last executing test programs:

13.788130976s ago: executing program 3 (id=1716):
r0 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000f40)={'batadv0\x00', <r2=>0x0})
sendmsg$auto_BATADV_CMD_SET_MESH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010028bd7000fbdbdf250f00000008000300", @ANYRES32=r2, @ANYBLOB="05002f0006"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x140080e4)

13.408928461s ago: executing program 3 (id=1720):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x0, 0x0)
r1 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0)
close_range$auto(r0, r0, 0x2)
landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x0)
landlock_restrict_self$auto(r0, 0x1)
rmdir$auto(&(0x7f0000000300)='./cgroup\x00')
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x11, 0xa, 0x300)
sendmmsg$auto(0x4, 0x0, 0x400, 0x7)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x141241, 0x0)
r2 = socket(0xa, 0x5, 0x84)
bpf$auto(0xfffffffd, &(0x7f0000000000)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x1d30, 0x6, 0xffffffffffffffff, @relative_id=0x2, 0x47}, 0xa3)
sendto$auto(r2, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)

4.265554179s ago: executing program 3 (id=1776):
socket(0x2, 0x801, 0x106)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2b, 0x5, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
futex_wake$auto(0x0, 0x5, 0x4, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3)
r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6)
fstatfs$auto(0x3, 0x0)
ioctl$auto_IOCTL_VMCI_DATAGRAM_SEND(r1, 0x7ab, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/dev\x00', 0x100, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000001080)=""/4092, 0xffc)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000680)='/dev/v4l-subdev5\x00', 0x20281, 0x0)
ioctl$auto(r3, 0xc008561b, r0)
unshare$auto(0x40000080)

3.802613934s ago: executing program 2 (id=1779):
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
madvise$auto(0x0, 0xffffffffffff0006, 0x55)
open(&(0x7f0000000140)='./file0\x00', 0x240882, 0x108)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setsockopt$auto(0x3, 0x6, 0x9, 0x0, 0xfb3)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose11/tx_queue_len\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
r4 = openat$auto_trace_options_fops_trace(0xffffffffffffff9c, 0x0, 0x5, 0x0)
write$auto(r4, 0x0, 0x6)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x8000, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0xd, 0xb979, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0)
pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9)
sendmsg$auto(r2, 0x0, 0x5)
select$auto(0x9, &(0x7f00000000c0)={[0xeeca, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb})

3.47403991s ago: executing program 1 (id=1780):
r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x18, r0, 0x1, 0x70bd25, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}]}, 0x18}, 0x1, 0x0, 0x100000000000000, 0x200400f0}, 0x800)

3.427707299s ago: executing program 3 (id=1781):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_BLKTRACESTART2(r1, 0x1274, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0xfff)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
read$auto(r2, 0x0, 0xfdef)

3.242518562s ago: executing program 1 (id=1782):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82902, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYRES8=r0], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x4) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty42\x00', 0x2200, 0x0) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x7fff)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000180)=""/68, 0x44) (async)
syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r2)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r2, 0x0, 0x20000000) (async)
socketpair$auto(0xfffffffd, 0xfffffffe, 0x1, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r3, 0xc0603d06, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x4ed1e02e, 0x62, 0x80000001, 0x5, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0) (async)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) (async)
ioctl$auto(r2, 0x57, r1) (async)
getgid()
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async)
r4 = getpid()
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0) (async)
process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0xffc}, 0x1, &(0x7f00000000c0)={&(0x7f0000000080), 0x100000000}, 0x6, 0x0) (async)
close_range$auto(0x2, 0xa, 0x0) (async)
socket(0x80000000000000a, 0x2, 0x0)
socket(0xa, 0x801, 0x84) (async)
setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x7fff)
fsopen$auto(0x0, 0x1)
getpid()

3.049858209s ago: executing program 0 (id=1783):
utime$auto(0x0, 0xfffffffffffffffc)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sigaltstack$auto(&(0x7f0000000040)={0x0, 0x1, 0x10401}, 0x0)
r0 = getpid()
r1 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000001440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)={0x2c, r1, 0x6c5679fc7dece1a9, 0x70bd27, 0x25dfdbff, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x7}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x10001}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000014}, 0x400c810)
r2 = gettid()
rt_tgsigqueueinfo$auto(r0, r2, 0x21, 0x0)
r3 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16=r5, @ANYRES16=r0], 0x18}}, 0x4044820)
ioctl$auto_LOOP_CTL_REMOVE(r3, 0x4c81, 0xffffffffffffffff)
close_range$auto(r4, r3, 0x400)
setfsgid$auto(0x0)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
write$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f00000000c0)="52376a4a2a7dffb38b6b89901c8c8c68ebc4d274cf86964085ec4f016b15bbc09291703000b26fe4859e456d8d6ea5", 0x2f)
r6 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socket(0x2, 0x0, 0x4c)
openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/oom_score_adj\x00', 0x181301, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r8 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r8)
r9 = openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim0/psample/enable\x00', 0x2, 0x0)
write$auto_nsim_psample_enable_fops_psample(r9, &(0x7f0000000140)="79470beff4db8b84ebb6f4a672dc88074e4f6b21f2905d4c37a72c9e9fe72bdea2270000000048086f6297094cd52106d70fde29a15897ac6ee36da4fdf770065ccaa722511de53a258a2ae06dbcdf65460908f700287b7baf1020635df3bc771be943", 0x63)
ioctl$auto_KVM_CREATE_VM(r7, 0xc048aeca, 0x0)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/ksm_merging_pages\x00', 0x181100, 0x0)

2.702167259s ago: executing program 2 (id=1784):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x11, 0xa, 0x300)
sendmmsg$auto(0x4, 0x0, 0x400, 0x7)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x141241, 0x0)
r0 = socket(0xa, 0x5, 0x84)
bpf$auto(0xfffffffd, &(0x7f0000000000)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x1d30, 0x6, 0xffffffffffffffff, @relative_id=0x2, 0x47}, 0xa3)
sendto$auto(r0, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80000080fe00"}, 0x1c)

2.489317609s ago: executing program 3 (id=1785):
r0 = socket(0x2, 0x1, 0x84)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
io_uring_setup$auto(0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
write$auto(r0, &(0x7f00000001c0)='nl80211\x00', 0x1fff8)
shutdown$auto(0x200000003, 0x2)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
io_uring_register$auto(0x2, 0x9, 0x0, 0x0)
r1 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xfffffffffffeffff, 0x15)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000140), r4)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000062c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'bond_slave_0\x00'})
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r4, &(0x7f00000000c0)={0xfffffffffffffffd, 0x0, &(0x7f0000006340)={&(0x7f0000000100)={0x20, r5, 0x38f, 0x70bd29, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4044040}, 0x4000)
close_range$auto(r1, 0x8, 0x0)
brk$auto(0xffffffffffffff66)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0xda)

2.399773608s ago: executing program 0 (id=1786):
mmap$auto(0x0, 0x20007, 0x3, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8842, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/handlers\x00', 0xc00, 0x0)
pread64$auto(r2, 0x0, 0x8100000041, 0x413e)
read$auto(r1, 0x0, 0x20)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x3}, 0x3)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/security/tomoyo/query\x00', 0xc0201, 0x0)

1.958928571s ago: executing program 1 (id=1787):
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r0 = socket(0x5, 0x3, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
r1 = timerfd_create$auto_CLOCK_BOOTTIME(0x7, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0030e5", @ANYRES16=r3, @ANYBLOB="01002dbd7000f9dbdf25010000000500070058000000080009009c781e0106000200010000000800"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
r4 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000480), r1)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/udp_port\x00', 0x202, 0x0)
sendfile$auto(r5, r5, 0x0, 0x7fffe000)
sendmsg$auto_KSMBD_EVENT_STARTING_UP(r2, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x14, r4, 0x2, 0x70bd29, 0x25dfdbfd, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x8005)
sendmsg$auto_KSMBD_EVENT_RPC_RESPONSE(r0, &(0x7f0000000600)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000400)={0x14, r4, 0x100, 0x70bd29, 0x25dfdbfb, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x81}, 0x90)
sysinfo$auto(0x0)
r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0x1]}, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/lru_gen_full\x00', 0x400000, 0x0)
write$auto(r6, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
msgctl$auto(0x8e, 0xa, &(0x7f0000000340)={{0x4, 0xee00, <r8=>0x0, 0x5, 0x4, 0x8001}, &(0x7f00000002c0)=0x9, &(0x7f0000000300)=0x2, 0x6, 0x9, 0x4, 0x2, 0x0, 0x7f0, 0x0, 0x4, @inferred=0xffffffffffffffff, @raw=0x2})
fsconfig$auto(r7, 0x7, &(0x7f0000000240)='\x00', &(0x7f0000000280)="088c4b0c3d4901887cc7fce5371115bb22e4fcb5d0d353e05ed3ad31ca9b6c580584cd7cd6d694daea6b470c235263ba", r8)
write$auto(r7, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
write$auto(r7, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
pidfd_send_signal$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, 0x0, &(0x7f0000000440)={@_si_pad}, 0x0)
openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x12a382, 0x0)

1.934734457s ago: executing program 0 (id=1788):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0)
preadv$auto(0x3, &(0x7f0000000040)={0x0, 0x5}, 0x3, 0xf8, 0x3ff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x8, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80000008000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
poll$auto(&(0x7f0000000180)={<r2=>r1, 0xfff7, 0x9816}, 0x7f, 0x9)
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4)
lstat$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0)
ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x0)
ioctl$auto_VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto(0x3, 0xae41, r4)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x73)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x200000)

1.734258482s ago: executing program 0 (id=1789):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, <r1=>0xee00, 0x9, 0x5, 0x8, 0x5}, &(0x7f00000001c0)=0x6, 0x0, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf})
ioctl$auto_KVM_HAS_DEVICE_ATTR(r0, 0x4018aee3, &(0x7f00000002c0)={0x8, r1, 0x1, 0x33})
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000001200)='/dev/nbd0\x00', 0x2003, 0x0)
ioctl$auto_BLKREPORTZONE(r2, 0xc0101282, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x40}, 0x8)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0)
ioctl$auto(r3, 0x540a, 0x0)
close_range$auto(0x2, 0x8, 0x0)
msgrcv$auto(0x9, 0x0, 0xfffffffffffffffd, 0x6, 0x80008)
mmap$auto(0x0, 0x888, 0xdf, 0x1010, 0xffffffffffffffff, 0x8000)
semctl$auto(0x7, 0x2, 0x13, 0x5)
r4 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/snd/pcmC0D0p\x00', 0x40, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE_OLD(r4, 0xc1004110, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
madvise$auto(0x2, 0x2, 0x8000010)
r5 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB='\f\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010029bd7000fbdbdf25030000000400080004000280"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x800)
r7 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r7, 0x0, 0xb4d3)
write$auto(0xffffffffffffffff, 0x0, 0x0)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, 0x0, 0x24000044)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)

1.505573877s ago: executing program 2 (id=1790):
mmap$auto(0x0, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x181000, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(r0, &(0x7f0000000040)="91de100115e2ce609f9e070538bccfbb655f0c052769f78a5d04623c99f956df672a6c26c3821ea97f013de0051fbb48495472296f3d22547ce589219cf15a6afc3eca4bba645bb9d051a7a7d81cc11b1366fc2ca5761c4e99f5bc679b7efa4793533f2061b7f68274a71632e0156ee7e9e47938f1660c41408a428d4e82dd838fc45f2e53b56097f12affeff2c291a003e85900c93c6d21bff29183b48e0a198a999e3d2440f92db7e5fd551cc297b3024634181fb4df422298226a552ed1e1edb7400e1d89910958f5dad4c9070354cc17011529741d0b33ea26db040b8887dff99970cb0a4452e220d0b0aeb5a0d1fe49d09d43fcd11294d9d425", 0xfc)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)

1.223543135s ago: executing program 2 (id=1791):
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0xffffffffffffffff, 0x1, 0x7, 0x0, 0xe388)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
socket(0x10, 0x2, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1000000)

786.703128ms ago: executing program 2 (id=1792):
mmap$auto(0x3, 0x3, 0xdf, 0x9b76, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
setresuid$auto(0x0, 0x0, 0xffffffffffffffff)
r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0)
ioctl$auto_PROCMAP_QUERY(r0, 0xc0686611, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r1)
r3 = getpgid$auto(0x0)
sendmsg$auto_TASKSTATS_CMD_GET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010a2bbd7000fbdbdf250100000008000200327db678fa7dc126b33bcace664c53269ee047fa2dd874dbdc6909c40afa8a16baf618ede2b8637910ac53e09069e629e1344a464832c1c5e83058e821e9e68416cada869299fe27881b02aaa97043547100e4a4490d5a8a111641b5438ceff0ba15af57557ea776b31cf17277a50166f0397508a4df0ad677a1069556c067", @ANYRES32=r3, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x2400c8c1}, 0x20008010)
mmap$auto(0x0, 0x400008, 0x7, 0x9b72, 0xffffffffffffffff, 0xfffffffffffffff8)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x5014c0, 0x0)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x801, 0x100)
socket(0x11, 0x3, 0x2)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
getsockopt$auto(0x6, 0x107, 0x11, 0x0, 0x0)
mmap$auto(0x4, 0x2020009, 0x8, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_GET(r4, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="00022cbd7000fcdbdf2504000000080007004b2000000400060008000800070000000400020014000300fdffffffffffffff0700000000000009040002000c0005000800000000000000"], 0x50}, 0x1, 0x0, 0x0, 0x40}, 0x890)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
write$auto(0xffffffffffffffff, 0x0, 0x3)

749.888635ms ago: executing program 0 (id=1793):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0)
r0 = gettid()
r1 = pidfd_open$auto(r0, 0x0)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages$auto(r2, 0x1002, 0x0, 0x0, 0x0, 0x2)
sendmmsg$auto(r1, &(0x7f0000000780)={{&(0x7f0000000200)="ffe521dd3a7726340f398d8d166b0ba8c4b4ce1d830b6b140d145cfe9efca8b793ede10eee828307315c19b8df8d2a756f34518166a5f32768dbc7c6c4ca03d50640308237bc4ba7b5ec83879ce7458a5ae8a7239a9c954a29ecd66aac2e55", 0x83fd, &(0x7f0000000480)={&(0x7f0000000380)="ac1ff4f941e82782b3dce285c8b9e79c20877eafddba4295249d1691420fda1ebf524908bf934c9161b7c4c43221317ac74e2a0372df89b9ca4e45ddac3e90e6df5ab20827a24a132f25de8acf3b91b83057944544f3b99059978672c7f47eac8c6c79ccef3a74eef674b2d8ba26d266685fb3c7e22928e3ea2519aac7395fef637c56ae6b5f558d1981edd6792230aad5280c29b7db2b38d3ef39047d3ec2d598ea23d71d4b9696afd64dcfbe308bd6c806c9b7cf642f0677da575f68606926d98dbf093714176d8acf6165d3b32bbd60dc3e0157682d3707392d9ca9", 0x101}, 0x23f, &(0x7f0000000700)="0859a30d947243e516b7f2981a23fe937d948dc7b967efb91ef613bcccbc8dee616cf0db34652804fa79c20cb708f74d7db6a4235bbf49debc6102e6939255b0471b263f872a73ddf30d090bfc92", 0x0, 0x6}, 0xf}, 0x5, 0x4)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
write$auto_cachefiles_daemon_fops_internal(r3, 0x0, 0x0)
fallocate$auto(r3, 0x0, 0x7, 0x4cbd5d)
syz_clone3(&(0x7f0000000300)={0x100, &(0x7f0000000000), &(0x7f0000000040), &(0x7f00000000c0), {0x1d}, &(0x7f0000000280)=""/28, 0x1c, &(0x7f0000000140)=""/142, &(0x7f00000002c0)=[r0, 0x0, 0x0, r2], 0x4, {r3}}, 0x58)
r4 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000100), 0x490400, 0x0)
write$auto(r4, &(0x7f00000007c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x00\x00\x00\x00\x00\x00\x00\x00\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92\x90|l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf5Pl\x04U\xc194\xdf\xe1+\xe7 \x9f\x00O@\xed', 0x1098c7)

661.644451ms ago: executing program 1 (id=1794):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_BLKTRACESTART2(r1, 0x1274, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0xfff)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
read$auto(r2, 0x0, 0xfdef)

308.406792ms ago: executing program 2 (id=1795):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(r0, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
syslog$auto(0x3, 0x0, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mmap$auto(0x80, 0x20009, 0x4000000000dc, 0xeb1, r1, 0x8000)
socket(0x10, 0x5, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_hsr(&(0x7f00000000c0), r3)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r2, 0x0, 0x40090)
ppoll$auto(0x0, 0x200, 0x0, 0x0, 0x8)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008)
r4 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r4, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf5\x00\x00\x00', 0x100000002, 0x100000001)

217.595639ms ago: executing program 1 (id=1796):
r0 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000f40)={'batadv0\x00', <r2=>0x0})
sendmsg$auto_BATADV_CMD_SET_MESH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010028bd7000fbdbdf250f60000008000300", @ANYRES32=r2, @ANYBLOB="05002f0006"], 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x140080e4)

195.870503ms ago: executing program 3 (id=1797):
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x248c1}, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = io_uring_setup$auto(0x5, 0x0)
mknod$auto(&(0x7f0000000580)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1<w\xd3:\x835\xac\r\x06\xc9\xc1HG\x1c\xd4J\x8aZ%+\xe6/~\xd6\xe1[+Z\xb1\x8d\xc5\x9b\xcfhb\'\x80\xeb7%>\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_', 0x1081, 0x9)
acct$auto(&(0x7f0000000480)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x0f\x18\xc5\x82-s\x83\xe6\xaeR\x81\r_\x0e\x19\x12\x85\bvf(e\xday)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbHL9aD\xb4\x80\xed\xba>\"\xb6\x7f\xa3f\x1d\a\xa1\x87\x84uA\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e')
r1 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x880c2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0xfffffffffffffffd, 0x2020007, 0x10000000000000, 0xeb1, 0xfffffffffffffffa, 0x40000008000)
capget$auto(0x0, 0xfffffffffffffffe)
r2 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x3b72, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000002d80), 0x40000, 0x0)
ioctl$auto_LOOP_CTL_ADD(r0, 0x4c80, 0x0)
socket(0x5, 0x801, 0x87)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/cx2341x/parameters/debug\x00', 0x181842, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, r1, 0x0)
socket(0x15, 0x5, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_VERSION_SET(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002abd7000fcdbdf25040000000c000180080001000100009e00dc4f7de612f4a9472bbecd28f61c8480fa83a989a1116c20de59dde504108f1dab25dc7570b758d93d6b76a48213b164d02f2f8975ee81cd95de3ea0808caa8feb9eb1159f9d8a4b2170bbb5ec618b3d9575d06cf9eb6f239ea8622977ece37b71d5796a9e2a02747e38d58e2fdb49b57d5f22f8acf386e29f54d505e7f70bb95b6ab324aac2a9810505bb880f9f6ec65ee79804e4bf73ecedb9b8468b62dfc1e223c5a3651567e33e47bc20cdd018256829423155"], 0x20}, 0x1, 0x0, 0x0, 0x4000000}, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x10000000001013, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000e40)="51426572911c17e9dd66bf94ea32689283bb895dbc0a97721ed6e250c974356905898b7d48acecddf227cf6dd4ba18c1aa3928071c6585025ceab0e2f34f37ddec138ea587fc4def825608b0ab2a6ecac42062bd3c58ba606307b7471b20a40ffa168b91dde4727571c4ec94bfbde1df90ccb265ffda374c98ffb1ee22069af38a3f200532dbbe5e98f4455170e9a137517b9b7b8840359940ab00f37125c2bec0ac36606b6c69edb35967d723fb81a15faea2bd280d6d8b46981581ad1ef5b7bb4dc09f6a5d53aaff1877b77c4e425761dc09d34498c1fce72c0ba1041a99b8748a37597b9567cda1de2cbf6962798e5ee11bf7cb2c70a9502f33c43b8e5dc54de743a2e24cb94c22d669b434888a7ce4cb16cd77b324258e07af32adc0cb38f8c622085783f6804edc3913fb9e98c55713fa0bf8101ad0f6f43407ce4be0001d1bb201bec283ade79ab23484c1076e703864629ac9a6031533dc956f705f89f0e0ef7d3109e46859d1f2ad1b8cb3cfcedf868a3be101e8b9acd75e39e6a27a541aa9fe86ad3119b7049c3fad2a901222eb948cabb4b5c3e5ba6ffc02a15bf7d550b00ab0f3dd3002924f7bd0701269ae293c4cb231b9127d1f6b38dd6fbb3429905384eed7eed9330a9c5e732bdd510169d9ca3e420ea2102be3770a0ab598c037b8f01e8910cf8b0942aafb156ac90724cf552df19cb1b3118a773ff3cfbaf9c5b068dade5cd7778f1ea98700629b62534735fef3071c30afa6ea3af7e651ec140936c07d9e90f1c9faef3e05376b1e121af6a6691616c10e19fd4f16b1858b44d99e597908cda0e8fa8c21d8b700987d7723a4b5a4ff3c371f2d1cb9fb2f054abc58727239ba67a173f1431083fedc7c4304488c13c75e4995a58ac9de085377356ddc5338aeb44e7f3d06f82a5e0c846159c881a0395a3dbf32a9f2530a520721431a752b13b01a89bdf2b38387b72e8a533936623ec396f6ef94ddfcca047bf20a6fe450a03dedb36a57355e2519ff579b5c63095f48407ece8a7c6c4f5b2582616f0a6bba059810c0a28355fb08dceec9e290026452c3135f8ad93f9617f22e590122d43f6fdc1ea0f9ec12c551b5127108443bb081f7a89660034ea4f3c4305108428cc91918dbb28c2a117f09609e40903b13055e923e4cc18aa50f4ad82b1d403cc6c11ac3bf63415560417d7d488df01b69c925ca3fce60ca7ac767fd11df61caf62f3ab67dad043faf1cc334903e0f419c2e97553ecaad5814bf097192e76e9a16bc5c9be932718aba32cd7dbcc6bc634a463c6f709cc81963b39442e710c14c7e107b0aeb7b6a0e3f3757860d10dd741863277c43ce4dcec49f4558959b08f59182baf4f250aa045fee383ceaec280817bf222dfbeeca8c1ec8473176326c1ffd49ea072b5f3c73f36865b6052a1595c1bb76cfe37fe48d48fbcb408381ddeff9c318a2e6bbff6c18ef16531fec3c47874a5391238c0d6b0e033db3fce94127cc9c98a4211e5d873f7b4810846d96be2d6cac532fce0ddee737e4d1ddb65b8b2449984a897e4090449ed4fb4006fb9d133e51396d4664a3f0c395c5b24781f8389979ccb565c6461b66db7134d15cff5ae8f935a5bcb23caace2edd2b37a726575e3cb0528de05edd9f03e30feb617767b6a557280a0a288b52af44a1607b6063867e5c9d8d56c44968fd509b5983fa06e6b1eefb2f8cee0c1cb49b8b569cf13b77adbc22ce972cd718167ac571ee41a446d13931f849d5636c729996b36ec84171fde260a4e01e9770cf687591a79833ae6473c51e12c0faab96ef093e6178d485526dbf775c94324c76bd4af2652e9036b1cc0d3df05c9232ee6eef7c4f46a6cf8ad160ad087aba6928bf156bf3ade1d135a965c4a2b283485737da67fe99227f2fbfb3baa74d75fe29122adfd82fcb9325b7ea826a52559654e76d494a374d9535facfcd4ab248e388c516bb8a0dc151b1557e418fd7c625c67ab1c50d6f05b97ba15c55631aeea44b21131aa93ead176f7bfd1418856e28782f004f272738827a64bb695f6b6a08cff8d1917be52a8851bd2bfd57d08bb0660e2ffc23792a419c2e9b006e3b0ad05044d99b97391fd2cceb86cf00"/1514, 0x90)
r5 = openat$auto_evm_key_ops_evm_secfs(0xffffffffffffff9c, &(0x7f00000000c0), 0x40802, 0x0)
write$auto(r5, 0x0, 0x881)
socket(0x1, 0x1, 0x0)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)

112.751792ms ago: executing program 0 (id=1798):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x29d3e6c4)
mmap$auto(0x0, 0x400008, 0xdf, 0x16, 0x2, 0x8000)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
pivot_root$auto(0x0, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/net/afs/addr_prefs\x00', 0x441, 0x0)
write$auto_evm_key_ops_evm_secfs(r1, &(0x7f00000004c0)="c94bf8e883eb4981d52b5b96f484e590a5c9ef0767c6011642dbafad41698ad91e00b1c22a1a65c986264ece2b9e7e5df98f206909bee79c3715095ae3913c7387c52bda5a26573739138b3db2f74aa7b3e8f77fde0ac3e68dbf1a8e82a79603e0844ed4cf46f7bdccf0b10f903ee3b88b446784cb3f1d4b1eec87e9f0f850878e2c4b3b6a35bcb2513c55e2c68b97d2d804c9c17fb37c7047a3c743feb8bdaeaeb8b63c52ec35085a079fed5f3ab5e86616873d3246c3de7677f38f597dc2917aeab5eb0418398654b6676d371cd69efec80b396a026e69f3a3", 0xda)
write$auto(r2, &(0x7f0000000300)='/ ys -ernel/tracing/set_event_notrace_p}d\xde\xc7\xbd8\xbe\xd7\xdeN\x86\xcf\x1d\rD!U\xb4\xe4+\v\xc3\x06$\xe1\x0eA\xf3ua\x8fT\xd9J\xfd\x02\x00\x00\x00\x00\x00\x00\x00\xbf\x9f\xb0e\xfex,c-\xdf\a\x9e\x9bX\x13n\xdf\xc8\x94%\x7fp\xe0\xa0x\x1f\x17\xea\xc3\xbf\xb2(}\x7f\xd3\xf6\xc5\x9bj\xcf~\x7f)\xd2\x7f\tN\xa9m\xe8\xdc\xb1\xe3\xf3L\xad\xdd%(0c\x9d\x13\xc7\x0elZ\x87K\x14_\xbau\x88\x9f\xe2\x04\x16\xec\xfa\xad\xe0\x87G[N\xf1\xb5\xc0\xab\x00\x00\x00\x00\x00\x00\x00\x04+\xc1\xd3m\xb8\xe5\a\x92\xc2\xd4\xcc\x91\x90\x05$G\x9a\x9b\xe1I\xa9/(\xd3\xa1\\8\x1afmY\xd6m\x931\xe6\xbd\xfb\xd6\x91\xbb\xef\xa1\x03\xd8j\x06ngka\xd1\xf1\xfd\xaeX)w\x1e4\x91\xc9\xce4\x97\x00', 0x3)
open(0x0, 0x7ffd, 0x12)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x7f, 0x82020009, 0x3, 0xeb1, 0xffffffffffffffff, 0xfff)
fsconfig$auto_SHMEM_HUGE_NEVER(0xffffffffffffffff, 0x4, &(0x7f00000002c0)='/proc/keys\x00', &(0x7f0000000400)="a62a7a8c9fe62b1ff524cc613239f7442b6b705ca4fb2c054bd0eaebe33e068a23549afd55c7efca7af9c31003d08beddac03ac41de254ce4110ee091b8bd37dd56ef7e05c6576edccd3de5624ae70a177b5bf15b3999e50ffca30be7ceace987f93c0d713e13c9fb8b8c0d16eca6040c3649fee7b245797a88f4d031e009b1f94b8d43ccb62431300a3f46ee6c4a8e3c8ab146ed1c77ef7cb", 0x0)
connect$auto(0x3, 0x0, 0x10)
unshare$auto(0x40000080)
r3 = socket(0x2, 0x2, 0x1)
getsockopt$auto(r3, 0xc3, 0x4, &(0x7f0000000040)='/dev/cec27\x00', 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
r4 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x20000, 0x0)
ioctl$auto_USB_RAW_IOCTL_INIT(r4, 0x41015500, &(0x7f0000000140)={"a7a018b09bb196a05739a38a73473b93f5452886bc599ef976c54a71a5ce72a9af15390e93a8760df83859e16320e8d0b1161f13d12afae66b1d900a49586aa98d3504ca431aabab1964249251e57fa70517cc19b0e3974dc2a89e90c932b8859c767780d65e849700", "e600d778e82f8b8db7e27a036e39a8ac08de7e036d650e2184857e6b64f6a2c7fb08c6f5ce3828fb4e9498c076bef49c99c9cd91332e12b53664dc20fa879020fbd184c0d300c13be6047a70685ce029fb2385ae6e132c1c6adbcfbd873a3b925d397a08e8733e19ef5ec4f40b0b473c72efd18b8a9e9f3d12c5e44468922beb", 0x3})
ioctl$auto_USB_RAW_IOCTL_RUN(r4, 0x5501, 0x0)
r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/keys\x00', 0x8af00, 0x0)
mmap$auto(0x0, 0x20009, 0x2000000000000a4a, 0xeb0, 0x401, 0x40)
r6 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r6, 0x10f, 0x81, 0x0, 0x14)
pread64$auto(r5, 0x0, 0x8100000041, 0x413e)

0s ago: executing program 1 (id=1799):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cuse\x00', 0x41000, 0x0)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
poll$auto(&(0x7f0000000180)={<r3=>r2, 0xfff7, 0x9816}, 0x7f, 0x9)
ioctl$auto_VHOST_SET_OWNER(r3, 0xaf01, 0x0)
ioctl$auto(r3, 0x4008af24, r2)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0)
mmap$auto(0x80, 0x20009, 0x4000000000dc, 0xeb1, r1, 0x8000)
socket(0x25, 0x5, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto_XFS_IOC_FSBULKSTAT(r1, 0xc0205865, &(0x7f00000002c0)={0x0, 0x105, 0x0, &(0x7f0000000280)=0x2})
r5 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r5, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00 \x00\x00\x00', 0x100000002, 0x100000001)

kernel console output (not intermixed with test programs):

 do_syscall_64+0xcd/0x490
[  244.716614][ T8566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.716628][ T8566] RIP: 0033:0x7fd757b8e9a9
[  244.716640][ T8566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.716653][ T8566] RSP: 002b:00007fd7589f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  244.716667][ T8566] RAX: ffffffffffffffda RBX: 00007fd757db5fa0 RCX: 00007fd757b8e9a9
[  244.716676][ T8566] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400
[  244.716684][ T8566] RBP: 00007fd757c10d69 R08: 0000000000000000 R09: 0000000000000000
[  244.716692][ T8566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  244.716700][ T8566] R13: 0000000000000000 R14: 00007fd757db5fa0 R15: 00007ffcb8616198
[  244.716718][ T8566]  </TASK>
[  245.074892][ T8573] zram: Added device: zram1
[  245.630289][ T8562] zswap: compressor  not available
[  245.766670][ T8562] Process accounting paused
[  248.995133][ T8646] netlink: 5108 bytes leftover after parsing attributes in process `syz.2.613'.
[  249.183463][ T8648] random: crng reseeded on system resumption
[  249.235090][ T8650] netlink: 342 bytes leftover after parsing attributes in process `syz.2.615'.
[  249.289935][ T8650] netlink: 342 bytes leftover after parsing attributes in process `syz.2.615'.
[  249.347902][ T8653] netlink: 218 bytes leftover after parsing attributes in process `syz.2.615'.
[  249.657548][ T8659] netlink: 6516 bytes leftover after parsing attributes in process `syz.2.617'.
[  250.893708][ T8675] rnbd_client L213: map_device: Parameters missing
[  250.968002][ T8678] usbip-vudc usbip-vudc.0: gadget not bound
[  251.025662][ T8678] netlink: 24 bytes leftover after parsing attributes in process `syz.0.623'.
[  251.181588][ T8683] FAULT_INJECTION: forcing a failure.
[  251.181588][ T8683] name failslab, interval 1, probability 0, space 0, times 0
[  251.362643][ T8683] CPU: 0 UID: 0 PID: 8683 Comm: syz.3.624 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  251.362666][ T8683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  251.362676][ T8683] Call Trace:
[  251.362680][ T8683]  <TASK>
[  251.362688][ T8683]  dump_stack_lvl+0x16c/0x1f0
[  251.362708][ T8683]  should_fail_ex+0x512/0x640
[  251.362723][ T8683]  ? fs_reclaim_acquire+0xae/0x150
[  251.362744][ T8683]  should_failslab+0xc2/0x120
[  251.362760][ T8683]  __kmalloc_cache_noprof+0x6a/0x3e0
[  251.362781][ T8683]  ? tomoyo_open_control+0x415/0xa30
[  251.362800][ T8683]  tomoyo_open_control+0x415/0xa30
[  251.362819][ T8683]  do_dentry_open+0x744/0x1c10
[  251.362834][ T8683]  ? __pfx_tomoyo_open+0x10/0x10
[  251.362851][ T8683]  vfs_open+0x82/0x3f0
[  251.362870][ T8683]  path_openat+0x1de4/0x2cb0
[  251.362890][ T8683]  ? __pfx_path_openat+0x10/0x10
[  251.362904][ T8683]  ? __lock_acquire+0xb8a/0x1c90
[  251.362925][ T8683]  do_filp_open+0x20b/0x470
[  251.362939][ T8683]  ? __pfx_do_filp_open+0x10/0x10
[  251.362966][ T8683]  ? alloc_fd+0x471/0x7d0
[  251.362991][ T8683]  do_sys_openat2+0x11b/0x1d0
[  251.363008][ T8683]  ? __pfx_do_sys_openat2+0x10/0x10
[  251.363033][ T8683]  __x64_sys_openat+0x174/0x210
[  251.363051][ T8683]  ? __pfx___x64_sys_openat+0x10/0x10
[  251.363076][ T8683]  do_syscall_64+0xcd/0x490
[  251.363091][ T8683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.363106][ T8683] RIP: 0033:0x7f7275d8e9a9
[  251.363123][ T8683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  251.363137][ T8683] RSP: 002b:00007f7276b10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  251.363151][ T8683] RAX: ffffffffffffffda RBX: 00007f7275fb5fa0 RCX: 00007f7275d8e9a9
[  251.363160][ T8683] RDX: 00000000000c0201 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  251.363170][ T8683] RBP: 00007f7275e10d69 R08: 0000000000000000 R09: 0000000000000000
[  251.363179][ T8683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  251.363187][ T8683] R13: 0000000000000000 R14: 00007f7275fb5fa0 R15: 00007fff089490d8
[  251.363206][ T8683]  </TASK>
[  253.303734][ T8690] Process accounting paused
[  254.080375][ T8731] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  255.791494][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  255.797983][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  257.008148][ T8782] FAULT_INJECTION: forcing a failure.
[  257.008148][ T8782] name failslab, interval 1, probability 0, space 0, times 0
[  257.110989][ T8782] CPU: 0 UID: 0 PID: 8782 Comm: syz.3.641 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  257.111013][ T8782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  257.111022][ T8782] Call Trace:
[  257.111027][ T8782]  <TASK>
[  257.111033][ T8782]  dump_stack_lvl+0x16c/0x1f0
[  257.111053][ T8782]  should_fail_ex+0x512/0x640
[  257.111068][ T8782]  ? fs_reclaim_acquire+0xae/0x150
[  257.111089][ T8782]  should_failslab+0xc2/0x120
[  257.111106][ T8782]  __kmalloc_cache_noprof+0x6a/0x3e0
[  257.111128][ T8782]  ? tomoyo_open_control+0x415/0xa30
[  257.111147][ T8782]  tomoyo_open_control+0x415/0xa30
[  257.111166][ T8782]  do_dentry_open+0x744/0x1c10
[  257.111181][ T8782]  ? __pfx_tomoyo_open+0x10/0x10
[  257.111198][ T8782]  vfs_open+0x82/0x3f0
[  257.111217][ T8782]  path_openat+0x1de4/0x2cb0
[  257.111237][ T8782]  ? __pfx_path_openat+0x10/0x10
[  257.111251][ T8782]  ? __lock_acquire+0xb8a/0x1c90
[  257.111272][ T8782]  do_filp_open+0x20b/0x470
[  257.111286][ T8782]  ? __pfx_do_filp_open+0x10/0x10
[  257.111313][ T8782]  ? alloc_fd+0x471/0x7d0
[  257.111338][ T8782]  do_sys_openat2+0x11b/0x1d0
[  257.111355][ T8782]  ? __pfx_do_sys_openat2+0x10/0x10
[  257.111380][ T8782]  __x64_sys_openat+0x174/0x210
[  257.111397][ T8782]  ? __pfx___x64_sys_openat+0x10/0x10
[  257.111422][ T8782]  do_syscall_64+0xcd/0x490
[  257.111438][ T8782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.111452][ T8782] RIP: 0033:0x7f7275d8e9a9
[  257.111463][ T8782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  257.111476][ T8782] RSP: 002b:00007f7276b10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  257.111491][ T8782] RAX: ffffffffffffffda RBX: 00007f7275fb5fa0 RCX: 00007f7275d8e9a9
[  257.111500][ T8782] RDX: 00000000000c0201 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  257.111509][ T8782] RBP: 00007f7275e10d69 R08: 0000000000000000 R09: 0000000000000000
[  257.111518][ T8782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  257.111527][ T8782] R13: 0000000000000000 R14: 00007f7275fb5fa0 R15: 00007fff089490d8
[  257.111545][ T8782]  </TASK>
[  257.778931][ T8787] random: crng reseeded on system resumption
[  258.833309][ T8817] Process accounting resumed
[  259.036677][ T8828] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  260.765062][ T8854] netlink: 342 bytes leftover after parsing attributes in process `syz.2.654'.
[  260.809080][ T8854] netlink: 342 bytes leftover after parsing attributes in process `syz.2.654'.
[  262.163886][ T8874] netlink: 6516 bytes leftover after parsing attributes in process `syz.2.658'.
[  262.294063][ T8876] kafs: addr_prefs: Too many elements in string
[  262.379516][ T8878] bridge0: port 3(hsr0) entered blocking state
[  262.386104][ T8878] bridge0: port 3(hsr0) entered disabled state
[  262.414974][ T8878] hsr0: entered allmulticast mode
[  262.439900][ T8878] hsr_slave_0: entered allmulticast mode
[  262.481819][ T8878] hsr_slave_1: entered allmulticast mode
[  262.541762][ T8878] hsr0: entered promiscuous mode
[  262.582190][ T8878] bridge0: port 3(hsr0) entered blocking state
[  262.588547][ T8878] bridge0: port 3(hsr0) entered forwarding state
[  262.971950][ T8888] random: crng reseeded on system resumption
[  263.247674][ T8876] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  263.281824][ T8876] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  266.035141][ T8931] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  266.055480][ T8931] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  266.097522][ T8931] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  266.124222][ T8931] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  266.376688][ T8945] FAULT_INJECTION: forcing a failure.
[  266.376688][ T8945] name fail_futex, interval 1, probability 0, space 0, times 0
[  266.445937][ T8945] CPU: 0 UID: 0 PID: 8945 Comm: syz.1.674 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  266.445960][ T8945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  266.445970][ T8945] Call Trace:
[  266.445975][ T8945]  <TASK>
[  266.445982][ T8945]  dump_stack_lvl+0x16c/0x1f0
[  266.446002][ T8945]  should_fail_ex+0x512/0x640
[  266.446026][ T8945]  get_futex_key+0x1d0/0x1540
[  266.446046][ T8945]  ? __pfx_get_futex_key+0x10/0x10
[  266.446061][ T8945]  ? __pfx_move_vma+0x10/0x10
[  266.446075][ T8945]  ? mremap_userfaultfd_complete+0x106/0x170
[  266.446095][ T8945]  ? __pfx_userfaultfd_unmap_complete+0x10/0x10
[  266.446117][ T8945]  futex_wake+0xe7/0x4e0
[  266.446137][ T8945]  ? __pfx_futex_wake+0x10/0x10
[  266.446157][ T8945]  ? __do_sys_mremap+0x5d4/0x1590
[  266.446175][ T8945]  do_futex+0x1e3/0x350
[  266.446191][ T8945]  ? __pfx_do_futex+0x10/0x10
[  266.446206][ T8945]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  266.446226][ T8945]  __x64_sys_futex+0x1e0/0x4c0
[  266.446244][ T8945]  ? __pfx___x64_sys_futex+0x10/0x10
[  266.446268][ T8945]  do_syscall_64+0xcd/0x490
[  266.446283][ T8945]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.446297][ T8945] RIP: 0033:0x7f6596b8e9a9
[  266.446308][ T8945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.446322][ T8945] RSP: 002b:00007f65979690e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  266.446337][ T8945] RAX: ffffffffffffffda RBX: 00007f6596db5fa8 RCX: 00007f6596b8e9a9
[  266.446346][ T8945] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6596db5fac
[  266.446355][ T8945] RBP: 00007f6596db5fa0 R08: 00007f659796a000 R09: 0000000000000000
[  266.446363][ T8945] R10: 0000000101000000 R11: 0000000000000246 R12: 00007f6596db5fac
[  266.446371][ T8945] R13: 0000000000000000 R14: 00007ffceb7b4720 R15: 00007ffceb7b4808
[  266.446389][ T8945]  </TASK>
[  267.052084][ T8950] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26)
[  267.056451][ T8949] ima: policy update failed
[  267.134421][   T30] audit: type=1802 audit(6048393688.466:3): pid=8949 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.676" res=0 errno=0
[  267.378666][ T8962] bridge0: port 3(hsr0) entered blocking state
[  267.390687][ T8962] bridge0: port 3(hsr0) entered disabled state
[  267.402713][ T8962] hsr0: entered allmulticast mode
[  267.415362][ T8962] hsr_slave_0: entered allmulticast mode
[  267.423299][ T8962] hsr_slave_1: entered allmulticast mode
[  267.430398][ T8962] hsr0: entered promiscuous mode
[  267.435826][ T8962] bridge0: port 3(hsr0) entered blocking state
[  267.442121][ T8962] bridge0: port 3(hsr0) entered forwarding state
[  267.627287][ T8732] Bluetooth: hci1: command 0x0c1a tx timeout
[  268.108464][ T8732] Bluetooth: hci0: command 0x0c1a tx timeout
[  268.115008][ T8732] Bluetooth: hci3: command 0x0c1a tx timeout
[  268.189244][ T8971] Bluetooth: hci2: command 0x0c1a tx timeout
[  268.795477][ T8994] netlink: 5232 bytes leftover after parsing attributes in process `syz.0.685'.
[  268.913228][ T8994] Process accounting paused
[  269.661350][ T8989] Process accounting resumed
[  269.930583][ T9019] netlink: 4 bytes leftover after parsing attributes in process `syz.3.692'.
[  269.973885][ T8997] Process accounting resumed
[  270.697674][ T9038] netlink: 342 bytes leftover after parsing attributes in process `syz.1.697'.
[  270.746282][ T9038] netlink: 218 bytes leftover after parsing attributes in process `syz.1.697'.
[  270.810642][ T9041] netlink: 342 bytes leftover after parsing attributes in process `syz.0.696'.
[  270.836254][ T9040] netlink: 6516 bytes leftover after parsing attributes in process `syz.2.698'.
[  270.932007][ T9035] netlink: 342 bytes leftover after parsing attributes in process `syz.0.696'.
[  271.465146][ T9056] netlink: 130 bytes leftover after parsing attributes in process `syz.3.701'.
[  271.845711][ T9046] Process accounting resumed
[  273.824837][ T9110] FAULT_INJECTION: forcing a failure.
[  273.824837][ T9110] name failslab, interval 1, probability 0, space 0, times 0
[  273.837807][ T9110] CPU: 0 UID: 0 PID: 9110 Comm: syz.0.713 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  273.837828][ T9110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  273.837838][ T9110] Call Trace:
[  273.837843][ T9110]  <TASK>
[  273.837849][ T9110]  dump_stack_lvl+0x16c/0x1f0
[  273.837869][ T9110]  should_fail_ex+0x512/0x640
[  273.837884][ T9110]  ? lock_acquire+0x179/0x350
[  273.837906][ T9110]  should_failslab+0xc2/0x120
[  273.837924][ T9110]  __kmalloc_cache_noprof+0x6a/0x3e0
[  273.837945][ T9110]  ? tipc_service_create+0xb1/0x350
[  273.837963][ T9110]  tipc_service_create+0xb1/0x350
[  273.837975][ T9110]  ? tipc_service_find+0x161/0x1c0
[  273.837990][ T9110]  tipc_nametbl_insert_publ+0xf78/0x1720
[  273.838007][ T9110]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  273.838026][ T9110]  ? net_generic+0xea/0x2a0
[  273.838043][ T9110]  tipc_nametbl_publish+0x137/0x280
[  273.838061][ T9110]  tipc_sk_publish+0x1d8/0x430
[  273.838076][ T9110]  ? __pfx_tipc_sk_publish+0x10/0x10
[  273.838093][ T9110]  ? __local_bh_enable_ip+0xa4/0x120
[  273.838111][ T9110]  tipc_sk_bind+0x16f/0x380
[  273.838127][ T9110]  tipc_bind+0x190/0x2a0
[  273.838144][ T9110]  __sys_bind+0x1a4/0x260
[  273.838164][ T9110]  ? __pfx___sys_bind+0x10/0x10
[  273.838189][ T9110]  ? xfd_validate_state+0x61/0x180
[  273.838206][ T9110]  ? __pfx_do_writev+0x10/0x10
[  273.838230][ T9110]  __x64_sys_bind+0x72/0xb0
[  273.838247][ T9110]  ? lockdep_hardirqs_on+0x7c/0x110
[  273.838260][ T9110]  do_syscall_64+0xcd/0x490
[  273.838276][ T9110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.838290][ T9110] RIP: 0033:0x7fcca238e9a9
[  273.838302][ T9110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  273.838315][ T9110] RSP: 002b:00007fcca32b8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  273.838329][ T9110] RAX: ffffffffffffffda RBX: 00007fcca25b6080 RCX: 00007fcca238e9a9
[  273.838338][ T9110] RDX: 0000000000000066 RSI: 0000200000000040 RDI: 0000000000000006
[  273.838346][ T9110] RBP: 00007fcca2410d69 R08: 0000000000000000 R09: 0000000000000000
[  273.838354][ T9110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  273.838362][ T9110] R13: 0000000000000000 R14: 00007fcca25b6080 R15: 00007fffcdc64748
[  273.838380][ T9110]  </TASK>
[  273.838387][ T9110] tipc: Service creation failed, no memory
[  275.482557][ T9143] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  276.004257][ T9132] Process accounting resumed
[  276.704959][ T9163] netlink: 338 bytes leftover after parsing attributes in process `syz.0.724'.
[  276.856771][ T9167] bridge0: port 4(gretap0) entered blocking state
[  276.877463][ T9167] bridge0: port 4(gretap0) entered disabled state
[  276.943014][ T9167] gretap0: entered allmulticast mode
[  276.987605][ T9167] gretap0: entered promiscuous mode
[  276.999056][ T9167] bridge0: port 4(gretap0) entered blocking state
[  277.005637][ T9167] bridge0: port 4(gretap0) entered forwarding state
[  277.720377][ T9180] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  277.899412][ T9186] netlink: 5240 bytes leftover after parsing attributes in process `syz.1.729'.
[  280.620967][ T9244] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  280.932539][ T9251] FAULT_INJECTION: forcing a failure.
[  280.932539][ T9251] name failslab, interval 1, probability 0, space 0, times 0
[  281.013158][ T9251] CPU: 0 UID: 0 PID: 9251 Comm: syz.3.742 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  281.013180][ T9251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  281.013189][ T9251] Call Trace:
[  281.013194][ T9251]  <TASK>
[  281.013200][ T9251]  dump_stack_lvl+0x16c/0x1f0
[  281.013220][ T9251]  should_fail_ex+0x512/0x640
[  281.013235][ T9251]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  281.013253][ T9251]  should_failslab+0xc2/0x120
[  281.013268][ T9251]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  281.013283][ T9251]  ? __alloc_skb+0x2b2/0x380
[  281.013300][ T9251]  __alloc_skb+0x2b2/0x380
[  281.013313][ T9251]  ? __pfx___alloc_skb+0x10/0x10
[  281.013326][ T9251]  ? __alloc_frozen_pages_noprof+0x290/0x23f0
[  281.013343][ T9251]  ? tcp_send_mss+0x159/0x2c0
[  281.013364][ T9251]  mptcp_sendmsg_frag+0x4c9/0x2e30
[  281.013391][ T9251]  ? __pfx_mptcp_sendmsg_frag+0x10/0x10
[  281.013413][ T9251]  __subflow_push_pending+0x345/0xac0
[  281.013441][ T9251]  __mptcp_push_pending+0x2ce/0x550
[  281.013465][ T9251]  ? __pfx___mptcp_push_pending+0x10/0x10
[  281.013493][ T9251]  mptcp_sendmsg+0x17a4/0x1eb0
[  281.013516][ T9251]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  281.013529][ T9251]  ? __pfx_aa_sk_perm+0x10/0x10
[  281.013551][ T9251]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  281.013565][ T9251]  inet_sendmsg+0x11c/0x140
[  281.013586][ T9251]  sock_write_iter+0x4aa/0x5b0
[  281.013609][ T9251]  ? __pfx_sock_write_iter+0x10/0x10
[  281.013634][ T9251]  ? bpf_lsm_file_permission+0x9/0x10
[  281.013652][ T9251]  ? security_file_permission+0x71/0x210
[  281.013696][ T9251]  ? rw_verify_area+0xcf/0x680
[  281.013717][ T9251]  vfs_write+0x6c4/0x1150
[  281.013730][ T9251]  ? __pfx_sock_write_iter+0x10/0x10
[  281.013750][ T9251]  ? __pfx_vfs_write+0x10/0x10
[  281.013761][ T9251]  ? find_held_lock+0x2b/0x80
[  281.013789][ T9251]  ksys_write+0x1f8/0x250
[  281.013802][ T9251]  ? __pfx_ksys_write+0x10/0x10
[  281.013821][ T9251]  do_syscall_64+0xcd/0x490
[  281.013836][ T9251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.013851][ T9251] RIP: 0033:0x7f7275d8e9a9
[  281.013862][ T9251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.013875][ T9251] RSP: 002b:00007f7276b10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  281.013889][ T9251] RAX: ffffffffffffffda RBX: 00007f7275fb5fa0 RCX: 00007f7275d8e9a9
[  281.013899][ T9251] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003
[  281.013907][ T9251] RBP: 00007f7276b10090 R08: 0000000000000000 R09: 0000000000000000
[  281.013915][ T9251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  281.013924][ T9251] R13: 0000000000000000 R14: 00007f7275fb5fa0 R15: 00007fff089490d8
[  281.013942][ T9251]  </TASK>
[  281.837378][ T9263] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input9
[  283.284316][ T9296] syz.3.755(9296): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  283.359406][ T9279] Process accounting resumed
[  283.488420][ T9301] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  283.529005][ T9300] netlink: 28 bytes leftover after parsing attributes in process `syz.1.757'.
[  284.933812][ T9327] zswap: compressor 000 not available
[  285.196652][ T9341] netlink: 342 bytes leftover after parsing attributes in process `syz.3.765'.
[  286.175946][ T9365] size and base must be multiples of 4 kiB
[  286.267907][ T9365] CPU: 0 UID: 0 PID: 9365 Comm: syz.3.769 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  286.267930][ T9365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  286.267939][ T9365] Call Trace:
[  286.267945][ T9365]  <TASK>
[  286.267951][ T9365]  dump_stack_lvl+0x16c/0x1f0
[  286.267971][ T9365]  mtrr_add+0xdf/0x110
[  286.267990][ T9365]  mtrr_ioctl+0x7ef/0xcf0
[  286.268009][ T9365]  ? __pfx_mtrr_ioctl+0x10/0x10
[  286.268030][ T9365]  ? find_held_lock+0x2b/0x80
[  286.268050][ T9365]  ? __fget_files+0x20e/0x3c0
[  286.268071][ T9365]  ? __pfx_mtrr_ioctl+0x10/0x10
[  286.268087][ T9365]  proc_reg_unlocked_ioctl+0x229/0x320
[  286.268102][ T9365]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  286.268117][ T9365]  __x64_sys_ioctl+0x18e/0x210
[  286.268138][ T9365]  do_syscall_64+0xcd/0x490
[  286.268153][ T9365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.268167][ T9365] RIP: 0033:0x7f7275d8e9a9
[  286.268179][ T9365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  286.268192][ T9365] RSP: 002b:00007f7273bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  286.268205][ T9365] RAX: ffffffffffffffda RBX: 00007f7275fb6080 RCX: 00007f7275d8e9a9
[  286.268214][ T9365] RDX: 0000000000000009 RSI: 00000000400c4d01 RDI: 0000000000000009
[  286.268222][ T9365] RBP: 00007f7275e10d69 R08: 0000000000000000 R09: 0000000000000000
[  286.268230][ T9365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  286.268238][ T9365] R13: 0000000000000000 R14: 00007f7275fb6080 R15: 00007fff089490d8
[  286.268266][ T9365]  </TASK>
[  287.007763][ T9368] zswap: compressor 000 not available
[  288.534804][ T9401] netlink: 5244 bytes leftover after parsing attributes in process `syz.0.778'.
[  289.596372][ T9423] netlink: 330 bytes leftover after parsing attributes in process `syz.2.785'.
[  290.316539][ T9418] Process accounting resumed
[  290.405758][ T9439] netlink: 5244 bytes leftover after parsing attributes in process `syz.0.787'.
[  290.664973][ T9443] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  291.264663][ T9461] random: crng reseeded on system resumption
[  292.803876][ T9488] ima: policy update failed
[  292.819718][   T30] audit: type=1802 audit(6048393714.156:4): pid=9488 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.802" res=0 errno=0
[  293.764903][ T9505] netlink: 5248 bytes leftover after parsing attributes in process `syz.2.806'.
[  293.804201][ T9506] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10
[  294.390440][ T9507] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11
[  295.094907][ T9517] Process accounting resumed
[  295.853818][ T9545] netlink: 5248 bytes leftover after parsing attributes in process `syz.1.816'.
[  296.723099][ T9540] Process accounting resumed
[  297.990150][ T9587] netlink: 8 bytes leftover after parsing attributes in process `syz.3.825'.
[  298.256263][ T9592] netlink: 5248 bytes leftover after parsing attributes in process `syz.2.826'.
[  298.873959][ T9608] netlink: 'syz.3.830': attribute type 1 has an invalid length.
[  299.766556][ T9621] Process accounting paused
[  300.006181][ T9619] Process accounting resumed
[  300.091385][ T9626] netlink: 5248 bytes leftover after parsing attributes in process `syz.0.836'.
[  301.585456][ T9661] netlink: 5248 bytes leftover after parsing attributes in process `syz.0.847'.
[  304.019262][ T9696] zswap: compressor 000 not available
[  305.260532][ T9730] netlink: 5244 bytes leftover after parsing attributes in process `syz.0.865'.
[  306.275078][ T9760] netlink: 5244 bytes leftover after parsing attributes in process `syz.3.875'.
[  307.012091][ T9778] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  307.939635][ T9800] netlink: 972 bytes leftover after parsing attributes in process `syz.0.885'.
[  309.221546][ T9832] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input12
[  309.438470][ T9843] FAULT_INJECTION: forcing a failure.
[  309.438470][ T9843] name fail_futex, interval 1, probability 0, space 0, times 0
[  309.506921][ T9843] CPU: 0 UID: 0 PID: 9843 Comm: syz.0.892 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  309.506944][ T9843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  309.506954][ T9843] Call Trace:
[  309.506960][ T9843]  <TASK>
[  309.506975][ T9843]  dump_stack_lvl+0x16c/0x1f0
[  309.506995][ T9843]  should_fail_ex+0x512/0x640
[  309.507013][ T9843]  get_futex_key+0x1d0/0x1540
[  309.507033][ T9843]  ? __pfx_get_futex_key+0x10/0x10
[  309.507051][ T9843]  ? stack_trace_save+0x8e/0xc0
[  309.507067][ T9843]  ? __pfx_stack_trace_save+0x10/0x10
[  309.507082][ T9843]  ? stack_depot_save_flags+0x28/0xa40
[  309.507100][ T9843]  futex_wait_setup+0x84/0x510
[  309.507125][ T9843]  __futex_wait+0x194/0x2f0
[  309.507144][ T9843]  ? __pfx___futex_wait+0x10/0x10
[  309.507166][ T9843]  ? __pfx_futex_wake_mark+0x10/0x10
[  309.507192][ T9843]  ? __futex_hash.constprop.0+0x1e9/0x440
[  309.507209][ T9843]  futex_wait+0xe8/0x380
[  309.507227][ T9843]  ? __pfx_futex_wait+0x10/0x10
[  309.507249][ T9843]  ? kmem_cache_free+0x2d1/0x4d0
[  309.507262][ T9843]  ? find_held_lock+0x2b/0x80
[  309.507275][ T9843]  ? putname+0x154/0x1a0
[  309.507290][ T9843]  ? do_sys_openat2+0x1b0/0x1d0
[  309.507310][ T9843]  do_futex+0x229/0x350
[  309.507326][ T9843]  ? __pfx_do_futex+0x10/0x10
[  309.507347][ T9843]  __x64_sys_futex+0x1e0/0x4c0
[  309.507365][ T9843]  ? __x64_sys_openat+0x174/0x210
[  309.507382][ T9843]  ? __pfx___x64_sys_futex+0x10/0x10
[  309.507411][ T9843]  do_syscall_64+0xcd/0x490
[  309.507426][ T9843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.507441][ T9843] RIP: 0033:0x7fcca238e9a9
[  309.507453][ T9843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  309.507466][ T9843] RSP: 002b:00007fcca32d90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  309.507479][ T9843] RAX: ffffffffffffffda RBX: 00007fcca25b5fa8 RCX: 00007fcca238e9a9
[  309.507488][ T9843] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fcca25b5fa8
[  309.507497][ T9843] RBP: 00007fcca25b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  309.507506][ T9843] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcca25b5fac
[  309.507514][ T9843] R13: 0000000000000000 R14: 00007fffcdc64660 R15: 00007fffcdc64748
[  309.507533][ T9843]  </TASK>
[  309.814129][ T9847] FAULT_INJECTION: forcing a failure.
[  309.814129][ T9847] name fail_futex, interval 1, probability 0, space 0, times 0
[  309.827001][ T9847] CPU: 0 UID: 0 PID: 9847 Comm: syz.3.894 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  309.827023][ T9847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  309.827033][ T9847] Call Trace:
[  309.827043][ T9847]  <TASK>
[  309.827049][ T9847]  dump_stack_lvl+0x16c/0x1f0
[  309.827070][ T9847]  should_fail_ex+0x512/0x640
[  309.827088][ T9847]  get_futex_key+0x1d0/0x1540
[  309.827108][ T9847]  ? __pfx_get_futex_key+0x10/0x10
[  309.827122][ T9847]  ? __pfx_move_vma+0x10/0x10
[  309.827138][ T9847]  ? mremap_userfaultfd_complete+0x106/0x170
[  309.827158][ T9847]  ? __pfx_userfaultfd_unmap_complete+0x10/0x10
[  309.827180][ T9847]  futex_wake+0xe7/0x4e0
[  309.827199][ T9847]  ? __pfx_futex_wake+0x10/0x10
[  309.827219][ T9847]  ? __do_sys_mremap+0x5d4/0x1590
[  309.827238][ T9847]  do_futex+0x1e3/0x350
[  309.827254][ T9847]  ? __pfx_do_futex+0x10/0x10
[  309.827268][ T9847]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  309.827289][ T9847]  __x64_sys_futex+0x1e0/0x4c0
[  309.827308][ T9847]  ? __pfx___x64_sys_futex+0x10/0x10
[  309.827331][ T9847]  do_syscall_64+0xcd/0x490
[  309.827347][ T9847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.827361][ T9847] RIP: 0033:0x7f7275d8e9a9
[  309.827374][ T9847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  309.827387][ T9847] RSP: 002b:00007f7276b100e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  309.827402][ T9847] RAX: ffffffffffffffda RBX: 00007f7275fb5fa8 RCX: 00007f7275d8e9a9
[  309.827412][ T9847] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7275fb5fac
[  309.827421][ T9847] RBP: 00007f7275fb5fa0 R08: 00007f7276b11000 R09: 0000000000000000
[  309.827430][ T9847] R10: 0000000100000000 R11: 0000000000000246 R12: 00007f7275fb5fac
[  309.827438][ T9847] R13: 0000000000000000 R14: 00007fff08948ff0 R15: 00007fff089490d8
[  309.827455][ T9847]  </TASK>
[  310.283034][ T9857] FAULT_INJECTION: forcing a failure.
[  310.283034][ T9857] name fail_futex, interval 1, probability 0, space 0, times 0
[  310.308733][ T9857] CPU: 0 UID: 0 PID: 9857 Comm: syz.1.896 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  310.308756][ T9857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  310.308766][ T9857] Call Trace:
[  310.308771][ T9857]  <TASK>
[  310.308778][ T9857]  dump_stack_lvl+0x16c/0x1f0
[  310.308799][ T9857]  should_fail_ex+0x512/0x640
[  310.308817][ T9857]  get_futex_key+0x1d0/0x1540
[  310.308838][ T9857]  ? __pfx_get_futex_key+0x10/0x10
[  310.308869][ T9857]  futex_wake+0xe7/0x4e0
[  310.308891][ T9857]  ? __pfx_futex_wake+0x10/0x10
[  310.308913][ T9857]  ? errseq_sample+0x53/0x70
[  310.308928][ T9857]  ? file_init_path+0x4fe/0x760
[  310.308948][ T9857]  do_futex+0x1e3/0x350
[  310.308964][ T9857]  ? __pfx_do_futex+0x10/0x10
[  310.308980][ T9857]  ? fd_install+0x225/0x750
[  310.309004][ T9857]  __x64_sys_futex+0x1e0/0x4c0
[  310.309021][ T9857]  ? __sys_socket+0xac/0x260
[  310.309040][ T9857]  ? __pfx___x64_sys_futex+0x10/0x10
[  310.309056][ T9857]  ? xfd_validate_state+0x61/0x180
[  310.309073][ T9857]  ? __pfx_do_writev+0x10/0x10
[  310.309098][ T9857]  do_syscall_64+0xcd/0x490
[  310.309113][ T9857]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.309128][ T9857] RIP: 0033:0x7f6596b8e9a9
[  310.309140][ T9857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.309152][ T9857] RSP: 002b:00007f65979690e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  310.309166][ T9857] RAX: ffffffffffffffda RBX: 00007f6596db5fa8 RCX: 00007f6596b8e9a9
[  310.309175][ T9857] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6596db5fac
[  310.309184][ T9857] RBP: 00007f6596db5fa0 R08: 00007f659796a000 R09: 0000000000000000
[  310.309192][ T9857] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f6596db5fac
[  310.309200][ T9857] R13: 0000000000000000 R14: 00007ffceb7b4720 R15: 00007ffceb7b4808
[  310.309218][ T9857]  </TASK>
[  311.674289][ T9886] netlink: 342 bytes leftover after parsing attributes in process `syz.0.903'.
[  312.436415][ T9880] Process accounting resumed
[  313.658304][ T9904] Process accounting paused
[  314.172763][ T9945] capability: warning: `syz.1.919' uses 32-bit capabilities (legacy support in use)
[  317.236858][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  317.244278][T10006] FAULT_INJECTION: forcing a failure.
[  317.244278][T10006] name failslab, interval 1, probability 0, space 0, times 0
[  317.257831][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  317.297827][T10006] CPU: 0 UID: 0 PID: 10006 Comm: syz.1.933 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  317.297850][T10006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  317.297858][T10006] Call Trace:
[  317.297864][T10006]  <TASK>
[  317.297870][T10006]  dump_stack_lvl+0x16c/0x1f0
[  317.297890][T10006]  should_fail_ex+0x512/0x640
[  317.297904][T10006]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  317.297921][T10006]  should_failslab+0xc2/0x120
[  317.297937][T10006]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  317.297952][T10006]  ? vm_area_dup+0x27/0x8d0
[  317.297976][T10006]  vm_area_dup+0x27/0x8d0
[  317.297997][T10006]  copy_vma+0x4fa/0xaa0
[  317.298015][T10006]  ? __pfx_copy_vma+0x10/0x10
[  317.298033][T10006]  ? __mt_destroy+0xa8/0x3e0
[  317.298053][T10006]  ? do_vmi_align_munmap+0x2a1/0x7d0
[  317.298070][T10006]  copy_vma_and_data+0x1cf/0x750
[  317.298087][T10006]  ? __pfx_copy_vma_and_data+0x10/0x10
[  317.298106][T10006]  ? trace_cap_capable+0x18d/0x200
[  317.298122][T10006]  ? percpu_counter_add_batch+0xb8/0x1f0
[  317.298146][T10006]  ? __vm_enough_memory+0x184/0x3f0
[  317.298166][T10006]  move_vma+0x548/0x1740
[  317.298183][T10006]  ? __pfx_move_vma+0x10/0x10
[  317.298206][T10006]  ? mm_get_unmapped_area_vmflags+0x97/0xe0
[  317.298225][T10006]  ? cap_mmap_addr+0x4b/0x120
[  317.298241][T10006]  ? bpf_lsm_mmap_addr+0x9/0x10
[  317.298258][T10006]  ? security_mmap_addr+0x6c/0x1e0
[  317.298279][T10006]  ? __get_unmapped_area+0x267/0x440
[  317.298299][T10006]  ? vrm_set_new_addr+0x208/0x290
[  317.298314][T10006]  __do_sys_mremap+0xe07/0x1590
[  317.298330][T10006]  ? __pfx___do_sys_mremap+0x10/0x10
[  317.298347][T10006]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  317.298368][T10006]  ? __x64_sys_futex+0x1e0/0x4c0
[  317.298396][T10006]  do_syscall_64+0xcd/0x490
[  317.298412][T10006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.298426][T10006] RIP: 0033:0x7f6596b8e9a9
[  317.298438][T10006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  317.298451][T10006] RSP: 002b:00007f6597969038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  317.298465][T10006] RAX: ffffffffffffffda RBX: 00007f6596db5fa0 RCX: 00007f6596b8e9a9
[  317.298475][T10006] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000001000
[  317.298486][T10006] RBP: 00007f6596c10d69 R08: 0000200000002000 R09: 0000000000000000
[  317.298494][T10006] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000
[  317.298502][T10006] R13: 0000000000000000 R14: 00007f6596db5fa0 R15: 00007ffceb7b4808
[  317.298520][T10006]  </TASK>
[  317.842345][T10010] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT
[  319.626127][T10029] __vm_enough_memory: pid: 10029, comm: syz.1.937, bytes: 4398046511104 not enough memory for the allocation
[  325.444634][T10110] netlink: 5248 bytes leftover after parsing attributes in process `syz.1.959'.
[  326.661408][T10126] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input13
[  326.816565][T10114] Process accounting resumed
[  327.220866][T10137] FAULT_INJECTION: forcing a failure.
[  327.220866][T10137] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  327.301280][T10137] CPU: 0 UID: 0 PID: 10137 Comm: syz.1.966 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  327.301303][T10137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  327.301317][T10137] Call Trace:
[  327.301322][T10137]  <TASK>
[  327.301328][T10137]  dump_stack_lvl+0x16c/0x1f0
[  327.301347][T10137]  should_fail_ex+0x512/0x640
[  327.301365][T10137]  _copy_from_user+0x2e/0xd0
[  327.301381][T10137]  kstrtouint_from_user+0xd6/0x1d0
[  327.301400][T10137]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  327.301419][T10137]  ? __lock_acquire+0xb8a/0x1c90
[  327.301451][T10137]  proc_fail_nth_write+0x83/0x250
[  327.301471][T10137]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  327.301494][T10137]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  327.301512][T10137]  vfs_write+0x29d/0x1150
[  327.301528][T10137]  ? __pfx___mutex_lock+0x10/0x10
[  327.301542][T10137]  ? __pfx_vfs_write+0x10/0x10
[  327.301560][T10137]  ? __fget_files+0x20e/0x3c0
[  327.301587][T10137]  ksys_write+0x12a/0x250
[  327.301600][T10137]  ? __pfx_ksys_write+0x10/0x10
[  327.301618][T10137]  do_syscall_64+0xcd/0x490
[  327.301634][T10137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.301648][T10137] RIP: 0033:0x7f6596b8d45f
[  327.301660][T10137] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  327.301673][T10137] RSP: 002b:00007f6597969030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  327.301686][T10137] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f6596b8d45f
[  327.301696][T10137] RDX: 0000000000000001 RSI: 00007f6597969090 RDI: 0000000000000005
[  327.301704][T10137] RBP: 00007f6597969090 R08: 0000000000000000 R09: 00007f6597968df7
[  327.301712][T10137] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  327.301720][T10137] R13: 0000000000000000 R14: 00007f6596db5fa0 R15: 00007ffceb7b4808
[  327.301740][T10137]  </TASK>
[  327.675000][T10147] Invalid ELF header magic: != ELF
[  328.760490][T10167] FAULT_INJECTION: forcing a failure.
[  328.760490][T10167] name failslab, interval 1, probability 0, space 0, times 0
[  328.829409][T10167] CPU: 0 UID: 0 PID: 10167 Comm: syz.0.973 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  328.829433][T10167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  328.829442][T10167] Call Trace:
[  328.829448][T10167]  <TASK>
[  328.829454][T10167]  dump_stack_lvl+0x16c/0x1f0
[  328.829475][T10167]  should_fail_ex+0x512/0x640
[  328.829489][T10167]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  328.829514][T10167]  should_failslab+0xc2/0x120
[  328.829532][T10167]  __kmalloc_cache_noprof+0x6a/0x3e0
[  328.829551][T10167]  ? get_device_parent+0x274/0x4e0
[  328.829567][T10167]  ? get_device_parent+0x2b1/0x4e0
[  328.829585][T10167]  get_device_parent+0x2b1/0x4e0
[  328.829603][T10167]  device_add+0x1ad/0x1a70
[  328.829622][T10167]  ? __pfx_device_add+0x10/0x10
[  328.829638][T10167]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  328.829661][T10167]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  328.829681][T10167]  wiphy_register+0x1c9c/0x2850
[  328.829698][T10167]  ? netdev_run_todo+0x864/0x1320
[  328.829714][T10167]  ? __dev_printk+0x250/0x270
[  328.829738][T10167]  ? __pfx_wiphy_register+0x10/0x10
[  328.829769][T10167]  ieee80211_register_hw+0x24ac/0x4140
[  328.829796][T10167]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  328.829812][T10167]  ? __pfx_schedule_timeout+0x10/0x10
[  328.829836][T10167]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  328.829856][T10167]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  328.829875][T10167]  ? __hrtimer_setup+0x176/0x280
[  328.829897][T10167]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  328.829926][T10167]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  328.829947][T10167]  hwsim_new_radio_nl+0xb51/0x12c0
[  328.829964][T10167]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  328.829985][T10167]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  328.830006][T10167]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  328.830029][T10167]  genl_family_rcv_msg_doit+0x209/0x2f0
[  328.830049][T10167]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  328.830068][T10167]  ? trace_cap_capable+0x18d/0x200
[  328.830090][T10167]  ? bpf_lsm_capable+0x9/0x10
[  328.830109][T10167]  ? security_capable+0x7e/0x260
[  328.830133][T10167]  ? ns_capable+0xd7/0x110
[  328.830152][T10167]  genl_rcv_msg+0x55c/0x800
[  328.830173][T10167]  ? __pfx_genl_rcv_msg+0x10/0x10
[  328.830193][T10167]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  328.830215][T10167]  netlink_rcv_skb+0x158/0x420
[  328.830232][T10167]  ? __pfx_genl_rcv_msg+0x10/0x10
[  328.830252][T10167]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  328.830277][T10167]  ? netlink_deliver_tap+0x1ae/0xd30
[  328.830296][T10167]  genl_rcv+0x28/0x40
[  328.830311][T10167]  netlink_unicast+0x58a/0x850
[  328.830331][T10167]  ? __pfx_netlink_unicast+0x10/0x10
[  328.830360][T10167]  netlink_sendmsg+0x8d1/0xdd0
[  328.830382][T10167]  ? __pfx_netlink_sendmsg+0x10/0x10
[  328.830407][T10167]  ____sys_sendmsg+0xa95/0xc70
[  328.830431][T10167]  ? copy_msghdr_from_user+0x10a/0x160
[  328.830445][T10167]  ? __pfx_____sys_sendmsg+0x10/0x10
[  328.830467][T10167]  ? __pfx_futex_wake_mark+0x10/0x10
[  328.830491][T10167]  ___sys_sendmsg+0x134/0x1d0
[  328.830507][T10167]  ? __pfx____sys_sendmsg+0x10/0x10
[  328.830520][T10167]  ? __lock_acquire+0x622/0x1c90
[  328.830563][T10167]  __sys_sendmsg+0x16d/0x220
[  328.830579][T10167]  ? __pfx___sys_sendmsg+0x10/0x10
[  328.830593][T10167]  ? __x64_sys_futex+0x1e0/0x4c0
[  328.830621][T10167]  do_syscall_64+0xcd/0x490
[  328.830638][T10167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  328.830652][T10167] RIP: 0033:0x7fcca238e9a9
[  328.830665][T10167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  328.830678][T10167] RSP: 002b:00007fcca32d9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  328.830692][T10167] RAX: ffffffffffffffda RBX: 00007fcca25b5fa0 RCX: 00007fcca238e9a9
[  328.830701][T10167] RDX: 0000000000040000 RSI: 0000200000001240 RDI: 0000000000000006
[  328.830710][T10167] RBP: 00007fcca2410d69 R08: 0000000000000000 R09: 0000000000000000
[  328.830718][T10167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  328.830727][T10167] R13: 0000000000000000 R14: 00007fcca25b5fa0 R15: 00007fffcdc64748
[  328.830747][T10167]  </TASK>
[  329.567718][T10180] random: crng reseeded on system resumption
[  329.951506][T10179] Process accounting resumed
[  330.209363][T10200] sysfs_service_op_show: Client not running :-5:
[  330.233745][T10194] netlink: 28 bytes leftover after parsing attributes in process `syz.2.979'.
[  330.246886][T10197] nbd: socks must be embedded in a SOCK_ITEM attr
[  330.288432][T10197] block nbd0: shutting down sockets
[  330.318201][T10194] bridge0: port 2(bridge_slave_1) entered disabled state
[  330.385163][T10194] bridge_slave_1 (unregistering): left allmulticast mode
[  330.409999][T10194] bridge_slave_1 (unregistering): left promiscuous mode
[  330.431776][T10194] bridge0: port 2(bridge_slave_1) entered disabled state
[  330.801025][T10187] Process accounting paused
[  330.938951][T10213] Invalid ELF header magic: != ELF
[  331.047552][T10217] FAULT_INJECTION: forcing a failure.
[  331.047552][T10217] name failslab, interval 1, probability 0, space 0, times 0
[  331.129152][T10217] CPU: 0 UID: 0 PID: 10217 Comm: syz.0.984 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  331.129175][T10217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  331.129185][T10217] Call Trace:
[  331.129189][T10217]  <TASK>
[  331.129196][T10217]  dump_stack_lvl+0x16c/0x1f0
[  331.129225][T10217]  should_fail_ex+0x512/0x640
[  331.129241][T10217]  ? fs_reclaim_acquire+0xae/0x150
[  331.129262][T10217]  ? tomoyo_encode2+0x100/0x3e0
[  331.129275][T10217]  should_failslab+0xc2/0x120
[  331.129291][T10217]  __kmalloc_noprof+0xd2/0x510
[  331.129310][T10217]  tomoyo_encode2+0x100/0x3e0
[  331.129325][T10217]  tomoyo_encode+0x29/0x50
[  331.129337][T10217]  tomoyo_mount_acl+0x314/0x850
[  331.129357][T10217]  ? kernel_text_address+0x8d/0x100
[  331.129378][T10217]  ? __kernel_text_address+0xd/0x40
[  331.129402][T10217]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  331.129426][T10217]  ? stack_trace_save+0x8e/0xc0
[  331.129457][T10217]  ? tomoyo_domain+0xbb/0x150
[  331.129472][T10217]  ? tomoyo_profile+0x47/0x60
[  331.129489][T10217]  tomoyo_mount_permission+0x16d/0x420
[  331.129509][T10217]  ? tomoyo_mount_permission+0x14f/0x420
[  331.129529][T10217]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  331.129561][T10217]  security_sb_mount+0x9b/0x260
[  331.129580][T10217]  path_mount+0x128/0x2020
[  331.129596][T10217]  ? kmem_cache_free+0x2d1/0x4d0
[  331.129609][T10217]  ? __pfx_path_mount+0x10/0x10
[  331.129625][T10217]  ? putname+0x154/0x1a0
[  331.129643][T10217]  __x64_sys_mount+0x28d/0x310
[  331.129659][T10217]  ? __pfx___x64_sys_mount+0x10/0x10
[  331.129679][T10217]  do_syscall_64+0xcd/0x490
[  331.129694][T10217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.129708][T10217] RIP: 0033:0x7fcca238e9a9
[  331.129721][T10217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  331.129734][T10217] RSP: 002b:00007fcca32d9038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  331.129747][T10217] RAX: ffffffffffffffda RBX: 00007fcca25b5fa0 RCX: 00007fcca238e9a9
[  331.129757][T10217] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000000000000000
[  331.129765][T10217] RBP: 00007fcca2410d69 R08: 0000000000000000 R09: 0000000000000000
[  331.129773][T10217] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000
[  331.129781][T10217] R13: 0000000000000000 R14: 00007fcca25b5fa0 R15: 00007fffcdc64748
[  331.129799][T10217]  </TASK>
[  331.398433][T10219] vivid-009: =================  START STATUS  =================
[  331.406372][T10219] vivid-009: Enable Output Cropping: true
[  331.412247][T10219] vivid-009: Enable Output Composing: true
[  331.418176][T10219] vivid-009: Enable Output Scaler: true
[  331.423789][T10219] vivid-009: Tx RGB Quantization Range: Automatic
[  331.430273][T10219] vivid-009: Transmit Mode: HDMI
[  331.435205][T10219] vivid-009: Hotplug Present: 0x00000000
[  331.440897][T10219] vivid-009: RxSense Present: 0x00000000
[  331.446525][T10219] vivid-009: EDID Present: 0x00000000
[  331.452003][T10219] vivid-009: ==================  END STATUS  ==================
[  331.465936][T10219] synth uevent: /module/orangefs: unknown uevent action string
[  332.562655][T10247] zswap: compressor 000 not available
[  332.728836][T10259] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input14
[  332.936630][T10263] nbd: must specify a device to reconfigure
[  333.566240][T10276] FAULT_INJECTION: forcing a failure.
[  333.566240][T10276] name failslab, interval 1, probability 0, space 0, times 0
[  333.639218][T10276] CPU: 0 UID: 0 PID: 10276 Comm: syz.1.1000 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  333.639243][T10276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  333.639252][T10276] Call Trace:
[  333.639258][T10276]  <TASK>
[  333.639264][T10276]  dump_stack_lvl+0x16c/0x1f0
[  333.639285][T10276]  should_fail_ex+0x512/0x640
[  333.639300][T10276]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  333.639324][T10276]  should_failslab+0xc2/0x120
[  333.639340][T10276]  __kmalloc_cache_noprof+0x6a/0x3e0
[  333.639361][T10276]  ? ip_vs_est_add_kthread+0x1d5/0x850
[  333.639381][T10276]  ip_vs_est_add_kthread+0x1d5/0x850
[  333.639401][T10276]  ip_vs_start_estimator+0x250/0x430
[  333.639420][T10276]  ip_vs_control_net_init+0x158c/0x1d20
[  333.639445][T10276]  __ip_vs_init+0x217/0x520
[  333.639460][T10276]  ? __pfx___ip_vs_init+0x10/0x10
[  333.639472][T10276]  ops_init+0x1df/0x5f0
[  333.639491][T10276]  setup_net+0x1ff/0x510
[  333.639504][T10276]  ? lockdep_init_map_type+0x5c/0x280
[  333.639524][T10276]  ? __pfx_setup_net+0x10/0x10
[  333.639541][T10276]  ? debug_mutex_init+0x37/0x70
[  333.639557][T10276]  copy_net_ns+0x2a6/0x5f0
[  333.639575][T10276]  create_new_namespaces+0x3ea/0xa90
[  333.639595][T10276]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  333.639613][T10276]  ksys_unshare+0x45b/0xa40
[  333.639631][T10276]  ? __pfx_ksys_unshare+0x10/0x10
[  333.639649][T10276]  ? xfd_validate_state+0x61/0x180
[  333.639673][T10276]  __x64_sys_unshare+0x31/0x40
[  333.639690][T10276]  do_syscall_64+0xcd/0x490
[  333.639706][T10276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.639720][T10276] RIP: 0033:0x7f6596b8e9a9
[  333.639741][T10276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  333.639756][T10276] RSP: 002b:00007f6597969038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  333.639770][T10276] RAX: ffffffffffffffda RBX: 00007f6596db5fa0 RCX: 00007f6596b8e9a9
[  333.639780][T10276] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  333.639789][T10276] RBP: 00007f6596c10d69 R08: 0000000000000000 R09: 0000000000000000
[  333.639798][T10276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  333.639807][T10276] R13: 0000000000000000 R14: 00007f6596db5fa0 R15: 00007ffceb7b4808
[  333.639826][T10276]  </TASK>
[  333.903213][T10281] netlink: 5248 bytes leftover after parsing attributes in process `syz.0.1003'.
[  337.398665][T10365] FAULT_INJECTION: forcing a failure.
[  337.398665][T10365] name fail_futex, interval 1, probability 0, space 0, times 0
[  337.482854][T10365] CPU: 0 UID: 0 PID: 10365 Comm: syz.0.1028 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  337.482877][T10365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  337.482886][T10365] Call Trace:
[  337.482891][T10365]  <TASK>
[  337.482897][T10365]  dump_stack_lvl+0x16c/0x1f0
[  337.482916][T10365]  should_fail_ex+0x512/0x640
[  337.482934][T10365]  get_futex_key+0x1d0/0x1540
[  337.482953][T10365]  ? __pfx_get_futex_key+0x10/0x10
[  337.482970][T10365]  ? import_iovec+0x86/0xb0
[  337.482989][T10365]  futex_wake+0xe7/0x4e0
[  337.483010][T10365]  ? __pfx_futex_wake+0x10/0x10
[  337.483029][T10365]  ? __pfx_vfs_writev+0x10/0x10
[  337.483051][T10365]  ? do_writev+0x218/0x340
[  337.483073][T10365]  do_futex+0x1e3/0x350
[  337.483090][T10365]  ? __pfx_do_futex+0x10/0x10
[  337.483104][T10365]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  337.483124][T10365]  __x64_sys_futex+0x1e0/0x4c0
[  337.483141][T10365]  ? fput+0x70/0xf0
[  337.483156][T10365]  ? __pfx___x64_sys_futex+0x10/0x10
[  337.483172][T10365]  ? __pfx_do_writev+0x10/0x10
[  337.483196][T10365]  do_syscall_64+0xcd/0x490
[  337.483212][T10365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.483225][T10365] RIP: 0033:0x7fcca238e9a9
[  337.483237][T10365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  337.483250][T10365] RSP: 002b:00007fcca32d90e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  337.483264][T10365] RAX: ffffffffffffffda RBX: 00007fcca25b5fa8 RCX: 00007fcca238e9a9
[  337.483273][T10365] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fcca25b5fac
[  337.483281][T10365] RBP: 00007fcca25b5fa0 R08: 00007fcca32da000 R09: 0000000000000000
[  337.483299][T10365] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fcca25b5fac
[  337.483308][T10365] R13: 0000000000000000 R14: 00007fffcdc64660 R15: 00007fffcdc64748
[  337.483326][T10365]  </TASK>
[  338.080519][T10368] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1029'.
[  338.151026][T10368] netlink: 218 bytes leftover after parsing attributes in process `syz.1.1029'.
[  341.186337][T10435] misc userio: Invalid payload size
[  341.760931][T10440] FAULT_INJECTION: forcing a failure.
[  341.760931][T10440] name failslab, interval 1, probability 0, space 0, times 0
[  341.818289][T10440] CPU: 0 UID: 0 PID: 10440 Comm: syz.0.1047 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  341.818313][T10440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  341.818322][T10440] Call Trace:
[  341.818328][T10440]  <TASK>
[  341.818334][T10440]  dump_stack_lvl+0x16c/0x1f0
[  341.818353][T10440]  should_fail_ex+0x512/0x640
[  341.818369][T10440]  ? __kvmalloc_node_noprof+0x124/0x620
[  341.818394][T10440]  should_failslab+0xc2/0x120
[  341.818411][T10440]  __kvmalloc_node_noprof+0x137/0x620
[  341.818432][T10440]  ? io_uring_setup+0x377/0x2080
[  341.818456][T10440]  ? io_uring_setup+0x377/0x2080
[  341.818473][T10440]  io_uring_setup+0x377/0x2080
[  341.818495][T10440]  ? __pfx_io_uring_setup+0x10/0x10
[  341.818514][T10440]  ? do_futex+0x122/0x350
[  341.818532][T10440]  ? __pfx_do_futex+0x10/0x10
[  341.818558][T10440]  ? xfd_validate_state+0x61/0x180
[  341.818580][T10440]  __x64_sys_io_uring_setup+0xc2/0x170
[  341.818601][T10440]  do_syscall_64+0xcd/0x490
[  341.818616][T10440]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.818631][T10440] RIP: 0033:0x7fcca238e9a9
[  341.818643][T10440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.818656][T10440] RSP: 002b:00007fcca32d9038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  341.818669][T10440] RAX: ffffffffffffffda RBX: 00007fcca25b5fa0 RCX: 00007fcca238e9a9
[  341.818679][T10440] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000059
[  341.818687][T10440] RBP: 00007fcca2410d69 R08: 0000000000000000 R09: 0000000000000000
[  341.818696][T10440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  341.818704][T10440] R13: 0000000000000000 R14: 00007fcca25b5fa0 R15: 00007fffcdc64748
[  341.818722][T10440]  </TASK>
[  342.005277][    C0] vkms_vblank_simulate: vblank timer overrun
[  342.349197][T10454] program syz.2.1052 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  342.452611][T10450] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1051'.
[  343.298212][T10469] netlink: 5248 bytes leftover after parsing attributes in process `syz.3.1054'.
[  343.500445][T10475] netlink: 5248 bytes leftover after parsing attributes in process `syz.1.1056'.
[  343.710503][T10483] FAULT_INJECTION: forcing a failure.
[  343.710503][T10483] name failslab, interval 1, probability 0, space 0, times 0
[  343.769900][T10483] CPU: 0 UID: 0 PID: 10483 Comm: syz.1.1059 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  343.769927][T10483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  343.769938][T10483] Call Trace:
[  343.769943][T10483]  <TASK>
[  343.769950][T10483]  dump_stack_lvl+0x16c/0x1f0
[  343.769970][T10483]  should_fail_ex+0x512/0x640
[  343.769987][T10483]  ? fs_reclaim_acquire+0xae/0x150
[  343.770011][T10483]  should_failslab+0xc2/0x120
[  343.770030][T10483]  __kmalloc_cache_noprof+0x6a/0x3e0
[  343.770053][T10483]  ? tomoyo_open_control+0x415/0xa30
[  343.770074][T10483]  tomoyo_open_control+0x415/0xa30
[  343.770095][T10483]  do_dentry_open+0x744/0x1c10
[  343.770112][T10483]  ? __pfx_tomoyo_open+0x10/0x10
[  343.770131][T10483]  vfs_open+0x82/0x3f0
[  343.770153][T10483]  path_openat+0x1de4/0x2cb0
[  343.770175][T10483]  ? __pfx_path_openat+0x10/0x10
[  343.770191][T10483]  ? __lock_acquire+0xb8a/0x1c90
[  343.770215][T10483]  do_filp_open+0x20b/0x470
[  343.770231][T10483]  ? __pfx_do_filp_open+0x10/0x10
[  343.770260][T10483]  ? alloc_fd+0x471/0x7d0
[  343.770289][T10483]  do_sys_openat2+0x11b/0x1d0
[  343.770309][T10483]  ? __pfx_do_sys_openat2+0x10/0x10
[  343.770337][T10483]  __x64_sys_openat+0x174/0x210
[  343.770357][T10483]  ? __pfx___x64_sys_openat+0x10/0x10
[  343.770387][T10483]  do_syscall_64+0xcd/0x490
[  343.770405][T10483]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.770421][T10483] RIP: 0033:0x7f6596b8e9a9
[  343.770434][T10483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.770449][T10483] RSP: 002b:00007f6597969038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  343.770465][T10483] RAX: ffffffffffffffda RBX: 00007f6596db5fa0 RCX: 00007f6596b8e9a9
[  343.770475][T10483] RDX: 00000000000c0201 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  343.770485][T10483] RBP: 00007f6596c10d69 R08: 0000000000000000 R09: 0000000000000000
[  343.770495][T10483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  343.770504][T10483] R13: 0000000000000000 R14: 00007f6596db5fa0 R15: 00007ffceb7b4808
[  343.770523][T10483]  </TASK>
[  343.987302][    C0] vkms_vblank_simulate: vblank timer overrun
[  344.667791][T10470] Process accounting resumed
[  346.626577][T10544] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  349.556978][T10585] Process accounting resumed
[  350.300025][T10611] sp0: Synchronizing with TNC
[  351.304425][T10616] Process accounting resumed
[  352.461736][T10645] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  353.917030][T10671] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1101'.
[  354.039561][T10671] cifs: Unknown parameter 'netdev'
[  356.068800][T10701] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1108'.
[  356.956321][T10725] zswap: compressor 000 not available
[  357.216733][T10712] Process accounting resumed
[  357.226273][T10710] Process accounting resumed
[  358.648996][T10769] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  359.874298][T10774] kexec: Could not allocate control_code_buffer
[  360.262271][T10780] Process accounting resumed
[  360.459841][T10808] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input16
[  361.876479][T10836] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  363.538833][T10872] netlink: 'syz.1.1149': attribute type 4 has an invalid length.
[  363.587203][T10872] netlink: 314 bytes leftover after parsing attributes in process `syz.1.1149'.
[  363.629133][T10872] IPv6: NLM_F_CREATE should be specified when creating new route
[  363.736419][T10872] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  363.744064][T10872] IPv6: NLM_F_CREATE should be set when creating new route
[  366.100425][T10906] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  366.388350][T10910] tipc: Started in network mode
[  366.413018][T10910] tipc: Node identity ee00, cluster identity 4711
[  366.434312][T10910] tipc: Node number set to 60928
[  366.460956][T10910] netlink: 5248 bytes leftover after parsing attributes in process `syz.1.1156'.
[  367.642611][T10932] device-mapper: ioctl: Invalid ioctl structure: name �, dev 7f00010002
[  369.402732][T10918] Process accounting resumed
[  369.504553][T10952] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input17
[  369.560402][T10956] FAULT_INJECTION: forcing a failure.
[  369.560402][T10956] name failslab, interval 1, probability 0, space 0, times 0
[  369.643662][T10956] CPU: 0 UID: 0 PID: 10956 Comm: syz.3.1168 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  369.643685][T10956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  369.643695][T10956] Call Trace:
[  369.643700][T10956]  <TASK>
[  369.643706][T10956]  dump_stack_lvl+0x16c/0x1f0
[  369.643727][T10956]  should_fail_ex+0x512/0x640
[  369.643743][T10956]  ? fs_reclaim_acquire+0xae/0x150
[  369.643764][T10956]  should_failslab+0xc2/0x120
[  369.643781][T10956]  __kmalloc_cache_noprof+0x6a/0x3e0
[  369.643802][T10956]  ? tomoyo_open_control+0x415/0xa30
[  369.643821][T10956]  tomoyo_open_control+0x415/0xa30
[  369.643840][T10956]  do_dentry_open+0x744/0x1c10
[  369.643855][T10956]  ? __pfx_tomoyo_open+0x10/0x10
[  369.643872][T10956]  vfs_open+0x82/0x3f0
[  369.643891][T10956]  path_openat+0x1de4/0x2cb0
[  369.643911][T10956]  ? __pfx_path_openat+0x10/0x10
[  369.643925][T10956]  ? __lock_acquire+0xb8a/0x1c90
[  369.643946][T10956]  do_filp_open+0x20b/0x470
[  369.643960][T10956]  ? __pfx_do_filp_open+0x10/0x10
[  369.643991][T10956]  ? alloc_fd+0x471/0x7d0
[  369.644017][T10956]  do_sys_openat2+0x11b/0x1d0
[  369.644035][T10956]  ? __pfx_do_sys_openat2+0x10/0x10
[  369.644060][T10956]  __x64_sys_openat+0x174/0x210
[  369.644078][T10956]  ? __pfx___x64_sys_openat+0x10/0x10
[  369.644103][T10956]  do_syscall_64+0xcd/0x490
[  369.644119][T10956]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.644133][T10956] RIP: 0033:0x7f7275d8e9a9
[  369.644144][T10956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  369.644158][T10956] RSP: 002b:00007f7276b10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  369.644171][T10956] RAX: ffffffffffffffda RBX: 00007f7275fb5fa0 RCX: 00007f7275d8e9a9
[  369.644181][T10956] RDX: 00000000000c0201 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  369.644190][T10956] RBP: 00007f7275e10d69 R08: 0000000000000000 R09: 0000000000000000
[  369.644199][T10956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  369.644207][T10956] R13: 0000000000000000 R14: 00007f7275fb5fa0 R15: 00007fff089490d8
[  369.644225][T10956]  </TASK>
[  370.028994][T10963] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  371.711568][T10988] zswap: compressor 000 not available
[  372.082279][T11005] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1179'.
[  372.209711][T11005] cifs: Unknown parameter 'netdev'
[  373.783615][T11043] sctp: [Deprecated]: syz.0.1189 (pid 11043) Use of struct sctp_assoc_value in delayed_ack socket option.
[  373.783615][T11043] Use struct sctp_sack_info instead
[  373.937556][T11049] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  374.239878][T11060] __vm_enough_memory: pid: 11060, comm: syz.0.1193, bytes: 4398046511104 not enough memory for the allocation
[  374.332428][T11060] FAULT_INJECTION: forcing a failure.
[  374.332428][T11060] name failslab, interval 1, probability 0, space 0, times 0
[  374.399951][T11060] CPU: 0 UID: 0 PID: 11060 Comm: syz.0.1193 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  374.399987][T11060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  374.399996][T11060] Call Trace:
[  374.400002][T11060]  <TASK>
[  374.400007][T11060]  dump_stack_lvl+0x16c/0x1f0
[  374.400028][T11060]  should_fail_ex+0x512/0x640
[  374.400043][T11060]  ? fs_reclaim_acquire+0xae/0x150
[  374.400065][T11060]  ? tomoyo_encode2+0x100/0x3e0
[  374.400078][T11060]  should_failslab+0xc2/0x120
[  374.400095][T11060]  __kmalloc_noprof+0xd2/0x510
[  374.400113][T11060]  tomoyo_encode2+0x100/0x3e0
[  374.400128][T11060]  tomoyo_encode+0x29/0x50
[  374.400140][T11060]  tomoyo_mount_acl+0x314/0x850
[  374.400159][T11060]  ? kernel_text_address+0x8d/0x100
[  374.400180][T11060]  ? __kernel_text_address+0xd/0x40
[  374.400203][T11060]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  374.400228][T11060]  ? stack_trace_save+0x8e/0xc0
[  374.400258][T11060]  ? tomoyo_domain+0xbb/0x150
[  374.400273][T11060]  ? tomoyo_profile+0x47/0x60
[  374.400289][T11060]  tomoyo_mount_permission+0x16d/0x420
[  374.400308][T11060]  ? tomoyo_mount_permission+0x14f/0x420
[  374.400329][T11060]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  374.400361][T11060]  security_sb_mount+0x9b/0x260
[  374.400380][T11060]  path_mount+0x128/0x2020
[  374.400396][T11060]  ? kmem_cache_free+0x2d1/0x4d0
[  374.400409][T11060]  ? __pfx_path_mount+0x10/0x10
[  374.400425][T11060]  ? putname+0x154/0x1a0
[  374.400443][T11060]  __x64_sys_mount+0x28d/0x310
[  374.400459][T11060]  ? __pfx___x64_sys_mount+0x10/0x10
[  374.400480][T11060]  do_syscall_64+0xcd/0x490
[  374.400496][T11060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.400510][T11060] RIP: 0033:0x7fcca238e9a9
[  374.400523][T11060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  374.400536][T11060] RSP: 002b:00007fcca32d9038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  374.400550][T11060] RAX: ffffffffffffffda RBX: 00007fcca25b5fa0 RCX: 00007fcca238e9a9
[  374.400559][T11060] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000000000000000
[  374.400568][T11060] RBP: 00007fcca2410d69 R08: 0000000000000000 R09: 0000000000000000
[  374.400576][T11060] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[  374.400584][T11060] R13: 0000000000000000 R14: 00007fcca25b5fa0 R15: 00007fffcdc64748
[  374.400602][T11060]  </TASK>
[  375.613490][   T30] audit: type=1804 audit(6048393796.946:5): pid=11095 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1200" name="/newroot/sys/kernel/tracing/per_cpu/cpu0/trace" dev="tracefs" ino=1292 res=1 errno=0
[  376.057358][T11110] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18
[  376.868652][T11130] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  377.807592][T11155] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  378.214637][T11166] random: crng reseeded on system resumption
[  378.451624][T11179] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1219'.
[  378.540041][T11179] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1219'.
[  378.671583][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  378.678630][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  379.292977][T11198] FAULT_INJECTION: forcing a failure.
[  379.292977][T11198] name failslab, interval 1, probability 0, space 0, times 0
[  379.378348][T11198] CPU: 0 UID: 0 PID: 11198 Comm: syz.3.1224 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  379.378373][T11198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  379.378383][T11198] Call Trace:
[  379.378388][T11198]  <TASK>
[  379.378394][T11198]  dump_stack_lvl+0x16c/0x1f0
[  379.378415][T11198]  should_fail_ex+0x512/0x640
[  379.378430][T11198]  ? fs_reclaim_acquire+0xae/0x150
[  379.378452][T11198]  ? tomoyo_encode2+0x100/0x3e0
[  379.378465][T11198]  should_failslab+0xc2/0x120
[  379.378480][T11198]  __kmalloc_noprof+0xd2/0x510
[  379.378505][T11198]  tomoyo_encode2+0x100/0x3e0
[  379.378521][T11198]  tomoyo_encode+0x29/0x50
[  379.378534][T11198]  tomoyo_realpath_from_path+0x18f/0x6e0
[  379.378553][T11198]  tomoyo_check_open_permission+0x2ab/0x3c0
[  379.378574][T11198]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  379.378614][T11198]  ? find_held_lock+0x2b/0x80
[  379.378635][T11198]  tomoyo_file_open+0x6b/0x90
[  379.378651][T11198]  security_file_open+0x84/0x1e0
[  379.378672][T11198]  do_dentry_open+0x596/0x1c10
[  379.378693][T11198]  vfs_open+0x82/0x3f0
[  379.378712][T11198]  path_openat+0x1de4/0x2cb0
[  379.378732][T11198]  ? __pfx_path_openat+0x10/0x10
[  379.378747][T11198]  ? __lock_acquire+0xb8a/0x1c90
[  379.378767][T11198]  do_filp_open+0x20b/0x470
[  379.378781][T11198]  ? __pfx_do_filp_open+0x10/0x10
[  379.378808][T11198]  ? alloc_fd+0x471/0x7d0
[  379.378834][T11198]  do_sys_openat2+0x11b/0x1d0
[  379.378851][T11198]  ? __pfx_do_sys_openat2+0x10/0x10
[  379.378869][T11198]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  379.378894][T11198]  __x64_sys_openat+0x174/0x210
[  379.378912][T11198]  ? __pfx___x64_sys_openat+0x10/0x10
[  379.378937][T11198]  do_syscall_64+0xcd/0x490
[  379.378953][T11198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.378967][T11198] RIP: 0033:0x7f7275d8e9a9
[  379.378980][T11198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  379.378993][T11198] RSP: 002b:00007f7276b10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  379.379006][T11198] RAX: ffffffffffffffda RBX: 00007f7275fb5fa0 RCX: 00007f7275d8e9a9
[  379.379016][T11198] RDX: 00000000000c0201 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  379.379024][T11198] RBP: 00007f7275e10d69 R08: 0000000000000000 R09: 0000000000000000
[  379.379033][T11198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  379.379041][T11198] R13: 0000000000000000 R14: 00007f7275fb5fa0 R15: 00007fff089490d8
[  379.379060][T11198]  </TASK>
[  379.379077][T11198] ERROR: Out of memory at tomoyo_realpath_from_path.
[  379.796239][T11199] Process accounting paused
[  380.517798][T11229] FAULT_INJECTION: forcing a failure.
[  380.517798][T11229] name failslab, interval 1, probability 0, space 0, times 0
[  380.577988][T11229] CPU: 0 UID: 0 PID: 11229 Comm: syz.3.1232 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  380.578013][T11229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  380.578022][T11229] Call Trace:
[  380.578027][T11229]  <TASK>
[  380.578033][T11229]  dump_stack_lvl+0x16c/0x1f0
[  380.578053][T11229]  should_fail_ex+0x512/0x640
[  380.578068][T11229]  ? fs_reclaim_acquire+0xae/0x150
[  380.578089][T11229]  should_failslab+0xc2/0x120
[  380.578106][T11229]  __kmalloc_cache_noprof+0x6a/0x3e0
[  380.578125][T11229]  ? find_held_lock+0x2b/0x80
[  380.578139][T11229]  ? tomoyo_open_control+0x56/0xa30
[  380.578158][T11229]  tomoyo_open_control+0x56/0xa30
[  380.578176][T11229]  do_dentry_open+0x744/0x1c10
[  380.578192][T11229]  ? __pfx_tomoyo_open+0x10/0x10
[  380.578209][T11229]  vfs_open+0x82/0x3f0
[  380.578228][T11229]  path_openat+0x1de4/0x2cb0
[  380.578258][T11229]  ? __pfx_path_openat+0x10/0x10
[  380.578273][T11229]  ? __lock_acquire+0xb8a/0x1c90
[  380.578293][T11229]  do_filp_open+0x20b/0x470
[  380.578308][T11229]  ? __pfx_do_filp_open+0x10/0x10
[  380.578336][T11229]  ? alloc_fd+0x471/0x7d0
[  380.578362][T11229]  do_sys_openat2+0x11b/0x1d0
[  380.578380][T11229]  ? __pfx_do_sys_openat2+0x10/0x10
[  380.578404][T11229]  __x64_sys_openat+0x174/0x210
[  380.578422][T11229]  ? __pfx___x64_sys_openat+0x10/0x10
[  380.578447][T11229]  do_syscall_64+0xcd/0x490
[  380.578462][T11229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.578477][T11229] RIP: 0033:0x7f7275d8e9a9
[  380.578488][T11229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  380.578501][T11229] RSP: 002b:00007f7276b10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  380.578515][T11229] RAX: ffffffffffffffda RBX: 00007f7275fb5fa0 RCX: 00007f7275d8e9a9
[  380.578524][T11229] RDX: 00000000000c0201 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  380.578533][T11229] RBP: 00007f7275e10d69 R08: 0000000000000000 R09: 0000000000000000
[  380.578541][T11229] R10: 000000000000ffeb R11: 0000000000000246 R12: 0000000000000000
[  380.578549][T11229] R13: 0000000000000000 R14: 00007f7275fb5fa0 R15: 00007fff089490d8
[  380.578567][T11229]  </TASK>
[  381.231271][T11240] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  382.126006][T11257] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input19
[  383.008750][T11275] FAULT_INJECTION: forcing a failure.
[  383.008750][T11275] name failslab, interval 1, probability 0, space 0, times 0
[  383.059968][T11275] CPU: 0 UID: 0 PID: 11275 Comm: syz.3.1243 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  383.059992][T11275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  383.060001][T11275] Call Trace:
[  383.060006][T11275]  <TASK>
[  383.060021][T11275]  dump_stack_lvl+0x16c/0x1f0
[  383.060042][T11275]  should_fail_ex+0x512/0x640
[  383.060057][T11275]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  383.060080][T11275]  should_failslab+0xc2/0x120
[  383.060098][T11275]  __kmalloc_cache_noprof+0x6a/0x3e0
[  383.060119][T11275]  ? alloc_fs_context+0x57/0x9c0
[  383.060135][T11275]  alloc_fs_context+0x57/0x9c0
[  383.060152][T11275]  path_mount+0xaf8/0x2020
[  383.060168][T11275]  ? kmem_cache_free+0x2d1/0x4d0
[  383.060180][T11275]  ? __pfx_path_mount+0x10/0x10
[  383.060197][T11275]  ? putname+0x154/0x1a0
[  383.060214][T11275]  __x64_sys_mount+0x28d/0x310
[  383.060229][T11275]  ? __pfx___x64_sys_mount+0x10/0x10
[  383.060249][T11275]  do_syscall_64+0xcd/0x490
[  383.060265][T11275]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.060278][T11275] RIP: 0033:0x7f7275d8e9a9
[  383.060290][T11275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  383.060303][T11275] RSP: 002b:00007f7276b10038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  383.060317][T11275] RAX: ffffffffffffffda RBX: 00007f7275fb5fa0 RCX: 00007f7275d8e9a9
[  383.060326][T11275] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000000000000000
[  383.060334][T11275] RBP: 00007f7275e10d69 R08: 0000000000000000 R09: 0000000000000000
[  383.060342][T11275] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000
[  383.060351][T11275] R13: 0000000000000000 R14: 00007f7275fb5fa0 R15: 00007fff089490d8
[  383.060368][T11275]  </TASK>
[  384.705920][T11313] netlink: 5248 bytes leftover after parsing attributes in process `syz.3.1252'.
[  385.234800][T11304] Process accounting resumed
[  385.708901][T11326] zswap: compressor 000 not available
[  385.803463][T11339] Scaler: =================  START STATUS  =================
[  385.847942][T11339] Scaler: ==================  END STATUS  ==================
[  386.376263][T11328] Process accounting resumed
[  387.410847][T11372] Process accounting paused
[  387.543736][T11384] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input20
[  388.758846][T11424] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1281'.
[  388.818998][T11424] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1281'.
[  389.095765][T11435] netlink: 5248 bytes leftover after parsing attributes in process `syz.1.1284'.
[  390.173476][T11457] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  390.820421][T11466] zswap: compressor 000 not available
[  391.531132][T11504] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  392.394315][T11523] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1308'.
[  392.809152][T11506] kexec: Could not allocate control_code_buffer
[  396.090123][T11589] kAFS: Invalid Command on /proc/fs/afs/cells file
[  396.855052][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  396.862314][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  396.882565][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  396.892019][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  396.921024][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  396.929305][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  396.956450][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  396.965246][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  397.325290][T11618] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1329'.
[  399.371413][T11665] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1339'.
[  399.419237][T11665] netlink: 218 bytes leftover after parsing attributes in process `syz.3.1339'.
[  399.517424][T11665] Process accounting paused
[  399.951144][T11678] FAULT_INJECTION: forcing a failure.
[  399.951144][T11678] name fail_futex, interval 1, probability 0, space 0, times 0
[  400.028126][T11678] CPU: 0 UID: 0 PID: 11678 Comm: syz.0.1342 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  400.028148][T11678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  400.028158][T11678] Call Trace:
[  400.028162][T11678]  <TASK>
[  400.028168][T11678]  dump_stack_lvl+0x16c/0x1f0
[  400.028188][T11678]  should_fail_ex+0x512/0x640
[  400.028207][T11678]  get_futex_key+0x1d0/0x1540
[  400.028227][T11678]  ? __pfx_get_futex_key+0x10/0x10
[  400.028250][T11678]  futex_wake+0xe7/0x4e0
[  400.028271][T11678]  ? __pfx_futex_wake+0x10/0x10
[  400.028291][T11678]  ? errseq_sample+0x53/0x70
[  400.028305][T11678]  ? file_init_path+0x4fe/0x760
[  400.028325][T11678]  do_futex+0x1e3/0x350
[  400.028341][T11678]  ? __pfx_do_futex+0x10/0x10
[  400.028357][T11678]  ? fd_install+0x225/0x750
[  400.028380][T11678]  __x64_sys_futex+0x1e0/0x4c0
[  400.028397][T11678]  ? __sys_socket+0xac/0x260
[  400.028416][T11678]  ? __pfx___x64_sys_futex+0x10/0x10
[  400.028432][T11678]  ? xfd_validate_state+0x61/0x180
[  400.028449][T11678]  ? __pfx_do_writev+0x10/0x10
[  400.028475][T11678]  do_syscall_64+0xcd/0x490
[  400.028491][T11678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  400.028505][T11678] RIP: 0033:0x7fcca238e9a9
[  400.028517][T11678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  400.028530][T11678] RSP: 002b:00007fcca32b80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  400.028543][T11678] RAX: ffffffffffffffda RBX: 00007fcca25b6088 RCX: 00007fcca238e9a9
[  400.028552][T11678] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fcca25b608c
[  400.028561][T11678] RBP: 00007fcca25b6080 R08: 00007fcca32da000 R09: 0000000000000000
[  400.028569][T11678] R10: 0000000000000005 R11: 0000000000000246 R12: 00007fcca25b608c
[  400.028577][T11678] R13: 0000000000000000 R14: 00007fffcdc64660 R15: 00007fffcdc64748
[  400.028595][T11678]  </TASK>
[  400.226492][    C0] vkms_vblank_simulate: vblank timer overrun
[  401.244364][T11710] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1351'.
[  401.305860][T11710] veth1_macvtap: left promiscuous mode
[  401.888193][T11734] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1356'.
[  401.922089][T11734] netlink: 218 bytes leftover after parsing attributes in process `syz.3.1356'.
[  402.705167][T11741] nbd: must specify at least one socket
[  402.764632][T11738] Process accounting resumed
[  402.932524][T11758] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  403.420626][T11769] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1364'.
[  403.460663][T11769] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1364'.
[  403.554701][T11769] netlink: 218 bytes leftover after parsing attributes in process `syz.0.1364'.
[  403.945232][T11778] FAULT_INJECTION: forcing a failure.
[  403.945232][T11778] name failslab, interval 1, probability 0, space 0, times 0
[  403.958160][T11778] CPU: 0 UID: 0 PID: 11778 Comm: syz.0.1366 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  403.958180][T11778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  403.958189][T11778] Call Trace:
[  403.958197][T11778]  <TASK>
[  403.958203][T11778]  dump_stack_lvl+0x116/0x1f0
[  403.958223][T11778]  should_fail_ex+0x512/0x640
[  403.958240][T11778]  should_failslab+0xc2/0x120
[  403.958257][T11778]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  403.958273][T11778]  ? __send_signal_locked+0x159/0x12c0
[  403.958294][T11778]  ? sig_get_ucounts+0x1c0/0x5b0
[  403.958315][T11778]  __send_signal_locked+0x159/0x12c0
[  403.958340][T11778]  do_notify_parent+0xd84/0xfa0
[  403.958354][T11778]  ? __pfx_do_notify_parent+0x10/0x10
[  403.958367][T11778]  ? do_raw_spin_lock+0x12c/0x2b0
[  403.958394][T11778]  ? release_task+0xcff/0x1ca0
[  403.958411][T11778]  ? do_exit+0x12be/0x2bd0
[  403.958431][T11778]  release_task+0x16bb/0x1ca0
[  403.958456][T11778]  ? __pfx_release_task+0x10/0x10
[  403.958479][T11778]  ? find_held_lock+0x2b/0x80
[  403.958493][T11778]  ? __wake_up+0x3f/0x60
[  403.958511][T11778]  ? rcu_is_watching+0x12/0xc0
[  403.958529][T11778]  do_exit+0x12be/0x2bd0
[  403.958550][T11778]  ? __pfx_do_exit+0x10/0x10
[  403.958568][T11778]  ? find_held_lock+0x2b/0x80
[  403.958584][T11778]  do_group_exit+0xd3/0x2a0
[  403.958604][T11778]  get_signal+0x2673/0x26d0
[  403.958624][T11778]  ? getname_flags.part.0+0x1c5/0x550
[  403.958643][T11778]  ? __pfx_get_signal+0x10/0x10
[  403.958658][T11778]  ? do_futex+0x122/0x350
[  403.958675][T11778]  ? __pfx_do_futex+0x10/0x10
[  403.958699][T11778]  arch_do_signal_or_restart+0x8f/0x790
[  403.958717][T11778]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  403.958738][T11778]  ? xfd_validate_state+0x61/0x180
[  403.958760][T11778]  exit_to_user_mode_loop+0x84/0x110
[  403.958781][T11778]  do_syscall_64+0x3f6/0x490
[  403.958798][T11778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.958812][T11778] RIP: 0033:0x7fcca238e9a9
[  403.958824][T11778] Code: Unable to access opcode bytes at 0x7fcca238e97f.
[  403.958830][T11778] RSP: 002b:00007fcca32b80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  403.958844][T11778] RAX: fffffffffffffe00 RBX: 00007fcca25b6088 RCX: 00007fcca238e9a9
[  403.958853][T11778] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fcca25b6088
[  403.958861][T11778] RBP: 00007fcca25b6080 R08: 0000000000000000 R09: 0000000000000000
[  403.958870][T11778] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcca25b608c
[  403.958878][T11778] R13: 0000000000000000 R14: 00007fffcdc64660 R15: 00007fffcdc64748
[  403.958896][T11778]  </TASK>
[  404.206835][    C0] vkms_vblank_simulate: vblank timer overrun
[  404.488709][T11784] FAULT_INJECTION: forcing a failure.
[  404.488709][T11784] name failslab, interval 1, probability 0, space 0, times 0
[  404.503529][T11784] CPU: 0 UID: 0 PID: 11784 Comm: syz.3.1367 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  404.503553][T11784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  404.503562][T11784] Call Trace:
[  404.503567][T11784]  <TASK>
[  404.503573][T11784]  dump_stack_lvl+0x16c/0x1f0
[  404.503594][T11784]  should_fail_ex+0x512/0x640
[  404.503609][T11784]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  404.503633][T11784]  should_failslab+0xc2/0x120
[  404.503649][T11784]  __kmalloc_cache_noprof+0x6a/0x3e0
[  404.503669][T11784]  ? _setid_policy_lookup+0x218/0x3e0
[  404.503688][T11784]  ? alloc_ucounts+0x13d/0x440
[  404.503707][T11784]  alloc_ucounts+0x13d/0x440
[  404.503723][T11784]  ? __pfx_alloc_ucounts+0x10/0x10
[  404.503745][T11784]  set_cred_ucounts+0xcd/0x200
[  404.503766][T11784]  __sys_setreuid+0x49c/0xaf0
[  404.503784][T11784]  do_syscall_64+0xcd/0x490
[  404.503799][T11784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  404.503813][T11784] RIP: 0033:0x7f7275d8e9a9
[  404.503825][T11784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  404.503838][T11784] RSP: 002b:00007f7276b10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000071
[  404.503852][T11784] RAX: ffffffffffffffda RBX: 00007f7275fb5fa0 RCX: 00007f7275d8e9a9
[  404.503861][T11784] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000009
[  404.503869][T11784] RBP: 00007f7275e10d69 R08: 0000000000000000 R09: 0000000000000000
[  404.503877][T11784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  404.503885][T11784] R13: 0000000000000000 R14: 00007f7275fb5fa0 R15: 00007fff089490d8
[  404.503903][T11784]  </TASK>
[  404.675174][    C0] vkms_vblank_simulate: vblank timer overrun
[  405.302691][T11795] zswap: compressor 000 not available
[  406.242900][T11817] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1378'.
[  406.488044][T11830] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1382'.
[  406.610633][T11830] veth0_macvtap: left promiscuous mode
[  408.329998][T11873] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1392'.
[  408.691868][T11877] zswap: compressor 000 not available
[  409.029328][T11893] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1396'.
[  410.415112][T11928] sctp: [Deprecated]: syz.0.1405 (pid 11928) Use of int in max_burst socket option deprecated.
[  410.415112][T11928] Use struct sctp_assoc_value instead
[  411.654651][T11961] bridge0: port 2(veth0_to_bridge) entered blocking state
[  411.693975][T11961] bridge0: port 2(veth0_to_bridge) entered disabled state
[  411.731942][T11961] veth0_to_bridge: entered allmulticast mode
[  411.791918][T11961] veth0_to_bridge: entered promiscuous mode
[  411.822891][T11961] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  411.921707][T11961] bridge0: port 2(veth0_to_bridge) entered blocking state
[  411.929017][T11961] bridge0: port 2(veth0_to_bridge) entered forwarding state
[  412.614795][  T118] Process accounting resumed
[  415.899750][T12041] netlink: zone id is out of range
[  415.915146][T12041] netlink: zone id is out of range
[  415.921349][ T8971] Bluetooth: hci1: unexpected event 0x03 length: 725 > 11
[  415.932061][T12041] netlink: zone id is out of range
[  415.992192][T12041] netlink: zone id is out of range
[  416.011160][T12041] netlink: zone id is out of range
[  416.016359][T12041] netlink: zone id is out of range
[  416.079291][T12041] netlink: zone id is out of range
[  416.116359][T12041] netlink: zone id is out of range
[  416.166237][T12041] netlink: zone id is out of range
[  416.195778][T12041] netlink: zone id is out of range
[  416.560448][T12049] Process accounting paused
[  420.144952][T12137] netlink: 5248 bytes leftover after parsing attributes in process `syz.2.1455'.
[  420.333113][T12118] Process accounting resumed
[  422.286206][T12170] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1467'.
[  423.181511][T12197] net_ratelimit: 23 callbacks suppressed
[  423.181527][T12197] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  423.740658][T12193] FAULT_INJECTION: forcing a failure.
[  423.740658][T12193] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  423.919715][T12193] CPU: 0 UID: 0 PID: 12193 Comm: syz.0.1474 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  423.919736][T12193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  423.919745][T12193] Call Trace:
[  423.919750][T12193]  <TASK>
[  423.919757][T12193]  dump_stack_lvl+0x16c/0x1f0
[  423.919776][T12193]  should_fail_ex+0x512/0x640
[  423.919794][T12193]  _copy_from_user+0x2e/0xd0
[  423.919810][T12193]  snd_rawmidi_kernel_write1+0x50a/0x8a0
[  423.919841][T12193]  snd_rawmidi_write+0x26e/0xc10
[  423.919865][T12193]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  423.919885][T12193]  ? __pfx_default_wake_function+0x10/0x10
[  423.919902][T12193]  ? bpf_lsm_file_permission+0x9/0x10
[  423.919920][T12193]  ? security_file_permission+0x71/0x210
[  423.919942][T12193]  ? rw_verify_area+0xcf/0x680
[  423.919963][T12193]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  423.919981][T12193]  vfs_write+0x29d/0x1150
[  423.919998][T12193]  ? __pfx_vfs_write+0x10/0x10
[  423.920010][T12193]  ? find_held_lock+0x2b/0x80
[  423.920025][T12193]  ? __fget_files+0x204/0x3c0
[  423.920049][T12193]  ? __fget_files+0x20e/0x3c0
[  423.920074][T12193]  ksys_write+0x1f8/0x250
[  423.920119][T12193]  ? __pfx_ksys_write+0x10/0x10
[  423.920138][T12193]  do_syscall_64+0xcd/0x490
[  423.920154][T12193]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.920169][T12193] RIP: 0033:0x7fcca238e9a9
[  423.920181][T12193] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  423.920195][T12193] RSP: 002b:00007fcca32d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  423.920209][T12193] RAX: ffffffffffffffda RBX: 00007fcca25b5fa0 RCX: 00007fcca238e9a9
[  423.920219][T12193] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000005
[  423.920228][T12193] RBP: 00007fcca2410d69 R08: 0000000000000000 R09: 0000000000000000
[  423.920236][T12193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  423.920245][T12193] R13: 0000000000000000 R14: 00007fcca25b5fa0 R15: 00007fffcdc64748
[  423.920263][T12193]  </TASK>
[  424.129591][    C0] vkms_vblank_simulate: vblank timer overrun
[  424.440826][T12225] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1479'.
[  424.531002][T12220] zswap: compressor 000 not available
[  425.792915][T12257] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input21
[  427.016084][T12286] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1496'.
[  427.046308][T12281] zswap: compressor 000 not available
[  427.079763][T12286] netlink: 218 bytes leftover after parsing attributes in process `syz.3.1496'.
[  427.404367][   T30] audit: type=1800 audit(6048393848.726:6): pid=12296 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1500" name="features" dev="configfs" ino=41512 res=0 errno=0
[  427.594042][T12298] tipc: Started in network mode
[  427.602870][T12298] tipc: Node identity 30303030, cluster identity 4711
[  427.638863][T12298] tipc: Node number set to 808464432
[  427.889111][T12314] random: crng reseeded on system resumption
[  429.145347][   T30] audit: type=1804 audit(6048393850.476:7): pid=12344 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1509" name="/newroot/380/file0" dev="tmpfs" ino=1983 res=1 errno=0
[  429.166641][    C0] vkms_vblank_simulate: vblank timer overrun
[  429.492841][T12351] FAULT_INJECTION: forcing a failure.
[  429.492841][T12351] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  429.597362][T12351] CPU: 0 UID: 0 PID: 12351 Comm: syz.3.1511 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  429.597382][T12351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  429.597391][T12351] Call Trace:
[  429.597396][T12351]  <TASK>
[  429.597402][T12351]  dump_stack_lvl+0x16c/0x1f0
[  429.597422][T12351]  should_fail_ex+0x512/0x640
[  429.597439][T12351]  _copy_from_user+0x2e/0xd0
[  429.597456][T12351]  kstrtobool_from_user+0x99/0x180
[  429.597475][T12351]  ? __pfx_kstrtobool_from_user+0x10/0x10
[  429.597494][T12351]  ? __lock_acquire+0xb8a/0x1c90
[  429.597517][T12351]  nsim_dev_psample_enable_write+0x9d/0x370
[  429.597538][T12351]  ? __debugfs_file_get+0x1fe/0x840
[  429.597555][T12351]  ? __pfx_nsim_dev_psample_enable_write+0x10/0x10
[  429.597582][T12351]  full_proxy_write+0x13f/0x200
[  429.597599][T12351]  ? __pfx_full_proxy_write+0x10/0x10
[  429.597621][T12351]  vfs_write+0x29d/0x1150
[  429.597639][T12351]  ? __pfx___mutex_lock+0x10/0x10
[  429.597653][T12351]  ? __pfx_vfs_write+0x10/0x10
[  429.597671][T12351]  ? __fget_files+0x20e/0x3c0
[  429.597697][T12351]  ksys_write+0x12a/0x250
[  429.597710][T12351]  ? __pfx_ksys_write+0x10/0x10
[  429.597729][T12351]  do_syscall_64+0xcd/0x490
[  429.597744][T12351]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  429.597758][T12351] RIP: 0033:0x7f7275d8e9a9
[  429.597771][T12351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  429.597784][T12351] RSP: 002b:00007f7273bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  429.597797][T12351] RAX: ffffffffffffffda RBX: 00007f7275fb6080 RCX: 00007f7275d8e9a9
[  429.597807][T12351] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000005
[  429.597815][T12351] RBP: 00007f7273bf6090 R08: 0000000000000000 R09: 0000000000000000
[  429.597823][T12351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  429.597831][T12351] R13: 0000000000000000 R14: 00007f7275fb6080 R15: 00007fff089490d8
[  429.597850][T12351]  </TASK>
[  429.806288][    C0] vkms_vblank_simulate: vblank timer overrun
[  429.930068][T12359] block nbd7: not configured, cannot reconfigure
[  430.070714][T12363] netlink: 5248 bytes leftover after parsing attributes in process `syz.1.1517'.
[  430.104717][T12348] Process accounting resumed
[  430.360056][T12372] netlink: 'syz.2.1513': attribute type 27 has an invalid length.
[  430.438011][T12372] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1513'.
[  430.628940][T12376] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input22
[  431.518049][T12403] netlink: 5248 bytes leftover after parsing attributes in process `syz.3.1528'.
[  431.910459][T12413] random: crng reseeded on system resumption
[  431.943991][T12386] netlink: 'syz.0.1523': attribute type 1 has an invalid length.
[  432.635999][T12424] bond0: no command found in slaves file - use +ifname or -ifname
[  433.224142][T12425] Process accounting paused
[  433.286534][T12450] FAULT_INJECTION: forcing a failure.
[  433.286534][T12450] name failslab, interval 1, probability 0, space 0, times 0
[  433.399346][T12450] CPU: 0 UID: 0 PID: 12450 Comm: syz.1.1538 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  433.399370][T12450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  433.399379][T12450] Call Trace:
[  433.399384][T12450]  <TASK>
[  433.399390][T12450]  dump_stack_lvl+0x16c/0x1f0
[  433.399411][T12450]  should_fail_ex+0x512/0x640
[  433.399426][T12450]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  433.399444][T12450]  should_failslab+0xc2/0x120
[  433.399461][T12450]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  433.399475][T12450]  ? __d_lookup+0x25c/0x4a0
[  433.399492][T12450]  ? __d_alloc+0x31/0xaa0
[  433.399509][T12450]  __d_alloc+0x31/0xaa0
[  433.399525][T12450]  d_alloc+0x4a/0x1e0
[  433.399540][T12450]  __rpc_lookup_create_exclusive+0x119/0x140
[  433.399560][T12450]  ? __pfx___rpc_lookup_create_exclusive+0x10/0x10
[  433.399583][T12450]  rpc_populate.constprop.0+0xbe/0x5d0
[  433.399609][T12450]  rpc_fill_super+0x2bc/0x840
[  433.399639][T12450]  ? sget_fc+0x808/0xc20
[  433.399660][T12450]  ? __pfx_set_anon_super_fc+0x10/0x10
[  433.399681][T12450]  ? __pfx_rpc_fill_super+0x10/0x10
[  433.399701][T12450]  get_tree_keyed+0x10b/0x1d0
[  433.399722][T12450]  vfs_get_tree+0x8e/0x340
[  433.399740][T12450]  vfs_cmd_create+0xd7/0x2a0
[  433.399756][T12450]  __do_sys_fsconfig+0x7b8/0xbe0
[  433.399774][T12450]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  433.399799][T12450]  do_syscall_64+0xcd/0x490
[  433.399815][T12450]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  433.399829][T12450] RIP: 0033:0x7f6596b8e9a9
[  433.399841][T12450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  433.399854][T12450] RSP: 002b:00007f6597969038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  433.399868][T12450] RAX: ffffffffffffffda RBX: 00007f6596db5fa0 RCX: 00007f6596b8e9a9
[  433.399877][T12450] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  433.399885][T12450] RBP: 00007f6596c10d69 R08: 0000000000000000 R09: 0000000000000000
[  433.399894][T12450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  433.399902][T12450] R13: 0000000000000000 R14: 00007f6596db5fa0 R15: 00007ffceb7b4808
[  433.399921][T12450]  </TASK>
[  433.400505][T12450] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[  433.661357][T12453] FAULT_INJECTION: forcing a failure.
[  433.661357][T12453] name failslab, interval 1, probability 0, space 0, times 0
[  433.688011][T12453] CPU: 0 UID: 0 PID: 12453 Comm: syz.0.1539 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  433.688035][T12453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  433.688047][T12453] Call Trace:
[  433.688054][T12453]  <TASK>
[  433.688060][T12453]  dump_stack_lvl+0x16c/0x1f0
[  433.688079][T12453]  should_fail_ex+0x512/0x640
[  433.688095][T12453]  ? fs_reclaim_acquire+0xae/0x150
[  433.688116][T12453]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  433.688130][T12453]  should_failslab+0xc2/0x120
[  433.688146][T12453]  __kmalloc_noprof+0xd2/0x510
[  433.688165][T12453]  tomoyo_realpath_from_path+0xc2/0x6e0
[  433.688180][T12453]  ? tomoyo_profile+0x47/0x60
[  433.688197][T12453]  tomoyo_path_perm+0x274/0x460
[  433.688224][T12453]  ? tomoyo_path_perm+0x260/0x460
[  433.688244][T12453]  ? __pfx_tomoyo_path_perm+0x10/0x10
[  433.688285][T12453]  ? __pfx_ima_file_check+0x10/0x10
[  433.688300][T12453]  ? hook_file_truncate+0xc7/0x250
[  433.688322][T12453]  security_file_truncate+0x84/0x1e0
[  433.688343][T12453]  path_openat+0xc10/0x2cb0
[  433.688364][T12453]  ? __pfx_path_openat+0x10/0x10
[  433.688378][T12453]  ? __lock_acquire+0xb8a/0x1c90
[  433.688400][T12453]  do_filp_open+0x20b/0x470
[  433.688414][T12453]  ? __pfx_do_filp_open+0x10/0x10
[  433.688443][T12453]  ? alloc_fd+0x471/0x7d0
[  433.688469][T12453]  do_sys_openat2+0x11b/0x1d0
[  433.688487][T12453]  ? __pfx_do_sys_openat2+0x10/0x10
[  433.688512][T12453]  __x64_sys_openat+0x174/0x210
[  433.688529][T12453]  ? __pfx___x64_sys_openat+0x10/0x10
[  433.688555][T12453]  do_syscall_64+0xcd/0x490
[  433.688571][T12453]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  433.688585][T12453] RIP: 0033:0x7fcca238e9a9
[  433.688597][T12453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  433.688610][T12453] RSP: 002b:00007fcca32d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  433.688623][T12453] RAX: ffffffffffffffda RBX: 00007fcca25b5fa0 RCX: 00007fcca238e9a9
[  433.688633][T12453] RDX: 00000000000c0201 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  433.688642][T12453] RBP: 00007fcca2410d69 R08: 0000000000000000 R09: 0000000000000000
[  433.688651][T12453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  433.688659][T12453] R13: 0000000000000000 R14: 00007fcca25b5fa0 R15: 00007fffcdc64748
[  433.688678][T12453]  </TASK>
[  433.688706][T12453] ERROR: Out of memory at tomoyo_realpath_from_path.
[  434.921801][T12484] FAULT_INJECTION: forcing a failure.
[  434.921801][T12484] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  434.959584][T12484] CPU: 0 UID: 0 PID: 12484 Comm: syz.3.1548 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  434.959606][T12484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  434.959615][T12484] Call Trace:
[  434.959620][T12484]  <TASK>
[  434.959626][T12484]  dump_stack_lvl+0x16c/0x1f0
[  434.959646][T12484]  should_fail_ex+0x512/0x640
[  434.959663][T12484]  _copy_to_user+0x32/0xd0
[  434.959680][T12484]  simple_read_from_buffer+0xcb/0x170
[  434.959702][T12484]  proc_fail_nth_read+0x197/0x270
[  434.959722][T12484]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  434.959741][T12484]  ? rw_verify_area+0xcf/0x680
[  434.959760][T12484]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  434.959778][T12484]  vfs_read+0x1e4/0xc60
[  434.959793][T12484]  ? __pfx___mutex_lock+0x10/0x10
[  434.959808][T12484]  ? __pfx_vfs_read+0x10/0x10
[  434.959825][T12484]  ? __fget_files+0x20e/0x3c0
[  434.959851][T12484]  ksys_read+0x12a/0x250
[  434.959863][T12484]  ? __pfx_ksys_read+0x10/0x10
[  434.959881][T12484]  do_syscall_64+0xcd/0x490
[  434.959897][T12484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  434.959911][T12484] RIP: 0033:0x7f7275d8d3bc
[  434.959923][T12484] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  434.959936][T12484] RSP: 002b:00007f7276b10030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  434.959950][T12484] RAX: ffffffffffffffda RBX: 00007f7275fb5fa0 RCX: 00007f7275d8d3bc
[  434.959959][T12484] RDX: 000000000000000f RSI: 00007f7276b100a0 RDI: 0000000000000006
[  434.959968][T12484] RBP: 00007f7276b10090 R08: 0000000000000000 R09: 0000000000000000
[  434.959976][T12484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  434.959984][T12484] R13: 0000000000000000 R14: 00007f7275fb5fa0 R15: 00007fff089490d8
[  434.960002][T12484]  </TASK>
[  436.129771][T12518] netlink: 86 bytes leftover after parsing attributes in process `syz.1.1556'.
[  436.395398][T12525] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1558'.
[  436.469431][T12525] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  436.537343][T12525] batman_adv: batadv0: Removing interface: batadv_slave_0
[  436.593779][T12525] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  436.630388][T12525] batman_adv: batadv0: Removing interface: batadv_slave_1
[  437.218543][T12537] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input23
[  437.232245][T12525] FAULT_INJECTION: forcing a failure.
[  437.232245][T12525] name failslab, interval 1, probability 0, space 0, times 0
[  437.302281][T12525] CPU: 0 UID: 0 PID: 12525 Comm: syz.0.1558 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  437.302306][T12525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  437.302315][T12525] Call Trace:
[  437.302320][T12525]  <TASK>
[  437.302326][T12525]  dump_stack_lvl+0x16c/0x1f0
[  437.302347][T12525]  should_fail_ex+0x512/0x640
[  437.302361][T12525]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  437.302385][T12525]  should_failslab+0xc2/0x120
[  437.302402][T12525]  __kmalloc_cache_noprof+0x6a/0x3e0
[  437.302423][T12525]  ? netdevice_event+0x365/0x9d0
[  437.302442][T12525]  netdevice_event+0x365/0x9d0
[  437.302459][T12525]  ? __pfx_netdevice_event+0x10/0x10
[  437.302474][T12525]  ? __pfx_del_netdev_upper_ips+0x10/0x10
[  437.302489][T12525]  ? __pfx_upper_device_filter+0x10/0x10
[  437.302506][T12525]  ? __pfx_add_netdev_ips+0x10/0x10
[  437.302521][T12525]  ? __pfx_is_eth_port_of_netdev_filter+0x10/0x10
[  437.302540][T12525]  ? wext_netdev_notifier_call+0xe/0x20
[  437.302554][T12525]  ? cfg802154_netdev_notifier_call+0x391/0xa00
[  437.302570][T12525]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  437.302593][T12525]  notifier_call_chain+0xbc/0x410
[  437.302609][T12525]  ? __pfx_netdevice_event+0x10/0x10
[  437.302628][T12525]  call_netdevice_notifiers_info+0xbe/0x140
[  437.302649][T12525]  __netdev_upper_dev_unlink+0x14c/0x430
[  437.302666][T12525]  ? mark_held_locks+0x49/0x80
[  437.302686][T12525]  ? __pfx___netdev_upper_dev_unlink+0x10/0x10
[  437.302705][T12525]  ? ref_tracker_free+0x37c/0x830
[  437.302721][T12525]  ? sk_skb_reason_drop+0x136/0x1a0
[  437.302735][T12525]  ? batadv_hardif_disable_interface+0x41e/0xf20
[  437.302749][T12525]  ? batadv_meshif_destroy_netlink+0xaf/0x180
[  437.302764][T12525]  ? rtnl_dellink+0x3b7/0xa80
[  437.302777][T12525]  ? rtnetlink_rcv_msg+0x95b/0xe90
[  437.302791][T12525]  ? netlink_rcv_skb+0x158/0x420
[  437.302807][T12525]  ? netlink_unicast+0x58a/0x850
[  437.302821][T12525]  ? netlink_sendmsg+0x8d1/0xdd0
[  437.302839][T12525]  netdev_upper_dev_unlink+0x83/0xb0
[  437.302858][T12525]  ? __pfx_netdev_upper_dev_unlink+0x10/0x10
[  437.302891][T12525]  batadv_hardif_disable_interface+0x4a1/0xf20
[  437.302911][T12525]  ? __pfx_batadv_hardif_disable_interface+0x10/0x10
[  437.302932][T12525]  batadv_meshif_destroy_netlink+0xaf/0x180
[  437.302951][T12525]  rtnl_dellink+0x3b7/0xa80
[  437.302965][T12525]  ? __pfx_batadv_meshif_destroy_netlink+0x10/0x10
[  437.302982][T12525]  ? __dev_queue_xmit+0x7eb/0x43e0
[  437.303000][T12525]  ? netlink_deliver_tap+0xa87/0xd30
[  437.303013][T12525]  ? netlink_unicast+0x62f/0x850
[  437.303028][T12525]  ? netlink_sendmsg+0x8d1/0xdd0
[  437.303043][T12525]  ? __pfx_rtnl_dellink+0x10/0x10
[  437.303057][T12525]  ? __x64_sys_sendmmsg+0x9c/0x100
[  437.303105][T12525]  ? __lock_acquire+0x622/0x1c90
[  437.303124][T12525]  ? rcu_is_watching+0x12/0xc0
[  437.303139][T12525]  ? trace_cap_capable+0x18d/0x200
[  437.303160][T12525]  ? find_held_lock+0x2b/0x80
[  437.303173][T12525]  ? __pfx_rtnl_dellink+0x10/0x10
[  437.303187][T12525]  ? __pfx_rtnl_dellink+0x10/0x10
[  437.303199][T12525]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  437.303215][T12525]  ? __pfx_rtnl_dellink+0x10/0x10
[  437.303230][T12525]  rtnetlink_rcv_msg+0x95b/0xe90
[  437.303247][T12525]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  437.303267][T12525]  ? ref_tracker_free+0x37c/0x830
[  437.303284][T12525]  netlink_rcv_skb+0x158/0x420
[  437.303300][T12525]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  437.303317][T12525]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  437.303340][T12525]  ? netlink_deliver_tap+0x1ae/0xd30
[  437.303359][T12525]  netlink_unicast+0x58a/0x850
[  437.303378][T12525]  ? __pfx_netlink_unicast+0x10/0x10
[  437.303399][T12525]  netlink_sendmsg+0x8d1/0xdd0
[  437.303419][T12525]  ? __pfx_netlink_sendmsg+0x10/0x10
[  437.303443][T12525]  ____sys_sendmsg+0xa95/0xc70
[  437.303461][T12525]  ? copy_msghdr_from_user+0x10a/0x160
[  437.303475][T12525]  ? __pfx_____sys_sendmsg+0x10/0x10
[  437.303492][T12525]  ? __pfx___schedule+0x10/0x10
[  437.303514][T12525]  ? kfree+0x24f/0x4d0
[  437.303546][T12525]  ___sys_sendmsg+0x134/0x1d0
[  437.303563][T12525]  ? __pfx____sys_sendmsg+0x10/0x10
[  437.303597][T12525]  ? __pfx___might_resched+0x10/0x10
[  437.303618][T12525]  __sys_sendmmsg+0x200/0x420
[  437.303636][T12525]  ? __pfx___sys_sendmmsg+0x10/0x10
[  437.303656][T12525]  ? __pfx_do_futex+0x10/0x10
[  437.303681][T12525]  ? __sys_socket+0xac/0x260
[  437.303701][T12525]  ? xfd_validate_state+0x61/0x180
[  437.303723][T12525]  __x64_sys_sendmmsg+0x9c/0x100
[  437.303737][T12525]  ? lockdep_hardirqs_on+0x7c/0x110
[  437.303750][T12525]  do_syscall_64+0xcd/0x490
[  437.303765][T12525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  437.303780][T12525] RIP: 0033:0x7fcca238e9a9
[  437.303793][T12525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  437.303807][T12525] RSP: 002b:00007fcca32d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  437.303822][T12525] RAX: ffffffffffffffda RBX: 00007fcca25b5fa0 RCX: 00007fcca238e9a9
[  437.303832][T12525] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000005
[  437.303841][T12525] RBP: 00007fcca2410d69 R08: 0000000000000000 R09: 0000000000000000
[  437.303850][T12525] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000000
[  437.303859][T12525] R13: 0000000000000000 R14: 00007fcca25b5fa0 R15: 00007fffcdc64748
[  437.303885][T12525]  </TASK>
[  438.200655][T12555] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input24
[  438.867624][T12570] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1567'.
[  438.950927][T12574] netlink: 298 bytes leftover after parsing attributes in process `syz.2.1567'.
[  439.103672][    C0] vcan0: j1939_tp_rxtimer: 0xffff888029c7fc00: rx timeout, send abort
[  439.113615][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888029c7fc00: 0x0ffff: (3) A timeout occurred and this is the connection abort to close the session.
[  439.315759][T12580] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input25
[  440.110127][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  440.116437][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  442.952401][T12641] FAULT_INJECTION: forcing a failure.
[  442.952401][T12641] name failslab, interval 1, probability 0, space 0, times 0
[  443.029596][T12641] CPU: 0 UID: 0 PID: 12641 Comm: syz.1.1581 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  443.029621][T12641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  443.029631][T12641] Call Trace:
[  443.029636][T12641]  <TASK>
[  443.029642][T12641]  dump_stack_lvl+0x16c/0x1f0
[  443.029662][T12641]  should_fail_ex+0x512/0x640
[  443.029676][T12641]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  443.029700][T12641]  should_failslab+0xc2/0x120
[  443.029716][T12641]  __kmalloc_cache_noprof+0x6a/0x3e0
[  443.029737][T12641]  ? lockdep_init_map_type+0x5c/0x280
[  443.029755][T12641]  ? userio_char_open+0xdb/0x210
[  443.029772][T12641]  ? __init_waitqueue_head+0xca/0x150
[  443.029788][T12641]  ? __pfx_userio_char_open+0x10/0x10
[  443.029803][T12641]  userio_char_open+0xdb/0x210
[  443.029819][T12641]  ? __pfx_userio_char_open+0x10/0x10
[  443.029835][T12641]  misc_open+0x35d/0x420
[  443.029855][T12641]  ? __pfx_misc_open+0x10/0x10
[  443.029874][T12641]  chrdev_open+0x231/0x6a0
[  443.029888][T12641]  ? __pfx_apparmor_file_open+0x10/0x10
[  443.029908][T12641]  ? __pfx_chrdev_open+0x10/0x10
[  443.029924][T12641]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  443.029948][T12641]  do_dentry_open+0x744/0x1c10
[  443.029962][T12641]  ? __pfx_chrdev_open+0x10/0x10
[  443.029980][T12641]  vfs_open+0x82/0x3f0
[  443.030000][T12641]  path_openat+0x1de4/0x2cb0
[  443.030020][T12641]  ? __pfx_path_openat+0x10/0x10
[  443.030034][T12641]  ? __lock_acquire+0xb8a/0x1c90
[  443.030054][T12641]  do_filp_open+0x20b/0x470
[  443.030067][T12641]  ? __pfx_do_filp_open+0x10/0x10
[  443.030094][T12641]  ? alloc_fd+0x471/0x7d0
[  443.030119][T12641]  do_sys_openat2+0x11b/0x1d0
[  443.030137][T12641]  ? __pfx_do_sys_openat2+0x10/0x10
[  443.030161][T12641]  __x64_sys_openat+0x174/0x210
[  443.030179][T12641]  ? __pfx___x64_sys_openat+0x10/0x10
[  443.030205][T12641]  do_syscall_64+0xcd/0x490
[  443.030221][T12641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  443.030235][T12641] RIP: 0033:0x7f6596b8e9a9
[  443.030247][T12641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  443.030259][T12641] RSP: 002b:00007f6597969038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  443.030282][T12641] RAX: ffffffffffffffda RBX: 00007f6596db5fa0 RCX: 00007f6596b8e9a9
[  443.030292][T12641] RDX: 0000000000002000 RSI: 0000200000000340 RDI: ffffffffffffff9c
[  443.030301][T12641] RBP: 00007f6596c10d69 R08: 0000000000000000 R09: 0000000000000000
[  443.030310][T12641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  443.030319][T12641] R13: 0000000000000000 R14: 00007f6596db5fa0 R15: 00007ffceb7b4808
[  443.030338][T12641]  </TASK>
[  444.393268][T12714] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input26
[  445.850403][T12760] netlink: 5248 bytes leftover after parsing attributes in process `syz.1.1602'.
[  446.231027][T12773] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1606'.
[  446.518202][T12778] Line length is too long: Should be less than 4094
[  446.625095][T12786] FAULT_INJECTION: forcing a failure.
[  446.625095][T12786] name failslab, interval 1, probability 0, space 0, times 0
[  446.716176][T12786] CPU: 0 UID: 0 PID: 12786 Comm: syz.3.1611 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  446.716201][T12786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  446.716210][T12786] Call Trace:
[  446.716216][T12786]  <TASK>
[  446.716222][T12786]  dump_stack_lvl+0x16c/0x1f0
[  446.716243][T12786]  should_fail_ex+0x512/0x640
[  446.716259][T12786]  ? fs_reclaim_acquire+0xae/0x150
[  446.716281][T12786]  should_failslab+0xc2/0x120
[  446.716298][T12786]  __kmalloc_cache_noprof+0x6a/0x3e0
[  446.716321][T12786]  ? tomoyo_open_control+0x415/0xa30
[  446.716340][T12786]  tomoyo_open_control+0x415/0xa30
[  446.716358][T12786]  do_dentry_open+0x744/0x1c10
[  446.716373][T12786]  ? __pfx_tomoyo_open+0x10/0x10
[  446.716390][T12786]  vfs_open+0x82/0x3f0
[  446.716410][T12786]  path_openat+0x1de4/0x2cb0
[  446.716429][T12786]  ? __pfx_path_openat+0x10/0x10
[  446.716444][T12786]  ? __lock_acquire+0xb8a/0x1c90
[  446.716471][T12786]  do_filp_open+0x20b/0x470
[  446.716486][T12786]  ? __pfx_do_filp_open+0x10/0x10
[  446.716514][T12786]  ? alloc_fd+0x471/0x7d0
[  446.716541][T12786]  do_sys_openat2+0x11b/0x1d0
[  446.716559][T12786]  ? __pfx_do_sys_openat2+0x10/0x10
[  446.716585][T12786]  __x64_sys_openat+0x174/0x210
[  446.716602][T12786]  ? __pfx___x64_sys_openat+0x10/0x10
[  446.716627][T12786]  do_syscall_64+0xcd/0x490
[  446.716643][T12786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  446.716658][T12786] RIP: 0033:0x7f7275d8e9a9
[  446.716670][T12786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  446.716683][T12786] RSP: 002b:00007f7276b10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  446.716697][T12786] RAX: ffffffffffffffda RBX: 00007f7275fb5fa0 RCX: 00007f7275d8e9a9
[  446.716706][T12786] RDX: 00000000000c0201 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  446.716714][T12786] RBP: 00007f7275e10d69 R08: 0000000000000000 R09: 0000000000000000
[  446.716722][T12786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  446.716730][T12786] R13: 0000000000000000 R14: 00007f7275fb5fa0 R15: 00007fff089490d8
[  446.716748][T12786]  </TASK>
[  446.928066][    C0] vkms_vblank_simulate: vblank timer overrun
[  446.974455][T12793] program syz.2.1613 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  446.985017][T12794] program syz.2.1613 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  447.959527][T12821] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input27
[  448.581258][T12832] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1624'.
[  448.910294][T12842] netlink: 5248 bytes leftover after parsing attributes in process `syz.3.1628'.
[  449.369342][T12854] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1631'.
[  449.640249][T12859] FAULT_INJECTION: forcing a failure.
[  449.640249][T12859] name failslab, interval 1, probability 0, space 0, times 0
[  449.773928][T12859] CPU: 0 UID: 0 PID: 12859 Comm: syz.1.1632 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  449.773952][T12859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  449.773962][T12859] Call Trace:
[  449.773967][T12859]  <TASK>
[  449.773973][T12859]  dump_stack_lvl+0x16c/0x1f0
[  449.773995][T12859]  should_fail_ex+0x512/0x640
[  449.774009][T12859]  ? fs_reclaim_acquire+0xae/0x150
[  449.774031][T12859]  should_failslab+0xc2/0x120
[  449.774048][T12859]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  449.774063][T12859]  ? security_inode_alloc+0x3b/0x2b0
[  449.774084][T12859]  security_inode_alloc+0x3b/0x2b0
[  449.774103][T12859]  inode_init_always_gfp+0xce4/0x1030
[  449.774127][T12859]  alloc_inode+0x86/0x240
[  449.774144][T12859]  sock_alloc+0x40/0x280
[  449.774161][T12859]  __sock_create+0xc1/0x8d0
[  449.774182][T12859]  __sys_socket+0x14d/0x260
[  449.774201][T12859]  ? __pfx___sys_socket+0x10/0x10
[  449.774221][T12859]  ? do_user_addr_fault+0x843/0x1370
[  449.774243][T12859]  __x64_sys_socket+0x72/0xb0
[  449.774260][T12859]  ? lockdep_hardirqs_on+0x7c/0x110
[  449.774273][T12859]  do_syscall_64+0xcd/0x490
[  449.774288][T12859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  449.774303][T12859] RIP: 0033:0x7f6596b908c7
[  449.774315][T12859] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  449.774328][T12859] RSP: 002b:00007f6597946fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[  449.774341][T12859] RAX: ffffffffffffffda RBX: 00007f6596db6080 RCX: 00007f6596b908c7
[  449.774351][T12859] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  449.774359][T12859] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[  449.774367][T12859] R10: 0000200000000080 R11: 0000000000000286 R12: 0000000000000000
[  449.774375][T12859] R13: 0000000000000000 R14: 00007f6596db6080 R15: 00007ffceb7b4808
[  449.774392][T12859]  </TASK>
[  449.774415][T12859] socket: no more sockets
[  449.917606][    C0] vkms_vblank_simulate: vblank timer overrun
[  450.903196][T12923] Process accounting paused
[  454.336155][T13039] FAULT_INJECTION: forcing a failure.
[  454.336155][T13039] name failslab, interval 1, probability 0, space 0, times 0
[  454.426127][T13039] CPU: 0 UID: 0 PID: 13039 Comm: syz.1.1651 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  454.426151][T13039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  454.426160][T13039] Call Trace:
[  454.426166][T13039]  <TASK>
[  454.426172][T13039]  dump_stack_lvl+0x16c/0x1f0
[  454.426192][T13039]  should_fail_ex+0x512/0x640
[  454.426208][T13039]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  454.426225][T13039]  should_failslab+0xc2/0x120
[  454.426242][T13039]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  454.426256][T13039]  ? __kernfs_new_node+0xd2/0x8e0
[  454.426282][T13039]  __kernfs_new_node+0xd2/0x8e0
[  454.426309][T13039]  ? __pfx___kernfs_new_node+0x10/0x10
[  454.426334][T13039]  ? find_held_lock+0x2b/0x80
[  454.426351][T13039]  ? kernfs_root+0xee/0x2a0
[  454.426367][T13039]  kernfs_new_node+0x13c/0x1e0
[  454.426387][T13039]  __kernfs_create_file+0x53/0x350
[  454.426407][T13039]  sysfs_add_file_mode_ns+0x207/0x3c0
[  454.426432][T13039]  sysfs_merge_group+0x1aa/0x340
[  454.426446][T13039]  ? __pfx_sysfs_merge_group+0x10/0x10
[  454.426465][T13039]  ? __pfx_dev_add_physical_location+0x10/0x10
[  454.426491][T13039]  ? bus_to_subsys+0x131/0x160
[  454.426515][T13039]  dpm_sysfs_add+0x237/0x280
[  454.426534][T13039]  device_add+0x9a6/0x1a70
[  454.426554][T13039]  ? __pfx_device_add+0x10/0x10
[  454.426571][T13039]  ? lockdep_init_map_type+0x5c/0x280
[  454.426590][T13039]  ? __init_waitqueue_head+0xca/0x150
[  454.426608][T13039]  rfkill_register+0x1ad/0xb40
[  454.426629][T13039]  nfc_register_device+0x11f/0x3c0
[  454.426646][T13039]  nci_register_device+0x7f1/0xb80
[  454.426668][T13039]  ? __pfx_nci_register_device+0x10/0x10
[  454.426690][T13039]  ? lockdep_init_map_type+0x5c/0x280
[  454.426713][T13039]  virtual_ncidev_open+0x141/0x220
[  454.426734][T13039]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  454.426753][T13039]  misc_open+0x35d/0x420
[  454.426773][T13039]  ? __pfx_misc_open+0x10/0x10
[  454.426792][T13039]  chrdev_open+0x231/0x6a0
[  454.426806][T13039]  ? __pfx_apparmor_file_open+0x10/0x10
[  454.426827][T13039]  ? __pfx_chrdev_open+0x10/0x10
[  454.426843][T13039]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  454.426866][T13039]  do_dentry_open+0x744/0x1c10
[  454.426881][T13039]  ? __pfx_chrdev_open+0x10/0x10
[  454.426899][T13039]  vfs_open+0x82/0x3f0
[  454.426919][T13039]  path_openat+0x1de4/0x2cb0
[  454.426940][T13039]  ? __pfx_path_openat+0x10/0x10
[  454.426954][T13039]  ? __lock_acquire+0xb8a/0x1c90
[  454.426973][T13039]  do_filp_open+0x20b/0x470
[  454.426987][T13039]  ? __pfx_do_filp_open+0x10/0x10
[  454.427015][T13039]  ? alloc_fd+0x471/0x7d0
[  454.427041][T13039]  do_sys_openat2+0x11b/0x1d0
[  454.427058][T13039]  ? __pfx_do_sys_openat2+0x10/0x10
[  454.427083][T13039]  __x64_sys_openat+0x174/0x210
[  454.427101][T13039]  ? __pfx___x64_sys_openat+0x10/0x10
[  454.427126][T13039]  do_syscall_64+0xcd/0x490
[  454.427142][T13039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  454.427156][T13039] RIP: 0033:0x7f6596b8e9a9
[  454.427169][T13039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  454.427182][T13039] RSP: 002b:00007f6597969038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  454.427196][T13039] RAX: ffffffffffffffda RBX: 00007f6596db5fa0 RCX: 00007f6596b8e9a9
[  454.427206][T13039] RDX: 0000000000000002 RSI: 0000200000000500 RDI: ffffffffffffff9c
[  454.427215][T13039] RBP: 00007f6596c10d69 R08: 0000000000000000 R09: 0000000000000000
[  454.427224][T13039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  454.427233][T13039] R13: 0000000000000000 R14: 00007f6596db5fa0 R15: 00007ffceb7b4808
[  454.427252][T13039]  </TASK>
[  454.780876][    C0] vkms_vblank_simulate: vblank timer overrun
[  456.046773][T13061] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1656'.
[  456.295384][T13067] batman_adv: Routing algorithm '' is not supported
[  460.330226][T13163] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1680'.
[  460.432345][T13163] HfR: entered promiscuous mode
[  461.127244][T13157] Process accounting paused
[  462.780848][T13207] Process accounting resumed
[  462.971202][T13239] Invalid ELF header magic: != ELF
[  464.518689][T13270] ubi0: attaching mtd0
[  464.525110][T13270] ubi0: scanning is finished
[  464.582502][T13270] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  464.847737][T13270] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  465.228545][T13291] FAULT_INJECTION: forcing a failure.
[  465.228545][T13291] name failslab, interval 1, probability 0, space 0, times 0
[  465.342183][T13291] CPU: 0 UID: 0 PID: 13291 Comm: syz.1.1709 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  465.342206][T13291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  465.342216][T13291] Call Trace:
[  465.342221][T13291]  <TASK>
[  465.342227][T13291]  dump_stack_lvl+0x16c/0x1f0
[  465.342255][T13291]  should_fail_ex+0x512/0x640
[  465.342270][T13291]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  465.342289][T13291]  should_failslab+0xc2/0x120
[  465.342305][T13291]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  465.342320][T13291]  ? __d_alloc+0x31/0xaa0
[  465.342338][T13291]  __d_alloc+0x31/0xaa0
[  465.342355][T13291]  d_alloc+0x4a/0x1e0
[  465.342370][T13291]  d_alloc_parallel+0xe3/0x12e0
[  465.342394][T13291]  ? find_held_lock+0x2b/0x80
[  465.342409][T13291]  ? __pfx_d_alloc_parallel+0x10/0x10
[  465.342429][T13291]  ? __d_lookup+0x266/0x4a0
[  465.342451][T13291]  lookup_open.isra.0+0x665/0x1580
[  465.342475][T13291]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  465.342505][T13291]  ? mnt_get_write_access+0x20c/0x300
[  465.342525][T13291]  path_openat+0x893/0x2cb0
[  465.342545][T13291]  ? __pfx_path_openat+0x10/0x10
[  465.342559][T13291]  ? __lock_acquire+0xb8a/0x1c90
[  465.342579][T13291]  do_filp_open+0x20b/0x470
[  465.342592][T13291]  ? __pfx_do_filp_open+0x10/0x10
[  465.342613][T13291]  ? __pfx_kfree_link+0x10/0x10
[  465.342635][T13291]  ? alloc_fd+0x471/0x7d0
[  465.342660][T13291]  do_sys_openat2+0x11b/0x1d0
[  465.342678][T13291]  ? __pfx_do_sys_openat2+0x10/0x10
[  465.342703][T13291]  __x64_sys_openat+0x174/0x210
[  465.342721][T13291]  ? __pfx___x64_sys_openat+0x10/0x10
[  465.342746][T13291]  do_syscall_64+0xcd/0x490
[  465.342761][T13291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  465.342775][T13291] RIP: 0033:0x7f6596b8e9a9
[  465.342787][T13291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  465.342800][T13291] RSP: 002b:00007f6597926038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  465.342813][T13291] RAX: ffffffffffffffda RBX: 00007f6596db6160 RCX: 00007f6596b8e9a9
[  465.342823][T13291] RDX: 0000000000040002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  465.342831][T13291] RBP: 00007f6596c10d69 R08: 0000000000000000 R09: 0000000000000000
[  465.342839][T13291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  465.342847][T13291] R13: 0000000000000000 R14: 00007f6596db6160 R15: 00007ffceb7b4808
[  465.342865][T13291]  </TASK>
[  465.587224][    C0] vkms_vblank_simulate: vblank timer overrun
[  466.519517][T13325] netlink: zone id is out of range
[  466.560625][T13325] netlink: zone id is out of range
[  466.565801][T13325] netlink: zone id is out of range
[  466.645456][T13325] netlink: zone id is out of range
[  466.663245][T13325] netlink: zone id is out of range
[  466.683135][T13325] netlink: zone id is out of range
[  466.700695][T13325] netlink: zone id is out of range
[  466.712526][T13325] netlink: zone id is out of range
[  466.723400][T13325] netlink: zone id is out of range
[  466.738291][T13325] netlink: zone id is out of range
[  466.985474][T13311] Process accounting resumed
[  468.354205][T13363] bridge0: port 4(batadv0) entered blocking state
[  468.371317][T13363] bridge0: port 4(batadv0) entered disabled state
[  468.405494][T13363] batadv0: entered allmulticast mode
[  468.442585][T13363] batadv0: entered promiscuous mode
[  468.457783][T13363] bridge0: port 4(batadv0) entered blocking state
[  468.464339][T13363] bridge0: port 4(batadv0) entered forwarding state
[  469.809113][T13393] vhci_hcd: invalid port number 16
[  469.830893][T13393] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[  472.305088][T13445] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1753'.
[  473.343755][ T8971] Bluetooth: hci2: ISO packet for unknown connection handle 0
[  474.872197][T13513] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input28
[  475.430203][T13505] Process accounting resumed
[  475.733696][T13539] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1778'.
[  477.386288][T13576] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1785'.
[  477.411264][T13578] FAULT_INJECTION: forcing a failure.
[  477.411264][T13578] name failslab, interval 1, probability 0, space 0, times 0
[  477.478170][T13578] CPU: 0 UID: 0 PID: 13578 Comm: syz.0.1786 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  477.478194][T13578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  477.478203][T13578] Call Trace:
[  477.478208][T13578]  <TASK>
[  477.478215][T13578]  dump_stack_lvl+0x16c/0x1f0
[  477.478236][T13578]  should_fail_ex+0x512/0x640
[  477.478251][T13578]  ? fs_reclaim_acquire+0xae/0x150
[  477.478274][T13578]  should_failslab+0xc2/0x120
[  477.478290][T13578]  __kmalloc_cache_noprof+0x6a/0x3e0
[  477.478312][T13578]  ? tomoyo_open_control+0x415/0xa30
[  477.478331][T13578]  tomoyo_open_control+0x415/0xa30
[  477.478350][T13578]  do_dentry_open+0x744/0x1c10
[  477.478365][T13578]  ? __pfx_tomoyo_open+0x10/0x10
[  477.478382][T13578]  vfs_open+0x82/0x3f0
[  477.478401][T13578]  path_openat+0x1de4/0x2cb0
[  477.478421][T13578]  ? __pfx_path_openat+0x10/0x10
[  477.478435][T13578]  ? __lock_acquire+0xb8a/0x1c90
[  477.478456][T13578]  do_filp_open+0x20b/0x470
[  477.478470][T13578]  ? __pfx_do_filp_open+0x10/0x10
[  477.478497][T13578]  ? alloc_fd+0x471/0x7d0
[  477.478522][T13578]  do_sys_openat2+0x11b/0x1d0
[  477.478539][T13578]  ? __pfx_do_sys_openat2+0x10/0x10
[  477.478564][T13578]  __x64_sys_openat+0x174/0x210
[  477.478581][T13578]  ? __pfx___x64_sys_openat+0x10/0x10
[  477.478607][T13578]  do_syscall_64+0xcd/0x490
[  477.478623][T13578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  477.478638][T13578] RIP: 0033:0x7fcca238e9a9
[  477.478650][T13578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  477.478663][T13578] RSP: 002b:00007fcca32d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  477.478677][T13578] RAX: ffffffffffffffda RBX: 00007fcca25b5fa0 RCX: 00007fcca238e9a9
[  477.478688][T13578] RDX: 00000000000c0201 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  477.478697][T13578] RBP: 00007fcca2410d69 R08: 0000000000000000 R09: 0000000000000000
[  477.478706][T13578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  477.478714][T13578] R13: 0000000000000000 R14: 00007fcca25b5fa0 R15: 00007fffcdc64748
[  477.478733][T13578]  </TASK>
[  477.698121][    C0] vkms_vblank_simulate: vblank timer overrun
[  478.083919][T13596] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input29
[  479.882341][T13637] ==================================================================
[  479.890434][T13637] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x13a9/0x15f0
[  479.899105][T13637] Read of size 1 at addr ffff88807cdfb364 by task syz.0.1798/13637
[  479.907005][T13637] 
[  479.909322][T13637] CPU: 0 UID: 0 PID: 13637 Comm: syz.0.1798 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  479.909342][T13637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  479.909351][T13637] Call Trace:
[  479.909358][T13637]  <TASK>
[  479.909364][T13637]  dump_stack_lvl+0x116/0x1f0
[  479.909383][T13637]  print_report+0xcd/0x610
[  479.909400][T13637]  ? __virt_addr_valid+0x81/0x610
[  479.909415][T13637]  ? __phys_addr+0xe8/0x180
[  479.909430][T13637]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  479.909449][T13637]  kasan_report+0xe0/0x110
[  479.909464][T13637]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  479.909483][T13637]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[  479.909504][T13637]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  479.909523][T13637]  ? find_held_lock+0x2b/0x80
[  479.909536][T13637]  ? __might_fault+0xe3/0x190
[  479.909549][T13637]  ? __might_fault+0xe3/0x190
[  479.909561][T13637]  ? __might_fault+0x13b/0x190
[  479.909576][T13637]  ? proc_simple_write+0x117/0x1b0
[  479.909592][T13637]  proc_simple_write+0x117/0x1b0
[  479.909608][T13637]  ? __pfx_proc_simple_write+0x10/0x10
[  479.909624][T13637]  proc_reg_write+0x23d/0x330
[  479.909638][T13637]  ? __pfx_proc_reg_write+0x10/0x10
[  479.909651][T13637]  vfs_write+0x29d/0x1150
[  479.909665][T13637]  ? __pfx___mutex_lock+0x10/0x10
[  479.909679][T13637]  ? __pfx_vfs_write+0x10/0x10
[  479.909693][T13637]  ? __fget_files+0x20e/0x3c0
[  479.909715][T13637]  ksys_write+0x12a/0x250
[  479.909727][T13637]  ? __pfx_ksys_write+0x10/0x10
[  479.909742][T13637]  do_syscall_64+0xcd/0x490
[  479.909756][T13637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  479.909770][T13637] RIP: 0033:0x7fcca238e9a9
[  479.909783][T13637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  479.909797][T13637] RSP: 002b:00007fcca32b8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  479.909827][T13637] RAX: ffffffffffffffda RBX: 00007fcca25b6080 RCX: 00007fcca238e9a9
[  479.909838][T13637] RDX: 0000000000000003 RSI: 0000200000000300 RDI: 0000000000000004
[  479.909846][T13637] RBP: 00007fcca2410d69 R08: 0000000000000000 R09: 0000000000000000
[  479.909855][T13637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  479.909865][T13637] R13: 0000000000000000 R14: 00007fcca25b6080 R15: 00007fffcdc64748
[  479.909878][T13637]  </TASK>
[  479.909883][T13637] 
[  480.144823][T13637] Allocated by task 13637:
[  480.149237][T13637]  kasan_save_stack+0x33/0x60
[  480.153910][T13637]  kasan_save_track+0x14/0x30
[  480.158614][T13637]  __kasan_kmalloc+0xaa/0xb0
[  480.163209][T13637]  __kmalloc_node_track_caller_noprof+0x221/0x510
[  480.169614][T13637]  memdup_user_nul+0x2b/0x120
[  480.174278][T13637]  proc_simple_write+0xc7/0x1b0
[  480.179133][T13637]  proc_reg_write+0x23d/0x330
[  480.183814][T13637]  vfs_write+0x29d/0x1150
[  480.188130][T13637]  ksys_write+0x12a/0x250
[  480.192442][T13637]  do_syscall_64+0xcd/0x490
[  480.196930][T13637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  480.202827][T13637] 
[  480.205148][T13637] The buggy address belongs to the object at ffff88807cdfb360
[  480.205148][T13637]  which belongs to the cache kmalloc-8 of size 8
[  480.218844][T13637] The buggy address is located 0 bytes to the right of
[  480.218844][T13637]  allocated 4-byte region [ffff88807cdfb360, ffff88807cdfb364)
[  480.233149][T13637] 
[  480.235546][T13637] The buggy address belongs to the physical page:
[  480.241946][T13637] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7cdfb
[  480.250692][T13637] anon flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  480.258218][T13637] page_type: f5(slab)
[  480.262196][T13637] raw: 00fff00000000000 ffff88801b841500 0000000000000000 dead000000000001
[  480.270784][T13637] raw: 0000000000000000 0000000080800080 00000000f5000000 0000000000000000
[  480.279347][T13637] page dumped because: kasan: bad access detected
[  480.285757][T13637] page_owner tracks the page as allocated
[  480.291462][T13637] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5846, tgid 5846 (syz-executor), ts 148809323885, free_ts 148809311782
[  480.310912][T13637]  post_alloc_hook+0x1c0/0x230
[  480.315673][T13637]  get_page_from_freelist+0x1321/0x3890
[  480.321203][T13637]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  480.327104][T13637]  alloc_pages_mpol+0x1fb/0x550
[  480.331954][T13637]  new_slab+0x23b/0x330
[  480.336123][T13637]  ___slab_alloc+0xd9c/0x1940
[  480.340787][T13637]  __slab_alloc.constprop.0+0x56/0xb0
[  480.346409][T13637]  __kmalloc_node_noprof+0x2ed/0x500
[  480.351678][T13637]  __vmalloc_node_range_noprof+0x3e5/0x14b0
[  480.357562][T13637]  __vmalloc_node_noprof+0xad/0xf0
[  480.362677][T13637]  do_ip6t_get_ctl+0x63f/0xa50
[  480.367439][T13637]  nf_getsockopt+0x79/0xe0
[  480.371849][T13637]  ipv6_getsockopt+0x1f7/0x280
[  480.376605][T13637]  tcp_getsockopt+0x9e/0x100
[  480.381195][T13637]  do_sock_getsockopt+0x34a/0x440
[  480.386210][T13637]  __sys_getsockopt+0x123/0x1b0
[  480.391043][T13637] page last free pid 5846 tgid 5846 stack trace:
[  480.397436][T13637]  __free_frozen_pages+0x7fe/0x1180
[  480.402631][T13637]  kasan_populate_vmalloc+0x13d/0x1f0
[  480.407996][T13637]  alloc_vmap_area+0x959/0x29c0
[  480.412835][T13637]  __get_vm_area_node+0x1ca/0x330
[  480.417846][T13637]  __vmalloc_node_range_noprof+0x271/0x14b0
[  480.423734][T13637]  __vmalloc_node_noprof+0xad/0xf0
[  480.428832][T13637]  do_ip6t_get_ctl+0x63f/0xa50
[  480.433585][T13637]  nf_getsockopt+0x79/0xe0
[  480.438166][T13637]  ipv6_getsockopt+0x1f7/0x280
[  480.442916][T13637]  tcp_getsockopt+0x9e/0x100
[  480.447491][T13637]  do_sock_getsockopt+0x34a/0x440
[  480.452520][T13637]  __sys_getsockopt+0x123/0x1b0
[  480.457355][T13637]  __x64_sys_getsockopt+0xbd/0x160
[  480.462451][T13637]  do_syscall_64+0xcd/0x490
[  480.466947][T13637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  480.472828][T13637] 
[  480.475136][T13637] Memory state around the buggy address:
[  480.480749][T13637]  ffff88807cdfb200: 00 fc fc fc 00 fc fc fc fa fc fc fc fa fc fc fc
[  480.488800][T13637]  ffff88807cdfb280: 05 fc fc fc 05 fc fc fc 00 fc fc fc 05 fc fc fc
[  480.496844][T13637] >ffff88807cdfb300: fa fc fc fc 05 fc fc fc 05 fc fc fc 04 fc fc fc
[  480.504891][T13637]                                                        ^
[  480.512068][T13637]  ffff88807cdfb380: fa fc fc fc fa fc fc fc 05 fc fc fc fa fc fc fc
[  480.520117][T13637]  ffff88807cdfb400: 00 fc fc fc 06 fc fc fc fa fc fc fc 05 fc fc fc
[  480.528159][T13637] ==================================================================
[  481.049100][T13632] Process accounting resumed
[  481.430122][T13637] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  481.437349][T13637] CPU: 0 UID: 0 PID: 13637 Comm: syz.0.1798 Not tainted 6.16.0-rc7-syzkaller-00093-g94ce1ac2c9b4 #0 PREEMPT(full) 
[  481.449406][T13637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  481.459448][T13637] Call Trace:
[  481.462713][T13637]  <TASK>
[  481.465629][T13637]  dump_stack_lvl+0x3d/0x1f0
[  481.470215][T13637]  panic+0x71c/0x800
[  481.474101][T13637]  ? __pfx_panic+0x10/0x10
[  481.478506][T13637]  ? mark_held_locks+0x49/0x80
[  481.483261][T13637]  ? preempt_schedule_thunk+0x16/0x30
[  481.488622][T13637]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  481.494615][T13637]  ? preempt_schedule_common+0x44/0xc0
[  481.500072][T13637]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  481.506040][T13637]  check_panic_on_warn+0xab/0xb0
[  481.510970][T13637]  end_report+0x107/0x170
[  481.515286][T13637]  kasan_report+0xee/0x110
[  481.519686][T13637]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  481.525662][T13637]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[  481.531463][T13637]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  481.537607][T13637]  ? find_held_lock+0x2b/0x80
[  481.542269][T13637]  ? __might_fault+0xe3/0x190
[  481.546940][T13637]  ? __might_fault+0xe3/0x190
[  481.551603][T13637]  ? __might_fault+0x13b/0x190
[  481.556357][T13637]  ? proc_simple_write+0x117/0x1b0
[  481.561458][T13637]  proc_simple_write+0x117/0x1b0
[  481.566417][T13637]  ? __pfx_proc_simple_write+0x10/0x10
[  481.571865][T13637]  proc_reg_write+0x23d/0x330
[  481.576529][T13637]  ? __pfx_proc_reg_write+0x10/0x10
[  481.581714][T13637]  vfs_write+0x29d/0x1150
[  481.586043][T13637]  ? __pfx___mutex_lock+0x10/0x10
[  481.591176][T13637]  ? __pfx_vfs_write+0x10/0x10
[  481.595930][T13637]  ? __fget_files+0x20e/0x3c0
[  481.600621][T13637]  ksys_write+0x12a/0x250
[  481.604941][T13637]  ? __pfx_ksys_write+0x10/0x10
[  481.609786][T13637]  do_syscall_64+0xcd/0x490
[  481.614278][T13637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  481.620160][T13637] RIP: 0033:0x7fcca238e9a9
[  481.624823][T13637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  481.644420][T13637] RSP: 002b:00007fcca32b8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  481.652828][T13637] RAX: ffffffffffffffda RBX: 00007fcca25b6080 RCX: 00007fcca238e9a9
[  481.660880][T13637] RDX: 0000000000000003 RSI: 0000200000000300 RDI: 0000000000000004
[  481.668840][T13637] RBP: 00007fcca2410d69 R08: 0000000000000000 R09: 0000000000000000
[  481.676810][T13637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  481.684775][T13637] R13: 0000000000000000 R14: 00007fcca25b6080 R15: 00007fffcdc64748
[  481.692741][T13637]  </TASK>
[  481.695835][T13637] Kernel Offset: disabled
[  481.700150][T13637] Rebooting in 86400 seconds..