last executing test programs:

3m47.148428863s ago: executing program 0 (id=507):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r0)
sendmsg$auto_TASKSTATS_CMD_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0xec, r1, 0xa01, 0x70bd2b, 0x25dfdbfb, {}, [@TASKSTATS_CMD_ATTR_DEREGISTER_CPUMASK={0xd8, 0x4, 'N,SKSTATS\x00\xda\x04Fq\xa5\xb6X|\xad\x13\x9c, \xa4!\xc9<\xc5!\x9cP\x010\x98+\xc8\x81\x8f}\xd3\x80\xabe\x9d4\xa0\xc1$\xbe\xfa\xce\xd4\x17tw\xc0!\x0e-7\xbcz]\x95;\xdfV\xde\xcb\xcd]=\xaf<n\xd5\x8e\xc7e\xd8\xf4lY\x12\xbd\x91_\f\xb2(\x7f\x97\x87\x96\x8am_&f\xc3-\x92\xc8\x8c\xf1\xa5\xaa\xa4V\x9er\v\xc2&\\\n-\xec\xcb\xd2\xae\xfd\x96\x84\x92F\xe1\x10\x95\x8a\xe5\x1e\xc9\xe2\xca7\xe8N\xd8YBv\x88\xf1\x0f]\x9acf\x87\xc3\x90\xd8\xfb\x8e\xa3\xf3\\v4\xd3\x95\x1d\xc9\x94$j\xfbY\xa1\x10\x9c\x16i\xcap3\xa6\x9dk\x9b$\xe5\x8a}6l\x1d\x18\xe1\x14\xce\xb5\x19\'1\a$&\xb6\xbe!\xf9\x046\xca3\xdc>\x8a\x89\xad'}]}, 0xec}, 0x1, 0x0, 0x0, 0x4001}, 0x20000000) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r2 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_notify$auto(r2, 0x0) (async)
r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r3, 0x40049409, &(0x7f000000c380)={0x60, 0x4, 0xc001, 0x5, 0xfffffffffffffffe, 0x0, 0x0, 0x3, 0x2, 0x2c, 0x0, 0x2})

3m46.896142812s ago: executing program 0 (id=508):
mmap$auto(0x0, 0x2, 0x8, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/mem\x00', 0x100, 0x0)
read$auto_proc_mem_operations_base(r0, &(0x7f0000000340)=""/230, 0xe6)
sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x8044}, 0x4001090)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x0, 0x2000000000009, 0x3, 0x7, 0xfffffffffffff718, 0x5, 0x7fff, 0x2000000000010006, 0x0, 0x7, 0x8, 0x0, 0x7, 0xaf, 0x9, 0x2, 0x3, 0x8001, 0x6, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x1]}, 0x200, 0xfffffffb)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
r1 = socket(0x1d, 0x2, 0x7)
r2 = socket(0x2, 0xa, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r3=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r3}, 0x6a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r4=>0x0})
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r4}, 0x18)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0xf5ffffff, 0x9}, 0x7}, 0x3, 0x0)
r5 = openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/comm\x00', 0x680140, 0x0)
write$auto(r5, &(0x7f0000000100)='!\x00', 0x2)
r6 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)

3m46.321302294s ago: executing program 0 (id=510):
mmap$auto(0x5, 0xfffffffffffffffc, 0x5, 0x13, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x801, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2711}, 0x51)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72)
socket(0x1e, 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f000000c380)={0x60, 0x200000000000000, 0x100000, 0x7fffffffeffb, 0x2, 0x8e0, 0x300, 0x50b301a, 0xe4, 0x2c, 0x1, 0x5})
close_range$auto(0x2, 0x8, 0x0)
madvise$auto(0x110c230000, 0x8031ca, 0x9)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x20b42, 0x0)

3m45.14647759s ago: executing program 0 (id=515):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x2, 0x0)
socket(0x2, 0x1, 0x0)
r0 = socket(0x2a, 0x2, 0x0)
ioctl$auto(r0, 0x8912, 0x38)
open(&(0x7f00000000c0)='./file0\x00', 0x400041, 0x4)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x6)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0)
pread64$auto(r1, 0x0, 0x800003, 0x270)
socket(0xf, 0x3, 0x2)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0xb61, 0x80000001, 0x7, 0x8000000000000000, 0x9, 0x2, 0x1]}, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000001f, 0x2, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)

3m43.1421112s ago: executing program 0 (id=519):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x40080, 0x0)
mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x7fff)
openat$auto_proc_pid_set_timerslack_ns_operations_base(0xffffffffffffff9c, &(0x7f0000000000), 0x101040, 0x0)
statmount$auto(&(0x7f0000000080)={0xb, @raw, 0xfffffffffffffffe, 0x5, 0x8}, &(0x7f00000000c0)={0x8, 0x400, 0x3, 0x8, 0x2e6, 0x100, 0x6, 0x4, 0x101, 0x5a9, 0x1, 0x3, 0xffffffff, 0x5, 0x6, 0xe3, 0x5, 0xfffffff8, 0xffffff55, 0xe, 0xffffffff, 0x6, 0x9, 0x1, 0x93, 0x2, 0xff, 0x80000000, 0x1, 0x80000000, 0x0, [0x6, 0x3, 0x3, 0x0, 0x7, 0xe, 0x5b58, 0x0, 0x3, 0xffffffff, 0x400, 0xfffffffffffffff3, 0x2, 0x1, 0x7, 0x7fffffffffffffff, 0xfffffffffffffffa, 0x9, 0x4, 0x845, 0x4, 0x7, 0x1, 0x9, 0x1, 0xe2d, 0xfffffffffffffff9, 0x1, 0x2, 0xa0000000000, 0x2, 0x6, 0x9, 0x4, 0x6, 0xfffffffffffffff8, 0xfffffffffffff96e, 0x0, 0x2, 0x9, 0xfffffffffffffff7, 0x2, 0xe], "a89ec3ee94a8666681d72d9350d818c40de23567528dc70d804e374bec7370d0994755ad7fc9bda06357989ef4f4cf02c275e5c7065fa716be05dfbcbaa7d390751f66e0b5"}, 0x7, 0xfffffa58)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x400000ff, 0x400, 0x9}]})
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
setgroups$auto(0xe32, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x8, 0x400008, 0xdf, 0x111, 0x2, 0x8004)
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd6\x00', 0x3a3c02, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(0xffffffffffffffff, 0x4c04, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x406, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r1, 0x8000)
bind$auto(0xffffffffffffffff, 0x0, 0x67)
mremap$auto(0x0, 0x7, 0x3ed9, 0x3, 0x1ffffffe)
socket(0x10, 0x3, 0x3)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
getpid()
prctl$auto(0x1000000003b, 0x5, 0x4, 0x5, 0x3)
tkill$auto(0x1, 0x7)

3m40.379329947s ago: executing program 0 (id=527):
r0 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x9, 0x8000)
ioctl$auto_I2C_SMBUS(r0, 0x720, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @broadcast}, 0xea)
connect$auto(0x3, &(0x7f0000000080)=@isdn={0x22, 0x4, 0x4, 0xe, 0xdc}, 0x50)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x40001, 0x0)
futex_requeue$auto(&(0x7f0000000040)={0x6, 0x6, 0x8}, 0x1, 0x2, 0x401)
setreuid$auto(0x4, 0x8)
tkill$auto(0x80000000000001, 0x7)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'team_slave_1\x00', <r2=>0x0})
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = memfd_secret$auto(0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(r3, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x8, 0x70bd2c, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000280), 0x41, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x21, 0x2, 0x2)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x6a200, 0x0)
mmap$auto(0x6000000, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)

3m39.861225603s ago: executing program 32 (id=527):
r0 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x9, 0x8000)
ioctl$auto_I2C_SMBUS(r0, 0x720, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @broadcast}, 0xea)
connect$auto(0x3, &(0x7f0000000080)=@isdn={0x22, 0x4, 0x4, 0xe, 0xdc}, 0x50)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x40001, 0x0)
futex_requeue$auto(&(0x7f0000000040)={0x6, 0x6, 0x8}, 0x1, 0x2, 0x401)
setreuid$auto(0x4, 0x8)
tkill$auto(0x80000000000001, 0x7)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'team_slave_1\x00', <r2=>0x0})
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = memfd_secret$auto(0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(r3, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x8, 0x70bd2c, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_IFINDEX={0x8, 0x8, r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000280), 0x41, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x21, 0x2, 0x2)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x6a200, 0x0)
mmap$auto(0x6000000, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)

12.683328755s ago: executing program 4 (id=1145):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0)
read$auto(r1, 0x0, 0x20)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x3}, 0x3)
connect$auto(0x3, 0x0, 0x54)
execve$auto(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)

11.947811558s ago: executing program 1 (id=1146):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/query\x00', 0x100, 0x0)
acct$auto(&(0x7f0000000180)='/sys/kernel/security/tomoyo/query\x00')
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r0 = socket(0x2c, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x1c}}, 0x50)
r1 = socket(0xa, 0x1, 0x100)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000340), 0xffffffffffffffff)
sendmmsg$auto(r1, &(0x7f00000004c0)={{&(0x7f0000000380)="07d4f63d84c5eca07cc9e62cd3a37bfa47fea0f03b0d2eb1157a39f6556dc7ec1e5a69badb263433c006663b61990530ac3f56d0d48ee7ce7398808e8ad1c612fe22c53a0b86e3ad7bd4b5971e0947e2410dd76f90cf33c6889b2d34a4fef74662b209ba22a43a4d4eaaea129e967efc9db0731c5390ec40dd89f7668d9485ba33ea6cf720164445afb1d3c9e29a2122d4a4fb5a83f0a57115483824dc3deb911de68d57fc6b92858e3e59f57197c5fd2de529680184cab95eb8b3b3eb", 0x2, &(0x7f0000000180)={&(0x7f0000000440)="055fd50c4344b3176b857ca704b60b08c2f8baf4bc0b5631ca0b9b2086885249d82f8fcc0336ec51428421b3fbb450ccbfa01936fc44b1541ca3841cf67b7a70b70e58ed58c5bbad799dae324c1c8420d33392f7c6223a323514bf2285a698629982fb270595610d0ba1538c89618123cfbeeb45d2", 0x2}, 0x10, &(0x7f0000000280)="4e294d9ba7eb0b64df345ee693999058d2c4787ad796ba7963ab11a45bcc5ccaa1b3250e958368a07d5ef107e7dc3787b717d1", 0xf, 0x1}, 0xffff6ccb}, 0x50, 0x3)
sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000040)={0x1c, r2, 0x1, 0x70fd2c, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x8, 0x7, 0x0, 0x1, [@typed={0x4, 0x2}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000001}, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x3, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0xc, 0x2, 0x6]}, 0x0)

11.637889221s ago: executing program 4 (id=1147):
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="11000004", @ANYRES16=r0, @ANYBLOB="040026bd7000ffdbdf253e0000000800c9000c000000"], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x20000086)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), r1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x2eb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r2 = open(&(0x7f0000000800)='./file0\x00', 0xa2240, 0x154)
fcntl$auto(r2, 0x400, 0x1)
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
socket(0xa, 0x2, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000140)=""/12, 0xc)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iosched/write_expire\x00', 0x20681, 0x0)
r4 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
r5 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0)
writev$auto(r5, 0x0, 0x9)
fcntl$auto(r4, 0xfffffffd, 0x0)
r6 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x101a02, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r6, 0xc1105517, &(0x7f00000001c0)={{@raw=0xfff, 0x100110d, 0xfffd, 0x6, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa0000000000040000660e0701000000000000008000"}, 0x6, 0x0, 0x4, @raw=0x404, @enumerated={0x55d3, 0x7, "bf154d70dcfcea02faacb07c4222db1f207fdb681dc9b0bf2c6c9ce16d51ebc73df6a7aa16659cd5e4dc8374caf945548e604179f1f87c3bd8701d3d5c3d998c", 0xffffffffffffffff, 0x91e0}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"})
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000340)="001067237c04fdcdef9f67c5", 0xc)
close_range$auto(0x2, 0x8, 0x0)

9.97736794s ago: executing program 1 (id=1153):
sendmsg$auto_WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000000)={0x14, 0x0, 0x21, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x80)
r0 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, 0x0, 0x80)
write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef)

9.779782616s ago: executing program 4 (id=1155):
mmap$auto(0x0, 0x8, 0xffff, 0xfffffffffffffffa, 0xffffffffffffffff, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/nbd3\x00', 0x648802, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/machinecheck/machinecheck1/cmci_disabled\x00', 0x20102, 0x0)
mmap$auto(0x1000, 0x202000d, 0x3, 0xf8, 0xffffffffffffffff, 0x4008000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x1)
r2 = socket(0x11, 0x6, 0x4000000)
r3 = getsockopt$auto(r2, 0x84, 0x12, 0x0, 0x0)
ioctl$auto_MON_IOCX_GETX(r3, 0x4018920a, &(0x7f00000001c0)={&(0x7f0000000100)={0x6, 0x3, 0x8, 0x1, 0x9, 0x2, 0x75, 0xe, 0x200000000006, 0x13000, 0x102, 0x2, 0xfffffffd, @iso={0x0, 0x4}, 0x5, 0xa, 0x3, 0xffffffdb}, 0x0, 0x3ffffffffff})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r4)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYBLOB="9c010000", @ANYRES8=r4, @ANYBLOB="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", @ANYRES32, @ANYBLOB="08006f8004002d0036ebe1609d268d2d7144ad30786284f5db995cb55b187359e8ec9949eb4ba02215436ccafe6c21aa89227f7f97949c95e21fa458440a9c4360628d4561be1108c59c77af570b958f0ddd170134017953208ef73bef7058bbea9d862793a08edddfbd3eb1744a1d76bd34230576784c2b3ee0d7a52acf659e7e7d07da0ccb9f7cfb5dd8ea2ddb78f84e8f8f40a24142d4b68c1aacf55a3a8986ceae817c52b63460c2afd926d33b9b1c11e9f0399eb907f4fa9277a6214fba04a56a"], 0x19c}, 0x1, 0x0, 0x0, 0x40}, 0x4)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/bus/serial/drivers/hci_uart_aml/unbind\x00', 0xa001, 0x0)
write$auto(r5, &(0x7f0000000040)=',\x00^\xa2\x02\x00\x00\x00\x00\x00\xd8l\x00\x00\x00\x00\x00\x00\xb2s\x83\xbd\xc5_%\xc1\xa3\xd0\x95Hq\xf4zG\x01[{\x17\x05I\xe0\xb1d)\x06z8L\xe6&[\xa9X6\x7f\xec\x94\xdal\xa1\xbb\x86\x9c\xc2\xef\x02\r9%\x06\xc5\'b%m_\x96A\"\xdd\xe40\xa7\xc3\x9ah\xf3B\xc2\xec\xf8\r\f[\xe5\x9dK\xe1\x99\x86\xfc\xac\x9f\x8a', 0x1000)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x20044815}, 0x240488c4)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
r6 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
io_uring_setup$auto(0xc, 0x0)
fcntl$auto_F_DUPFD_CLOEXEC(r1, 0x406, r0)
ioctl$auto_dvb_demux_fops_dmxdev(r6, 0x403c6f2b, 0x0)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8)
readv$auto(0x3, 0x0, 0x1)
clock_getres$auto(0xfffffffffffffff5, 0xffffffffffffffff)
read$auto(r6, 0x0, 0x1f40)
r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSTI2(r7, 0x545c, 0x0)
ioctl$auto_TIOCVHANGUP2(r7, 0x5437, 0x0)
unshare$auto(0x40000080)

9.122695233s ago: executing program 1 (id=1158):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x5, 0x6, 0xa, 0x7fffffff, 0xffffffffffffffff, [0x0, 0x0, 0x401], {0x6, 0x6, 0x8c4b, 0x4, 0x100, 0x7ffffffb, 0x101, 0x800, 0x3}, {0x8, 0x0, 0x52, 0x5, 0x0, 0x42, 0x76c5, 0x8, 0x100000000}})
bpf$auto(0x10, &(0x7f00000000c0)=@link_detach, 0x40)
r0 = socket(0x11, 0x3, 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x1000, 0x400005, 0x4, 0x9b72, r0, 0x8000)
madvise$auto(0x80000000000, 0xfffffffffffd0005, 0x19)
mremap$auto(0x10001, 0x4, 0x4, 0x7, 0xfffffffc)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
capset$auto(0x0, &(0x7f0000000000)={0x2, 0x6, 0x48})
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x18, 0x6, 0x1)
io_uring_setup$auto(0x6, 0x0)
r2 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
madvise$auto(0x0, 0x3, 0x14)
ioctl$auto_KVM_X86_GET_MCE_CAP_SUPPORTED(0xffffffffffffffff, 0x8008ae9d, &(0x7f00000000c0)=0xe957)
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000080)={0x809, &(0x7f0000000000)={0xc, 0xf1, 0xb0, @inferred=r2}})
mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020009, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r3, 0x0, 0x7)
statmount$auto(0x0, &(0x7f00000005c0)={0xfffffffb, 0xd, 0x9, 0x3, 0x400026, 0x401, 0x1ffdb, 0x5, 0x6, 0x7ff, 0xfffffffa, 0x9, 0xfff, 0xfffffffffffffffc, 0xb0, 0x5, 0xb, 0x3, 0x1, 0x6, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x8000, 0x20000100002, 0x8001, 0x1, 0x0, 0xc, [0x0, 0x2000000000000, 0xf73, 0x0, 0x0, 0x2000003, 0x1, 0x2000000000000000, 0x0, 0x0, 0xfffffffffffffffc, 0x3, 0x10, 0x10, 0x4c5, 0x3, 0x0, 0x0, 0x9, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x113c, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffffffffffd, 0x0, 0x1ff, 0x51, 0x4, 0xffffffffffffffff, 0x1, 0x9, 0x6, 0x0, 0x4], "154d8ca65b31a4bc7d67a0b509855a4ae867cb6094596bb396c9d3776fcaf66e57c1a0cecb92b841d099af732a4082547646d0dd2411016255729a7452c35da801602114756ed0dff03e75ae8c52d742c64d25c535b83284d720b64b574d0bff0100008c7f153e7fd8047450ae0d42af7f191a5474d394"}, 0x4, 0x8000081)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x9}, 0x3)
io_setup$auto(0xffff, &(0x7f0000000580)=0xffffffef)

6.64107017s ago: executing program 2 (id=1163):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
r1 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000040c0)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x100, 0x0)
r2 = gettid()
kcmp$auto(r2, r2, 0x91f, 0xffffffffffffffff, 0xffffffffffffffff)
preadv$auto(r1, &(0x7f0000004480)={0x0, 0xc}, 0x4, 0xb72, 0xfffffffffffffff7)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1)
read$auto(0xffffffffffffffff, 0x0, 0x20)
mmap$auto(0x0, 0x202000d, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto(r3, 0x10e, 0x9, 0xfffffffffffffffe, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000040), 0x1094c2, 0x0)
r4 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder0\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto(r5, 0x301, 0x5)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000000c0)="5d3d4b8c60c2f201bbdecdf45a36e14cf63e57caea0fdf108d")
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_expire_count\x00', 0x40a00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000080)=""/76, 0x4c)
madvise$auto(0x1, 0x9, 0xa)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x40008000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socketpair$auto(0x9, 0x1, 0x1, 0x0)
setsockopt$auto(0x3, 0x1, 0x10, 0x0, 0x9)
ioctl$auto_CEC_G_MODE(r7, 0x80046108, &(0x7f0000000140)=0x3)
io_uring_setup$auto(0x1, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)

6.177524278s ago: executing program 4 (id=1164):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x202000d, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x801, 0x84)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2c, 0x3, 0x0)
r1 = socket(0x29, 0x2, 0x0)
setsockopt$auto(r1, 0x119, 0xfffffffe, 0x0, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r2 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0)
mmap$auto(0x0, 0x7, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
r3 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r3, 0x84, 0x80, 0x0, &(0x7f00000000c0)=0x97)
pread64$auto(r2, 0x0, 0x20000000001, 0x7fff)
bpf$auto(0xbc9, &(0x7f0000000000)=@info={r2, 0x0, 0x1}, 0xffffffff)
syz_clone3(&(0x7f0000000300)={0x12a004080, 0x0, 0x0, 0x0, {0x3b}, 0x0, 0x0, 0x0, &(0x7f0000000100)=[0x0], 0x1}, 0x58)

5.73589179s ago: executing program 4 (id=1165):
mlockall$auto(0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r0, &(0x7f0000000080)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
memfd_secret$auto(0x1)
mmap$auto(0xfffffffffffff000, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)

5.197148547s ago: executing program 2 (id=1168):
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/ipc\x00')
r2 = ioctl$NS_GET_PARENT(r1, 0xb701, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0xf, 0x3, 0x2)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_IPVS_CMD_SET_SERVICE(r3, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x4050}, 0x4000000)
shutdown$auto(r2, 0x80000001)
write$auto(r0, &(0x7f0000000080)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9)
close_range$auto(0x2, 0x8, 0x0)

4.660213339s ago: executing program 4 (id=1169):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
mbind$auto(0x2, 0x7, 0xb5, 0x0, 0x23, 0x2)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ram5\x00', 0x347f02, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0)
openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20a01, 0x0)
ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0)
mmap$auto(0xb2, 0x14, 0xffb, 0x8000000008015, r0, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
io_uring_setup$auto(0x8000, &(0x7f0000000080)={0x80, 0x1000, 0x8, 0x5, 0x3, 0xfffffdf1, r0, [0xbc, 0xffff, 0x40], {0x81, 0x5, 0x0, 0x80000000, 0x1000, 0x49388df2, 0xffff, 0x0, 0x6}, {0x7, 0xa, 0xf, 0x7fff, 0x3, 0x0, 0x0, 0xfffffffa, 0xc}})
ioctl$auto_BLKTRACETEARDOWN(r1, 0x1276, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_register$auto(0x2, 0x11, 0x0, 0x0)
rt_sigaction$auto(0x1, &(0x7f00000001c0)={&(0x7f0000000080)=0x0, 0x7fffffffffffffff, 0x0, {0x5}}, 0x0, 0x8)
rt_sigaction$auto(0x5, &(0x7f0000000140)={&(0x7f0000000040)=0x0, 0x9, 0x0, {0x81}}, 0x0, 0x8)
bind$auto(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x9, "cc00000008f0ffffff000100"}, 0x6b)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x0, 0x60, 0x0, 0x10001)
r2 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
read$auto_l2cap_debugfs_fops_(r2, &(0x7f0000000240)=""/177, 0xb1)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
r3 = gettid()
r4 = getpid()
rt_tgsigqueueinfo$auto(r4, r3, 0x1, &(0x7f0000000600)={@siginfo_0_0={0xffffff88, 0x1, 0x40, @_rt={0x0, 0xee01, @sival_int=0x9ae}}})
rt_sigsuspend$auto(0x0, 0x8)
timerfd_create$auto_CLOCK_TAI(0xb, 0xcef)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x85, 0x0)

4.545718739s ago: executing program 2 (id=1170):
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
r0 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x640, 0x0)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/neigh/team0/retrans_time_ms\x00', 0x1412c1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/net/teql0/statistics/rx_dropped\x00', 0x80000, 0x0)
read$auto(r1, 0x0, 0x9)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/console\x00', 0x48600, 0x0)
write$auto(0x3, 0x0, 0xfdef)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000580)={0x0, 0x2100, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r2, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/020/001\x00', 0x40, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r6)
ioctl$auto_KVM_GET_MSRS(r5, 0x4188aea7, &(0x7f0000000100)={0x2, 0x0, [{0x0, 0x5, 0x9}]})
write$auto(r4, 0x0, 0xa3d9)
ioctl$auto_MON_IOCG_STATS(r0, 0x80089203, 0x0)

3.842280127s ago: executing program 1 (id=1172):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sys/kernel/shm_rmid_forced\x00', 0x40, 0x0)
read$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/driver/serial\x00', 0x43102, 0x0)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
io_uring_setup$auto(0x59, 0x0)
close_range$auto(0x0, 0x5, 0x0)
pipe$auto(0x0)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000040000fdef}, 0x1)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|,B\xffGP\x97)\xcf\a\xfb\\n\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4mcT\x8aB\x11.z\b\xab\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xf2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\x00'/169, 0x100000a3dc)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), r1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0xc00, 0x0)
acct$auto(&(0x7f00000000c0)='/dev/sequencer2\x04')
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r2 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r2, 0x114, 0x271e, 0xfffffffffffffffc, 0x0)
socket(0x200000000000011, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_DEL_RXSA(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRESDEC, @ANYBLOB="01002abddf270800000008000100000000003eca19638f", @ANYRES32=0x0, @ANYBLOB="04000380"], 0x20}, 0x1, 0x0, 0x0, 0x44844}, 0x20004010)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000040), r4)
sendmsg$auto_MACSEC_CMD_UPD_RXSC(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="14000000592039c66870c5b7af0e1c76086bf34b18396ff0acafabdf8da05ad1dd68b0169f6f497a685901f749390cae5a3c9e5f19a3fc2ec3505e904704e07ad5dd1ab4950f28558685391d921712b2a51c390671ae68d56a0effffffffffffff7f328677786547c1ebe54c2c872c85fe462e13fbddc355493d7feae6b65477bba510179ab83ab3d0388f7961f270e04eb61f26e4a015690a4afe884c3ae814dfc0b3ebfb53b755407c733969cca70c4fd088d7c7d112573de56a9254525e010a52d0bf58ea11d9bece0d2124ca7e74f4e692d3bb", @ANYRES16=r5, @ANYBLOB="010026bd7000fbdbdf2503000000"], 0x14}, 0x1, 0x0, 0x0, 0x5}, 0x2000c080)
socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)

3.172471163s ago: executing program 3 (id=1173):
syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff)
r0 = socket(0x11, 0x80003, 0x300)
sendfile$auto(0x1, r0, 0x0, 0x8fb5)
dup2$auto(0x0, 0x3)
socket(0x15, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
socket(0x11, 0x2, 0x73)
pipe2$auto(0x0, 0x0)
io_uring_setup$auto(0x7e1b, 0x0)
socket(0x2, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x2, 0x14)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptya7\x00', 0x101e81, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyde\x00', 0xa0102, 0x0)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x1, 0x0)
write$auto(0x3, 0x0, 0x81)
ioctl$auto(0x3, 0x80000541b, 0x38)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x80, 0x0)
close_range$auto(0x2, 0x8, 0x0)
shutdown$auto(r0, 0xffff)
ioctl$auto(0x3, 0x5760, 0xfffffffffffff4e0)

2.883170858s ago: executing program 2 (id=1174):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x3)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x288202, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
close_range$auto(0x2, 0xa, 0x0)
r1 = io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(r0, 0x0, &(0x7f0000000000), 0x1000)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000008c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r6=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=ANY=[@ANYRES16=r3, @ANYRES16=r4, @ANYRESHEX=r6, @ANYRESHEX=r3, @ANYBLOB="1f77b6e4bccc4773463400178fd18efe68c4270d4f12430edffc6e4d86c4761499c206af72d0b4104016e33d4740cd6197e6030eada29eb340d01268e15fb271531a9d1e558f8e441df4669dba6ea2acda7b2148b5d07e313054cc5bee8367baf195cde1", @ANYRESDEC=r1, @ANYRES64], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80)
sendmsg$auto_ETHTOOL_MSG_MODULE_FW_FLASH_ACT(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000004280)={&(0x7f00000001c0)=ANY=[@ANYBLOB="840b0080", @ANYRES16=r2, @ANYBLOB="01002cbd7000fedbdf252c00000008000300040800001c00018008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r6, @ANYBLOB="08000100", @ANYRES32=r6, @ANYBLOB="0c0002006e6c38303231310008000300a8ffffff0c00020067726574617030000d0002006f76735f666c6f7700000000080003000500000008000300090b00000b000200402d23262a2a0000"], 0x84}, 0x1, 0x0, 0x0, 0x4c080}, 0x888)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), r7)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r7, 0x0, 0x2000c840)
openat$auto_check_wx_fops_(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/mounts\x00', 0x4000, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
ioctl$auto(0x3, 0xae44, r3)
write$auto(0xffffffffffffffff, 0x0, 0x7)
mmap$auto(0xfffffffffffffffd, 0x400008, 0xdc, 0x9b72, 0x2, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/0/msr\x00', 0x4200, 0x0)

2.542519812s ago: executing program 1 (id=1175):
mmap$auto(0x0, 0x20009, 0x809, 0xeb1, 0x401, 0x80000000008000)
mmap$auto(0xffffffffffffffdb, 0xd, 0x5, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
r0 = socket(0x1e, 0x1, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video4\x00', 0x90383, 0x0)
ioctl$auto(r1, 0xc0045627, r0)
close_range$auto(0xffffffffffffffff, r0, 0x2000)
socket(0x1, 0x5, 0x0)
setresuid$auto(0x8, 0x8, 0x0)
bpf$auto(0x13, 0x0, 0x0)
adjtimex$auto(0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
r2 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vkms/graphics/fb0/pan\x00', 0x80302, 0x0)
sendfile$auto(r4, r4, 0x0, 0x2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, 0x0, 0x101202, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0xfffffffffffffffc, 0x11, 0x2a77, 0x40eb2, 0x402, 0x300000000000)
unlink$auto(0x0)
getgroups$auto(0xc5f1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'bond0\x00', <r5=>0x0})
r6 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r5, r3, 0x4, 0x1ff, r2, @relative_fd, 0xe600}, 0xf)
socketpair$auto(0x1, 0x801, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x2, &(0x7f00000001c0)=@bpf_attr_7={@btf_id=0x6, 0x7, 0x863a, r6}, 0xc)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)

2.488526459s ago: executing program 3 (id=1176):
sendmsg$auto_WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000000)={0x14, 0x0, 0x21, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x80)
r0 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x60008004}, 0x80)
write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef)

2.245619037s ago: executing program 3 (id=1177):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r0 = open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2)
close_range$auto(r0, 0x8000, 0x0)
syz_clone3(&(0x7f00000003c0)={0x383201180, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0, 0x100000, {r0}}, 0x58)

1.984155323s ago: executing program 3 (id=1178):
inotify_add_watch$auto(0xffffffffffffffff, 0x0, 0x2ffffffb)
socket(0x2d, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
getsockopt$auto(0x3, 0x11d, 0xb, 0x0, 0x0)
sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x2cb8}, 0x1, 0x0, 0x0, 0x40}, 0x2404c084)
close_range$auto(0x2, 0xa, 0x0)
r0 = socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x88)
getsockopt$auto_SO_BUF_LOCK(r0, 0x10000, 0x48, &(0x7f0000000040)='\x00', &(0x7f0000000100)=0x1000)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
mmap$auto(0x0, 0xc, 0xdf, 0xeb1, 0x2000000000006, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x7ffff, 0x5)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x5}, 0x4, 0x9)

1.550816708s ago: executing program 2 (id=1179):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/lru_gen/enabled\x00', 0xb02, 0x0)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rxrpc/peers\x00', 0xa0200, 0x0)
pread64$auto(r1, 0x0, 0x8, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2502, 0x0)
pread64$auto(r2, 0x0, 0x20000000001, 0x7fff)
write$auto(0x3, 0x0, 0x7fffffff)
ioctl$auto_NS_GET_TGID_FROM_PIDNS(0xffffffffffffffff, 0x8004b707, &(0x7f0000000040)=0x1)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0)
ioctl$auto_SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000040))
ptrace$auto(0x10, r0, 0x4, 0x7ff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10002ca4706b67dbdf251c"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004814)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r5 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r4, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f000000a640)={0x38, r5, 0x1, 0x70bd27, 0x25dfdbff, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x20, 0x1, 0x0, 0x1, [@nested={0x1c, 0x11c, 0x0, 0x1, [@nested={0x18, 0x90, 0x0, 0x1, [@nested={0x4, 0x9}, @nested={0x10, 0x53, 0x0, 0x1, [@typed={0x8, 0x13f, 0x0, 0x0, @fd=r4}, @nested={0x4, 0x114}]}]}]}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
timerfd_create$auto(0x9, 0x0)
ioctl$auto(0x3, 0x40085400, 0x5)
wait4$auto(0x0, 0xfffffffffffffffc, 0x60000003, 0x0)

1.456984942s ago: executing program 3 (id=1180):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/pid\x00')
fchown$auto(r1, 0xfffe, 0x7ff)
write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="1f91f2c388274610e18d5fc5e5bfd9800e9b63", 0x13)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2b, 0x1, 0x1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
r4 = socket(0x10, 0x2, 0xc)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={&(0x7f0000000000)=ANY=[@ANYBLOB="b1000000", @ANYRES16, @ANYBLOB="0100"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES8=r4, @ANYBLOB="18000000", @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x40000f0)
write$auto(r3, &(0x7f0000000000)='-\x00', 0xfdef)
r5 = socket(0xa, 0x3, 0x3a)
getsockopt$auto(r5, 0x6a, 0x2cb, 0x0, 0x0)
getsockopt$auto_SO_PEERPIDFD(r5, 0x6, 0x4d, &(0x7f0000000080)='#](\x00', &(0x7f00000010c0)=0x4d0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/ieee80211/phy2/address_mask\x00', 0x88100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f00000000c0)=""/4096, 0x1000)
setsockopt$auto(r0, 0xa, 0x3, &(0x7f0000000040)='\xe8.\x00', 0xfffffff8)

1.255498056s ago: executing program 1 (id=1181):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010026bd7020f8dbdf25010f000005000200", @ANYRES32=0x4, @ANYBLOB="0800010048665200080002", @ANYBLOB], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x80) (fail_nth: 4)

601.049808ms ago: executing program 3 (id=1182):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000005380)={0x0, 0xf5ff, &(0x7f0000005340)={&(0x7f0000000180)={0x14, r1, 0x1, 0x870bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000)

0s ago: executing program 2 (id=1183):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/virtual/block/loop1/queue/wbt_lat_usec\x00', 0x2062, 0x0)
write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x9)
ioctl$auto(r0, 0x400454ca, 0x38)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0)
openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20a01, 0x0)
ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcsa\x00', 0x80, 0x0)
mmap$auto(0xb2, 0x14, 0xffb, 0x8000000008015, 0xffffffffffffffff, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
io_uring_setup$auto(0x3501, &(0x7f0000000080)={0x80, 0x1000, 0x8, 0x5, 0x3, 0xfffffff1, <r3=>0xffffffffffffffff, [0xbc, 0xffff, 0x40], {0x81, 0x9, 0x0, 0x80000000, 0x3, 0x101, 0xffff, 0x0, 0x6}, {0x7, 0xa, 0xf, 0x7fff, 0x3, 0x0, 0x0, 0xfffffffa, 0xc}})
ioctl$auto_BLKTRACETEARDOWN(r2, 0x1276, 0x0)
mmap$auto(0x8000000000002001, 0x20009, 0xdf, 0x15, r3, 0x8000)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x11, 0x0, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0xf)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x880, 0x0)
ioctl$auto(r4, 0x5609, 0xffffffffffffffff)
madvise$auto(0x0, 0x20499d, 0x9)
open_tree$auto(0xffffffffffffffff, 0x0, 0x74ee)
ioctl$auto_NS_GET_PID_FROM_PIDNS(r3, 0x8004b706, &(0x7f0000000180)=0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000050}, 0x400c0)

kernel console output (not intermixed with test programs):

7987]  <TASK>
[  227.313863][ T7987]  dump_stack_lvl+0x16c/0x1f0
[  227.313917][ T7987]  should_fail_ex+0x512/0x640
[  227.313961][ T7987]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  227.314010][ T7987]  should_failslab+0xc2/0x120
[  227.314039][ T7987]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  227.314083][ T7987]  ? dup_fd+0x4e/0xb90
[  227.314130][ T7987]  ? do_futex+0x122/0x350
[  227.314167][ T7987]  dup_fd+0x4e/0xb90
[  227.314205][ T7987]  ? _raw_spin_unlock+0x28/0x50
[  227.314244][ T7987]  ? do_set_mempolicy+0x220/0x480
[  227.314309][ T7987]  __do_sys_close_range+0x4ca/0x730
[  227.314357][ T7987]  ? __pfx___do_sys_close_range+0x10/0x10
[  227.314413][ T7987]  do_syscall_64+0xcd/0x490
[  227.314443][ T7987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.314472][ T7987] RIP: 0033:0x7fadbdd8e929
[  227.314496][ T7987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.314524][ T7987] RSP: 002b:00007fadbeb56038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  227.314552][ T7987] RAX: ffffffffffffffda RBX: 00007fadbdfb5fa0 RCX: 00007fadbdd8e929
[  227.314571][ T7987] RDX: 0000000000000002 RSI: fffffffffffff000 RDI: 0000000000000000
[  227.314590][ T7987] RBP: 00007fadbde10b39 R08: 0000000000000000 R09: 0000000000000000
[  227.314607][ T7987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  227.314624][ T7987] R13: 0000000000000000 R14: 00007fadbdfb5fa0 R15: 00007ffc366ef5e8
[  227.314662][ T7987]  </TASK>
[  227.449684][ T7993] ICMPv6: process `syz.2.513' is using deprecated sysctl (syscall) net.ipv6.neigh.geneve1.base_reachable_time - use net.ipv6.neigh.geneve1.base_reachable_time_ms instead
[  227.455141][    C0] vkms_vblank_simulate: vblank timer overrun
[  227.513673][    C0] vkms_vblank_simulate: vblank timer overrun
[  227.519686][    C0] hrtimer: interrupt took 200637937 ns
[  227.548036][ T7987] FAULT_INJECTION: forcing a failure.
[  227.548036][ T7987] name failslab, interval 1, probability 0, space 0, times 0
[  227.609204][ T7987] CPU: 1 UID: 0 PID: 7987 Comm: syz.2.513 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  227.609250][ T7987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  227.609270][ T7987] Call Trace:
[  227.609281][ T7987]  <TASK>
[  227.609295][ T7987]  dump_stack_lvl+0x16c/0x1f0
[  227.609356][ T7987]  should_fail_ex+0x512/0x640
[  227.609406][ T7987]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  227.609462][ T7987]  should_failslab+0xc2/0x120
[  227.609494][ T7987]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  227.609552][ T7987]  ? dup_fd+0x4e/0xb90
[  227.609604][ T7987]  dup_fd+0x4e/0xb90
[  227.609652][ T7987]  ? find_held_lock+0x2b/0x80
[  227.609692][ T7987]  ksys_unshare+0x831/0xa40
[  227.609737][ T7987]  ? __pfx_ksys_unshare+0x10/0x10
[  227.609782][ T7987]  ? xfd_validate_state+0x61/0x180
[  227.609836][ T7987]  __x64_sys_unshare+0x31/0x40
[  227.609890][ T7987]  do_syscall_64+0xcd/0x490
[  227.609925][ T7987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.609960][ T7987] RIP: 0033:0x7fadbdd8e929
[  227.609986][ T7987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.610017][ T7987] RSP: 002b:00007fadbeb56038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  227.610047][ T7987] RAX: ffffffffffffffda RBX: 00007fadbdfb5fa0 RCX: 00007fadbdd8e929
[  227.610068][ T7987] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400
[  227.610087][ T7987] RBP: 00007fadbde10b39 R08: 0000000000000000 R09: 0000000000000000
[  227.610106][ T7987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  227.610125][ T7987] R13: 0000000000000000 R14: 00007fadbdfb5fa0 R15: 00007ffc366ef5e8
[  227.610167][ T7987]  </TASK>
[  227.619758][    C0] vkms_vblank_simulate: vblank timer overrun
[  227.794679][    C0] vkms_vblank_simulate: vblank timer overrun
[  227.899756][ T7994] FAULT_INJECTION: forcing a failure.
[  227.899756][ T7994] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  227.942230][ T7994] CPU: 1 UID: 0 PID: 7994 Comm: syz.1.514 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  227.942274][ T7994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  227.942292][ T7994] Call Trace:
[  227.942303][ T7994]  <TASK>
[  227.942315][ T7994]  dump_stack_lvl+0x16c/0x1f0
[  227.942373][ T7994]  should_fail_ex+0x512/0x640
[  227.942430][ T7994]  should_fail_alloc_page+0xe7/0x130
[  227.942464][ T7994]  prepare_alloc_pages+0x3c2/0x610
[  227.942510][ T7994]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  227.942566][ T7994]  ? stack_trace_save+0x8e/0xc0
[  227.942602][ T7994]  ? __pfx_stack_trace_save+0x10/0x10
[  227.942636][ T7994]  ? stack_depot_save_flags+0x28/0xa40
[  227.942694][ T7994]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  227.942743][ T7994]  ? __lock_acquire+0x622/0x1c90
[  227.942789][ T7994]  ? alloc_bprm+0x2af/0x6f0
[  227.942839][ T7994]  ? do_execveat_common.isra.0+0x1ce/0x610
[  227.942881][ T7994]  ? __x64_sys_execve+0x8e/0xb0
[  227.942924][ T7994]  ? do_syscall_64+0xcd/0x490
[  227.942960][ T7994]  ? __lock_acquire+0x622/0x1c90
[  227.943009][ T7994]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  227.943059][ T7994]  ? policy_nodemask+0xea/0x4e0
[  227.943094][ T7994]  alloc_pages_mpol+0x1fb/0x550
[  227.943127][ T7994]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  227.943169][ T7994]  alloc_pages_noprof+0x131/0x390
[  227.943206][ T7994]  pgd_alloc+0x4b/0x650
[  227.943263][ T7994]  mm_init+0x73b/0x13c0
[  227.943294][ T7994]  ? mm_alloc+0x1c/0xc0
[  227.943334][ T7994]  mm_alloc+0x9f/0xc0
[  227.943369][ T7994]  alloc_bprm+0x2af/0x6f0
[  227.943414][ T7994]  do_execveat_common.isra.0+0x1ce/0x610
[  227.943467][ T7994]  __x64_sys_execve+0x8e/0xb0
[  227.943513][ T7994]  do_syscall_64+0xcd/0x490
[  227.943546][ T7994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.943580][ T7994] RIP: 0033:0x7f143f98e929
[  227.943607][ T7994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.943638][ T7994] RSP: 002b:00007f143d7f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  227.943668][ T7994] RAX: ffffffffffffffda RBX: 00007f143fbb5fa0 RCX: 00007f143f98e929
[  227.943689][ T7994] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000200
[  227.943707][ T7994] RBP: 00007f143fa10b39 R08: 0000000000000000 R09: 0000000000000000
[  227.943726][ T7994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  227.943744][ T7994] R13: 0000000000000000 R14: 00007f143fbb5fa0 R15: 00007ffe5eadc538
[  227.943784][ T7994]  </TASK>
[  228.482945][ T8002] FAULT_INJECTION: forcing a failure.
[  228.482945][ T8002] name failslab, interval 1, probability 0, space 0, times 0
[  228.519574][ T8002] CPU: 1 UID: 0 PID: 8002 Comm: syz.2.516 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  228.519607][ T8002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  228.519621][ T8002] Call Trace:
[  228.519629][ T8002]  <TASK>
[  228.519637][ T8002]  dump_stack_lvl+0x16c/0x1f0
[  228.519678][ T8002]  should_fail_ex+0x512/0x640
[  228.519715][ T8002]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  228.519767][ T8002]  should_failslab+0xc2/0x120
[  228.519808][ T8002]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  228.519849][ T8002]  ? __pfx_acct_collect+0x10/0x10
[  228.519895][ T8002]  ? taskstats_exit+0x654/0xbe0
[  228.519946][ T8002]  taskstats_exit+0x654/0xbe0
[  228.519996][ T8002]  ? __pfx_taskstats_exit+0x10/0x10
[  228.520054][ T8002]  do_exit+0x5d9/0x2bd0
[  228.520106][ T8002]  ? __pfx_do_exit+0x10/0x10
[  228.520145][ T8002]  ? do_raw_spin_lock+0x12c/0x2b0
[  228.520192][ T8002]  ? find_held_lock+0x2b/0x80
[  228.520228][ T8002]  do_group_exit+0xd3/0x2a0
[  228.520274][ T8002]  get_signal+0x2673/0x26d0
[  228.520325][ T8002]  ? __pfx_get_signal+0x10/0x10
[  228.520357][ T8002]  ? do_futex+0x122/0x350
[  228.520396][ T8002]  ? __pfx_do_futex+0x10/0x10
[  228.520438][ T8002]  arch_do_signal_or_restart+0x8f/0x790
[  228.520474][ T8002]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  228.520519][ T8002]  ? ksys_mmap_pgoff+0x85/0x5c0
[  228.520552][ T8002]  ? __pfx_ksys_write+0x10/0x10
[  228.520604][ T8002]  exit_to_user_mode_loop+0x84/0x110
[  228.520654][ T8002]  do_syscall_64+0x3f6/0x490
[  228.520686][ T8002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.520717][ T8002] RIP: 0033:0x7fadbdd8e929
[  228.520740][ T8002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.520770][ T8002] RSP: 002b:00007fadbeb560e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  228.520811][ T8002] RAX: fffffffffffffe00 RBX: 00007fadbdfb5fa8 RCX: 00007fadbdd8e929
[  228.520831][ T8002] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fadbdfb5fa8
[  228.520850][ T8002] RBP: 00007fadbdfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  228.520869][ T8002] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fadbdfb5fac
[  228.520888][ T8002] R13: 0000000000000000 R14: 00007ffc366ef500 R15: 00007ffc366ef5e8
[  228.520930][ T8002]  </TASK>
[  229.972637][ T8011] input: jJǸ���;9�%v����l��Q�	J86�� as /devices/virtual/input/input13
[  230.349287][ T8023] openvswitch: HfR: Dropping previously announced user features
[  230.468573][ T8026] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  230.832640][ T8033] random: crng reseeded on system resumption
[  232.024102][ T1140] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.204355][ T1140] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.493263][ T1140] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.662054][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  232.668449][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  232.685616][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  232.692082][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  232.703002][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  232.709589][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  232.719482][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  232.725919][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  233.274138][ T1140] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.700994][   T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  233.710629][   T51] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  233.718571][   T51] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  233.728233][   T51] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  233.736126][   T51] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  233.922619][ T1140] bridge_slave_1: left allmulticast mode
[  233.929265][ T1140] bridge_slave_1: left promiscuous mode
[  233.961092][ T1140] bridge0: port 2(bridge_slave_1) entered disabled state
[  234.050837][ T1140] bridge_slave_0: left allmulticast mode
[  234.056563][ T1140] bridge_slave_0: left promiscuous mode
[  234.086241][ T1140] bridge0: port 1(bridge_slave_0) entered disabled state
[  235.094830][ T1140] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  235.122907][ T1140] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  235.143746][ T1140] bond0 (unregistering): Released all slaves
[  235.789171][ T5850] Bluetooth: hci2: command tx timeout
[  235.959565][ T5926] rtc_cmos 00:00: Alarms can be up to one day in the future
[  235.967557][ T5926] rtc_cmos 00:00: Alarms can be up to one day in the future
[  236.018138][ T5926] rtc_cmos 00:00: Alarms can be up to one day in the future
[  236.058741][ T5926] rtc_cmos 00:00: Alarms can be up to one day in the future
[  236.071934][ T5926] rtc rtc0: __rtc_set_alarm: err=-22
[  236.626400][ T8115] netlink: 'syz.2.536': attribute type 2 has an invalid length.
[  236.865026][ T1140] hsr_slave_0: left promiscuous mode
[  236.894949][ T1140] hsr_slave_1: left promiscuous mode
[  236.981613][ T1140] veth1_macvtap: left promiscuous mode
[  236.999903][ T1140] veth0_macvtap: left promiscuous mode
[  237.011779][ T1140] veth1_vlan: left promiscuous mode
[  237.030431][ T1140] veth0_vlan: left promiscuous mode
[  237.855808][ T1140] team0 (unregistering): Port device team_slave_1 removed
[  237.863405][ T5850] Bluetooth: hci2: command tx timeout
[  237.903837][ T1140] team0 (unregistering): Port device team_slave_0 removed
[  238.488046][ T8132] netlink: 'syz.1.539': attribute type 2 has an invalid length.
[  238.564027][ T8063] chnl_net:caif_netlink_parms(): no params data found
[  239.358264][ T8151] netlink: 8 bytes leftover after parsing attributes in process `syz.1.542'.
[  239.519302][ T8063] bridge0: port 1(bridge_slave_0) entered blocking state
[  239.527956][ T8063] bridge0: port 1(bridge_slave_0) entered disabled state
[  239.567525][ T8063] bridge_slave_0: entered allmulticast mode
[  239.580317][ T8063] bridge_slave_0: entered promiscuous mode
[  239.611203][ T8063] bridge0: port 2(bridge_slave_1) entered blocking state
[  239.618879][ T8063] bridge0: port 2(bridge_slave_1) entered disabled state
[  239.658472][ T8063] bridge_slave_1: entered allmulticast mode
[  239.683948][ T8063] bridge_slave_1: entered promiscuous mode
[  239.824784][ T8063] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  239.845996][ T8063] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  239.942006][ T5850] Bluetooth: hci2: command tx timeout
[  240.023201][ T8063] team0: Port device team_slave_0 added
[  240.092655][ T8063] team0: Port device team_slave_1 added
[  240.208395][ T8063] batman_adv: batadv0: Adding interface: batadv_slave_0
[  240.237288][ T8063] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  240.267183][ T8063] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  240.292640][ T8063] batman_adv: batadv0: Adding interface: batadv_slave_1
[  240.309150][ T8063] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  240.379149][ T8063] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  240.958843][ T8063] hsr_slave_0: entered promiscuous mode
[  240.986596][ T8063] hsr_slave_1: entered promiscuous mode
[  241.004825][ T8063] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  241.015600][ T8063] Cannot create hsr debugfs directory
[  241.567842][ T8063] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  241.620606][ T8063] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  241.752423][ T8063] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  241.796229][ T8202] netlink: 4 bytes leftover after parsing attributes in process `syz.3.549'.
[  241.806274][ T8201] netlink: 4 bytes leftover after parsing attributes in process `syz.3.549'.
[  241.824247][ T8063] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  242.019123][ T5850] Bluetooth: hci2: command tx timeout
[  242.176857][ T8063] 8021q: adding VLAN 0 to HW filter on device bond0
[  242.215586][ T8063] 8021q: adding VLAN 0 to HW filter on device team0
[  242.230735][ T6248] bridge0: port 1(bridge_slave_0) entered blocking state
[  242.237965][ T6248] bridge0: port 1(bridge_slave_0) entered forwarding state
[  242.376727][ T6248] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.384008][ T6248] bridge0: port 2(bridge_slave_1) entered forwarding state
[  243.663011][ T8063] 8021q: adding VLAN 0 to HW filter on device batadv0
[  244.238238][ T8248] FAULT_INJECTION: forcing a failure.
[  244.238238][ T8248] name failslab, interval 1, probability 0, space 0, times 0
[  244.269244][ T8248] CPU: 0 UID: 0 PID: 8248 Comm: syz.2.556 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  244.269287][ T8248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  244.269307][ T8248] Call Trace:
[  244.269318][ T8248]  <TASK>
[  244.269335][ T8248]  dump_stack_lvl+0x16c/0x1f0
[  244.269395][ T8248]  should_fail_ex+0x512/0x640
[  244.269441][ T8248]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  244.269496][ T8248]  should_failslab+0xc2/0x120
[  244.269527][ T8248]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  244.269578][ T8248]  ? vm_area_alloc+0x1f/0x160
[  244.269628][ T8248]  vm_area_alloc+0x1f/0x160
[  244.269670][ T8248]  create_init_stack_vma+0x29/0x700
[  244.269740][ T8248]  alloc_bprm+0x420/0x6f0
[  244.269786][ T8248]  do_execveat_common.isra.0+0x1ce/0x610
[  244.269841][ T8248]  __x64_sys_execve+0x8e/0xb0
[  244.269888][ T8248]  do_syscall_64+0xcd/0x490
[  244.269922][ T8248]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.269954][ T8248] RIP: 0033:0x7fadbdd8e929
[  244.269979][ T8248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.270012][ T8248] RSP: 002b:00007fadbeb56038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  244.270043][ T8248] RAX: ffffffffffffffda RBX: 00007fadbdfb5fa0 RCX: 00007fadbdd8e929
[  244.270064][ T8248] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000200
[  244.270082][ T8248] RBP: 00007fadbde10b39 R08: 0000000000000000 R09: 0000000000000000
[  244.270102][ T8248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  244.270120][ T8248] R13: 0000000000000000 R14: 00007fadbdfb5fa0 R15: 00007ffc366ef5e8
[  244.270161][ T8248]  </TASK>
[  244.783100][ T8063] veth0_vlan: entered promiscuous mode
[  244.858226][ T1220] smpboot: CPU 1 is now offline
[  244.898938][ T8063] veth1_vlan: entered promiscuous mode
[  245.114228][ T8063] veth0_macvtap: entered promiscuous mode
[  245.166388][ T8063] veth1_macvtap: entered promiscuous mode
[  245.273511][ T8063] batman_adv: batadv0: Interface activated: batadv_slave_0
[  245.375084][ T8063] batman_adv: batadv0: Interface activated: batadv_slave_1
[  245.432901][ T8063] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  245.478286][ T8063] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  245.520547][ T8063] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  245.570387][ T8063] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  245.610115][ T8275] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  245.631663][ T8275] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  245.725291][ T8275] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  245.755136][ T8275] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  245.826126][ T8275] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  245.851290][ T8275] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  245.914079][ T8275] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  245.962079][ T8275] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  246.044623][ T8275] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  246.319858][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  246.327806][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  246.521293][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  246.575681][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  247.139697][ T5850] Bluetooth: hci1: command 0x0406 tx timeout
[  247.781101][ T5850] Bluetooth: hci0: command 0x0406 tx timeout
[  247.862159][ T5850] Bluetooth: hci3: command 0x0406 tx timeout
[  247.944114][ T5850] Bluetooth: hci2: command 0x0c1a tx timeout
[  248.377863][ T8334] FAULT_INJECTION: forcing a failure.
[  248.377863][ T8334] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  248.498260][ T8334] CPU: 0 UID: 0 PID: 8334 Comm: syz.2.569 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  248.498292][ T8334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  248.498306][ T8334] Call Trace:
[  248.498314][ T8334]  <TASK>
[  248.498322][ T8334]  dump_stack_lvl+0x16c/0x1f0
[  248.498364][ T8334]  should_fail_ex+0x512/0x640
[  248.498413][ T8334]  core_sys_select+0x4c5/0xc10
[  248.498452][ T8334]  ? __pfx_core_sys_select+0x10/0x10
[  248.498489][ T8334]  ? proc_fail_nth_write+0x9f/0x250
[  248.498541][ T8334]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  248.498570][ T8334]  kern_select+0x15d/0x1e0
[  248.498602][ T8334]  ? __pfx_kern_select+0x10/0x10
[  248.498636][ T8334]  ? __pfx_ksys_write+0x10/0x10
[  248.498674][ T8334]  __x64_sys_select+0xbd/0x160
[  248.498710][ T8334]  ? do_syscall_64+0x91/0x490
[  248.498730][ T8334]  ? lockdep_hardirqs_on+0x7c/0x110
[  248.498767][ T8334]  do_syscall_64+0xcd/0x490
[  248.498794][ T8334]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.498818][ T8334] RIP: 0033:0x7fadbdd8e929
[  248.498836][ T8334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.498860][ T8334] RSP: 002b:00007fadbeb35038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  248.498882][ T8334] RAX: ffffffffffffffda RBX: 00007fadbdfb6080 RCX: 00007fadbdd8e929
[  248.498898][ T8334] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  248.498912][ T8334] RBP: 00007fadbeb35090 R08: 0000000000000000 R09: 0000000000000000
[  248.498927][ T8334] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  248.498945][ T8334] R13: 0000000000000000 R14: 00007fadbdfb6080 R15: 00007ffc366ef5e8
[  248.498974][ T8334]  </TASK>
[  248.670728][    C0] vkms_vblank_simulate: vblank timer overrun
[  249.054609][ T8340] FAULT_INJECTION: forcing a failure.
[  249.054609][ T8340] name failslab, interval 1, probability 0, space 0, times 0
[  249.117210][ T8340] CPU: 0 UID: 0 PID: 8340 Comm: syz.4.571 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  249.117244][ T8340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  249.117258][ T8340] Call Trace:
[  249.117265][ T8340]  <TASK>
[  249.117274][ T8340]  dump_stack_lvl+0x16c/0x1f0
[  249.117317][ T8340]  should_fail_ex+0x512/0x640
[  249.117353][ T8340]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  249.117401][ T8340]  should_failslab+0xc2/0x120
[  249.117423][ T8340]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  249.117457][ T8340]  ? __proc_create+0xc3/0x8c0
[  249.117494][ T8340]  ? __proc_create+0x2ce/0x8c0
[  249.117533][ T8340]  __proc_create+0x2ce/0x8c0
[  249.117571][ T8340]  ? __pfx___proc_create+0x10/0x10
[  249.117609][ T8340]  ? insert_header+0xf8d/0x1480
[  249.117648][ T8340]  ? __register_sysctl_table+0x736/0x1900
[  249.117689][ T8340]  proc_create_reg+0x7d/0x180
[  249.117714][ T8340]  proc_create_net_data+0x8e/0x1b0
[  249.117753][ T8340]  ? __pfx_proc_create_net_data+0x10/0x10
[  249.117793][ T8340]  ? __pfx___register_sysctl_table+0x10/0x10
[  249.117831][ T8340]  ? is_module_address+0x69/0xf0
[  249.117863][ T8340]  ? register_net_sysctl_sz+0x228/0x3e0
[  249.117890][ T8340]  ? __pfx_nf_log_net_init+0x10/0x10
[  249.117915][ T8340]  nf_log_net_init+0x69/0x450
[  249.117942][ T8340]  ? __pfx_nf_log_net_init+0x10/0x10
[  249.117966][ T8340]  ops_init+0x1df/0x5f0
[  249.117993][ T8340]  setup_net+0x1ff/0x510
[  249.118015][ T8340]  ? lockdep_init_map_type+0x5c/0x280
[  249.118047][ T8340]  ? __pfx_setup_net+0x10/0x10
[  249.118073][ T8340]  ? debug_mutex_init+0x37/0x70
[  249.118098][ T8340]  copy_net_ns+0x2a6/0x5f0
[  249.118127][ T8340]  create_new_namespaces+0x3ea/0xa90
[  249.118159][ T8340]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  249.118186][ T8340]  ksys_unshare+0x45b/0xa40
[  249.118218][ T8340]  ? __pfx_ksys_unshare+0x10/0x10
[  249.118249][ T8340]  ? xfd_validate_state+0x61/0x180
[  249.118288][ T8340]  __x64_sys_unshare+0x31/0x40
[  249.118318][ T8340]  do_syscall_64+0xcd/0x490
[  249.118341][ T8340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.118371][ T8340] RIP: 0033:0x7f1b0ed8e929
[  249.118390][ T8340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  249.118413][ T8340] RSP: 002b:00007f1b0fcaf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  249.118435][ T8340] RAX: ffffffffffffffda RBX: 00007f1b0efb5fa0 RCX: 00007f1b0ed8e929
[  249.118450][ T8340] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  249.118465][ T8340] RBP: 00007f1b0ee10b39 R08: 0000000000000000 R09: 0000000000000000
[  249.118479][ T8340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  249.118493][ T8340] R13: 0000000000000000 R14: 00007f1b0efb5fa0 R15: 00007ffc39b7c438
[  249.118523][ T8340]  </TASK>
[  249.391206][    C0] vkms_vblank_simulate: vblank timer overrun
[  249.523190][ T5850] Bluetooth: hci1: command 0x0406 tx timeout
[  249.713309][ T8353] FAULT_INJECTION: forcing a failure.
[  249.713309][ T8353] name failslab, interval 1, probability 0, space 0, times 0
[  249.746580][ T8353] CPU: 0 UID: 0 PID: 8353 Comm: syz.4.574 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  249.746614][ T8353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  249.746629][ T8353] Call Trace:
[  249.746637][ T8353]  <TASK>
[  249.746646][ T8353]  dump_stack_lvl+0x16c/0x1f0
[  249.746689][ T8353]  should_fail_ex+0x512/0x640
[  249.746733][ T8353]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  249.746774][ T8353]  should_failslab+0xc2/0x120
[  249.746797][ T8353]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  249.746835][ T8353]  ? __d_alloc+0x31/0xaa0
[  249.746872][ T8353]  ? __lock_acquire+0xb8a/0x1c90
[  249.746907][ T8353]  __d_alloc+0x31/0xaa0
[  249.746947][ T8353]  d_alloc_pseudo+0x1c/0xc0
[  249.746975][ T8353]  alloc_file_pseudo+0xcf/0x230
[  249.747003][ T8353]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  249.747029][ T8353]  ? alloc_fd+0x471/0x7d0
[  249.747066][ T8353]  __anon_inode_getfile+0xf7/0x3a0
[  249.747106][ T8353]  anon_inode_getfile_fmode+0x37/0xa0
[  249.747143][ T8353]  __do_sys_fanotify_init+0x96d/0xc00
[  249.747186][ T8353]  do_syscall_64+0xcd/0x490
[  249.747212][ T8353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.747236][ T8353] RIP: 0033:0x7f1b0ed8e929
[  249.747256][ T8353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  249.747280][ T8353] RSP: 002b:00007f1b0fcaf038 EFLAGS: 00000246 ORIG_RAX: 000000000000012c
[  249.747304][ T8353] RAX: ffffffffffffffda RBX: 00007f1b0efb5fa0 RCX: 00007f1b0ed8e929
[  249.747331][ T8353] RDX: 0000000000000000 RSI: 0002000000000002 RDI: 0000000000000005
[  249.747346][ T8353] RBP: 00007f1b0ee10b39 R08: 0000000000000000 R09: 0000000000000000
[  249.747361][ T8353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  249.747376][ T8353] R13: 0000000000000000 R14: 00007f1b0efb5fa0 R15: 00007ffc39b7c438
[  249.747406][ T8353]  </TASK>
[  249.935115][    C0] vkms_vblank_simulate: vblank timer overrun
[  249.995653][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  250.001790][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  250.135219][ T8360] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4294967293.4294967295.4294967293), cmd(2)
[  250.181300][ T5850] Bluetooth: hci2: command 0x0c1a tx timeout
[  251.131235][ T8377] netlink: 8 bytes leftover after parsing attributes in process `syz.2.580'.
[  252.259651][ T5850] Bluetooth: hci2: command 0x0c1a tx timeout
[  255.107706][ T8448] can: request_module (can-proto-0) failed.
[  258.700871][ T8492] netlink: 'syz.4.597': attribute type 5 has an invalid length.
[  258.749312][ T8492] netlink: 'syz.4.597': attribute type 1 has an invalid length.
[  258.793170][ T8492] netlink: 12 bytes leftover after parsing attributes in process `syz.4.597'.
[  260.849120][ T8535] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4294967293.4294967295.4294967293), cmd(2)
[  262.017483][ T8554] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  263.158203][ T8564] FAULT_INJECTION: forcing a failure.
[  263.158203][ T8564] name failslab, interval 1, probability 0, space 0, times 0
[  263.254461][ T8564] CPU: 0 UID: 0 PID: 8564 Comm: syz.3.609 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  263.254493][ T8564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  263.254506][ T8564] Call Trace:
[  263.254514][ T8564]  <TASK>
[  263.254523][ T8564]  dump_stack_lvl+0x16c/0x1f0
[  263.254565][ T8564]  should_fail_ex+0x512/0x640
[  263.254598][ T8564]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  263.254638][ T8564]  should_failslab+0xc2/0x120
[  263.254678][ T8564]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  263.254715][ T8564]  ? alloc_empty_file+0x55/0x1e0
[  263.254744][ T8564]  alloc_empty_file+0x55/0x1e0
[  263.254770][ T8564]  path_openat+0xda/0x2cb0
[  263.254803][ T8564]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.254837][ T8564]  ? __pfx_path_openat+0x10/0x10
[  263.254873][ T8564]  ? __lock_acquire+0xb8a/0x1c90
[  263.254908][ T8564]  do_filp_open+0x20b/0x470
[  263.254943][ T8564]  ? __pfx_do_filp_open+0x10/0x10
[  263.254999][ T8564]  ? alloc_fd+0x471/0x7d0
[  263.255040][ T8564]  do_sys_openat2+0x11b/0x1d0
[  263.255067][ T8564]  ? __pfx_do_sys_openat2+0x10/0x10
[  263.255097][ T8564]  ? __fget_files+0x20e/0x3c0
[  263.255139][ T8564]  __x64_sys_openat+0x174/0x210
[  263.255165][ T8564]  ? __pfx___x64_sys_openat+0x10/0x10
[  263.255191][ T8564]  ? ksys_write+0x1ac/0x250
[  263.255235][ T8564]  do_syscall_64+0xcd/0x490
[  263.255260][ T8564]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.255283][ T8564] RIP: 0033:0x7f6afcf8e929
[  263.255301][ T8564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.255324][ T8564] RSP: 002b:00007f6afde27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  263.255346][ T8564] RAX: ffffffffffffffda RBX: 00007f6afd1b5fa0 RCX: 00007f6afcf8e929
[  263.255362][ T8564] RDX: 0000000000000100 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  263.255384][ T8564] RBP: 00007f6afde27090 R08: 0000000000000000 R09: 0000000000000000
[  263.255399][ T8564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  263.255413][ T8564] R13: 0000000000000000 R14: 00007f6afd1b5fa0 R15: 00007fffe8eabc38
[  263.255443][ T8564]  </TASK>
[  263.469677][    C0] vkms_vblank_simulate: vblank timer overrun
[  264.103036][ T8579] rtc_cmos 00:00: Alarms can be up to one day in the future
[  264.760217][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  264.771250][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  266.711681][ T8616] netlink: 'syz.2.619': attribute type 4 has an invalid length.
[  266.812153][ T8616] netlink: 314 bytes leftover after parsing attributes in process `syz.2.619'.
[  266.939767][ T8616] IPv6: NLM_F_CREATE should be specified when creating new route
[  267.009280][ T8617] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  267.029287][ T8620] FAULT_INJECTION: forcing a failure.
[  267.029287][ T8620] name failslab, interval 1, probability 0, space 0, times 0
[  267.065378][ T8616] IPv6: Can't replace route, no match found
[  267.118989][ T8617] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  267.146785][ T8620] CPU: 0 UID: 0 PID: 8620 Comm: syz.1.621 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  267.146819][ T8620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  267.146833][ T8620] Call Trace:
[  267.146840][ T8620]  <TASK>
[  267.146850][ T8620]  dump_stack_lvl+0x16c/0x1f0
[  267.146893][ T8620]  should_fail_ex+0x512/0x640
[  267.146928][ T8620]  ? fs_reclaim_acquire+0xae/0x150
[  267.146958][ T8620]  ? tomoyo_encode2+0x100/0x3e0
[  267.146988][ T8620]  should_failslab+0xc2/0x120
[  267.147011][ T8620]  __kmalloc_noprof+0xd2/0x510
[  267.147045][ T8620]  ? d_absolute_path+0x136/0x1a0
[  267.147073][ T8620]  tomoyo_encode2+0x100/0x3e0
[  267.147115][ T8620]  tomoyo_encode+0x29/0x50
[  267.147146][ T8620]  tomoyo_realpath_from_path+0x18f/0x6e0
[  267.147187][ T8620]  tomoyo_path_number_perm+0x245/0x580
[  267.147214][ T8620]  ? tomoyo_path_number_perm+0x237/0x580
[  267.147242][ T8620]  ? task_work_cancel_match+0x224/0x250
[  267.147278][ T8620]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  267.147337][ T8620]  ? find_held_lock+0x2b/0x80
[  267.147359][ T8620]  ? hook_file_ioctl_common+0x145/0x410
[  267.147391][ T8620]  ? __fget_files+0x20e/0x3c0
[  267.147428][ T8620]  security_file_ioctl+0x9b/0x240
[  267.147459][ T8620]  __x64_sys_ioctl+0xb7/0x210
[  267.147488][ T8620]  do_syscall_64+0xcd/0x490
[  267.147512][ T8620]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.147536][ T8620] RIP: 0033:0x7f143f98e929
[  267.147554][ T8620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  267.147577][ T8620] RSP: 002b:00007f143d7d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  267.147599][ T8620] RAX: ffffffffffffffda RBX: 00007f143fbb6080 RCX: 00007f143f98e929
[  267.147615][ T8620] RDX: 0000000000000000 RSI: 0000000000005408 RDI: 000000000000000a
[  267.147630][ T8620] RBP: 00007f143d7d5090 R08: 0000000000000000 R09: 0000000000000000
[  267.147644][ T8620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  267.147658][ T8620] R13: 0000000000000000 R14: 00007f143fbb6080 R15: 00007ffe5eadc538
[  267.147688][ T8620]  </TASK>
[  267.147707][ T8620] ERROR: Out of memory at tomoyo_realpath_from_path.
[  267.409456][ T8617] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  267.468810][ T8617] page_type: f5(slab)
[  267.478847][ T8617] raw: 00fff00000000040 ffff88801b442140 dead000000000122 0000000000000000
[  267.509300][ T8617] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  267.537233][ T8617] head: 00fff00000000040 ffff88801b442140 dead000000000122 0000000000000000
[  267.563189][ T8617] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  267.604717][ T8617] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  267.649699][ T8617] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  267.732971][ T8617] page dumped because: unmovable page
[  267.738419][ T8617] page_owner tracks the page as allocated
[  267.828592][ T8617] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 7721, tgid 7721 (kworker/u8:13), ts 266840262941, free_ts 264738183590
[  267.960783][ T8613] could not allocate digest TFM handle binfmt_misc
[  267.981868][ T8617]  post_alloc_hook+0x1c0/0x230
[  267.986703][ T8617]  get_page_from_freelist+0x1321/0x3890
[  268.069556][ T8617]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  268.089877][ T8617]  alloc_pages_mpol+0x1fb/0x550
[  268.094798][ T8617]  new_slab+0x23b/0x330
[  268.099068][ T8617]  ___slab_alloc+0xd9c/0x1940
[  268.153923][ T8617]  __slab_alloc.constprop.0+0x56/0xb0
[  268.159384][ T8617]  __kmalloc_node_track_caller_noprof+0x2ee/0x510
[  268.204202][ T8617]  kmalloc_reserve+0xef/0x2c0
[  268.209007][ T8617]  __alloc_skb+0x166/0x380
[  268.275709][ T8617]  nsim_dev_trap_report_work+0x2b1/0xcf0
[  268.322631][ T8617]  process_one_work+0x9cf/0x1b70
[  268.327647][ T8617]  worker_thread+0x6c8/0xf10
[  268.366605][ T8617]  kthread+0x3c2/0x780
[  268.397058][ T8617]  ret_from_fork+0x5d4/0x6f0
[  268.560073][ T8617]  ret_from_fork_asm+0x1a/0x30
[  268.748126][ T8617] page last free pid 5500 tgid 5500 stack trace:
[  268.850113][ T8617]  __free_frozen_pages+0x7fe/0x1180
[  268.855438][ T8617]  __put_partials+0x16d/0x1c0
[  268.930979][ T8617]  qlist_free_all+0x4d/0x120
[  269.239967][ T8617]  kasan_quarantine_reduce+0x195/0x1e0
[  269.271917][ T8617]  __kasan_slab_alloc+0x69/0x90
[  269.276883][ T8617]  kmem_cache_alloc_node_noprof+0x1d5/0x3b0
[  269.311883][ T8617]  __alloc_skb+0x2b2/0x380
[  269.316403][ T8617]  alloc_skb_with_frags+0xe0/0x860
[  269.363307][ T8617]  sock_alloc_send_pskb+0x7fb/0x990
[  269.399113][ T8617]  unix_dgram_sendmsg+0x41a/0x1840
[  269.425442][ T8617]  __sys_sendto+0x4a0/0x520
[  269.452574][ T8617]  __x64_sys_sendto+0xe0/0x1c0
[  269.471857][ T8617]  do_syscall_64+0xcd/0x490
[  269.498044][ T8617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.856574][ T8661] netlink: 4 bytes leftover after parsing attributes in process `syz.2.626'.
[  271.346487][ T8674] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4294967293.4294967295.4294967293), cmd(2)
[  274.272376][ T8726] netlink: 338 bytes leftover after parsing attributes in process `syz.1.637'.
[  274.335737][ T8717] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  274.356215][ T8725] netlink: 338 bytes leftover after parsing attributes in process `syz.1.637'.
[  274.370512][ T8717] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  274.388939][ T8717] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  274.408228][ T8717] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  274.481562][ T8726] netlink: 290 bytes leftover after parsing attributes in process `syz.1.637'.
[  274.586951][ T8726] veth0_macvtap: left promiscuous mode
[  274.700067][ T8725] netlink: 290 bytes leftover after parsing attributes in process `syz.1.637'.
[  274.841731][ T8725] veth0_macvtap: entered promiscuous mode
[  274.934450][ T8734] netlink: 8 bytes leftover after parsing attributes in process `syz.4.639'.
[  275.000194][ T8734] netlink: 20 bytes leftover after parsing attributes in process `syz.4.639'.
[  275.062371][ T8734] net_ratelimit: 1 callbacks suppressed
[  275.062389][ T8734] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  275.780071][ T5850] Bluetooth: hci1: command 0x0406 tx timeout
[  276.078523][ T8756] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15
[  276.421236][ T5850] Bluetooth: hci2: command 0x0c1a tx timeout
[  276.427377][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  276.433551][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  276.490208][ T8768] netlink: 8 bytes leftover after parsing attributes in process `syz.2.642'.
[  277.869751][ T8783] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4294967293.4294967295.4294967293), cmd(2)
[  278.261559][ T8766] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16
[  278.321410][ T5842] Bluetooth: hci2: unexpected event 0x02 length: 726 > 260
[  280.792078][ T8818] kafs: addr_prefs: Invalid Command
[  281.723515][ T8839] openvswitch: HfR: Dropping previously announced user features
[  282.147931][ T8845] rtc_cmos 00:00: Alarms can be up to one day in the future
[  283.035055][ T8861] netlink: zone id is out of range
[  283.131386][ T8861] netlink: zone id is out of range
[  283.275365][ T8861] netlink: zone id is out of range
[  283.380275][ T8861] netlink: zone id is out of range
[  283.447310][ T8861] netlink: zone id is out of range
[  283.598117][ T8861] netlink: zone id is out of range
[  283.740098][ T8861] netlink: zone id is out of range
[  283.830641][ T8861] netlink: zone id is out of range
[  283.836002][ T8861] netlink: zone id is out of range
[  283.959397][ T8877] FAULT_INJECTION: forcing a failure.
[  283.959397][ T8877] name fail_futex, interval 1, probability 0, space 0, times 0
[  284.030026][ T8861] netlink: zone id is out of range
[  284.192733][ T8877] CPU: 0 UID: 0 PID: 8877 Comm: syz.4.660 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  284.192768][ T8877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  284.192784][ T8877] Call Trace:
[  284.192791][ T8877]  <TASK>
[  284.192800][ T8877]  dump_stack_lvl+0x16c/0x1f0
[  284.192845][ T8877]  should_fail_ex+0x512/0x640
[  284.192887][ T8877]  get_futex_key+0x1d0/0x1540
[  284.192919][ T8877]  ? __pfx_get_futex_key+0x10/0x10
[  284.192966][ T8877]  futex_wake+0xea/0x530
[  284.193000][ T8877]  ? rcu_is_watching+0x12/0xc0
[  284.193025][ T8877]  ? __pfx_futex_wake+0x10/0x10
[  284.193063][ T8877]  ? kmem_cache_free+0x2d1/0x4d0
[  284.193096][ T8877]  ? fd_install+0x225/0x750
[  284.193126][ T8877]  ? putname+0x154/0x1a0
[  284.193154][ T8877]  do_futex+0x1e3/0x350
[  284.193183][ T8877]  ? __pfx_do_futex+0x10/0x10
[  284.193215][ T8877]  ? find_held_lock+0x2b/0x80
[  284.193240][ T8877]  __x64_sys_futex+0x1e0/0x4c0
[  284.193272][ T8877]  ? __x64_sys_openat+0x174/0x210
[  284.193300][ T8877]  ? __pfx___x64_sys_futex+0x10/0x10
[  284.193341][ T8877]  do_syscall_64+0xcd/0x490
[  284.193366][ T8877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.193391][ T8877] RIP: 0033:0x7f1b0ed8e929
[  284.193410][ T8877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  284.193434][ T8877] RSP: 002b:00007f1b0fcaf0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  284.193457][ T8877] RAX: ffffffffffffffda RBX: 00007f1b0efb5fa8 RCX: 00007f1b0ed8e929
[  284.193473][ T8877] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1b0efb5fac
[  284.193489][ T8877] RBP: 00007f1b0efb5fa0 R08: 00007f1b0fcb0000 R09: 0000000000000000
[  284.193504][ T8877] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f1b0efb5fac
[  284.193519][ T8877] R13: 0000000000000000 R14: 00007ffc39b7c350 R15: 00007ffc39b7c438
[  284.193549][ T8877]  </TASK>
[  284.387614][    C0] vkms_vblank_simulate: vblank timer overrun
[  284.801168][ T8884] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4294967293.4294967295.4294967293), cmd(2)
[  288.664517][ T8929] FAULT_INJECTION: forcing a failure.
[  288.664517][ T8929] name failslab, interval 1, probability 0, space 0, times 0
[  288.747206][ T8929] CPU: 0 UID: 0 PID: 8929 Comm: syz.3.664 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  288.747239][ T8929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  288.747254][ T8929] Call Trace:
[  288.747261][ T8929]  <TASK>
[  288.747269][ T8929]  dump_stack_lvl+0x16c/0x1f0
[  288.747311][ T8929]  should_fail_ex+0x512/0x640
[  288.747347][ T8929]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  288.747387][ T8929]  should_failslab+0xc2/0x120
[  288.747409][ T8929]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  288.747445][ T8929]  ? security_file_alloc+0x34/0x2b0
[  288.747481][ T8929]  security_file_alloc+0x34/0x2b0
[  288.747513][ T8929]  init_file+0x93/0x4c0
[  288.747535][ T8929]  alloc_empty_file+0x73/0x1e0
[  288.747561][ T8929]  path_openat+0xda/0x2cb0
[  288.747593][ T8929]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.747655][ T8929]  ? __pfx_path_openat+0x10/0x10
[  288.747693][ T8929]  ? __lock_acquire+0xb8a/0x1c90
[  288.747729][ T8929]  do_filp_open+0x20b/0x470
[  288.747765][ T8929]  ? __pfx_do_filp_open+0x10/0x10
[  288.747832][ T8929]  ? alloc_fd+0x471/0x7d0
[  288.747870][ T8929]  do_sys_openat2+0x11b/0x1d0
[  288.747894][ T8929]  ? __pfx_do_sys_openat2+0x10/0x10
[  288.747918][ T8929]  ? fput+0x70/0xf0
[  288.747938][ T8929]  ? __sys_connect+0xe0/0x160
[  288.747978][ T8929]  __x64_sys_openat+0x174/0x210
[  288.748003][ T8929]  ? __pfx___x64_sys_openat+0x10/0x10
[  288.748040][ T8929]  do_syscall_64+0xcd/0x490
[  288.748063][ T8929]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.748085][ T8929] RIP: 0033:0x7f6afcf8e929
[  288.748102][ T8929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.748124][ T8929] RSP: 002b:00007f6afdde5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  288.748145][ T8929] RAX: ffffffffffffffda RBX: 00007f6afd1b6160 RCX: 00007f6afcf8e929
[  288.748160][ T8929] RDX: 0000000000000001 RSI: 0000200000000180 RDI: ffffffffffffff9c
[  288.748174][ T8929] RBP: 00007f6afd010b39 R08: 0000000000000000 R09: 0000000000000000
[  288.748188][ T8929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  288.748201][ T8929] R13: 0000000000000000 R14: 00007f6afd1b6160 R15: 00007fffe8eabc38
[  288.748229][ T8929]  </TASK>
[  289.481884][ T8936] rtc_cmos 00:00: Alarms can be up to one day in the future
[  289.690942][ T8941] netlink: 'syz.3.668': attribute type 2 has an invalid length.
[  290.381864][ T8954] openvswitch: HfR: Dropping previously announced user features
[  291.058092][ T8952] netlink: 8 bytes leftover after parsing attributes in process `syz.4.669'.
[  291.395957][ T8977] FAULT_INJECTION: forcing a failure.
[  291.395957][ T8977] name failslab, interval 1, probability 0, space 0, times 0
[  291.491326][ T8977] CPU: 0 UID: 0 PID: 8977 Comm: syz.1.674 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  291.491360][ T8977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  291.491374][ T8977] Call Trace:
[  291.491382][ T8977]  <TASK>
[  291.491391][ T8977]  dump_stack_lvl+0x16c/0x1f0
[  291.491434][ T8977]  should_fail_ex+0x512/0x640
[  291.491479][ T8977]  should_failslab+0xc2/0x120
[  291.491502][ T8977]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  291.491539][ T8977]  ? skb_clone+0x190/0x3f0
[  291.491566][ T8977]  skb_clone+0x190/0x3f0
[  291.491589][ T8977]  netlink_deliver_tap+0xabd/0xd30
[  291.491621][ T8977]  netlink_unicast+0x6b2/0x7f0
[  291.491652][ T8977]  ? __pfx_netlink_unicast+0x10/0x10
[  291.491678][ T8977]  ? genl_rcv_msg+0x4bb/0x800
[  291.491716][ T8977]  netlink_ack+0x696/0xb80
[  291.491752][ T8977]  netlink_rcv_skb+0x332/0x420
[  291.491779][ T8977]  ? __pfx_genl_rcv_msg+0x10/0x10
[  291.491812][ T8977]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  291.491852][ T8977]  ? netlink_deliver_tap+0x1ae/0xd30
[  291.491882][ T8977]  genl_rcv+0x28/0x40
[  291.491909][ T8977]  netlink_unicast+0x53d/0x7f0
[  291.491939][ T8977]  ? __pfx_netlink_unicast+0x10/0x10
[  291.491975][ T8977]  netlink_sendmsg+0x8d1/0xdd0
[  291.492007][ T8977]  ? __pfx_netlink_sendmsg+0x10/0x10
[  291.492046][ T8977]  ____sys_sendmsg+0xa95/0xc70
[  291.492077][ T8977]  ? copy_msghdr_from_user+0x10a/0x160
[  291.492114][ T8977]  ? __pfx_____sys_sendmsg+0x10/0x10
[  291.492158][ T8977]  ___sys_sendmsg+0x134/0x1d0
[  291.492198][ T8977]  ? __pfx____sys_sendmsg+0x10/0x10
[  291.492234][ T8977]  ? __lock_acquire+0x622/0x1c90
[  291.492301][ T8977]  __sys_sendmsg+0x16d/0x220
[  291.492326][ T8977]  ? __pfx___sys_sendmsg+0x10/0x10
[  291.492368][ T8977]  do_syscall_64+0xcd/0x490
[  291.492392][ T8977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.492416][ T8977] RIP: 0033:0x7f143f98e929
[  291.492434][ T8977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  291.492461][ T8977] RSP: 002b:00007f143d7f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  291.492484][ T8977] RAX: ffffffffffffffda RBX: 00007f143fbb5fa0 RCX: 00007f143f98e929
[  291.492500][ T8977] RDX: 0000000004000050 RSI: 00002000000040c0 RDI: 0000000000000003
[  291.492515][ T8977] RBP: 00007f143d7f6090 R08: 0000000000000000 R09: 0000000000000000
[  291.492529][ T8977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  291.492543][ T8977] R13: 0000000000000000 R14: 00007f143fbb5fa0 R15: 00007ffe5eadc538
[  291.492573][ T8977]  </TASK>
[  292.108190][ T8990] netlink: 28 bytes leftover after parsing attributes in process `syz.3.676'.
[  292.847393][ T9000] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17
[  293.894552][ T9005] smpboot: Booting Node 0 Processor 1 APIC 0x1
[  296.129808][   T22] IRQ fixup: irq 33 move in progress, old vector 47
[  296.138721][ T5895] smpboot: CPU 1 is now offline
[  296.638587][ T9049] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  296.678967][ T9049] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  296.713247][ T9049] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  296.738708][ T9049] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  298.136077][ T9077] random: crng reseeded on system resumption
[  298.500998][ T5842] Bluetooth: hci1: command 0x0406 tx timeout
[  298.743771][ T5850] Bluetooth: hci3: command 0x0406 tx timeout
[  298.750056][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  298.756190][ T5842] Bluetooth: hci2: command 0x0c1a tx timeout
[  299.852293][ T9108] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4294967293.4294967295.4294967293), cmd(2)
[  300.987273][ T9114] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  301.004125][ T9114] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  301.040245][ T9114] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  301.047183][ T9114] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  301.422881][ T9130] FAULT_INJECTION: forcing a failure.
[  301.422881][ T9130] name failslab, interval 1, probability 0, space 0, times 0
[  301.529974][ T9130] CPU: 0 UID: 0 PID: 9130 Comm: syz.3.705 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  301.530013][ T9130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  301.530028][ T9130] Call Trace:
[  301.530036][ T9130]  <TASK>
[  301.530044][ T9130]  dump_stack_lvl+0x16c/0x1f0
[  301.530087][ T9130]  should_fail_ex+0x512/0x640
[  301.530122][ T9130]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  301.530160][ T9130]  should_failslab+0xc2/0x120
[  301.530183][ T9130]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  301.530218][ T9130]  ? __alloc_skb+0x2b2/0x380
[  301.530259][ T9130]  __alloc_skb+0x2b2/0x380
[  301.530301][ T9130]  ? __pfx___alloc_skb+0x10/0x10
[  301.530335][ T9130]  ? __pfx___mutex_trylock_common+0x10/0x10
[  301.530374][ T9130]  ? rcu_is_watching+0x12/0xc0
[  301.530401][ T9130]  netlink_dump+0x678/0xce0
[  301.530426][ T9130]  ? __rhashtable_lookup.constprop.0+0x3a5/0x760
[  301.530452][ T9130]  ? __netlink_dump_start+0x150/0x990
[  301.530479][ T9130]  ? __pfx_netlink_dump+0x10/0x10
[  301.530501][ T9130]  ? __pfx___mutex_lock+0x10/0x10
[  301.530543][ T9130]  __netlink_dump_start+0x6d6/0x990
[  301.530572][ T9130]  ? __pfx_neightbl_dump_info+0x10/0x10
[  301.530599][ T9130]  rtnetlink_rcv_msg+0xb3e/0xe90
[  301.530623][ T9130]  ? __pfx_neightbl_dump_info+0x10/0x10
[  301.530652][ T9130]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  301.530676][ T9130]  ? __pfx_rtnl_dumpit+0x10/0x10
[  301.530707][ T9130]  ? __pfx_neightbl_dump_info+0x10/0x10
[  301.530739][ T9130]  ? ref_tracker_free+0x37c/0x830
[  301.530779][ T9130]  netlink_rcv_skb+0x155/0x420
[  301.530806][ T9130]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  301.530832][ T9130]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  301.530870][ T9130]  ? netlink_deliver_tap+0x1ae/0xd30
[  301.530902][ T9130]  netlink_unicast+0x53d/0x7f0
[  301.530932][ T9130]  ? __pfx_netlink_unicast+0x10/0x10
[  301.530968][ T9130]  netlink_sendmsg+0x8d1/0xdd0
[  301.531000][ T9130]  ? __pfx_netlink_sendmsg+0x10/0x10
[  301.531044][ T9130]  ____sys_sendmsg+0xa95/0xc70
[  301.531075][ T9130]  ? copy_msghdr_from_user+0x10a/0x160
[  301.531112][ T9130]  ? __pfx_____sys_sendmsg+0x10/0x10
[  301.531146][ T9130]  ? kfree+0x24f/0x4d0
[  301.531171][ T9130]  ? __pfx__kstrtoull+0x10/0x10
[  301.531207][ T9130]  ___sys_sendmsg+0x134/0x1d0
[  301.531246][ T9130]  ? __pfx____sys_sendmsg+0x10/0x10
[  301.531312][ T9130]  ? __pfx___might_resched+0x10/0x10
[  301.531343][ T9130]  __sys_sendmmsg+0x200/0x420
[  301.531369][ T9130]  ? __pfx___sys_sendmmsg+0x10/0x10
[  301.531401][ T9130]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  301.531436][ T9130]  ? fput+0x70/0xf0
[  301.531458][ T9130]  ? ksys_write+0x1ac/0x250
[  301.531491][ T9130]  ? __pfx_ksys_write+0x10/0x10
[  301.531529][ T9130]  __x64_sys_sendmmsg+0x9c/0x100
[  301.531550][ T9130]  ? lockdep_hardirqs_on+0x7c/0x110
[  301.531586][ T9130]  do_syscall_64+0xcd/0x490
[  301.531610][ T9130]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  301.531634][ T9130] RIP: 0033:0x7f6afcf8e929
[  301.531652][ T9130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  301.531675][ T9130] RSP: 002b:00007f6afde27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  301.531698][ T9130] RAX: ffffffffffffffda RBX: 00007f6afd1b5fa0 RCX: 00007f6afcf8e929
[  301.531714][ T9130] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003
[  301.531729][ T9130] RBP: 00007f6afde27090 R08: 0000000000000000 R09: 0000000000000000
[  301.531743][ T9130] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002
[  301.531757][ T9130] R13: 0000000000000000 R14: 00007f6afd1b5fa0 R15: 00007fffe8eabc38
[  301.531787][ T9130]  </TASK>
[  301.890353][    C0] vkms_vblank_simulate: vblank timer overrun
[  301.964600][ T9133] Invalid ELF header magic: != ELF
[  302.370149][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  302.557601][ T9139] netlink: 326 bytes leftover after parsing attributes in process `syz.4.706'.
[  303.060248][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  303.066401][ T5842] Bluetooth: hci3: command 0x0406 tx timeout
[  303.073407][ T5850] Bluetooth: hci0: command 0x0406 tx timeout
[  305.043678][ T9182] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  305.120413][ T9182] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  307.712868][ T9221] FAULT_INJECTION: forcing a failure.
[  307.712868][ T9221] name failslab, interval 1, probability 0, space 0, times 0
[  307.950001][ T9221] CPU: 0 UID: 0 PID: 9221 Comm: syz.4.719 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  307.950034][ T9221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  307.950058][ T9221] Call Trace:
[  307.950069][ T9221]  <TASK>
[  307.950078][ T9221]  dump_stack_lvl+0x16c/0x1f0
[  307.950120][ T9221]  should_fail_ex+0x512/0x640
[  307.950156][ T9221]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  307.950196][ T9221]  should_failslab+0xc2/0x120
[  307.950217][ T9221]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  307.950253][ T9221]  ? __thp_vma_allowable_orders+0x1c5/0xb10
[  307.950278][ T9221]  ? ptlock_alloc+0x1f/0x70
[  307.950319][ T9221]  ptlock_alloc+0x1f/0x70
[  307.950348][ T9221]  pte_alloc_one+0x82/0x3a0
[  307.950385][ T9221]  __handle_mm_fault+0x3a68/0x5490
[  307.950423][ T9221]  ? __pfx___handle_mm_fault+0x10/0x10
[  307.950452][ T9221]  ? __pfx_mt_find+0x10/0x10
[  307.950493][ T9221]  ? find_vma+0xbf/0x140
[  307.950516][ T9221]  ? __pfx_find_vma+0x10/0x10
[  307.950542][ T9221]  handle_mm_fault+0x589/0xd10
[  307.950573][ T9221]  ? __pkru_allows_pkey+0x21/0xb0
[  307.950606][ T9221]  do_user_addr_fault+0x7a6/0x1370
[  307.950641][ T9221]  ? rcu_is_watching+0x12/0xc0
[  307.950667][ T9221]  exc_page_fault+0x5c/0xb0
[  307.950703][ T9221]  asm_exc_page_fault+0x26/0x30
[  307.950726][ T9221] RIP: 0010:copy_iovec_from_user+0x84/0x170
[  307.950765][ T9221] Code: e8 21 75 e5 fc 4d 85 ff 0f 85 e5 00 00 00 e8 63 7a e5 fc 0f 01 cb 0f ae e8 49 bf 00 00 00 00 00 fc ff df e8 4e 7a e5 fc 31 db <48> 8b 45 08 31 ff 89 de 49 89 c6 e8 7c 75 e5 fc 85 db 0f 85 aa 00
[  307.950788][ T9221] RSP: 0018:ffffc9000b1878f0 EFLAGS: 00050246
[  307.950807][ T9221] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff84d60e9f
[  307.950822][ T9221] RDX: ffff888026d0da00 RSI: ffffffff84d60ec2 RDI: 0000000000000006
[  307.950837][ T9221] RBP: 0000000000000000 R08: 0000000000000006 R09: 0000000000000000
[  307.950852][ T9221] R10: 0000000000000070 R11: 0000000000000001 R12: ffffc9000b187b60
[  307.950866][ T9221] R13: 0000000000000007 R14: 00007ffffffff000 R15: dffffc0000000000
[  307.950889][ T9221]  ? copy_iovec_from_user+0x5f/0x170
[  307.950925][ T9221]  ? copy_iovec_from_user+0x82/0x170
[  307.950970][ T9221]  iovec_from_user+0xa2/0x140
[  307.950996][ T9221]  __import_iovec+0x88/0x650
[  307.951030][ T9221]  import_iovec+0x86/0xb0
[  307.951056][ T9221]  copy_msghdr_from_user+0xf9/0x160
[  307.951095][ T9221]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  307.951139][ T9221]  ? __pfx__kstrtoull+0x10/0x10
[  307.951174][ T9221]  ___sys_sendmsg+0xfe/0x1d0
[  307.951213][ T9221]  ? __pfx____sys_sendmsg+0x10/0x10
[  307.951265][ T9221]  ? find_held_lock+0x2b/0x80
[  307.951312][ T9221]  __sys_sendmmsg+0x200/0x420
[  307.951338][ T9221]  ? __pfx___sys_sendmmsg+0x10/0x10
[  307.951370][ T9221]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  307.951405][ T9221]  ? fput+0x70/0xf0
[  307.951426][ T9221]  ? ksys_write+0x1ac/0x250
[  307.951458][ T9221]  ? __pfx_ksys_write+0x10/0x10
[  307.951496][ T9221]  __x64_sys_sendmmsg+0x9c/0x100
[  307.951518][ T9221]  ? lockdep_hardirqs_on+0x7c/0x110
[  307.951553][ T9221]  do_syscall_64+0xcd/0x490
[  307.951577][ T9221]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.951600][ T9221] RIP: 0033:0x7f1b0ed8e929
[  307.951617][ T9221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  307.951640][ T9221] RSP: 002b:00007f1b0fcaf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  307.951661][ T9221] RAX: ffffffffffffffda RBX: 00007f1b0efb5fa0 RCX: 00007f1b0ed8e929
[  307.951677][ T9221] RDX: 00000000739618ce RSI: 0000200000000140 RDI: 0000000000000003
[  307.951691][ T9221] RBP: 00007f1b0fcaf090 R08: 0000000000000000 R09: 0000000000000000
[  307.951706][ T9221] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001
[  307.951720][ T9221] R13: 0000000000000000 R14: 00007f1b0efb5fa0 R15: 00007ffc39b7c438
[  307.951750][ T9221]  </TASK>
[  309.998319][ T9236] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  310.085592][ T9236] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  310.193283][ T9236] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  310.293250][ T9236] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  312.100126][ T5850] Bluetooth: hci1: command 0x0406 tx timeout
[  312.186024][ T5850] Bluetooth: hci0: command 0x0406 tx timeout
[  312.260488][ T5850] Bluetooth: hci3: command 0x0406 tx timeout
[  312.339914][ T5850] Bluetooth: hci2: command 0x0c1a tx timeout
[  313.193659][ T9284] FAULT_INJECTION: forcing a failure.
[  313.193659][ T9284] name failslab, interval 1, probability 0, space 0, times 0
[  313.306006][ T9284] CPU: 0 UID: 0 PID: 9284 Comm: syz.3.732 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  313.306039][ T9284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  313.306053][ T9284] Call Trace:
[  313.306061][ T9284]  <TASK>
[  313.306070][ T9284]  dump_stack_lvl+0x16c/0x1f0
[  313.306112][ T9284]  should_fail_ex+0x512/0x640
[  313.306147][ T9284]  ? __kvmalloc_node_noprof+0x124/0x620
[  313.306184][ T9284]  should_failslab+0xc2/0x120
[  313.306206][ T9284]  __kvmalloc_node_noprof+0x137/0x620
[  313.306246][ T9284]  ? lockdep_init_map_type+0x5c/0x280
[  313.306278][ T9284]  ? alloc_netdev_mqs+0xcf8/0x1570
[  313.306307][ T9284]  ? alloc_netdev_mqs+0xcf8/0x1570
[  313.306329][ T9284]  alloc_netdev_mqs+0xcf8/0x1570
[  313.306359][ T9284]  internal_dev_create+0x8a/0x520
[  313.306405][ T9284]  ovs_vport_add+0x147/0x4d0
[  313.306430][ T9284]  new_vport+0x16/0x1d0
[  313.306463][ T9284]  ovs_dp_cmd_new+0x6ba/0xe60
[  313.306506][ T9284]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  313.306547][ T9284]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  313.306581][ T9284]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  313.306621][ T9284]  genl_family_rcv_msg_doit+0x206/0x2f0
[  313.306655][ T9284]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  313.306686][ T9284]  ? trace_cap_capable+0x18d/0x200
[  313.306716][ T9284]  ? bpf_lsm_capable+0x9/0x10
[  313.306744][ T9284]  ? security_capable+0x7e/0x260
[  313.306767][ T9284]  ? ns_capable+0xd7/0x110
[  313.306793][ T9284]  genl_rcv_msg+0x55c/0x800
[  313.306827][ T9284]  ? __pfx_genl_rcv_msg+0x10/0x10
[  313.306859][ T9284]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  313.306904][ T9284]  netlink_rcv_skb+0x155/0x420
[  313.306931][ T9284]  ? __pfx_genl_rcv_msg+0x10/0x10
[  313.306963][ T9284]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  313.307003][ T9284]  ? netlink_deliver_tap+0x1ae/0xd30
[  313.307032][ T9284]  genl_rcv+0x28/0x40
[  313.307059][ T9284]  netlink_unicast+0x53d/0x7f0
[  313.307089][ T9284]  ? __pfx_netlink_unicast+0x10/0x10
[  313.307124][ T9284]  netlink_sendmsg+0x8d1/0xdd0
[  313.307155][ T9284]  ? __pfx_netlink_sendmsg+0x10/0x10
[  313.307194][ T9284]  ____sys_sendmsg+0xa95/0xc70
[  313.307228][ T9284]  ? copy_msghdr_from_user+0x10a/0x160
[  313.307265][ T9284]  ? __pfx_____sys_sendmsg+0x10/0x10
[  313.307307][ T9284]  ___sys_sendmsg+0x134/0x1d0
[  313.307345][ T9284]  ? __pfx____sys_sendmsg+0x10/0x10
[  313.307380][ T9284]  ? __lock_acquire+0x622/0x1c90
[  313.307444][ T9284]  __sys_sendmsg+0x16d/0x220
[  313.307465][ T9284]  ? __pfx___sys_sendmsg+0x10/0x10
[  313.307506][ T9284]  do_syscall_64+0xcd/0x490
[  313.307529][ T9284]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.307553][ T9284] RIP: 0033:0x7f6afcf8e929
[  313.307579][ T9284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  313.307602][ T9284] RSP: 002b:00007f6afde27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  313.307623][ T9284] RAX: ffffffffffffffda RBX: 00007f6afd1b5fa0 RCX: 00007f6afcf8e929
[  313.307639][ T9284] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000007
[  313.307653][ T9284] RBP: 00007f6afde27090 R08: 0000000000000000 R09: 0000000000000000
[  313.307667][ T9284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  313.307681][ T9284] R13: 0000000000000000 R14: 00007f6afd1b5fa0 R15: 00007fffe8eabc38
[  313.307710][ T9284]  </TASK>
[  314.169363][ T5850] Bluetooth: hci0: unexpected event for opcode 0x7c89
[  319.712124][ T9341] netlink: 186 bytes leftover after parsing attributes in process `syz.4.744'.
[  319.779425][ T9341] netlink: 186 bytes leftover after parsing attributes in process `syz.4.744'.
[  320.533874][ T9357] FAULT_INJECTION: forcing a failure.
[  320.533874][ T9357] name fail_futex, interval 1, probability 0, space 0, times 0
[  320.578520][ T9357] CPU: 0 UID: 0 PID: 9357 Comm: syz.4.748 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  320.578554][ T9357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  320.578569][ T9357] Call Trace:
[  320.578577][ T9357]  <TASK>
[  320.578585][ T9357]  dump_stack_lvl+0x16c/0x1f0
[  320.578630][ T9357]  should_fail_ex+0x512/0x640
[  320.578672][ T9357]  get_futex_key+0x1d0/0x1540
[  320.578707][ T9357]  ? __pfx_get_futex_key+0x10/0x10
[  320.578734][ T9357]  ? arch_scale_cpu_capacity+0x15/0xb0
[  320.578770][ T9357]  ? dl_scaled_delta_exec+0xdb/0x2e0
[  320.578812][ T9357]  futex_wait_setup+0x9d/0x550
[  320.578855][ T9357]  __futex_wait+0x194/0x2f0
[  320.578891][ T9357]  ? __pfx___futex_wait+0x10/0x10
[  320.578924][ T9357]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  320.578960][ T9357]  ? lockdep_hardirqs_on+0x7c/0x110
[  320.579001][ T9357]  ? __pfx_futex_wake_mark+0x10/0x10
[  320.579053][ T9357]  futex_wait+0xe8/0x380
[  320.579087][ T9357]  ? __pfx_futex_wait+0x10/0x10
[  320.579128][ T9357]  ? errseq_sample+0x53/0x70
[  320.579149][ T9357]  ? file_init_path+0x4fe/0x760
[  320.579180][ T9357]  do_futex+0x229/0x350
[  320.579209][ T9357]  ? __pfx_do_futex+0x10/0x10
[  320.579238][ T9357]  ? fd_install+0x225/0x750
[  320.579276][ T9357]  __x64_sys_futex+0x1e0/0x4c0
[  320.579306][ T9357]  ? __sys_socket+0xac/0x260
[  320.579338][ T9357]  ? __pfx___x64_sys_futex+0x10/0x10
[  320.579368][ T9357]  ? xfd_validate_state+0x61/0x180
[  320.579398][ T9357]  ? __sys_setsockopt+0x140/0x1a0
[  320.579444][ T9357]  do_syscall_64+0xcd/0x490
[  320.579468][ T9357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  320.579499][ T9357] RIP: 0033:0x7f1b0ed8e929
[  320.579517][ T9357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  320.579541][ T9357] RSP: 002b:00007f1b0fcaf0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  320.579564][ T9357] RAX: ffffffffffffffda RBX: 00007f1b0efb5fa8 RCX: 00007f1b0ed8e929
[  320.579581][ T9357] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1b0efb5fa8
[  320.579596][ T9357] RBP: 00007f1b0efb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  320.579610][ T9357] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f1b0efb5fac
[  320.579626][ T9357] R13: 0000000000000000 R14: 00007ffc39b7c350 R15: 00007ffc39b7c438
[  320.579655][ T9357]  </TASK>
[  320.809840][    C0] vkms_vblank_simulate: vblank timer overrun
[  322.260557][ T9349] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  322.271520][ T5850] Bluetooth: hci1: command 0x0406 tx timeout
[  322.480859][ T9354] Console: switching to colour VGA+ 80x25
[  322.784314][ T9349] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  322.809102][ T9349] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  322.847329][ T9349] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  323.828227][ T9398] netlink: 'syz.4.755': attribute type 2 has an invalid length.
[  324.344358][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  324.822157][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  324.907893][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  324.914117][ T5850] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  325.724823][ T9421] input: f�
 as /devices/virtual/input/input18
[  326.074982][ T9427] netlink: 4 bytes leftover after parsing attributes in process `syz.3.762'.
[  326.119276][ T9427] netlink: 25 bytes leftover after parsing attributes in process `syz.3.762'.
[  326.978016][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  326.991361][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  327.043654][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  327.051414][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  327.144205][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  327.160090][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  327.172260][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  327.191479][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  327.468617][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  327.478401][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  328.293045][ T9453] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  328.332112][ T9453] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  328.364135][ T9453] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  328.391261][ T9453] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  329.780056][ T5850] Bluetooth: hci1: command 0x0406 tx timeout
[  330.204554][ T9483] netlink: 28 bytes leftover after parsing attributes in process `syz.4.774'.
[  330.266660][ T9486] netlink: 28 bytes leftover after parsing attributes in process `syz.2.773'.
[  330.343305][ T5850] Bluetooth: hci3: command 0x0406 tx timeout
[  330.349369][ T5850] Bluetooth: hci0: command 0x0406 tx timeout
[  330.421790][ T5850] Bluetooth: hci2: command 0x0c1a tx timeout
[  330.469661][ T9487] vivid-007: =================  START STATUS  =================
[  330.516917][ T9486] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  330.524627][ T9487] vivid-007: Generate PTS: true
[  330.529513][ T9487] vivid-007: Generate SCR: true
[  330.540758][ T9486] batman_adv: batadv0: Removing interface: batadv_slave_0
[  330.596765][ T9487] tpg source WxH: 320x240 (Y'CbCr)
[  330.613154][ T9486] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  330.623145][ T9487] tpg field: 1
[  330.626543][ T9487] tpg crop: (0,0)/320x240
[  330.647602][ T9486] batman_adv: batadv0: Removing interface: batadv_slave_1
[  330.702435][ T9499] netlink: 8 bytes leftover after parsing attributes in process `syz.3.777'.
[  330.730514][ T9487] tpg compose: (0,0)/320x240
[  330.753582][ T9487] tpg colorspace: 8
[  330.757448][ T9487] tpg transfer function: 0/0
[  330.798226][ T9487] tpg Y'CbCr encoding: 0/0
[  330.812524][ T9487] tpg quantization: 0/0
[  330.817620][ T9499] FAULT_INJECTION: forcing a failure.
[  330.817620][ T9499] name failslab, interval 1, probability 0, space 0, times 0
[  330.843722][ T9487] tpg RGB range: 0/2
[  330.848117][ T9487] vivid-007: ==================  END STATUS  ==================
[  330.866867][ T9499] CPU: 0 UID: 0 PID: 9499 Comm: syz.3.777 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  330.866898][ T9499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  330.866913][ T9499] Call Trace:
[  330.866920][ T9499]  <TASK>
[  330.866929][ T9499]  dump_stack_lvl+0x16c/0x1f0
[  330.866970][ T9499]  should_fail_ex+0x512/0x640
[  330.867011][ T9499]  should_failslab+0xc2/0x120
[  330.867033][ T9499]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  330.867070][ T9499]  ? skb_clone+0x190/0x3f0
[  330.867096][ T9499]  skb_clone+0x190/0x3f0
[  330.867119][ T9499]  netlink_deliver_tap+0xabd/0xd30
[  330.867151][ T9499]  netlink_unicast+0x5df/0x7f0
[  330.867181][ T9499]  ? __pfx_netlink_unicast+0x10/0x10
[  330.867217][ T9499]  netlink_sendmsg+0x8d1/0xdd0
[  330.867248][ T9499]  ? __pfx_netlink_sendmsg+0x10/0x10
[  330.867287][ T9499]  ____sys_sendmsg+0xa95/0xc70
[  330.867317][ T9499]  ? copy_msghdr_from_user+0x10a/0x160
[  330.867358][ T9499]  ? __pfx_____sys_sendmsg+0x10/0x10
[  330.867401][ T9499]  ___sys_sendmsg+0x134/0x1d0
[  330.867441][ T9499]  ? __pfx____sys_sendmsg+0x10/0x10
[  330.867476][ T9499]  ? __lock_acquire+0x622/0x1c90
[  330.867543][ T9499]  __sys_sendmsg+0x16d/0x220
[  330.867566][ T9499]  ? __pfx___sys_sendmsg+0x10/0x10
[  330.867607][ T9499]  do_syscall_64+0xcd/0x490
[  330.867631][ T9499]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.867655][ T9499] RIP: 0033:0x7f6afcf8e929
[  330.867673][ T9499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  330.867695][ T9499] RSP: 002b:00007f6afde27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  330.867718][ T9499] RAX: ffffffffffffffda RBX: 00007f6afd1b5fa0 RCX: 00007f6afcf8e929
[  330.867734][ T9499] RDX: 0000000000040844 RSI: 0000200000001f80 RDI: 0000000000000003
[  330.867749][ T9499] RBP: 00007f6afde27090 R08: 0000000000000000 R09: 0000000000000000
[  330.867763][ T9499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  330.867783][ T9499] R13: 0000000000000000 R14: 00007f6afd1b5fa0 R15: 00007fffe8eabc38
[  330.867812][ T9499]  </TASK>
[  331.075172][    C0] vkms_vblank_simulate: vblank timer overrun
[  331.196166][ T9506] netlink: 8 bytes leftover after parsing attributes in process `syz.3.779'.
[  333.095117][ T9536] FAULT_INJECTION: forcing a failure.
[  333.095117][ T9536] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  333.175585][ T9536] CPU: 0 UID: 0 PID: 9536 Comm: syz.2.787 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  333.175619][ T9536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  333.175633][ T9536] Call Trace:
[  333.175641][ T9536]  <TASK>
[  333.175650][ T9536]  dump_stack_lvl+0x16c/0x1f0
[  333.175692][ T9536]  should_fail_ex+0x512/0x640
[  333.175734][ T9536]  _copy_from_iter+0x29f/0x16f0
[  333.175774][ T9536]  ? __alloc_skb+0x200/0x380
[  333.175812][ T9536]  ? __pfx__copy_from_iter+0x10/0x10
[  333.175853][ T9536]  ? __lock_acquire+0xb8a/0x1c90
[  333.175890][ T9536]  netlink_sendmsg+0x829/0xdd0
[  333.175924][ T9536]  ? __pfx_netlink_sendmsg+0x10/0x10
[  333.175966][ T9536]  ____sys_sendmsg+0xa95/0xc70
[  333.175995][ T9536]  ? copy_msghdr_from_user+0x10a/0x160
[  333.176037][ T9536]  ? __pfx_____sys_sendmsg+0x10/0x10
[  333.176079][ T9536]  ___sys_sendmsg+0x134/0x1d0
[  333.176118][ T9536]  ? __pfx____sys_sendmsg+0x10/0x10
[  333.176154][ T9536]  ? __lock_acquire+0x622/0x1c90
[  333.176219][ T9536]  __sys_sendmsg+0x16d/0x220
[  333.176241][ T9536]  ? __pfx___sys_sendmsg+0x10/0x10
[  333.176284][ T9536]  do_syscall_64+0xcd/0x490
[  333.176308][ T9536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.176335][ T9536] RIP: 0033:0x7fadbdd8e929
[  333.176356][ T9536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  333.176380][ T9536] RSP: 002b:00007fadbeb35038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  333.176405][ T9536] RAX: ffffffffffffffda RBX: 00007fadbdfb6080 RCX: 00007fadbdd8e929
[  333.176421][ T9536] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000003
[  333.176436][ T9536] RBP: 00007fadbeb35090 R08: 0000000000000000 R09: 0000000000000000
[  333.176451][ T9536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  333.176465][ T9536] R13: 0000000000000001 R14: 00007fadbdfb6080 R15: 00007ffc366ef5e8
[  333.176494][ T9536]  </TASK>
[  333.538584][ T9544] ima: policy update failed
[  333.548405][ T9544] FAULT_INJECTION: forcing a failure.
[  333.548405][ T9544] name failslab, interval 1, probability 0, space 0, times 0
[  333.561335][ T9544] CPU: 0 UID: 0 PID: 9544 Comm: syz.1.789 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  333.561367][ T9544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  333.561392][ T9544] Call Trace:
[  333.561401][ T9544]  <TASK>
[  333.561410][ T9544]  dump_stack_lvl+0x16c/0x1f0
[  333.561454][ T9544]  should_fail_ex+0x512/0x640
[  333.561491][ T9544]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  333.561537][ T9544]  should_failslab+0xc2/0x120
[  333.561560][ T9544]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  333.561597][ T9544]  ? finish_task_switch.isra.0+0x21c/0xc10
[  333.561622][ T9544]  ? vm_area_dup+0x27/0x8d0
[  333.561658][ T9544]  vm_area_dup+0x27/0x8d0
[  333.561693][ T9544]  __split_vma+0x18e/0x1070
[  333.561728][ T9544]  ? __schedule+0x1181/0x5de0
[  333.561764][ T9544]  ? __pfx___split_vma+0x10/0x10
[  333.561814][ T9544]  vma_modify+0xee1/0x20a0
[  333.561854][ T9544]  ? find_held_lock+0x2b/0x80
[  333.561876][ T9544]  ? __pfx_vma_modify+0x10/0x10
[  333.561919][ T9544]  vma_modify_flags+0x212/0x2d0
[  333.561955][ T9544]  ? __pfx_vma_modify_flags+0x10/0x10
[  333.561989][ T9544]  ? mtree_range_walk+0x718/0xc00
[  333.562037][ T9544]  ? mas_walk+0x6a6/0x910
[  333.562075][ T9544]  mlock_fixup+0x27c/0xe50
[  333.562114][ T9544]  apply_vma_lock_flags+0x261/0x390
[  333.562153][ T9544]  ? __pfx_apply_vma_lock_flags+0x10/0x10
[  333.562189][ T9544]  ? __pfx___might_resched+0x10/0x10
[  333.562222][ T9544]  ? __pfx_down_write_killable+0x10/0x10
[  333.562251][ T9544]  ? do_futex+0x122/0x350
[  333.562284][ T9544]  do_mlock+0x2ac/0x810
[  333.562317][ T9544]  ? do_unlinkat+0x159/0x6a0
[  333.562355][ T9544]  ? __pfx_do_mlock+0x10/0x10
[  333.562388][ T9544]  ? __x64_sys_futex+0x1e0/0x4c0
[  333.562416][ T9544]  ? __x64_sys_futex+0x1e9/0x4c0
[  333.562456][ T9544]  ? xfd_validate_state+0x61/0x180
[  333.562496][ T9544]  __x64_sys_mlock+0x59/0x80
[  333.562537][ T9544]  do_syscall_64+0xcd/0x490
[  333.562561][ T9544]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.562586][ T9544] RIP: 0033:0x7f143f98e929
[  333.562606][ T9544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  333.562631][ T9544] RSP: 002b:00007f143d7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  333.562653][ T9544] RAX: ffffffffffffffda RBX: 00007f143fbb5fa0 RCX: 00007f143f98e929
[  333.562670][ T9544] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000009
[  333.562685][ T9544] RBP: 00007f143fa10b39 R08: 0000000000000000 R09: 0000000000000000
[  333.562700][ T9544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  333.562715][ T9544] R13: 0000000000000000 R14: 00007f143fbb5fa0 R15: 00007ffe5eadc538
[  333.562745][ T9544]  </TASK>
[  333.868667][   T30] audit: type=1802 audit(4294967321.530:11): pid=9544 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.789" res=0 errno=0
[  335.086097][ T9560] netlink: 4 bytes leftover after parsing attributes in process `syz.4.796'.
[  335.430180][ T9564] binder: 9562:9564 ioctl 40046210 0 returned -14
[  335.691673][ T9565] netlink: 338 bytes leftover after parsing attributes in process `syz.4.798'.
[  335.740492][ T9565] netlink: 338 bytes leftover after parsing attributes in process `syz.4.798'.
[  336.685788][ T9580] TCP: TCP_TX_DELAY enabled
[  337.556925][ T5850] Bluetooth: hci1: unexpected event for opcode 0x7c89
[  338.610858][ T9617] netlink: 25 bytes leftover after parsing attributes in process `syz.4.810'.
[  340.234079][ T5850] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  340.312253][ T9625] netlink: 198 bytes leftover after parsing attributes in process `syz.4.813'.
[  340.914819][ T9650] FAULT_INJECTION: forcing a failure.
[  340.914819][ T9650] name failslab, interval 1, probability 0, space 0, times 0
[  340.955190][ T5850] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  341.001454][ T9650] CPU: 0 UID: 0 PID: 9650 Comm: syz.4.821 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  341.001487][ T9650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  341.001502][ T9650] Call Trace:
[  341.001509][ T9650]  <TASK>
[  341.001519][ T9650]  dump_stack_lvl+0x16c/0x1f0
[  341.001561][ T9650]  should_fail_ex+0x512/0x640
[  341.001597][ T9650]  ? fs_reclaim_acquire+0xae/0x150
[  341.001626][ T9650]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  341.001660][ T9650]  should_failslab+0xc2/0x120
[  341.001683][ T9650]  __kmalloc_noprof+0xd2/0x510
[  341.001725][ T9650]  tomoyo_realpath_from_path+0xc2/0x6e0
[  341.001767][ T9650]  tomoyo_check_open_permission+0x2ab/0x3c0
[  341.001797][ T9650]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  341.001855][ T9650]  ? do_raw_spin_lock+0x12c/0x2b0
[  341.001899][ T9650]  tomoyo_file_open+0x6b/0x90
[  341.001938][ T9650]  security_file_open+0x84/0x1e0
[  341.001970][ T9650]  do_dentry_open+0x596/0x1c10
[  341.002014][ T9650]  vfs_open+0x82/0x3f0
[  341.002042][ T9650]  path_openat+0x1de4/0x2cb0
[  341.002091][ T9650]  ? __pfx_path_openat+0x10/0x10
[  341.002126][ T9650]  ? __lock_acquire+0xb8a/0x1c90
[  341.002160][ T9650]  do_filp_open+0x20b/0x470
[  341.002194][ T9650]  ? __pfx_do_filp_open+0x10/0x10
[  341.002249][ T9650]  ? alloc_fd+0x471/0x7d0
[  341.002288][ T9650]  do_sys_openat2+0x11b/0x1d0
[  341.002314][ T9650]  ? __pfx_do_sys_openat2+0x10/0x10
[  341.002344][ T9650]  ? __fget_files+0x20e/0x3c0
[  341.002380][ T9650]  __x64_sys_openat+0x174/0x210
[  341.002407][ T9650]  ? __pfx___x64_sys_openat+0x10/0x10
[  341.002433][ T9650]  ? ksys_write+0x1ac/0x250
[  341.002481][ T9650]  do_syscall_64+0xcd/0x490
[  341.002506][ T9650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.002530][ T9650] RIP: 0033:0x7f1b0ed8e929
[  341.002548][ T9650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.002571][ T9650] RSP: 002b:00007f1b0fcaf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  341.002593][ T9650] RAX: ffffffffffffffda RBX: 00007f1b0efb5fa0 RCX: 00007f1b0ed8e929
[  341.002609][ T9650] RDX: 0000000000000100 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  341.002624][ T9650] RBP: 00007f1b0fcaf090 R08: 0000000000000000 R09: 0000000000000000
[  341.002639][ T9650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  341.002653][ T9650] R13: 0000000000000000 R14: 00007f1b0efb5fa0 R15: 00007ffc39b7c438
[  341.002683][ T9650]  </TASK>
[  341.003830][ T9650] ERROR: Out of memory at tomoyo_realpath_from_path.
[  342.067711][ T9659] FAULT_INJECTION: forcing a failure.
[  342.067711][ T9659] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  342.179371][ T9659] CPU: 0 UID: 0 PID: 9659 Comm: syz.2.823 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  342.179404][ T9659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  342.179418][ T9659] Call Trace:
[  342.179426][ T9659]  <TASK>
[  342.179437][ T9659]  dump_stack_lvl+0x16c/0x1f0
[  342.179479][ T9659]  should_fail_ex+0x512/0x640
[  342.179518][ T9659]  _copy_from_user+0x2e/0xd0
[  342.179554][ T9659]  copy_msghdr_from_user+0x98/0x160
[  342.179591][ T9659]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  342.179632][ T9659]  ? kfree+0x24f/0x4d0
[  342.179658][ T9659]  ? __pfx__kstrtoull+0x10/0x10
[  342.179691][ T9659]  ___sys_sendmsg+0xfe/0x1d0
[  342.179729][ T9659]  ? __pfx____sys_sendmsg+0x10/0x10
[  342.179799][ T9659]  ? __pfx___might_resched+0x10/0x10
[  342.179830][ T9659]  __sys_sendmmsg+0x200/0x420
[  342.179855][ T9659]  ? __pfx___sys_sendmmsg+0x10/0x10
[  342.179887][ T9659]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  342.179922][ T9659]  ? fput+0x70/0xf0
[  342.179942][ T9659]  ? ksys_write+0x1ac/0x250
[  342.179974][ T9659]  ? __pfx_ksys_write+0x10/0x10
[  342.180016][ T9659]  __x64_sys_sendmmsg+0x9c/0x100
[  342.180037][ T9659]  ? lockdep_hardirqs_on+0x7c/0x110
[  342.180075][ T9659]  do_syscall_64+0xcd/0x490
[  342.180098][ T9659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.180123][ T9659] RIP: 0033:0x7fadbdd8e929
[  342.180141][ T9659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.180164][ T9659] RSP: 002b:00007fadbeb56038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  342.180187][ T9659] RAX: ffffffffffffffda RBX: 00007fadbdfb5fa0 RCX: 00007fadbdd8e929
[  342.180203][ T9659] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000002
[  342.180217][ T9659] RBP: 00007fadbeb56090 R08: 0000000000000000 R09: 0000000000000000
[  342.180232][ T9659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  342.180247][ T9659] R13: 0000000000000000 R14: 00007fadbdfb5fa0 R15: 00007ffc366ef5e8
[  342.180276][ T9659]  </TASK>
[  343.521684][ T9676] hub 8-0:1.0: USB hub found
[  343.594170][ T9676] hub 8-0:1.0: 1 port detected
[  345.831779][ T9706] FAULT_INJECTION: forcing a failure.
[  345.831779][ T9706] name failslab, interval 1, probability 0, space 0, times 0
[  345.888498][ T9706] CPU: 0 UID: 0 PID: 9706 Comm: syz.4.835 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  345.888531][ T9706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  345.888546][ T9706] Call Trace:
[  345.888553][ T9706]  <TASK>
[  345.888562][ T9706]  dump_stack_lvl+0x16c/0x1f0
[  345.888605][ T9706]  should_fail_ex+0x512/0x640
[  345.888645][ T9706]  should_failslab+0xc2/0x120
[  345.888667][ T9706]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  345.888704][ T9706]  ? skb_clone+0x190/0x3f0
[  345.888730][ T9706]  skb_clone+0x190/0x3f0
[  345.888752][ T9706]  netlink_deliver_tap+0xabd/0xd30
[  345.888785][ T9706]  netlink_unicast+0x5df/0x7f0
[  345.888815][ T9706]  ? __pfx_netlink_unicast+0x10/0x10
[  345.888851][ T9706]  netlink_sendmsg+0x8d1/0xdd0
[  345.888883][ T9706]  ? __pfx_netlink_sendmsg+0x10/0x10
[  345.888922][ T9706]  ____sys_sendmsg+0xa95/0xc70
[  345.888958][ T9706]  ? copy_msghdr_from_user+0x10a/0x160
[  345.888996][ T9706]  ? __pfx_____sys_sendmsg+0x10/0x10
[  345.889038][ T9706]  ___sys_sendmsg+0x134/0x1d0
[  345.889078][ T9706]  ? __pfx____sys_sendmsg+0x10/0x10
[  345.889113][ T9706]  ? __lock_acquire+0x622/0x1c90
[  345.889180][ T9706]  __sys_sendmsg+0x16d/0x220
[  345.889203][ T9706]  ? __pfx___sys_sendmsg+0x10/0x10
[  345.889244][ T9706]  do_syscall_64+0xcd/0x490
[  345.889268][ T9706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.889291][ T9706] RIP: 0033:0x7f1b0ed8e929
[  345.889310][ T9706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  345.889333][ T9706] RSP: 002b:00007f1b0fcaf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  345.889356][ T9706] RAX: ffffffffffffffda RBX: 00007f1b0efb5fa0 RCX: 00007f1b0ed8e929
[  345.889372][ T9706] RDX: 0000000000008000 RSI: 0000200000000a40 RDI: 0000000000000003
[  345.889386][ T9706] RBP: 00007f1b0fcaf090 R08: 0000000000000000 R09: 0000000000000000
[  345.889401][ T9706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  345.889415][ T9706] R13: 0000000000000000 R14: 00007f1b0efb5fa0 R15: 00007ffc39b7c438
[  345.889445][ T9706]  </TASK>
[  347.004511][ T9715] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4294967293.4294967295.4294967293), cmd(2)
[  355.368940][ T9817] FAULT_INJECTION: forcing a failure.
[  355.368940][ T9817] name failslab, interval 1, probability 0, space 0, times 0
[  355.433399][ T9817] CPU: 0 UID: 0 PID: 9817 Comm: syz.2.863 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  355.433433][ T9817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  355.433448][ T9817] Call Trace:
[  355.433456][ T9817]  <TASK>
[  355.433465][ T9817]  dump_stack_lvl+0x16c/0x1f0
[  355.433508][ T9817]  should_fail_ex+0x512/0x640
[  355.433545][ T9817]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  355.433585][ T9817]  should_failslab+0xc2/0x120
[  355.433608][ T9817]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  355.433645][ T9817]  ? rcu_is_watching+0x12/0xc0
[  355.433668][ T9817]  ? key_alloc+0x3e0/0x1390
[  355.433703][ T9817]  key_alloc+0x3e0/0x1390
[  355.433740][ T9817]  ? trace_kmalloc+0x2b/0xd0
[  355.433763][ T9817]  ? __kmalloc_noprof+0x242/0x510
[  355.433799][ T9817]  ? __pfx_key_alloc+0x10/0x10
[  355.433838][ T9817]  keyring_alloc+0x44/0xc0
[  355.433875][ T9817]  lookup_user_key+0xc51/0x1300
[  355.433909][ T9817]  ? __pfx_lookup_user_key+0x10/0x10
[  355.433945][ T9817]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  355.433978][ T9817]  ? do_futex+0x122/0x350
[  355.434014][ T9817]  keyctl_chown_key+0x1c9/0xfb0
[  355.434046][ T9817]  ? __x64_sys_futex+0x1e0/0x4c0
[  355.434074][ T9817]  ? __x64_sys_futex+0x1e9/0x4c0
[  355.434105][ T9817]  ? __pfx_keyctl_chown_key+0x10/0x10
[  355.434131][ T9817]  ? xfd_validate_state+0x61/0x180
[  355.434169][ T9817]  __do_sys_keyctl+0x283/0x590
[  355.434197][ T9817]  do_syscall_64+0xcd/0x490
[  355.434221][ T9817]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.434246][ T9817] RIP: 0033:0x7fadbdd8e929
[  355.434265][ T9817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  355.434288][ T9817] RSP: 002b:00007fadbeb35038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  355.434311][ T9817] RAX: ffffffffffffffda RBX: 00007fadbdfb6080 RCX: 00007fadbdd8e929
[  355.434328][ T9817] RDX: 0000000000000000 RSI: fffff7ffffffffff RDI: 0000000000000004
[  355.434343][ T9817] RBP: 00007fadbde10b39 R08: 0000000000000008 R09: 0000000000000000
[  355.434358][ T9817] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000
[  355.434372][ T9817] R13: 0000000000000000 R14: 00007fadbdfb6080 R15: 00007ffc366ef5e8
[  355.434402][ T9817]  </TASK>
[  356.304998][ T9822] FAULT_INJECTION: forcing a failure.
[  356.304998][ T9822] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  356.351958][ T9822] CPU: 0 UID: 0 PID: 9822 Comm: syz.2.865 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  356.351999][ T9822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  356.352014][ T9822] Call Trace:
[  356.352022][ T9822]  <TASK>
[  356.352031][ T9822]  dump_stack_lvl+0x16c/0x1f0
[  356.352074][ T9822]  should_fail_ex+0x512/0x640
[  356.352115][ T9822]  _copy_from_user+0x2e/0xd0
[  356.352153][ T9822]  copy_msghdr_from_user+0x98/0x160
[  356.352192][ T9822]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  356.352244][ T9822]  ___sys_sendmsg+0xfe/0x1d0
[  356.352283][ T9822]  ? __pfx____sys_sendmsg+0x10/0x10
[  356.352319][ T9822]  ? __lock_acquire+0x622/0x1c90
[  356.352384][ T9822]  __sys_sendmsg+0x16d/0x220
[  356.352406][ T9822]  ? __pfx___sys_sendmsg+0x10/0x10
[  356.352446][ T9822]  do_syscall_64+0xcd/0x490
[  356.352471][ T9822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.352495][ T9822] RIP: 0033:0x7fadbdd8e929
[  356.352512][ T9822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  356.352536][ T9822] RSP: 002b:00007fadbeb56038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  356.352558][ T9822] RAX: ffffffffffffffda RBX: 00007fadbdfb5fa0 RCX: 00007fadbdd8e929
[  356.352574][ T9822] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000003
[  356.352589][ T9822] RBP: 00007fadbeb56090 R08: 0000000000000000 R09: 0000000000000000
[  356.352603][ T9822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  356.352618][ T9822] R13: 0000000000000000 R14: 00007fadbdfb5fa0 R15: 00007ffc366ef5e8
[  356.352647][ T9822]  </TASK>
[  356.894326][ T9824] netlink: 8 bytes leftover after parsing attributes in process `syz.1.864'.
[  357.194552][ T9830] FAULT_INJECTION: forcing a failure.
[  357.194552][ T9830] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  357.540096][ T9830] CPU: 0 UID: 0 PID: 9830 Comm: syz.3.866 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  357.540138][ T9830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  357.540153][ T9830] Call Trace:
[  357.540160][ T9830]  <TASK>
[  357.540170][ T9830]  dump_stack_lvl+0x16c/0x1f0
[  357.540213][ T9830]  should_fail_ex+0x512/0x640
[  357.540252][ T9830]  should_fail_alloc_page+0xe7/0x130
[  357.540277][ T9830]  prepare_alloc_pages+0x3c2/0x610
[  357.540310][ T9830]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  357.540348][ T9830]  ? __pfx_stack_trace_save+0x10/0x10
[  357.540374][ T9830]  ? stack_depot_save_flags+0x28/0xa40
[  357.540413][ T9830]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  357.540451][ T9830]  ? kasan_save_stack+0x42/0x60
[  357.540484][ T9830]  ? kasan_save_stack+0x33/0x60
[  357.540518][ T9830]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  357.540552][ T9830]  ? __pmd_alloc+0xbf/0x930
[  357.540577][ T9830]  ? handle_mm_fault+0x589/0xd10
[  357.540606][ T9830]  ? exc_page_fault+0x5c/0xb0
[  357.540638][ T9830]  ? asm_exc_page_fault+0x26/0x30
[  357.540661][ T9830]  ? copy_iovec_from_user+0x84/0x170
[  357.540697][ T9830]  ? iovec_from_user+0xa2/0x140
[  357.540718][ T9830]  ? io_sqe_buffers_register+0x312/0x860
[  357.540740][ T9830]  ? __io_uring_register+0x20e5/0x2320
[  357.540774][ T9830]  ? __x64_sys_io_uring_register+0x169/0x280
[  357.540822][ T9830]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  357.540860][ T9830]  ? policy_nodemask+0xea/0x4e0
[  357.540884][ T9830]  alloc_pages_mpol+0x1fb/0x550
[  357.540907][ T9830]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  357.540927][ T9830]  ? css_rstat_updated+0x9d/0xd30
[  357.540960][ T9830]  alloc_pages_noprof+0x131/0x390
[  357.540983][ T9830]  pte_alloc_one+0x1c/0x3a0
[  357.541019][ T9830]  __pte_alloc+0x6d/0x3c0
[  357.541041][ T9830]  ? __pfx___pte_alloc+0x10/0x10
[  357.541064][ T9830]  ? _raw_spin_unlock+0x28/0x50
[  357.541096][ T9830]  ? __pmd_alloc+0x3fb/0x930
[  357.541131][ T9830]  __handle_mm_fault+0x4358/0x5490
[  357.541170][ T9830]  ? __pfx___handle_mm_fault+0x10/0x10
[  357.541199][ T9830]  ? __pfx_mt_find+0x10/0x10
[  357.541240][ T9830]  ? find_vma+0xbf/0x140
[  357.541263][ T9830]  ? __pfx_find_vma+0x10/0x10
[  357.541289][ T9830]  handle_mm_fault+0x589/0xd10
[  357.541321][ T9830]  ? __pkru_allows_pkey+0x21/0xb0
[  357.541353][ T9830]  do_user_addr_fault+0x7a6/0x1370
[  357.541388][ T9830]  ? rcu_is_watching+0x12/0xc0
[  357.541414][ T9830]  exc_page_fault+0x5c/0xb0
[  357.541450][ T9830]  asm_exc_page_fault+0x26/0x30
[  357.541472][ T9830] RIP: 0010:copy_iovec_from_user+0x84/0x170
[  357.541510][ T9830] Code: e8 21 75 e5 fc 4d 85 ff 0f 85 e5 00 00 00 e8 63 7a e5 fc 0f 01 cb 0f ae e8 49 bf 00 00 00 00 00 fc ff df e8 4e 7a e5 fc 31 db <48> 8b 45 08 31 ff 89 de 49 89 c6 e8 7c 75 e5 fc 85 db 0f 85 aa 00
[  357.541534][ T9830] RSP: 0018:ffffc90003affb98 EFLAGS: 00050246
[  357.541553][ T9830] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff84d60e9f
[  357.541568][ T9830] RDX: ffff88802c6b8000 RSI: ffffffff84d60ec2 RDI: 0000000000000006
[  357.541583][ T9830] RBP: 0000200000000000 R08: 0000000000000006 R09: 0000200000000000
[  357.541598][ T9830] R10: 0000200000000010 R11: 0000000000000001 R12: ffffc90003affcd0
[  357.541613][ T9830] R13: 0000000000000001 R14: 00007ffffffff000 R15: dffffc0000000000
[  357.541636][ T9830]  ? copy_iovec_from_user+0x5f/0x170
[  357.541673][ T9830]  ? copy_iovec_from_user+0x82/0x170
[  357.541712][ T9830]  ? copy_iovec_from_user+0x82/0x170
[  357.541752][ T9830]  iovec_from_user+0xa2/0x140
[  357.541778][ T9830]  io_sqe_buffers_register+0x312/0x860
[  357.541809][ T9830]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  357.541841][ T9830]  ? __pfx___mutex_trylock_common+0x10/0x10
[  357.541877][ T9830]  __io_uring_register+0x20e5/0x2320
[  357.541913][ T9830]  ? trace_contention_end+0xdd/0x130
[  357.541945][ T9830]  ? __pfx___io_uring_register+0x10/0x10
[  357.541977][ T9830]  ? __mutex_lock+0x1ca/0xb90
[  357.542001][ T9830]  ? __x64_sys_io_uring_register+0x159/0x280
[  357.542039][ T9830]  ? __pfx___mutex_lock+0x10/0x10
[  357.542068][ T9830]  ? __fget_files+0x20e/0x3c0
[  357.542098][ T9830]  ? fput+0x70/0xf0
[  357.542132][ T9830]  __x64_sys_io_uring_register+0x169/0x280
[  357.542171][ T9830]  do_syscall_64+0xcd/0x490
[  357.542195][ T9830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.542218][ T9830] RIP: 0033:0x7f6afcf8e929
[  357.542236][ T9830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  357.542259][ T9830] RSP: 002b:00007f6afddc4038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  357.542280][ T9830] RAX: ffffffffffffffda RBX: 00007f6afd1b6240 RCX: 00007f6afcf8e929
[  357.542295][ T9830] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  357.542310][ T9830] RBP: 00007f6afddc4090 R08: 0000000000000000 R09: 0000000000000000
[  357.542324][ T9830] R10: 0000000000001000 R11: 0000000000000246 R12: 0000000000000001
[  357.542339][ T9830] R13: 0000000000000000 R14: 00007f6afd1b6240 R15: 00007fffe8eabc38
[  357.542369][ T9830]  </TASK>
[  361.420909][ T9872] netlink: 8 bytes leftover after parsing attributes in process `syz.4.877'.
[  367.654602][ T9905] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  367.694591][ T9905] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  367.732790][ T9905] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  367.800330][ T9905] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  367.806349][ T9905] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  368.243624][ T9921] netlink: 342 bytes leftover after parsing attributes in process `syz.4.891'.
[  369.220004][ T5842] Bluetooth: hci1: command 0x0406 tx timeout
[  369.709983][ T5842] Bluetooth: hci0: command 0x0406 tx timeout
[  369.781160][ T5842] Bluetooth: hci3: command 0x0406 tx timeout
[  369.864147][ T5842] Bluetooth: hci2: command 0x0c1a tx timeout
[  370.050087][ T5850] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  371.139886][   T51] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  371.941009][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  372.223967][ T9940] syz.3.896 (9940): attempted to duplicate a private mapping with mremap.  This is not supported.
[  373.040703][ T9951] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4294967293.4294967295.4294967293), cmd(2)
[  373.077149][ T9952] ima: policy update failed
[  373.098154][   T30] audit: type=1802 audit(4294967321.970:12): pid=9952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.902" res=0 errno=0
[  373.121821][ T9952] netlink: 25 bytes leftover after parsing attributes in process `syz.4.902'.
[  374.691969][ T9973] net_ratelimit: 24 callbacks suppressed
[  374.691989][ T9973] openvswitch: netlink: Message has 1 unknown bytes.
[  375.881476][ T9988] netlink: 4 bytes leftover after parsing attributes in process `syz.1.909'.
[  377.260423][T10009] FAULT_INJECTION: forcing a failure.
[  377.260423][T10009] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  377.338904][T10003] zswap: compressor  not available
[  377.391090][T10009] CPU: 0 UID: 0 PID: 10009 Comm: syz.3.915 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  377.391124][T10009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  377.391143][T10009] Call Trace:
[  377.391151][T10009]  <TASK>
[  377.391160][T10009]  dump_stack_lvl+0x16c/0x1f0
[  377.391202][T10009]  should_fail_ex+0x512/0x640
[  377.391242][T10009]  _copy_from_user+0x2e/0xd0
[  377.391280][T10009]  copy_msghdr_from_user+0x98/0x160
[  377.391319][T10009]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  377.391372][T10009]  ___sys_sendmsg+0xfe/0x1d0
[  377.391410][T10009]  ? __pfx____sys_sendmsg+0x10/0x10
[  377.391446][T10009]  ? __lock_acquire+0x622/0x1c90
[  377.391518][T10009]  __sys_sendmsg+0x16d/0x220
[  377.391541][T10009]  ? __pfx___sys_sendmsg+0x10/0x10
[  377.391582][T10009]  do_syscall_64+0xcd/0x490
[  377.391606][T10009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.391630][T10009] RIP: 0033:0x7f6afcf8e929
[  377.391648][T10009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  377.391671][T10009] RSP: 002b:00007f6afde27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  377.391693][T10009] RAX: ffffffffffffffda RBX: 00007f6afd1b5fa0 RCX: 00007f6afcf8e929
[  377.391709][T10009] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  377.391723][T10009] RBP: 00007f6afde27090 R08: 0000000000000000 R09: 0000000000000000
[  377.391738][T10009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  377.391752][T10009] R13: 0000000000000000 R14: 00007f6afd1b5fa0 R15: 00007fffe8eabc38
[  377.391781][T10009]  </TASK>
[  377.561760][    C0] vkms_vblank_simulate: vblank timer overrun
[  379.364777][   T51] Bluetooth: hci2: unexpected event for opcode 0x7c89
[  380.142069][T10037] ima: policy update failed
[  380.146743][   T30] audit: type=1802 audit(4294967329.020:13): pid=10037 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.924" res=0 errno=0
[  380.280321][T10040] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4294967293.4294967295.4294967293), cmd(2)
[  380.455145][T10045] FAULT_INJECTION: forcing a failure.
[  380.455145][T10045] name failslab, interval 1, probability 0, space 0, times 0
[  380.518369][T10045] CPU: 0 UID: 0 PID: 10045 Comm: syz.3.926 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  380.518402][T10045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  380.518417][T10045] Call Trace:
[  380.518424][T10045]  <TASK>
[  380.518433][T10045]  dump_stack_lvl+0x16c/0x1f0
[  380.518476][T10045]  should_fail_ex+0x512/0x640
[  380.518511][T10045]  ? __kmalloc_noprof+0xbf/0x510
[  380.518555][T10045]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  380.518590][T10045]  should_failslab+0xc2/0x120
[  380.518613][T10045]  __kmalloc_noprof+0xd2/0x510
[  380.518654][T10045]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  380.518694][T10045]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  380.518728][T10045]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  380.518760][T10045]  ? genl_get_cmd+0x194/0x580
[  380.518798][T10045]  ? __radix_tree_lookup+0x21f/0x2c0
[  380.518837][T10045]  genl_rcv_msg+0x55c/0x800
[  380.518872][T10045]  ? __pfx_genl_rcv_msg+0x10/0x10
[  380.518904][T10045]  ? __pfx_tcp_metrics_nl_cmd_get+0x10/0x10
[  380.518943][T10045]  netlink_rcv_skb+0x155/0x420
[  380.518970][T10045]  ? __pfx_genl_rcv_msg+0x10/0x10
[  380.519003][T10045]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  380.519042][T10045]  ? netlink_deliver_tap+0x1ae/0xd30
[  380.519072][T10045]  genl_rcv+0x28/0x40
[  380.519099][T10045]  netlink_unicast+0x53d/0x7f0
[  380.519129][T10045]  ? __pfx_netlink_unicast+0x10/0x10
[  380.519165][T10045]  netlink_sendmsg+0x8d1/0xdd0
[  380.519197][T10045]  ? __pfx_netlink_sendmsg+0x10/0x10
[  380.519235][T10045]  ____sys_sendmsg+0xa95/0xc70
[  380.519266][T10045]  ? copy_msghdr_from_user+0x10a/0x160
[  380.519303][T10045]  ? __pfx_____sys_sendmsg+0x10/0x10
[  380.519346][T10045]  ___sys_sendmsg+0x134/0x1d0
[  380.519386][T10045]  ? __pfx____sys_sendmsg+0x10/0x10
[  380.519422][T10045]  ? __lock_acquire+0x622/0x1c90
[  380.519489][T10045]  __sys_sendmsg+0x16d/0x220
[  380.519511][T10045]  ? __pfx___sys_sendmsg+0x10/0x10
[  380.519558][T10045]  do_syscall_64+0xcd/0x490
[  380.519582][T10045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.519605][T10045] RIP: 0033:0x7f6afcf8e929
[  380.519624][T10045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  380.519647][T10045] RSP: 002b:00007f6afde27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  380.519669][T10045] RAX: ffffffffffffffda RBX: 00007f6afd1b5fa0 RCX: 00007f6afcf8e929
[  380.519685][T10045] RDX: 0000000000008000 RSI: 0000200000000a40 RDI: 0000000000000003
[  380.519700][T10045] RBP: 00007f6afde27090 R08: 0000000000000000 R09: 0000000000000000
[  380.519714][T10045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  380.519728][T10045] R13: 0000000000000000 R14: 00007f6afd1b5fa0 R15: 00007fffe8eabc38
[  380.519758][T10045]  </TASK>
[  380.791290][    C0] vkms_vblank_simulate: vblank timer overrun
[  383.946132][T10083] FAULT_INJECTION: forcing a failure.
[  383.946132][T10083] name failslab, interval 1, probability 0, space 0, times 0
[  384.012593][T10083] CPU: 0 UID: 0 PID: 10083 Comm: syz.2.934 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  384.012630][T10083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  384.012646][T10083] Call Trace:
[  384.012654][T10083]  <TASK>
[  384.012664][T10083]  dump_stack_lvl+0x16c/0x1f0
[  384.012710][T10083]  should_fail_ex+0x512/0x640
[  384.012750][T10083]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  384.012795][T10083]  should_failslab+0xc2/0x120
[  384.012820][T10083]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  384.012859][T10083]  ? lockdep_init_map_type+0x5c/0x280
[  384.012895][T10083]  ? __d_alloc+0x31/0xaa0
[  384.012940][T10083]  __d_alloc+0x31/0xaa0
[  384.012983][T10083]  d_alloc_pseudo+0x1c/0xc0
[  384.013013][T10083]  alloc_file_pseudo+0xcf/0x230
[  384.013043][T10083]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  384.013072][T10083]  ? alloc_fd+0x471/0x7d0
[  384.013118][T10083]  sock_alloc_file+0x50/0x210
[  384.013148][T10083]  __sys_socket+0x1c0/0x260
[  384.013182][T10083]  ? __pfx___sys_socket+0x10/0x10
[  384.013219][T10083]  ? do_user_addr_fault+0x843/0x1370
[  384.013261][T10083]  __x64_sys_socket+0x72/0xb0
[  384.013294][T10083]  ? lockdep_hardirqs_on+0x7c/0x110
[  384.013334][T10083]  do_syscall_64+0xcd/0x490
[  384.013362][T10083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.013390][T10083] RIP: 0033:0x7fadbdd90847
[  384.013411][T10083] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  384.013437][T10083] RSP: 002b:00007fadbeb54fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[  384.013462][T10083] RAX: ffffffffffffffda RBX: 00007fadbdfb5fa0 RCX: 00007fadbdd90847
[  384.013479][T10083] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  384.013495][T10083] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[  384.013512][T10083] R10: 0000200000001d00 R11: 0000000000000286 R12: 0000000000000000
[  384.013530][T10083] R13: 0000000000000000 R14: 00007fadbdfb5fa0 R15: 00007ffc366ef5e8
[  384.013564][T10083]  </TASK>
[  385.591515][T10098] ubi0: attaching mtd0
[  385.641116][T10101] IPVS: length: 131 != 8
[  385.694897][T10098] ubi0: scanning is finished
[  385.744134][T10098] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  385.765415][T10110] openvswitch: HfR: Dropping previously announced user features
[  385.805751][T10110] FAULT_INJECTION: forcing a failure.
[  385.805751][T10110] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  385.871073][T10110] CPU: 0 UID: 0 PID: 10110 Comm: syz.3.942 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  385.871106][T10110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  385.871121][T10110] Call Trace:
[  385.871129][T10110]  <TASK>
[  385.871137][T10110]  dump_stack_lvl+0x16c/0x1f0
[  385.871180][T10110]  should_fail_ex+0x512/0x640
[  385.871219][T10110]  _copy_to_user+0x32/0xd0
[  385.871242][T10110]  simple_read_from_buffer+0xcb/0x170
[  385.871274][T10110]  proc_fail_nth_read+0x197/0x270
[  385.871304][T10110]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  385.871333][T10110]  ? rw_verify_area+0xcf/0x680
[  385.871362][T10110]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  385.871389][T10110]  vfs_read+0x1e4/0xc60
[  385.871426][T10110]  ? __pfx___mutex_lock+0x10/0x10
[  385.871447][T10110]  ? __pfx_vfs_read+0x10/0x10
[  385.871488][T10110]  ? __fget_files+0x20e/0x3c0
[  385.871528][T10110]  ksys_read+0x12a/0x250
[  385.871560][T10110]  ? __pfx_ksys_read+0x10/0x10
[  385.871601][T10110]  do_syscall_64+0xcd/0x490
[  385.871625][T10110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.871649][T10110] RIP: 0033:0x7f6afcf8d33c
[  385.871668][T10110] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  385.871691][T10110] RSP: 002b:00007f6afde27030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  385.871713][T10110] RAX: ffffffffffffffda RBX: 00007f6afd1b5fa0 RCX: 00007f6afcf8d33c
[  385.871729][T10110] RDX: 000000000000000f RSI: 00007f6afde270a0 RDI: 0000000000000004
[  385.871744][T10110] RBP: 00007f6afde27090 R08: 0000000000000000 R09: 0000000000000000
[  385.871759][T10110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  385.871773][T10110] R13: 0000000000000000 R14: 00007f6afd1b5fa0 R15: 00007fffe8eabc38
[  385.871803][T10110]  </TASK>
[  386.385763][T10098] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  387.223249][   T51] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  388.541790][T10136] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  388.553664][T10136] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  388.577574][T10136] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  388.597558][T10136] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  388.906672][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  388.913211][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  389.102729][T10155] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  389.120960][T10155] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  389.163253][T10155] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  389.196065][T10155] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  390.676289][   T51] Bluetooth: hci2: unexpected event for opcode 0x7c89
[  391.140159][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  391.146329][ T5850] Bluetooth: hci1: command 0x0406 tx timeout
[  391.219910][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  391.661772][T10197] netlink: 'syz.2.963': attribute type 2 has an invalid length.
[  391.709706][T10199] netlink: 8 bytes leftover after parsing attributes in process `syz.1.964'.
[  391.900532][T10199] netlink: 8 bytes leftover after parsing attributes in process `syz.1.964'.
[  392.382300][T10210] netlink: 186 bytes leftover after parsing attributes in process `syz.4.966'.
[  392.475019][T10215] netlink: 186 bytes leftover after parsing attributes in process `syz.4.966'.
[  393.912533][T10244] netlink: 8 bytes leftover after parsing attributes in process `syz.1.975'.
[  397.217861][T10295] vivid-007: =================  START STATUS  =================
[  397.269723][T10295] vivid-007: Generate PTS: true
[  397.304867][T10295] vivid-007: Generate SCR: true
[  397.341876][T10295] tpg source WxH: 320x240 (Y'CbCr)
[  397.379762][T10295] tpg field: 1
[  397.401600][T10295] tpg crop: (0,0)/320x240
[  397.418209][T10295] tpg compose: (0,0)/320x240
[  397.448290][T10295] tpg colorspace: 8
[  397.461606][T10295] tpg transfer function: 0/0
[  397.489271][T10295] tpg Y'CbCr encoding: 0/0
[  397.499401][T10295] tpg quantization: 0/0
[  397.514715][T10295] tpg RGB range: 0/2
[  397.543328][T10295] vivid-007: ==================  END STATUS  ==================
[  398.225679][T10319] FAULT_INJECTION: forcing a failure.
[  398.225679][T10319] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  398.289197][T10319] CPU: 0 UID: 0 PID: 10319 Comm: syz.2.995 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  398.289230][T10319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  398.289245][T10319] Call Trace:
[  398.289252][T10319]  <TASK>
[  398.289261][T10319]  dump_stack_lvl+0x16c/0x1f0
[  398.289303][T10319]  should_fail_ex+0x512/0x640
[  398.289343][T10319]  _copy_from_user+0x2e/0xd0
[  398.289382][T10319]  force_devcd_write+0xfb/0x340
[  398.289405][T10319]  ? __pfx_force_devcd_write+0x10/0x10
[  398.289442][T10319]  full_proxy_write+0x13f/0x200
[  398.289467][T10319]  ? __pfx_full_proxy_write+0x10/0x10
[  398.289488][T10319]  vfs_write+0x29d/0x1150
[  398.289527][T10319]  ? __pfx___mutex_lock+0x10/0x10
[  398.289549][T10319]  ? __pfx_vfs_write+0x10/0x10
[  398.289590][T10319]  ? __fget_files+0x20e/0x3c0
[  398.289630][T10319]  ksys_write+0x12a/0x250
[  398.289663][T10319]  ? __pfx_ksys_write+0x10/0x10
[  398.289705][T10319]  do_syscall_64+0xcd/0x490
[  398.289729][T10319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.289752][T10319] RIP: 0033:0x7fadbdd8e929
[  398.289770][T10319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  398.289798][T10319] RSP: 002b:00007fadbeb56038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  398.289820][T10319] RAX: ffffffffffffffda RBX: 00007fadbdfb5fa0 RCX: 00007fadbdd8e929
[  398.289837][T10319] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000003
[  398.289851][T10319] RBP: 00007fadbeb56090 R08: 0000000000000000 R09: 0000000000000000
[  398.289865][T10319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  398.289879][T10319] R13: 0000000000000000 R14: 00007fadbdfb5fa0 R15: 00007ffc366ef5e8
[  398.289909][T10319]  </TASK>
[  400.996050][T10371] Invalid ELF header magic: != ELF
[  404.379308][T10429] FAULT_INJECTION: forcing a failure.
[  404.379308][T10429] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  404.544879][T10429] CPU: 0 UID: 0 PID: 10429 Comm: syz.3.1020 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  404.544913][T10429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  404.544928][T10429] Call Trace:
[  404.544935][T10429]  <TASK>
[  404.544944][T10429]  dump_stack_lvl+0x16c/0x1f0
[  404.544986][T10429]  should_fail_ex+0x512/0x640
[  404.545027][T10429]  _copy_to_user+0x32/0xd0
[  404.545050][T10429]  snd_ctl_elem_list+0x444/0x520
[  404.545090][T10429]  ? __pfx_snd_ctl_elem_list+0x10/0x10
[  404.545120][T10429]  ? __might_fault+0xe3/0x190
[  404.545169][T10429]  snd_ctl_ioctl+0x94f/0x1320
[  404.545209][T10429]  ? __pfx_snd_ctl_ioctl+0x10/0x10
[  404.545250][T10429]  ? find_held_lock+0x2b/0x80
[  404.545273][T10429]  ? hook_file_ioctl_common+0x145/0x410
[  404.545313][T10429]  ? __pfx_snd_ctl_ioctl+0x10/0x10
[  404.545352][T10429]  __x64_sys_ioctl+0x18e/0x210
[  404.545382][T10429]  do_syscall_64+0xcd/0x490
[  404.545406][T10429]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  404.545430][T10429] RIP: 0033:0x7f6afcf8e929
[  404.545448][T10429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  404.545472][T10429] RSP: 002b:00007f6afde27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  404.545494][T10429] RAX: ffffffffffffffda RBX: 00007f6afd1b5fa0 RCX: 00007f6afcf8e929
[  404.545510][T10429] RDX: 0000200000000780 RSI: 00000000c0505510 RDI: 0000000000000003
[  404.545525][T10429] RBP: 00007f6afde27090 R08: 0000000000000000 R09: 0000000000000000
[  404.545539][T10429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  404.545553][T10429] R13: 0000000000000000 R14: 00007f6afd1b5fa0 R15: 00007fffe8eabc38
[  404.545583][T10429]  </TASK>
[  405.698848][T10438] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1023'.
[  405.866816][T10442] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1023'.
[  407.514826][T10459] FAULT_INJECTION: forcing a failure.
[  407.514826][T10459] name failslab, interval 1, probability 0, space 0, times 0
[  407.585375][T10459] CPU: 0 UID: 0 PID: 10459 Comm: syz.2.1028 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  407.585410][T10459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  407.585432][T10459] Call Trace:
[  407.585440][T10459]  <TASK>
[  407.585449][T10459]  dump_stack_lvl+0x16c/0x1f0
[  407.585493][T10459]  should_fail_ex+0x512/0x640
[  407.585530][T10459]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  407.585571][T10459]  should_failslab+0xc2/0x120
[  407.585595][T10459]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  407.585632][T10459]  ? mm_alloc+0x1c/0xc0
[  407.585662][T10459]  mm_alloc+0x1c/0xc0
[  407.585687][T10459]  alloc_bprm+0x2af/0x6f0
[  407.585721][T10459]  do_execveat_common.isra.0+0x1ce/0x610
[  407.585761][T10459]  __x64_sys_execve+0x8e/0xb0
[  407.585796][T10459]  do_syscall_64+0xcd/0x490
[  407.585820][T10459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.585845][T10459] RIP: 0033:0x7fadbdd8e929
[  407.585864][T10459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  407.585888][T10459] RSP: 002b:00007fadbeb35038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  407.585911][T10459] RAX: ffffffffffffffda RBX: 00007fadbdfb6080 RCX: 00007fadbdd8e929
[  407.585928][T10459] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000200
[  407.585943][T10459] RBP: 00007fadbde10b39 R08: 0000000000000000 R09: 0000000000000000
[  407.585959][T10459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  407.585973][T10459] R13: 0000000000000000 R14: 00007fadbdfb6080 R15: 00007ffc366ef5e8
[  407.586004][T10459]  </TASK>
[  407.790145][T10461] FAULT_INJECTION: forcing a failure.
[  407.790145][T10461] name failslab, interval 1, probability 0, space 0, times 0
[  407.802871][T10461] CPU: 0 UID: 0 PID: 10461 Comm: syz.3.1029 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  407.802901][T10461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  407.802916][T10461] Call Trace:
[  407.802923][T10461]  <TASK>
[  407.802932][T10461]  dump_stack_lvl+0x16c/0x1f0
[  407.802972][T10461]  should_fail_ex+0x512/0x640
[  407.803007][T10461]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  407.803044][T10461]  should_failslab+0xc2/0x120
[  407.803067][T10461]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  407.803119][T10461]  ? security_file_alloc+0x34/0x2b0
[  407.803156][T10461]  security_file_alloc+0x34/0x2b0
[  407.803188][T10461]  init_file+0x93/0x4c0
[  407.803211][T10461]  alloc_empty_file+0x73/0x1e0
[  407.803237][T10461]  path_openat+0xda/0x2cb0
[  407.803270][T10461]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.803305][T10461]  ? __pfx_path_openat+0x10/0x10
[  407.803341][T10461]  ? __lock_acquire+0xb8a/0x1c90
[  407.803376][T10461]  do_filp_open+0x20b/0x470
[  407.803411][T10461]  ? __pfx_do_filp_open+0x10/0x10
[  407.803474][T10461]  ? alloc_fd+0x471/0x7d0
[  407.803514][T10461]  do_sys_openat2+0x11b/0x1d0
[  407.803539][T10461]  ? __pfx_do_sys_openat2+0x10/0x10
[  407.803564][T10461]  ? fput+0x70/0xf0
[  407.803585][T10461]  ? __sys_connect+0xe0/0x160
[  407.803627][T10461]  __x64_sys_openat+0x174/0x210
[  407.803654][T10461]  ? __pfx___x64_sys_openat+0x10/0x10
[  407.803694][T10461]  do_syscall_64+0xcd/0x490
[  407.803718][T10461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.803741][T10461] RIP: 0033:0x7f6afcf8d290
[  407.803760][T10461] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  407.803783][T10461] RSP: 002b:00007f6afde26fe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  407.803805][T10461] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f6afcf8d290
[  407.803821][T10461] RDX: 0000000000000002 RSI: 00007f6afd010e1e RDI: 00000000ffffff9c
[  407.803836][T10461] RBP: 00007f6afd010e1e R08: 0000000000000000 R09: 00007f6afde28000
[  407.803851][T10461] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  407.803866][T10461] R13: 0000000000000000 R14: 00007f6afd1b5fa0 R15: 00007fffe8eabc38
[  407.803895][T10461]  </TASK>
[  412.901590][T10533] bcache: register_bcache() error : Not a bcache superblock (bad offset)
[  415.527136][T10590] ubi0: attaching mtd0
[  415.591765][T10590] ubi0: scanning is finished
[  415.596462][T10590] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  416.042936][T10590] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  418.165968][T10624] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4294967293.4294967295.4294967293), cmd(2)
[  419.552542][T10637] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  419.590240][T10637] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  419.596322][T10637] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  419.667006][T10637] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  420.980181][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  421.620114][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  421.626353][ T5842] Bluetooth: hci0: command 0x0406 tx timeout
[  421.701168][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  421.863860][ T5850] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  423.069913][T10692] netlink: 'syz.1.1082': attribute type 2 has an invalid length.
[  423.558502][T10707] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1084'.
[  423.691325][T10707] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1084'.
[  428.170425][T10801] FAULT_INJECTION: forcing a failure.
[  428.170425][T10801] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  428.243236][T10801] CPU: 0 UID: 0 PID: 10801 Comm: syz.3.1109 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  428.243264][T10801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  428.243277][T10801] Call Trace:
[  428.243283][T10801]  <TASK>
[  428.243290][T10801]  dump_stack_lvl+0x16c/0x1f0
[  428.243327][T10801]  should_fail_ex+0x512/0x640
[  428.243362][T10801]  _copy_to_user+0x32/0xd0
[  428.243382][T10801]  simple_read_from_buffer+0xcb/0x170
[  428.243410][T10801]  proc_fail_nth_read+0x197/0x270
[  428.243434][T10801]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  428.243460][T10801]  ? rw_verify_area+0xcf/0x680
[  428.243484][T10801]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  428.243508][T10801]  vfs_read+0x1e4/0xc60
[  428.243538][T10801]  ? __pfx___mutex_lock+0x10/0x10
[  428.243557][T10801]  ? __pfx_vfs_read+0x10/0x10
[  428.243591][T10801]  ? __fget_files+0x20e/0x3c0
[  428.243625][T10801]  ksys_read+0x12a/0x250
[  428.243652][T10801]  ? __pfx_ksys_read+0x10/0x10
[  428.243686][T10801]  do_syscall_64+0xcd/0x490
[  428.243706][T10801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  428.243726][T10801] RIP: 0033:0x7f6afcf8d33c
[  428.243742][T10801] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  428.243762][T10801] RSP: 002b:00007f6afde27030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  428.243780][T10801] RAX: ffffffffffffffda RBX: 00007f6afd1b5fa0 RCX: 00007f6afcf8d33c
[  428.243794][T10801] RDX: 000000000000000f RSI: 00007f6afde270a0 RDI: 0000000000000004
[  428.243806][T10801] RBP: 00007f6afde27090 R08: 0000000000000000 R09: 0000000000000000
[  428.243819][T10801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  428.243831][T10801] R13: 0000000000000000 R14: 00007f6afd1b5fa0 R15: 00007fffe8eabc38
[  428.243856][T10801]  </TASK>
[  428.429775][    C0] vkms_vblank_simulate: vblank timer overrun
[  433.347894][T10843] ima: policy update failed
[  433.501105][   T30] audit: type=1802 audit(4294967304.420:14): pid=10843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1120" res=0 errno=0
[  433.600430][T10873] ubi0: attaching mtd0
[  433.721357][T10873] ubi0: scanning is finished
[  433.726029][T10873] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  434.039751][T10884] sctp: [Deprecated]: syz.4.1130 (pid 10884) Use of struct sctp_assoc_value in delayed_ack socket option.
[  434.039751][T10884] Use struct sctp_sack_info instead
[  434.177105][T10873] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  435.234335][T10898] FAULT_INJECTION: forcing a failure.
[  435.234335][T10898] name failslab, interval 1, probability 0, space 0, times 0
[  435.392722][T10898] CPU: 0 UID: 0 PID: 10898 Comm: syz.1.1133 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  435.392757][T10898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  435.392772][T10898] Call Trace:
[  435.392779][T10898]  <TASK>
[  435.392789][T10898]  dump_stack_lvl+0x16c/0x1f0
[  435.392832][T10898]  should_fail_ex+0x512/0x640
[  435.392869][T10898]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  435.392904][T10898]  ? __pfx_debugfs_get_stored_pages+0x10/0x10
[  435.392929][T10898]  should_failslab+0xc2/0x120
[  435.392952][T10898]  __kmalloc_cache_noprof+0x6a/0x3e0
[  435.392984][T10898]  ? __debugfs_file_get+0x1fe/0x840
[  435.393006][T10898]  ? simple_attr_open+0x57/0x1c0
[  435.393040][T10898]  ? __pfx_debugfs_get_stored_pages+0x10/0x10
[  435.393066][T10898]  simple_attr_open+0x57/0x1c0
[  435.393098][T10898]  ? __pfx_stored_pages_fops_open+0x10/0x10
[  435.393124][T10898]  full_proxy_open_regular+0x1b6/0x360
[  435.393153][T10898]  do_dentry_open+0x744/0x1c10
[  435.393189][T10898]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  435.393222][T10898]  vfs_open+0x82/0x3f0
[  435.393251][T10898]  path_openat+0x1de4/0x2cb0
[  435.393296][T10898]  ? __pfx_path_openat+0x10/0x10
[  435.393333][T10898]  ? __lock_acquire+0xb8a/0x1c90
[  435.393368][T10898]  do_filp_open+0x20b/0x470
[  435.393404][T10898]  ? __pfx_do_filp_open+0x10/0x10
[  435.393460][T10898]  ? alloc_fd+0x471/0x7d0
[  435.393500][T10898]  do_sys_openat2+0x11b/0x1d0
[  435.393527][T10898]  ? __pfx_do_sys_openat2+0x10/0x10
[  435.393571][T10898]  __x64_sys_openat+0x174/0x210
[  435.393599][T10898]  ? __pfx___x64_sys_openat+0x10/0x10
[  435.393639][T10898]  do_syscall_64+0xcd/0x490
[  435.393663][T10898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  435.393688][T10898] RIP: 0033:0x7f143f98e929
[  435.393706][T10898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  435.393731][T10898] RSP: 002b:00007f143d7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  435.393758][T10898] RAX: ffffffffffffffda RBX: 00007f143fbb5fa0 RCX: 00007f143f98e929
[  435.393775][T10898] RDX: 0000000000000100 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  435.393790][T10898] RBP: 00007f143fa10b39 R08: 0000000000000000 R09: 0000000000000000
[  435.393805][T10898] R10: 000000000000ffeb R11: 0000000000000246 R12: 0000000000000000
[  435.393820][T10898] R13: 0000000000000000 R14: 00007f143fbb5fa0 R15: 00007ffe5eadc538
[  435.393850][T10898]  </TASK>
[  436.072528][ T5850] Bluetooth: hci3: unexpected event for opcode 0x7c89
[  438.972221][T10929] Invalid ELF header magic: != ELF
[  441.052814][T10950] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1148'.
[  443.311466][T10985] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1156'.
[  443.362345][T10985] team_slave_0: entered allmulticast mode
[  446.503399][T11011] zswap: compressor  not available
[  450.349151][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  450.363012][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  451.418718][T11075] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1180'.
[  451.596960][T11082] FAULT_INJECTION: forcing a failure.
[  451.596960][T11082] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  451.860315][T11082] CPU: 0 UID: 0 PID: 11082 Comm: syz.1.1181 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  451.860349][T11082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  451.860363][T11082] Call Trace:
[  451.860371][T11082]  <TASK>
[  451.860385][T11082]  dump_stack_lvl+0x16c/0x1f0
[  451.860428][T11082]  should_fail_ex+0x512/0x640
[  451.860467][T11082]  _copy_from_iter+0x29f/0x16f0
[  451.860509][T11082]  ? __alloc_skb+0x200/0x380
[  451.860546][T11082]  ? __pfx__copy_from_iter+0x10/0x10
[  451.860586][T11082]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  451.860622][T11082]  netlink_sendmsg+0x829/0xdd0
[  451.860654][T11082]  ? __pfx_netlink_sendmsg+0x10/0x10
[  451.860692][T11082]  ____sys_sendmsg+0xa95/0xc70
[  451.860722][T11082]  ? copy_msghdr_from_user+0x10a/0x160
[  451.860760][T11082]  ? __pfx_____sys_sendmsg+0x10/0x10
[  451.860803][T11082]  ___sys_sendmsg+0x134/0x1d0
[  451.860842][T11082]  ? __pfx____sys_sendmsg+0x10/0x10
[  451.860877][T11082]  ? __lock_acquire+0x622/0x1c90
[  451.860944][T11082]  __sys_sendmsg+0x16d/0x220
[  451.860966][T11082]  ? __pfx___sys_sendmsg+0x10/0x10
[  451.861006][T11082]  do_syscall_64+0xcd/0x490
[  451.861043][T11082]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.861066][T11082] RIP: 0033:0x7f143f98e929
[  451.861083][T11082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.861105][T11082] RSP: 002b:00007f143d7f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  451.861127][T11082] RAX: ffffffffffffffda RBX: 00007f143fbb5fa0 RCX: 00007f143f98e929
[  451.861142][T11082] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000003
[  451.861156][T11082] RBP: 00007f143d7f6090 R08: 0000000000000000 R09: 0000000000000000
[  451.861171][T11082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  451.861184][T11082] R13: 0000000000000000 R14: 00007f143fbb5fa0 R15: 00007ffe5eadc538
[  451.861212][T11082]  </TASK>
[  452.206514][T11077] netlink: zone id is out of range
[  452.211757][T11077] netlink: zone id is out of range
[  452.216911][T11077] netlink: get zone limit has 4 unknown bytes
[  452.846503][T11091] 
[  452.848880][T11091] ======================================================
[  452.855903][T11091] WARNING: possible circular locking dependency detected
[  452.862937][T11091] 6.16.0-rc1-syzkaller #0 Not tainted
[  452.868312][T11091] ------------------------------------------------------
[  452.875358][T11091] syz.2.1183/11091 is trying to acquire lock:
[  452.881686][T11091] ffffffff8e52ea68 (pcpu_alloc_mutex){+.+.}-{4:4}, at: pcpu_alloc_noprof+0xb4c/0x1470
[  452.891307][T11091] 
[  452.891307][T11091] but task is already holding lock:
[  452.898699][T11091] ffff888142bc0a70 (&q->q_usage_counter(io)#18){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  452.910323][T11091] 
[  452.910323][T11091] which lock already depends on the new lock.
[  452.910323][T11091] 
[  452.920730][T11091] 
[  452.920730][T11091] the existing dependency chain (in reverse order) is:
[  452.929834][T11091] 
[  452.929834][T11091] -> #2 (&q->q_usage_counter(io)#18){++++}-{0:0}:
[  452.938477][T11091]        blk_alloc_queue+0x619/0x760
[  452.943781][T11091]        blk_mq_alloc_queue+0x175/0x290
[  452.949348][T11091]        __blk_mq_alloc_disk+0x29/0x120
[  452.954914][T11091]        loop_add+0x49e/0xb70
[  452.959607][T11091]        loop_init+0x164/0x270
[  452.964395][T11091]        do_one_initcall+0x120/0x6e0
[  452.969698][T11091]        kernel_init_freeable+0x5c2/0x900
[  452.975436][T11091]        kernel_init+0x1c/0x2b0
[  452.980310][T11091]        ret_from_fork+0x5d4/0x6f0
[  452.985441][T11091]        ret_from_fork_asm+0x1a/0x30
[  452.990736][T11091] 
[  452.990736][T11091] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  452.997965][T11091]        fs_reclaim_acquire+0x102/0x150
[  453.003527][T11091]        prepare_alloc_pages+0x162/0x610
[  453.009177][T11091]        __alloc_frozen_pages_noprof+0x18b/0x23f0
[  453.015617][T11091]        __alloc_pages_noprof+0xb/0x1b0
[  453.021271][T11091]        pcpu_populate_chunk+0x110/0xb00
[  453.026918][T11091]        pcpu_alloc_noprof+0x86a/0x1470
[  453.032499][T11091]        xt_percpu_counter_alloc+0x13e/0x1b0
[  453.038499][T11091]        find_check_entry.constprop.0+0xbf/0xa20
[  453.044849][T11091]        translate_table+0xd0b/0x17b0
[  453.050245][T11091]        ip6t_register_table+0x102/0x430
[  453.055901][T11091]        ip6table_filter_table_init+0x75/0xa0
[  453.062000][T11091]        xt_find_table_lock+0x2e1/0x520
[  453.067580][T11091]        xt_request_find_table_lock+0x28/0xf0
[  453.073677][T11091]        get_info+0x190/0x620
[  453.078369][T11091]        do_ip6t_get_ctl+0x169/0xa50
[  453.083756][T11091]        nf_getsockopt+0x7c/0xe0
[  453.088705][T11091]        ipv6_getsockopt+0x1f7/0x280
[  453.094006][T11091]        tcp_getsockopt+0xa1/0x100
[  453.099126][T11091]        do_sock_getsockopt+0x3fc/0x800
[  453.104689][T11091]        __sys_getsockopt+0x123/0x1b0
[  453.110083][T11091]        __x64_sys_getsockopt+0xbd/0x160
[  453.115738][T11091]        do_syscall_64+0xcd/0x490
[  453.120793][T11091]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.127241][T11091] 
[  453.127241][T11091] -> #0 (pcpu_alloc_mutex){+.+.}-{4:4}:
[  453.135088][T11091]        __lock_acquire+0x126f/0x1c90
[  453.140478][T11091]        lock_acquire+0x179/0x350
[  453.145523][T11091]        __mutex_lock+0x199/0xb90
[  453.150557][T11091]        pcpu_alloc_noprof+0xb4c/0x1470
[  453.156206][T11091]        blk_stat_alloc_callback+0xc8/0x280
[  453.162201][T11091]        wbt_init+0xac/0x540
[  453.166815][T11091]        queue_wb_lat_store+0x354/0x3d0
[  453.172386][T11091]        queue_attr_store+0x279/0x320
[  453.177870][T11091]        sysfs_kf_write+0xf2/0x150
[  453.183031][T11091]        kernfs_fop_write_iter+0x351/0x510
[  453.188849][T11091]        vfs_write+0x6c4/0x1150
[  453.193722][T11091]        ksys_write+0x12a/0x250
[  453.198596][T11091]        do_syscall_64+0xcd/0x490
[  453.203630][T11091]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.210055][T11091] 
[  453.210055][T11091] other info that might help us debug this:
[  453.210055][T11091] 
[  453.220284][T11091] Chain exists of:
[  453.220284][T11091]   pcpu_alloc_mutex --> fs_reclaim --> &q->q_usage_counter(io)#18
[  453.220284][T11091] 
[  453.233963][T11091]  Possible unsafe locking scenario:
[  453.233963][T11091] 
[  453.241421][T11091]        CPU0                    CPU1
[  453.246788][T11091]        ----                    ----
[  453.252156][T11091]   lock(&q->q_usage_counter(io)#18);
[  453.257636][T11091]                                lock(fs_reclaim);
[  453.264149][T11091]                                lock(&q->q_usage_counter(io)#18);
[  453.272086][T11091]   lock(pcpu_alloc_mutex);
[  453.276953][T11091] 
[  453.276953][T11091]  *** DEADLOCK ***
[  453.276953][T11091] 
[  453.285098][T11091] 6 locks held by syz.2.1183/11091:
[  453.290302][T11091]  #0: ffff888032e787f8 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370
[  453.299407][T11091]  #1: ffff888030fba428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  453.308434][T11091]  #2: ffff88805c738488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[  453.318224][T11091]  #3: ffff88823be4a008 (kn->active#169){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[  453.328465][T11091]  #4: ffff888142bc0a70 (&q->q_usage_counter(io)#18){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  453.340203][T11091]  #5: ffff888142bc0aa8 (&q->q_usage_counter(queue)#20){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  453.352175][T11091] 
[  453.352175][T11091] stack backtrace:
[  453.358076][T11091] CPU: 0 UID: 0 PID: 11091 Comm: syz.2.1183 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(full) 
[  453.358105][T11091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  453.358119][T11091] Call Trace:
[  453.358129][T11091]  <TASK>
[  453.358138][T11091]  dump_stack_lvl+0x116/0x1f0
[  453.358178][T11091]  print_circular_bug+0x275/0x350
[  453.358209][T11091]  check_noncircular+0x14c/0x170
[  453.358243][T11091]  __lock_acquire+0x126f/0x1c90
[  453.358285][T11091]  lock_acquire+0x179/0x350
[  453.358315][T11091]  ? pcpu_alloc_noprof+0xb4c/0x1470
[  453.358350][T11091]  ? __pfx___might_resched+0x10/0x10
[  453.358374][T11091]  ? ksys_write+0x12a/0x250
[  453.358406][T11091]  ? do_syscall_64+0xcd/0x490
[  453.358426][T11091]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.358453][T11091]  __mutex_lock+0x199/0xb90
[  453.358473][T11091]  ? pcpu_alloc_noprof+0xb4c/0x1470
[  453.358507][T11091]  ? pcpu_alloc_noprof+0xb4c/0x1470
[  453.358540][T11091]  ? __pfx___mutex_lock+0x10/0x10
[  453.358570][T11091]  ? pcpu_alloc_noprof+0xb4c/0x1470
[  453.358602][T11091]  pcpu_alloc_noprof+0xb4c/0x1470
[  453.358640][T11091]  ? __pfx_wbt_data_dir+0x10/0x10
[  453.358674][T11091]  ? __pfx_wb_timer_fn+0x10/0x10
[  453.358698][T11091]  blk_stat_alloc_callback+0xc8/0x280
[  453.358721][T11091]  ? kasan_save_track+0x14/0x30
[  453.358757][T11091]  wbt_init+0xac/0x540
[  453.358783][T11091]  queue_wb_lat_store+0x354/0x3d0
[  453.358834][T11091]  ? __pfx_queue_wb_lat_store+0x10/0x10
[  453.358873][T11091]  ? __mutex_trylock_common+0xe9/0x250
[  453.358905][T11091]  ? __pfx_queue_wb_lat_store+0x10/0x10
[  453.358942][T11091]  queue_attr_store+0x279/0x320
[  453.358979][T11091]  ? __pfx_queue_attr_store+0x10/0x10
[  453.359015][T11091]  ? __lock_acquire+0x622/0x1c90
[  453.359051][T11091]  ? find_held_lock+0x2b/0x80
[  453.359072][T11091]  ? sysfs_file_kobj+0xe4/0x290
[  453.359100][T11091]  ? __pfx_queue_attr_store+0x10/0x10
[  453.359137][T11091]  sysfs_kf_write+0xf2/0x150
[  453.359165][T11091]  kernfs_fop_write_iter+0x351/0x510
[  453.359188][T11091]  ? __pfx_sysfs_kf_write+0x10/0x10
[  453.359217][T11091]  vfs_write+0x6c4/0x1150
[  453.359249][T11091]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  453.359279][T11091]  ? __pfx___mutex_lock+0x10/0x10
[  453.359300][T11091]  ? __pfx_vfs_write+0x10/0x10
[  453.359341][T11091]  ksys_write+0x12a/0x250
[  453.359373][T11091]  ? __pfx_ksys_write+0x10/0x10
[  453.359409][T11091]  do_syscall_64+0xcd/0x490
[  453.359431][T11091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.359454][T11091] RIP: 0033:0x7fadbdd8e929
[  453.359473][T11091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  453.359496][T11091] RSP: 002b:00007fadbeb14038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  453.359516][T11091] RAX: ffffffffffffffda RBX: 00007fadbdfb6160 RCX: 00007fadbdd8e929
[  453.359532][T11091] RDX: 0000000000000009 RSI: 00002000000001c0 RDI: 0000000000000004
[  453.359546][T11091] RBP: 00007fadbde10b39 R08: 0000000000000000 R09: 0000000000000000
[  453.359561][T11091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  453.359575][T11091] R13: 0000000000000000 R14: 00007fadbdfb6160 R15: 00007ffc366ef5e8
[  453.359596][T11091]  </TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  456.124392][ T7721] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  456.185501][ T7721] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  456.344715][ T7721] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  456.513350][ T7721] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.051682][ T7721] vlan1: left allmulticast mode
[  457.056588][ T7721] veth0_vlan: left allmulticast mode
[  457.091764][ T7721] vlan1: left promiscuous mode
[  457.096782][ T7721] bridge0: port 3(vlan1) entered disabled state
[  457.201213][ T7721] bridge_slave_1: left allmulticast mode
[  457.206895][ T7721] bridge_slave_1: left promiscuous mode
[  457.242130][ T7721] bridge0: port 2(bridge_slave_1) entered disabled state
[  457.270346][ T7721] bridge_slave_0: left allmulticast mode
[  457.276027][ T7721] bridge_slave_0: left promiscuous mode
[  457.310442][ T7721] bridge0: port 1(bridge_slave_0) entered disabled state
[  457.505875][ T7721] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  457.532321][ T7721] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  457.554336][ T7721] bond0 (unregistering): Released all slaves
[  457.596372][ T7721] HfR: left promiscuous mode
[  457.815993][ T7721] hsr_slave_0: left promiscuous mode
[  457.832143][ T7721] hsr_slave_1: left promiscuous mode
[  457.855178][ T7721] veth1_macvtap: left promiscuous mode
[  457.870684][ T7721] veth0_macvtap: left promiscuous mode
[  457.876278][ T7721] veth1_vlan: left promiscuous mode
[  457.890590][ T7721] veth0_vlan: left promiscuous mode
[  458.125324][ T7721] team0 (unregistering): Port device team_slave_1 removed
[  458.151596][ T7721] team0 (unregistering): Port device team_slave_0 removed
[  458.418137][ T7721] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.484750][ T7721] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.524718][ T7721] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.588973][ T7721] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.713895][ T7721] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.774072][ T7721] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.847501][ T7721] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.894729][ T7721] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.017116][ T7721] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.074837][ T7721] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.133858][ T7721] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.186369][ T7721] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.301136][ T7721] bridge_slave_1: left allmulticast mode
[  459.306828][ T7721] bridge_slave_1: left promiscuous mode
[  459.331259][ T7721] bridge0: port 2(bridge_slave_1) entered disabled state
[  459.339380][ T7721] bridge_slave_0: left allmulticast mode
[  459.360693][ T7721] bridge_slave_0: left promiscuous mode
[  459.366533][ T7721] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.392276][ T7721] bridge_slave_1: left allmulticast mode
[  459.398049][ T7721] bridge_slave_1: left promiscuous mode
[  459.420717][ T7721] bridge0: port 2(bridge_slave_1) entered disabled state
[  459.428957][ T7721] bridge_slave_0: left allmulticast mode
[  459.444392][ T7721] bridge_slave_0: left promiscuous mode
[  459.451675][ T7721] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.461524][ T7721] bridge_slave_1: left allmulticast mode
[  459.467192][ T7721] bridge_slave_1: left promiscuous mode
[  459.474972][ T7721] bridge0: port 2(bridge_slave_1) entered disabled state
[  459.484350][ T7721] bridge_slave_0: left allmulticast mode
[  459.490151][ T7721] bridge_slave_0: left promiscuous mode
[  459.496252][ T7721] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.625108][ T7721] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  459.636955][ T7721] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  459.647245][ T7721] bond0 (unregistering): Released all slaves
[  459.704976][ T7721] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  459.715570][ T7721] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  459.726046][ T7721] bond0 (unregistering): Released all slaves
[  459.777742][ T7721] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  459.787738][ T7721] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  459.798749][ T7721] bond0 (unregistering): Released all slaves
[  459.882707][ T7721] HfR: left promiscuous mode
[  459.921831][ T7721] HfR: left promiscuous mode
[  459.941736][ T7721] tipc: Left network mode
[  460.303451][ T7721] hsr_slave_0: left promiscuous mode
[  460.309152][ T7721] hsr_slave_1: left promiscuous mode
[  460.332567][ T7721] hsr_slave_0: left promiscuous mode
[  460.350056][ T7721] hsr_slave_1: left promiscuous mode
[  460.355905][ T7721] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  460.380797][ T7721] batman_adv: batadv0: Removing interface: batadv_slave_0
[  460.392722][ T7721] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  460.419969][ T7721] batman_adv: batadv0: Removing interface: batadv_slave_1
[  460.436030][ T7721] hsr_slave_0: left promiscuous mode
[  460.450547][ T7721] hsr_slave_1: left promiscuous mode
[  460.464528][ T7721] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  460.472464][ T7721] batman_adv: batadv0: Removing interface: batadv_slave_0
[  460.481416][ T7721] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  460.488826][ T7721] batman_adv: batadv0: Removing interface: batadv_slave_1
[  460.506156][ T7721] veth1_macvtap: left promiscuous mode
[  460.511796][ T7721] veth0_macvtap: left promiscuous mode
[  460.517841][ T7721] veth1_macvtap: left promiscuous mode
[  460.524466][ T7721] veth0_macvtap: left promiscuous mode
[  460.530391][ T7721] veth1_vlan: left promiscuous mode
[  460.535657][ T7721] veth0_vlan: left promiscuous mode
[  460.542233][ T7721] veth1_macvtap: left promiscuous mode
[  460.547735][ T7721] veth0_macvtap: left promiscuous mode
[  460.556131][ T7721] veth1_vlan: left promiscuous mode
[  460.562004][ T7721] veth0_vlan: left promiscuous mode
[  460.873683][ T7721] team0 (unregistering): Port device team_slave_1 removed
[  460.898575][ T7721] team0 (unregistering): Port device team_slave_0 removed
[  461.068378][ T7721] team0 (unregistering): Port device team_slave_1 removed
[  461.095245][ T7721] team0 (unregistering): Port device team_slave_0 removed
[  461.274900][ T7721] team0 (unregistering): Port device team_slave_1 removed
[  461.288636][ T7721] team0 (unregistering): Port device team_slave_0 removed