xb9\xa7eu\xa4\x9f\x1e\xd1v\xd00[\xd9\x03\x1eT\xed\x91P\x94\x9e\xb8\x14\x02\x91\x9cn\xb7\xd4E1\xcd\x15\x1c6\xb1\xcd\x04\xf4\x1cE\x01\xe4\x97e\xb0\x03+\xb8R\x05\x7f\xee\x18$b\xb4\xeay/\xf81\x98\xf2&', 0x8100000a3d9)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, 0x0, 0x800)
mmap$auto(0xe, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
landlock_create_ruleset$auto(0x0, 0xc, 0x200)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/device_info\x00', 0x48041, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x5, 0x2, 0x1)
socket(0x5, 0x800000003, 0x0)
sendmsg$auto_OVS_FLOW_CMD_GET(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
r1 = socket(0x10, 0x2, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'dummy0\x00'})
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/cgroup\x00')
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x2404c000)
write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
tkill$auto(0x0, 0x0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/sched_rr_timeslice_ms\x00', 0x2, 0x0)
pwrite64$auto(r3, &(0x7f0000000080)='+\\#', 0x3747, 0x100)
socket(0x1e, 0x1, 0x50d)
sched_setaffinity$auto(0x0, 0xcf4d, &(0x7f00000000c0)=0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b71, 0x2, 0x8000)
futex$auto(&(0x7f0000000080)=0xfffffffd, 0xb, 0x1, 0x0, 0x0, 0xfffffffa)
futex$auto(&(0x7f0000000080)=0x7, 0xd, 0x1, 0x0, 0x0, 0x5)
rseq$auto(&(0x7f0000000100)={0xe, 0x401, 0x1, 0x1a09, 0xfffffff9, 0x5cd}, 0x8000, 0x0, 0x6)

7m20.137875861s ago: executing program 2 (id=1300):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.events\x00', 0x60640, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
openat$auto_rts_threshold_ops_(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/kernel/debug/ieee80211/phy6/rts_threshold\x00', 0x0, 0x0)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async, rerun: 32)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) (rerun: 32)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffff5fdffe00, &(0x7f0000000400)=';')
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/netfilter/nf_log/3\x00', 0xa2202, 0x0) (async)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) (async, rerun: 32)
mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x8) (async, rerun: 32)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1/file0\x00', 0x840, 0xc) (async)
socket(0x1d, 0x2, 0x6) (async)
io_uring_setup$auto(0x6, 0x0) (async, rerun: 64)
io_uring_setup$auto(0x7, 0x0) (rerun: 64)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0x20300, 0x0)
socket(0x10, 0x2, 0x0) (async, rerun: 32)
openat$auto_fops_u64_ro_(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/ramdisk_pages/ram9\x00', 0x80, 0x0) (rerun: 32)
io_uring_setup$auto(0x4, 0x0) (async)
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/enable\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x109500, 0x0) (async, rerun: 64)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x60c40, 0x0) (async, rerun: 64)
r1 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r1, 0xffffffffffdffe00, &(0x7f0000000140)=';') (async, rerun: 64)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) (async, rerun: 64)
io_uring_setup$auto(0x85, 0x0) (async)
socket(0x1d, 0x2, 0x7) (async)
socketpair$auto(0x4004, 0x7, 0x4, 0x0) (async)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)

7m18.909766438s ago: executing program 2 (id=1304):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/uts\x00')
mmap$auto(0x0, 0x100, 0x4000000000df, 0x80000000eb1, 0x401, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x408, 0x3, 0x10101, 0x6fb7, 0x8a, 0x4, r1, [0x100, 0x7, 0x7f], {0x2, 0x7, 0x3034, 0xc, 0x8f, 0x3, 0x5, 0xfffffff9, 0x6}, {0x4000, 0xffffffff, 0x0, 0xbffff000, 0x8, 0x20b85, 0x5, 0x837, 0x8}})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRESHEX=r1], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/devices/platform/i8042/serio0/softraw\x00', 0x141042, 0x0)
write$auto(r2, &(0x7f0000000000)='\x01\x00^\xa2\x02\x00\x00\x00\x00\x00\xd8l\x00\x00\x00\x00\x00\x00\xbd\xc5_%\xc1\xa3\xd0\x95Hq\xf4a\xb5\x1b\xad0\x10\x19b\xbf\xb7\xa5`\x97\xddzG\x01[{\x17\x05I\xe0\xb1d\x00\x00\x00\x00L\xe6&[\xa9X6\x7f\xec\x94\xdal\xa1\xbb\x86\x9c\xc2\xef\x02\r9%\x06\xc5\'b%m_\x96A\"\xdd\xe40\xa7\xc3\x9ah\xf3B\xc2z\xf8\r\f[\xe5\x9dK\xe1\x99\x86\xfc\xac\x9f\x8a\x00\x00\x00', 0x3)
r3 = socket(0x2, 0x2, 0x73)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002dbd7000f9dbdf250100000008000a0008000000050007003b000000080009009c781e01060002000100000008001700", @ANYRES32=r3], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
r6 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
poll$auto(&(0x7f0000000180)={<r7=>r6, 0xfff7, 0x9816}, 0x7f, 0x9)
ioctl$auto_VHOST_SET_OWNER(r7, 0xaf01, 0x0)
ioctl$auto_VHOST_SET_LOG_FD2(r6, 0x4004af07, &(0x7f00000003c0))
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
ioctl$auto_FIOQSIZE(r0, 0x5460, 0xffffffffffffff2c)

7m18.740056198s ago: executing program 2 (id=1307):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x6)
socket(0x10, 0x4, 0xffffffc0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
write$auto(0xffffffffffffffff, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="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"], 0x28}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810)
write$auto(0xffffffffffffffff, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0004, 0x1a)
setgroups$auto(0xe32, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
r3 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
read$auto_proc_pid_maps_operations_internal(r3, &(0x7f00000010c0)=""/4082, 0xff2)
setgroups$auto(0x1e9, &(0x7f0000000180)=0x400000)
madvise$auto(0x8, 0xc89, 0xffffff33)
r4 = socket(0x10, 0x3, 0xc)
setsockopt$auto(r4, 0x104000000000010e, 0x1, 0x0, 0x16)
close_range$auto(0x2, 0x8, 0x0)

7m17.160304221s ago: executing program 2 (id=1311):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/spi/drivers_autoprobe\x00', 0xca481, 0x0)
write$auto(r0, &(0x7f00000000c0)='\x14\xf4\xb6\xc6\x97\xdb\x18B\f\xef\x1dQZ\xa66\xe7\x06\\\xe0)+\x86\xa7\x9bv\xe1\x18\xf5\x83\b\x11\x19\xdd\x1c', 0x8)
setsockopt$auto(r0, 0x81, 0x1, 0x0, 0x83)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x1ff, 0x7c9, 0x25, 0x4909b6f5, 0x1ffde, 0x7, 0x3, 0x20000009, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x3, 0x0, 0xa, 0x22000, 0x200, 0xffffff28, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffd, 0x0, 0xffff, 0x10, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0xfffffffffffffffe]}, 0x1fe, 0x9)
r1 = open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x4)
ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r1, 0x80083314, &(0x7f0000000040)=0xce)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x20040001)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x1892, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0xb, 0xa505}, 0x800}, 0x7, 0x4008)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r3 = setfsuid$auto(0xee00)
setreuid$auto(r3, 0x0)
setresuid$auto(0x0, 0x0, r3)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/netfilter/nfnetlink_queue\x00', 0x101000, 0x0)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x12d280, 0x0)
r4 = clone$auto(0x7fff, 0x200, 0x0, 0x0, 0xf)
socketpair$auto(0x10001, 0x3, 0xfffeffff, &(0x7f0000000380)=0xffff)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x9, 0x2, r4, 0x9, 0x10001)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
r5 = socket(0xa, 0x3, 0x3a)
getsockopt$auto(r5, 0x29, 0xd1, 0x0, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x0, 0x454, 0x9)
syz_clone3(&(0x7f0000000300)={0x12a004080, 0x0, 0x0, 0x0, {0x3b}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[0x0], 0x1}, 0x58)

7m17.050471569s ago: executing program 2 (id=1312):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0xffffffffffffffff, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
timer_create$auto(0x3, 0x0, 0x0)
io_uring_setup$auto(0x40000002c55, 0x0)
syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
process_vm_readv$auto(0x0, 0x0, 0x800000001, 0x0, 0x4, 0xfffffffffffffffc)
getrandom$auto(0x0, 0x6000000, 0x3)
write$auto(0x3, 0x0, 0xfdef)
r0 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r0, 0x84, 0x7f, 0x0, 0x0)
mmap$auto(0x0, 0x202000d, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x9, 0x0)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/block/nbd10/sched/read1_fifo_list\x00', 0x141100, 0x0)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2b, 0x1, 0x0)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy1/aql_txq_limit\x00', 0x28402, 0x0)
write$auto(0x3, 0x0, 0x5)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/smbd_max_receive_size\x00', 0x402000, 0x0)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vkms/graphics/fb0/pan\x00', 0x80302, 0x0)
sendfile$auto(r2, r2, 0x0, 0x3)
write$auto(r1, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xad\x86\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xfb\xff\xc9\xd6\x84\xef\xf5\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xed\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\x05\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd?\x13\xe2\xad\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH', 0x8)
gettid()

7m1.828502823s ago: executing program 32 (id=1312):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0xffffffffffffffff, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
timer_create$auto(0x3, 0x0, 0x0)
io_uring_setup$auto(0x40000002c55, 0x0)
syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
process_vm_readv$auto(0x0, 0x0, 0x800000001, 0x0, 0x4, 0xfffffffffffffffc)
getrandom$auto(0x0, 0x6000000, 0x3)
write$auto(0x3, 0x0, 0xfdef)
r0 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r0, 0x84, 0x7f, 0x0, 0x0)
mmap$auto(0x0, 0x202000d, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x9, 0x0)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/block/nbd10/sched/read1_fifo_list\x00', 0x141100, 0x0)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2b, 0x1, 0x0)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy1/aql_txq_limit\x00', 0x28402, 0x0)
write$auto(0x3, 0x0, 0x5)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/smbd_max_receive_size\x00', 0x402000, 0x0)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vkms/graphics/fb0/pan\x00', 0x80302, 0x0)
sendfile$auto(r2, r2, 0x0, 0x3)
write$auto(r1, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xad\x86\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xfb\xff\xc9\xd6\x84\xef\xf5\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xed\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\x05\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd?\x13\xe2\xad\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH', 0x8)
gettid()

12.513485592s ago: executing program 0 (id=2657):
socket(0x29, 0x800, 0xfffffffd) (async)
set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioperm$auto(0x7, 0x6, 0x80)
getegid() (async)
prctl$auto_PR_GET_SPECULATION_CTRL(0x34, 0x10, 0xffffffffffffffff, 0x8000, 0x8acb)
write$auto(0xffffffffffffffff, 0x0, 0x7) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0) (async)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYRES16=0x0, @ANYBLOB="2f212abd7800fddb"], 0x14}}, 0x4000000) (async)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) (async)
mbind$auto(0x9, 0x84, 0x84, 0x0, 0x80000000, 0x7f)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) (async)
shutdown$auto(0x200000003, 0x2) (async)
mlockall$auto(0x7)
modify_ldt$auto(0x1, 0x0, 0x10) (async)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) (async)
shmctl$auto_IPC_RMID(0x8, 0x0, &(0x7f0000000580)={{0x2, 0x0, 0x0, 0x1, 0x6, 0x6, 0x1}, 0x10, 0x8, 0xbce, 0x6, @inferred=0xffffffffffffffff, @raw=0x5, 0x6, 0x0, 0x0, &(0x7f00000016c0)="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"})
write$auto_proc_mem_operations_base(r0, &(0x7f0000001680)="a7", 0x80000)
madvise$auto(0x0, 0x20200, 0x15)

11.155845772s ago: executing program 0 (id=2663):
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, 0x0, 0x20004000)
unshare$auto(0x40000080)
unshare$auto(0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
shmdt$auto(0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
pipe$auto(0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0x4048aec9, r0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
mincore$auto(0x1000, 0x4000000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000c00), r2)
sendmsg$auto_TCP_METRICS_CMD_DEL(r2, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)={0x14, r3, 0x901, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x40)
sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="24000000e0a5c6c4618697020dd906feb8c28553131a3a4d41dda011d109000000ed801654840dbe8c95074959d39fbec827004c1db59ce5246564c0979a3ed194df790b69f28fcd42fad10f1c76d5d46f906ed4ba8477f90fd8f1366200"/112, @ANYRES16=r3], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x20000040)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r4, 0x0, 0x20)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3)
unshare$auto(0x8000000)
syz_clone(0x2360411, 0x0, 0x0, 0x0, 0x0, 0x0)

9.732952991s ago: executing program 0 (id=2668):
r0 = fanotify_init$auto(0x1, 0x2)
write$auto_proc_setgroups_operations_base(r0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
ioctl$auto(0x3, 0x402c542c, 0x38)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)

8.574123862s ago: executing program 4 (id=2671):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x6)
socket(0x10, 0x4, 0xffffffc0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
write$auto(0xffffffffffffffff, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="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"], 0x28}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810)
write$auto(0xffffffffffffffff, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0004, 0x1a)
setgroups$auto(0xe32, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
r2 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
read$auto_proc_pid_maps_operations_internal(r2, &(0x7f00000010c0)=""/4082, 0xff2)
setgroups$auto(0x1e9, &(0x7f0000000180)=0x400000)
r3 = socket(0x10, 0x3, 0xc)
setsockopt$auto(r3, 0x104000000000010e, 0x1, 0x0, 0x16)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0xc0a3, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x4e8c, 0x0)

6.743662276s ago: executing program 4 (id=2674):
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x6)
socket(0x10, 0x4, 0xffffffc0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
write$auto(0xffffffffffffffff, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="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"], 0x28}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810)
write$auto(0xffffffffffffffff, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0004, 0x1a)
setgroups$auto(0xe32, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
r3 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
read$auto_proc_pid_maps_operations_internal(r3, &(0x7f00000010c0)=""/4082, 0xff2)
setgroups$auto(0x1e9, &(0x7f0000000180)=0x400000)
madvise$auto(0x8, 0xc89, 0xffffff33)
r4 = socket(0x10, 0x3, 0xc)
setsockopt$auto(r4, 0x104000000000010e, 0x1, 0x0, 0x16)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0xc0a3, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x4e8c, 0x0)

6.134577316s ago: executing program 1 (id=2677):
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, 0x0, 0x20004000)
unshare$auto(0x40000080)
unshare$auto(0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
shmdt$auto(0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
pipe$auto(0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0x4048aec9, r0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
mincore$auto(0x1000, 0x4000000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000c00), r2)
sendmsg$auto_TCP_METRICS_CMD_DEL(r2, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)={0x14, r3, 0x901, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x40)
sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="24000000e0a5c6c4618697020dd906feb8c28553131a3a4d41dda011d109000000ed801654840dbe8c95074959d39fbec827004c1db59ce5246564c0979a3ed194df790b69f28fcd42fad10f1c76d5d46f906ed4ba8477f90fd8f1366200"/112, @ANYRESDEC=r3], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x20000040)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r4, 0x0, 0x20)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3)
unshare$auto(0x8000000)
syz_clone(0x2360411, 0x0, 0x0, 0x0, 0x0, 0x0)

6.056859007s ago: executing program 3 (id=2678):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, 0x0)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f0, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(r3, &(0x7f0000006940)={0x0, 0x0, &(0x7f0000006900)={&(0x7f0000006980)=ANY=[@ANYBLOB="36c29976", @ANYRES16=r4, @ANYBLOB="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"], 0x124c}, 0x1, 0x0, 0x0, 0x20000041}, 0x800)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r5, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={0x1cc, r6, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@HWSIM_ATTR_FREQ={0x8, 0x13, 0x8001}, @HWSIM_ATTR_RADIO_ID={0x8, 0xa, 0x1}, @HWSIM_ATTR_PMSR_RESULT={0x1a8, 0x1c, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0x9c, 0x5, 0x0, 0x1, [{0x90, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0x22, 0x1, "5328e4e303face040befd2101c9902e885387a74c032fe19e533a9e01888"}, @NL80211_PMSR_PEER_ATTR_ADDR={0x66, 0x1, "6b074ccd6dcf3891b543b8004df8a752d9e2a1f0729e6681abe3905ce26957e840379d8c6fad9e9377379fd47c7f3467de1d0e6ae268b1947cc424e5e2702f05de674da3bd353a9b75b718ca14a40df6c9f813f017212cd32804fad90d3dc0c69c87"}]}, {0x4}, {0x4}]}, @NL80211_PMSR_ATTR_PEERS={0x108, 0x5, 0x0, 0x1, [{0x100, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_RESP={0x14, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x1}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x58}]}, @NL80211_PMSR_PEER_ATTR_RESP={0x20, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x3}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x4}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}]}, @NL80211_PMSR_PEER_ATTR_RESP={0x50, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_DATA={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x2b}, @NL80211_PMSR_FTM_RESP_ATTR_RX_RATE={0xc, 0xc, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x1}]}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x101}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x4}]}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x400000000}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0x3}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0x76, 0x1, "e1dd4048295dc03b183afb62e622b74c5f147e58570f8393edb697aa593e398ed0e6b6b5365a684c95c837bd1a5e02a235a6e041a5f0aaf17cde10dc3b625bc5c66dfe60a308866a7ca23170224a3e96901aba5943143fea45a3afdc3de927402ff95401d8eeed7759743750802a752aee77"}]}, {0x4, 0x28}]}]}]}, 0x1cc}, 0x1, 0x0, 0x0, 0x24040000}, 0x8018880)
mmap$auto(0xfffffffffffffffd, 0x2020009, 0x8000000003, 0xeb4, 0xffffffffffffffff, 0x8000)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
syz_open_procfs$namespace(0x0, &(0x7f0000000080))
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000)
prctl$auto(0x3f, 0x7ff, 0x0, 0x5, 0x5)
rename$auto(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='./file0/file0\x00')
ioctl$auto_XFS_IOC_FSBULKSTAT(r2, 0xc0205865, &(0x7f00000002c0)={&(0x7f0000000040)=0x1, 0x10001, &(0x7f0000000440)="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", 0x0})
io_uring_setup$auto(0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)

5.752706174s ago: executing program 4 (id=2679):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
r1 = socket(0x1e, 0x6, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000480)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m?\x7f\xc2{[\xc9\xd0[|\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x8d\xe8\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcb', 0x100000a3d9)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r1, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="000128bd7000fedbdf2503000000080004"], 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x8000)
mmap$auto(0x0, 0x2020009, 0x8000000007, 0x11, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
getdents$auto(r3, 0x0, 0xfff)
msync$auto(0x7f, 0x6, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop15/queue/discard_granularity\x00', 0x8000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'})
r5 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
write$auto(r5, &(0x7f0000000000)='-\x00', 0x2fb)
madvise$auto(0x0, 0xffffffffffff0009, 0x13)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
remap_file_pages$auto(0x8, 0xda, 0x5, 0x4, 0x4)

5.369773299s ago: executing program 1 (id=2680):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
r0 = socket(0xa, 0x1, 0x100)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/snd/pcmC1D1c\x00', 0x0, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(r1, 0xc1004111, 0x0)
getsockopt$auto_SO_RCVPRIORITY(r0, 0x2, 0x52, &(0x7f00000001c0)='/dev/virtual_nci\x00', &(0x7f0000000240)=0x7)
r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r2, 0x0, 0x7ff, 0x400)
r3 = socket(0x1e, 0x1, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
inotify_init1$auto(0x403)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
sendmsg$auto_IPVS_CMD_FLUSH(r3, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000440)={&(0x7f0000000640)=ANY=[@ANYBLOB="6c010000", @ANYRES16=0x0, @ANYBLOB="080025bd7000ffdbdf25110000000800050006000000080004000900000008000400040000000800060000000000300101802901048004000d80040049800400488004002600ad5d079172db3691f31015fadd64b9c931790efa342d19514b7503daebc29a40309d5c7953853d16920c55059408001e00ac1414aa0500460000000000f746e4c1e0e4f159a748ae270d812eecefe009ceb215f9ad8a0b3d3c0291e872c69279e298f2763cecc21bca1d5023aa95adcffdd1d45d17"], 0x16c}, 0x1, 0x0, 0x0, 0x20018810}, 0x44040)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x3a)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@generic={0xa, "02d0ac0c00e435826339c7328903"}, 0x6a)

5.331136999s ago: executing program 0 (id=2681):
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/query\x00', 0x100, 0x0)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/pcm0p/oss\x00', 0xaa102, 0x0)
write$auto(r0, 0x0, 0x7ef)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0xc2040, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x84202, 0x0)
r1 = socket(0xa, 0x1, 0x100)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x12, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x400000000000948f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x3, 0x1, 0x9, 0x1]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
mmap$auto(0xe, 0x20009, 0x9, 0x14, 0xffffffffffffffff, 0x7ff)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd14/queue/nomerges\x00', 0x80000, 0x0)
read$auto(r3, 0x0, 0x9)
fanotify_init$auto(0xc00, 0x2000000000002)
open(0x0, 0x1652c2, 0xe1d2b27bdc14aa98)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x106)
socket(0x21, 0x2, 0x2)
setsockopt$auto(0x3, 0x1000000110, 0x2, 0x0, 0xdf)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r4, 0x0, 0xc800)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/rpc/auth.unix.gid/flush\x00', 0x1a9601, 0x0)
write$auto(r5, 0x0, 0x9)
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_vdpa(&(0x7f0000000340), r1)
sendmsg$auto_VDPA_CMD_DEV_VSTATS_GET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="10002bbd703bdcecea00000007300600"], 0x30}, 0x1, 0x0, 0x0, 0x40000}, 0x4810)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)

4.347242225s ago: executing program 4 (id=2682):
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
madvise$auto(0x0, 0xffffffffffff0006, 0x17)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x401, 0x8000)
r3 = openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/trap_flow_action_cookie\x00', 0x2202, 0x0)
write$auto(r3, 0x0, 0x1)
msync$auto(0x2, 0x9, 0x40)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0xfffffdef)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2c, 0x3, 0xffffffff)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
io_submit$auto(0x5, 0x4, &(0x7f0000000240)=&(0x7f0000000200)={0x67, 0x7, 0xb, 0x9, 0x1ff, 0xffffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6, 0x0, 0x8, r1})
read$auto_v4l2_fops_v4l2_dev(0xffffffffffffffff, &(0x7f0000000100)=""/237, 0xed)
close_range$auto(0x2, 0x8, 0x0)

4.311682651s ago: executing program 3 (id=2683):
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x15, 0x5, 0x0)
bpf$auto(0x80000400, &(0x7f0000000000)=@bpf_attr_3={0x9, 0x9, 0x6, 0x5, 0x1fe, 0x2, 0x1, 0x4, 0x4007, "0108a5172d53c2dc73bf58e1423b2178", 0x0, 0x9, 0xffffffffffffffff, 0x81, 0x7fffffffffffffff, 0x89, 0x9, 0xffff, 0x3ff, 0x7, @attach_btf_obj_fd, 0x440, 0xa, 0x7, 0x1ff, 0x9}, 0x9)
r0 = socket(0x11, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
sendmmsg$auto(r0, &(0x7f00000000c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000040), 0x10}, 0x2, &(0x7f0000000140), 0x8, 0x1}, 0x5}, 0xffff, 0x101)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
socket(0x11, 0x2, 0x73)
pipe2$auto(0x0, 0x0)
io_uring_setup$auto(0x7e1b, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x5, 0x21ea, 0x7ff, 0x3, 0x1, 0x80000001, 0x800002e}, 0x6f4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bpf$auto(0x3, 0x0, 0x5)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x2, 0x14)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptya7\x00', 0x0, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyde\x00', 0x1a9d02, 0x0)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

3.897908753s ago: executing program 3 (id=2684):
adjtimex$auto(&(0x7f00000000c0)={0xf332b6e, 0x0, 0x3168, 0xfffff7ffffffffed, 0xd1, 0x0, 0x6, 0x0, 0x1, 0x80000368e, 0x400000000002, {0x100000000, 0x8}, 0x5, 0x31, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x85, 0xffffffffffff628e, 0xa747, 0x8000, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x807)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
ioctl$auto_FS_IOC_GETFSUUID(0xffffffffffffffff, 0x80111500, 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
futex$auto(0x0, 0x808d, 0x0, 0x0, 0x0, 0x100)
mmap$auto(0x100000000, 0x4, 0x4000000000df, 0x40eb2, 0xffffffffffffffff, 0x300000000000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x4a, 0x0)
close_range$auto(0x0, 0x5, 0x0)
fanotify_init$auto(0x6, 0x2000000000002)
r0 = inotify_init1$auto(0x3000000000000)
socket(0x15, 0x5, 0x0)
getsockopt$auto(r0, 0x114, 0x40008, 0xfffffffffffffffc, 0x0)
r1 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000006640), 0x2, 0x0)
readv$auto(r1, &(0x7f0000000040)={0x0, 0x36a}, 0x6)
mmap$auto(0x3, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
preadv$auto(0x40000000000003, 0x0, 0x6, 0x8, 0x5)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0xfffffff7, 0x0)
mmap$auto(0x0, 0x10000000e993, 0xe0, 0xeb5, 0x401, 0x8000)
ioperm$auto(0x3, 0x8001, 0x9)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/net/afs/addr_prefs\x00', 0x441, 0x0)

3.397573572s ago: executing program 1 (id=2685):
futex$auto(&(0x7f0000000080)=0x1, 0x8, 0x3d, 0x0, 0x0, 0x0)
r0 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r0, 0x29, 0x49, &(0x7f0000000040)='!\x00', 0x1ff)

3.335289822s ago: executing program 4 (id=2686):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x6)
socket(0x10, 0x4, 0xffffffc0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
write$auto(0xffffffffffffffff, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r1, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="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"], 0x28}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040810)
write$auto(0xffffffffffffffff, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0004, 0x1a)
setgroups$auto(0xe32, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
r3 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
read$auto_proc_pid_maps_operations_internal(r3, &(0x7f00000010c0)=""/4082, 0xff2)
setgroups$auto(0x1e9, &(0x7f0000000180)=0x400000)
madvise$auto(0x8, 0xc89, 0xffffff33)
r4 = socket(0x10, 0x3, 0xc)
setsockopt$auto(r4, 0x104000000000010e, 0x1, 0x0, 0x16)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0xc0a3, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x4e8c, 0x0)

3.248223801s ago: executing program 3 (id=2687):
r0 = openat$auto_regulator_summary_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
r1 = socket(0x22, 0x2, 0x24)
r2 = getsockopt$auto(r1, 0x3, 0x1, 0x0, &(0x7f00000000c0)=0x1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000062c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'bond_slave_0\x00', <r5=>0x0})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'pim6reg0\x00', <r6=>0x0})
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r3, &(0x7f00000000c0)={0xfffffffffffffffd, 0x0, &(0x7f0000006340)={&(0x7f0000000100)={0x28, r4, 0x38f, 0x70bd27, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4044040}, 0x0)
sendmsg$auto_NL80211_CMD_ABORT_SCAN(r1, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x11c, 0x0, 0x400, 0x70bd27, 0x25dfdbfb, {}, [@NL80211_ATTR_EHT_CAPABILITY={0xdd, 0x136, "63251a4b17e3befdf3cea4680ac5828ca0ae7852e0e986d09a827b8b941d9fa197abdde31341a2eb7f919b4e551489c0f7379ff89bdb3389fd4c0032b64b2b45a0d1973c41e26d180dc0a8e3d967b19d8d274e6a98cbbfec5dd6c79f362ce0db77cc0b96e3a6daa31a7eb4c3d1a8fb8243892e138b7825660b973e69ac013297ba5f4655541b4e715d0290573fe08bb2a14c9cd87982627e612d548c39be8fe4c59214b625ebf4bc25ee877de33b0bd2113799dfc3e23803f71e1a1a778db22e5aa30d0bd0b85ce1393c462b2b6f1a4e7c94aaaf1b49f8a29d"}, @NL80211_ATTR_SUPPORT_MESH_AUTH={0x4}, @NL80211_ATTR_USE_MFP={0x8, 0x42, 0x7}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r5}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_HIDDEN_SSID={0x8}]}, 0x11c}, 0x1, 0x0, 0x0, 0x840}, 0x8080)
mmap$auto(0x3fc, 0xfffffffffffff002, 0x1af6, 0x17, r0, 0xfffffffffffffffb)
ioctl$auto_VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000300)=0x39a5)
r7 = ioctl$auto_NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, 0x0)
ioctl$auto_PPPIOCGFLAGS(r7, 0x8004745a, &(0x7f0000000040)=0x4)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, r0, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/swradio12\x00', 0x200400, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/fs/lockd/nlm_end_grace\x00', 0x8282, 0x0)
socketpair$auto(0x1, 0x3, 0x8000000000000000, 0x0)
r8 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000004c0), 0x22000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r8, 0x40345410, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_STATUS32(r8, 0x80585414, 0x0)

3.189923811s ago: executing program 0 (id=2688):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/irq/2/wakeup\x00', 0x80000, 0x0)
mmap$auto(0x0, 0x400005, 0xffffffffffeffffe, 0x9b72, 0xc76, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, 0x0, 0x4000800)
mmap$auto(0x0, 0x22009, 0x4000000000df, 0xeb1, 0x401, 0x1)
socket(0xa, 0x3, 0x100)
ioperm$auto(0x7, 0x5ad2, 0x8)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop10/queue/atomic_write_unit_min_bytes\x00', 0x60240, 0x0)
read$auto(r2, &(0x7f0000000240)='/\x00', 0x100000001)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(0x3, 0x0, 0xfffffffffffffff7)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x48b41, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="010029bd693840f03c423aa0000008000300", @ANYRES32=r4], 0x24}, 0x1, 0x0, 0x0, 0x404c050}, 0x80)
sendmsg$auto_ETHTOOL_MSG_RSS_GET(r0, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x78, 0x0, 0x20, 0x70bd2c, 0x25dfdbff, {}, [@ETHTOOL_A_RSS_START_CONTEXT={0x8, 0x7, 0x6}, @ETHTOOL_A_RSS_HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x200}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @ETHTOOL_A_RSS_CONTEXT={0x8, 0x2, 0x1}, @ETHTOOL_A_RSS_START_CONTEXT={0x8, 0x7, 0x6}, @ETHTOOL_A_RSS_START_CONTEXT={0x8, 0x7, 0x400}]}, 0x78}, 0x1, 0x0, 0x0, 0x800}, 0x10)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000180), 0x20c00, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
mincore$auto(0x1000, 0x8001, 0x0)
read$auto(0x3, 0x0, 0x80)
close_range$auto(0x2, 0x8, 0x0)
ptrace$auto(0x4206, 0x1, 0x0, 0x200005)
alarm$auto(0x80000000)

3.043315541s ago: executing program 3 (id=2689):
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEC_SET(0xffffffffffffffff, 0x0, 0x20004000)
unshare$auto(0x40000080)
unshare$auto(0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
shmdt$auto(0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
pipe$auto(0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0x4048aec9, r0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
mincore$auto(0x1000, 0x4000000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000c00), r2)
sendmsg$auto_TCP_METRICS_CMD_DEL(r2, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000000)={0x14, r3, 0x901, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x40)
sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="24000000e0a5c6c4618697020dd906feb8c28553131a3a4d41dda011d109000000ed801654840dbe8c95074959d39fbec827004c1db59ce5246564c0979a3ed194df790b69f28fcd42fad10f1c76d5d46f906ed4ba8477f90fd8f1366200"/112, @ANYRESDEC=r3], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x20000040)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r4, 0x0, 0x20)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3)
unshare$auto(0x8000000)
syz_clone(0x2360411, 0x0, 0x0, 0x0, 0x0, 0x0)

3.041460597s ago: executing program 1 (id=2690):
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x1, 0x0)
r0 = openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event_pid\x00', 0xaa603, 0x0)
io_uring_register$auto_IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000080)="7640676b221a28ba1c7a549605c22bd55c535653966e12393527c067ebc2d69f613cf77bf193b9e40e3a748f3be587977fa6ac43b7a074e904b19739bdfdbbdc1ae308b9031c3eb6139e0ca9b195104adaa4610d03225043", 0x8)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, 0x0)
unshare$auto(0x40000080)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r5=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
pidfd_getfd$auto(0x3, 0x1, 0x100000000)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r5, 0x7f, 0x99, 0x8, 0x1, @relative_id=0x8, 0x5}, 0x92)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0x7)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r3, 0x0, 0x3}, 0xc)
open(0x0, 0x261c2, 0x84)

1.665827041s ago: executing program 0 (id=2691):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
r1 = socket(0x1e, 0x6, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000480)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m?\x7f\xc2{[\xc9\xd0[|\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x8d\xe8\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcb', 0x100000a3d9)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r1, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="000128bd7000fedbdf2503000000080004"], 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x8000)
mmap$auto(0x0, 0x2020009, 0x8000000007, 0x11, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
getdents$auto(r3, 0x0, 0xfff)
msync$auto(0x7f, 0x6, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop15/queue/discard_granularity\x00', 0x8000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'})
r5 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
write$auto(r5, &(0x7f0000000000)='-\x00', 0x2fb)
madvise$auto(0x0, 0xffffffffffff0009, 0x13)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
remap_file_pages$auto(0x8, 0xda, 0x5, 0x4, 0x4)

1.510325275s ago: executing program 3 (id=2692):
r0 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000001d40), 0x40a40, 0x0)
mmap$auto(0x3, 0x3, 0x3, 0xeb1, r0, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r1, 0x4b4d, r2)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
readv$auto(r3, &(0x7f00000000c0)={0x0, 0x5}, 0x3)
ioctl$auto_TIOCVHANGUP2(r3, 0x5437, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0x1010001, 0x100000003)
read$auto(r4, 0x0, 0x20)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'syzkaller1\x00'})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r5, &(0x7f0000000080)={0x0, 0xfffffdd8, &(0x7f0000000280)={&(0x7f0000000280)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x4000023}, 0x4008098)
sendmsg$auto_NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x2408c810}, 0x40418c0)
mmap$auto(0xff0f200000000000, 0x400008, 0xfffffffffffffffe, 0x9b72, r1, 0x8000)
madvise$auto(0x7ff, 0x6, 0xfffffffb)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000100)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f0000001d80)={0x2c, 0x0, 0x10, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x10}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20004810}, 0x4014)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000180)={0x20, 0x0, 0x1, 0x70bd2a, 0x25d7dbfe, {}, [@HWSIM_ATTR_REG_HINT_ALPHA2={0xc, 0xb, '+*-[%%-:'}]}, 0x20}, 0x1, 0x0, 0x0, 0x24008040}, 0x4000800)

1.247822428s ago: executing program 4 (id=2693):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
r1 = socket(0x1e, 0x6, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000480)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m?\x7f\xc2{[\xc9\xd0[|\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x8d\xe8\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcb', 0x100000a3d9)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r1, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="000128bd7000fedbdf2503"], 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x8000)
mmap$auto(0x0, 0x2020009, 0x8000000007, 0x11, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
getdents$auto(r3, 0x0, 0xfff)
msync$auto(0x7f, 0x6, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop15/queue/discard_granularity\x00', 0x8000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'})
r5 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
write$auto(r5, &(0x7f0000000000)='-\x00', 0x2fb)
madvise$auto(0x0, 0xffffffffffff0009, 0x13)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
remap_file_pages$auto(0x8, 0xda, 0x5, 0x4, 0x4)

1.221042051s ago: executing program 1 (id=2694):
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
madvise$auto(0x0, 0xffffffffffff0006, 0x17)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x401, 0x8000)
r3 = openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/trap_flow_action_cookie\x00', 0x2202, 0x0)
write$auto(r3, 0x0, 0x1)
msync$auto(0x2, 0x9, 0x40)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0xfffffdef)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2c, 0x3, 0xffffffff)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
io_submit$auto(0x5, 0x4, &(0x7f0000000240)=&(0x7f0000000200)={0x67, 0x7, 0xb, 0x9, 0x1ff, 0xffffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6, 0x0, 0x8, r1})
read$auto_v4l2_fops_v4l2_dev(0xffffffffffffffff, &(0x7f0000000100)=""/237, 0xed)
close_range$auto(0x2, 0x8, 0x0)

0s ago: executing program 1 (id=2695):
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x0)
socket(0x2, 0x5, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x10, 0x2, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00')
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/addr_prefs\x00', 0x102, 0x0)
writev$auto(r0, &(0x7f0000000080)={&(0x7f0000000040), 0x6}, 0x3)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
mmap$auto(0xfffffffffefffff2, 0xef3f, 0x0, 0x17, r1, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r2, 0x4b47, 0x1)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/usbmon6\x00', 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r3 = socket(0x2, 0x5, 0x0)
connect$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55)
sendto$auto(0x3, 0x0, 0x2000f, 0x13f, &(0x7f0000000000)=@in={0x2, 0x4e22, @loopback}, 0x1c)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000700), 0xffffffffffffffff)
sendmsg$auto_WG_CMD_SET_DEVICE(r4, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000c40)={0x38, r5, 0x1, 0x70bd28, 0x25dfdbff, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, "7729ecac5e9239d0c4058eac0405576c2cd59ffc84b3098afa677190f34d1790"}]}, 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'veth1_macvtap\x00'})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'vlan0\x00'})
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/irq/0/smp_affinity\x00', 0xaa502, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/net/rpc/auth.unix.ip/flush\x00', 0x4445c1, 0x0)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)

kernel console output (not intermixed with test programs):

inted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  656.749193][T15910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  656.749208][T15910] Call Trace:
[  656.749217][T15910]  <TASK>
[  656.749227][T15910]  dump_stack_lvl+0x16c/0x1f0
[  656.749269][T15910]  should_fail_ex+0x512/0x640
[  656.749301][T15910]  ? __kmalloc_noprof+0xbf/0x510
[  656.749347][T15910]  ? read_kcore_iter+0xecc/0x1930
[  656.749370][T15910]  should_failslab+0xc2/0x120
[  656.749394][T15910]  __kmalloc_noprof+0xd2/0x510
[  656.749437][T15910]  read_kcore_iter+0xecc/0x1930
[  656.749474][T15910]  ? __pfx_read_kcore_iter+0x10/0x10
[  656.749508][T15910]  ? __lock_acquire+0xb8a/0x1c90
[  656.749559][T15910]  ? __lock_acquire+0x622/0x1c90
[  656.749593][T15910]  ? finish_task_switch.isra.0+0x221/0xc10
[  656.749618][T15910]  ? lockdep_hardirqs_on+0x7c/0x110
[  656.749661][T15910]  ? find_held_lock+0x2b/0x80
[  656.749686][T15910]  ? aa_file_perm+0x4c7/0xfb0
[  656.749725][T15910]  ? aa_file_perm+0x4d6/0xfb0
[  656.749764][T15910]  ? __pfx_aa_file_perm+0x10/0x10
[  656.749802][T15910]  ? proc_reg_read_iter+0x11b/0x310
[  656.749833][T15910]  proc_reg_read_iter+0x11b/0x310
[  656.749869][T15910]  do_iter_readv_writev+0x735/0x950
[  656.749904][T15910]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  656.749947][T15910]  ? rw_verify_area+0xcf/0x680
[  656.749979][T15910]  vfs_readv+0x4cb/0x8b0
[  656.750018][T15910]  ? __pfx_vfs_readv+0x10/0x10
[  656.750051][T15910]  ? find_held_lock+0x2b/0x80
[  656.750096][T15910]  ? __fget_files+0x20e/0x3c0
[  656.750137][T15910]  ? do_preadv+0x1a6/0x270
[  656.750166][T15910]  do_preadv+0x1a6/0x270
[  656.750197][T15910]  ? __pfx_do_preadv+0x10/0x10
[  656.750239][T15910]  do_syscall_64+0xcd/0x490
[  656.750277][T15910]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  656.750302][T15910] RIP: 0033:0x7f8dcab8e929
[  656.750328][T15910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  656.750350][T15910] RSP: 002b:00007f8dc8993038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  656.750373][T15910] RAX: ffffffffffffffda RBX: 00007f8dcadb6240 RCX: 00007f8dcab8e929
[  656.750390][T15910] RDX: 0000000000000005 RSI: 0000200000000040 RDI: 0000000000000007
[  656.750406][T15910] RBP: 00007f8dc8993090 R08: 0000008000000001 R09: 0000000000000000
[  656.750421][T15910] R10: 00000000000000fb R11: 0000000000000246 R12: 0000000000000001
[  656.750436][T15910] R13: 0000000000000000 R14: 00007f8dcadb6240 R15: 00007fff1c9feb68
[  656.750470][T15910]  </TASK>
[  657.000810][    C1] vkms_vblank_simulate: vblank timer overrun
[  657.167383][T15918] ubi0: attaching mtd0
[  657.183238][T15918] ubi0: scanning is finished
[  657.187939][T15918] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  657.553207][T15918] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  658.553507][T15950] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[15950]
[  659.408920][T15971] FAULT_INJECTION: forcing a failure.
[  659.408920][T15971] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  659.422462][T15971] CPU: 0 UID: 0 PID: 15971 Comm: syz.4.2085 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  659.422497][T15971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  659.422510][T15971] Call Trace:
[  659.422519][T15971]  <TASK>
[  659.422529][T15971]  dump_stack_lvl+0x16c/0x1f0
[  659.422568][T15971]  should_fail_ex+0x512/0x640
[  659.422607][T15971]  _copy_to_iter+0x463/0x16f0
[  659.422653][T15971]  ? __pfx__copy_to_iter+0x10/0x10
[  659.422692][T15971]  ? rcu_is_watching+0x12/0xc0
[  659.422718][T15971]  ? trace_kmalloc+0x2b/0xd0
[  659.422741][T15971]  ? __kmalloc_noprof+0x242/0x510
[  659.422785][T15971]  read_kcore_iter+0x15f7/0x1930
[  659.422812][T15971]  ? __lock_acquire+0x622/0x1c90
[  659.422853][T15971]  ? __pfx_read_kcore_iter+0x10/0x10
[  659.422897][T15971]  ? find_held_lock+0x2b/0x80
[  659.422923][T15971]  ? is_bpf_text_address+0x8a/0x1a0
[  659.422963][T15971]  ? __lock_acquire+0x622/0x1c90
[  659.422997][T15971]  ? unwind_get_return_address+0x59/0xa0
[  659.423034][T15971]  ? arch_stack_walk+0xa6/0x100
[  659.423080][T15971]  ? find_held_lock+0x2b/0x80
[  659.423105][T15971]  ? aa_file_perm+0x4c7/0xfb0
[  659.423151][T15971]  ? aa_file_perm+0x4d6/0xfb0
[  659.423193][T15971]  ? __pfx_aa_file_perm+0x10/0x10
[  659.423231][T15971]  ? proc_reg_read_iter+0x11b/0x310
[  659.423263][T15971]  proc_reg_read_iter+0x11b/0x310
[  659.423300][T15971]  do_iter_readv_writev+0x735/0x950
[  659.423336][T15971]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  659.423378][T15971]  ? rw_verify_area+0xcf/0x680
[  659.423412][T15971]  vfs_readv+0x4cb/0x8b0
[  659.423451][T15971]  ? __pfx_vfs_readv+0x10/0x10
[  659.423484][T15971]  ? find_held_lock+0x2b/0x80
[  659.423530][T15971]  ? __fget_files+0x20e/0x3c0
[  659.423572][T15971]  ? do_preadv+0x1a6/0x270
[  659.423601][T15971]  do_preadv+0x1a6/0x270
[  659.423632][T15971]  ? __pfx_do_preadv+0x10/0x10
[  659.423675][T15971]  do_syscall_64+0xcd/0x490
[  659.423715][T15971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  659.423740][T15971] RIP: 0033:0x7f8dcab8e929
[  659.423761][T15971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  659.423785][T15971] RSP: 002b:00007f8dc8993038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  659.423809][T15971] RAX: ffffffffffffffda RBX: 00007f8dcadb6240 RCX: 00007f8dcab8e929
[  659.423825][T15971] RDX: 0000000000000005 RSI: 0000200000000040 RDI: 0000000000000007
[  659.423840][T15971] RBP: 00007f8dc8993090 R08: 0000008000000001 R09: 0000000000000000
[  659.423855][T15971] R10: 00000000000000fb R11: 0000000000000246 R12: 0000000000000001
[  659.423870][T15971] R13: 0000000000000000 R14: 00007f8dcadb6240 R15: 00007fff1c9feb68
[  659.423906][T15971]  </TASK>
[  660.187737][T15980] futex_wake_op: syz.4.2088 tries to shift op by -9; fix this program
[  660.506803][T15985] netlink: Conntrack attr has 16 unknown bytes
[  660.527702][T15987] sp0: Synchronizing with TNC
[  661.186505][T16000] : Can't lookup blockdev
[  663.824972][T16046] FAULT_INJECTION: forcing a failure.
[  663.824972][T16046] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  663.838486][T16046] CPU: 0 UID: 0 PID: 16046 Comm: syz.4.2098 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  663.838518][T16046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  663.838531][T16046] Call Trace:
[  663.838539][T16046]  <TASK>
[  663.838549][T16046]  dump_stack_lvl+0x16c/0x1f0
[  663.838588][T16046]  should_fail_ex+0x512/0x640
[  663.838627][T16046]  should_fail_alloc_page+0xe7/0x130
[  663.838653][T16046]  prepare_alloc_pages+0x3c2/0x610
[  663.838690][T16046]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  663.838728][T16046]  ? __lock_acquire+0xb8a/0x1c90
[  663.838764][T16046]  ? kasan_save_stack+0x42/0x60
[  663.838812][T16046]  ? kasan_save_stack+0x33/0x60
[  663.838843][T16046]  ? kasan_save_track+0x14/0x30
[  663.838875][T16046]  ? kasan_save_free_info+0x3b/0x60
[  663.838902][T16046]  ? __kasan_slab_free+0x51/0x70
[  663.838930][T16046]  ? kfree+0x2b4/0x4d0
[  663.838956][T16046]  ? read_kcore_iter+0x161b/0x1930
[  663.838980][T16046]  ? proc_reg_read_iter+0x11b/0x310
[  663.839011][T16046]  ? do_iter_readv_writev+0x735/0x950
[  663.839039][T16046]  ? vfs_readv+0x4cb/0x8b0
[  663.839068][T16046]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  663.839140][T16046]  ? read_kcore_iter+0x1329/0x1930
[  663.839163][T16046]  __alloc_pages_noprof+0xb/0x1b0
[  663.839197][T16046]  ___kmalloc_large_node+0x84/0x1e0
[  663.839231][T16046]  ? read_kcore_iter+0x1329/0x1930
[  663.839253][T16046]  __kmalloc_large_node_noprof+0x1c/0x70
[  663.839285][T16046]  __kmalloc_noprof.cold+0xc/0x61
[  663.839320][T16046]  ? read_kcore_iter+0x161b/0x1930
[  663.839352][T16046]  read_kcore_iter+0x1329/0x1930
[  663.839378][T16046]  ? __lock_acquire+0x622/0x1c90
[  663.839417][T16046]  ? __pfx_read_kcore_iter+0x10/0x10
[  663.839474][T16046]  ? __lock_acquire+0x622/0x1c90
[  663.839550][T16046]  ? __pfx_aa_file_perm+0x10/0x10
[  663.839591][T16046]  ? proc_reg_read_iter+0x11b/0x310
[  663.839622][T16046]  proc_reg_read_iter+0x11b/0x310
[  663.839658][T16046]  do_iter_readv_writev+0x735/0x950
[  663.839692][T16046]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  663.839735][T16046]  ? rw_verify_area+0xcf/0x680
[  663.839768][T16046]  vfs_readv+0x4cb/0x8b0
[  663.839813][T16046]  ? __pfx_vfs_readv+0x10/0x10
[  663.839839][T16046]  ? find_held_lock+0x2b/0x80
[  663.839882][T16046]  ? __fget_files+0x20e/0x3c0
[  663.839916][T16046]  ? do_preadv+0x1a6/0x270
[  663.839946][T16046]  do_preadv+0x1a6/0x270
[  663.839978][T16046]  ? __pfx_do_preadv+0x10/0x10
[  663.840020][T16046]  do_syscall_64+0xcd/0x490
[  663.840059][T16046]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  663.840085][T16046] RIP: 0033:0x7f8dcab8e929
[  663.840106][T16046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  663.840131][T16046] RSP: 002b:00007f8dc8993038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  663.840154][T16046] RAX: ffffffffffffffda RBX: 00007f8dcadb6240 RCX: 00007f8dcab8e929
[  663.840171][T16046] RDX: 0000000000000005 RSI: 0000200000000040 RDI: 0000000000000007
[  663.840187][T16046] RBP: 00007f8dc8993090 R08: 0000008000000001 R09: 0000000000000000
[  663.840203][T16046] R10: 00000000000000fb R11: 0000000000000246 R12: 0000000000000001
[  663.840218][T16046] R13: 0000000000000000 R14: 00007f8dcadb6240 R15: 00007fff1c9feb68
[  663.840253][T16046]  </TASK>
[  665.757723][T16053] netlink: 'syz.1.2100': attribute type 11 has an invalid length.
[  665.785938][T16053] netlink: 'syz.1.2100': attribute type 11 has an invalid length.
[  665.803409][T16053] netlink: 'syz.1.2100': attribute type 11 has an invalid length.
[  666.351294][T16065] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  666.396202][T16065] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  666.986547][T16081] netlink: Conntrack attr has 16 unknown bytes
[  667.874162][T16089] netlink: Conntrack attr has 16 unknown bytes
[  668.894908][T16098] netlink: 'syz.1.2108': attribute type 11 has an invalid length.
[  668.907203][T16098] netlink: 'syz.1.2108': attribute type 11 has an invalid length.
[  668.950197][T16098] netlink: 'syz.1.2108': attribute type 11 has an invalid length.
[  672.009688][T16154] FAULT_INJECTION: forcing a failure.
[  672.009688][T16154] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  672.052950][T16154] CPU: 0 UID: 0 PID: 16154 Comm: syz.3.2120 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  672.052983][T16154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  672.052993][T16154] Call Trace:
[  672.052998][T16154]  <TASK>
[  672.053004][T16154]  dump_stack_lvl+0x16c/0x1f0
[  672.053031][T16154]  should_fail_ex+0x512/0x640
[  672.053054][T16154]  should_fail_alloc_page+0xe7/0x130
[  672.053070][T16154]  prepare_alloc_pages+0x3c2/0x610
[  672.053091][T16154]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  672.053131][T16154]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  672.053164][T16154]  ? __lock_acquire+0x622/0x1c90
[  672.053181][T16154]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  672.053203][T16154]  ? policy_nodemask+0xea/0x4e0
[  672.053227][T16154]  alloc_pages_mpol+0x1fb/0x550
[  672.053241][T16154]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  672.053264][T16154]  folio_alloc_mpol_noprof+0x36/0x2f0
[  672.053281][T16154]  shmem_alloc_folio+0x135/0x160
[  672.053300][T16154]  shmem_alloc_and_add_folio+0x499/0xc20
[  672.053322][T16154]  ? __pfx_filemap_get_entry+0x10/0x10
[  672.053336][T16154]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  672.053358][T16154]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  672.053384][T16154]  shmem_get_folio_gfp+0x67f/0x1600
[  672.053414][T16154]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  672.053435][T16154]  ? __lock_acquire+0x622/0x1c90
[  672.053455][T16154]  shmem_fault+0x1fe/0xa30
[  672.053475][T16154]  ? __pfx_shmem_fault+0x10/0x10
[  672.053505][T16154]  __do_fault+0x10a/0x490
[  672.053526][T16154]  ? __pfx_filemap_map_pages+0x10/0x10
[  672.053547][T16154]  __handle_mm_fault+0x374c/0x5490
[  672.053571][T16154]  ? __pfx___handle_mm_fault+0x10/0x10
[  672.053587][T16154]  ? __pfx_mt_find+0x10/0x10
[  672.053612][T16154]  ? find_vma+0xbf/0x140
[  672.053625][T16154]  ? __pfx_find_vma+0x10/0x10
[  672.053640][T16154]  handle_mm_fault+0x589/0xd10
[  672.053659][T16154]  ? __pkru_allows_pkey+0x41/0xb0
[  672.053679][T16154]  do_user_addr_fault+0x7a6/0x1370
[  672.053700][T16154]  ? rcu_is_watching+0x12/0xc0
[  672.053716][T16154]  exc_page_fault+0x5c/0xb0
[  672.053737][T16154]  asm_exc_page_fault+0x26/0x30
[  672.053752][T16154] RIP: 0010:rep_stos_alternative+0x5b/0x80
[  672.053768][T16154] Code: 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 07 48 89 47 08 48 89 47 10 48 89 47 18 48 89 47 20 48 89 47 28 48 89 47 30 <48> 89 47 38 48 83 c7 40 48 83 e9 40 48 83 f9 40 73 d3 83 f9 08 73
[  672.053782][T16154] RSP: 0018:ffffc9000cedf650 EFLAGS: 00050206
[  672.053794][T16154] RAX: 0000000000000000 RBX: 0000000008010000 RCX: 0000000000000f40
[  672.053803][T16154] RDX: ffff888046123c00 RSI: ffffffff84d75344 RDI: 000000000000cfc5
[  672.053812][T16154] RBP: ffffc9000cedfd70 R08: 8403384e7d8fbefe R09: 0000000000000000
[  672.053821][T16154] R10: 0000000000000000 R11: 0000000000000001 R12: 000000000000cf05
[  672.053830][T16154] R13: 0000000000001000 R14: 000000000000cf05 R15: 0000000000001000
[  672.053845][T16154]  ? iov_iter_zero+0x404/0x1580
[  672.053869][T16154]  iov_iter_zero+0x414/0x1580
[  672.053894][T16154]  ? __pfx_iov_iter_zero+0x10/0x10
[  672.053915][T16154]  ? __folio_put+0x32e/0x450
[  672.053935][T16154]  ? __pfx___folio_put+0x10/0x10
[  672.053958][T16154]  ? free_large_kmalloc+0x112/0x1a0
[  672.053973][T16154]  ? lockdep_hardirqs_on+0x7c/0x110
[  672.053994][T16154]  read_kcore_iter+0x8ac/0x1930
[  672.054010][T16154]  ? __lock_acquire+0x622/0x1c90
[  672.054032][T16154]  ? __pfx_read_kcore_iter+0x10/0x10
[  672.054063][T16154]  ? __lock_acquire+0x622/0x1c90
[  672.054104][T16154]  ? __pfx_aa_file_perm+0x10/0x10
[  672.054131][T16154]  ? proc_reg_read_iter+0x11b/0x310
[  672.054149][T16154]  proc_reg_read_iter+0x11b/0x310
[  672.054170][T16154]  do_iter_readv_writev+0x735/0x950
[  672.054190][T16154]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  672.054215][T16154]  ? rw_verify_area+0xcf/0x680
[  672.054244][T16154]  vfs_readv+0x4cb/0x8b0
[  672.054280][T16154]  ? __pfx_vfs_readv+0x10/0x10
[  672.054300][T16154]  ? find_held_lock+0x2b/0x80
[  672.054325][T16154]  ? __fget_files+0x20e/0x3c0
[  672.054348][T16154]  ? do_preadv+0x1a6/0x270
[  672.054365][T16154]  do_preadv+0x1a6/0x270
[  672.054383][T16154]  ? __pfx_do_preadv+0x10/0x10
[  672.054406][T16154]  do_syscall_64+0xcd/0x490
[  672.054428][T16154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  672.054442][T16154] RIP: 0033:0x7fbde518e929
[  672.054454][T16154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  672.054467][T16154] RSP: 002b:00007fbde5f62038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  672.054480][T16154] RAX: ffffffffffffffda RBX: 00007fbde53b6240 RCX: 00007fbde518e929
[  672.054489][T16154] RDX: 0000000000000005 RSI: 0000200000000040 RDI: 0000000000000007
[  672.054498][T16154] RBP: 00007fbde5f62090 R08: 0000008000000001 R09: 0000000000000000
[  672.054506][T16154] R10: 00000000000000fb R11: 0000000000000246 R12: 0000000000000001
[  672.054514][T16154] R13: 0000000000000000 R14: 00007fbde53b6240 R15: 00007ffda94fc128
[  672.054533][T16154]  </TASK>
[  673.114921][T16164] FAULT_INJECTION: forcing a failure.
[  673.114921][T16164] name failslab, interval 1, probability 0, space 0, times 0
[  673.149502][T16164] CPU: 0 UID: 0 PID: 16164 Comm: syz.1.2124 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  673.149538][T16164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  673.149551][T16164] Call Trace:
[  673.149561][T16164]  <TASK>
[  673.149571][T16164]  dump_stack_lvl+0x16c/0x1f0
[  673.149614][T16164]  should_fail_ex+0x512/0x640
[  673.149644][T16164]  ? __kmalloc_noprof+0xbf/0x510
[  673.149677][T16164]  ? sk_prot_alloc+0x1a8/0x2a0
[  673.149696][T16164]  should_failslab+0xc2/0x120
[  673.149717][T16164]  __kmalloc_noprof+0xd2/0x510
[  673.149743][T16164]  ? evm_inode_alloc_security+0x49/0xc0
[  673.149777][T16164]  sk_prot_alloc+0x1a8/0x2a0
[  673.149801][T16164]  sk_alloc+0x36/0xc20
[  673.149830][T16164]  __netlink_create+0x5e/0x2c0
[  673.149860][T16164]  __netlink_kernel_create+0xed/0x750
[  673.149881][T16164]  ? __lock_acquire+0x622/0x1c90
[  673.149905][T16164]  ? __pfx___netlink_kernel_create+0x10/0x10
[  673.149933][T16164]  ? __pfx_diag_net_init+0x10/0x10
[  673.149958][T16164]  diag_net_init+0xbd/0x140
[  673.149983][T16164]  ? __pfx_diag_net_init+0x10/0x10
[  673.150009][T16164]  ? find_held_lock+0x2b/0x80
[  673.150028][T16164]  ? __pfx_sock_diag_rcv+0x10/0x10
[  673.150060][T16164]  ? __pfx_sock_diag_bind+0x10/0x10
[  673.150089][T16164]  ? __raw_spin_lock_init+0x3a/0x110
[  673.150121][T16164]  ? __pfx_cma_init_net+0x10/0x10
[  673.150149][T16164]  ops_init+0x1df/0x5f0
[  673.150171][T16164]  setup_net+0x1ff/0x510
[  673.150188][T16164]  ? lockdep_init_map_type+0x5c/0x280
[  673.150213][T16164]  ? __pfx_setup_net+0x10/0x10
[  673.150233][T16164]  ? debug_mutex_init+0x37/0x70
[  673.150255][T16164]  copy_net_ns+0x2a6/0x5f0
[  673.150279][T16164]  create_new_namespaces+0x3ea/0xa90
[  673.150307][T16164]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  673.150331][T16164]  ksys_unshare+0x45b/0xa40
[  673.150356][T16164]  ? __pfx_ksys_unshare+0x10/0x10
[  673.150382][T16164]  ? xfd_validate_state+0x61/0x180
[  673.150417][T16164]  __x64_sys_unshare+0x31/0x40
[  673.150444][T16164]  do_syscall_64+0xcd/0x490
[  673.150474][T16164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  673.150494][T16164] RIP: 0033:0x7f05ac38e929
[  673.150512][T16164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  673.150531][T16164] RSP: 002b:00007f05ad245038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  673.150550][T16164] RAX: ffffffffffffffda RBX: 00007f05ac5b5fa0 RCX: 00007f05ac38e929
[  673.150564][T16164] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  673.150577][T16164] RBP: 00007f05ac410b39 R08: 0000000000000000 R09: 0000000000000000
[  673.150591][T16164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  673.150604][T16164] R13: 0000000000000000 R14: 00007f05ac5b5fa0 R15: 00007fffa56e8d38
[  673.150631][T16164]  </TASK>
[  673.457908][T16168] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2124'.
[  675.864946][T16215] FAULT_INJECTION: forcing a failure.
[  675.864946][T16215] name failslab, interval 1, probability 0, space 0, times 0
[  675.957564][T16215] CPU: 1 UID: 0 PID: 16215 Comm: syz.0.2137 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  675.957601][T16215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  675.957616][T16215] Call Trace:
[  675.957625][T16215]  <TASK>
[  675.957635][T16215]  dump_stack_lvl+0x16c/0x1f0
[  675.957675][T16215]  should_fail_ex+0x512/0x640
[  675.957708][T16215]  ? __kvmalloc_node_noprof+0x124/0x620
[  675.957746][T16215]  should_failslab+0xc2/0x120
[  675.957770][T16215]  __kvmalloc_node_noprof+0x137/0x620
[  675.957805][T16215]  ? seq_read_iter+0x826/0x12c0
[  675.957841][T16215]  ? seq_read_iter+0x826/0x12c0
[  675.957874][T16215]  seq_read_iter+0x826/0x12c0
[  675.957906][T16215]  ? aa_file_perm+0x4d6/0xfb0
[  675.957949][T16215]  seq_read+0x39e/0x4e0
[  675.957979][T16215]  ? __pfx_seq_read+0x10/0x10
[  675.958005][T16215]  ? __lock_acquire+0xb8a/0x1c90
[  675.958043][T16215]  ? get_pid_task+0xfc/0x250
[  675.958089][T16215]  ? __pfx_seq_read+0x10/0x10
[  675.958117][T16215]  proc_reg_read+0x23d/0x330
[  675.958151][T16215]  ? __pfx_proc_reg_read+0x10/0x10
[  675.958185][T16215]  vfs_read+0x1e4/0xc60
[  675.958224][T16215]  ? __pfx___mutex_lock+0x10/0x10
[  675.958259][T16215]  ? __pfx_vfs_read+0x10/0x10
[  675.958301][T16215]  ? __fget_files+0x20e/0x3c0
[  675.958344][T16215]  ksys_read+0x12a/0x250
[  675.958375][T16215]  ? __pfx_ksys_read+0x10/0x10
[  675.958418][T16215]  do_syscall_64+0xcd/0x490
[  675.958457][T16215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  675.958481][T16215] RIP: 0033:0x7f3e6bf8e929
[  675.958502][T16215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  675.958526][T16215] RSP: 002b:00007f3e6cdd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  675.958550][T16215] RAX: ffffffffffffffda RBX: 00007f3e6c1b5fa0 RCX: 00007f3e6bf8e929
[  675.958567][T16215] RDX: 00000000000000d7 RSI: 0000200000000e80 RDI: 0000000000000004
[  675.958590][T16215] RBP: 00007f3e6cdd7090 R08: 0000000000000000 R09: 0000000000000000
[  675.958606][T16215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  675.958622][T16215] R13: 0000000000000000 R14: 00007f3e6c1b5fa0 R15: 00007ffd43fe4878
[  675.958657][T16215]  </TASK>
[  683.333627][T16345] netlink: 'syz.1.2162': attribute type 11 has an invalid length.
[  683.352196][T16345] netlink: 'syz.1.2162': attribute type 11 has an invalid length.
[  683.360441][T16345] netlink: 'syz.1.2162': attribute type 11 has an invalid length.
[  683.947174][T16366] FAULT_INJECTION: forcing a failure.
[  683.947174][T16366] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  684.017816][T16367] FAULT_INJECTION: forcing a failure.
[  684.017816][T16367] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  684.042952][T16366] CPU: 1 UID: 0 PID: 16366 Comm: syz.1.2165 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  684.042984][T16366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  684.042997][T16366] Call Trace:
[  684.043006][T16366]  <TASK>
[  684.043014][T16366]  dump_stack_lvl+0x16c/0x1f0
[  684.043051][T16366]  should_fail_ex+0x512/0x640
[  684.043107][T16366]  _copy_to_user+0x32/0xd0
[  684.043146][T16366]  simple_read_from_buffer+0xcb/0x170
[  684.043180][T16366]  proc_fail_nth_read+0x197/0x270
[  684.043210][T16366]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  684.043241][T16366]  ? rw_verify_area+0xcf/0x680
[  684.043270][T16366]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  684.043298][T16366]  vfs_read+0x1e4/0xc60
[  684.043338][T16366]  ? __pfx___mutex_lock+0x10/0x10
[  684.043372][T16366]  ? __pfx_vfs_read+0x10/0x10
[  684.043412][T16366]  ? __fget_files+0x20e/0x3c0
[  684.043453][T16366]  ksys_read+0x12a/0x250
[  684.043483][T16366]  ? __pfx_ksys_read+0x10/0x10
[  684.043523][T16366]  do_syscall_64+0xcd/0x490
[  684.043560][T16366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  684.043585][T16366] RIP: 0033:0x7f05ac38d33c
[  684.043605][T16366] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  684.043628][T16366] RSP: 002b:00007f05ad245030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  684.043652][T16366] RAX: ffffffffffffffda RBX: 00007f05ac5b5fa0 RCX: 00007f05ac38d33c
[  684.043668][T16366] RDX: 000000000000000f RSI: 00007f05ad2450a0 RDI: 0000000000000005
[  684.043683][T16366] RBP: 00007f05ad245090 R08: 0000000000000000 R09: 0000000000000000
[  684.043699][T16366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  684.043713][T16366] R13: 0000000000000000 R14: 00007f05ac5b5fa0 R15: 00007fffa56e8d38
[  684.043747][T16366]  </TASK>
[  684.264890][T16367] CPU: 0 UID: 0 PID: 16367 Comm: syz.3.2164 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  684.264922][T16367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  684.264935][T16367] Call Trace:
[  684.264944][T16367]  <TASK>
[  684.264953][T16367]  dump_stack_lvl+0x16c/0x1f0
[  684.264992][T16367]  should_fail_ex+0x512/0x640
[  684.265032][T16367]  should_fail_alloc_page+0xe7/0x130
[  684.265059][T16367]  prepare_alloc_pages+0x3c2/0x610
[  684.265089][T16367]  ? rcu_is_watching+0x12/0xc0
[  684.265117][T16367]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  684.265156][T16367]  ? __lock_acquire+0xb8a/0x1c90
[  684.265199][T16367]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  684.265232][T16367]  ? do_raw_spin_lock+0x12c/0x2b0
[  684.265265][T16367]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  684.265299][T16367]  ? find_held_lock+0x2b/0x80
[  684.265328][T16367]  ? rcu_is_watching+0x12/0xc0
[  684.265353][T16367]  ? __pv_queued_spin_lock_slowpath+0x28d/0xcf0
[  684.265392][T16367]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  684.265431][T16367]  ? policy_nodemask+0xea/0x4e0
[  684.265481][T16367]  alloc_pages_mpol+0x1fb/0x550
[  684.265507][T16367]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  684.265532][T16367]  ? find_held_lock+0x2b/0x80
[  684.265562][T16367]  folio_alloc_mpol_noprof+0x36/0x2f0
[  684.265592][T16367]  shmem_alloc_folio+0x135/0x160
[  684.265625][T16367]  shmem_alloc_and_add_folio+0x499/0xc20
[  684.265665][T16367]  ? __pfx_filemap_get_entry+0x10/0x10
[  684.265690][T16367]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  684.265727][T16367]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  684.265769][T16367]  shmem_get_folio_gfp+0x67f/0x1600
[  684.265812][T16367]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  684.265849][T16367]  ? __lock_acquire+0x622/0x1c90
[  684.265884][T16367]  shmem_fault+0x1fe/0xa30
[  684.265920][T16367]  ? __pfx_shmem_fault+0x10/0x10
[  684.265960][T16367]  ? mark_held_locks+0x49/0x80
[  684.266001][T16367]  __do_fault+0x10a/0x490
[  684.266037][T16367]  ? __pfx_filemap_map_pages+0x10/0x10
[  684.266073][T16367]  __handle_mm_fault+0x374c/0x5490
[  684.266115][T16367]  ? __pfx___handle_mm_fault+0x10/0x10
[  684.266145][T16367]  ? __pfx_mt_find+0x10/0x10
[  684.266190][T16367]  ? find_vma+0xbf/0x140
[  684.266214][T16367]  ? __pfx_find_vma+0x10/0x10
[  684.266243][T16367]  handle_mm_fault+0x589/0xd10
[  684.266277][T16367]  ? __pkru_allows_pkey+0x41/0xb0
[  684.266312][T16367]  do_user_addr_fault+0x7a6/0x1370
[  684.266349][T16367]  ? rcu_is_watching+0x12/0xc0
[  684.266378][T16367]  exc_page_fault+0x5c/0xb0
[  684.266412][T16367]  asm_exc_page_fault+0x26/0x30
[  684.266434][T16367] RIP: 0010:rep_stos_alternative+0x5b/0x80
[  684.266467][T16367] Code: 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 07 48 89 47 08 48 89 47 10 48 89 47 18 48 89 47 20 48 89 47 28 48 89 47 30 <48> 89 47 38 48 83 c7 40 48 83 e9 40 48 83 f9 40 73 d3 83 f9 08 73
[  684.266491][T16367] RSP: 0018:ffffc9000c407650 EFLAGS: 00050206
[  684.266512][T16367] RAX: 0000000000000000 RBX: 0000000008010000 RCX: 0000000000000f40
[  684.266528][T16367] RDX: ffff888046125a00 RSI: ffffffff84d75344 RDI: 000000000000bfc5
[  684.266544][T16367] RBP: ffffc9000c407d70 R08: 8403384e7d8fbefe R09: 0000000000000000
[  684.266560][T16367] R10: 0000000000000000 R11: 0000000000000001 R12: 000000000000bf05
[  684.266575][T16367] R13: 0000000000001000 R14: 000000000000bf05 R15: 0000000000001000
[  684.266602][T16367]  ? iov_iter_zero+0x404/0x1580
[  684.266647][T16367]  iov_iter_zero+0x414/0x1580
[  684.266693][T16367]  ? __pfx_iov_iter_zero+0x10/0x10
[  684.266729][T16367]  ? __folio_put+0x32e/0x450
[  684.266765][T16367]  ? __pfx___folio_put+0x10/0x10
[  684.266805][T16367]  ? free_large_kmalloc+0x112/0x1a0
[  684.266831][T16367]  ? lockdep_hardirqs_on+0x7c/0x110
[  684.266891][T16367]  read_kcore_iter+0x8ac/0x1930
[  684.266916][T16367]  ? __lock_acquire+0x622/0x1c90
[  684.266956][T16367]  ? __pfx_read_kcore_iter+0x10/0x10
[  684.266984][T16367]  ? __pv_queued_spin_lock_slowpath+0x28d/0xcf0
[  684.267025][T16367]  ? __lock_acquire+0xb8a/0x1c90
[  684.267076][T16367]  ? __lock_acquire+0x622/0x1c90
[  684.267152][T16367]  ? __pfx_aa_file_perm+0x10/0x10
[  684.267192][T16367]  ? proc_reg_read_iter+0x11b/0x310
[  684.267225][T16367]  proc_reg_read_iter+0x11b/0x310
[  684.267262][T16367]  do_iter_readv_writev+0x735/0x950
[  684.267297][T16367]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  684.267339][T16367]  ? rw_verify_area+0xcf/0x680
[  684.267373][T16367]  vfs_readv+0x4cb/0x8b0
[  684.267412][T16367]  ? __pfx_vfs_readv+0x10/0x10
[  684.267445][T16367]  ? find_held_lock+0x2b/0x80
[  684.267497][T16367]  ? __fget_files+0x20e/0x3c0
[  684.267539][T16367]  ? do_preadv+0x1a6/0x270
[  684.267568][T16367]  do_preadv+0x1a6/0x270
[  684.267600][T16367]  ? __pfx_do_preadv+0x10/0x10
[  684.267642][T16367]  do_syscall_64+0xcd/0x490
[  684.267681][T16367]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  684.267705][T16367] RIP: 0033:0x7fbde518e929
[  684.267725][T16367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  684.267748][T16367] RSP: 002b:00007fbde5f62038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  684.267771][T16367] RAX: ffffffffffffffda RBX: 00007fbde53b6240 RCX: 00007fbde518e929
[  684.267788][T16367] RDX: 0000000000000005 RSI: 0000200000000040 RDI: 0000000000000007
[  684.267802][T16367] RBP: 00007fbde5f62090 R08: 0000008000000001 R09: 0000000000000000
[  684.267817][T16367] R10: 00000000000000fb R11: 0000000000000246 R12: 0000000000000001
[  684.267832][T16367] R13: 0000000000000000 R14: 00007fbde53b6240 R15: 00007ffda94fc128
[  684.267867][T16367]  </TASK>
[  686.031553][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  686.038002][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  688.954041][T16435] FAULT_INJECTION: forcing a failure.
[  688.954041][T16435] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  688.967643][T16435] CPU: 1 UID: 0 PID: 16435 Comm: syz.1.2178 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  688.967673][T16435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  688.967686][T16435] Call Trace:
[  688.967695][T16435]  <TASK>
[  688.967704][T16435]  dump_stack_lvl+0x16c/0x1f0
[  688.967744][T16435]  should_fail_ex+0x512/0x640
[  688.967780][T16435]  should_fail_alloc_page+0xe7/0x130
[  688.967801][T16435]  prepare_alloc_pages+0x3c2/0x610
[  688.967818][T16435]  ? rcu_is_watching+0x12/0xc0
[  688.967834][T16435]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  688.967856][T16435]  ? __lock_acquire+0xb8a/0x1c90
[  688.967882][T16435]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  688.967902][T16435]  ? do_raw_spin_lock+0x12c/0x2b0
[  688.967923][T16435]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  688.967943][T16435]  ? find_held_lock+0x2b/0x80
[  688.967969][T16435]  ? __lock_acquire+0xb8a/0x1c90
[  688.967986][T16435]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  688.968009][T16435]  ? policy_nodemask+0xea/0x4e0
[  688.968032][T16435]  alloc_pages_mpol+0x1fb/0x550
[  688.968047][T16435]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  688.968066][T16435]  folio_alloc_mpol_noprof+0x36/0x2f0
[  688.968083][T16435]  shmem_alloc_folio+0x135/0x160
[  688.968101][T16435]  shmem_alloc_and_add_folio+0x499/0xc20
[  688.968123][T16435]  ? __pfx_filemap_get_entry+0x10/0x10
[  688.968136][T16435]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  688.968158][T16435]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  688.968181][T16435]  shmem_get_folio_gfp+0x67f/0x1600
[  688.968205][T16435]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  688.968225][T16435]  ? __lock_acquire+0x622/0x1c90
[  688.968245][T16435]  shmem_fault+0x1fe/0xa30
[  688.968266][T16435]  ? __pfx_shmem_fault+0x10/0x10
[  688.968295][T16435]  __do_fault+0x10a/0x490
[  688.968316][T16435]  ? __pfx_filemap_map_pages+0x10/0x10
[  688.968337][T16435]  __handle_mm_fault+0x374c/0x5490
[  688.968360][T16435]  ? __pfx___handle_mm_fault+0x10/0x10
[  688.968377][T16435]  ? __pfx_mt_find+0x10/0x10
[  688.968401][T16435]  ? find_vma+0xbf/0x140
[  688.968414][T16435]  ? __pfx_find_vma+0x10/0x10
[  688.968430][T16435]  handle_mm_fault+0x589/0xd10
[  688.968448][T16435]  ? __pkru_allows_pkey+0x41/0xb0
[  688.968468][T16435]  do_user_addr_fault+0x7a6/0x1370
[  688.968488][T16435]  ? rcu_is_watching+0x12/0xc0
[  688.968504][T16435]  exc_page_fault+0x5c/0xb0
[  688.968524][T16435]  asm_exc_page_fault+0x26/0x30
[  688.968537][T16435] RIP: 0010:rep_stos_alternative+0x5b/0x80
[  688.968554][T16435] Code: 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 07 48 89 47 08 48 89 47 10 48 89 47 18 48 89 47 20 48 89 47 28 48 89 47 30 <48> 89 47 38 48 83 c7 40 48 83 e9 40 48 83 f9 40 73 d3 83 f9 08 73
[  688.968568][T16435] RSP: 0018:ffffc9000c367650 EFLAGS: 00050206
[  688.968580][T16435] RAX: 0000000000000000 RBX: 0000000008010000 RCX: 0000000000000f40
[  688.968589][T16435] RDX: ffff888079d21e00 RSI: ffffffff84d75344 RDI: 0000000000006fc5
[  688.968598][T16435] RBP: ffffc9000c367d70 R08: 8403384e7d8fbefe R09: 0000000000000000
[  688.968607][T16435] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000006f05
[  688.968615][T16435] R13: 0000000000001000 R14: 0000000000006f05 R15: 0000000000001000
[  688.968630][T16435]  ? iov_iter_zero+0x404/0x1580
[  688.968654][T16435]  iov_iter_zero+0x414/0x1580
[  688.968679][T16435]  ? __pfx_iov_iter_zero+0x10/0x10
[  688.968700][T16435]  ? __folio_put+0x32e/0x450
[  688.968720][T16435]  ? __pfx___folio_put+0x10/0x10
[  688.968743][T16435]  ? free_large_kmalloc+0x112/0x1a0
[  688.968758][T16435]  ? lockdep_hardirqs_on+0x7c/0x110
[  688.968780][T16435]  read_kcore_iter+0x8ac/0x1930
[  688.968800][T16435]  ? __pfx_read_kcore_iter+0x10/0x10
[  688.968816][T16435]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  688.968849][T16435]  ? __lock_acquire+0x622/0x1c90
[  688.968890][T16435]  ? __pfx_aa_file_perm+0x10/0x10
[  688.968907][T16435]  ? lock_acquire+0x179/0x350
[  688.968927][T16435]  ? proc_reg_read_iter+0x11b/0x310
[  688.968946][T16435]  proc_reg_read_iter+0x11b/0x310
[  688.968971][T16435]  do_iter_readv_writev+0x735/0x950
[  688.968991][T16435]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  688.969015][T16435]  ? rw_verify_area+0xcf/0x680
[  688.969033][T16435]  vfs_readv+0x4cb/0x8b0
[  688.969055][T16435]  ? __pfx_vfs_readv+0x10/0x10
[  688.969073][T16435]  ? find_held_lock+0x2b/0x80
[  688.969104][T16435]  ? do_preadv+0x1a6/0x270
[  688.969120][T16435]  do_preadv+0x1a6/0x270
[  688.969138][T16435]  ? __pfx_do_preadv+0x10/0x10
[  688.969161][T16435]  do_syscall_64+0xcd/0x490
[  688.969184][T16435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  688.969197][T16435] RIP: 0033:0x7f05ac38e929
[  688.969208][T16435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  688.969221][T16435] RSP: 002b:00007f05ad1e2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  688.969234][T16435] RAX: ffffffffffffffda RBX: 00007f05ac5b6240 RCX: 00007f05ac38e929
[  688.969243][T16435] RDX: 0000000000000005 RSI: 0000200000000040 RDI: 0000000000000007
[  688.969251][T16435] RBP: 00007f05ad1e2090 R08: 0000008000000001 R09: 0000000000000000
[  688.969260][T16435] R10: 00000000000000fb R11: 0000000000000246 R12: 0000000000000001
[  688.969268][T16435] R13: 0000000000000000 R14: 00007f05ac5b6240 R15: 00007fffa56e8d38
[  688.969286][T16435]  </TASK>
[  689.619458][T16436] netlink: 'syz.0.2179': attribute type 11 has an invalid length.
[  689.627493][T16436] netlink: 'syz.0.2179': attribute type 11 has an invalid length.
[  689.635359][T16436] netlink: 'syz.0.2179': attribute type 11 has an invalid length.
[  692.667971][T16486] netlink: 'syz.3.2188': attribute type 11 has an invalid length.
[  692.687695][T16486] netlink: 'syz.3.2188': attribute type 11 has an invalid length.
[  692.728999][T16486] netlink: 'syz.3.2188': attribute type 11 has an invalid length.
[  693.134815][T16501] FAULT_INJECTION: forcing a failure.
[  693.134815][T16501] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  693.148266][T16501] CPU: 1 UID: 0 PID: 16501 Comm: syz.1.2191 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  693.148299][T16501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  693.148315][T16501] Call Trace:
[  693.148324][T16501]  <TASK>
[  693.148334][T16501]  dump_stack_lvl+0x16c/0x1f0
[  693.148376][T16501]  should_fail_ex+0x512/0x640
[  693.148416][T16501]  _copy_from_user+0x2e/0xd0
[  693.148453][T16501]  kstrtouint_from_user+0xd6/0x1d0
[  693.148483][T16501]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  693.148511][T16501]  ? __lock_acquire+0xb8a/0x1c90
[  693.148559][T16501]  proc_fail_nth_write+0x83/0x250
[  693.148588][T16501]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  693.148633][T16501]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  693.148659][T16501]  vfs_write+0x29d/0x1150
[  693.148699][T16501]  ? __pfx___mutex_lock+0x10/0x10
[  693.148735][T16501]  ? __pfx_vfs_write+0x10/0x10
[  693.148779][T16501]  ? __fget_files+0x20e/0x3c0
[  693.148823][T16501]  ksys_write+0x12a/0x250
[  693.148855][T16501]  ? __pfx_ksys_write+0x10/0x10
[  693.148899][T16501]  do_syscall_64+0xcd/0x490
[  693.148938][T16501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  693.148963][T16501] RIP: 0033:0x7f05ac38d3df
[  693.148983][T16501] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  693.149007][T16501] RSP: 002b:00007f05ad1e2030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  693.149031][T16501] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f05ac38d3df
[  693.149047][T16501] RDX: 0000000000000001 RSI: 00007f05ad1e20a0 RDI: 0000000000000008
[  693.149062][T16501] RBP: 00007f05ad1e2090 R08: 0000000000000000 R09: 0000000000000000
[  693.149081][T16501] R10: 00000000000000fb R11: 0000000000000293 R12: 0000000000000002
[  693.149094][T16501] R13: 0000000000000000 R14: 00007f05ac5b6240 R15: 00007fffa56e8d38
[  693.149125][T16501]  </TASK>
[  693.619195][T16504] FAULT_INJECTION: forcing a failure.
[  693.619195][T16504] name failslab, interval 1, probability 0, space 0, times 0
[  693.673436][T16504] CPU: 0 UID: 0 PID: 16504 Comm: syz.1.2192 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  693.673472][T16504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  693.673486][T16504] Call Trace:
[  693.673495][T16504]  <TASK>
[  693.673504][T16504]  dump_stack_lvl+0x16c/0x1f0
[  693.673547][T16504]  should_fail_ex+0x512/0x640
[  693.673584][T16504]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  693.673621][T16504]  should_failslab+0xc2/0x120
[  693.673646][T16504]  __kmalloc_cache_noprof+0x6a/0x3e0
[  693.673679][T16504]  ? getname_flags.part.0+0x292/0x550
[  693.673711][T16504]  getname_flags.part.0+0x292/0x550
[  693.673740][T16504]  getname_flags+0x93/0xf0
[  693.673769][T16504]  do_sys_openat2+0xb8/0x1d0
[  693.673791][T16504]  ? __pfx_do_sys_openat2+0x10/0x10
[  693.673842][T16504]  __x64_sys_open+0x153/0x1e0
[  693.673873][T16504]  ? __pfx___x64_sys_open+0x10/0x10
[  693.673906][T16504]  ? rcu_is_watching+0x12/0xc0
[  693.673933][T16504]  do_syscall_64+0xcd/0x490
[  693.673972][T16504]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  693.673994][T16504] RIP: 0033:0x7f05ac38e929
[  693.674013][T16504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  693.674040][T16504] RSP: 002b:00007f05ad245038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  693.674066][T16504] RAX: ffffffffffffffda RBX: 00007f05ac5b5fa0 RCX: 00007f05ac38e929
[  693.674085][T16504] RDX: 00000000000000d1 RSI: 0000000000103040 RDI: 0000200000000380
[  693.674107][T16504] RBP: 00007f05ac410b39 R08: 0000000000000000 R09: 0000000000000000
[  693.674116][T16504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  693.674129][T16504] R13: 0000000000000000 R14: 00007f05ac5b5fa0 R15: 00007fffa56e8d38
[  693.674148][T16504]  </TASK>
[  695.674834][T16536] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4.16384.4294967293), cmd(3)
[  696.971819][T16562] sd 0:0:1:0: PR command failed: 1026
[  697.008393][T16562] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  697.069410][T16562] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  697.767760][T16569] netlink: 'syz.0.2203': attribute type 11 has an invalid length.
[  697.805054][T16569] netlink: 'syz.0.2203': attribute type 11 has an invalid length.
[  697.902082][T16569] netlink: 'syz.0.2203': attribute type 11 has an invalid length.
[  698.570060][T16589] : Can't lookup blockdev
[  700.624216][T16617] Invalid ELF header magic: != ELF
[  700.998640][T16621] FAULT_INJECTION: forcing a failure.
[  700.998640][T16621] name failslab, interval 1, probability 0, space 0, times 0
[  701.013364][T16621] CPU: 1 UID: 0 PID: 16621 Comm: syz.1.2214 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  701.013402][T16621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  701.013419][T16621] Call Trace:
[  701.013428][T16621]  <TASK>
[  701.013440][T16621]  dump_stack_lvl+0x16c/0x1f0
[  701.013487][T16621]  should_fail_ex+0x512/0x640
[  701.013522][T16621]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  701.013561][T16621]  should_failslab+0xc2/0x120
[  701.013588][T16621]  __kmalloc_cache_noprof+0x6a/0x3e0
[  701.013623][T16621]  ? devlink_fmsg_nest_common.part.0+0x48/0x1e0
[  701.013661][T16621]  devlink_fmsg_nest_common.part.0+0x48/0x1e0
[  701.013694][T16621]  devlink_fmsg_u8_pair_put+0x284/0x2f0
[  701.013726][T16621]  ? __pfx_devlink_fmsg_u8_pair_put+0x10/0x10
[  701.013760][T16621]  ? devlink_fmsg_nest_common.part.0+0xcd/0x1e0
[  701.013796][T16621]  nsim_dev_dummy_fmsg_put+0x39/0x1e0
[  701.013826][T16621]  devlink_health_do_dump+0x243/0x620
[  701.013863][T16621]  devlink_health_report+0x3c9/0x9c0
[  701.013900][T16621]  ? __pfx_devlink_health_report+0x10/0x10
[  701.013934][T16621]  ? _copy_from_user+0x59/0xd0
[  701.013974][T16621]  nsim_dev_health_break_write+0x166/0x210
[  701.014003][T16621]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[  701.014045][T16621]  full_proxy_write+0x13f/0x200
[  701.014073][T16621]  ? __pfx_full_proxy_write+0x10/0x10
[  701.014098][T16621]  vfs_write+0x29d/0x1150
[  701.014142][T16621]  ? __pfx_vfs_write+0x10/0x10
[  701.014174][T16621]  ? do_futex+0x122/0x350
[  701.014214][T16621]  ? __pfx_do_futex+0x10/0x10
[  701.014245][T16621]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  701.014282][T16621]  ? __x64_sys_futex+0x1e0/0x4c0
[  701.014312][T16621]  ? __x64_sys_futex+0x1e9/0x4c0
[  701.014349][T16621]  ksys_write+0x12a/0x250
[  701.014384][T16621]  ? __pfx_ksys_write+0x10/0x10
[  701.014429][T16621]  do_syscall_64+0xcd/0x490
[  701.014471][T16621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  701.014497][T16621] RIP: 0033:0x7f05ac38e929
[  701.014520][T16621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  701.014546][T16621] RSP: 002b:00007f05ad245038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  701.014571][T16621] RAX: ffffffffffffffda RBX: 00007f05ac5b5fa0 RCX: 00007f05ac38e929
[  701.014590][T16621] RDX: 00000000000001ff RSI: 0000000000000000 RDI: 0000000000000000
[  701.014607][T16621] RBP: 00007f05ac410b39 R08: 0000000000000000 R09: 0000000000000000
[  701.014624][T16621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  701.014640][T16621] R13: 0000000000000000 R14: 00007f05ac5b5fa0 R15: 00007fffa56e8d38
[  701.014677][T16621]  </TASK>
[  701.924499][T16625] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2216'.
[  702.545267][T16640] can: request_module (can-proto-0) failed.
[  704.284163][T16659] zswap: compressor  not available
[  704.869850][T16652] kexec: Could not allocate control_code_buffer
[  705.163069][T16680] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[16680]
[  705.978783][T16695] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2232'.
[  708.512800][T16742] can: request_module (can-proto-0) failed.
[  710.048528][T16781] HfR: entered promiscuous mode
[  710.146560][T16781] openvswitch: HfR: Dropping previously announced user features
[  712.071249][T16807] Invalid ELF header magic: != ELF
[  712.092454][T16813] netlink: zone id is out of range
[  712.097890][T16813] netlink: zone id is out of range
[  712.103031][T16813] netlink: zone id is out of range
[  712.157923][T16813] netlink: zone id is out of range
[  712.163097][T16813] netlink: zone id is out of range
[  712.256723][T16813] netlink: zone id is out of range
[  712.411429][T16813] netlink: zone id is out of range
[  712.450820][T16813] netlink: zone id is out of range
[  712.514730][T16813] netlink: zone id is out of range
[  712.519911][T16813] netlink: zone id is out of range
[  714.177358][T16853] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2262'.
[  715.184327][T16860] ubi0: attaching mtd0
[  715.265060][T16860] ubi0: scanning is finished
[  715.286994][T16860] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  715.628990][T16860] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  716.593689][T16893] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2272'.
[  716.887419][T16883] netlink: 'syz.4.2270': attribute type 11 has an invalid length.
[  716.895586][T16883] netlink: 'syz.4.2270': attribute type 11 has an invalid length.
[  716.903420][T16883] netlink: 'syz.4.2270': attribute type 11 has an invalid length.
[  719.010481][T16910] netlink: 'syz.0.2276': attribute type 11 has an invalid length.
[  719.018554][T16910] netlink: 'syz.0.2276': attribute type 11 has an invalid length.
[  719.046417][T16910] netlink: 'syz.0.2276': attribute type 11 has an invalid length.
	




	
		

	


	

	

		
	
		
	
	



			








	

	















































		
	
	






















	







	






	









	









	








	





	




		






	

	
		
	
			
	
			
	

	
		
			


	
	
	
	

		
	

	
		



	







			

			
			
		

	
	
	


	
	
	




	
				

	
		

	


	
	

		
	
		
	
	



			








	





	















	








	



	




	
	








	


	












	








	





	




		







	

		


	



	
	
	
	
	

				

			

			

			

			

			

			


		
	




			

			

			

		
		







		
		


	

	

	
	
		
		

		
		


	

	

	
	


	
	


		
	
	


	
	


		
	
	

	




	









		









	



	
	






			
	

		

	





		



	
		

	






		









	



	
	






			
	

		

	





		



	
		

	
	
	

	

	
		






	
						
	
						
	
						
	
	
	
			

			

			

			

	
	
	
	
	
	

	
		

	
		

		
		

		
	
	

		
		

		
	
	


	
		



	

	


	


	





	

	




	
	





	

	




			
	
			
	
			
	
			
	
	
	

	
	
	
	

	
	
	
	

	
	


				


			


				

		


	





			
	
	

	
		

	


	
	

		
	
		
	
	



			








	





	















	








	



	




	
	








	


	












	








	




	





		







	
		

	


	
	

		
	
		
	
	



			








	




	






	





	
	

	

	

	

	




	
	






	





	









		








	




	
		

	


	
	

		
	
		
	
	



			








	





	













	
	





	



	


		
			
			
		

		


		


















	










	





	






		







	



	



	
	

	
	
	
	

	
	
		
	
	

	
	

		

	

	

		

	
	

	
	
	
	

	
	
	
	

	
	






	
	
	
	
	
	



	
	

	
	
	
	

	
	
	
	

	
	

		
	




		
		

		
		


	

	

	
	
		
		

		
		


	

	

	
	


	
	


		
	
	


	
	


		
	
	

	




	









		









	



	
	






			
	

		

	





		



	
		

	






		









	



	
	






			
	

		

	
	
	





		



	
		

	

	

	
		






	
						
	
						
	
						
	
						
	
	
	
	



	
	

	
	
	
	

	
	
	
	

	
	
			

			

			

			


	
		

	
		

		
		

		
	
	

		
		

		
	
	

	
	



		
		
	


		
		
	

	
		



	

	
	

	

	
	
		
		


	

	

	
	
		
		









	
		

	


	
	

		
	
		
	
	



			








	





	




	















	









	








	





	






		







	
	

	
		

	


	

	

		
	
		
	
	



			








	

	









	
	











	



	
	




	






		
	
	











































	
	





























	

	

	





	




	


	


	






	




	





		






			

	
	
	

			

	
	
	

			




	
		

	


	

	

		
	
		
	
	



			








	

	















	



	








		
	
	


















	








	



	




	
	







	









	








	






	






		










	


	





	

	









	

	




			
	
			
	
			
	
			
	


				


			


				


			
	
	

	
	
	
	

	
	
	
	

	
	
	
	
	
	
	

	





	

	









		









	

	









		






	


	

	
		

	


	
	

		
	

	

	
		
	
	



			








	





	




	
















	


	












	








	





	






		








				



				


	
	

		
	




		
		

		
		


	

	

	
	
		
		

		
		


	

	

	
	


	
	


		
	
	


	
	


		
	
	

	




	









		









	



	
	






			
	

		

	
	
	





		



	
		

	






		









	



	
	






			
	

		

	





		



	
		

	

	

	
		






	
						
	
						
	
						
	
						
	


	
	
	
	
	
	

	
	
	
	

	
	
	
	

	
	
			

			

			

			


	
		

	
		

		
		

		
	
	

		
		

		
	
	

	
	

	
		



	

	


	


	





	

	









	

	




			
	
			
	
			
	
			
	


				


			


				


			

	
		

	


	

	

		
	
		
	
	



			








	

	















	



	








		
	
	


















	








	



	




	
	








	


	












	








	





	




		








	
	

	
	
	
	

	
	
	
	

	
	
	
	

	
	
	
	

	
	
	
	

	
	







	
		

	


	
	

		
	
		
	
	



			








	





	






















	


	












	








	





	







		








[  802.031405][T18147] netlink: Conntrack attr has 16 unknown bytes
[  802.628224][T18140] netlink: 'syz.4.2507': attribute type 11 has an invalid length.
[  802.638649][T18140] netlink: 'syz.4.2507': attribute type 11 has an invalid length.
[  802.658609][T18140] netlink: 'syz.4.2507': attribute type 11 has an invalid length.
[  804.262230][T18176] FAULT_INJECTION: forcing a failure.
[  804.262230][T18176] name failslab, interval 1, probability 0, space 0, times 0
[  804.306474][T18176] CPU: 0 UID: 0 PID: 18176 Comm: syz.0.2513 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  804.306511][T18176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  804.306527][T18176] Call Trace:
[  804.306536][T18176]  <TASK>
[  804.306547][T18176]  dump_stack_lvl+0x16c/0x1f0
[  804.306592][T18176]  should_fail_ex+0x512/0x640
[  804.306628][T18176]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  804.306671][T18176]  should_failslab+0xc2/0x120
[  804.306697][T18176]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  804.306733][T18176]  ? find_held_lock+0x2b/0x80
[  804.306755][T18176]  ? vm_area_dup+0x27/0x8d0
[  804.306783][T18176]  ? dup_mmap+0x5cb/0x21d0
[  804.306815][T18176]  vm_area_dup+0x27/0x8d0
[  804.306847][T18176]  dup_mmap+0x877/0x21d0
[  804.306884][T18176]  ? __pfx_dup_mmap+0x10/0x10
[  804.306933][T18176]  copy_process+0x4081/0x76a0
[  804.306962][T18176]  ? __pfx___futex_wait+0x10/0x10
[  804.307008][T18176]  ? __pfx_copy_process+0x10/0x10
[  804.307057][T18176]  kernel_clone+0xfc/0x960
[  804.307092][T18176]  ? __pfx_kernel_clone+0x10/0x10
[  804.307144][T18176]  __do_sys_clone+0xce/0x120
[  804.307176][T18176]  ? __pfx___do_sys_clone+0x10/0x10
[  804.307206][T18176]  ? ksys_unshare+0x687/0xa40
[  804.307254][T18176]  ? xfd_validate_state+0x61/0x180
[  804.307301][T18176]  do_syscall_64+0xcd/0x490
[  804.307343][T18176]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  804.307380][T18176] RIP: 0033:0x7f924318e929
[  804.307402][T18176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  804.307430][T18176] RSP: 002b:00007f9243f5cfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  804.307458][T18176] RAX: ffffffffffffffda RBX: 00007f92433b6080 RCX: 00007f924318e929
[  804.307474][T18176] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  804.307488][T18176] RBP: 00007f9243210b39 R08: 0000000000000000 R09: 0000000000000000
[  804.307504][T18176] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  804.307519][T18176] R13: 0000000000000000 R14: 00007f92433b6080 R15: 00007fff056f1308
[  804.307555][T18176]  </TASK>
[  805.694700][T16308] batadv0: left allmulticast mode
[  805.705085][T16308] batadv0: left promiscuous mode
[  805.759072][T16308] bridge0: port 3(batadv0) entered disabled state
[  805.823589][T16308] bridge_slave_1: left allmulticast mode
[  806.009139][T16308] bridge_slave_1: left promiscuous mode
[  806.014874][T16308] bridge0: port 2(bridge_slave_1) entered disabled state
[  806.106758][T16308] bridge_slave_0: left allmulticast mode
[  806.112666][T16308] bridge_slave_0: left promiscuous mode
[  806.119459][T16308] bridge0: port 1(bridge_slave_0) entered disabled state
[  808.746490][T16308] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  808.806879][T16308] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  808.861022][T16308] bond0 (unregistering): Released all slaves
[  808.957906][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  808.964758][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  810.152480][T18251] netlink: 'syz.0.2526': attribute type 11 has an invalid length.
[  810.160624][T18251] netlink: 'syz.0.2526': attribute type 11 has an invalid length.
[  810.168688][T18251] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2526'.
[  810.178334][T18251] netlink: 'syz.0.2526': attribute type 11 has an invalid length.
[  810.522892][T18255] kexec: Could not allocate control_code_buffer
[  811.604066][T18258] FAULT_INJECTION: forcing a failure.
[  811.604066][T18258] name fail_futex, interval 1, probability 0, space 0, times 0
[  811.616925][T18258] CPU: 0 UID: 0 PID: 18258 Comm: syz.1.2527 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  811.616947][T18258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  811.616957][T18258] Call Trace:
[  811.616964][T18258]  <TASK>
[  811.616971][T18258]  dump_stack_lvl+0x16c/0x1f0
[  811.616998][T18258]  should_fail_ex+0x512/0x640
[  811.617018][T18258]  ? key_user_put+0x5f/0x70
[  811.617038][T18258]  get_futex_key+0x1d0/0x1540
[  811.617058][T18258]  ? __pfx_get_futex_key+0x10/0x10
[  811.617085][T18258]  futex_wake+0xea/0x530
[  811.617107][T18258]  ? __pfx_futex_wake+0x10/0x10
[  811.617128][T18258]  ? rcu_is_watching+0x12/0xc0
[  811.617143][T18258]  ? kasan_quarantine_put+0x10a/0x240
[  811.617164][T18258]  ? lockdep_hardirqs_on+0x7c/0x110
[  811.617187][T18258]  do_futex+0x1e3/0x350
[  811.617203][T18258]  ? __pfx_do_futex+0x10/0x10
[  811.617221][T18258]  ? key_user_put+0x5f/0x70
[  811.617240][T18258]  __x64_sys_futex+0x1e0/0x4c0
[  811.617260][T18258]  ? __pfx___x64_sys_futex+0x10/0x10
[  811.617276][T18258]  ? xfd_validate_state+0x61/0x180
[  811.617301][T18258]  do_syscall_64+0xcd/0x490
[  811.617323][T18258]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  811.617338][T18258] RIP: 0033:0x7f48e998e929
[  811.617350][T18258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  811.617364][T18258] RSP: 002b:00007f48ea7b80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  811.617378][T18258] RAX: ffffffffffffffda RBX: 00007f48e9bb6168 RCX: 00007f48e998e929
[  811.617388][T18258] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f48e9bb616c
[  811.617397][T18258] RBP: 00007f48e9bb6160 R08: 00007f48ea7fb000 R09: 0000000000000000
[  811.617406][T18258] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f48e9bb616c
[  811.617414][T18258] R13: 0000000000000000 R14: 00007ffec46aaa50 R15: 00007ffec46aab38
[  811.617432][T18258]  </TASK>
[  813.160733][T16308] hsr_slave_0: left promiscuous mode
[  813.376816][T16308] hsr_slave_1: left promiscuous mode
[  813.401049][T16308] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  813.409754][T16308] batman_adv: batadv0: Removing interface: batadv_slave_0
[  813.491340][T16308] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  813.524486][T16308] batman_adv: batadv0: Removing interface: batadv_slave_1
[  813.585517][T16308] veth1_macvtap: left promiscuous mode
[  813.601190][T16308] veth0_macvtap: left promiscuous mode
[  813.613234][T16308] veth1_vlan: left promiscuous mode
[  813.618749][T16308] veth0_vlan: left promiscuous mode
[  814.908617][T18319] Invalid ELF header magic: != ELF
[  820.080138][T18384] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2554'.
[  820.156190][T18384] mac80211_hwsim hwsim124 wlan1: entered allmulticast mode
[  820.249327][T18380] netlink: Conntrack attr has 16 unknown bytes
[  820.488178][T18395] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input51
[  821.674674][T18402] FAULT_INJECTION: forcing a failure.
[  821.674674][T18402] name failslab, interval 1, probability 0, space 0, times 0
[  821.697742][T18402] CPU: 0 UID: 0 PID: 18402 Comm: syz.3.2558 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  821.697784][T18402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  821.697800][T18402] Call Trace:
[  821.697810][T18402]  <TASK>
[  821.697822][T18402]  dump_stack_lvl+0x16c/0x1f0
[  821.697868][T18402]  should_fail_ex+0x512/0x640
[  821.697904][T18402]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  821.697947][T18402]  should_failslab+0xc2/0x120
[  821.697973][T18402]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  821.698012][T18402]  ? anon_vma_fork+0xe6/0x620
[  821.698053][T18402]  anon_vma_fork+0xe6/0x620
[  821.698086][T18402]  ? vm_area_dup+0x5a1/0x8d0
[  821.698123][T18402]  dup_mmap+0x152e/0x21d0
[  821.698182][T18402]  ? __pfx_dup_mmap+0x10/0x10
[  821.698240][T18402]  copy_process+0x4081/0x76a0
[  821.698272][T18402]  ? __pfx___futex_wait+0x10/0x10
[  821.698325][T18402]  ? __pfx_copy_process+0x10/0x10
[  821.698375][T18402]  kernel_clone+0xfc/0x960
[  821.698409][T18402]  ? __pfx_kernel_clone+0x10/0x10
[  821.698463][T18402]  __do_sys_clone+0xce/0x120
[  821.698495][T18402]  ? __pfx___do_sys_clone+0x10/0x10
[  821.698525][T18402]  ? ksys_unshare+0x687/0xa40
[  821.698574][T18402]  ? xfd_validate_state+0x61/0x180
[  821.698619][T18402]  do_syscall_64+0xcd/0x490
[  821.698661][T18402]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.698689][T18402] RIP: 0033:0x7f9117f8e929
[  821.698711][T18402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  821.698736][T18402] RSP: 002b:00007f9115dd4fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  821.698761][T18402] RAX: ffffffffffffffda RBX: 00007f91181b6080 RCX: 00007f9117f8e929
[  821.698780][T18402] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  821.698797][T18402] RBP: 00007f9118010b39 R08: 0000000000000000 R09: 0000000000000000
[  821.698814][T18402] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  821.698829][T18402] R13: 0000000000000000 R14: 00007f91181b6080 R15: 00007fff104c0478
[  821.698866][T18402]  </TASK>
[  822.586572][T18395] ovs_ÿþ: entered promiscuous mode
[  825.370688][T18456] ptrace attach of "./syz-executor exec"[12158] was attempted by "./syz-executor exec"[18456]
[  825.992556][T18465] netlink: 'syz.1.2570': attribute type 11 has an invalid length.
[  826.000595][T18465] netlink: 'syz.1.2570': attribute type 11 has an invalid length.
[  826.009302][T18465] netlink: 'syz.1.2570': attribute type 11 has an invalid length.
[  827.181004][T18491] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2576'.
[  827.245056][T18491] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2576'.
[  828.761112][T18510] netlink: Conntrack attr has 16 unknown bytes
[  829.547738][T18536] ptrace attach of "./syz-executor exec"[12158] was attempted by "./syz-executor exec"[18536]
[  830.217079][T18549] delete_channel: no stack
[  830.252791][T18552] netlink: 'syz.0.2587': attribute type 27 has an invalid length.
[  830.280032][T18552] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2587'.
[  830.809416][T18561] ptrace attach of "./syz-executor exec"[12158] was attempted by "./syz-executor exec"[18561]
[  830.834484][T18562] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2590'.
[  831.236351][T18566] vhci_hcd: vhci_device speed not set
[  831.460629][T18573] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2592'.
[  832.025906][T18587] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2596'.
[  832.302080][T18567] netlink: 'syz.0.2591': attribute type 11 has an invalid length.
[  832.312367][T18567] netlink: 'syz.0.2591': attribute type 11 has an invalid length.
[  834.529552][T18616] netlink: Conntrack attr has 16 unknown bytes
[  835.334965][T11865] netdevsim netdevsim15 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  835.882046][T18639] netlink: 'syz.0.2604': attribute type 11 has an invalid length.
[  835.913543][T11865] bridge_slave_1: left allmulticast mode
[  835.919230][T11865] bridge_slave_1: left promiscuous mode
[  835.927442][T18639] netlink: 'syz.0.2604': attribute type 11 has an invalid length.
[  835.950136][T11865] bridge0: port 2(bridge_slave_1) entered disabled state
[  835.986656][T18639] netlink: 'syz.0.2604': attribute type 11 has an invalid length.
[  836.062747][T11865] bridge_slave_0: left allmulticast mode
[  836.080750][T11865] bridge_slave_0: left promiscuous mode
[  836.118331][T11865] bridge0: port 1(bridge_slave_0) entered disabled state
[  836.952706][T11865] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  836.974507][T11865] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  836.992110][T11865] bond0 (unregistering): Released all slaves
[  837.101014][T11865] .SR: left promiscuous mode
[  837.471445][T18667] delete_channel: no stack
[  840.541338][T18725] ptrace attach of "./syz-executor exec"[17283] was attempted by "./syz-executor exec"[18725]
[  842.105639][T11865] hsr_slave_1: left promiscuous mode
[  842.115873][T11865] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  842.123829][T11865] batman_adv: batadv0: Removing interface: batadv_slave_0
[  842.133222][T11865] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  842.142398][T11865] batman_adv: batadv0: Removing interface: batadv_slave_1
[  842.534828][T11865] veth1_macvtap: left promiscuous mode
[  842.570879][T11865] veth0_macvtap: left promiscuous mode
[  842.576619][T11865] veth1_vlan: left promiscuous mode
[  842.582039][T11865] veth0_vlan: left promiscuous mode
[  844.376011][T11865] team0 (unregistering): Port device team_slave_1 removed
[  844.672802][T11865] team0 (unregistering): Port device team_slave_0 removed
[  847.673227][T18799] delete_channel: no stack
[  850.955586][T18844] delete_channel: no stack
[  854.986808][T18906] netlink: 'syz.4.2647': attribute type 11 has an invalid length.
[  855.020690][T18906] netlink: 'syz.4.2647': attribute type 11 has an invalid length.
[  855.028748][T18906] netlink: 'syz.4.2647': attribute type 11 has an invalid length.
[  856.184878][T18937] ptrace attach of "./syz-executor exec"[12158] was attempted by "./syz-executor exec"[18937]
[  856.762039][T18946] zram0: detected capacity change from 0 to 8
[  856.889148][T18934] FAULT_INJECTION: forcing a failure.
[  856.889148][T18934] name failslab, interval 1, probability 0, space 0, times 0
[  856.910630][T18934] CPU: 1 UID: 0 PID: 18934 Comm: syz.3.2649 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  856.910671][T18934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  856.910688][T18934] Call Trace:
[  856.910698][T18934]  <TASK>
[  856.910709][T18934]  dump_stack_lvl+0x16c/0x1f0
[  856.910755][T18934]  should_fail_ex+0x512/0x640
[  856.910798][T18934]  ? fs_reclaim_acquire+0xae/0x150
[  856.910829][T18934]  ? tomoyo_encode2+0x100/0x3e0
[  856.910863][T18934]  should_failslab+0xc2/0x120
[  856.910888][T18934]  __kmalloc_noprof+0xd2/0x510
[  856.910924][T18934]  ? d_absolute_path+0x136/0x1a0
[  856.910958][T18934]  tomoyo_encode2+0x100/0x3e0
[  856.910997][T18934]  tomoyo_encode+0x29/0x50
[  856.911029][T18934]  tomoyo_realpath_from_path+0x18f/0x6e0
[  856.911074][T18934]  tomoyo_path_number_perm+0x245/0x580
[  856.911102][T18934]  ? tomoyo_path_number_perm+0x237/0x580
[  856.911135][T18934]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  856.911203][T18934]  ? find_held_lock+0x2b/0x80
[  856.911228][T18934]  ? hook_file_ioctl_common+0x145/0x410
[  856.911265][T18934]  ? __fget_files+0x20e/0x3c0
[  856.911305][T18934]  security_file_ioctl+0x9b/0x240
[  856.911337][T18934]  __x64_sys_ioctl+0xb7/0x210
[  856.911370][T18934]  do_syscall_64+0xcd/0x490
[  856.911411][T18934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  856.911437][T18934] RIP: 0033:0x7f9117f8e929
[  856.911460][T18934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  856.911485][T18934] RSP: 002b:00007f9115db4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  856.911508][T18934] RAX: ffffffffffffffda RBX: 00007f91181b6160 RCX: 00007f9117f8e929
[  856.911525][T18934] RDX: 0000000000000000 RSI: 000000000000125f RDI: 0000000000000003
[  856.911541][T18934] RBP: 00007f9118010b39 R08: 0000000000000000 R09: 0000000000000000
[  856.911557][T18934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  856.911573][T18934] R13: 0000000000000000 R14: 00007f91181b6160 R15: 00007fff104c0478
[  856.911608][T18934]  </TASK>
[  856.911633][T18934] ERROR: Out of memory at tomoyo_realpath_from_path.
[  858.472166][T18980] openvswitch: netlink: IP tunnel dst address not specified
[  858.614928][T18987] binder: BINDER_SET_CONTEXT_MGR already set
[  858.624167][T18987] binder: 18979:18987 ioctl 40046207 0 returned -16
[  858.705775][T18970] netlink: 'syz.1.2662': attribute type 11 has an invalid length.
[  858.716716][T18970] netlink: 'syz.1.2662': attribute type 11 has an invalid length.
[  858.728816][T18970] netlink: 'syz.1.2662': attribute type 11 has an invalid length.
[  858.936323][T18982] FAULT_INJECTION: forcing a failure.
[  858.936323][T18982] name failslab, interval 1, probability 0, space 0, times 0
[  858.949284][T18982] CPU: 0 UID: 0 PID: 18982 Comm: syz.0.2663 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  858.949321][T18982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  858.949337][T18982] Call Trace:
[  858.949347][T18982]  <TASK>
[  858.949358][T18982]  dump_stack_lvl+0x16c/0x1f0
[  858.949402][T18982]  should_fail_ex+0x512/0x640
[  858.949438][T18982]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  858.949482][T18982]  should_failslab+0xc2/0x120
[  858.949509][T18982]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  858.949545][T18982]  ? find_held_lock+0x2b/0x80
[  858.949570][T18982]  ? vm_area_dup+0x27/0x8d0
[  858.949604][T18982]  ? dup_mmap+0x5cb/0x21d0
[  858.949639][T18982]  vm_area_dup+0x27/0x8d0
[  858.949676][T18982]  dup_mmap+0x877/0x21d0
[  858.949722][T18982]  ? __pfx_dup_mmap+0x10/0x10
[  858.949779][T18982]  copy_process+0x4081/0x76a0
[  858.949809][T18982]  ? preempt_schedule_thunk+0x16/0x30
[  858.949857][T18982]  ? __pfx_copy_process+0x10/0x10
[  858.949886][T18982]  ? plist_check_head+0xa3/0x150
[  858.949926][T18982]  ? futex_private_hash_put+0xc7/0x240
[  858.949962][T18982]  kernel_clone+0xfc/0x960
[  858.949994][T18982]  ? __pfx_futex_wake+0x10/0x10
[  858.950028][T18982]  ? __pfx_kernel_clone+0x10/0x10
[  858.950082][T18982]  __do_sys_clone+0xce/0x120
[  858.950113][T18982]  ? __pfx___do_sys_clone+0x10/0x10
[  858.950159][T18982]  ? ksys_unshare+0x687/0xa40
[  858.950209][T18982]  ? xfd_validate_state+0x61/0x180
[  858.950258][T18982]  do_syscall_64+0xcd/0x490
[  858.950307][T18982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  858.950332][T18982] RIP: 0033:0x7f924318e929
[  858.950354][T18982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  858.950379][T18982] RSP: 002b:00007f9243f7dfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  858.950405][T18982] RAX: ffffffffffffffda RBX: 00007f92433b5fa0 RCX: 00007f924318e929
[  858.950424][T18982] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  858.950440][T18982] RBP: 00007f9243210b39 R08: 0000000000000000 R09: 0000000000000000
[  858.950456][T18982] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  858.950472][T18982] R13: 0000000000000000 R14: 00007f92433b5fa0 R15: 00007fff056f1308
[  858.950509][T18982]  </TASK>
[  859.902751][T19003] ptrace attach of "./syz-executor exec"[17678] was attempted by "./syz-executor exec"[19003]
[  862.026723][T19023] FAULT_INJECTION: forcing a failure.
[  862.026723][T19023] name failslab, interval 1, probability 0, space 0, times 0
[  862.077024][T19023] CPU: 0 UID: 0 PID: 19023 Comm: syz.3.2672 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  862.077056][T19023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  862.077066][T19023] Call Trace:
[  862.077072][T19023]  <TASK>
[  862.077079][T19023]  dump_stack_lvl+0x16c/0x1f0
[  862.077108][T19023]  should_fail_ex+0x512/0x640
[  862.077128][T19023]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  862.077152][T19023]  should_failslab+0xc2/0x120
[  862.077167][T19023]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  862.077188][T19023]  ? anon_vma_fork+0xe6/0x620
[  862.077211][T19023]  anon_vma_fork+0xe6/0x620
[  862.077229][T19023]  ? vm_area_dup+0x5a1/0x8d0
[  862.077249][T19023]  dup_mmap+0x152e/0x21d0
[  862.077273][T19023]  ? __pfx_dup_mmap+0x10/0x10
[  862.077306][T19023]  copy_process+0x4081/0x76a0
[  862.077324][T19023]  ? __pfx___futex_wait+0x10/0x10
[  862.077351][T19023]  ? __pfx_copy_process+0x10/0x10
[  862.077378][T19023]  kernel_clone+0xfc/0x960
[  862.077396][T19023]  ? __pfx_kernel_clone+0x10/0x10
[  862.077424][T19023]  __do_sys_clone+0xce/0x120
[  862.077441][T19023]  ? __pfx___do_sys_clone+0x10/0x10
[  862.077458][T19023]  ? __pfx___might_resched+0x10/0x10
[  862.077480][T19023]  ? xfd_validate_state+0x61/0x180
[  862.077505][T19023]  do_syscall_64+0xcd/0x490
[  862.077528][T19023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  862.077542][T19023] RIP: 0033:0x7f9117f8e929
[  862.077555][T19023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  862.077569][T19023] RSP: 002b:00007f9115df5fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  862.077583][T19023] RAX: ffffffffffffffda RBX: 00007f91181b5fa0 RCX: 00007f9117f8e929
[  862.077593][T19023] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  862.077601][T19023] RBP: 00007f9118010b39 R08: 0000000000000000 R09: 0000000000000000
[  862.077610][T19023] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  862.077618][T19023] R13: 0000000000000000 R14: 00007f91181b5fa0 R15: 00007fff104c0478
[  862.077637][T19023]  </TASK>
[  863.207018][T19058] delete_channel: no stack
[  863.877392][T19069] netlink: 'syz.3.2678': attribute type 11 has an invalid length.
[  863.914774][T19069] netlink: 'syz.3.2678': attribute type 11 has an invalid length.
[  864.067482][T19069] netlink: 'syz.3.2678': attribute type 11 has an invalid length.
[  866.241852][T19106] delete_channel: no stack
[  866.599021][T19122] ptrace attach of "./syz-executor exec"[17283] was attempted by "./syz-executor exec"[19122]
[  867.053144][T19115] FAULT_INJECTION: forcing a failure.
[  867.053144][T19115] name failslab, interval 1, probability 0, space 0, times 0
[  867.113590][T19115] CPU: 0 UID: 0 PID: 19115 Comm: syz.3.2689 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  867.113631][T19115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  867.113646][T19115] Call Trace:
[  867.113656][T19115]  <TASK>
[  867.113667][T19115]  dump_stack_lvl+0x16c/0x1f0
[  867.113721][T19115]  should_fail_ex+0x512/0x640
[  867.113760][T19115]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  867.113804][T19115]  should_failslab+0xc2/0x120
[  867.113830][T19115]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  867.113868][T19115]  ? ptlock_alloc+0x1f/0x70
[  867.113907][T19115]  ptlock_alloc+0x1f/0x70
[  867.113939][T19115]  pte_alloc_one+0x82/0x3a0
[  867.113977][T19115]  __pte_alloc+0x6d/0x3c0
[  867.114003][T19115]  ? __pfx___pte_alloc+0x10/0x10
[  867.114027][T19115]  ? __pfx___might_resched+0x10/0x10
[  867.114055][T19115]  ? copy_page_range+0x13f0/0x5740
[  867.114093][T19115]  copy_page_range+0x1aed/0x5740
[  867.114141][T19115]  ? __lock_acquire+0x622/0x1c90
[  867.114203][T19115]  ? __pfx_copy_page_range+0x10/0x10
[  867.114246][T19115]  ? __pfx___might_resched+0x10/0x10
[  867.114272][T19115]  ? __vma_enter_locked+0x163/0x3f0
[  867.114310][T19115]  ? dup_mmap+0xe38/0x21d0
[  867.114339][T19115]  ? down_write+0x14d/0x200
[  867.114370][T19115]  ? up_write+0x1b2/0x520
[  867.114410][T19115]  dup_mmap+0xe88/0x21d0
[  867.114455][T19115]  ? __pfx_dup_mmap+0x10/0x10
[  867.114512][T19115]  copy_process+0x4081/0x76a0
[  867.114544][T19115]  ? preempt_schedule_thunk+0x16/0x30
[  867.114592][T19115]  ? __pfx_copy_process+0x10/0x10
[  867.114621][T19115]  ? plist_check_head+0xd1/0x150
[  867.114661][T19115]  ? futex_private_hash_put+0xc7/0x240
[  867.114698][T19115]  kernel_clone+0xfc/0x960
[  867.114740][T19115]  ? __pfx_futex_wake+0x10/0x10
[  867.114778][T19115]  ? __pfx_kernel_clone+0x10/0x10
[  867.114833][T19115]  __do_sys_clone+0xce/0x120
[  867.114865][T19115]  ? __pfx___do_sys_clone+0x10/0x10
[  867.114896][T19115]  ? ksys_unshare+0x687/0xa40
[  867.114945][T19115]  ? xfd_validate_state+0x61/0x180
[  867.114991][T19115]  do_syscall_64+0xcd/0x490
[  867.115033][T19115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  867.115061][T19115] RIP: 0033:0x7f9117f8e929
[  867.115086][T19115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  867.115113][T19115] RSP: 002b:00007f9115df5fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  867.115142][T19115] RAX: ffffffffffffffda RBX: 00007f91181b5fa0 RCX: 00007f9117f8e929
[  867.115164][T19115] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  867.115181][T19115] RBP: 00007f9118010b39 R08: 0000000000000000 R09: 0000000000000000
[  867.115199][T19115] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  867.115220][T19115] R13: 0000000000000000 R14: 00007f91181b5fa0 R15: 00007fff104c0478
[  867.115257][T19115]  </TASK>
[  867.430527][T17681] Bluetooth: hci3: command 0x0406 tx timeout
[  869.431629][T19152] ==================================================================
[  869.439744][T19152] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x13a9/0x15f0
[  869.448459][T19152] Read of size 1 at addr ffff8880340ecae7 by task syz.1.2695/19152
[  869.456357][T19152] 
[  869.458685][T19152] CPU: 1 UID: 0 PID: 19152 Comm: syz.1.2695 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  869.458715][T19152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  869.458730][T19152] Call Trace:
[  869.458740][T19152]  <TASK>
[  869.458750][T19152]  dump_stack_lvl+0x116/0x1f0
[  869.458790][T19152]  print_report+0xcd/0x680
[  869.458823][T19152]  ? __virt_addr_valid+0x81/0x610
[  869.458850][T19152]  ? __phys_addr+0xe8/0x180
[  869.458873][T19152]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  869.458897][T19152]  kasan_report+0xe0/0x110
[  869.458917][T19152]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  869.458945][T19152]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[  869.458970][T19152]  ? __lock_acquire+0xb8a/0x1c90
[  869.459000][T19152]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  869.459024][T19152]  ? find_held_lock+0x2b/0x80
[  869.459043][T19152]  ? __might_fault+0xe3/0x190
[  869.459069][T19152]  ? __might_fault+0xe3/0x190
[  869.459096][T19152]  ? __might_fault+0x13b/0x190
[  869.459135][T19152]  ? proc_simple_write+0x117/0x1b0
[  869.459155][T19152]  proc_simple_write+0x117/0x1b0
[  869.459175][T19152]  ? __pfx_proc_simple_write+0x10/0x10
[  869.459195][T19152]  proc_reg_write+0x23d/0x330
[  869.459224][T19152]  ? __pfx_proc_reg_write+0x10/0x10
[  869.459250][T19152]  vfs_writev+0x5dc/0xde0
[  869.459274][T19152]  ? __pfx___mutex_trylock_common+0x10/0x10
[  869.459304][T19152]  ? __pfx_vfs_writev+0x10/0x10
[  869.459328][T19152]  ? __mutex_lock+0x1ca/0xb90
[  869.459356][T19152]  ? kmem_cache_free+0x2d1/0x4d0
[  869.459385][T19152]  ? __pfx___mutex_lock+0x10/0x10
[  869.459418][T19152]  ? __fget_files+0x20e/0x3c0
[  869.459447][T19152]  ? do_writev+0x132/0x340
[  869.459470][T19152]  do_writev+0x132/0x340
[  869.459494][T19152]  ? __pfx_do_writev+0x10/0x10
[  869.459522][T19152]  do_syscall_64+0xcd/0x490
[  869.459551][T19152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  869.459581][T19152] RIP: 0033:0x7f48e998e929
[  869.459598][T19152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  869.459618][T19152] RSP: 002b:00007f48ea7fa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  869.459638][T19152] RAX: ffffffffffffffda RBX: 00007f48e9bb5fa0 RCX: 00007f48e998e929
[  869.459653][T19152] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000009
[  869.459667][T19152] RBP: 00007f48e9a10b39 R08: 0000000000000000 R09: 0000000000000000
[  869.459681][T19152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  869.459694][T19152] R13: 0000000000000000 R14: 00007f48e9bb5fa0 R15: 00007ffec46aab38
[  869.459715][T19152]  </TASK>
[  869.459723][T19152] 
[  869.719065][T19152] Allocated by task 19152:
[  869.723479][T19152]  kasan_save_stack+0x33/0x60
[  869.728168][T19152]  kasan_save_track+0x14/0x30
[  869.732853][T19152]  __kasan_kmalloc+0xaa/0xb0
[  869.737450][T19152]  __kmalloc_node_track_caller_noprof+0x221/0x510
[  869.743873][T19152]  memdup_user_nul+0x2b/0x120
[  869.748546][T19152]  proc_simple_write+0xc7/0x1b0
[  869.753406][T19152]  proc_reg_write+0x23d/0x330
[  869.758088][T19152]  vfs_writev+0x5dc/0xde0
[  869.762421][T19152]  do_writev+0x132/0x340
[  869.766664][T19152]  do_syscall_64+0xcd/0x490
[  869.771174][T19152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  869.777065][T19152] 
[  869.779381][T19152] The buggy address belongs to the object at ffff8880340ecae0
[  869.779381][T19152]  which belongs to the cache kmalloc-8 of size 8
[  869.793083][T19152] The buggy address is located 0 bytes to the right of
[  869.793083][T19152]  allocated 7-byte region [ffff8880340ecae0, ffff8880340ecae7)
[  869.807397][T19152] 
[  869.809716][T19152] The buggy address belongs to the physical page:
[  869.816117][T19152] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x340ec
[  869.824871][T19152] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  869.831980][T19152] page_type: f5(slab)
[  869.835961][T19152] raw: 00fff00000000000 ffff88801b841500 ffffea0000d89480 dead000000000002
[  869.844551][T19152] raw: 0000000000000000 0000000080800080 00000000f5000000 0000000000000000
[  869.853130][T19152] page dumped because: kasan: bad access detected
[  869.859536][T19152] page_owner tracks the page as allocated
[  869.865245][T19152] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5832, tgid 5832 (syz-executor), ts 86118432489, free_ts 86118410495
[  869.884527][T19152]  post_alloc_hook+0x1c0/0x230
[  869.889305][T19152]  get_page_from_freelist+0x1321/0x3890
[  869.894871][T19152]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  869.900771][T19152]  alloc_pages_mpol+0x1fb/0x550
[  869.905617][T19152]  new_slab+0x23b/0x330
[  869.909771][T19152]  ___slab_alloc+0xd9c/0x1940
[  869.914451][T19152]  __slab_alloc.constprop.0+0x56/0xb0
[  869.919825][T19152]  __kmalloc_node_noprof+0x2ed/0x500
[  869.925113][T19152]  __vmalloc_node_range_noprof+0x3e5/0x14b0
[  869.931009][T19152]  __vmalloc_node_noprof+0xad/0xf0
[  869.936120][T19152]  do_ip6t_get_ctl+0x63f/0xa50
[  869.940883][T19152]  nf_getsockopt+0x7c/0xe0
[  869.945296][T19152]  ipv6_getsockopt+0x1f7/0x280
[  869.950060][T19152]  tcp_getsockopt+0x9e/0x100
[  869.954658][T19152]  do_sock_getsockopt+0x3ff/0x800
[  869.959681][T19152]  __sys_getsockopt+0x123/0x1b0
[  869.964545][T19152] page last free pid 5832 tgid 5832 stack trace:
[  869.970861][T19152]  __free_frozen_pages+0x7fe/0x1180
[  869.976065][T19152]  kasan_populate_vmalloc+0x13d/0x1f0
[  869.981445][T19152]  alloc_vmap_area+0x959/0x29c0
[  869.986296][T19152]  __get_vm_area_node+0x1ca/0x330
[  869.991318][T19152]  __vmalloc_node_range_noprof+0x271/0x14b0
[  869.997211][T19152]  __vmalloc_node_noprof+0xad/0xf0
[  870.002319][T19152]  do_ip6t_get_ctl+0x63f/0xa50
[  870.007080][T19152]  nf_getsockopt+0x7c/0xe0
[  870.011495][T19152]  ipv6_getsockopt+0x1f7/0x280
[  870.016264][T19152]  tcp_getsockopt+0x9e/0x100
[  870.020858][T19152]  do_sock_getsockopt+0x3ff/0x800
[  870.025881][T19152]  __sys_getsockopt+0x123/0x1b0
[  870.030735][T19152]  __x64_sys_getsockopt+0xbd/0x160
[  870.035852][T19152]  do_syscall_64+0xcd/0x490
[  870.040379][T19152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  870.046301][T19152] 
[  870.048623][T19152] Memory state around the buggy address:
[  870.054248][T19152]  ffff8880340ec980: 06 fc fc fc fa fc fc fc 05 fc fc fc fa fc fc fc
[  870.062312][T19152]  ffff8880340eca00: fa fc fc fc 05 fc fc fc 05 fc fc fc 06 fc fc fc
[  870.070372][T19152] >ffff8880340eca80: 06 fc fc fc 06 fc fc fc 04 fc fc fc 07 fc fc fc
[  870.078423][T19152]                                                        ^
[  870.085610][T19152]  ffff8880340ecb00: fa fc fc fc 07 fc fc fc 07 fc fc fc 05 fc fc fc
[  870.093667][T19152]  ffff8880340ecb80: 07 fc fc fc 07 fc fc fc 05 fc fc fc 06 fc fc fc
[  870.101720][T19152] ==================================================================
[  870.143535][T19152] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  870.150798][T19152] CPU: 0 UID: 0 PID: 19152 Comm: syz.1.2695 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  870.162898][T19152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  870.172985][T19152] Call Trace:
[  870.176282][T19152]  <TASK>
[  870.179229][T19152]  dump_stack_lvl+0x3d/0x1f0
[  870.183857][T19152]  panic+0x71c/0x800
[  870.187784][T19152]  ? __pfx_panic+0x10/0x10
[  870.192230][T19152]  ? mark_held_locks+0x49/0x80
[  870.197021][T19152]  ? preempt_schedule_thunk+0x16/0x30
[  870.202423][T19152]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  870.208447][T19152]  ? preempt_schedule_common+0x44/0xc0
[  870.213949][T19152]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  870.219924][T19152]  check_panic_on_warn+0xab/0xb0
[  870.224858][T19152]  end_report+0x107/0x170
[  870.229181][T19152]  kasan_report+0xee/0x110
[  870.233586][T19152]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  870.239558][T19152]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[  870.245359][T19152]  ? __lock_acquire+0xb8a/0x1c90
[  870.250299][T19152]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  870.256446][T19152]  ? find_held_lock+0x2b/0x80
[  870.261112][T19152]  ? __might_fault+0xe3/0x190
[  870.265823][T19152]  ? __might_fault+0xe3/0x190
[  870.270503][T19152]  ? __might_fault+0x13b/0x190
[  870.275264][T19152]  ? proc_simple_write+0x117/0x1b0
[  870.280365][T19152]  proc_simple_write+0x117/0x1b0
[  870.285292][T19152]  ? __pfx_proc_simple_write+0x10/0x10
[  870.290740][T19152]  proc_reg_write+0x23d/0x330
[  870.295417][T19152]  ? __pfx_proc_reg_write+0x10/0x10
[  870.300618][T19152]  vfs_writev+0x5dc/0xde0
[  870.304944][T19152]  ? __pfx___mutex_trylock_common+0x10/0x10
[  870.310835][T19152]  ? __pfx_vfs_writev+0x10/0x10
[  870.315682][T19152]  ? __mutex_lock+0x1ca/0xb90
[  870.320363][T19152]  ? kmem_cache_free+0x2d1/0x4d0
[  870.325301][T19152]  ? __pfx___mutex_lock+0x10/0x10
[  870.330327][T19152]  ? __fget_files+0x20e/0x3c0
[  870.335000][T19152]  ? do_writev+0x132/0x340
[  870.339405][T19152]  do_writev+0x132/0x340
[  870.343640][T19152]  ? __pfx_do_writev+0x10/0x10
[  870.348401][T19152]  do_syscall_64+0xcd/0x490
[  870.352907][T19152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  870.358797][T19152] RIP: 0033:0x7f48e998e929
[  870.363202][T19152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  870.382808][T19152] RSP: 002b:00007f48ea7fa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  870.391224][T19152] RAX: ffffffffffffffda RBX: 00007f48e9bb5fa0 RCX: 00007f48e998e929
[  870.399205][T19152] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000009
[  870.407166][T19152] RBP: 00007f48e9a10b39 R08: 0000000000000000 R09: 0000000000000000
[  870.415127][T19152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  870.423087][T19152] R13: 0000000000000000 R14: 00007f48e9bb5fa0 R15: 00007ffec46aab38
[  870.431055][T19152]  </TASK>
[  870.434349][T19152] Kernel Offset: disabled
[  870.438665][T19152] Rebooting in 86400 seconds..