last executing test programs:

11m16.434028043s ago: executing program 1 (id=5086):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x62d81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r0, &(0x7f0000000140)=[{0x23, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32={[0x0, 0x7a120]}}], 0x1c)

11m16.332216627s ago: executing program 1 (id=5095):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000000201, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000000))

11m15.418344508s ago: executing program 1 (id=5091):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xe)
ioctl$TCFLSH(r0, 0x540b, 0x2)

11m15.28845919s ago: executing program 1 (id=5096):
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2842, 0x0)
read$FUSE(r0, &(0x7f0000005140)={0x2020}, 0x2020)
read$FUSE(r0, &(0x7f0000000340)={0x2020}, 0x2020)

11m15.121973095s ago: executing program 1 (id=5099):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000280)=0x10)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179)

11m15.045853422s ago: executing program 1 (id=5102):
r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0)
ioctl$I2C_PEC(r0, 0x708, 0x4)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000100)={0x0, 0x0, 0x1, 0x0})

10m59.918625023s ago: executing program 32 (id=5102):
r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0)
ioctl$I2C_PEC(r0, 0x708, 0x4)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000100)={0x0, 0x0, 0x1, 0x0})

10m42.157919592s ago: executing program 4 (id=5546):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1})
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f00000003c0)={@my=0x1})

10m41.985880999s ago: executing program 4 (id=5548):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40345410, &(0x7f00000004c0)={{0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x80605414, 0xffffffffffffffff)

10m41.870595043s ago: executing program 4 (id=5551):
syz_open_dev$usbfs(&(0x7f0000000000), 0x20000007d, 0x0)
r0 = openat$drirender128(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc0106442, &(0x7f0000000000))

10m41.730633677s ago: executing program 4 (id=5554):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f0000000640)={0x12, 0x10, 0xfa00, {&(0x7f0000000600), r1, r0}}, 0x18)

10m41.513913865s ago: executing program 4 (id=5558):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
mmap$fb(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000004, 0x11, r0, 0x6f000)

10m41.453723725s ago: executing program 4 (id=5560):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_CLOCK(r1, 0x4048aec9, &(0x7f0000000040)={0x601b, 0x8, 0x2000000, 0x2000000, 0x40002})

10m26.347709462s ago: executing program 33 (id=5560):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_CLOCK(r1, 0x4048aec9, &(0x7f0000000040)={0x601b, 0x8, 0x2000000, 0x2000000, 0x40002})

40.285511856s ago: executing program 2 (id=12435):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x62002, 0x0)
r1 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$DRM_IOCTL_DROP_MASTER(r1, 0x641f)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000140)=ANY=[@ANYBLOB="01f10040fb0004000000abdaa780a34abc617b99721fb510706094b868e3a4f010ed6a257e485a203407734052477889288d33d54f53d4a942cc4c50fba9cc28d99c8bdd4fa6adab3f17a14d1e5b6ad9fded47a6cae53f64679431554e8d9c9fa00c76f323499bd79fa036b4ed8f9de237cfcb4bba98c89a6b3833a5f088fa63a44cf3f2f3b7108fd9f8a34853cb1f6be888688027"])
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000008c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$UHID_INPUT(r4, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r4, 0x0)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_PROBE_HOST(r5, 0x5393, &(0x7f0000000040)={0x1d, ""/29})
r6 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$DRM_IOCTL_VERSION(r1, 0xc0406400, &(0x7f0000000040)={0xfff, 0x80000000, 0x37, 0x1000, &(0x7f0000000200)=""/4096, 0x84, &(0x7f0000001200)=""/132, 0x54, &(0x7f00000012c0)=""/84})
r7 = syz_open_dev$video(&(0x7f0000000080), 0x59f, 0x880)
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r7, 0xc034564b, &(0x7f0000000100)={0x0, 0x50565559, 0x780, 0x0, 0x3, @stepwise={{}, {}, {0x0, 0x4}}})
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDDELIO(r8, 0x4b34, 0x3bf)
ioctl$TIOCL_SETSEL(r6, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x0, 0x300, 0x0, 0x101, 0xf}})

40.053675235s ago: executing program 2 (id=12438):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x1, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0xffffffff, 0x7, 0xe, 0xc000, 0x7, 0x0, 0x0, 0x1, 0xffffffff}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r2, 0xc0045009, &(0x7f0000000140)=0x1)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000000))
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = dup(r3)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000240), 0x20082, 0x0)
write$vga_arbiter(r7, 0x0, 0xd)
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r8, 0x4048aecb, &(0x7f0000000400)={0x8, 0x0, [{0x80000001, 0x405, 0x0, 0x203, 0x7, 0x80000000, 0xc}, {0x6, 0x5, 0x5, 0x745, 0xfa1e, 0xa, 0x1}, {0x40000000, 0x2, 0x4, 0x0, 0xa7, 0x3}, {0x2, 0x2, 0x0, 0x4, 0x53b, 0x2, 0xb}, {0x0, 0x5, 0x2, 0x10000, 0x9, 0x5, 0x10000}, {0x80000001, 0xffff0004, 0x7, 0x10, 0x7, 0x9, 0x6}, {0x6, 0x80, 0x4, 0x1, 0x6, 0x0, 0x9}, {0xa, 0x8, 0x2, 0x80000001, 0x4a4, 0xdd4eccf, 0xfffffbff}]})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r4, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000440), 0x801, 0x0)
r9 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r9, 0x40046f41, &(0x7f0000000440)=0x1f)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, 0x0)
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000480)={"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"})

39.147311074s ago: executing program 2 (id=12445):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000680))
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f47"])
r2 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='b *:* 1'], 0x8)
ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f0000000280)=0x7)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r6, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x581, 0x0, 0x6}]})
r7 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f00000001c0)={[0x5, 0x6, 0x0, 0x0, 0x10003, 0x0, 0x400200cc4, 0xffe, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6a, 0x8d], 0xffff1000, 0x2011c0})
ioctl$KVM_RUN(r8, 0xae80, 0x0)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000080)={0x0, 0x80000, <r9=>0xffffffffffffffff})
ioctl$DRM_IOCTL_CONTROL(r9, 0x40086414, &(0x7f0000000180)={0x3, 0x16c8})
r10 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MP_STATE(r10, 0x4004ae99, &(0x7f0000000000)=0x1)

38.521384707s ago: executing program 2 (id=12451):
openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x32600)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x220004, 0x0)
r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0)
write$vga_arbiter(r3, &(0x7f0000000300)=ANY=[@ANYBLOB='trylock m'], 0xf)
ioctl$KDSIGACCEPT(r2, 0x4b4e, 0x20)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$TCXONC(r4, 0x80045440, 0x3)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r6, 0xae78, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000019000048000000000000000800000000000000192c8666a8"])
syz_open_dev$usbmon(&(0x7f0000000cc0), 0x3, 0x8000)
close(0x3)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r9, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x5, 0x41, 0x2000000, 0x0, 0x2004cb, 0x0, 0xa1d, 0x68ff, 0x5, 0x0, 0x3, 0x2], 0x10000, 0x202})
ioctl$VIDIOC_DV_TIMINGS_CAP(0xffffffffffffffff, 0xc0905664, &(0x7f0000000380)={0x0, 0x0, '\x00', @raw_data=[0x5, 0x7, 0x7ff, 0x5, 0xffffff01, 0x7, 0x1, 0x401, 0xff, 0xffff, 0x6, 0x7f, 0xfffffff6, 0x245a, 0x1, 0x15, 0x9, 0x1, 0xf, 0x9, 0x4, 0x5, 0x3, 0xfff, 0x4, 0x6245, 0x1, 0x351, 0x9, 0x4, 0xfff, 0x7]})
r10 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r10, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r10, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r10, 0x4040534e, &(0x7f0000000140)={0x16f, @tick=0x7fffffff})
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
write$cgroup_int(r0, &(0x7f0000000040)=0x900, 0x12)

38.338164498s ago: executing program 2 (id=12452):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x123a02, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x0, 0x0, &(0x7f00000000c0)=""/87, 0x0})
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000400)=0x4000000)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000640))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000280)=0x10)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101740, 0x179)
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000500)=0x1)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af04, &(0x7f0000000200))
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000a00)={0x1, 0x0, [{0x10000, 0xca, &(0x7f00000002c0)=""/202}]})
pwritev(r0, &(0x7f0000000540)=[{&(0x7f0000000480)="cd", 0x1}], 0x1, 0x7, 0x1)
close(r3)
r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r4, 0x40085112, &(0x7f0000000080)=@s={0x5, @generic=0x9})

38.217676706s ago: executing program 2 (id=12453):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x1, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0xffffffff, 0x7, 0xe, 0xc000, 0x7, 0x0, 0x0, 0x1, 0xffffffff}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r2, 0xc0045009, &(0x7f0000000140)=0x1)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000000))
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = dup(r3)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000240), 0x20082, 0x0)
write$vga_arbiter(r7, 0x0, 0xd)
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r8, 0x4048aecb, &(0x7f0000000400)={0x8, 0x0, [{0x80000001, 0x405, 0x0, 0x203, 0x7, 0x80000000, 0xc}, {0x6, 0x5, 0x5, 0x745, 0xfa1e, 0xa, 0x1}, {0x40000000, 0x2, 0x4, 0x0, 0xa7, 0x3}, {0x2, 0x2, 0x0, 0x4, 0x53b, 0x2, 0xb}, {0x0, 0x5, 0x2, 0x10000, 0x9, 0x5, 0x10000}, {0x80000001, 0xffff0004, 0x7, 0x10, 0x7, 0x9, 0x6}, {0x6, 0x80, 0x4, 0x1, 0x6, 0x0, 0x9}, {0xa, 0x8, 0x2, 0x80000001, 0x4a4, 0xdd4eccf, 0xfffffbff}]})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r4, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000440), 0x801, 0x0)
r9 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r9, 0x40046f41, &(0x7f0000000440)=0x1f)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, 0x0)
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000480)={"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"})

22.625338051s ago: executing program 34 (id=12453):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x1, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0xffffffff, 0x7, 0xe, 0xc000, 0x7, 0x0, 0x0, 0x1, 0xffffffff}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r2, 0xc0045009, &(0x7f0000000140)=0x1)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000000))
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = dup(r3)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000240), 0x20082, 0x0)
write$vga_arbiter(r7, 0x0, 0xd)
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r8, 0x4048aecb, &(0x7f0000000400)={0x8, 0x0, [{0x80000001, 0x405, 0x0, 0x203, 0x7, 0x80000000, 0xc}, {0x6, 0x5, 0x5, 0x745, 0xfa1e, 0xa, 0x1}, {0x40000000, 0x2, 0x4, 0x0, 0xa7, 0x3}, {0x2, 0x2, 0x0, 0x4, 0x53b, 0x2, 0xb}, {0x0, 0x5, 0x2, 0x10000, 0x9, 0x5, 0x10000}, {0x80000001, 0xffff0004, 0x7, 0x10, 0x7, 0x9, 0x6}, {0x6, 0x80, 0x4, 0x1, 0x6, 0x0, 0x9}, {0xa, 0x8, 0x2, 0x80000001, 0x4a4, 0xdd4eccf, 0xfffffbff}]})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r4, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000440), 0x801, 0x0)
r9 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r9, 0x40046f41, &(0x7f0000000440)=0x1f)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, 0x0)
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000480)={"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"})

20.710257866s ago: executing program 3 (id=12572):
r0 = syz_open_dev$usbfs(0x0, 0x76, 0x121301)
ioctl$USBDEVFS_FREE_STREAMS(r0, 0x80045519, &(0x7f0000000040)=ANY=[])

20.662741594s ago: executing program 3 (id=12573):
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, &(0x7f0000000040)=0x6)
ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f00000001c0)=0x9)
write$dsp(r0, &(0x7f0000000140)="b4", 0x29)
r1 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000080)=0x74000000)
write$dsp(r1, &(0x7f0000002000)='`', 0x88020)
ioctl$SNDCTL_DSP_GETODELAY(r1, 0x80045017, &(0x7f0000000000))
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)

18.927242205s ago: executing program 0 (id=12586):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000040)={0x7f, 0xfffffffe, 0x10002000, 0x4007, 0x41, "1ae34e07938ae3ff23f341f2b30700001e00", 0x4, 0x20001})

18.82165966s ago: executing program 0 (id=12587):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x1, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0xffffffff, 0x7, 0xe, 0xc000, 0x7, 0x0, 0x0, 0x1, 0xffffffff}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r2, 0xc0045009, &(0x7f0000000140)=0x1)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000000))
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = dup(r3)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000240), 0x20082, 0x0)
write$vga_arbiter(r7, &(0x7f00000002c0)=ANY=[@ANYBLOB='trylock '], 0xd)
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r8, 0x4048aecb, &(0x7f0000000400)={0x7, 0x0, [{0x80000001, 0x405, 0x0, 0x203, 0x7, 0x80000000, 0xc}, {0x6, 0x5, 0x5, 0x745, 0xfa1e, 0xa, 0x1}, {0x2, 0x2, 0x0, 0x4, 0x53b, 0x2, 0xb}, {0x0, 0x5, 0x2, 0x10000, 0x9, 0x5, 0x10000}, {0x80000001, 0xffff0004, 0x7, 0x10, 0x7, 0x9, 0x6}, {0x6, 0x80, 0x4, 0x1, 0x6, 0x0, 0x9}, {0xa, 0x8, 0x2, 0x80000001, 0x4a4, 0xdd4eccf, 0xfffffbff}]})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r4, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000440), 0x801, 0x0)
r9 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r9, 0x40046f41, &(0x7f0000000440)=0x1f)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000480)={"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"})

17.986782163s ago: executing program 0 (id=12593):
ioctl$VIDIOC_ENUM_DV_TIMINGS(0xffffffffffffffff, 0xc0945662, &(0x7f0000000480)={0x7, 0x0, '\x00', {0x0, @bt={0xffffff48, 0x5, 0x1, 0x1, 0xa, 0xfffffff9, 0x10001, 0x5, 0x4, 0x10000000, 0x1, 0x84, 0x8, 0x1, 0x2, 0x0, {0x7fff, 0x1}, 0x59, 0x8}}})

17.873853668s ago: executing program 0 (id=12594):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x284, 0x0, 0x5}]}) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000280)={0x1, 0x0, [{0x6e0}]}) (async)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)

17.585875283s ago: executing program 0 (id=12598):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
r1 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
ioctl$VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x0, 0x0, 0x3132564e, 0x0, 0x0, 0x0, 0x6, 0xfeedcafe, 0x3}})
r2 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
ioctl$DRM_IOCTL_VERSION(r2, 0xc0406400, &(0x7f0000000080)={0x8, 0x4, 0x4, 0x1000, &(0x7f0000001280)=""/4096, 0x0, 0x0, 0x0, 0x0})
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000040)={0x9c1, 0x50565559, 0x2, 0x4, 0x1, @stepwise={{0x4, 0x101}, {0x9, 0xe067}, {0x80, 0xff}}})
r3 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r3, 0xc02c564a, &(0x7f0000000200)={0x0, 0x56595559})
ioctl$VIDIOC_G_DV_TIMINGS(r0, 0xc0845658, &(0x7f0000000300)={0x0, @bt={0x9, 0xbf24, 0x0, 0x1, 0xd621, 0x4, 0xeb89, 0x2472, 0xffff, 0x3, 0x4, 0xfff, 0x5, 0x0, 0xe, 0x0, {0x0, 0x5}, 0x80, 0x6}})

17.422618778s ago: executing program 3 (id=12600):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x80, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r1, &(0x7f0000000680)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0xc000000, {0x2a00, 0x80010000, 0x0, 0x8, 0x0, 0x0, 0x0, 0xe, 0x1c, "fee8a2ab780e00001ea8ffffffff0000000000000004ddb49a000000000000000000f8ff000800000000000000000000000000001400", "2809e8dbe108598948f8ffd54a07c21d875397bdb22d0008b420a1819e01177d3d458dd4992861ac00000080ffffffffffffffff001700", "90be8bf4bd00000000000000000000000000001000"}})

17.422000509s ago: executing program 0 (id=12601):
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
close(r0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_open_dev$swradio(&(0x7f0000000140), 0x0, 0x2)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
read$FUSE(0xffffffffffffffff, &(0x7f0000001500)={0x2020, 0x0, <r5=>0x0}, 0x2020)
r6 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
read$FUSE(r6, &(0x7f0000005e40)={0x2020, 0x0, <r7=>0x0, <r8=>0x0, <r9=>0x0}, 0x2020)
write$FUSE_ATTR(r6, &(0x7f0000005340)={0x78, 0x0, r7, {0x2000000007, 0x400, 0x0, {0x6, 0xfffe000000000000, 0xfffffffffffffffb, 0xff, 0x694, 0x3, 0x7f, 0x9, 0x800, 0x2000, 0x2, r8, r9, 0xb, 0x8, 0x1000000}}}, 0x78)
write$FUSE_STATX(r4, &(0x7f0000000380)={0x130, 0xfffffffffffffffe, r5, {0xc, 0x4, 0x0, '\x00', {0x2, 0x8, 0x0, 0x2, 0xee00, r9, 0x2000, '\x00', 0x5, 0x1e, 0xb32, 0xb58e, {0xda5, 0x2}, {0x9}, {0x9}, {0x5, 0x3}, 0xffffffff, 0x7, 0x101, 0x7}}}, 0x130)
r10 = dup(r3)
read(r10, &(0x7f0000000040), 0x0)
write$cgroup_subtree(r10, &(0x7f00000002c0)=ANY=[@ANYBLOB="2b6e65b8bc0fe563fd6ab4a1ec2d4aa161a949745f70720474202b23d7"], 0x18)
r11 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r12 = dup(r11)
ioctl$KVM_X86_SETUP_MCE(r11, 0x4008ae9c, &(0x7f00000014c0)={0xb, 0x4, 0x71})
r13 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$nci(r13, &(0x7f0000000340)=@NCI_OP_CORE_INIT_RSP, 0x14)
ioctl$KVM_SET_MSRS(r12, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000000800009602"])
r14 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
ioctl$FS_IOC_GETFSLABEL(r1, 0x81009431, &(0x7f00000001c0))
read(r14, &(0x7f0000000100)=""/159, 0xfffffe5a)

17.421218759s ago: executing program 3 (id=12603):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000180)={0x3d, 0x4, 0x2d7})
r1 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1}) (async)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f0000000c00)={0x0, 0x0, r4})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r2, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000440)={r5, 0x0, 0x0, 0x0, 0x0, [<r6=>0x0]})
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000001c0)=0xe) (async)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000))
openat$mice(0xffffffffffffff9c, &(0x7f00000002c0), 0x88040) (async)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000200)={r6, 0x0, <r8=>0xffffffffffffffff}) (async)
r9 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r9, 0xc00c642e, &(0x7f0000000040)={0x0, 0x0, r8}) (async)
r10 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x729300, 0x0)
read(r10, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x1000000000000000) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='io.stat\x00', 0x26e1, 0x900) (async)
r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
r12 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r12, 0xae03, 0xbf)
r13 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x2) (async)
r15 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r15, 0xc08c5335, &(0x7f00000001c0)={0xfffffffd, 0x80, 0x0, 'queue0\x00'})
ioctl$KVM_SET_VCPU_EVENTS(r14, 0x4040aea0, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)

17.248836373s ago: executing program 3 (id=12604):
r0 = syz_open_dev$radio(&(0x7f00000000c0), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_G_TUNER(r0, 0xc054561d, &(0x7f0000000140)={0x0, "3e70842faca4ce8c2d626ca0f49a02d8da492c5c741cf44e2395e63077543266", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd})

17.025344301s ago: executing program 3 (id=12605):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x208103, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$char_usb(r2, &(0x7f00000001c0)="c41e10fbe76b55c4de3bd16e8050b03254b333b63c7a2178f756c12482fd591baca2862e8ee118624a03d2b1f5", 0x2d)
write$rfkill(r3, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r2, 0x0)
r4 = openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r2, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})
r6 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
read$FUSE(r6, &(0x7f0000000580)={0x2020, 0x0, <r7=>0x0, <r8=>0x0, <r9=>0x0}, 0x2020)
write$FUSE_DIRENTPLUS(r6, &(0x7f00000029c0)=ANY=[@ANYBLOB="5806000000000000", @ANYRES64=r7, @ANYBLOB="0000000000000000020000000000000001800000000000004600000000000000ff000000020000000600000000000000a90f000000000000f9ffffffffffffffff0f00000000000002000000000000000300000000000000040000000000000007ed000000a0000008000000", @ANYRES32=r8, @ANYRES32=0x0, @ANYBLOB="fd55000001000080000000000000000000000000030000000000000006000000050000007663616e30000000060000000000000000000000000000000500000000000000c0ffffffffffffff030000000002000003000000000000000200000000000000050000000000000001ffffffffffffff0f000000000000000700000000000000ffff00000200000001feffff0030000002000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="05000000184c00000000000000000000000000000100010000000000080000000b000000257042202020200001000000000000000000000000000000ffffffff00000000070000000000000025f40000020000000600000000000000070000000000000002000000000000000f00000000000000ffffffffffffffff010000000000000002000000080000006194000000e0000007000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="008000000080ff01000000000100000000000000a9d00000000000000a0000005e9a00002f6465762f6375736500000000000000060000000000000002000000000000005f0000000000000004000000000000000400000001000000000000000000000007000000000000000010000000000000f9ffffffffffffff018000000000000000000000000000000008000000000080830b000000c0000001000080", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="8a020000070000000000000005000000000000000400000000000000010000000a000000000000000000000005000000000000000200000000000000080000000000000001800000000000000d000000060000000a0000000000000084010000000000008705000000000000008000000000000008000000000000000000000000000000ffffffff0600000010000000002000000b000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="000000800b000000000000000200000000000000080000000000000001000000a200000028000000000000000200000000000000010000000000000009000000000000000600000000000000f8ffffffff7f0000050000000000000001000000000000000c000000000000000a00000000000000060000000000000006000000000000000300000006000000070000000080000008000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="0500000003000000000000000300000000000000020000000000000001000000090000002c0000000000000006000000000000000000000000000000d55d00000000000003000000000000000500000081000000030000000000000001000000010000000500000000000000020000000000000001000000000000000200000000000000060000009e4f5069000000800020000006000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="0600000005000000000000000000000000000000fcffffffffffffff060000000400000026272e3a2628000002000000001d0000010000000000000001040000000000000500000000000000800000000400000005000000000000000404000000000000050000000000000004000000000000000108000000000000ff0000000000000006000000a2d70000ff7f0000004000007f000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffff7fc60000000000000004000000000000000100000001000000040000004f0f00005c2d2d2c0000000005000000000000000100000000000000ff0700000000000003000000000000003d0001007f0000000600000000000000070000000000000005000000000000000300000000000000ec590000000000000500000000000000040000006c0f0000000000800040000080000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="060000004a6a00000000000002000000000000004f0500000000000008000000ff0300006e6c3830323131000500000000000000020000000000000002000000000000009f04000000000000ff7f00006500000005000000000000004abe0000000000000707000000000000b304000000000000000000000000000003000000000000000100010000f8ffff06000000004000003eca4c4b", @ANYRES32=0xee00, @ANYRES32=r9, @ANYBLOB="01000000e262000000000000020000000000000001010000000000000100000003000000ad00000000000000"], 0x658)
read$FUSE(r2, &(0x7f0000004440)={0x2020, 0x0, 0x0, 0x0, <r10=>0x0}, 0x2020)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000280)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {<r11=>0xee00, 0xee01}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r0, {<r12=>0xffffffffffffffff}}, './file0\x00'})
r13 = openat$cuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
read$FUSE(r13, &(0x7f0000000400)={0x2020, 0x0, <r14=>0x0, <r15=>0x0, <r16=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r13, &(0x7f0000002f80)={0xa0, 0x0, r14, {{0x2, 0x2, 0x6, 0x4, 0x7, 0x7, {0x1, 0xe, 0x100, 0x7b, 0xf, 0x400, 0x3, 0x6, 0x8, 0x8000, 0x10001, r15, r16, 0x9, 0x8}}, {0x0, 0x1d}}}, 0xa0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000006480)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee00, <r17=>0xee00}}, './file0\x00'})
ioctl$DRM_IOCTL_GET_CLIENT(r5, 0xc0286405, &(0x7f00000064c0)={0x81, 0xfffffffa, {0xffffffffffffffff}, {<r18=>0xffffffffffffffff}, 0x3, 0x2})
read$FUSE(r5, &(0x7f0000006500)={0x2020, 0x0, 0x0, 0x0, <r19=>0x0}, 0x2020)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000008540)={{0x1, 0x1, 0x18, r0, {<r20=>0xee01, 0xee01}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000008580)={{0x1, 0x1, 0x18, r0, {0x0, <r21=>0xee00}}, './file0\x00'})
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f00000085c0)=ANY=[@ANYBLOB="48050000daffffff", @ANYRES64=0x0, @ANYBLOB="0200000000000000010000000000000010000000000000004f8400000000000000000000b50000000500000000000000fafffffffffffffff700000000000000fefffffffffffffffbffffffffffffff09000000000000000008000003000000080000000060000022000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="03000000060000000000000000000000000000000700000000000000150000005ecfbb732f70726f632f73656c662f6e65742f70666b65790000000006000000000000000100000000000000030000000000000005000000000000000000000002000000050000000000000009000000000000000100008000000000060000000000000008000000000000005308000000000000070000000500000019df00000010000005000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="040000009d300000000000000200000000000000160b0000000000000c000000060000002f6465762f72666b696c6c0000000000050000000000000003000000000000007102000000000000000800000000000009000000cb000000030000000000000006000000000000005b0000000000000006000000000000000900000000000000ff00000000000004e9f3ffff06000000080000000080000009000000", @ANYRES32=r8, @ANYRES32=r10, @ANYBLOB="0800000086744a0100000000060000000000000000f8ffffffffffff050000002c0000002e295d7d28000000020000000000000003000000000000000000000000000000100000000000000007000000060000000000000000000000fda5ffffffffffff000000800000000006000000000000000100000000000080e3070000000000000002000008000000070000000060000010000000", @ANYRES32=r11, @ANYRES32=0xee00, @ANYBLOB="010001000008000000000000040000000000000005000000000000000c000000070000002f6465762f72666b696c6c0000000000010000000000000000000000000000000100000000000080070000000000000005000000d7200000050000000000000002000000000000002d7700000000000000080000000000000400000000000000b131ffffffffffff0002000000000000020000000040000000000000", @ANYRES32=r12, @ANYRES32=r16, @ANYBLOB="03000000f60f0000000000000200000000000000090000000000000010000000080000002f6465762f696e7075742f6d6963650000000000000000000300000000000000070000000000000077e20000000000000600000009000000060000000000000003000000000000000700000000000000ffffffffffffffff030000000000000005000000000000000900000009000000050000000010000005000000", @ANYRES32=0xee00, @ANYRES32=r17, @ANYBLOB="0000000005000000000000000300000000000000020000000000000001000000020000005e0000000000000005000000000000000300000000000000ffffffffffffffff090000000000000008000000d2a800000000000000000000ff0300000000000008000000000000000000000000000000010000000000000005000000000000000000000006000000250d000000f00000f7ffffff", @ANYRES32=r18, @ANYRES32=r19, @ANYBLOB="090000000200000000000000030000000000000000000090dc0200000c000000ff0000002f6465762f72666b696c6c000000000005000000000000000200000000000000fffffeffffffffff0400000000000000040000000200000006000000000000007f00000000000000bd0f000000000000000000000100000001000100000000008d0000000000000005000000000000800300000000200000940f0000", @ANYRES32=r20, @ANYRES32=r21, @ANYBLOB="0500000005000000000700000600000000000000400000000010000000050000002f6465762f696e7075742f6d696365005ea364"], 0x548)

16.759000006s ago: executing program 5 (id=12607):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x76, 0x121301)
ioctl$USBDEVFS_FREE_STREAMS(r0, 0x80045519, &(0x7f0000000040)=ANY=[])

16.641928855s ago: executing program 5 (id=12608):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a) (async)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_SET_VERSION(r1, 0xc0106407, &(0x7f00000000c0)={0x1, 0x2}) (async)
ioctl$DRM_IOCTL_SET_VERSION(r1, 0xc0106407, &(0x7f0000000140)={0x1, 0x1}) (async)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0) (async)
r2 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r2, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r2, 0x0, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = dup(r3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r4, 0x0) (async)
ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})

16.535907696s ago: executing program 5 (id=12609):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x8800, 0x0)
r2 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r2, 0x40045612, &(0x7f0000000000)=0x1)
close(r2)
r3 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix={0x1000000, 0x0, 0x34524742, 0x9}})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {<r4=>0xee01}}, './file0\x00'})
ioctl$TUNSETOWNER(r1, 0x400454cc, r4)

16.335261121s ago: executing program 5 (id=12610):
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
preadv(r0, &(0x7f0000001780)=[{0x0}], 0x1, 0x0, 0x0)

16.221544755s ago: executing program 5 (id=12611):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000000))
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000100)={0x2, &(0x7f0000000080)=[{0x40, 0xff, 0x0, 0x80000000}, {0x6, 0x0, 0x0, 0x2}]})
write$ppp(r0, &(0x7f00000010c0)="1e00", 0x2)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r2 = dup(r1)
r3 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r3, 0x7a7, &(0x7f00000000c0)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, &(0x7f0000000040)={@host})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r3, 0x7ab, &(0x7f0000000000)={&(0x7f0000000540)={{@host=0x10}, {@host=0x10}, 0x400, "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"}, 0x418})
ioctl$IOCTL_VMCI_DATAGRAM_RECEIVE(r3, 0x7cb, &(0x7f0000000980)={&(0x7f0000000100)={{}, {@hyper}, 0x400, "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"}, 0x418})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r2, 0x0)
r4 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, &(0x7f0000000000)={@my=0x0})
openat$vmci(0xffffffffffffff9c, &(0x7f00000009c0), 0x2, 0x0)
ioctl$IOCTL_VMCI_NOTIFICATIONS_RECEIVE(0xffffffffffffffff, 0x7ac, &(0x7f0000000140)={0xc00d, 0x0, 0xfffffffffffffffc, 0x2, 0x6})
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSACTIVE(r5, 0x40107446, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6}]})
ioctl$PPPIOCSACTIVE(r5, 0x40107446, &(0x7f0000000200)={0x0, 0x0})
r6 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$int_in(r6, 0x40000000af01, 0x0)
ioctl$VHOST_SET_LOG_FD(r6, 0x4004af07, &(0x7f0000000000))
openat$nvram(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x501, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(0xffffffffffffffff, 0x3b85, 0x0)
r7 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
mmap(&(0x7f0000787000/0x1000)=nil, 0x1000, 0x5a051feb1e984a1b, 0x100010, r7, 0x95151000)

15.526679764s ago: executing program 5 (id=12612):
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x1a0682)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$IOCTL_VMCI_SET_NOTIFY(r1, 0x7cb, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xf)
close(r1)
ioctl$TCFLSH(r2, 0x400455c8, 0x4)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000780)={0x0, 0x0, 0x0, 'queue0\x00', 0xdfc})
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_debug_messages', 0x2, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000000)=[<r5=>0x0], &(0x7f0000000340)=[<r6=>0x0], 0x0, 0x0, 0x1, 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r4, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[r6, r5], 0x2})
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000000100)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4, 0x0, <r7=>0x0})
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r3, 0xc01864b0, &(0x7f0000000180)={r5, r7, 0x0, 0x9, 0x267})
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000193c0), 0x402)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r8, 0x404c534a, &(0x7f0000000040))

1.50095039s ago: executing program 35 (id=12601):
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
close(r0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_open_dev$swradio(&(0x7f0000000140), 0x0, 0x2)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
read$FUSE(0xffffffffffffffff, &(0x7f0000001500)={0x2020, 0x0, <r5=>0x0}, 0x2020)
r6 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
read$FUSE(r6, &(0x7f0000005e40)={0x2020, 0x0, <r7=>0x0, <r8=>0x0, <r9=>0x0}, 0x2020)
write$FUSE_ATTR(r6, &(0x7f0000005340)={0x78, 0x0, r7, {0x2000000007, 0x400, 0x0, {0x6, 0xfffe000000000000, 0xfffffffffffffffb, 0xff, 0x694, 0x3, 0x7f, 0x9, 0x800, 0x2000, 0x2, r8, r9, 0xb, 0x8, 0x1000000}}}, 0x78)
write$FUSE_STATX(r4, &(0x7f0000000380)={0x130, 0xfffffffffffffffe, r5, {0xc, 0x4, 0x0, '\x00', {0x2, 0x8, 0x0, 0x2, 0xee00, r9, 0x2000, '\x00', 0x5, 0x1e, 0xb32, 0xb58e, {0xda5, 0x2}, {0x9}, {0x9}, {0x5, 0x3}, 0xffffffff, 0x7, 0x101, 0x7}}}, 0x130)
r10 = dup(r3)
read(r10, &(0x7f0000000040), 0x0)
write$cgroup_subtree(r10, &(0x7f00000002c0)=ANY=[@ANYBLOB="2b6e65b8bc0fe563fd6ab4a1ec2d4aa161a949745f70720474202b23d7"], 0x18)
r11 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r12 = dup(r11)
ioctl$KVM_X86_SETUP_MCE(r11, 0x4008ae9c, &(0x7f00000014c0)={0xb, 0x4, 0x71})
r13 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$nci(r13, &(0x7f0000000340)=@NCI_OP_CORE_INIT_RSP, 0x14)
ioctl$KVM_SET_MSRS(r12, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000000800009602"])
r14 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x28200, 0x0)
ioctl$FS_IOC_GETFSLABEL(r1, 0x81009431, &(0x7f00000001c0))
read(r14, &(0x7f0000000100)=""/159, 0xfffffe5a)

1.459398077s ago: executing program 36 (id=12605):
r0 = openat$rnullb(0xffffffffffffff9c, &(0x7f0000000040), 0x208103, 0x0)
read(r0, &(0x7f0000000100)=""/159, 0xfffffe5a)
ioctl$BLKOPENZONE(r0, 0x40101286, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082)
write$FUSE_CREATE_OPEN(r1, &(0x7f0000000300)={0xa0, 0xfffffffffffffffe, 0x0, {{0x2, 0x2, 0x2, 0x6bf, 0x8, 0x1, {0x6, 0x2, 0x100000001, 0x0, 0x6, 0x1, 0x101, 0x7, 0xe, 0xb000, 0x7, 0x0, 0x0, 0x1, 0x3}}, {0x0, 0x1c}}}, 0xa0)
read$FUSE(r1, 0x0, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$char_usb(r2, &(0x7f00000001c0)="c41e10fbe76b55c4de3bd16e8050b03254b333b63c7a2178f756c12482fd591baca2862e8ee118624a03d2b1f5", 0x2d)
write$rfkill(r3, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r2, 0x0)
r4 = openat$pfkey(0xffffffffffffff9c, 0x0, 0x801, 0x0)
r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x202, 0x0)
ioctl$BLKZEROOUT(r2, 0x127f, &(0x7f00000000c0)={0x6000, 0x80600})
r6 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
read$FUSE(r6, &(0x7f0000000580)={0x2020, 0x0, <r7=>0x0, <r8=>0x0, <r9=>0x0}, 0x2020)
write$FUSE_DIRENTPLUS(r6, &(0x7f00000029c0)=ANY=[@ANYBLOB="5806000000000000", @ANYRES64=r7, @ANYBLOB="0000000000000000020000000000000001800000000000004600000000000000ff000000020000000600000000000000a90f000000000000f9ffffffffffffffff0f00000000000002000000000000000300000000000000040000000000000007ed000000a0000008000000", @ANYRES32=r8, @ANYRES32=0x0, @ANYBLOB="fd55000001000080000000000000000000000000030000000000000006000000050000007663616e30000000060000000000000000000000000000000500000000000000c0ffffffffffffff030000000002000003000000000000000200000000000000050000000000000001ffffffffffffff0f000000000000000700000000000000ffff00000200000001feffff0030000002000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="05000000184c00000000000000000000000000000100010000000000080000000b000000257042202020200001000000000000000000000000000000ffffffff00000000070000000000000025f40000020000000600000000000000070000000000000002000000000000000f00000000000000ffffffffffffffff010000000000000002000000080000006194000000e0000007000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="008000000080ff01000000000100000000000000a9d00000000000000a0000005e9a00002f6465762f6375736500000000000000060000000000000002000000000000005f0000000000000004000000000000000400000001000000000000000000000007000000000000000010000000000000f9ffffffffffffff018000000000000000000000000000000008000000000080830b000000c0000001000080", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="8a020000070000000000000005000000000000000400000000000000010000000a000000000000000000000005000000000000000200000000000000080000000000000001800000000000000d000000060000000a0000000000000084010000000000008705000000000000008000000000000008000000000000000000000000000000ffffffff0600000010000000002000000b000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="000000800b000000000000000200000000000000080000000000000001000000a200000028000000000000000200000000000000010000000000000009000000000000000600000000000000f8ffffffff7f0000050000000000000001000000000000000c000000000000000a00000000000000060000000000000006000000000000000300000006000000070000000080000008000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="0500000003000000000000000300000000000000020000000000000001000000090000002c0000000000000006000000000000000000000000000000d55d00000000000003000000000000000500000081000000030000000000000001000000010000000500000000000000020000000000000001000000000000000200000000000000060000009e4f5069000000800020000006000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="0600000005000000000000000000000000000000fcffffffffffffff060000000400000026272e3a2628000002000000001d0000010000000000000001040000000000000500000000000000800000000400000005000000000000000404000000000000050000000000000004000000000000000108000000000000ff0000000000000006000000a2d70000ff7f0000004000007f000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffff7fc60000000000000004000000000000000100000001000000040000004f0f00005c2d2d2c0000000005000000000000000100000000000000ff0700000000000003000000000000003d0001007f0000000600000000000000070000000000000005000000000000000300000000000000ec590000000000000500000000000000040000006c0f0000000000800040000080000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="060000004a6a00000000000002000000000000004f0500000000000008000000ff0300006e6c3830323131000500000000000000020000000000000002000000000000009f04000000000000ff7f00006500000005000000000000004abe0000000000000707000000000000b304000000000000000000000000000003000000000000000100010000f8ffff06000000004000003eca4c4b", @ANYRES32=0xee00, @ANYRES32=r9, @ANYBLOB="01000000e262000000000000020000000000000001010000000000000100000003000000ad00000000000000"], 0x658)
read$FUSE(r2, &(0x7f0000004440)={0x2020, 0x0, 0x0, 0x0, <r10=>0x0}, 0x2020)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000280)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {<r11=>0xee00, 0xee01}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r0, {<r12=>0xffffffffffffffff}}, './file0\x00'})
r13 = openat$cuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
read$FUSE(r13, &(0x7f0000000400)={0x2020, 0x0, <r14=>0x0, <r15=>0x0, <r16=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r13, &(0x7f0000002f80)={0xa0, 0x0, r14, {{0x2, 0x2, 0x6, 0x4, 0x7, 0x7, {0x1, 0xe, 0x100, 0x7b, 0xf, 0x400, 0x3, 0x6, 0x8, 0x8000, 0x10001, r15, r16, 0x9, 0x8}}, {0x0, 0x1d}}}, 0xa0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000006480)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee00, <r17=>0xee00}}, './file0\x00'})
ioctl$DRM_IOCTL_GET_CLIENT(r5, 0xc0286405, &(0x7f00000064c0)={0x81, 0xfffffffa, {0xffffffffffffffff}, {<r18=>0xffffffffffffffff}, 0x3, 0x2})
read$FUSE(r5, &(0x7f0000006500)={0x2020, 0x0, 0x0, 0x0, <r19=>0x0}, 0x2020)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000008540)={{0x1, 0x1, 0x18, r0, {<r20=>0xee01, 0xee01}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000008580)={{0x1, 0x1, 0x18, r0, {0x0, <r21=>0xee00}}, './file0\x00'})
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f00000085c0)=ANY=[@ANYBLOB="48050000daffffff", @ANYRES64=0x0, @ANYBLOB="0200000000000000010000000000000010000000000000004f8400000000000000000000b50000000500000000000000fafffffffffffffff700000000000000fefffffffffffffffbffffffffffffff09000000000000000008000003000000080000000060000022000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="03000000060000000000000000000000000000000700000000000000150000005ecfbb732f70726f632f73656c662f6e65742f70666b65790000000006000000000000000100000000000000030000000000000005000000000000000000000002000000050000000000000009000000000000000100008000000000060000000000000008000000000000005308000000000000070000000500000019df00000010000005000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="040000009d300000000000000200000000000000160b0000000000000c000000060000002f6465762f72666b696c6c0000000000050000000000000003000000000000007102000000000000000800000000000009000000cb000000030000000000000006000000000000005b0000000000000006000000000000000900000000000000ff00000000000004e9f3ffff06000000080000000080000009000000", @ANYRES32=r8, @ANYRES32=r10, @ANYBLOB="0800000086744a0100000000060000000000000000f8ffffffffffff050000002c0000002e295d7d28000000020000000000000003000000000000000000000000000000100000000000000007000000060000000000000000000000fda5ffffffffffff000000800000000006000000000000000100000000000080e3070000000000000002000008000000070000000060000010000000", @ANYRES32=r11, @ANYRES32=0xee00, @ANYBLOB="010001000008000000000000040000000000000005000000000000000c000000070000002f6465762f72666b696c6c0000000000010000000000000000000000000000000100000000000080070000000000000005000000d7200000050000000000000002000000000000002d7700000000000000080000000000000400000000000000b131ffffffffffff0002000000000000020000000040000000000000", @ANYRES32=r12, @ANYRES32=r16, @ANYBLOB="03000000f60f0000000000000200000000000000090000000000000010000000080000002f6465762f696e7075742f6d6963650000000000000000000300000000000000070000000000000077e20000000000000600000009000000060000000000000003000000000000000700000000000000ffffffffffffffff030000000000000005000000000000000900000009000000050000000010000005000000", @ANYRES32=0xee00, @ANYRES32=r17, @ANYBLOB="0000000005000000000000000300000000000000020000000000000001000000020000005e0000000000000005000000000000000300000000000000ffffffffffffffff090000000000000008000000d2a800000000000000000000ff0300000000000008000000000000000000000000000000010000000000000005000000000000000000000006000000250d000000f00000f7ffffff", @ANYRES32=r18, @ANYRES32=r19, @ANYBLOB="090000000200000000000000030000000000000000000090dc0200000c000000ff0000002f6465762f72666b696c6c000000000005000000000000000200000000000000fffffeffffffffff0400000000000000040000000200000006000000000000007f00000000000000bd0f000000000000000000000100000001000100000000008d0000000000000005000000000000800300000000200000940f0000", @ANYRES32=r20, @ANYRES32=r21, @ANYBLOB="0500000005000000000700000600000000000000400000000010000000050000002f6465762f696e7075742f6d696365005ea364"], 0x548)

0s ago: executing program 37 (id=12612):
r0 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x1a0682)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$IOCTL_VMCI_SET_NOTIFY(r1, 0x7cb, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0xf)
close(r1)
ioctl$TCFLSH(r2, 0x400455c8, 0x4)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000780)={0x0, 0x0, 0x0, 'queue0\x00', 0xdfc})
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_debug_messages', 0x2, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000000)=[<r5=>0x0], &(0x7f0000000340)=[<r6=>0x0], 0x0, 0x0, 0x1, 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r4, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[r6, r5], 0x2})
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000000100)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x4, 0x0, <r7=>0x0})
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r3, 0xc01864b0, &(0x7f0000000180)={r5, r7, 0x0, 0x9, 0x267})
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000193c0), 0x402)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r8, 0x404c534a, &(0x7f0000000040))

kernel console output (not intermixed with test programs):

NOT_OK.
[  838.499073][T20570] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  838.809466][T20594] input: syz1 as /devices/virtual/input/input172
[  839.252620][T20625] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  839.260652][T20625] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  839.684161][T20641] FAULT_INJECTION: forcing a failure.
[  839.684161][T20641] name failslab, interval 1, probability 0, space 0, times 0
[  839.697104][T20641] CPU: 0 UID: 0 PID: 20641 Comm: syz.3.11670 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  839.697133][T20641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  839.697147][T20641] Call Trace:
[  839.697156][T20641]  <TASK>
[  839.697165][T20641]  dump_stack_lvl+0x189/0x250
[  839.697195][T20641]  ? __pfx____ratelimit+0x10/0x10
[  839.697229][T20641]  ? __pfx_dump_stack_lvl+0x10/0x10
[  839.697253][T20641]  ? __pfx__printk+0x10/0x10
[  839.697281][T20641]  ? __pfx___might_resched+0x10/0x10
[  839.697305][T20641]  ? fs_reclaim_acquire+0x7d/0x100
[  839.697340][T20641]  should_fail_ex+0x414/0x560
[  839.697373][T20641]  should_failslab+0xa8/0x100
[  839.697403][T20641]  __kmalloc_noprof+0xcb/0x4f0
[  839.697427][T20641]  ? tomoyo_encode+0x28b/0x550
[  839.697456][T20641]  tomoyo_encode+0x28b/0x550
[  839.697487][T20641]  tomoyo_realpath_from_path+0x58d/0x5d0
[  839.697525][T20641]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  839.697567][T20641]  tomoyo_path_number_perm+0x1e8/0x5a0
[  839.697603][T20641]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  839.697655][T20641]  ? __lock_acquire+0xab9/0xd20
[  839.697699][T20641]  ? __fget_files+0x2a/0x420
[  839.697731][T20641]  ? __fget_files+0x2a/0x420
[  839.697760][T20641]  ? __fget_files+0x3a0/0x420
[  839.697789][T20641]  ? __fget_files+0x2a/0x420
[  839.697824][T20641]  security_file_ioctl+0xcb/0x2d0
[  839.697859][T20641]  __se_sys_ioctl+0x47/0x170
[  839.697887][T20641]  do_syscall_64+0xfa/0x3b0
[  839.697907][T20641]  ? lockdep_hardirqs_on+0x9c/0x150
[  839.697940][T20641]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  839.697960][T20641]  ? clear_bhb_loop+0x60/0xb0
[  839.697986][T20641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  839.698007][T20641] RIP: 0033:0x7f811b78e929
[  839.698025][T20641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  839.698044][T20641] RSP: 002b:00007f811c5fb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  839.698066][T20641] RAX: ffffffffffffffda RBX: 00007f811b9b5fa0 RCX: 00007f811b78e929
[  839.698088][T20641] RDX: 0000200000000540 RSI: 0000000000003b80 RDI: 0000000000000003
[  839.698102][T20641] RBP: 00007f811c5fb090 R08: 0000000000000000 R09: 0000000000000000
[  839.698115][T20641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  839.698128][T20641] R13: 0000000000000000 R14: 00007f811b9b5fa0 R15: 00007ffd5bfe2f88
[  839.698160][T20641]  </TASK>
[  839.698270][T20641] ERROR: Out of memory at tomoyo_realpath_from_path.
[  839.754563][T20644] block nbd0: NBD_DISCONNECT
[  840.287503][T20662] FAULT_INJECTION: forcing a failure.
[  840.287503][T20662] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  840.305013][T20662] CPU: 0 UID: 0 PID: 20662 Comm: syz.2.11673 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  840.305043][T20662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  840.305056][T20662] Call Trace:
[  840.305064][T20662]  <TASK>
[  840.305073][T20662]  dump_stack_lvl+0x189/0x250
[  840.305101][T20662]  ? __pfx____ratelimit+0x10/0x10
[  840.305134][T20662]  ? __pfx_dump_stack_lvl+0x10/0x10
[  840.305165][T20662]  ? __pfx__printk+0x10/0x10
[  840.305201][T20662]  should_fail_ex+0x414/0x560
[  840.305232][T20662]  strncpy_from_user+0x36/0x290
[  840.305261][T20662]  getname_flags+0xf3/0x540
[  840.305286][T20662]  do_sys_openat2+0xbc/0x1c0
[  840.305311][T20662]  ? __pfx_do_sys_openat2+0x10/0x10
[  840.305333][T20662]  ? ksys_write+0x22a/0x250
[  840.305362][T20662]  ? __pfx_ksys_write+0x10/0x10
[  840.305397][T20662]  __x64_sys_openat+0x138/0x170
[  840.305444][T20662]  do_syscall_64+0xfa/0x3b0
[  840.305464][T20662]  ? lockdep_hardirqs_on+0x9c/0x150
[  840.305496][T20662]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  840.305517][T20662]  ? clear_bhb_loop+0x60/0xb0
[  840.305542][T20662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  840.305562][T20662] RIP: 0033:0x7f3d6278e929
[  840.305580][T20662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  840.305598][T20662] RSP: 002b:00007f3d605f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  840.305620][T20662] RAX: ffffffffffffffda RBX: 00007f3d629b5fa0 RCX: 00007f3d6278e929
[  840.305635][T20662] RDX: 0000000000200002 RSI: 0000200000001500 RDI: ffffffffffffff9c
[  840.305650][T20662] RBP: 00007f3d605f6090 R08: 0000000000000000 R09: 0000000000000000
[  840.305663][T20662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  840.305676][T20662] R13: 0000000000000001 R14: 00007f3d629b5fa0 R15: 00007fff6029c138
[  840.305708][T20662]  </TASK>
[  840.582229][T20667] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  840.589834][T20667] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  840.678960][ T5845] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  840.679375][   T51] Bluetooth: hci4: command 0x1003 tx timeout
[  840.977289][T20678] loop8: detected capacity change from 0 to 7
[  840.988996][T20678] Dev loop8: unable to read RDB block 7
[  840.994860][T20678]  loop8: unable to read partition table
[  841.000899][T20678] loop8: partition table beyond EOD, truncated
[  841.020925][T20678] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  841.447911][T20703] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  841.469577][T20703] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  841.982801][T20718] FAULT_INJECTION: forcing a failure.
[  841.982801][T20718] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  841.996239][T20718] CPU: 1 UID: 0 PID: 20718 Comm: syz.5.11688 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  841.996269][T20718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  841.996282][T20718] Call Trace:
[  841.996291][T20718]  <TASK>
[  841.996300][T20718]  dump_stack_lvl+0x189/0x250
[  841.996337][T20718]  ? __pfx____ratelimit+0x10/0x10
[  841.996370][T20718]  ? __pfx_dump_stack_lvl+0x10/0x10
[  841.996394][T20718]  ? __pfx__printk+0x10/0x10
[  841.996418][T20718]  ? __might_fault+0xb0/0x130
[  841.996455][T20718]  should_fail_ex+0x414/0x560
[  841.996487][T20718]  _copy_from_user+0x2d/0xb0
[  841.996510][T20718]  iommufd_fops_ioctl+0x3f9/0x520
[  841.996546][T20718]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  841.996591][T20718]  ? __fget_files+0x3a0/0x420
[  841.996621][T20718]  ? __fget_files+0x2a/0x420
[  841.996653][T20718]  ? bpf_lsm_file_ioctl+0x9/0x20
[  841.996675][T20718]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[  841.996707][T20718]  __se_sys_ioctl+0xfc/0x170
[  841.996736][T20718]  do_syscall_64+0xfa/0x3b0
[  841.996756][T20718]  ? lockdep_hardirqs_on+0x9c/0x150
[  841.996788][T20718]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  841.996813][T20718]  ? clear_bhb_loop+0x60/0xb0
[  841.996839][T20718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  841.996877][T20718] RIP: 0033:0x7fa6ff98e929
[  841.996897][T20718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  841.996915][T20718] RSP: 002b:00007fa7008d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  841.996937][T20718] RAX: ffffffffffffffda RBX: 00007fa6ffbb5fa0 RCX: 00007fa6ff98e929
[  841.996953][T20718] RDX: 0000200000000540 RSI: 0000000000003b80 RDI: 0000000000000003
[  841.996967][T20718] RBP: 00007fa7008d6090 R08: 0000000000000000 R09: 0000000000000000
[  841.996980][T20718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  841.996992][T20718] R13: 0000000000000000 R14: 00007fa6ffbb5fa0 R15: 00007ffefbd1f838
[  841.997024][T20718]  </TASK>
[  842.197221][    C1] vkms_vblank_simulate: vblank timer overrun
[  842.464194][T20729] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  842.503914][T20737] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  842.511765][T20737] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  842.578025][T20741] FAULT_INJECTION: forcing a failure.
[  842.578025][T20741] name failslab, interval 1, probability 0, space 0, times 0
[  842.592638][T20741] CPU: 0 UID: 0 PID: 20741 Comm: syz.2.11694 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  842.592667][T20741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  842.592681][T20741] Call Trace:
[  842.592690][T20741]  <TASK>
[  842.592699][T20741]  dump_stack_lvl+0x189/0x250
[  842.592728][T20741]  ? __pfx____ratelimit+0x10/0x10
[  842.592761][T20741]  ? __pfx_dump_stack_lvl+0x10/0x10
[  842.592786][T20741]  ? __pfx__printk+0x10/0x10
[  842.592815][T20741]  ? __pfx___might_resched+0x10/0x10
[  842.592838][T20741]  ? fs_reclaim_acquire+0x7d/0x100
[  842.592873][T20741]  should_fail_ex+0x414/0x560
[  842.592904][T20741]  should_failslab+0xa8/0x100
[  842.592934][T20741]  kmem_cache_alloc_noprof+0x73/0x3c0
[  842.592969][T20741]  ? alloc_empty_file+0x55/0x1d0
[  842.592995][T20741]  alloc_empty_file+0x55/0x1d0
[  842.593018][T20741]  path_openat+0x107/0x3830
[  842.593040][T20741]  ? arch_stack_walk+0xfc/0x150
[  842.593093][T20741]  ? kasan_save_track+0x4f/0x80
[  842.593116][T20741]  ? kasan_save_track+0x3e/0x80
[  842.593137][T20741]  ? __kasan_slab_alloc+0x6c/0x80
[  842.593160][T20741]  ? getname_flags+0xb8/0x540
[  842.593179][T20741]  ? __pfx_path_openat+0x10/0x10
[  842.593201][T20741]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  842.593243][T20741]  do_filp_open+0x1fa/0x410
[  842.593265][T20741]  ? __lock_acquire+0xab9/0xd20
[  842.593289][T20741]  ? __pfx_do_filp_open+0x10/0x10
[  842.593338][T20741]  ? _raw_spin_unlock+0x28/0x50
[  842.593366][T20741]  ? alloc_fd+0x64c/0x6c0
[  842.593408][T20741]  do_sys_openat2+0x121/0x1c0
[  842.593434][T20741]  ? __pfx_do_sys_openat2+0x10/0x10
[  842.593469][T20741]  ? ksys_write+0x22a/0x250
[  842.593497][T20741]  ? __pfx_ksys_write+0x10/0x10
[  842.593527][T20741]  __x64_sys_openat+0x138/0x170
[  842.593554][T20741]  do_syscall_64+0xfa/0x3b0
[  842.593573][T20741]  ? lockdep_hardirqs_on+0x9c/0x150
[  842.593603][T20741]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  842.593622][T20741]  ? clear_bhb_loop+0x60/0xb0
[  842.593647][T20741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  842.593666][T20741] RIP: 0033:0x7f3d6278e929
[  842.593684][T20741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  842.593701][T20741] RSP: 002b:00007f3d605f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  842.593722][T20741] RAX: ffffffffffffffda RBX: 00007f3d629b5fa0 RCX: 00007f3d6278e929
[  842.593738][T20741] RDX: 0000000000200002 RSI: 0000200000001500 RDI: ffffffffffffff9c
[  842.593752][T20741] RBP: 00007f3d605f6090 R08: 0000000000000000 R09: 0000000000000000
[  842.593765][T20741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  842.593777][T20741] R13: 0000000000000001 R14: 00007f3d629b5fa0 R15: 00007fff6029c138
[  842.593807][T20741]  </TASK>
[  843.479812][T20761] sp0: Synchronizing with TNC
[  843.514012][T20761] loop8: detected capacity change from 0 to 7
[  843.557090][T20766] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  843.562624][T20761] Dev loop8: unable to read RDB block 7
[  843.572858][T20766] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  843.589522][T20761]  loop8: unable to read partition table
[  843.595443][T20761] loop8: partition table beyond EOD, truncated
[  843.628859][T20761] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  843.639874][T20760] [U] è
[  844.131800][T20812] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  844.139546][T20812] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  844.194891][T20815] binder: 20814:20815 unknown command 576
[  844.207899][T20815] binder: 20814:20815 ioctl c0306201 200000000480 returned -22
[  844.662597][T20841] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  844.693783][T20843] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  844.714355][T20843] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  845.004107][T20857] Invalid logical block size (253)
[  845.127370][T20861] sp0: Synchronizing with TNC
[  845.127627][T20868] Invalid logical block size (1)
[  845.331485][T20882] sp0: Synchronizing with TNC
[  845.342177][T20881] Invalid logical block size (516)
[  845.833628][T20905] random: crng reseeded on system resumption
[  846.182847][T20920] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  846.310161][T20931] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  846.658085][T20951] i2c i2c-0: Invalid block write size 254
[  846.689335][ T5933] psmouse serio17: Failed to reset mouse on : -5
[  846.868636][T20953] Invalid logical block size (768)
[  847.045578][T20955] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  847.259524][T20967] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  848.700329][T21012] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  849.091520][T21030] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  849.980438][T21053] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  850.458865][ T5933] misc userio: Buffer overflowed, userio client isn't keeping up
[  851.512106][ T5933] input: PS/2 Generic Mouse as /devices/serio17/input/input175
[  851.567244][T21096] Invalid logical block size (1280)
[  851.633281][T21099] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  851.749051][ T5933] psmouse serio17: Failed to enable mouse on 
[  852.161723][T21128] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  852.640182][T21148] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  852.648067][T21148] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  852.751828][T21154] Invalid logical block size (1536)
[  853.024577][T21174] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  853.798311][T21211] Invalid logical block size (1540)
[  854.652196][T21254] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  855.063325][T21274] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  855.087966][T21277] Invalid logical block size (1792)
[  855.191864][T21286] random: crng reseeded on system resumption
[  855.309398][ T5933] hid-generic 009C:0008:0003.000D: unknown main item tag 0x0
[  855.316914][ T5933] hid-generic 009C:0008:0003.000D: unknown main item tag 0x0
[  855.329991][ T5933] hid-generic 009C:0008:0003.000D: unknown main item tag 0x0
[  855.337473][ T5933] hid-generic 009C:0008:0003.000D: unknown main item tag 0x0
[  855.353891][ T5933] hid-generic 009C:0008:0003.000D: unknown main item tag 0x0
[  855.361944][ T5933] hid-generic 009C:0008:0003.000D: item fetching failed at offset 11/15
[  855.373376][ T5933] hid-generic 009C:0008:0003.000D: probe with driver hid-generic failed with error -22
[  855.865088][T21311] program syz.0.11837 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  856.417319][T21334] Invalid logical block size (1536)
[  856.665141][T21346] can0: slcan on ttyS3.
[  856.829730][T21346] can0 (unregistered): slcan off ttyS3.
[  857.055655][T21369] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  857.064137][T21364] CUSE: unknown device info "MzP�´Ã{UÀÞÒ—ýEÞsª¹Z$cw#¤/…fƒ}Ù”Ðb,Q«[{æ•Æ®$
[  857.064137][T21364] Ç4&I:#5o6Ÿ3”ÑŽ.l%¤žwC
[  857.064137][T21364] Ž?"
[  857.080765][T21364] CUSE: unknown device info "v…2‰.7’õ¸Ë‚þ ®Ñ*5®¸Óì•SEAy û…	¿`?e`þŠl6Ý¡ÐÙéQ0V84ÜŽ{c"áKüü^÷vaOÖ�M Œ××Ê8æf1¨\.dž6�á(3´iË¿­›ƒfω11,kb­°îz›Ö‰"�NXjª}˜	ß~
ïwu/¾KÈ9Ê.²Ðrù¯×¤©"
[  857.130313][T21364] CUSE: DEVNAME unspecified
[  857.148475][T21364] CUSE: info not properly terminated
[  857.297318][T21383] loop8: detected capacity change from 0 to 4
[  857.306632][T21383] Dev loop8: unable to read RDB block 4
[  857.316747][T21383]  loop8: unable to read partition table
[  857.333953][T21383] loop8: partition table beyond EOD, truncated
[  857.340382][T21383] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  857.646460][T21401] input: syz0 as /devices/virtual/input/input176
[  858.215622][T21408] loop6: detected capacity change from 0 to 524287999
[  858.254517][T21408] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  858.299465][T21408] buffer_io_error: 27 callbacks suppressed
[  858.299487][T21408] Buffer I/O error on dev loop6, logical block 0, async page read
[  858.316462][T21408] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  858.327527][T21408] Buffer I/O error on dev loop6, logical block 0, async page read
[  858.338602][T21408] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  858.360782][T21408] Buffer I/O error on dev loop6, logical block 0, async page read
[  858.379103][T21408] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  858.422131][T21408] Buffer I/O error on dev loop6, logical block 0, async page read
[  858.449085][T21408] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  858.472543][T21408] Buffer I/O error on dev loop6, logical block 0, async page read
[  858.501469][T21408] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  858.522996][T21408] Buffer I/O error on dev loop6, logical block 0, async page read
[  858.541118][T21408] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  858.570268][T21408] Buffer I/O error on dev loop6, logical block 0, async page read
[  858.588253][T21408] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  858.602269][T21408] Buffer I/O error on dev loop6, logical block 0, async page read
[  858.611633][T21408] ldm_validate_partition_table(): Disk read failed.
[  858.618374][T21408] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  858.650446][T21408] Buffer I/O error on dev loop6, logical block 0, async page read
[  858.695966][T21408] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  858.708869][T21408] Buffer I/O error on dev loop6, logical block 0, async page read
[  858.728906][T21408] Dev loop6: unable to read RDB block 0
[  858.742756][T21408]  loop6: unable to read partition table
[  858.766283][T21408] loop_reread_partitions: partition scan of loop6 (ÿŸ¾‚³˜±Ä6�tPΪŔ±³×AÝÁ¬8ï*V^ñè3c) failed (rc=-5)
[  858.783882][T21431] Invalid logical block size (1540)
[  859.988015][T21483] rtc_cmos 00:00: Alarms can be up to one day in the future
[  860.387912][T21496] binder_alloc: binder_alloc_mmap_handler: 21495 200000735000-200000736000 already mapped failed -16
[  860.400781][T21499] binder_alloc: binder_alloc_mmap_handler: 21495 200000735000-200000736000 already mapped failed -16
[  860.621264][T21511] CUSE: DEVNAME unspecified
[  860.980627][T21531] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  861.074069][T21538] kvm: kvm [21537]: vcpu63, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010000) = 0x6
[  861.300733][T21555] FAULT_INJECTION: forcing a failure.
[  861.300733][T21555] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  861.317856][T21555] CPU: 1 UID: 0 PID: 21555 Comm: syz.5.11893 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  861.317886][T21555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  861.317900][T21555] Call Trace:
[  861.317908][T21555]  <TASK>
[  861.317917][T21555]  dump_stack_lvl+0x189/0x250
[  861.317947][T21555]  ? __pfx____ratelimit+0x10/0x10
[  861.317979][T21555]  ? __pfx_dump_stack_lvl+0x10/0x10
[  861.318003][T21555]  ? __pfx__printk+0x10/0x10
[  861.318025][T21555]  ? __might_fault+0xb0/0x130
[  861.318061][T21555]  should_fail_ex+0x414/0x560
[  861.318093][T21555]  _copy_from_iter+0x1db/0x16f0
[  861.318134][T21555]  ? anon_pipe_write+0x16a/0x1360
[  861.318165][T21555]  ? __pfx__copy_from_iter+0x10/0x10
[  861.318194][T21555]  ? __pfx___mutex_lock+0x10/0x10
[  861.318215][T21555]  ? aa_file_perm+0x11f/0xed0
[  861.318242][T21555]  ? page_copy_sane+0x4e/0x280
[  861.318274][T21555]  copy_page_from_iter+0xdd/0x170
[  861.318309][T21555]  anon_pipe_write+0x99a/0x1360
[  861.318359][T21555]  ? end_current_label_crit_section+0x152/0x180
[  861.318383][T21555]  ? __pfx_anon_pipe_write+0x10/0x10
[  861.318412][T21555]  ? common_file_perm+0x199/0x200
[  861.318436][T21555]  ? bpf_lsm_file_permission+0x9/0x20
[  861.318457][T21555]  ? security_file_permission+0x75/0x290
[  861.318503][T21555]  vfs_write+0x548/0xa90
[  861.318535][T21555]  ? __pfx_anon_pipe_write+0x10/0x10
[  861.318567][T21555]  ? __pfx_vfs_write+0x10/0x10
[  861.318605][T21555]  ? __fget_files+0x2a/0x420
[  861.318645][T21555]  ksys_write+0x145/0x250
[  861.318675][T21555]  ? __pfx_ksys_write+0x10/0x10
[  861.318698][T21555]  ? rcu_is_watching+0x15/0xb0
[  861.318731][T21555]  ? do_syscall_64+0xbe/0x3b0
[  861.318754][T21555]  do_syscall_64+0xfa/0x3b0
[  861.318773][T21555]  ? lockdep_hardirqs_on+0x9c/0x150
[  861.318801][T21555]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  861.318821][T21555]  ? clear_bhb_loop+0x60/0xb0
[  861.318844][T21555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  861.318864][T21555] RIP: 0033:0x7fa6ff98e929
[  861.318882][T21555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  861.318899][T21555] RSP: 002b:00007fa7008d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  861.318921][T21555] RAX: ffffffffffffffda RBX: 00007fa6ffbb5fa0 RCX: 00007fa6ff98e929
[  861.318937][T21555] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000000
[  861.318950][T21555] RBP: 00007fa7008d6090 R08: 0000000000000000 R09: 0000000000000000
[  861.318963][T21555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  861.318975][T21555] R13: 0000000000000000 R14: 00007fa6ffbb5fa0 R15: 00007ffefbd1f838
[  861.319007][T21555]  </TASK>
[  861.905020][T21568] input input177: cannot allocate more than FF_MAX_EFFECTS effects
[  861.923093][T21568] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  862.874049][T21617] FAULT_INJECTION: forcing a failure.
[  862.874049][T21617] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  862.897814][T21617] CPU: 0 UID: 0 PID: 21617 Comm: syz.3.11910 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  862.897846][T21617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  862.897860][T21617] Call Trace:
[  862.897869][T21617]  <TASK>
[  862.897878][T21617]  dump_stack_lvl+0x189/0x250
[  862.897908][T21617]  ? __pfx____ratelimit+0x10/0x10
[  862.897942][T21617]  ? __pfx_dump_stack_lvl+0x10/0x10
[  862.897965][T21617]  ? __pfx__printk+0x10/0x10
[  862.897989][T21617]  ? __might_fault+0xb0/0x130
[  862.898026][T21617]  should_fail_ex+0x414/0x560
[  862.898058][T21617]  _copy_from_iter+0x1db/0x16f0
[  862.898101][T21617]  ? anon_pipe_write+0x16a/0x1360
[  862.898133][T21617]  ? __pfx__copy_from_iter+0x10/0x10
[  862.898177][T21617]  ? __pfx___mutex_lock+0x10/0x10
[  862.898199][T21617]  ? aa_file_perm+0x11f/0xed0
[  862.898229][T21617]  ? page_copy_sane+0x4e/0x280
[  862.898261][T21617]  copy_page_from_iter+0xdd/0x170
[  862.898299][T21617]  anon_pipe_write+0x99a/0x1360
[  862.898360][T21617]  ? __pfx_anon_pipe_write+0x10/0x10
[  862.898391][T21617]  ? common_file_perm+0x199/0x200
[  862.898417][T21617]  ? bpf_lsm_file_permission+0x9/0x20
[  862.898438][T21617]  ? security_file_permission+0x75/0x290
[  862.898479][T21617]  vfs_write+0x548/0xa90
[  862.898511][T21617]  ? __pfx_anon_pipe_write+0x10/0x10
[  862.898545][T21617]  ? __pfx_vfs_write+0x10/0x10
[  862.898583][T21617]  ? __fget_files+0x2a/0x420
[  862.898624][T21617]  ksys_write+0x145/0x250
[  862.898654][T21617]  ? __pfx_ksys_write+0x10/0x10
[  862.898679][T21617]  ? rcu_is_watching+0x15/0xb0
[  862.898708][T21617]  ? do_syscall_64+0xbe/0x3b0
[  862.898733][T21617]  do_syscall_64+0xfa/0x3b0
[  862.898752][T21617]  ? lockdep_hardirqs_on+0x9c/0x150
[  862.898782][T21617]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  862.898803][T21617]  ? clear_bhb_loop+0x60/0xb0
[  862.898828][T21617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  862.898848][T21617] RIP: 0033:0x7f811b78e929
[  862.898869][T21617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  862.898885][T21617] RSP: 002b:00007f811c5fb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  862.898908][T21617] RAX: ffffffffffffffda RBX: 00007f811b9b5fa0 RCX: 00007f811b78e929
[  862.898924][T21617] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000000
[  862.898938][T21617] RBP: 00007f811c5fb090 R08: 0000000000000000 R09: 0000000000000000
[  862.898951][T21617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  862.898963][T21617] R13: 0000000000000000 R14: 00007f811b9b5fa0 R15: 00007ffd5bfe2f88
[  862.898996][T21617]  </TASK>
[  863.156402][    C0] vkms_vblank_simulate: vblank timer overrun
[  863.613122][T21629] Invalid logical block size (2816)
[  863.707051][T21635] input: syz1 as /devices/virtual/input/input179
[  864.175858][T21651] Invalid logical block size (3328)
[  864.431554][T21664] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  865.596270][T21715] Invalid logical block size (4352)
[  865.701207][T21722] loop8: detected capacity change from 0 to 7
[  865.732858][T18939] Dev loop8: unable to read RDB block 7
[  865.738519][T18939]  loop8: unable to read partition table
[  865.754811][T18939] loop8: partition table beyond EOD, truncated
[  865.770611][T21722] Dev loop8: unable to read RDB block 7
[  865.780714][T21722]  loop8: unable to read partition table
[  865.786822][T21722] loop8: partition table beyond EOD, truncated
[  865.816282][T21722] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  865.933358][T21735] rtc_cmos 00:00: Alarms can be up to one day in the future
[  866.499158][T21755] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  866.647720][T21771] FAULT_INJECTION: forcing a failure.
[  866.647720][T21771] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  866.662641][T21771] CPU: 0 UID: 0 PID: 21771 Comm: syz.0.11952 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  866.662679][T21771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  866.662697][T21771] Call Trace:
[  866.662711][T21771]  <TASK>
[  866.662720][T21771]  dump_stack_lvl+0x189/0x250
[  866.662751][T21771]  ? __pfx____ratelimit+0x10/0x10
[  866.662784][T21771]  ? __pfx_dump_stack_lvl+0x10/0x10
[  866.662808][T21771]  ? __pfx__printk+0x10/0x10
[  866.662832][T21771]  ? __might_fault+0xb0/0x130
[  866.662868][T21771]  should_fail_ex+0x414/0x560
[  866.662900][T21771]  _copy_from_user+0x2d/0xb0
[  866.662923][T21771]  snd_seq_ioctl+0x1d8/0x420
[  866.662950][T21771]  ? __pfx_snd_seq_ioctl+0x10/0x10
[  866.662995][T21771]  ? __fget_files+0x3a0/0x420
[  866.663025][T21771]  ? __fget_files+0x2a/0x420
[  866.663059][T21771]  ? bpf_lsm_file_ioctl+0x9/0x20
[  866.663081][T21771]  ? __pfx_snd_seq_ioctl+0x10/0x10
[  866.663100][T21771]  __se_sys_ioctl+0xfc/0x170
[  866.663129][T21771]  do_syscall_64+0xfa/0x3b0
[  866.663148][T21771]  ? lockdep_hardirqs_on+0x9c/0x150
[  866.663180][T21771]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  866.663201][T21771]  ? clear_bhb_loop+0x60/0xb0
[  866.663227][T21771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  866.663246][T21771] RIP: 0033:0x7ff72af8e929
[  866.663264][T21771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  866.663283][T21771] RSP: 002b:00007ff72bdb6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  866.663305][T21771] RAX: ffffffffffffffda RBX: 00007ff72b1b5fa0 RCX: 00007ff72af8e929
[  866.663321][T21771] RDX: 0000200000000100 RSI: 0000000040505331 RDI: 0000000000000003
[  866.663334][T21771] RBP: 00007ff72bdb6090 R08: 0000000000000000 R09: 0000000000000000
[  866.663346][T21771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  866.663359][T21771] R13: 0000000000000000 R14: 00007ff72b1b5fa0 R15: 00007ffd352c14e8
[  866.663390][T21771]  </TASK>
[  866.866059][    C0] vkms_vblank_simulate: vblank timer overrun
[  866.964579][T21773] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  867.018036][T21773] kvm: user requested TSC rate below hardware speed
[  867.059781][T21784] Invalid logical block size (4608)
[  867.156643][T21791] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  867.167579][T21791] vivid-000: =================  START STATUS  =================
[  867.175383][T21791] vivid-000: Test Pattern: 100% Colorbar
[  867.181287][T21791] vivid-000: Fill Percentage of Frame: 4
[  867.186979][T21791] vivid-000: Horizontal Movement: No Movement
[  867.194280][T21791] vivid-000: Vertical Movement: Move Up Slow
[  867.200910][T21791] vivid-000: OSD Text Mode: Counters Only
[  867.206754][T21791] vivid-000: Show Border: true
[  867.212081][T21791] vivid-000: Show Square: true
[  867.216972][T21791] vivid-000: Sensor Flipped Horizontally: true
[  867.235317][T21791] vivid-000: Sensor Flipped Vertically: true
[  867.244771][T21791] vivid-000: Insert SAV Code in Image: true
[  867.252909][T21791] vivid-000: Insert EAV Code in Image: true
[  867.262912][T21791] vivid-000: Insert Video Guard Band: true
[  867.270558][T21791] vivid-000: Reduced Framerate: true
[  867.276115][T21791] vivid-000: HDMI 000-0 Is Connected To: None
[  867.285456][T21791] vivid-000: S-Video 000-0 Is Connected To: None
[  867.292490][T21791] vivid-000: Enable Capture Cropping: false
[  867.298522][T21791] vivid-000: Enable Capture Composing: false
[  867.309815][T21791] vivid-000: Enable Capture Scaler: false
[  867.327578][T21791] vivid-000: Timestamp Source: Start of Exposure
[  867.337962][T21791] vivid-000: Colorspace: sRGB
[  867.346549][T21791] vivid-000: Transfer Function: sRGB
[  867.360394][T21791] vivid-000: Y'CbCr Encoding: ITU-R 601
[  867.374613][T21791] vivid-000: HSV Encoding: Hue 0-256
[  867.381887][T21791] vivid-000: Quantization: Limited Range
[  867.398589][T21791] vivid-000: Apply Alpha To Red Only: true
[  867.405843][T21791] vivid-000: Standard Aspect Ratio: 14x9
[  867.415850][T21791] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  867.424084][T21791] vivid-000: DV Timings: 640x480p59 inactive
[  867.430885][T21791] vivid-000: DV Timings Aspect Ratio: 14x9
[  867.437980][T21791] vivid-000: Maximum EDID Blocks: 256
[  867.458201][T21791] vivid-000: Limited RGB Range (16-235): true
[  867.467470][T21791] vivid-000: Rx RGB Quantization Range: RGB Full Range (0-255)
[  867.479516][T21791] vivid-000: Power Present: 0x00000000
[  867.485171][T21791] tpg source WxH: 320x180 (R'G'B)
[  867.494273][T21791] tpg field: 1
[  867.497768][T21791] tpg crop: (0,0)/320x180
[  867.503022][T21791] tpg compose: (0,0)/320x180
[  867.507874][T21791] tpg colorspace: 8
[  867.515398][T21791] tpg transfer function: 7/7
[  867.520428][T21791] tpg quantization: 1/1
[  867.527673][T21791] tpg RGB range: 0/1
[  867.547842][T21791] vivid-000: ==================  END STATUS  ==================
[  867.713879][T21820] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  868.004965][T21837] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  868.081494][T21846] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  868.217941][T21856] rtc_cmos 00:00: Alarms can be up to one day in the future
[  868.443002][T21871] usb usb1: usbfs: process 21871 (syz.0.11976) did not claim interface 0 before use
[  868.812680][T21885] input: syz1 as /devices/virtual/input/input180
[  869.309407][T21910] FAULT_INJECTION: forcing a failure.
[  869.309407][T21910] name failslab, interval 1, probability 0, space 0, times 0
[  869.334226][T21910] CPU: 1 UID: 0 PID: 21910 Comm: syz.5.11983 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  869.334257][T21910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  869.334271][T21910] Call Trace:
[  869.334279][T21910]  <TASK>
[  869.334289][T21910]  dump_stack_lvl+0x189/0x250
[  869.334318][T21910]  ? __pfx____ratelimit+0x10/0x10
[  869.334372][T21910]  ? __pfx_dump_stack_lvl+0x10/0x10
[  869.334396][T21910]  ? __pfx__printk+0x10/0x10
[  869.334432][T21910]  ? __pfx___might_resched+0x10/0x10
[  869.334458][T21910]  ? fs_reclaim_acquire+0x7d/0x100
[  869.334507][T21910]  should_fail_ex+0x414/0x560
[  869.334546][T21910]  should_failslab+0xa8/0x100
[  869.334581][T21910]  __kmalloc_noprof+0xcb/0x4f0
[  869.334609][T21910]  ? kfree+0x4d/0x440
[  869.334635][T21910]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  869.334672][T21910]  tomoyo_realpath_from_path+0xe3/0x5d0
[  869.334705][T21910]  ? tomoyo_domain+0xd9/0x130
[  869.334743][T21910]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  869.334790][T21910]  tomoyo_path_number_perm+0x1e8/0x5a0
[  869.334832][T21910]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  869.334894][T21910]  ? __lock_acquire+0xab9/0xd20
[  869.334947][T21910]  ? __fget_files+0x2a/0x420
[  869.334987][T21910]  ? __fget_files+0x2a/0x420
[  869.335023][T21910]  ? __fget_files+0x3a0/0x420
[  869.335054][T21910]  ? __fget_files+0x2a/0x420
[  869.335090][T21910]  security_file_ioctl+0xcb/0x2d0
[  869.335130][T21910]  __se_sys_ioctl+0x47/0x170
[  869.335160][T21910]  do_syscall_64+0xfa/0x3b0
[  869.335187][T21910]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  869.335212][T21910]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  869.335233][T21910]  ? clear_bhb_loop+0x60/0xb0
[  869.335264][T21910]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  869.335285][T21910] RIP: 0033:0x7fa6ff98e929
[  869.335304][T21910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  869.335328][T21910] RSP: 002b:00007fa7008d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  869.335353][T21910] RAX: ffffffffffffffda RBX: 00007fa6ffbb5fa0 RCX: 00007fa6ff98e929
[  869.335367][T21910] RDX: 0000200000000000 RSI: 0000000040345632 RDI: 0000000000000003
[  869.335381][T21910] RBP: 00007fa7008d6090 R08: 0000000000000000 R09: 0000000000000000
[  869.335399][T21910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  869.335415][T21910] R13: 0000000000000000 R14: 00007fa6ffbb5fa0 R15: 00007ffefbd1f838
[  869.335454][T21910]  </TASK>
[  869.336733][T21910] ERROR: Out of memory at tomoyo_realpath_from_path.
[  870.203858][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  870.210341][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  870.470586][T21937] Invalid logical block size (3840)
[  870.547019][T21938] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  871.671233][T21975] CUSE: info not properly terminated
[  871.895100][T21985] Invalid logical block size (8448)
[  872.341797][T22007] FAULT_INJECTION: forcing a failure.
[  872.341797][T22007] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  872.356881][T22007] CPU: 0 UID: 0 PID: 22007 Comm: syz.3.12013 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  872.356903][T22007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  872.356912][T22007] Call Trace:
[  872.356919][T22007]  <TASK>
[  872.356926][T22007]  dump_stack_lvl+0x189/0x250
[  872.356948][T22007]  ? __pfx____ratelimit+0x10/0x10
[  872.356972][T22007]  ? __pfx_dump_stack_lvl+0x10/0x10
[  872.356990][T22007]  ? __pfx__printk+0x10/0x10
[  872.357007][T22007]  ? __might_fault+0xb0/0x130
[  872.357032][T22007]  should_fail_ex+0x414/0x560
[  872.357055][T22007]  _copy_from_user+0x2d/0xb0
[  872.357072][T22007]  set_selection_user+0x8e/0x140
[  872.357094][T22007]  ? __pfx_set_selection_user+0x10/0x10
[  872.357118][T22007]  ? tioclinux+0x38b/0x530
[  872.357151][T22007]  vt_ioctl+0x81a/0x1f00
[  872.357187][T22007]  ? __pfx_vt_ioctl+0x10/0x10
[  872.357218][T22007]  ? __fget_files+0x2a/0x420
[  872.357254][T22007]  ? __fget_files+0x3a0/0x420
[  872.357275][T22007]  ? __fget_files+0x2a/0x420
[  872.357298][T22007]  tty_ioctl+0x926/0xde0
[  872.357313][T22007]  ? __pfx_tty_ioctl+0x10/0x10
[  872.357328][T22007]  __se_sys_ioctl+0xfc/0x170
[  872.357349][T22007]  do_syscall_64+0xfa/0x3b0
[  872.357363][T22007]  ? lockdep_hardirqs_on+0x9c/0x150
[  872.357386][T22007]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  872.357401][T22007]  ? clear_bhb_loop+0x60/0xb0
[  872.357420][T22007]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  872.357434][T22007] RIP: 0033:0x7f811b78e929
[  872.357448][T22007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  872.357461][T22007] RSP: 002b:00007f811c5fb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  872.357477][T22007] RAX: ffffffffffffffda RBX: 00007f811b9b5fa0 RCX: 00007f811b78e929
[  872.357490][T22007] RDX: 0000200000000040 RSI: 000000000000541c RDI: 0000000000000003
[  872.357500][T22007] RBP: 00007f811c5fb090 R08: 0000000000000000 R09: 0000000000000000
[  872.357510][T22007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  872.357519][T22007] R13: 0000000000000000 R14: 00007f811b9b5fa0 R15: 00007ffd5bfe2f88
[  872.357541][T22007]  </TASK>
[  872.573440][    C0] vkms_vblank_simulate: vblank timer overrun
[  873.026482][T22022] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  873.286282][T22038] Invalid logical block size (8704)
[  874.460209][T22095] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  874.502901][T22097] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  875.397783][T22138] loop8: detected capacity change from 0 to 7
[  875.405689][T22138] Dev loop8: unable to read RDB block 7
[  875.412420][T22138]  loop8: unable to read partition table
[  875.418296][T22138] loop8: partition table beyond EOD, truncated
[  875.425824][T22138] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  875.517559][T22146] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  875.676357][T22159] Invalid logical block size (4864)
[  876.239195][T22183] Restarting kernel threads ...
[  876.252969][T22183] Done restarting kernel threads.
[  876.954185][T22209] FAULT_INJECTION: forcing a failure.
[  876.954185][T22209] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  876.971322][T22209] CPU: 0 UID: 0 PID: 22209 Comm: syz.0.12064 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  876.971354][T22209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  876.971368][T22209] Call Trace:
[  876.971376][T22209]  <TASK>
[  876.971386][T22209]  dump_stack_lvl+0x189/0x250
[  876.971416][T22209]  ? __pfx____ratelimit+0x10/0x10
[  876.971451][T22209]  ? __pfx_dump_stack_lvl+0x10/0x10
[  876.971475][T22209]  ? __pfx__printk+0x10/0x10
[  876.971512][T22209]  should_fail_ex+0x414/0x560
[  876.971545][T22209]  _copy_to_user+0x31/0xb0
[  876.971569][T22209]  simple_read_from_buffer+0xe1/0x170
[  876.971617][T22209]  proc_fail_nth_read+0x1df/0x250
[  876.971640][T22209]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  876.971681][T22209]  ? rw_verify_area+0x258/0x650
[  876.971707][T22209]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  876.971730][T22209]  vfs_read+0x1fd/0x980
[  876.971762][T22209]  ? __pfx___mutex_lock+0x10/0x10
[  876.971785][T22209]  ? __pfx_vfs_read+0x10/0x10
[  876.971813][T22209]  ? __fget_files+0x2a/0x420
[  876.971858][T22209]  ? __fget_files+0x3a0/0x420
[  876.971888][T22209]  ? __fget_files+0x2a/0x420
[  876.971929][T22209]  ksys_read+0x145/0x250
[  876.971958][T22209]  ? __pfx_ksys_read+0x10/0x10
[  876.971982][T22209]  ? rcu_is_watching+0x15/0xb0
[  876.972013][T22209]  ? do_syscall_64+0xbe/0x3b0
[  876.972038][T22209]  do_syscall_64+0xfa/0x3b0
[  876.972058][T22209]  ? lockdep_hardirqs_on+0x9c/0x150
[  876.972090][T22209]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  876.972111][T22209]  ? clear_bhb_loop+0x60/0xb0
[  876.972137][T22209]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  876.972157][T22209] RIP: 0033:0x7ff72af8d33c
[  876.972177][T22209] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  876.972195][T22209] RSP: 002b:00007ff72bdb6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  876.972217][T22209] RAX: ffffffffffffffda RBX: 00007ff72b1b5fa0 RCX: 00007ff72af8d33c
[  876.972233][T22209] RDX: 000000000000000f RSI: 00007ff72bdb60a0 RDI: 0000000000000005
[  876.972246][T22209] RBP: 00007ff72bdb6090 R08: 0000000000000000 R09: 0000000000000000
[  876.972259][T22209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  876.972272][T22209] R13: 0000000000000000 R14: 00007ff72b1b5fa0 R15: 00007ffd352c14e8
[  876.972304][T22209]  </TASK>
[  877.210434][    C0] vkms_vblank_simulate: vblank timer overrun
[  877.943249][T22248] rtc_cmos 00:00: Alarms can be up to one day in the future
[  879.179751][T22303] KVM: debugfs: duplicate directory 22303-4
[  879.555495][T22326] FAULT_INJECTION: forcing a failure.
[  879.555495][T22326] name failslab, interval 1, probability 0, space 0, times 0
[  879.574712][T22326] CPU: 0 UID: 0 PID: 22326 Comm: syz.0.12092 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  879.574742][T22326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  879.574755][T22326] Call Trace:
[  879.574764][T22326]  <TASK>
[  879.574774][T22326]  dump_stack_lvl+0x189/0x250
[  879.574804][T22326]  ? __pfx____ratelimit+0x10/0x10
[  879.574838][T22326]  ? __pfx_dump_stack_lvl+0x10/0x10
[  879.574870][T22326]  ? __pfx__printk+0x10/0x10
[  879.574897][T22326]  ? __pfx___might_resched+0x10/0x10
[  879.574921][T22326]  ? fs_reclaim_acquire+0x7d/0x100
[  879.574956][T22326]  should_fail_ex+0x414/0x560
[  879.574989][T22326]  should_failslab+0xa8/0x100
[  879.575019][T22326]  __kmalloc_noprof+0xcb/0x4f0
[  879.575048][T22326]  ? tomoyo_encode+0x28b/0x550
[  879.575078][T22326]  tomoyo_encode+0x28b/0x550
[  879.575108][T22326]  tomoyo_realpath_from_path+0x58d/0x5d0
[  879.575146][T22326]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  879.575178][T22326]  tomoyo_path_number_perm+0x1e8/0x5a0
[  879.575214][T22326]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  879.575265][T22326]  ? __lock_acquire+0xab9/0xd20
[  879.575309][T22326]  ? __fget_files+0x2a/0x420
[  879.575344][T22326]  ? __fget_files+0x2a/0x420
[  879.575374][T22326]  ? __fget_files+0x3a0/0x420
[  879.575408][T22326]  ? __fget_files+0x2a/0x420
[  879.575443][T22326]  security_file_ioctl+0xcb/0x2d0
[  879.575477][T22326]  __se_sys_ioctl+0x47/0x170
[  879.575507][T22326]  do_syscall_64+0xfa/0x3b0
[  879.575526][T22326]  ? lockdep_hardirqs_on+0x9c/0x150
[  879.575559][T22326]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  879.575580][T22326]  ? clear_bhb_loop+0x60/0xb0
[  879.575605][T22326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  879.575626][T22326] RIP: 0033:0x7ff72af8e929
[  879.575645][T22326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  879.575663][T22326] RSP: 002b:00007ff72bdb6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  879.575684][T22326] RAX: ffffffffffffffda RBX: 00007ff72b1b5fa0 RCX: 00007ff72af8e929
[  879.575700][T22326] RDX: 0000200000000200 RSI: 00000000c0845657 RDI: 0000000000000004
[  879.575713][T22326] RBP: 00007ff72bdb6090 R08: 0000000000000000 R09: 0000000000000000
[  879.575726][T22326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  879.575738][T22326] R13: 0000000000000000 R14: 00007ff72b1b5fa0 R15: 00007ffd352c14e8
[  879.575770][T22326]  </TASK>
[  879.575897][T22326] ERROR: Out of memory at tomoyo_realpath_from_path.
[  880.782457][T22359] kvm: Disabled LAPIC found during irq injection
[  880.802537][T22370] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  880.998080][T22387] rtc_cmos 00:00: Alarms can be up to one day in the future
[  881.601585][T22406] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  881.624291][T22404] ALSA: seq fatal error: cannot create timer (-19)
[  882.801882][T22449] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  882.829325][T22452] FAULT_INJECTION: forcing a failure.
[  882.829325][T22452] name failslab, interval 1, probability 0, space 0, times 0
[  882.859880][T22452] CPU: 1 UID: 0 PID: 22452 Comm: syz.5.12129 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  882.859910][T22452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  882.859923][T22452] Call Trace:
[  882.859932][T22452]  <TASK>
[  882.859942][T22452]  dump_stack_lvl+0x189/0x250
[  882.859970][T22452]  ? __pfx____ratelimit+0x10/0x10
[  882.860002][T22452]  ? __pfx_dump_stack_lvl+0x10/0x10
[  882.860026][T22452]  ? __pfx__printk+0x10/0x10
[  882.860055][T22452]  ? __pfx___might_resched+0x10/0x10
[  882.860078][T22452]  ? fs_reclaim_acquire+0x7d/0x100
[  882.860111][T22452]  should_fail_ex+0x414/0x560
[  882.860143][T22452]  should_failslab+0xa8/0x100
[  882.860172][T22452]  __kmalloc_noprof+0xcb/0x4f0
[  882.860194][T22452]  ? kfree+0x4d/0x440
[  882.860214][T22452]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  882.860250][T22452]  tomoyo_realpath_from_path+0xe3/0x5d0
[  882.860278][T22452]  ? tomoyo_domain+0xd9/0x130
[  882.860308][T22452]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  882.860339][T22452]  tomoyo_path_number_perm+0x1e8/0x5a0
[  882.860373][T22452]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  882.860423][T22452]  ? __lock_acquire+0xab9/0xd20
[  882.860483][T22452]  ? __fget_files+0x2a/0x420
[  882.860517][T22452]  ? __fget_files+0x2a/0x420
[  882.860546][T22452]  ? __fget_files+0x3a0/0x420
[  882.860575][T22452]  ? __fget_files+0x2a/0x420
[  882.860610][T22452]  security_file_ioctl+0xcb/0x2d0
[  882.860643][T22452]  __se_sys_ioctl+0x47/0x170
[  882.860672][T22452]  do_syscall_64+0xfa/0x3b0
[  882.860691][T22452]  ? lockdep_hardirqs_on+0x9c/0x150
[  882.860723][T22452]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  882.860744][T22452]  ? clear_bhb_loop+0x60/0xb0
[  882.860770][T22452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  882.860790][T22452] RIP: 0033:0x7fa6ff98e929
[  882.860809][T22452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  882.860828][T22452] RSP: 002b:00007fa7008d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  882.860850][T22452] RAX: ffffffffffffffda RBX: 00007fa6ffbb5fa0 RCX: 00007fa6ff98e929
[  882.860865][T22452] RDX: 0000200000000000 RSI: 000000008038550a RDI: 0000000000000005
[  882.860879][T22452] RBP: 00007fa7008d6090 R08: 0000000000000000 R09: 0000000000000000
[  882.860893][T22452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  882.860906][T22452] R13: 0000000000000000 R14: 00007fa6ffbb5fa0 R15: 00007ffefbd1f838
[  882.860938][T22452]  </TASK>
[  882.860947][T22452] ERROR: Out of memory at tomoyo_realpath_from_path.
[  883.124952][T22452] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  883.166770][T22452] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  883.217366][T22461] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  883.229491][T22461] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  884.573763][T22518] PM: Enabling pm_trace changes system date and time during resume.
[  884.573763][T22518] PM: Correct system time has to be restored manually after resume.
[  884.623558][T22518] PM: Enabling pm_trace changes system date and time during resume.
[  884.623558][T22518] PM: Correct system time has to be restored manually after resume.
[  884.653263][T22518] PM: Enabling pm_trace changes system date and time during resume.
[  884.653263][T22518] PM: Correct system time has to be restored manually after resume.
[  884.672999][T22518] PM: Enabling pm_trace changes system date and time during resume.
[  884.672999][T22518] PM: Correct system time has to be restored manually after resume.
[  884.692528][T22518] PM: Enabling pm_trace changes system date and time during resume.
[  884.692528][T22518] PM: Correct system time has to be restored manually after resume.
[  884.873777][T22529] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  884.899908][T22535] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  885.061736][T22548] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  885.061761][T22548] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  886.005941][T22604] loop8: detected capacity change from 0 to 7
[  886.033932][T22604] buffer_io_error: 7 callbacks suppressed
[  886.033952][T22604] Buffer I/O error on dev loop8, logical block 0, async page read
[  886.053763][T22604] Buffer I/O error on dev loop8, logical block 0, async page read
[  886.082186][T22604] Buffer I/O error on dev loop8, logical block 0, async page read
[  886.130463][T22604] Buffer I/O error on dev loop8, logical block 0, async page read
[  886.138486][T22604] Buffer I/O error on dev loop8, logical block 0, async page read
[  886.207142][T22604] Buffer I/O error on dev loop8, logical block 0, async page read
[  886.241707][T22604] Buffer I/O error on dev loop8, logical block 0, async page read
[  886.279301][T22604] ldm_validate_partition_table(): Disk read failed.
[  886.286141][T22604] Buffer I/O error on dev loop8, logical block 0, async page read
[  886.339000][T22604] Buffer I/O error on dev loop8, logical block 0, async page read
[  886.363170][T22604] Buffer I/O error on dev loop8, logical block 0, async page read
[  886.384404][T22622] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  886.417233][T22604] Dev loop8: unable to read RDB block 0
[  886.449644][T22604]  loop8: unable to read partition table
[  886.479638][T22604] loop8: partition table beyond EOD, truncated
[  886.502278][T22604] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  886.758363][T22634] FAULT_INJECTION: forcing a failure.
[  886.758363][T22634] name failslab, interval 1, probability 0, space 0, times 0
[  886.797548][T22634] CPU: 0 UID: 0 PID: 22634 Comm: syz.5.12170 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  886.797588][T22634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  886.797604][T22634] Call Trace:
[  886.797616][T22634]  <TASK>
[  886.797630][T22634]  dump_stack_lvl+0x189/0x250
[  886.797676][T22634]  ? __pfx____ratelimit+0x10/0x10
[  886.797719][T22634]  ? __pfx_dump_stack_lvl+0x10/0x10
[  886.797754][T22634]  ? __pfx__printk+0x10/0x10
[  886.797784][T22634]  ? __pfx___might_resched+0x10/0x10
[  886.797813][T22634]  should_fail_ex+0x414/0x560
[  886.797845][T22634]  should_failslab+0xa8/0x100
[  886.797875][T22634]  __kmalloc_cache_noprof+0x70/0x3d0
[  886.797908][T22634]  ? snd_seq_port_connect+0x6b/0x430
[  886.797942][T22634]  snd_seq_port_connect+0x6b/0x430
[  886.797970][T22634]  ? do_raw_read_unlock+0x3d/0x80
[  886.797998][T22634]  ? _raw_read_unlock+0x28/0x50
[  886.798032][T22634]  snd_seq_ioctl_subscribe_port+0x339/0x710
[  886.798070][T22634]  ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10
[  886.798103][T22634]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  886.798138][T22634]  ? kasan_save_free_info+0x46/0x50
[  886.798169][T22634]  ? kfree+0x18e/0x440
[  886.798188][T22634]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  886.798218][T22634]  ? security_file_ioctl+0xcb/0x2d0
[  886.798256][T22634]  snd_seq_oss_midi_open+0x39d/0x7b0
[  886.798286][T22634]  ? __pfx_snd_seq_oss_midi_open+0x10/0x10
[  886.798331][T22634]  snd_seq_oss_process_event+0xd26/0x2a80
[  886.798360][T22634]  ? __pfx_snd_seq_oss_process_event+0x10/0x10
[  886.798391][T22634]  snd_seq_oss_ioctl+0xafc/0x1090
[  886.798411][T22634]  ? __mutex_trylock_common+0x153/0x260
[  886.798437][T22634]  ? __pfx_snd_seq_oss_ioctl+0x10/0x10
[  886.798457][T22634]  ? __pfx___mutex_trylock_common+0x10/0x10
[  886.798488][T22634]  ? rcu_is_watching+0x15/0xb0
[  886.798513][T22634]  ? trace_contention_end+0x39/0x120
[  886.798539][T22634]  ? __mutex_lock+0x330/0xe80
[  886.798560][T22634]  ? __lock_acquire+0xab9/0xd20
[  886.798587][T22634]  ? odev_ioctl+0x81/0xf0
[  886.798619][T22634]  ? __pfx___mutex_lock+0x10/0x10
[  886.798651][T22634]  ? __fget_files+0x2a/0x420
[  886.798680][T22634]  ? __fget_files+0x3a0/0x420
[  886.798714][T22634]  ? __fget_files+0x2a/0x420
[  886.798744][T22634]  ? __pfx_odev_ioctl+0x10/0x10
[  886.798773][T22634]  odev_ioctl+0xb2/0xf0
[  886.798802][T22634]  __se_sys_ioctl+0xfc/0x170
[  886.798830][T22634]  do_syscall_64+0xfa/0x3b0
[  886.798849][T22634]  ? lockdep_hardirqs_on+0x9c/0x150
[  886.798879][T22634]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  886.798900][T22634]  ? clear_bhb_loop+0x60/0xb0
[  886.798925][T22634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  886.798945][T22634] RIP: 0033:0x7fa6ff98e929
[  886.798963][T22634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  886.798980][T22634] RSP: 002b:00007fa7008d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  886.799002][T22634] RAX: ffffffffffffffda RBX: 00007fa6ffbb5fa0 RCX: 00007fa6ff98e929
[  886.799018][T22634] RDX: 0000200000000080 RSI: 0000000040085112 RDI: 0000000000000003
[  886.799031][T22634] RBP: 00007fa7008d6090 R08: 0000000000000000 R09: 0000000000000000
[  886.799044][T22634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  886.799056][T22634] R13: 0000000000000000 R14: 00007fa6ffbb5fa0 R15: 00007ffefbd1f838
[  886.799086][T22634]  </TASK>
[  887.128740][    C0] vkms_vblank_simulate: vblank timer overrun
[  887.255698][T22638] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  887.280758][T22647] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  887.288216][T22647] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  887.566215][T22662] [U] 
[  887.617322][T22667] Invalid logical block size (65279)
[  888.000566][T22689] FAULT_INJECTION: forcing a failure.
[  888.000566][T22689] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  888.014046][T22689] CPU: 0 UID: 0 PID: 22689 Comm: syz.2.12186 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  888.014076][T22689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  888.014089][T22689] Call Trace:
[  888.014099][T22689]  <TASK>
[  888.014108][T22689]  dump_stack_lvl+0x189/0x250
[  888.014137][T22689]  ? __pfx____ratelimit+0x10/0x10
[  888.014172][T22689]  ? __pfx_dump_stack_lvl+0x10/0x10
[  888.014196][T22689]  ? __pfx__printk+0x10/0x10
[  888.014231][T22689]  should_fail_ex+0x414/0x560
[  888.014263][T22689]  _copy_to_user+0x31/0xb0
[  888.014288][T22689]  simple_read_from_buffer+0xe1/0x170
[  888.014324][T22689]  proc_fail_nth_read+0x1df/0x250
[  888.014349][T22689]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  888.014372][T22689]  ? rw_verify_area+0x258/0x650
[  888.014399][T22689]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  888.014420][T22689]  vfs_read+0x1fd/0x980
[  888.014453][T22689]  ? __pfx___mutex_lock+0x10/0x10
[  888.014475][T22689]  ? __pfx_vfs_read+0x10/0x10
[  888.014504][T22689]  ? __fget_files+0x2a/0x420
[  888.014540][T22689]  ? __fget_files+0x3a0/0x420
[  888.014570][T22689]  ? __fget_files+0x2a/0x420
[  888.014610][T22689]  ksys_read+0x145/0x250
[  888.014636][T22689]  ? __fget_files+0x3a0/0x420
[  888.014667][T22689]  ? __pfx_ksys_read+0x10/0x10
[  888.014700][T22689]  ? do_syscall_64+0xbe/0x3b0
[  888.014726][T22689]  do_syscall_64+0xfa/0x3b0
[  888.014748][T22689]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  888.014767][T22689]  ? asm_common_interrupt+0x26/0x40
[  888.014794][T22689]  ? clear_bhb_loop+0x60/0xb0
[  888.014820][T22689]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  888.014841][T22689] RIP: 0033:0x7f3d6278d33c
[  888.014861][T22689] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  888.014878][T22689] RSP: 002b:00007f3d605f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  888.014900][T22689] RAX: ffffffffffffffda RBX: 00007f3d629b5fa0 RCX: 00007f3d6278d33c
[  888.014915][T22689] RDX: 000000000000000f RSI: 00007f3d605f60a0 RDI: 0000000000000004
[  888.014928][T22689] RBP: 00007f3d605f6090 R08: 0000000000000000 R09: 0000000000000000
[  888.014941][T22689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  888.014953][T22689] R13: 0000000000000000 R14: 00007f3d629b5fa0 R15: 00007fff6029c138
[  888.014986][T22689]  </TASK>
[  888.250315][    C0] vkms_vblank_simulate: vblank timer overrun
[  888.785158][T22714] Invalid logical block size (38911)
[  888.975740][T22716] FAULT_INJECTION: forcing a failure.
[  888.975740][T22716] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  889.004240][T22716] CPU: 0 UID: 0 PID: 22716 Comm: syz.3.12191 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  889.004270][T22716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  889.004283][T22716] Call Trace:
[  889.004292][T22716]  <TASK>
[  889.004301][T22716]  dump_stack_lvl+0x189/0x250
[  889.004330][T22716]  ? __pfx____ratelimit+0x10/0x10
[  889.004364][T22716]  ? __pfx_dump_stack_lvl+0x10/0x10
[  889.004388][T22716]  ? __pfx__printk+0x10/0x10
[  889.004413][T22716]  ? fs_reclaim_acquire+0x7d/0x100
[  889.004452][T22716]  should_fail_ex+0x414/0x560
[  889.004484][T22716]  prepare_alloc_pages+0x213/0x610
[  889.004522][T22716]  __alloc_frozen_pages_noprof+0x123/0x370
[  889.004558][T22716]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  889.004594][T22716]  ? __pfx__copy_from_iter+0x10/0x10
[  889.004625][T22716]  ? policy_nodemask+0x27c/0x720
[  889.004650][T22716]  ? aa_file_perm+0x11f/0xed0
[  889.004677][T22716]  alloc_pages_mpol+0x232/0x4a0
[  889.004719][T22716]  alloc_pages_noprof+0xa9/0x190
[  889.004748][T22716]  anon_pipe_write+0xb85/0x1360
[  889.004803][T22716]  ? __pfx_anon_pipe_write+0x10/0x10
[  889.004832][T22716]  ? common_file_perm+0x199/0x200
[  889.004857][T22716]  ? bpf_lsm_file_permission+0x9/0x20
[  889.004878][T22716]  ? security_file_permission+0x75/0x290
[  889.004917][T22716]  vfs_write+0x548/0xa90
[  889.004948][T22716]  ? __pfx_anon_pipe_write+0x10/0x10
[  889.004981][T22716]  ? __pfx_vfs_write+0x10/0x10
[  889.005018][T22716]  ? __fget_files+0x2a/0x420
[  889.005058][T22716]  ksys_write+0x145/0x250
[  889.005088][T22716]  ? __pfx_ksys_write+0x10/0x10
[  889.005112][T22716]  ? rcu_is_watching+0x15/0xb0
[  889.005141][T22716]  ? do_syscall_64+0xbe/0x3b0
[  889.005165][T22716]  do_syscall_64+0xfa/0x3b0
[  889.005184][T22716]  ? lockdep_hardirqs_on+0x9c/0x150
[  889.005218][T22716]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  889.005238][T22716]  ? clear_bhb_loop+0x60/0xb0
[  889.005263][T22716]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  889.005282][T22716] RIP: 0033:0x7f811b78e929
[  889.005300][T22716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  889.005318][T22716] RSP: 002b:00007f811c5fb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  889.005339][T22716] RAX: ffffffffffffffda RBX: 00007f811b9b5fa0 RCX: 00007f811b78e929
[  889.005354][T22716] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000000
[  889.005367][T22716] RBP: 00007f811c5fb090 R08: 0000000000000000 R09: 0000000000000000
[  889.005380][T22716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  889.005398][T22716] R13: 0000000000000000 R14: 00007f811b9b5fa0 R15: 00007ffd5bfe2f88
[  889.005429][T22716]  </TASK>
[  889.274792][    C0] vkms_vblank_simulate: vblank timer overrun
[  889.710624][T22725] FAULT_INJECTION: forcing a failure.
[  889.710624][T22725] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  889.748868][T22725] CPU: 0 UID: 0 PID: 22725 Comm: syz.5.12195 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  889.748899][T22725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  889.748912][T22725] Call Trace:
[  889.748921][T22725]  <TASK>
[  889.748930][T22725]  dump_stack_lvl+0x189/0x250
[  889.748959][T22725]  ? __pfx____ratelimit+0x10/0x10
[  889.748993][T22725]  ? __pfx_dump_stack_lvl+0x10/0x10
[  889.749018][T22725]  ? __pfx__printk+0x10/0x10
[  889.749042][T22725]  ? __might_fault+0xb0/0x130
[  889.749079][T22725]  should_fail_ex+0x414/0x560
[  889.749112][T22725]  _copy_from_user+0x2d/0xb0
[  889.749135][T22725]  kvm_vcpu_ioctl+0x426/0xe90
[  889.749168][T22725]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  889.749192][T22725]  ? __lock_acquire+0xab9/0xd20
[  889.749236][T22725]  ? __fget_files+0x2a/0x420
[  889.749270][T22725]  ? __fget_files+0x2a/0x420
[  889.749299][T22725]  ? __fget_files+0x3a0/0x420
[  889.749328][T22725]  ? __fget_files+0x2a/0x420
[  889.749362][T22725]  ? bpf_lsm_file_ioctl+0x9/0x20
[  889.749384][T22725]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  889.749410][T22725]  __se_sys_ioctl+0xfc/0x170
[  889.749438][T22725]  do_syscall_64+0xfa/0x3b0
[  889.749458][T22725]  ? lockdep_hardirqs_on+0x9c/0x150
[  889.749489][T22725]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  889.749510][T22725]  ? clear_bhb_loop+0x60/0xb0
[  889.749536][T22725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  889.749556][T22725] RIP: 0033:0x7fa6ff98e929
[  889.749574][T22725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  889.749592][T22725] RSP: 002b:00007fa7008d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  889.749615][T22725] RAX: ffffffffffffffda RBX: 00007fa6ffbb5fa0 RCX: 00007fa6ff98e929
[  889.749631][T22725] RDX: 0000200000000000 RSI: 000000004004ae99 RDI: 0000000000000005
[  889.749645][T22725] RBP: 00007fa7008d6090 R08: 0000000000000000 R09: 0000000000000000
[  889.749659][T22725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  889.749671][T22725] R13: 0000000000000000 R14: 00007fa6ffbb5fa0 R15: 00007ffefbd1f838
[  889.749704][T22725]  </TASK>
[  889.970191][    C0] vkms_vblank_simulate: vblank timer overrun
[  890.482857][T22746] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  890.493550][T22746] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  890.592893][T22754] Sensor A: =================  START STATUS  =================
[  890.610317][T22754] Sensor A: Test Pattern: Horizontal 100% Colorbar
[  890.617159][T22754] Sensor A: Show Information: None
[  890.624392][T22754] Sensor A: Vertical Flip: true
[  890.630033][T22754] Sensor A: Horizontal Flip: true
[  890.636223][T22754] Sensor A: Brightness: 3
[  890.646874][T22754] Sensor A: Contrast: 0
[  890.651755][T22754] Sensor A: Hue: 3
[  890.655957][T22754] Sensor A: Saturation: 0
[  890.692564][T22754] Sensor A: ==================  END STATUS  ==================
[  890.723619][T22754] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  890.910480][T22776] FAULT_INJECTION: forcing a failure.
[  890.910480][T22776] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  890.924357][T22776] CPU: 0 UID: 0 PID: 22776 Comm: syz.2.12208 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  890.924386][T22776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  890.924399][T22776] Call Trace:
[  890.924408][T22776]  <TASK>
[  890.924416][T22776]  dump_stack_lvl+0x189/0x250
[  890.924445][T22776]  ? __pfx____ratelimit+0x10/0x10
[  890.924478][T22776]  ? __pfx_dump_stack_lvl+0x10/0x10
[  890.924507][T22776]  ? __pfx__printk+0x10/0x10
[  890.924551][T22776]  should_fail_ex+0x414/0x560
[  890.924583][T22776]  _copy_to_user+0x31/0xb0
[  890.924606][T22776]  simple_read_from_buffer+0xe1/0x170
[  890.924640][T22776]  proc_fail_nth_read+0x1df/0x250
[  890.924663][T22776]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  890.924686][T22776]  ? rw_verify_area+0x258/0x650
[  890.924711][T22776]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  890.924732][T22776]  vfs_read+0x1fd/0x980
[  890.924762][T22776]  ? __pfx___mutex_lock+0x10/0x10
[  890.924783][T22776]  ? __pfx_vfs_read+0x10/0x10
[  890.924811][T22776]  ? __fget_files+0x2a/0x420
[  890.924846][T22776]  ? __fget_files+0x3a0/0x420
[  890.924875][T22776]  ? __fget_files+0x2a/0x420
[  890.924914][T22776]  ksys_read+0x145/0x250
[  890.924938][T22776]  ? __fget_files+0x3a0/0x420
[  890.924968][T22776]  ? __pfx_ksys_read+0x10/0x10
[  890.925000][T22776]  ? do_syscall_64+0xbe/0x3b0
[  890.925024][T22776]  do_syscall_64+0xfa/0x3b0
[  890.925043][T22776]  ? lockdep_hardirqs_on+0x9c/0x150
[  890.925073][T22776]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  890.925094][T22776]  ? clear_bhb_loop+0x60/0xb0
[  890.925119][T22776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  890.925139][T22776] RIP: 0033:0x7f3d6278d33c
[  890.925158][T22776] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  890.925175][T22776] RSP: 002b:00007f3d605f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  890.925197][T22776] RAX: ffffffffffffffda RBX: 00007f3d629b5fa0 RCX: 00007f3d6278d33c
[  890.925212][T22776] RDX: 000000000000000f RSI: 00007f3d605f60a0 RDI: 0000000000000006
[  890.925225][T22776] RBP: 00007f3d605f6090 R08: 0000000000000000 R09: 0000000000000000
[  890.925238][T22776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  890.925250][T22776] R13: 0000000000000000 R14: 00007f3d629b5fa0 R15: 00007fff6029c138
[  890.925282][T22776]  </TASK>
[  891.159720][    C0] vkms_vblank_simulate: vblank timer overrun
[  891.604964][T22809] blktrace: Concurrent blktraces are not allowed on sg0
[  891.719273][T22809] relay: one or more items not logged [item size (64) > sub-buffer size (6)]
[  891.793447][T22817] FAULT_INJECTION: forcing a failure.
[  891.793447][T22817] name failslab, interval 1, probability 0, space 0, times 0
[  891.811314][T22817] CPU: 1 UID: 0 PID: 22817 Comm: syz.2.12216 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  891.811347][T22817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  891.811360][T22817] Call Trace:
[  891.811370][T22817]  <TASK>
[  891.811379][T22817]  dump_stack_lvl+0x189/0x250
[  891.811411][T22817]  ? __pfx____ratelimit+0x10/0x10
[  891.811444][T22817]  ? __pfx_dump_stack_lvl+0x10/0x10
[  891.811470][T22817]  ? __pfx__printk+0x10/0x10
[  891.811500][T22817]  ? __pfx___might_resched+0x10/0x10
[  891.811524][T22817]  ? fs_reclaim_acquire+0x7d/0x100
[  891.811559][T22817]  should_fail_ex+0x414/0x560
[  891.811593][T22817]  should_failslab+0xa8/0x100
[  891.811623][T22817]  __kmalloc_noprof+0xcb/0x4f0
[  891.811646][T22817]  ? kfree+0x4d/0x440
[  891.811674][T22817]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  891.811706][T22817]  tomoyo_realpath_from_path+0xe3/0x5d0
[  891.811734][T22817]  ? tomoyo_domain+0xd9/0x130
[  891.811766][T22817]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  891.811800][T22817]  tomoyo_path_number_perm+0x1e8/0x5a0
[  891.811836][T22817]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  891.811888][T22817]  ? __lock_acquire+0xab9/0xd20
[  891.811932][T22817]  ? __fget_files+0x2a/0x420
[  891.811967][T22817]  ? __fget_files+0x2a/0x420
[  891.811996][T22817]  ? __fget_files+0x3a0/0x420
[  891.812026][T22817]  ? __fget_files+0x2a/0x420
[  891.812061][T22817]  security_file_ioctl+0xcb/0x2d0
[  891.812094][T22817]  __se_sys_ioctl+0x47/0x170
[  891.812123][T22817]  do_syscall_64+0xfa/0x3b0
[  891.812143][T22817]  ? lockdep_hardirqs_on+0x9c/0x150
[  891.812176][T22817]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  891.812197][T22817]  ? clear_bhb_loop+0x60/0xb0
[  891.812222][T22817]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  891.812242][T22817] RIP: 0033:0x7f3d6278e929
[  891.812279][T22817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  891.812295][T22817] RSP: 002b:00007f3d605f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  891.812317][T22817] RAX: ffffffffffffffda RBX: 00007f3d629b5fa0 RCX: 00007f3d6278e929
[  891.812332][T22817] RDX: 0000200000000b40 RSI: 000000008008563f RDI: 0000000000000004
[  891.812346][T22817] RBP: 00007f3d605f6090 R08: 0000000000000000 R09: 0000000000000000
[  891.812358][T22817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  891.812371][T22817] R13: 0000000000000000 R14: 00007f3d629b5fa0 R15: 00007fff6029c138
[  891.812403][T22817]  </TASK>
[  891.813129][T22817] ERROR: Out of memory at tomoyo_realpath_from_path.
[  892.186910][T22821] usb usb8: usbfs: process 22821 (syz.5.12217) did not claim interface 32 before use
[  893.854538][T22897] Invalid logical block size (65023)
[  894.610548][T22918] FAULT_INJECTION: forcing a failure.
[  894.610548][T22918] name failslab, interval 1, probability 0, space 0, times 0
[  894.648054][T22918] CPU: 1 UID: 0 PID: 22918 Comm: syz.2.12232 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  894.648086][T22918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  894.648100][T22918] Call Trace:
[  894.648108][T22918]  <TASK>
[  894.648118][T22918]  dump_stack_lvl+0x189/0x250
[  894.648149][T22918]  ? __pfx____ratelimit+0x10/0x10
[  894.648182][T22918]  ? __pfx_dump_stack_lvl+0x10/0x10
[  894.648205][T22918]  ? __pfx__printk+0x10/0x10
[  894.648231][T22918]  ? __pfx___might_resched+0x10/0x10
[  894.648255][T22918]  ? fs_reclaim_acquire+0x7d/0x100
[  894.648289][T22918]  should_fail_ex+0x414/0x560
[  894.648320][T22918]  should_failslab+0xa8/0x100
[  894.648350][T22918]  __kmalloc_noprof+0xcb/0x4f0
[  894.648382][T22918]  ? tomoyo_encode+0x28b/0x550
[  894.648411][T22918]  tomoyo_encode+0x28b/0x550
[  894.648442][T22918]  tomoyo_realpath_from_path+0x58d/0x5d0
[  894.648479][T22918]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  894.648513][T22918]  tomoyo_path_number_perm+0x1e8/0x5a0
[  894.648548][T22918]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  894.648598][T22918]  ? __lock_acquire+0xab9/0xd20
[  894.648641][T22918]  ? __fget_files+0x2a/0x420
[  894.648676][T22918]  ? __fget_files+0x2a/0x420
[  894.648711][T22918]  ? __fget_files+0x3a0/0x420
[  894.648739][T22918]  ? __fget_files+0x2a/0x420
[  894.648774][T22918]  security_file_ioctl+0xcb/0x2d0
[  894.648806][T22918]  __se_sys_ioctl+0x47/0x170
[  894.648835][T22918]  do_syscall_64+0xfa/0x3b0
[  894.648855][T22918]  ? lockdep_hardirqs_on+0x9c/0x150
[  894.648887][T22918]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  894.648908][T22918]  ? clear_bhb_loop+0x60/0xb0
[  894.648934][T22918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  894.648954][T22918] RIP: 0033:0x7f3d6278e929
[  894.648974][T22918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  894.648991][T22918] RSP: 002b:00007f3d605f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  894.649013][T22918] RAX: ffffffffffffffda RBX: 00007f3d629b5fa0 RCX: 00007f3d6278e929
[  894.649029][T22918] RDX: 0000200000000b40 RSI: 000000008008563f RDI: 0000000000000004
[  894.649043][T22918] RBP: 00007f3d605f6090 R08: 0000000000000000 R09: 0000000000000000
[  894.649056][T22918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  894.649068][T22918] R13: 0000000000000000 R14: 00007f3d629b5fa0 R15: 00007fff6029c138
[  894.649100][T22918]  </TASK>
[  894.953146][T22918] ERROR: Out of memory at tomoyo_realpath_from_path.
[  895.054075][T22926] FAULT_INJECTION: forcing a failure.
[  895.054075][T22926] name failslab, interval 1, probability 0, space 0, times 0
[  895.067153][T22926] CPU: 1 UID: 0 PID: 22926 Comm: syz.5.12236 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  895.067182][T22926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  895.067197][T22926] Call Trace:
[  895.067205][T22926]  <TASK>
[  895.067215][T22926]  dump_stack_lvl+0x189/0x250
[  895.067244][T22926]  ? __pfx____ratelimit+0x10/0x10
[  895.067278][T22926]  ? __pfx_dump_stack_lvl+0x10/0x10
[  895.067303][T22926]  ? __pfx__printk+0x10/0x10
[  895.067333][T22926]  ? __pfx___might_resched+0x10/0x10
[  895.067356][T22926]  ? fs_reclaim_acquire+0x7d/0x100
[  895.067391][T22926]  should_fail_ex+0x414/0x560
[  895.067424][T22926]  should_failslab+0xa8/0x100
[  895.067454][T22926]  __kmalloc_noprof+0xcb/0x4f0
[  895.067478][T22926]  ? __kasan_kmalloc+0x93/0xb0
[  895.067502][T22926]  ? usb_alloc_urb+0x46/0x150
[  895.067535][T22926]  usb_alloc_urb+0x46/0x150
[  895.067566][T22926]  alloc_async+0x61/0xc0
[  895.067599][T22926]  proc_do_submiturb+0xb1a/0x37b0
[  895.067645][T22926]  ? proc_do_submiturb+0x2240/0x37b0
[  895.067687][T22926]  proc_submiturb+0x10e/0x160
[  895.067718][T22926]  ? __pfx_proc_submiturb+0x10/0x10
[  895.067767][T22926]  usbdev_ioctl+0x10e7/0x20c0
[  895.067803][T22926]  ? __pfx_usbdev_ioctl+0x10/0x10
[  895.067826][T22926]  ? __fget_files+0x2a/0x420
[  895.067857][T22926]  ? __fget_files+0x3a0/0x420
[  895.067887][T22926]  ? __fget_files+0x2a/0x420
[  895.067921][T22926]  ? bpf_lsm_file_ioctl+0x9/0x20
[  895.067944][T22926]  ? __pfx_usbdev_ioctl+0x10/0x10
[  895.067968][T22926]  __se_sys_ioctl+0xfc/0x170
[  895.067995][T22926]  do_syscall_64+0xfa/0x3b0
[  895.068015][T22926]  ? lockdep_hardirqs_on+0x9c/0x150
[  895.068048][T22926]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  895.068068][T22926]  ? clear_bhb_loop+0x60/0xb0
[  895.068108][T22926]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  895.068128][T22926] RIP: 0033:0x7fa6ff98e929
[  895.068147][T22926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  895.068165][T22926] RSP: 002b:00007fa7008d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  895.068187][T22926] RAX: ffffffffffffffda RBX: 00007fa6ffbb5fa0 RCX: 00007fa6ff98e929
[  895.068203][T22926] RDX: 0000200000000000 RSI: 000000008038550a RDI: 0000000000000005
[  895.068217][T22926] RBP: 00007fa7008d6090 R08: 0000000000000000 R09: 0000000000000000
[  895.068230][T22926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  895.068242][T22926] R13: 0000000000000000 R14: 00007fa6ffbb5fa0 R15: 00007ffefbd1f838
[  895.068275][T22926]  </TASK>
[  895.561632][T22939] FAULT_INJECTION: forcing a failure.
[  895.561632][T22939] name failslab, interval 1, probability 0, space 0, times 0
[  895.574551][T22939] CPU: 1 UID: 0 PID: 22939 Comm: syz.3.12240 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  895.574579][T22939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  895.574591][T22939] Call Trace:
[  895.574599][T22939]  <TASK>
[  895.574607][T22939]  dump_stack_lvl+0x189/0x250
[  895.574636][T22939]  ? __pfx____ratelimit+0x10/0x10
[  895.574668][T22939]  ? __pfx_dump_stack_lvl+0x10/0x10
[  895.574691][T22939]  ? __pfx__printk+0x10/0x10
[  895.574719][T22939]  ? __pfx___might_resched+0x10/0x10
[  895.574742][T22939]  ? fs_reclaim_acquire+0x7d/0x100
[  895.574776][T22939]  should_fail_ex+0x414/0x560
[  895.574806][T22939]  should_failslab+0xa8/0x100
[  895.574834][T22939]  __kmalloc_noprof+0xcb/0x4f0
[  895.574856][T22939]  ? kfree+0x4d/0x440
[  895.574875][T22939]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  895.574905][T22939]  tomoyo_realpath_from_path+0xe3/0x5d0
[  895.574931][T22939]  ? tomoyo_domain+0xd9/0x130
[  895.574978][T22939]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  895.575010][T22939]  tomoyo_path_number_perm+0x1e8/0x5a0
[  895.575046][T22939]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  895.575092][T22939]  ? __lock_acquire+0xab9/0xd20
[  895.575131][T22939]  ? __fget_files+0x2a/0x420
[  895.575166][T22939]  ? __fget_files+0x2a/0x420
[  895.575195][T22939]  ? __fget_files+0x3a0/0x420
[  895.575225][T22939]  ? __fget_files+0x2a/0x420
[  895.575259][T22939]  security_file_ioctl+0xcb/0x2d0
[  895.575292][T22939]  __se_sys_ioctl+0x47/0x170
[  895.575327][T22939]  do_syscall_64+0xfa/0x3b0
[  895.575347][T22939]  ? lockdep_hardirqs_on+0x9c/0x150
[  895.575379][T22939]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  895.575400][T22939]  ? clear_bhb_loop+0x60/0xb0
[  895.575425][T22939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  895.575445][T22939] RIP: 0033:0x7f811b78e929
[  895.575464][T22939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  895.575483][T22939] RSP: 002b:00007f811c5fb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  895.575505][T22939] RAX: ffffffffffffffda RBX: 00007f811b9b5fa0 RCX: 00007f811b78e929
[  895.575521][T22939] RDX: 0000200000000200 RSI: 00000000c0d05604 RDI: 0000000000000003
[  895.575535][T22939] RBP: 00007f811c5fb090 R08: 0000000000000000 R09: 0000000000000000
[  895.575548][T22939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  895.575561][T22939] R13: 0000000000000000 R14: 00007f811b9b5fa0 R15: 00007ffd5bfe2f88
[  895.575593][T22939]  </TASK>
[  895.575603][T22939] ERROR: Out of memory at tomoyo_realpath_from_path.
[  896.048501][T22957] Invalid logical block size (262144)
[  896.353049][T22978] input: syz1 as /devices/virtual/input/input182
[  896.725055][T22991] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  896.735157][T22991] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  897.284945][T23012] Invalid logical block size (65279)
[  897.451255][T23018] input: syz0 as /devices/virtual/input/input183
[  897.877068][T23034] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  897.885550][T23034] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  898.100181][T23047] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  898.108076][T23047] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  898.287570][T23062] FAULT_INJECTION: forcing a failure.
[  898.287570][T23062] name failslab, interval 1, probability 0, space 0, times 0
[  898.322026][T23062] CPU: 0 UID: 0 PID: 23062 Comm: syz.0.12275 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  898.322065][T23062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  898.322079][T23062] Call Trace:
[  898.322089][T23062]  <TASK>
[  898.322099][T23062]  dump_stack_lvl+0x189/0x250
[  898.322130][T23062]  ? __pfx____ratelimit+0x10/0x10
[  898.322163][T23062]  ? __pfx_dump_stack_lvl+0x10/0x10
[  898.322187][T23062]  ? __pfx__printk+0x10/0x10
[  898.322217][T23062]  ? __pfx___might_resched+0x10/0x10
[  898.322240][T23062]  ? fs_reclaim_acquire+0x7d/0x100
[  898.322275][T23062]  should_fail_ex+0x414/0x560
[  898.322307][T23062]  should_failslab+0xa8/0x100
[  898.322337][T23062]  __kmalloc_noprof+0xcb/0x4f0
[  898.322361][T23062]  ? video_usercopy+0x18f/0x14f0
[  898.322390][T23062]  video_usercopy+0x18f/0x14f0
[  898.322424][T23062]  ? __pfx___video_do_ioctl+0x10/0x10
[  898.322448][T23062]  ? __pfx_video_usercopy+0x10/0x10
[  898.322484][T23062]  ? __fget_files+0x2a/0x420
[  898.322518][T23062]  ? __fget_files+0x2a/0x420
[  898.322546][T23062]  ? __fget_files+0x3a0/0x420
[  898.322587][T23062]  v4l2_ioctl+0x18d/0x1e0
[  898.322610][T23062]  ? __pfx_v4l2_ioctl+0x10/0x10
[  898.322633][T23062]  __se_sys_ioctl+0xfc/0x170
[  898.322661][T23062]  do_syscall_64+0xfa/0x3b0
[  898.322680][T23062]  ? lockdep_hardirqs_on+0x9c/0x150
[  898.322712][T23062]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  898.322732][T23062]  ? clear_bhb_loop+0x60/0xb0
[  898.322758][T23062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  898.322778][T23062] RIP: 0033:0x7ff72af8e929
[  898.322796][T23062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  898.322816][T23062] RSP: 002b:00007ff72bdb6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  898.322838][T23062] RAX: ffffffffffffffda RBX: 00007ff72b1b5fa0 RCX: 00007ff72af8e929
[  898.322853][T23062] RDX: 0000200000000200 RSI: 00000000c0d05604 RDI: 0000000000000003
[  898.322867][T23062] RBP: 00007ff72bdb6090 R08: 0000000000000000 R09: 0000000000000000
[  898.322879][T23062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  898.322891][T23062] R13: 0000000000000000 R14: 00007ff72b1b5fa0 R15: 00007ffd352c14e8
[  898.322922][T23062]  </TASK>
[  898.551213][    C0] vkms_vblank_simulate: vblank timer overrun
[  898.578592][T23065] Invalid logical block size (65431)
[  898.585342][T23067] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  898.595982][T23067] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  898.607633][T23067] FAULT_INJECTION: forcing a failure.
[  898.607633][T23067] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  898.645769][T23067] CPU: 1 UID: 0 PID: 23067 Comm: syz.5.12278 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  898.645800][T23067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  898.645813][T23067] Call Trace:
[  898.645822][T23067]  <TASK>
[  898.645831][T23067]  dump_stack_lvl+0x189/0x250
[  898.645861][T23067]  ? __pfx____ratelimit+0x10/0x10
[  898.645895][T23067]  ? __pfx_dump_stack_lvl+0x10/0x10
[  898.645918][T23067]  ? __pfx__printk+0x10/0x10
[  898.645954][T23067]  should_fail_ex+0x414/0x560
[  898.645986][T23067]  _copy_to_user+0x31/0xb0
[  898.646011][T23067]  simple_read_from_buffer+0xe1/0x170
[  898.646047][T23067]  proc_fail_nth_read+0x1df/0x250
[  898.646071][T23067]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  898.646103][T23067]  ? rw_verify_area+0x258/0x650
[  898.646129][T23067]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  898.646151][T23067]  vfs_read+0x1fd/0x980
[  898.646183][T23067]  ? __pfx___mutex_lock+0x10/0x10
[  898.646206][T23067]  ? __pfx_vfs_read+0x10/0x10
[  898.646234][T23067]  ? __fget_files+0x2a/0x420
[  898.646271][T23067]  ? __fget_files+0x3a0/0x420
[  898.646301][T23067]  ? __fget_files+0x2a/0x420
[  898.646342][T23067]  ksys_read+0x145/0x250
[  898.646383][T23067]  ? __pfx_ksys_read+0x10/0x10
[  898.646416][T23067]  ? rcu_is_watching+0x15/0xb0
[  898.646444][T23067]  ? do_syscall_64+0xbe/0x3b0
[  898.646469][T23067]  do_syscall_64+0xfa/0x3b0
[  898.646488][T23067]  ? lockdep_hardirqs_on+0x9c/0x150
[  898.646520][T23067]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  898.646540][T23067]  ? clear_bhb_loop+0x60/0xb0
[  898.646564][T23067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  898.646583][T23067] RIP: 0033:0x7fa6ff98d33c
[  898.646601][T23067] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  898.646618][T23067] RSP: 002b:00007fa7008d6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  898.646641][T23067] RAX: ffffffffffffffda RBX: 00007fa6ffbb5fa0 RCX: 00007fa6ff98d33c
[  898.646656][T23067] RDX: 000000000000000f RSI: 00007fa7008d60a0 RDI: 0000000000000006
[  898.646669][T23067] RBP: 00007fa7008d6090 R08: 0000000000000000 R09: 0000000000000000
[  898.646682][T23067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  898.646694][T23067] R13: 0000000000000000 R14: 00007fa6ffbb5fa0 R15: 00007ffefbd1f838
[  898.646726][T23067]  </TASK>
[  899.045489][T23084] FAULT_INJECTION: forcing a failure.
[  899.045489][T23084] name failslab, interval 1, probability 0, space 0, times 0
[  899.077073][T23084] CPU: 1 UID: 0 PID: 23084 Comm: syz.5.12285 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  899.077103][T23084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  899.077117][T23084] Call Trace:
[  899.077125][T23084]  <TASK>
[  899.077134][T23084]  dump_stack_lvl+0x189/0x250
[  899.077168][T23084]  ? __pfx____ratelimit+0x10/0x10
[  899.077200][T23084]  ? __pfx_dump_stack_lvl+0x10/0x10
[  899.077224][T23084]  ? __pfx__printk+0x10/0x10
[  899.077253][T23084]  ? __pfx___might_resched+0x10/0x10
[  899.077276][T23084]  ? fs_reclaim_acquire+0x7d/0x100
[  899.077309][T23084]  should_fail_ex+0x414/0x560
[  899.077341][T23084]  should_failslab+0xa8/0x100
[  899.077370][T23084]  __kmalloc_noprof+0xcb/0x4f0
[  899.077392][T23084]  ? kfree+0x4d/0x440
[  899.077411][T23084]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  899.077442][T23084]  tomoyo_realpath_from_path+0xe3/0x5d0
[  899.077468][T23084]  ? tomoyo_domain+0xd9/0x130
[  899.077498][T23084]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  899.077530][T23084]  tomoyo_path_number_perm+0x1e8/0x5a0
[  899.077565][T23084]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  899.077615][T23084]  ? __lock_acquire+0xab9/0xd20
[  899.077657][T23084]  ? __fget_files+0x2a/0x420
[  899.077690][T23084]  ? __fget_files+0x2a/0x420
[  899.077726][T23084]  ? __fget_files+0x3a0/0x420
[  899.077755][T23084]  ? __fget_files+0x2a/0x420
[  899.077789][T23084]  security_file_ioctl+0xcb/0x2d0
[  899.077821][T23084]  __se_sys_ioctl+0x47/0x170
[  899.077850][T23084]  do_syscall_64+0xfa/0x3b0
[  899.077869][T23084]  ? lockdep_hardirqs_on+0x9c/0x150
[  899.077899][T23084]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  899.077919][T23084]  ? clear_bhb_loop+0x60/0xb0
[  899.077944][T23084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  899.077964][T23084] RIP: 0033:0x7fa6ff98e929
[  899.077983][T23084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  899.078001][T23084] RSP: 002b:00007fa7008d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  899.078023][T23084] RAX: ffffffffffffffda RBX: 00007fa6ffbb5fa0 RCX: 00007fa6ff98e929
[  899.078039][T23084] RDX: 0000200000000040 RSI: 00000000402c542d RDI: 0000000000000003
[  899.078052][T23084] RBP: 00007fa7008d6090 R08: 0000000000000000 R09: 0000000000000000
[  899.078065][T23084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  899.078078][T23084] R13: 0000000000000000 R14: 00007fa6ffbb5fa0 R15: 00007ffefbd1f838
[  899.078109][T23084]  </TASK>
[  899.078145][T23084] ERROR: Out of memory at tomoyo_realpath_from_path.
[  899.688341][T23104] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  899.695933][T23104] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  899.924759][T23114] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  899.944392][T23114] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  900.373842][T23127] Invalid logical block size (1310720)
[  900.444672][T23129] loop4: detected capacity change from 0 to 7
[  900.456806][T23129] Dev loop4: unable to read RDB block 7
[  900.466534][T23129]  loop4: unable to read partition table
[  900.472944][T23129] loop4: partition table beyond EOD, truncated
[  900.488987][T23129] loop_reread_partitions: partition scan of loop4 (3Ÿ¾‚³˜) failed (rc=-5)
[  901.102386][   T30] audit: type=1800 audit(1750365146.115:42): pid=23167 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.12305" name="dmabuf" dev="dmabuf" ino=50 res=0 errno=0
[  901.158476][T23170] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  901.166944][T23170] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  901.665206][T23184] FAULT_INJECTION: forcing a failure.
[  901.665206][T23184] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  901.678900][T23184] CPU: 1 UID: 0 PID: 23184 Comm: syz.3.12312 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  901.678927][T23184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  901.678939][T23184] Call Trace:
[  901.678947][T23184]  <TASK>
[  901.678955][T23184]  dump_stack_lvl+0x189/0x250
[  901.678981][T23184]  ? __pfx____ratelimit+0x10/0x10
[  901.679010][T23184]  ? __pfx_dump_stack_lvl+0x10/0x10
[  901.679033][T23184]  ? __pfx__printk+0x10/0x10
[  901.679066][T23184]  should_fail_ex+0x414/0x560
[  901.679094][T23184]  _copy_to_user+0x31/0xb0
[  901.679117][T23184]  video_usercopy+0xeb2/0x14f0
[  901.679159][T23184]  ? __pfx___video_do_ioctl+0x10/0x10
[  901.679181][T23184]  ? __pfx_video_usercopy+0x10/0x10
[  901.679213][T23184]  ? __fget_files+0x2a/0x420
[  901.679244][T23184]  ? __fget_files+0x2a/0x420
[  901.679270][T23184]  ? __fget_files+0x3a0/0x420
[  901.679302][T23184]  v4l2_ioctl+0x18d/0x1e0
[  901.679323][T23184]  ? __pfx_v4l2_ioctl+0x10/0x10
[  901.679343][T23184]  __se_sys_ioctl+0xfc/0x170
[  901.679369][T23184]  do_syscall_64+0xfa/0x3b0
[  901.679392][T23184]  ? lockdep_hardirqs_on+0x9c/0x150
[  901.679422][T23184]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  901.679441][T23184]  ? clear_bhb_loop+0x60/0xb0
[  901.679464][T23184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  901.679495][T23184] RIP: 0033:0x7f811b78e929
[  901.679512][T23184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  901.679529][T23184] RSP: 002b:00007f811c5fb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  901.679549][T23184] RAX: ffffffffffffffda RBX: 00007f811b9b5fa0 RCX: 00007f811b78e929
[  901.679563][T23184] RDX: 0000200000000200 RSI: 00000000c0d05604 RDI: 0000000000000003
[  901.679574][T23184] RBP: 00007f811c5fb090 R08: 0000000000000000 R09: 0000000000000000
[  901.679586][T23184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  901.679597][T23184] R13: 0000000000000000 R14: 00007f811b9b5fa0 R15: 00007ffd5bfe2f88
[  901.679625][T23184]  </TASK>
[  901.931380][T23187] Invalid logical block size (2097152)
[  902.227508][T23199] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  902.317819][T23202] ALSA: mixer_oss: invalid index 100000
[  902.744183][T23242] input: syz1 as /devices/virtual/input/input184
[  903.783596][T23291] FAULT_INJECTION: forcing a failure.
[  903.783596][T23291] name failslab, interval 1, probability 0, space 0, times 0
[  903.796638][T23291] CPU: 1 UID: 0 PID: 23291 Comm: syz.5.12333 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  903.796678][T23291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  903.796690][T23291] Call Trace:
[  903.796698][T23291]  <TASK>
[  903.796706][T23291]  dump_stack_lvl+0x189/0x250
[  903.796732][T23291]  ? __pfx____ratelimit+0x10/0x10
[  903.796763][T23291]  ? __pfx_dump_stack_lvl+0x10/0x10
[  903.796785][T23291]  ? __pfx__printk+0x10/0x10
[  903.796813][T23291]  ? __pfx___might_resched+0x10/0x10
[  903.796853][T23291]  ? fs_reclaim_acquire+0x7d/0x100
[  903.796887][T23291]  should_fail_ex+0x414/0x560
[  903.796919][T23291]  should_failslab+0xa8/0x100
[  903.796948][T23291]  __kmalloc_cache_noprof+0x70/0x3d0
[  903.796973][T23291]  ? snd_pcm_oss_change_params_locked+0x1fe/0x3e40
[  903.797001][T23291]  snd_pcm_oss_change_params_locked+0x1fe/0x3e40
[  903.797031][T23291]  ? __pfx___mutex_trylock_common+0x10/0x10
[  903.797063][T23291]  ? rcu_is_watching+0x15/0xb0
[  903.797087][T23291]  ? trace_contention_end+0x39/0x120
[  903.797114][T23291]  ? __mutex_lock+0x330/0xe80
[  903.797145][T23291]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  903.797165][T23291]  ? snd_pcm_oss_make_ready+0xc0/0x340
[  903.797186][T23291]  ? __pfx___mutex_lock+0x10/0x10
[  903.797226][T23291]  snd_pcm_oss_make_ready+0x11b/0x340
[  903.797253][T23291]  snd_pcm_oss_set_trigger+0x6a/0x740
[  903.797277][T23291]  ? __might_fault+0xb0/0x130
[  903.797306][T23291]  snd_pcm_oss_ioctl+0xbb3/0xdd0
[  903.797327][T23291]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  903.797347][T23291]  __se_sys_ioctl+0xfc/0x170
[  903.797376][T23291]  do_syscall_64+0xfa/0x3b0
[  903.797395][T23291]  ? lockdep_hardirqs_on+0x9c/0x150
[  903.797427][T23291]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  903.797447][T23291]  ? clear_bhb_loop+0x60/0xb0
[  903.797472][T23291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  903.797493][T23291] RIP: 0033:0x7fa6ff98e929
[  903.797511][T23291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  903.797528][T23291] RSP: 002b:00007fa7008d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  903.797549][T23291] RAX: ffffffffffffffda RBX: 00007fa6ffbb5fa0 RCX: 00007fa6ff98e929
[  903.797572][T23291] RDX: 00002000000001c0 RSI: 0000000040045010 RDI: 0000000000000003
[  903.797585][T23291] RBP: 00007fa7008d6090 R08: 0000000000000000 R09: 0000000000000000
[  903.797598][T23291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  903.797611][T23291] R13: 0000000000000000 R14: 00007fa6ffbb5fa0 R15: 00007ffefbd1f838
[  903.797643][T23291]  </TASK>
[  904.128296][T23292] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  904.135906][T23292] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  904.505653][T23320] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  904.912376][T23340] FAULT_INJECTION: forcing a failure.
[  904.912376][T23340] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  904.957152][T23340] CPU: 0 UID: 0 PID: 23340 Comm: syz.0.12341 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  904.957183][T23340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  904.957196][T23340] Call Trace:
[  904.957205][T23340]  <TASK>
[  904.957214][T23340]  dump_stack_lvl+0x189/0x250
[  904.957243][T23340]  ? __pfx____ratelimit+0x10/0x10
[  904.957275][T23340]  ? __pfx_dump_stack_lvl+0x10/0x10
[  904.957297][T23340]  ? __pfx__printk+0x10/0x10
[  904.957320][T23340]  ? __might_fault+0xb0/0x130
[  904.957353][T23340]  should_fail_ex+0x414/0x560
[  904.957384][T23340]  _copy_from_iter+0x1db/0x16f0
[  904.957413][T23340]  ? __alloc_frozen_pages_noprof+0x1d6/0x370
[  904.957460][T23340]  ? __pfx__copy_from_iter+0x10/0x10
[  904.957489][T23340]  ? policy_nodemask+0x27c/0x720
[  904.957512][T23340]  ? aa_file_perm+0x11f/0xed0
[  904.957538][T23340]  ? page_copy_sane+0x4e/0x280
[  904.957567][T23340]  copy_page_from_iter+0xdd/0x170
[  904.957602][T23340]  anon_pipe_write+0x99a/0x1360
[  904.957652][T23340]  ? __pfx_anon_pipe_write+0x10/0x10
[  904.957679][T23340]  ? common_file_perm+0x199/0x200
[  904.957702][T23340]  ? bpf_lsm_file_permission+0x9/0x20
[  904.957721][T23340]  ? security_file_permission+0x75/0x290
[  904.957758][T23340]  vfs_write+0x548/0xa90
[  904.957787][T23340]  ? __pfx_anon_pipe_write+0x10/0x10
[  904.957819][T23340]  ? __pfx_vfs_write+0x10/0x10
[  904.957855][T23340]  ? __fget_files+0x2a/0x420
[  904.957895][T23340]  ksys_write+0x145/0x250
[  904.957923][T23340]  ? __pfx_ksys_write+0x10/0x10
[  904.957945][T23340]  ? rcu_is_watching+0x15/0xb0
[  904.957974][T23340]  ? do_syscall_64+0xbe/0x3b0
[  904.957999][T23340]  do_syscall_64+0xfa/0x3b0
[  904.958018][T23340]  ? lockdep_hardirqs_on+0x9c/0x150
[  904.958048][T23340]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  904.958068][T23340]  ? clear_bhb_loop+0x60/0xb0
[  904.958092][T23340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  904.958115][T23340] RIP: 0033:0x7ff72af8e929
[  904.958135][T23340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  904.958153][T23340] RSP: 002b:00007ff72bdb6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  904.958174][T23340] RAX: ffffffffffffffda RBX: 00007ff72b1b5fa0 RCX: 00007ff72af8e929
[  904.958188][T23340] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000000
[  904.958201][T23340] RBP: 00007ff72bdb6090 R08: 0000000000000000 R09: 0000000000000000
[  904.958213][T23340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  904.958225][T23340] R13: 0000000000000000 R14: 00007ff72b1b5fa0 R15: 00007ffd352c14e8
[  904.958255][T23340]  </TASK>
[  905.217602][    C0] vkms_vblank_simulate: vblank timer overrun
[  905.333319][T23339] binder: 23338:23339 ioctl c018620c 200000000100 returned -22
[  906.554685][T23405] FAULT_INJECTION: forcing a failure.
[  906.554685][T23405] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  906.568439][T23405] CPU: 0 UID: 0 PID: 23405 Comm: syz.5.12363 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  906.568467][T23405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  906.568480][T23405] Call Trace:
[  906.568488][T23405]  <TASK>
[  906.568497][T23405]  dump_stack_lvl+0x189/0x250
[  906.568526][T23405]  ? __pfx____ratelimit+0x10/0x10
[  906.568558][T23405]  ? __pfx_dump_stack_lvl+0x10/0x10
[  906.568581][T23405]  ? __pfx__printk+0x10/0x10
[  906.568606][T23405]  ? fs_reclaim_acquire+0x7d/0x100
[  906.568643][T23405]  should_fail_ex+0x414/0x560
[  906.568675][T23405]  prepare_alloc_pages+0x213/0x610
[  906.568716][T23405]  __alloc_frozen_pages_noprof+0x123/0x370
[  906.568752][T23405]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  906.568787][T23405]  ? __pfx__copy_from_iter+0x10/0x10
[  906.568819][T23405]  ? policy_nodemask+0x27c/0x720
[  906.568844][T23405]  ? aa_file_perm+0x11f/0xed0
[  906.568871][T23405]  alloc_pages_mpol+0x232/0x4a0
[  906.568903][T23405]  alloc_pages_noprof+0xa9/0x190
[  906.568932][T23405]  anon_pipe_write+0xb85/0x1360
[  906.568987][T23405]  ? __pfx_anon_pipe_write+0x10/0x10
[  906.569016][T23405]  ? common_file_perm+0x199/0x200
[  906.569041][T23405]  ? bpf_lsm_file_permission+0x9/0x20
[  906.569069][T23405]  ? security_file_permission+0x75/0x290
[  906.569108][T23405]  vfs_write+0x548/0xa90
[  906.569139][T23405]  ? __pfx_anon_pipe_write+0x10/0x10
[  906.569171][T23405]  ? __pfx_vfs_write+0x10/0x10
[  906.569208][T23405]  ? __fget_files+0x2a/0x420
[  906.569248][T23405]  ksys_write+0x145/0x250
[  906.569277][T23405]  ? __pfx_ksys_write+0x10/0x10
[  906.569300][T23405]  ? rcu_is_watching+0x15/0xb0
[  906.569329][T23405]  ? do_syscall_64+0xbe/0x3b0
[  906.569353][T23405]  do_syscall_64+0xfa/0x3b0
[  906.569372][T23405]  ? lockdep_hardirqs_on+0x9c/0x150
[  906.569403][T23405]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  906.569424][T23405]  ? clear_bhb_loop+0x60/0xb0
[  906.569449][T23405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  906.569468][T23405] RIP: 0033:0x7fa6ff98e929
[  906.569486][T23405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  906.569505][T23405] RSP: 002b:00007fa7008d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  906.569526][T23405] RAX: ffffffffffffffda RBX: 00007fa6ffbb5fa0 RCX: 00007fa6ff98e929
[  906.569541][T23405] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000000
[  906.569554][T23405] RBP: 00007fa7008d6090 R08: 0000000000000000 R09: 0000000000000000
[  906.569567][T23405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  906.569579][T23405] R13: 0000000000000000 R14: 00007fa6ffbb5fa0 R15: 00007ffefbd1f838
[  906.569611][T23405]  </TASK>
[  906.834881][    C0] vkms_vblank_simulate: vblank timer overrun
[  906.984769][T23415] Invalid logical block size (262144)
[  907.151764][T23421] syz.0.12368: attempt to access beyond end of device
[  907.151764][T23421] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  907.174865][T23425] CUSE: info not properly terminated
[  907.301536][T23432] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  907.314767][T23432] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  907.500798][T23441] input: syz0 as /devices/virtual/input/input185
[  908.212821][T23484] Invalid logical block size (1048576)
[  909.240123][T23509] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  910.727577][T23587] input: syz1 as /devices/virtual/input/input186
[  911.084622][T23606] CUSE: info not properly terminated
[  912.484015][T23664] Invalid logical block size (50331648)
[  913.174779][T23687] loop8: detected capacity change from 0 to 7
[  913.203165][T18905] Dev loop8: unable to read RDB block 7
[  913.210484][T18905]  loop8: unable to read partition table
[  913.216440][T18905] loop8: partition table beyond EOD, truncated
[  913.246496][T23687] Dev loop8: unable to read RDB block 7
[  913.257196][T23687]  loop8: unable to read partition table
[  913.263697][T23687] loop8: partition table beyond EOD, truncated
[  913.274526][T23687] loop_reread_partitions: partition scan of loop8 (þ被x) failed (rc=-5)
[  913.281142][T23700] FAULT_INJECTION: forcing a failure.
[  913.281142][T23700] name failslab, interval 1, probability 0, space 0, times 0
[  913.323828][T23700] CPU: 0 UID: 0 PID: 23700 Comm: syz.3.12429 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  913.323859][T23700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  913.323872][T23700] Call Trace:
[  913.323881][T23700]  <TASK>
[  913.323890][T23700]  dump_stack_lvl+0x189/0x250
[  913.323921][T23700]  ? __pfx____ratelimit+0x10/0x10
[  913.323954][T23700]  ? __pfx_dump_stack_lvl+0x10/0x10
[  913.323979][T23700]  ? __pfx__printk+0x10/0x10
[  913.324009][T23700]  ? __pfx___might_resched+0x10/0x10
[  913.324033][T23700]  ? fs_reclaim_acquire+0x7d/0x100
[  913.324069][T23700]  should_fail_ex+0x414/0x560
[  913.324101][T23700]  should_failslab+0xa8/0x100
[  913.324131][T23700]  __kmalloc_noprof+0xcb/0x4f0
[  913.324156][T23700]  ? snd_pcm_hw_refine+0x967/0x1640
[  913.324189][T23700]  snd_pcm_hw_refine+0x967/0x1640
[  913.324229][T23700]  ? __kasan_kmalloc+0x93/0xb0
[  913.324255][T23700]  ? snd_pcm_oss_change_params_locked+0x1048/0x3e40
[  913.324277][T23700]  ? snd_pcm_oss_set_trigger+0x6a/0x740
[  913.324296][T23700]  ? __se_sys_ioctl+0xfc/0x170
[  913.324319][T23700]  ? do_syscall_64+0xfa/0x3b0
[  913.324341][T23700]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  913.324505][T23700]  snd_pcm_hw_param_first+0x3e9/0xaf0
[  913.324544][T23700]  snd_pcm_hw_param_near+0x460/0x500
[  913.324565][T23700]  ? snd_pcm_oss_change_params_locked+0xff9/0x3e40
[  913.324587][T23700]  ? snd_pcm_hw_param_value+0x2b9/0x510
[  913.324614][T23700]  snd_pcm_oss_change_params_locked+0x1048/0x3e40
[  913.324655][T23700]  ? trace_contention_end+0x39/0x120
[  913.324697][T23700]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  913.324726][T23700]  ? snd_pcm_oss_make_ready+0xc0/0x340
[  913.324778][T23700]  snd_pcm_oss_make_ready+0x11b/0x340
[  913.324806][T23700]  snd_pcm_oss_set_trigger+0x6a/0x740
[  913.324831][T23700]  ? __might_fault+0xb0/0x130
[  913.324861][T23700]  snd_pcm_oss_ioctl+0xbb3/0xdd0
[  913.324882][T23700]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  913.324903][T23700]  __se_sys_ioctl+0xfc/0x170
[  913.324932][T23700]  do_syscall_64+0xfa/0x3b0
[  913.324953][T23700]  ? lockdep_hardirqs_on+0x9c/0x150
[  913.324986][T23700]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  913.325006][T23700]  ? clear_bhb_loop+0x60/0xb0
[  913.325032][T23700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  913.325053][T23700] RIP: 0033:0x7f811b78e929
[  913.325072][T23700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  913.325090][T23700] RSP: 002b:00007f811c5fb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  913.325112][T23700] RAX: ffffffffffffffda RBX: 00007f811b9b5fa0 RCX: 00007f811b78e929
[  913.325128][T23700] RDX: 00002000000001c0 RSI: 0000000040045010 RDI: 0000000000000003
[  913.325142][T23700] RBP: 00007f811c5fb090 R08: 0000000000000000 R09: 0000000000000000
[  913.325155][T23700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  913.325168][T23700] R13: 0000000000000000 R14: 00007f811b9b5fa0 R15: 00007ffd5bfe2f88
[  913.325200][T23700]  </TASK>
[  913.621732][    C0] vkms_vblank_simulate: vblank timer overrun
[  913.732159][T23709] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  913.749961][T23708] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  913.833899][T23720] random: crng reseeded on system resumption
[  913.954626][T23726] Invalid logical block size (16777216)
[  914.650859][T23756] FAULT_INJECTION: forcing a failure.
[  914.650859][T23756] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  914.668340][T23756] CPU: 0 UID: 0 PID: 23756 Comm: syz.3.12441 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  914.668370][T23756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  914.668383][T23756] Call Trace:
[  914.668392][T23756]  <TASK>
[  914.668401][T23756]  dump_stack_lvl+0x189/0x250
[  914.668428][T23756]  ? __pfx____ratelimit+0x10/0x10
[  914.668461][T23756]  ? __pfx_dump_stack_lvl+0x10/0x10
[  914.668484][T23756]  ? __pfx__printk+0x10/0x10
[  914.668507][T23756]  ? __might_fault+0xb0/0x130
[  914.668543][T23756]  should_fail_ex+0x414/0x560
[  914.668582][T23756]  _copy_from_user+0x2d/0xb0
[  914.668603][T23756]  set_selection_user+0x8e/0x140
[  914.668623][T23756]  ? __pfx_set_selection_user+0x10/0x10
[  914.668647][T23756]  ? tioclinux+0x38b/0x530
[  914.668686][T23756]  vt_ioctl+0x81a/0x1f00
[  914.668733][T23756]  ? __pfx_vt_ioctl+0x10/0x10
[  914.668775][T23756]  ? __fget_files+0x2a/0x420
[  914.668810][T23756]  ? __fget_files+0x3a0/0x420
[  914.668838][T23756]  ? __fget_files+0x2a/0x420
[  914.668871][T23756]  tty_ioctl+0x926/0xde0
[  914.668891][T23756]  ? __pfx_tty_ioctl+0x10/0x10
[  914.668912][T23756]  __se_sys_ioctl+0xfc/0x170
[  914.668939][T23756]  do_syscall_64+0xfa/0x3b0
[  914.668958][T23756]  ? lockdep_hardirqs_on+0x9c/0x150
[  914.668989][T23756]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  914.669009][T23756]  ? clear_bhb_loop+0x60/0xb0
[  914.669034][T23756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  914.669053][T23756] RIP: 0033:0x7f811b78e929
[  914.669071][T23756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  914.669089][T23756] RSP: 002b:00007f811c5fb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  914.669111][T23756] RAX: ffffffffffffffda RBX: 00007f811b9b5fa0 RCX: 00007f811b78e929
[  914.669126][T23756] RDX: 00002000000000c0 RSI: 000000000000541c RDI: 0000000000000003
[  914.669140][T23756] RBP: 00007f811c5fb090 R08: 0000000000000000 R09: 0000000000000000
[  914.669153][T23756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  914.669165][T23756] R13: 0000000000000000 R14: 00007f811b9b5fa0 R15: 00007ffd5bfe2f88
[  914.669195][T23756]  </TASK>
[  914.884467][    C0] vkms_vblank_simulate: vblank timer overrun
[  915.560286][T23774] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  915.633731][T23778] Invalid logical block size (16777472)
[  916.120942][T23784] Bluetooth: hci4: command 0x1003 tx timeout
[  916.122517][ T5845] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  916.485083][T23803] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  916.627735][T23807] Invalid logical block size (100663296)
[  916.742799][T23811] Invalid logical block size (17301504)
[  916.820509][T23813] FAULT_INJECTION: forcing a failure.
[  916.820509][T23813] name failslab, interval 1, probability 0, space 0, times 0
[  916.839260][T23813] CPU: 0 UID: 0 PID: 23813 Comm: syz.3.12461 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  916.839291][T23813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  916.839304][T23813] Call Trace:
[  916.839325][T23813]  <TASK>
[  916.839334][T23813]  dump_stack_lvl+0x189/0x250
[  916.839363][T23813]  ? __pfx____ratelimit+0x10/0x10
[  916.839396][T23813]  ? __pfx_dump_stack_lvl+0x10/0x10
[  916.839420][T23813]  ? __pfx__printk+0x10/0x10
[  916.839450][T23813]  ? __pfx___might_resched+0x10/0x10
[  916.839473][T23813]  ? fs_reclaim_acquire+0x7d/0x100
[  916.839507][T23813]  should_fail_ex+0x414/0x560
[  916.839543][T23813]  should_failslab+0xa8/0x100
[  916.839572][T23813]  __kmalloc_noprof+0xcb/0x4f0
[  916.839595][T23813]  ? kfree+0x4d/0x440
[  916.839614][T23813]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  916.839644][T23813]  tomoyo_realpath_from_path+0xe3/0x5d0
[  916.839670][T23813]  ? tomoyo_domain+0xd9/0x130
[  916.839700][T23813]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  916.839733][T23813]  tomoyo_path_number_perm+0x1e8/0x5a0
[  916.839768][T23813]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  916.839835][T23813]  ? __lock_acquire+0xab9/0xd20
[  916.839887][T23813]  ? __fget_files+0x2a/0x420
[  916.839922][T23813]  ? __fget_files+0x2a/0x420
[  916.839951][T23813]  ? __fget_files+0x3a0/0x420
[  916.839981][T23813]  ? __fget_files+0x2a/0x420
[  916.840017][T23813]  security_file_ioctl+0xcb/0x2d0
[  916.840049][T23813]  __se_sys_ioctl+0x47/0x170
[  916.840083][T23813]  do_syscall_64+0xfa/0x3b0
[  916.840104][T23813]  ? lockdep_hardirqs_on+0x9c/0x150
[  916.840136][T23813]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  916.840157][T23813]  ? clear_bhb_loop+0x60/0xb0
[  916.840183][T23813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  916.840203][T23813] RIP: 0033:0x7f811b78e929
[  916.840222][T23813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  916.840241][T23813] RSP: 002b:00007f811c5fb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  916.840263][T23813] RAX: ffffffffffffffda RBX: 00007f811b9b5fa0 RCX: 00007f811b78e929
[  916.840279][T23813] RDX: 00002000000000c0 RSI: 00000000c0d05605 RDI: 0000000000000005
[  916.840293][T23813] RBP: 00007f811c5fb090 R08: 0000000000000000 R09: 0000000000000000
[  916.840307][T23813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  916.840320][T23813] R13: 0000000000000000 R14: 00007f811b9b5fa0 R15: 00007ffd5bfe2f88
[  916.840353][T23813]  </TASK>
[  916.840390][T23813] ERROR: Out of memory at tomoyo_realpath_from_path.
[  917.443445][T23829] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  917.451313][T23829] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  917.728990][ T5845] Bluetooth: hci5: command 0x1003 tx timeout
[  917.732030][   T51] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  917.823966][T23839] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  918.852522][T23875] FAULT_INJECTION: forcing a failure.
[  918.852522][T23875] name failslab, interval 1, probability 0, space 0, times 0
[  918.886595][T23875] CPU: 0 UID: 0 PID: 23875 Comm: syz.5.12474 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  918.886626][T23875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  918.886639][T23875] Call Trace:
[  918.886648][T23875]  <TASK>
[  918.886657][T23875]  dump_stack_lvl+0x189/0x250
[  918.886688][T23875]  ? __pfx____ratelimit+0x10/0x10
[  918.886722][T23875]  ? __pfx_dump_stack_lvl+0x10/0x10
[  918.886746][T23875]  ? __pfx__printk+0x10/0x10
[  918.886772][T23875]  ? __pfx___might_resched+0x10/0x10
[  918.886796][T23875]  ? fs_reclaim_acquire+0x7d/0x100
[  918.886831][T23875]  should_fail_ex+0x414/0x560
[  918.886863][T23875]  should_failslab+0xa8/0x100
[  918.886893][T23875]  __kmalloc_noprof+0xcb/0x4f0
[  918.886917][T23875]  ? tomoyo_encode+0x28b/0x550
[  918.886958][T23875]  tomoyo_encode+0x28b/0x550
[  918.886988][T23875]  tomoyo_realpath_from_path+0x58d/0x5d0
[  918.887025][T23875]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  918.887059][T23875]  tomoyo_path_number_perm+0x1e8/0x5a0
[  918.887094][T23875]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  918.887146][T23875]  ? __lock_acquire+0xab9/0xd20
[  918.887188][T23875]  ? __fget_files+0x2a/0x420
[  918.887223][T23875]  ? __fget_files+0x2a/0x420
[  918.887253][T23875]  ? __fget_files+0x3a0/0x420
[  918.887282][T23875]  ? __fget_files+0x2a/0x420
[  918.887316][T23875]  security_file_ioctl+0xcb/0x2d0
[  918.887350][T23875]  __se_sys_ioctl+0x47/0x170
[  918.887378][T23875]  do_syscall_64+0xfa/0x3b0
[  918.887397][T23875]  ? lockdep_hardirqs_on+0x9c/0x150
[  918.887429][T23875]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  918.887449][T23875]  ? clear_bhb_loop+0x60/0xb0
[  918.887475][T23875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  918.887495][T23875] RIP: 0033:0x7fa6ff98e929
[  918.887513][T23875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  918.887532][T23875] RSP: 002b:00007fa7008d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  918.887555][T23875] RAX: ffffffffffffffda RBX: 00007fa6ffbb5fa0 RCX: 00007fa6ff98e929
[  918.887571][T23875] RDX: 00002000000000c0 RSI: 00000000c0d05605 RDI: 0000000000000005
[  918.887584][T23875] RBP: 00007fa7008d6090 R08: 0000000000000000 R09: 0000000000000000
[  918.887597][T23875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  918.887609][T23875] R13: 0000000000000000 R14: 00007fa6ffbb5fa0 R15: 00007ffefbd1f838
[  918.887642][T23875]  </TASK>
[  918.887663][T23875] ERROR: Out of memory at tomoyo_realpath_from_path.
[  919.117330][T23878] CUSE: info not properly terminated
[  919.493761][T23889] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  919.501757][T23889] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  920.286302][T23897] Invalid logical block size (117440512)
[  921.372446][T23920] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  922.319617][T23980] Invalid logical block size (134217728)
[  924.367170][T24060] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  924.389997][T24060] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  925.885076][T24093] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  925.901321][T24093] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  926.090723][T24099] binder: BC_ACQUIRE_RESULT not supported
[  926.096965][T24099] binder: 24098:24099 ioctl c0306201 200000000580 returned -22
[  926.454069][T24109] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  926.551877][T24114] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  926.576748][T24114] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  926.718903][T24118] input: syz1 as /devices/virtual/input/input188
[  927.081247][T24134] vim2m vim2m.0: Fourcc format (0x42474752) invalid.
[  928.255378][T24157] FAULT_INJECTION: forcing a failure.
[  928.255378][T24157] name failslab, interval 1, probability 0, space 0, times 0
[  928.275945][T24157] CPU: 0 UID: 0 PID: 24157 Comm: syz.0.12536 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[  928.275977][T24157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  928.275991][T24157] Call Trace:
[  928.275999][T24157]  <TASK>
[  928.276009][T24157]  dump_stack_lvl+0x189/0x250
[  928.276038][T24157]  ? __pfx____ratelimit+0x10/0x10
[  928.276072][T24157]  ? __pfx_dump_stack_lvl+0x10/0x10
[  928.276096][T24157]  ? __pfx__printk+0x10/0x10
[  928.276127][T24157]  ? __pfx___might_resched+0x10/0x10
[  928.276150][T24157]  ? fs_reclaim_acquire+0x7d/0x100
[  928.276185][T24157]  should_fail_ex+0x414/0x560
[  928.276218][T24157]  should_failslab+0xa8/0x100
[  928.276248][T24157]  __kmalloc_noprof+0xcb/0x4f0
[  928.276272][T24157]  ? snd_pcm_hw_refine+0x967/0x1640
[  928.276313][T24157]  snd_pcm_hw_refine+0x967/0x1640
[  928.276345][T24157]  ? __mutex_trylock_common+0x153/0x260
[  928.276375][T24157]  ? __pfx___mutex_trylock_common+0x10/0x10
[  928.276406][T24157]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  928.276433][T24157]  ? __lock_acquire+0xab9/0xd20
[  928.276464][T24157]  ? do_raw_spin_lock+0x121/0x290
[  928.276495][T24157]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  928.276522][T24157]  ? snd_pcm_hw_params+0x15b/0x1c90
[  928.276571][T24157]  ? _raw_spin_unlock_irq+0x23/0x50
[  928.276601][T24157]  ? lockdep_hardirqs_on+0x9c/0x150
[  928.276635][T24157]  snd_pcm_hw_params+0x491/0x1c90
[  928.276686][T24157]  ? lockdep_hardirqs_on+0x9c/0x150
[  928.276724][T24157]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[  928.276757][T24157]  ? snd_pcm_hw_param_near+0x373/0x500
[  928.276789][T24157]  snd_pcm_oss_change_params_locked+0x21cb/0x3e40
[  928.276846][T24157]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  928.276865][T24157]  ? snd_pcm_oss_make_ready+0xc0/0x340
[  928.276915][T24157]  snd_pcm_oss_make_ready+0x11b/0x340
[  928.276942][T24157]  snd_pcm_oss_set_trigger+0x6a/0x740
[  928.276983][T24157]  ? __might_fault+0xb0/0x130
[  928.277012][T24157]  snd_pcm_oss_ioctl+0xbb3/0xdd0
[  928.277033][T24157]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  928.277059][T24157]  __se_sys_ioctl+0xfc/0x170
[  928.277088][T24157]  do_syscall_64+0xfa/0x3b0
[  928.277107][T24157]  ? lockdep_hardirqs_on+0x9c/0x150
[  928.277139][T24157]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  928.277159][T24157]  ? clear_bhb_loop+0x60/0xb0
[  928.277192][T24157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  928.277212][T24157] RIP: 0033:0x7ff72af8e929
[  928.277231][T24157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  928.277250][T24157] RSP: 002b:00007ff72bdb6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  928.277277][T24157] RAX: ffffffffffffffda RBX: 00007ff72b1b5fa0 RCX: 00007ff72af8e929
[  928.277310][T24157] RDX: 00002000000001c0 RSI: 0000000040045010 RDI: 0000000000000003
[  928.277323][T24157] RBP: 00007ff72bdb6090 R08: 0000000000000000 R09: 0000000000000000
[  928.277336][T24157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  928.277356][T24157] R13: 0000000000000000 R14: 00007ff72b1b5fa0 R15: 00007ffd352c14e8
[  928.277393][T24157]  </TASK>
[  928.581863][    C0] vkms_vblank_simulate: vblank timer overrun
[  928.797017][T24164] CUSE: info not properly terminated
[  929.805105][T24185] CUSE: zero length info key specified
[  930.058514][T24190] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  930.076819][T24189] CUSE: info not properly terminated
[  930.095891][T24190] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  930.928034][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  930.955852][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  930.978205][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  930.996778][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  931.013558][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  931.028804][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  931.046668][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  931.062186][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  931.090368][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  931.111686][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  931.131928][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  931.148787][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  931.164266][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  931.204354][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  931.229904][ T5933] hid-generic 009C:0008:0009.000E: unknown main item tag 0x0
[  931.259138][ T5933] hid-generic 009C:0008:0009.000E: hidraw0: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[  931.649252][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  931.655790][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  932.415378][ T5845] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  932.425287][ T5845] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  932.443109][ T5845] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  932.456867][ T5845] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  932.480123][ T5845] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  932.522981][   T51] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  932.530581][   T51] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  932.543282][   T51] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  932.556020][   T51] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  932.564971][   T51] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  932.654631][T24289] random: crng reseeded on system resumption
[  932.703858][T24295] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  933.127832][T24315] Invalid logical block size (553648128)
[  933.143064][ T3549] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  933.176163][T24313] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  933.487525][ T3549] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  933.546611][T24354] random: crng reseeded on system resumption
[  933.763731][ T3549] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  933.779320][T24366] input: syz1 as /devices/virtual/input/input189
[  933.811816][T24366] Invalid logical block size (2147483647)
[  934.042789][ T3549] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  934.135548][T24253] chnl_net:caif_netlink_parms(): no params data found
[  934.514758][T24253] bridge0: port 1(bridge_slave_0) entered blocking state
[  934.524289][T24253] bridge0: port 1(bridge_slave_0) entered disabled state
[  934.532060][T24253] bridge_slave_0: entered allmulticast mode
[  934.540073][T24253] bridge_slave_0: entered promiscuous mode
[  934.587235][T24253] bridge0: port 2(bridge_slave_1) entered blocking state
[  934.595022][T24253] bridge0: port 2(bridge_slave_1) entered disabled state
[  934.603444][T24253] bridge_slave_1: entered allmulticast mode
[  934.610414][   T51] Bluetooth: hci3: command tx timeout
[  934.614336][T24253] bridge_slave_1: entered promiscuous mode
[  934.803922][ T3549] bridge_slave_1: left allmulticast mode
[  934.810914][ T3549] bridge_slave_1: left promiscuous mode
[  934.816854][ T3549] bridge0: port 2(bridge_slave_1) entered disabled state
[  934.910595][ T3549] bridge_slave_0: left allmulticast mode
[  934.916314][ T3549] bridge_slave_0: left promiscuous mode
[  934.918572][T24562] random: crng reseeded on system resumption
[  934.923913][ T3549] bridge0: port 1(bridge_slave_0) entered disabled state
[  936.679128][   T51] Bluetooth: hci3: command tx timeout
[  936.868346][T24624] Invalid logical block size (201326592)
[  936.913140][T24626] CUSE: info not properly terminated
[  936.970485][ T3549] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  937.050972][ T3549] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  937.173662][ T3549] bond0 (unregistering): Released all slaves
[  937.274924][T24253] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  937.313924][T24253] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  937.945722][T24253] team0: Port device team_slave_0 added
[  937.964806][T24253] team0: Port device team_slave_1 added
[  938.235317][T24253] batman_adv: batadv0: Adding interface: batadv_slave_0
[  938.250638][T24253] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  938.283755][T24253] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  938.298355][T24253] batman_adv: batadv0: Adding interface: batadv_slave_1
[  938.306249][T24658] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  938.313034][T24658] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  938.321321][T24253] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  938.347501][T24253] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  938.560673][T24253] hsr_slave_0: entered promiscuous mode
[  938.567270][T24253] hsr_slave_1: entered promiscuous mode
[  938.574513][T24253] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  938.582182][T24253] Cannot create hsr debugfs directory
[  939.224158][T24253] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  939.283587][T24253] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  939.332712][T24253] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  939.374987][T24253] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  939.593532][T24253] 8021q: adding VLAN 0 to HW filter on device bond0
[  939.618917][T24253] 8021q: adding VLAN 0 to HW filter on device team0
[  939.646374][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  939.653651][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  939.663902][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  939.671126][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  940.003266][T24253] 8021q: adding VLAN 0 to HW filter on device batadv0
[  940.414803][T24253] veth0_vlan: entered promiscuous mode
[  940.433132][T24253] veth1_vlan: entered promiscuous mode
[  940.489565][T24253] veth0_macvtap: entered promiscuous mode
[  940.504754][T24253] veth1_macvtap: entered promiscuous mode
[  940.536703][T24253] batman_adv: batadv0: Interface activated: batadv_slave_0
[  940.561053][T24253] batman_adv: batadv0: Interface activated: batadv_slave_1
[  940.582610][T24253] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  940.591768][T24253] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  940.604291][T24253] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  940.614621][T24253] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  993.083330][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  993.089833][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[ 1054.524291][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.534467][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[ 1087.799158][   T31] INFO: task kworker/u8:10:3549 blocked for more than 143 seconds.
[ 1087.807154][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1087.822512][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1087.831500][   T31] task:kworker/u8:10   state:D stack:20856 pid:3549  tgid:3549  ppid:2      task_flags:0x4208060 flags:0x00004000
[ 1087.844666][   T31] Workqueue: netns cleanup_net
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1087.849537][   T31] Call Trace:
[ 1087.853657][   T31]  <TASK>
[ 1087.856651][   T31]  __schedule+0x16f5/0x4d00
[ 1087.866371][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1087.874719][   T31]  ? schedule+0x165/0x360
[ 1087.879371][   T31]  ? __pfx___schedule+0x10/0x10
[ 1087.884300][   T31]  ? schedule+0x91/0x360
[ 1087.888614][   T31]  schedule+0x165/0x360
[ 1087.893008][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1087.928781][   T31]  __mutex_lock+0x724/0xe80
[ 1087.933489][   T31]  ? kobject_put+0x43f/0x480
[ 1087.938152][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1087.965909][   T31]  ? rfkill_unregister+0xc8/0x220
[ 1087.975677][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1087.984921][   T31]  ? __pfx_device_del+0x10/0x10
[ 1087.992647][   T31]  rfkill_unregister+0xc8/0x220
[ 1087.997582][   T31]  wiphy_unregister+0x238/0xae0
[ 1088.002956][   T31]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[ 1088.009086][   T31]  ? __pfx_wiphy_unregister+0x10/0x10
[ 1088.014506][   T31]  ? kasan_quarantine_put+0xdd/0x220
[ 1088.019994][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1088.025256][   T31]  ? kfree+0x18e/0x440
[ 1088.029568][   T31]  ieee80211_unregister_hw+0x1e2/0x2c0
[ 1088.035090][   T31]  mac80211_hwsim_del_radio+0x275/0x460
[ 1088.040780][   T31]  ? __pfx_mac80211_hwsim_del_radio+0x10/0x10
[ 1088.046897][   T31]  hwsim_exit_net+0x584/0x640
[ 1088.051718][   T31]  ? __pfx_hwsim_exit_net+0x10/0x10
[ 1088.056975][   T31]  ? __ip_vs_dev_cleanup_batch+0x238/0x260
[ 1088.062881][   T31]  ops_undo_list+0x49a/0x990
[ 1088.067528][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[ 1088.072790][   T31]  cleanup_net+0x4c5/0x800
[ 1088.077245][   T31]  ? __pfx_cleanup_net+0x10/0x10
[ 1088.082313][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1088.087590][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1088.093443][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1088.099305][   T31]  process_scheduled_works+0xae1/0x17b0
[ 1088.104908][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1088.111039][   T31]  worker_thread+0x8a0/0xda0
[ 1088.115671][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1088.122222][   T31]  ? __kthread_parkme+0x7b/0x200
[ 1088.127220][   T31]  kthread+0x70e/0x8a0
[ 1088.131529][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 1088.136776][   T31]  ? __pfx_kthread+0x10/0x10
[ 1088.141481][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1088.146733][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1088.152076][   T31]  ? __pfx_kthread+0x10/0x10
[ 1088.156733][   T31]  ret_from_fork+0x3f9/0x770
[ 1088.161449][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1088.166621][   T31]  ? __switch_to_asm+0x39/0x70
[ 1088.171573][   T31]  ? __switch_to_asm+0x33/0x70
[ 1088.176398][   T31]  ? __pfx_kthread+0x10/0x10
[ 1088.181137][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1088.185969][   T31]  </TASK>
[ 1088.189177][   T31] INFO: task kworker/0:5:5933 blocked for more than 143 seconds.
[ 1088.196963][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1088.204750][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1088.216819][   T31] task:kworker/0:5     state:D stack:24296 pid:5933  tgid:5933  ppid:2      task_flags:0x4208060 flags:0x00004000
[ 1088.230200][   T31] Workqueue: events rfkill_global_led_trigger_worker
[ 1088.236954][   T31] Call Trace:
[ 1088.240463][   T31]  <TASK>
[ 1088.243466][   T31]  __schedule+0x16f5/0x4d00
[ 1088.248065][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1088.253842][   T31]  ? schedule+0x165/0x360
[ 1088.258231][   T31]  ? __pfx___schedule+0x10/0x10
[ 1088.263284][   T31]  ? schedule+0x91/0x360
[ 1088.267594][   T31]  schedule+0x165/0x360
[ 1088.273018][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1088.278572][   T31]  __mutex_lock+0x724/0xe80
[ 1088.283397][   T31]  ? look_up_lock_class+0x74/0x170
[ 1088.288930][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1088.293708][   T31]  ? rfkill_global_led_trigger_worker+0x27/0xd0
[ 1088.300138][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1088.305240][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1088.311092][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1088.316936][   T31]  rfkill_global_led_trigger_worker+0x27/0xd0
[ 1088.323243][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[ 1088.329078][   T31]  process_scheduled_works+0xae1/0x17b0
[ 1088.334676][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1088.340851][   T31]  worker_thread+0x8a0/0xda0
[ 1088.345556][   T31]  kthread+0x70e/0x8a0
[ 1088.349768][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 1088.354951][   T31]  ? __pfx_kthread+0x10/0x10
[ 1088.359952][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1088.365238][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1088.370542][   T31]  ? __pfx_kthread+0x10/0x10
[ 1088.375184][   T31]  ret_from_fork+0x3f9/0x770
[ 1088.379968][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1088.385135][   T31]  ? __switch_to_asm+0x39/0x70
[ 1088.390024][   T31]  ? __switch_to_asm+0x33/0x70
[ 1088.394863][   T31]  ? __pfx_kthread+0x10/0x10
[ 1088.399619][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1088.404503][   T31]  </TASK>
[ 1088.407625][   T31] INFO: task syz-executor:24253 blocked for more than 143 seconds.
[ 1088.420581][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1088.428295][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1088.437066][   T31] task:syz-executor    state:D stack:21336 pid:24253 tgid:24253 ppid:1      task_flags:0x400140 flags:0x00004004
[ 1088.449118][   T31] Call Trace:
[ 1088.452477][   T31]  <TASK>
[ 1088.455445][   T31]  __schedule+0x16f5/0x4d00
[ 1088.460164][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1088.465152][   T31]  ? schedule+0x165/0x360
[ 1088.469862][   T31]  ? __pfx___schedule+0x10/0x10
[ 1088.474780][   T31]  ? schedule+0x91/0x360
[ 1088.479594][   T31]  schedule+0x165/0x360
[ 1088.483810][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1088.489682][   T31]  __mutex_lock+0x724/0xe80
[ 1088.494237][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1088.499056][   T31]  ? rfkill_fop_open+0x12d/0x820
[ 1088.504035][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1088.509153][   T31]  ? __raw_spin_lock_init+0x45/0x100
[ 1088.514508][   T31]  ? __init_waitqueue_head+0xa9/0x150
[ 1088.519983][   T31]  rfkill_fop_open+0x12d/0x820
[ 1088.524787][   T31]  ? __pfx_rfkill_fop_open+0x10/0x10
[ 1088.530211][   T31]  misc_open+0x2bc/0x330
[ 1088.534506][   T31]  chrdev_open+0x4cc/0x5e0
[ 1088.539024][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1088.544008][   T31]  ? __pfx_chrdev_open+0x10/0x10
[ 1088.549051][   T31]  do_dentry_open+0xdf3/0x1970
[ 1088.553895][   T31]  vfs_open+0x3b/0x340
[ 1088.557982][   T31]  ? path_openat+0x2ecd/0x3830
[ 1088.562919][   T31]  path_openat+0x2ee5/0x3830
[ 1088.567568][   T31]  ? arch_stack_walk+0xfc/0x150
[ 1088.572610][   T31]  ? do_syscall_64+0xfa/0x3b0
[ 1088.577346][   T31]  ? __pfx_path_openat+0x10/0x10
[ 1088.582660][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1088.588854][   T31]  do_filp_open+0x1fa/0x410
[ 1088.593376][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1088.598263][   T31]  ? __pfx_do_filp_open+0x10/0x10
[ 1088.603399][   T31]  ? _raw_spin_unlock+0x28/0x50
[ 1088.608324][   T31]  ? alloc_fd+0x64c/0x6c0
[ 1088.612860][   T31]  do_sys_openat2+0x121/0x1c0
[ 1088.617617][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1088.622906][   T31]  ? fput_close_sync+0x119/0x200
[ 1088.627884][   T31]  ? __pfx_fput_close_sync+0x10/0x10
[ 1088.633357][   T31]  __x64_sys_openat+0x138/0x170
[ 1088.638373][   T31]  do_syscall_64+0xfa/0x3b0
[ 1088.642963][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1088.649116][   T31]  ? asm_sysvec_call_function_single+0x1a/0x20
[ 1088.655283][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1088.660060][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1088.666010][   T31] RIP: 0033:0x7efdb958d290
[ 1088.670520][   T31] RSP: 002b:00007ffcc69e26e0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[ 1088.679316][   T31] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007efdb958d290
[ 1088.687422][   T31] RDX: 0000000000000002 RSI: 00007efdb96115b1 RDI: 00000000ffffff9c
[ 1088.695894][   T31] RBP: 00007efdb96115b1 R08: 0000000000000000 R09: 0000000000000000
[ 1088.703947][   T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000008
[ 1088.712028][   T31] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[ 1088.720072][   T31]  </TASK>
[ 1088.723163][   T31] INFO: task syz.0.12601:24625 blocked for more than 144 seconds.
[ 1088.731107][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1088.738864][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1088.747566][   T31] task:syz.0.12601     state:D stack:26952 pid:24625 tgid:24625 ppid:4668   task_flags:0x400040 flags:0x00004004
[ 1088.760020][   T31] Call Trace:
[ 1088.763349][   T31]  <TASK>
[ 1088.766308][   T31]  __schedule+0x16f5/0x4d00
[ 1088.771522][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1088.776433][   T31]  ? schedule+0x165/0x360
[ 1088.780937][   T31]  ? __pfx___schedule+0x10/0x10
[ 1088.785851][   T31]  ? schedule+0x91/0x360
[ 1088.790237][   T31]  schedule+0x165/0x360
[ 1088.794437][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1088.800022][   T31]  __mutex_lock+0x724/0xe80
[ 1088.804570][   T31]  ? kobject_put+0x43f/0x480
[ 1088.810614][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1088.815363][   T31]  ? rfkill_unregister+0xc8/0x220
[ 1088.820526][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1088.825609][   T31]  ? __pfx_device_del+0x10/0x10
[ 1088.830604][   T31]  rfkill_unregister+0xc8/0x220
[ 1088.835495][   T31]  nfc_unregister_device+0x96/0x2a0
[ 1088.840810][   T31]  ? __pfx_virtual_ncidev_close+0x10/0x10
[ 1088.846593][   T31]  virtual_ncidev_close+0x56/0x90
[ 1088.851825][   T31]  __fput+0x44c/0xa70
[ 1088.855858][   T31]  task_work_run+0x1d1/0x260
[ 1088.860564][   T31]  ? __pfx_task_work_run+0x10/0x10
[ 1088.865746][   T31]  ? exit_to_user_mode_loop+0x40/0x110
[ 1088.871280][   T31]  exit_to_user_mode_loop+0xec/0x110
[ 1088.876681][   T31]  do_syscall_64+0x2bd/0x3b0
[ 1088.881396][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1088.887498][   T31]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1088.893830][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1088.898568][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1088.904575][   T31] RIP: 0033:0x7ff72af8e929
[ 1088.909341][   T31] RSP: 002b:00007ffd352c1648 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1088.917808][   T31] RAX: 0000000000000000 RBX: 00007ff72b1b7ba0 RCX: 00007ff72af8e929
[ 1088.926064][   T31] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 1088.936031][   T31] RBP: 00007ff72b1b7ba0 R08: 0000000000000198 R09: 00000017352c193f
[ 1088.944478][   T31] R10: 00000000003ffc44 R11: 0000000000000246 R12: 00000000000e4eb7
[ 1088.952605][   T31] R13: 00007ffd352c1740 R14: ffffffffffffffff R15: 00007ffd352c1760
[ 1088.960711][   T31]  </TASK>
[ 1088.963790][   T31] INFO: task syz.3.12605:24658 blocked for more than 144 seconds.
[ 1088.972490][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1088.980830][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1088.989598][   T31] task:syz.3.12605     state:D stack:27816 pid:24658 tgid:24647 ppid:5038   task_flags:0x400040 flags:0x00004006
[ 1089.001727][   T31] Call Trace:
[ 1089.005025][   T31]  <TASK>
[ 1089.007974][   T31]  __schedule+0x16f5/0x4d00
[ 1089.012662][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1089.017567][   T31]  ? schedule+0x165/0x360
[ 1089.022284][   T31]  ? __pfx___schedule+0x10/0x10
[ 1089.027202][   T31]  ? schedule+0x91/0x360
[ 1089.031621][   T31]  schedule+0x165/0x360
[ 1089.035843][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1089.041443][   T31]  __mutex_lock+0x724/0xe80
[ 1089.046011][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1089.050988][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1089.055724][   T31]  ? nfc_rfkill_set_block+0x50/0x2e0
[ 1089.061119][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1089.066322][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1089.071730][   T31]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1089.077672][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1089.084823][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[ 1089.090700][   T31]  nfc_rfkill_set_block+0x50/0x2e0
[ 1089.095885][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[ 1089.101711][   T31]  rfkill_set_block+0x1cf/0x440
[ 1089.106746][   T31]  rfkill_fop_write+0x44b/0x570
[ 1089.111795][   T31]  ? common_file_perm+0x199/0x200
[ 1089.116952][   T31]  ? __pfx_rfkill_fop_write+0x10/0x10
[ 1089.122501][   T31]  ? security_kernfs_init_security+0x250/0x290
[ 1089.129070][   T31]  ? rw_verify_area+0x258/0x650
[ 1089.133980][   T31]  ? __pfx_rfkill_fop_write+0x10/0x10
[ 1089.139491][   T31]  vfs_write+0x27b/0xa90
[ 1089.143796][   T31]  ? __pfx_vfs_write+0x10/0x10
[ 1089.148730][   T31]  ? __fget_files+0x2a/0x420
[ 1089.153383][   T31]  ? __fget_files+0x2a/0x420
[ 1089.158032][   T31]  ? __fget_files+0x3a0/0x420
[ 1089.163011][   T31]  ? __fget_files+0x2a/0x420
[ 1089.167684][   T31]  ksys_write+0x145/0x250
[ 1089.172150][   T31]  ? __pfx_ksys_write+0x10/0x10
[ 1089.177075][   T31]  ? rcu_is_watching+0x15/0xb0
[ 1089.181984][   T31]  ? do_syscall_64+0xbe/0x3b0
[ 1089.186724][   T31]  do_syscall_64+0xfa/0x3b0
[ 1089.191458][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1089.197614][   T31]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1089.204067][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1089.208850][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1089.214774][   T31] RIP: 0033:0x7f811b78e929
[ 1089.219308][   T31] RSP: 002b:00007f811c5fb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1089.227847][   T31] RAX: ffffffffffffffda RBX: 00007f811b9b5fa0 RCX: 00007f811b78e929
[ 1089.235921][   T31] RDX: 0000000000000008 RSI: 0000200000000080 RDI: 0000000000000005
[ 1089.244176][   T31] RBP: 00007f811b810b39 R08: 0000000000000000 R09: 0000000000000000
[ 1089.252259][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1089.260361][   T31] R13: 0000000000000000 R14: 00007f811b9b5fa0 R15: 00007ffd5bfe2f88
[ 1089.268383][   T31]  </TASK>
[ 1089.271508][   T31] INFO: task syz.5.12612:24804 blocked for more than 144 seconds.
[ 1089.279434][   T31]       Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0
[ 1089.287093][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1089.295879][   T31] task:syz.5.12612     state:D stack:26728 pid:24804 tgid:24803 ppid:18138  task_flags:0x400140 flags:0x00004004
[ 1089.307946][   T31] Call Trace:
[ 1089.311349][   T31]  <TASK>
[ 1089.314364][   T31]  __schedule+0x16f5/0x4d00
[ 1089.319046][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1089.324034][   T31]  ? schedule+0x165/0x360
[ 1089.328413][   T31]  ? __pfx___schedule+0x10/0x10
[ 1089.333384][   T31]  ? schedule+0x91/0x360
[ 1089.337671][   T31]  schedule+0x165/0x360
[ 1089.341981][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1089.347515][   T31]  __mutex_lock+0x724/0xe80
[ 1089.352414][   T31]  ? __mutex_lock+0x51b/0xe80
[ 1089.357148][   T31]  ? rfkill_register+0x37/0x8e0
[ 1089.362526][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1089.367621][   T31]  ? __init_waitqueue_head+0xa9/0x150
[ 1089.373207][   T31]  ? device_initialize+0x24b/0x440
[ 1089.378370][   T31]  rfkill_register+0x37/0x8e0
[ 1089.383208][   T31]  hci_register_dev+0x3f5/0x890
[ 1089.388104][   T31]  hci_uart_tty_ioctl+0x828/0xa00
[ 1089.393288][   T31]  ? __pfx_hci_uart_tty_ioctl+0x10/0x10
[ 1089.398970][   T31]  tty_ioctl+0x9c6/0xde0
[ 1089.403258][   T31]  ? __pfx_tty_ioctl+0x10/0x10
[ 1089.408062][   T31]  __se_sys_ioctl+0xfc/0x170
[ 1089.412793][   T31]  do_syscall_64+0xfa/0x3b0
[ 1089.417433][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1089.422764][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1089.429052][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1089.433772][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1089.439787][   T31] RIP: 0033:0x7fa6ff98e929
[ 1089.444242][   T31] RSP: 002b:00007fa7008d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1089.454410][   T31] RAX: ffffffffffffffda RBX: 00007fa6ffbb5fa0 RCX: 00007fa6ff98e929
[ 1089.462910][   T31] RDX: 0000000000000004 RSI: 00000000400455c8 RDI: 0000000000000004
[ 1089.471019][   T31] RBP: 00007fa6ffa10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1089.479134][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1089.487148][   T31] R13: 0000000000000000 R14: 00007fa6ffbb5fa0 R15: 00007ffefbd1f838
[ 1089.495357][   T31]  </TASK>
[ 1089.498459][   T31] 
[ 1089.498459][   T31] Showing all locks held in the system:
[ 1089.506381][   T31] 1 lock held by khungtaskd/31:
[ 1089.511380][   T31]  #0: ffffffff8e33eda0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 1089.522557][   T31] 4 locks held by kworker/u8:3/49:
[ 1089.527700][   T31]  #0: ffff8880b8739f98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 1089.537768][   T31]  #1: ffff8880b8723f08 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x39a/0x6d0
[ 1089.549337][   T31]  #2: ffff8880b8725958 (&base->lock){-.-.}-{2:2}, at: __mod_timer+0x1ae/0xf30
[ 1089.558349][   T31]  #3: ffffffff99f41328 (&obj_hash[i].lock){-.-.}-{2:2}, at: debug_object_activate+0xbb/0x420
[ 1089.569039][   T31] 4 locks held by kworker/u8:10/3549:
[ 1089.574456][   T31]  #0: ffff88801b6fe148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1089.585506][   T31]  #1: ffffc9000c397bc0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1089.596191][   T31]  #2: ffffffff8f7159d0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x800
[ 1089.605617][   T31]  #3: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[ 1089.615840][   T31] 2 locks held by getty/5599:
[ 1089.620984][   T31]  #0: ffff8880354da0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1089.630948][   T31]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[ 1089.641223][   T31] 3 locks held by kworker/0:5/5933:
[ 1089.646472][   T31]  #0: ffff88801a880d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1089.657556][   T31]  #1: ffffc9000460fbc0 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1089.671189][   T31]  #2: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_global_led_trigger_worker+0x27/0xd0
[ 1089.682892][   T31] 2 locks held by syz-executor/24253:
[ 1089.688295][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1089.696890][   T31]  #1: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_fop_open+0x12d/0x820
[ 1089.707052][   T31] 2 locks held by syz.0.12601/24625:
[ 1089.712442][   T31]  #0: ffff888032079100 (&dev->mutex){....}-{4:4}, at: nfc_unregister_device+0x63/0x2a0
[ 1089.722683][   T31]  #1: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xc8/0x220
[ 1089.733289][   T31] 2 locks held by syz.3.12605/24658:
[ 1089.738725][   T31]  #0: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_fop_write+0x191/0x570
[ 1089.748966][   T31]  #1: ffff888032079100 (&dev->mutex){....}-{4:4}, at: nfc_rfkill_set_block+0x50/0x2e0
[ 1089.758808][   T31] 2 locks held by syz.5.12612/24804:
[ 1089.764141][   T31]  #0: ffff88805be040a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1089.773983][   T31]  #1: ffffffff8f9fd5a8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x37/0x8e0
[ 1089.784045][   T31] 1 lock held by syz-executor/25040:
[ 1089.789678][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1089.798240][   T31] 1 lock held by syz-executor/25041:
[ 1089.807393][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1089.816272][   T31] 1 lock held by syz-executor/25085:
[ 1089.821766][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1089.830363][   T31] 1 lock held by syz-executor/25162:
[ 1089.835670][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1089.844240][   T31] 1 lock held by syz-executor/25173:
[ 1089.849654][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1089.858212][   T31] 1 lock held by syz-executor/25174:
[ 1089.863699][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1089.872238][   T31] 1 lock held by syz-executor/25176:
[ 1089.877529][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1089.886125][   T31] 1 lock held by syz-executor/25186:
[ 1089.891511][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1089.900373][   T31] 1 lock held by syz-executor/25197:
[ 1089.905692][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1089.914282][   T31] 1 lock held by syz-executor/25198:
[ 1089.919661][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1089.928192][   T31] 1 lock held by syz-executor/25200:
[ 1089.933640][   T31]  #0: ffffffff8ebd4788 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[ 1089.942330][   T31] 1 lock held by dhcpcd/25201:
[ 1089.947135][   T31]  #0: ffff8880637f2c08 (&sb->s_type->i_mutex_key#11){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[ 1089.957421][   T31] 1 lock held by dhcpcd/25202:
[ 1089.962340][   T31]  #0: ffff8880635a1a08 (&sb->s_type->i_mutex_key#11){+.+.}-{4:4}, at: sock_close+0x9b/0x240
[ 1089.972744][   T31] 1 lock held by dhcpcd/25203:
[ 1089.977564][   T31]  #0: ffff888097a9e258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcd0
[ 1089.987406][   T31] 
[ 1089.989815][   T31] =============================================
[ 1089.989815][   T31] 
[ 1089.998321][   T31] NMI backtrace for cpu 0
[ 1089.998339][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[ 1089.998364][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1089.998378][   T31] Call Trace:
[ 1089.998387][   T31]  <TASK>
[ 1089.998397][   T31]  dump_stack_lvl+0x189/0x250
[ 1089.998425][   T31]  ? __wake_up_klogd+0xd9/0x110
[ 1089.998457][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1089.998481][   T31]  ? __pfx__printk+0x10/0x10
[ 1089.998501][   T31]  ? vprintk+0x12/0x20
[ 1089.998533][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[ 1089.998565][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1089.998590][   T31]  ? _printk+0xcf/0x120
[ 1089.998618][   T31]  ? __pfx__printk+0x10/0x10
[ 1089.998646][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1089.998680][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 1089.998711][   T31]  watchdog+0xfee/0x1030
[ 1089.998734][   T31]  ? watchdog+0x1de/0x1030
[ 1089.998761][   T31]  kthread+0x70e/0x8a0
[ 1089.998792][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1089.998810][   T31]  ? __pfx_kthread+0x10/0x10
[ 1089.998839][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1089.998869][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1089.998899][   T31]  ? __pfx_kthread+0x10/0x10
[ 1089.998929][   T31]  ret_from_fork+0x3f9/0x770
[ 1089.998954][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1089.998983][   T31]  ? __switch_to_asm+0x39/0x70
[ 1089.999008][   T31]  ? __switch_to_asm+0x33/0x70
[ 1089.999033][   T31]  ? __pfx_kthread+0x10/0x10
[ 1089.999063][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1089.999114][   T31]  </TASK>
[ 1090.155078][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1090.161552][   T31] Sending NMI from CPU 0 to CPUs 1:
[ 1090.166846][    C1] NMI backtrace for cpu 1
[ 1090.166863][    C1] CPU: 1 UID: 0 PID: 49 Comm: kworker/u8:3 Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[ 1090.166883][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1090.166895][    C1] Workqueue: bat_events batadv_nc_worker
[ 1090.166926][    C1] RIP: 0010:do_raw_spin_lock+0x51/0x290
[ 1090.166954][    C1] Code: 48 89 44 24 60 49 bf 00 00 00 00 00 fc ff df 48 c7 44 24 20 b3 8a b5 41 48 c7 44 24 28 5e 6f b9 8d 48 c7 44 24 30 d0 15 9f 81 <48> 8d 4c 24 20 48 c1 e9 03 48 b8 f1 f1 f1 f1 04 f3 f3 f3 48 89 4c
[ 1090.166969][    C1] RSP: 0018:ffffc90000b978c0 EFLAGS: 00000286
[ 1090.166984][    C1] RAX: ebcbf01dccefe700 RBX: ffff8880334d8c40 RCX: ebcbf01dccefe700
[ 1090.166998][    C1] RDX: 0000000000000000 RSI: ffffffff8dc3b091 RDI: ffff8880334d8c40
[ 1090.167011][    C1] RBP: ffffc90000b97978 R08: 0000000000000000 R09: ffffffff8b3b57d7
[ 1090.167023][    C1] R10: dffffc0000000000 R11: fffffbfff1f8465f R12: ffff888027072188
[ 1090.167036][    C1] R13: dffffc0000000000 R14: ffff88805a969f80 R15: dffffc0000000000
[ 1090.167050][    C1] FS:  0000000000000000(0000) GS:ffff888125b1c000(0000) knlGS:0000000000000000
[ 1090.167064][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1090.167085][    C1] CR2: 0000564de4939168 CR3: 000000000e138000 CR4: 00000000003526f0
[ 1090.167106][    C1] DR0: 0000000000000007 DR1: 000000000000000b DR2: 0000000000000002
[ 1090.167117][    C1] DR3: 0000000000000009 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 1090.167129][    C1] Call Trace:
[ 1090.167136][    C1]  <TASK>
[ 1090.167143][    C1]  ? batadv_nc_purge_paths+0xe7/0x3b0
[ 1090.167172][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1090.167199][    C1]  ? batadv_nc_purge_paths+0xe7/0x3b0
[ 1090.167224][    C1]  ? __pfx_batadv_nc_to_purge_nc_path_decoding+0x10/0x10
[ 1090.167254][    C1]  batadv_nc_purge_paths+0xe7/0x3b0
[ 1090.167298][    C1]  batadv_nc_worker+0x369/0x610
[ 1090.167323][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[ 1090.167345][    C1]  process_scheduled_works+0xae1/0x17b0
[ 1090.167378][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1090.167405][    C1]  worker_thread+0x8a0/0xda0
[ 1090.167437][    C1]  kthread+0x70e/0x8a0
[ 1090.167461][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 1090.167480][    C1]  ? __pfx_kthread+0x10/0x10
[ 1090.167502][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1090.167527][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1090.167551][    C1]  ? __pfx_kthread+0x10/0x10
[ 1090.167574][    C1]  ret_from_fork+0x3f9/0x770
[ 1090.167593][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[ 1090.167612][    C1]  ? __switch_to_asm+0x39/0x70
[ 1090.167634][    C1]  ? __switch_to_asm+0x33/0x70
[ 1090.167655][    C1]  ? __pfx_kthread+0x10/0x10
[ 1090.167677][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1090.167707][    C1]  </TASK>
[ 1090.432603][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1090.443498][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1090.450392][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc2-syzkaller-00158-g5c8013ae2e86 #0 PREEMPT(full) 
[ 1090.462231][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1090.472325][   T31] Call Trace:
[ 1090.475715][   T31]  <TASK>
[ 1090.478666][   T31]  dump_stack_lvl+0x99/0x250
[ 1090.483308][   T31]  ? __asan_memcpy+0x40/0x70
[ 1090.487924][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1090.493140][   T31]  ? __pfx__printk+0x10/0x10
[ 1090.497753][   T31]  panic+0x2db/0x790
[ 1090.501667][   T31]  ? __pfx_panic+0x10/0x10
[ 1090.506106][   T31]  ? nmi_backtrace_stall_check+0x433/0x440
[ 1090.511933][   T31]  ? preempt_schedule_thunk+0x16/0x30
[ 1090.517352][   T31]  ? nmi_trigger_cpumask_backtrace+0x2b6/0x300
[ 1090.523536][   T31]  watchdog+0x102d/0x1030
[ 1090.527880][   T31]  ? watchdog+0x1de/0x1030
[ 1090.532319][   T31]  kthread+0x70e/0x8a0
[ 1090.536408][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1090.541131][   T31]  ? __pfx_kthread+0x10/0x10
[ 1090.545747][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1090.550992][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1090.556209][   T31]  ? __pfx_kthread+0x10/0x10
[ 1090.560823][   T31]  ret_from_fork+0x3f9/0x770
[ 1090.565442][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1090.570571][   T31]  ? __switch_to_asm+0x39/0x70
[ 1090.575374][   T31]  ? __switch_to_asm+0x33/0x70
[ 1090.580155][   T31]  ? __pfx_kthread+0x10/0x10
[ 1090.584766][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1090.589565][   T31]  </TASK>
[ 1090.592746][   T31] Kernel Offset: disabled
[ 1090.597083][   T31] Rebooting in 86400 seconds..