last executing test programs:

2m33.572004919s ago: executing program 2 (id=1682):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
close_range$auto(r0, 0x8, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/rpc/auth.rpcsec.init/flush\x00', 0xb4300, 0x0)
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
socketpair$auto(0x1, 0x0, 0xfffffffc, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0)
r2 = socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
shutdown$auto(0x200000003, 0x2)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000400)='/dev/bus/usb/019/001\x00', 0x80, 0x0)
r4 = open_by_handle_at$auto(r3, &(0x7f0000000440)={0xd, 0x9, "e34a691d34dd39864ace519d11"}, 0x7)
getegid()
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpu1/topology/thread_siblings\x00', 0x400, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000040)=""/205, 0xcd)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r7 = bpf$auto(0x7fff, &(0x7f0000000480)=@bpf_attr_1={r2, 0x5, @next_key=0x3, 0x2}, 0x2)
sendmsg$auto_CGROUPSTATS_CMD_GET(r4, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000380)={&(0x7f0000000280)={0x1c, 0x0, 0x8, 0x70bd2d, 0x25dfdbfb, {}, [@CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x42000}, 0x40)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vkms/graphics/fb0/modes\x00', 0x129102, 0x0)
write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x5, 0x406, 0xfffe, 0x10001, 0x2, 0x6d3e, 0x3, 0x2, 0x4]}, 0x0)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0)
ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000240)='/dev/admmidi2\x00', 0x101000, 0x0)

2m32.410771114s ago: executing program 2 (id=1686):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x23, 0x5, 0x2009, 0x0, 0x0)
r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/numa_maps\x00', 0x20000, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r3, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(r3, 0x8926, r3)
read$auto_proc_sessionid_operations_base(r2, &(0x7f00000000c0)=""/4096, 0x1000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0xfffffffffffffffd, 0x2003f0, 0xffffff04)
madvise$auto(0x0, 0x200007, 0x19)
r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, &(0x7f0000006940)={0x0, 0x0, &(0x7f0000006900)={&(0x7f0000006980)=ANY=[@ANYRES16=r4, @ANYBLOB="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"], 0x124c}, 0x1, 0x0, 0x0, 0x20000041}, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7ef)
ioperm$auto(0x7, 0x5ad2, 0xc)
modify_ldt$auto(0x40, 0x0, 0x7ff)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r5, 0x0, 0x101fb, 0x8800000005)

2m30.401982368s ago: executing program 2 (id=1692):
unshare$auto(0x40000080)
r0 = prctl$auto_SECCOMP_MODE_FILTER(0x4786, 0x2, 0xffffffffffffffff, 0x80000001, 0x81)
mmap$auto(0x0, 0x40000b, 0x80de, 0x9b72, r0, 0x800008000)
socket(0xa, 0x801, 0x84)
prctl$auto_PR_SET_SECCOMP(0x16, 0x7, 0xffffffffffffffff, 0xbc, 0xfff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/036/001\x00', 0x6000, 0x0)
clone$auto(0xffffffff00000000, 0x12, 0x0, 0x0, 0xfffffffffffffffd)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008)
r1 = socket(0x29, 0x2, 0x0)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_ADD(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB='\x00\b'], 0x14}, 0x1, 0x0, 0x0, 0x20000090}, 0x20044000)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(r2, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptyp5\x00', 0x48140, 0x0)
ioctl$auto(r1, 0x89f0, 0x24)

2m27.748647744s ago: executing program 2 (id=1700):
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (fail_nth: 8)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000)
prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0030e5", @ANYRES16=r1], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
mmap$auto(0x1, 0x3, 0x1, 0xe31, 0xffffffffffffffff, 0xe0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0)
socket(0x2, 0x5, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dmmidi2\x00', 0x101, 0x0)
socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x3, 0xa00006, 0x4, 0x40eb1, 0x602, 0x300000000000)
ioprio_set$auto(0x2, 0x0, 0x208)

2m25.788069109s ago: executing program 2 (id=1706):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000380)='/dev/audio1\x00', 0x100, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x2282, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0)
r1 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000004680)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x502, 0x0)
write$auto_dynamic_events_ops_trace_dynevent(r1, &(0x7f0000001680)="65a90950732f", 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000016c0)='/dev/mtd0\x00', 0x28082, 0x0)
ioctl$auto(r2, 0x40084d02, r2)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video26\x00', 0x444100, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/lockd/parameters/nlm_grace_period\x00', 0x8001, 0x0)
r3 = socket(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000280)={'veth1_to_bridge\x00', <r4=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, 0xffffffffffffffff, 0x4, 0x401, <r5=>r3, @relative_id=0x13, 0xe600}, 0xf)
r6 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000002c0), r3)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_SESSION_MODIFY(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r8, 0x41, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x44008840}, 0x0)
r9 = geteuid()
sendmsg$auto_NL802154_CMD_GET_INTERFACE(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000300)={&(0x7f0000001700)=ANY=[@ANYBLOB="84120000a33fe4f7cefa1df2c368b1c40f3119362225be40adaa35c80a81424bf09a538742986e681ce46bde3217d7766a046cc32a628a12513f66799f713f7a649e0b41623c979571535d31c2b3c7f5060000f8385b3ef9a52286758678cf8f0bd3a1055b47f9c3473f035d082427005c187888e6c3c7a40f58a2b3beb7274eb6ebba33b20b0eabc44668e6740e64b7ec552c", @ANYRES16=r6, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="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", @ANYRES32=r9, @ANYBLOB="87cc12c7f10630fa15d453fcd7a8c94e1bac07d25bc3c51882a1b482931346e68b7e38fe0caf54d2645bb438188023279bd8a502b694e3491e04571c0d32c13d7727ee920cb7b365085f18cfd2110f7d59482a80cbcb98be432510daa516b52a835d2ba45024be76c7169311dfba0272bee3aacac62bd30894903060482f381b3e1ec67bc6bdc08e44f56e511cd8ff57ef56e9000000080021"], 0x1284}, 0x1, 0x0, 0x0, 0x48001}, 0x800)
write$auto(r0, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r10 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="130008000300", @ANYRES32, @ANYBLOB="0800610002"], 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x20040894)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

2m25.302967775s ago: executing program 2 (id=1709):
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, 0x0)
unshare$auto(0x40000080)
socket(0x1e, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, &(0x7f0000006940)={0x0, 0x0, &(0x7f0000006900)={&(0x7f0000006980)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd7000ffdbdf250300000038121c8084100580801000802400048008000200070000000c00030005000000000000000400050004000500040005004700010015498343c724307734086992dc1e25a2a9103e4bf48686438120218fc18eb8d92081607cef938d982b98b2ffabb3d4697d0e992a1ea9d3b471e918ae07e413f97503f800040004800800048004000500041001001fb5becd41368ab779a0b29218e67556fc4604877ebfcbd398c11fb77c35a8bf6e74ddc9b04a9138098aecf779ea7e3d541edf3023425cada97c0dc587c6fa47716dd359907f0a162a0b886614c1a7e9546da002cc83e2ed566b0379129f985c460fbbf435e700a4b5580b8a56632571928f8f21f4d11364a0ef75b476ff3956f1c7da142f79c10a4876ffcc63f2d86a0e69b888fc4f296dee02ad8557cdbfb9f0235a183eca304867b40759629cbc72b1502c43b99766ba6d68b0c0ab3c3f028eac0d0571801e5df2a1d739c243a58bf16cfb3859743e905b7ba869f46438f8ae3034bf72d5e80c5484943de2b70c62ef38e5219cc8006f282faca545419374470f9a70397a1f81bc4623e08269594bbebf9b08b81b87ccaebf876dcaf1fa4562e3163b353cb8ff91dba36cfd929ec300388d9224fe45abcc42e157398da0642301b14d590dd9a490eeb4555c64ae48caedffd84b246834f69dfa63f173ce93ba2775a6f4aba2492fe9d62fcae89dab6719935a28c2d614d93e984df4b3a292e0e5d6754a30e52d52b951092a4df3b6abb5c8b74740d551a77c41d02f0ea667e8acb61eac844c20151dac7c08ae95aed291d11cd81365501d3fb0120e11566f94afe38fb008e05536f93364d00a43b8f486bd9aeed50d5a38947982f5f700f06aa7d6783f30abda22a3c9948a274bfae36f6a66c3229520089d65cbddde93a28dd2a72e93bc6c0d9b98f49c9d771f73b1d4dcb6c06829b15422f0c596401ba563a88ded070e2a05a79c8070085502fb3ca34fc767ff2d3b490bb9a6abc3019eefaa4bd9f345f6b94d597166754c5f95140dc5fa9ce51a7cc3257885d074c7cdfd88bb400fd6dbe2d4a830134967cacad9beaff366bf7e3b0a4fa0526473a70c1f44e343a5b9fadf9fc536113772f0f7b0bf16f9b7a7dd8eaa5f7fd9cf259565247f0e58375156005c30e25691d7f8fbd489af83a18f71a38b1996be1ca10bdcbe8d850603d9b81ba828c907753483e9ff23d1d861c36d8045acadaa640a61357fcf9aed13afdf56d13861dd74ce620e592230d3c8699e9adccf2920614ae13c1e3e88a830f36bfcd40ff7c767995044f2ba1661c5f977d9754c58a0d9dd7aad1fbfd94d36dfc61c532c5cb3093ccc0c125ee0e762469f8680500675d4404db12b7062c19c4f0c81c0de489b5eb725f1d7d4cbe7a1f4b51fe8faffb6a709c0a7a4ae7efe75bc66d6c2e705fbee29c0858d9891735c97a28aa15c16fa0444ac2caeeffae42f1fbf0f17adbc9ee40236a844add60741eb64c722811c6f9fd7d614f9620d6f07914b6e7d5eb5dc3d7d6d5f5323575a7c9f864d9d5793d4ca606ab3234930a32e44d8a08d624861a6b94c72f551e7adc8daee91594175bdba18c663ced5991c0846f1c03a96b5d8f858c10dea4886e12ee90186d2130891eb1b354abb1040dd571589b4b7884b31cff7f8b3cdef5a61bc9644883c852106d9be09e5f4d649c669a64fadd3a9b129ab1c956e33dd5ac7224439feb0ccae51aa092c36b4e8d720170d20c22a49e5919d203b312096d625e4316f141f26a9257af159b3c47e025fa40d0150b7dd969d2ec67c727b81653f679f6ebbf8b3ad9c3b0acf232d1b869982879c4a2722cc1e4f0740e9d0feb661e45c5b081ad0546761e6a025529086ca4d38a4b22193e792bbfe6ceb22be5ca954210d0f93f5e38550054b6ae80e64673158815af6cd6adc3b942b4371d33d9662ac80e3ef2eb4acd44ec66cb6d8948d67c3ba8e578f52ac30ab107723e5ce51c4e6d59b20ba7085fd8dbde58cf9a0bd3385e95db6b56a9a68e3160ad36a93e26dc8b915cd4e4767d3dbd3b74052f55e3a74b1edb1068c973a5ca70809c6aeab8ad627955a815315330c51153dcdcb6e77029b0a3712a9231f0c188659e5bb9f89b6a8fd91536a47db7e5d596fa93f0719502e442417ee11bfcb364c6ddadfc8581ce7779d107d6f7aa8739c3254ce9b1e2dbbc1e75566b6d80817e1820e02e8df220e1c9b2d98a15e9db86c5a32bf52b0f1de1be7636cb21e87d777fa1e7828be02578cac204a8e9c7ca6119aa0bdd165bbf7d0f799f0d2ae118bd9037982c1fed3e223b60cc86f21e8c1d9336cb76cb521bc9791abcd99af0bf70a198de0d678cc8bdc0f74fef28407bf09d93054d5e20f5452fad596ae036bec1109e4541d5cb9d287b5498934fad3963a53030dc2264668467716afee211f4dc8082800be3829050b2e26c447b001c076dda2e2b7f17c96612b0f594b6ef5193c5dc3affa5778896e1e40a3953e5557d39799c312b4126a6086dd85393ed3322a48ca0afb9e5dd96ac9461dc7cfc8b02a23b7a1486ea8c9bb204e39298b1017a67a8c1cf1e0582c6b8d95a611c0053eccc9592e1af600e4386680be35c29acfd9033058a4842006fe429188e6a4783a9bf5fd7d1c36c0530f6a42be785419ef2192ffe02470d376f084a4352cdc7e34b9f4891304499b1e0946832b187762d191d7e9cd9cc9112ad768e5132f804f304a9ba0572d0e1c7eac6ff606baf0f0f2e1c836d9a9f7f01fe748dd5ae7b34ed6d51f6e4c8575de14c8552026c4c82516080d919a706fa62958742cc2843ce88c04a19cb66781f2b75d9a81d3f4f2c078e35bacf3a69dc717b61c9c9557d82bdaa636fe80e37f41d63f2388da0b79555f2b3d2b7b30db6d2837aecd455814118a737d3d2845704f4b8a7156dd582477d0b9f0d2622b1f963d243c73646d35dd25547446fa94f47b63637e37b9c61ed88c97b185f9b8d09ffd768cd1c79ab31ff33e82423872f4b2642a1530a248b1dac5a776d5c5d6381e38f01fe8b23921c7b52175619bfe522c945e45ea5a0d35f35fb7c7f772f32657b8b936de258ab52fcf2bc4973c7d8da82d113bd59831b658c62b6913c9162f66a92bcdba85a33796028c8285083f65eec0168039af09f83e27d94fa22f4a595702cbd51d8f48ad8aff4a74c5fd50922b3eba0341c6718f34f3a59181722e330ccfc7d1997357fbb1c95213b082d6b6f119118bb24a98c2c53de48b8b1bdd9c51c88c89acbcd4de108fb32f4beda27743b4a04e5ebc677862da939c7dfc616e765b79b1359d8e5ae4eeae5cd38954a7b6f8693496bfd2624f1a83182440510d7de981a321ccf81b75ab23317598adcb3bff8454110a056ee64a3b088c3ed6d0cd1d2e7033f872106205e95f171e347f02d9583f59113e49386e30ad92537b577e9822f3ecfc1b1374bf2911f61168f30b8f1e3af513e8248409d25c1d3bc09e93a66fa2c4bb3caaf1f4bc28e730ffd78375136e8c32d9bc26b8958c62aa7912dcdf44bbb6668c872df81c6362a679e57860484f003506ab7e1bd7344261c761bc03a7a0167047c1c07e8e46e9af814ab2b93fbdd8536448ee939188ed5a79c6d5d962efe69afde6999a5d52d71090bcb11a1eacb07185f9f5199d44c9bb5c48a09b28cc10e3f84f04677c3052e57d5426d3f5fa852a8f4ed3c8495a4f79261bbf6d1405c9ee97fe3df651819907bf93e4bd0c0a7d2d454e7ba0e84eada5731bf373ae529a6a1f17f959c77931d2ae261b588e844e8c1deae11cf6bbc1433ecabd2715cca3c7471b6f8de376a72647f7bbe11659adb21af39f0b71ae0aaee207f1811cef018fc70717c38b14948f307302bebca0450c6d1670996a92eebe691e0f7395fc20c554a171472df72761fca5a73a242f15c39b7fe6e4c013d655cdd09e319727758beb367aaadf6e70bfef6f8fce3e7c3848279f88ebe8a10f00dfe8f4dd87f9437b8bfa4b7b1517902cc06887ec5a9b9eef923c0e72e9ff82226ae8bf7cef3b3cf91e0ff8408e62421a4d88875b9f6a9382722d42aaf8fea280198a23eda48f6ddc26411825dbfadd25301735d1f9c74f61b15d3b2181dc9d77a4115c7047b9c6520b55dd2fcf343c4f1cb7cf93c10c0e01e282f28cf54575924024819409c322dce701d88f78c94416ebf4c2275bac8c75299636f3a507b7f933c5e13d853725a5ce8f9ec33de647b87a1d0775d62dfa07fead5253cc18526b5ffd90312ff098b81dd01c59f882b0223e6cf768b2ee0d5e0e8d10a2f5c04aa3b97a3dc92e102b30d60f3f0ff5b6253e49d960bc6b8d3a5daf6f3f4c06fcaa315e8315fe71023875f318934414cfd10fd7625e084b132b1c37b1b3e10777c10a3f9c47cca710012a77bf342bd64ba5fb08e24908cbf07143a49c2acf74d0c4097b0a8c2efcb6dbda4433acd0f1e2ad24cbcb4462aa7ce3d12514d4aaaec95457ec06f197c0df614d484af7987458ed2e33552b7a1cf72a4c4b016e7a7399ef9998bd52f860d2ef0751e7e96ebc472af3e666f7778f8eedb12bbac921eac8436b31ab61d72c259a2473678d88743f0f768c1782ee4702646bf349308712ea8cbad36d90b5c770971a1ff70719cdfdeb01927a561fb67d7cb6a2feec1215bac6eeedfb930d3556b5547a7e1af3199de6929a745c5323dbc34624761bb1beff6508463a5b7cac6d1d0265c733cb609b8cdaa56042d29fb70fa58c64b1fed6028d3a2ee7d6f3046cd980bea9f9e1d82fd9beafe7d66cfcbdd49caa5ea4f43faca173cba614e02f407b5c791e460a3ee590b3780ad8cbab34ff0379cc1f947201e28d0cbfa9cc5beef86ecc7090eac13ff614bf73f24b335fcff38a57bce197f67a5816f3d11bb558f0485b4441fcddb6b33c211f19f263f35462349492e26d5fc8437e09539c06fd6b14f243e0a51cc7ed7482677c5a9e7c864b81ae890e6412b6b387e887c9a70e5470c0d17800bb4e39a971a30151c2d5717a9c1183fc5e43902b25130f5fe2d85a64b77a8e64dc59d0b1e3b022efb9c1cbdfebb071c0fbd09619577bb1e18b488091d5c239589805b8df254db031aaa7751bb0b71bffe4b307ebd8359271c2376f2c75a8bea9808725cca6254f89e211cae70dce4cefa123d29238ecb0057d28eeaaabea6e99ab64ebea4c2c62806e6a9e2bccb96a4d07e816ee378e094acee3a9f31b0d1033634310baef6bc7f5e0870a2f1f7f519861834935b1073f9a5c348a46b3be82932d3cf1823a60fb9d0b269b94e58614b5cca1bf2f47ad4e15a93fce9995e06583c41b84930fc26cfe19e9ce9028c7ed8f6f701ed97a74ff3d3affcacf957946fd675240ea08b362a4c1d15aa0722f4cec99aae7d167c49c6123b1ddc36285804044883676921d8b9feed089851e819b782c1fc4025c44874f1454e53e477838e6ff0a472331da69f8e4efb474db064a4b4325c08b4db60377a142c19512b7d1e9fdcfb599662e5448ef3fed112a62bad364467613c73a3385df9766446627c2658c87b56c069440d4e0406e1220c79c2c99116c3224a7a90fee8b6c04f3ff85cbe993c3bb4f7961a801dd893557cd0be736f17e3fa2c65ecc61b907c9d919612ac73a41f91d88733b5830d135a457b3c13fceb0bd294f412bde878315b32c91529b5d55383a1f79f949a8424865b474d784a7a89153b88fc7ec11589b01b9b1aece6585de4d6dbf329c09f35426525addf3e1aa57dddace18fdb219b5e4b32c29a24de709f180b6ff5578141158f467ee9f0cccb580e5b9929c59e47cc8ff27b8401a934769d99f26cc9a9f66ecd0879df8b5becf0cb9a41006396075455306059a7dce312f4e08c54d13bd5da696b32f2c8efbdaad768e372049a3a58bb8c6972d34f859c4ea29ec46aa7752f5d7e8bd3523a10de8b876cb1d61d143d55a1f343252f0927fd5d853b663a71dbb0fff6a7ff07f9cf1e1eb23e07009"], 0x124c}, 0x1, 0x0, 0x0, 0x20000041}, 0x800)
mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
syz_open_procfs$namespace(0x0, &(0x7f00000001c0)='ns/net\x00')
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000)
prctl$auto(0x3f, 0x7ff, 0x0, 0x5, 0x5)
openat$auto_sync_info_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000200), 0x20000, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r2 = clone$auto(0x100000000021, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/memory15/online\x00', 0xa001, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/sys/net/sctp/rto_alpha_exp_divisor\x00', 0x900, 0x0)
write$auto(r3, &(0x7f0000000140)='0[.[\x00', 0xcd04)
tkill$auto(r2, 0x6)

2m10.078532042s ago: executing program 32 (id=1709):
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, 0x0)
unshare$auto(0x40000080)
socket(0x1e, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, &(0x7f0000006940)={0x0, 0x0, &(0x7f0000006900)={&(0x7f0000006980)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="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"], 0x124c}, 0x1, 0x0, 0x0, 0x20000041}, 0x800)
mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
syz_open_procfs$namespace(0x0, &(0x7f00000001c0)='ns/net\x00')
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000)
prctl$auto(0x3f, 0x7ff, 0x0, 0x5, 0x5)
openat$auto_sync_info_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000200), 0x20000, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r2 = clone$auto(0x100000000021, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/memory15/online\x00', 0xa001, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/sys/net/sctp/rto_alpha_exp_divisor\x00', 0x900, 0x0)
write$auto(r3, &(0x7f0000000140)='0[.[\x00', 0xcd04)
tkill$auto(r2, 0x6)

1m21.110163347s ago: executing program 3 (id=1898):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x800)
bpf$auto(0x6, &(0x7f00000001c0)=@test={r0, 0x10004, 0x0, 0x1000, 0x106, 0x0, 0x0, 0xfff, 0x10000, 0x9, 0x0, 0x4, 0x7, 0x2, 0xfffeffff}, 0x1)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, 0x0, 0x20008000)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
mount$auto(0x0, &(0x7f00000001c0)='}[,&*}\x00', 0x0, 0x7fff, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
ppoll$auto(0x0, 0x2f9638f3, &(0x7f0000000080)={0x66e2, 0x512d}, &(0x7f0000000100)={0x3ff}, 0x8)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
socket(0xa, 0x1, 0x100)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
socket(0x1a, 0x2, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xd, 0x0, 0x0, 0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_INFO(r1, 0x810c5701, &(0x7f0000000340)={0x3, 0x1, 0x200, 0x10000, 0x2, "748987108c83c529e6e0e17d26156a70e2ae0200fe62d001c338115fef2fbd8b976aa4fbce454ad4063328e150b0abc105c79352189449ed57bb590643e87a9b", "c35d68b707f12e350124ce3c56384271520fe78cbd7cb2f5587ebbe76f0069619790130fd5b9b9cc3d10fce15d823e8e57d245b1bf025ba127790e258cecdc081b38425936a306e206bf69ccdc6b9978", "dee0c06ea301f4ecca5d8d48eca013e7a853234160c3d8d65d185c1bd6f8fbce", 0x1, 0x75a3, 0x200000, "096e8465a8a3029f90cbf3e37d2bafa231150560322e6642c9d0dd7f29c51d775c494d9b7d6dc7efc90faaed56664139afbbeb0bc6e486d0ae2b0b41"})
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xa, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0xc, 0x2, 0x6]}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
msync$auto(0xff, 0x800, 0x10)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x468401, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000000)='-\x00', 0xfdef)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')

1m19.558138277s ago: executing program 3 (id=1905):
r0 = socket(0xa, 0x1, 0x0)
getsockopt$auto(r0, 0x6, 0xa, &(0x7f0000000080)='$\xfe\x88\xc8\x91\x8bo\xc6#\x93\x91^\x01<\xc81\xc0\x80\xd6\xdb>f\x8c\xf7\xb6\xca\xcdi\xa6\x91R\x7f\x00B\x93H9\x19\xb4x\xb1\xb7\xd3\xe4\x00'/60, &(0x7f0000000040)=0xaa)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0)
ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0)
socket(0x2b, 0x1, 0x0)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000180), r0)
r3 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000540), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r5=>0x0})
sendmsg$auto_NET_SHAPER_CMD_DELETE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="090027bd7000fbdbdf250200000008000800", @ANYRES32=r5, @ANYBLOB="140001800800020006000000080001"], 0x30}, 0x1, 0x0, 0x0, 0x44000}, 0xc050)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00', <r6=>0x0})
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000140), 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x34, r2, 0x8, 0x70bd28, 0x25dfdbfd, {}, [@NETDEV_A_QUEUE_IFINDEX={0x8}, @NETDEV_A_QUEUE_IFINDEX={0x8, 0x2, r5}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x4}, @NETDEV_A_QUEUE_IFINDEX={0x8, 0x2, r6}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000)
r7 = open(&(0x7f00000001c0)='./file0\x00', 0x121142, 0x13d)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r8 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
r9 = fcntl$getown(r8, 0x9)
ioctl$auto_BLKTRACESETUP(r7, 0xc0481273, &(0x7f00000000c0)={"98887c6dec106bc2404f190d4458058f337d5787942ae74fd96096d37407e002", 0x401, 0x1, 0x4, 0x10, 0x1, r9})
r10 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TIOCSETD2(r10, 0x5423, 0x0)
write$auto(r8, 0x0, 0xbffffdf1)

1m18.638795473s ago: executing program 3 (id=1910):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000380)='/dev/audio1\x00', 0x100, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x2282, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0)
r1 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000004680)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x502, 0x0)
write$auto_dynamic_events_ops_trace_dynevent(r1, &(0x7f0000001680)="65a90950732f", 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000016c0)='/dev/mtd0\x00', 0x28082, 0x0)
ioctl$auto(r2, 0x40084d02, r2)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video26\x00', 0x444100, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/lockd/parameters/nlm_grace_period\x00', 0x8001, 0x0)
r3 = socket(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000280)={'veth1_to_bridge\x00', <r4=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, 0xffffffffffffffff, 0x4, 0x401, <r5=>r3, @relative_id=0x13, 0xe600}, 0xf)
r6 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000002c0), r3)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_SESSION_MODIFY(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r8, 0x41, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x44008840}, 0x0)
r9 = geteuid()
sendmsg$auto_NL802154_CMD_GET_INTERFACE(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000300)={&(0x7f0000001700)=ANY=[@ANYBLOB="84120000a33fe4f7cefa1df2c368b1c40f3119362225be40adaa35c80a81424bf09a538742986e681ce46bde3217d7766a046cc32a628a12513f66799f713f7a649e0b41623c979571535d31c2b3c7f5060000f8385b3ef9a52286758678cf8f0bd3a1055b47f9c3473f035d082427005c187888e6c3c7a40f58a2b3beb7274eb6ebba33b20b0eabc44668e6740e64b7ec552c", @ANYRES16=r6, @ANYBLOB="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", @ANYRES32=r7, @ANYRES32=r9, @ANYBLOB="87cc12c7f10630fa15d453fcd7a8c94e1bac07d25bc3c51882a1b482931346e68b7e38fe0caf54d2645bb438188023279bd8a502b694e3491e04571c0d32c13d7727ee920cb7b365085f18cfd2110f7d59482a80cbcb98be432510daa516b52a835d2ba45024be76c7169311dfba0272bee3aacac62bd30894903060482f381b3e1ec67bc6bdc08e44f56e511cd8ff57ef56e9000000080021002df1000008001600090000000500080006000000"], 0x1284}, 0x1, 0x0, 0x0, 0x48001}, 0x800)
write$auto(r0, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r10 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="130008000300", @ANYRES32, @ANYBLOB="0800610002"], 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x20040894)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

1m18.154760627s ago: executing program 3 (id=1912):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty42\x00', 0x40, 0x0)
mmap$auto(0x0, 0x20009, 0x36, 0x20eb2, 0x40000000000a5, 0x8004)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x100, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec12\x00', 0x408000, 0x0)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
ioctl$auto_BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000440)={0x4, "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", 0x6a0, 0x9, 0x5, 0x200, "435126450355788f2236b903d3e8559b", "667b8d130207000000eca5ea6769ce2d", "16ae971e0489223f39e943c84eb5f1ac", 0x5, 0x4, 0x4000000000000000, 0x7, {0x7fffffff, 0x8}, {0x9, 0x9}, {0x7fffffff, 0x59c04630}, {0x7, 0x5f6d}, [0x4c8e, 0x0, 0x2, 0xfffffffffffffffa, 0x4, 0xfffffffffffffff8, 0xc, 0x7]})
openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x18, 0x0)
read$auto(r1, 0x0, 0xe8)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r3 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000007380)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x109041, 0x0)
write$auto(r3, 0x0, 0x40)
mmap$auto(0x0, 0xa00006, 0x2, 0x2000040eb1, 0x602, 0x300020000000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r4 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
linkat$auto(r4, 0x0, 0xffffffffffffff9c, 0x0, 0x1000)
mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000)
process_vm_readv$auto(0x0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_SG_SET_RESERVED_SIZE2(0xffffffffffffffff, 0x2275, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(r0, 0x40095505, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)

1m17.451422938s ago: executing program 3 (id=1915):
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
madvise$auto(0x0, 0xffffffffffff0006, 0x17)
mmap$auto(0x0, 0x8de, 0xdf, 0x591b, 0x2, 0xb)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x400401, 0x8000)
r1 = socketpair$auto(0x8, 0x5, 0x40, 0x0)
ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0)
r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_GPARAMS(r2, 0x40485404, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000180), 0x4000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r4 = socket(0x2b, 0x1, 0x1)
ioctl$auto(r4, 0x8983, 0x4)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x3, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0)
select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb})
write$auto(0x3, 0x0, 0xfffffdef)

1m16.306061203s ago: executing program 3 (id=1918):
mmap$auto(0x0, 0x400008, 0x6, 0x9b72, 0x2, 0x10008000)
r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r0, 0x400, 0x1)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/zram-control/hot_remove\x00', 0x8001, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x141000, 0x81)
open(&(0x7f00000002c0)='./file0\x00', 0x103001, 0x120)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/self/net/ip_vs_conn\x00', 0x0, 0x0)
pread64$auto(r1, 0x0, 0x8, 0xffff)
mmap$auto(0x0, 0x40001b, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
eventfd$auto(0x3)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
ioctl$auto_TUNSETOWNER(0xffffffffffffffff, 0x400454cc, &(0x7f0000000140)=0xe)

1m1.008605401s ago: executing program 33 (id=1918):
mmap$auto(0x0, 0x400008, 0x6, 0x9b72, 0x2, 0x10008000)
r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r0, 0x400, 0x1)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/class/zram-control/hot_remove\x00', 0x8001, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x141000, 0x81)
open(&(0x7f00000002c0)='./file0\x00', 0x103001, 0x120)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/self/net/ip_vs_conn\x00', 0x0, 0x0)
pread64$auto(r1, 0x0, 0x8, 0xffff)
mmap$auto(0x0, 0x40001b, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
eventfd$auto(0x3)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
ioctl$auto_TUNSETOWNER(0xffffffffffffffff, 0x400454cc, &(0x7f0000000140)=0xe)

7.131142112s ago: executing program 1 (id=2143):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x1, 0x20009, 0x8, 0xeb1, 0x7f, 0x8000)
rseq$auto(0x0, 0xfffffff5, 0x0, 0x5)
sysfs$auto(0x2, 0x10000000000002a, 0x0)
mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r0 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001580)='/sys/kernel/debug/tracing/events/vmalloc/enable\x00', 0x204, 0x1a00)
read$auto(r0, 0x0, 0x0)

6.392353841s ago: executing program 5 (id=2144):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x11, 0x80003, 0x300)
ustat$auto(0x801, 0x0)
setsockopt$auto(r0, 0x107, 0x8, 0x0, 0x6)
recvmmsg$auto(0x3, 0x0, 0xb94, 0x20, 0x0)

5.964781972s ago: executing program 1 (id=2146):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x23, 0x5, 0x2009, 0x0, 0x0)
r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/numa_maps\x00', 0x20000, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r3, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(r3, 0x8926, r3)
read$auto_proc_sessionid_operations_base(r2, 0x0, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0xfffffffffffffffd, 0x2003f0, 0xffffff04)
madvise$auto(0x0, 0x200007, 0x19)
r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, &(0x7f0000006940)={0x0, 0x0, &(0x7f0000006900)={&(0x7f0000006980)=ANY=[@ANYRES16=r4, @ANYBLOB="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"], 0x124c}, 0x1, 0x0, 0x0, 0x20000041}, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7ef)
ioperm$auto(0x7, 0x5ad2, 0xc)
modify_ldt$auto(0x40, 0x0, 0x7ff)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r5, 0x0, 0x101fb, 0x8800000005)

5.938661629s ago: executing program 4 (id=2147):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x1, 0x20009, 0x8, 0xeb1, 0x7f, 0x8000)
rseq$auto(0x0, 0xfffffff5, 0x0, 0x5)
sysfs$auto(0x2, 0x10000000000002a, 0x0)
mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r0 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001580)='/sys/kernel/debug/tracing/events/vmalloc/enable\x00', 0x204, 0x1a00)
read$auto(r0, 0x0, 0x0)

5.379775113s ago: executing program 5 (id=2149):
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r0 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, 0x0, 0x101080, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mprotect$auto(0x110c238000, 0x1, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyS3\x00', 0x40000, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socket(0x11, 0x5, 0x10300)
socket(0x11, 0x80003, 0x300)
openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/attr/keycreate\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/ptyw5\x00', 0x3e41, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/net/rpc/auth.unix.ip/channel\x00', 0x141401, 0x0)
getsockopt$auto_SO_TIMESTAMPING_NEW(0xffffffffffffffff, 0x5, 0x41, &(0x7f0000000140)='/proc/self/attr/keycreate\x00', 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a1942, 0x0)
mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
signalfd$auto(0xffffffff, 0x0, 0x8)
socket(0x2, 0x5, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffffff, 0x0, 0x0)
munmap$auto(0x1000000, 0x2000000c)
setuid$auto(0x800000000008)
landlock_restrict_self$auto(0x5, 0x1b7)
madvise$auto(0x0, 0xffffffffffff0001, 0x9)
mlockall$auto(0x3)
ioctl$auto_UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000600)={0x8})
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/devices/virtual/net/bond0/queues/tx-10/xps_cpus\x00', 0x8080, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)=""/9, 0x9)

5.157737423s ago: executing program 0 (id=2151):
userfaultfd$auto(0x1)

5.083388375s ago: executing program 0 (id=2152):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
msgrcv$auto(0x0, 0x0, 0x1000, 0x8000000000000000, 0xb5)
mprotect$auto(0x8000, 0x8, 0x8)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
poll$auto(&(0x7f0000003640)={<r1=>r0, 0x4, 0xffff}, 0x4, 0x100000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000c00), r2)
sendmsg$auto_TCP_METRICS_CMD_DEL(r2, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000080)=ANY=[@ANYBLOB="59251154aafd6501ea7f539ca95e8d0d0000", @ANYRES16=r3, @ANYBLOB="0109a145f9"], 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x40)
syz_genetlink_get_family_id$auto_netdev(0x0, r1)
socket(0xa, 0x3, 0x3b)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
nanosleep$auto(&(0x7f0000000180)={0x0, 0x44d4}, 0x0)
clock_nanosleep$auto(0x9, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x8, 0xfffffffd, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x2, 0x7, 0x4000000000000d, 0x1, 0x948b, 0x2005, 0x7, 0x400000000003, 0x1000, 0x62, 0x0, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xffffffffffffffff, 0x8)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/security/tomoyo/manager\x00', 0x80, 0x0)

4.874669679s ago: executing program 4 (id=2153):
socket(0x2, 0x3, 0xa)
openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0)
io_uring_setup$auto(0x9e6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x88000, 0x0)
read$auto(r0, 0x0, 0x20)
sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, 0x0, 0x24008804)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x35, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x40080, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x7}, 0x1fe, 0xd)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000380)='ns/user\x00')
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8)
sysfs$auto(0xfffffffe, 0x60000, 0x0)
execveat$auto(r1, 0x0, 0x0, 0x0, 0x39)
keyctl$auto(0x1d, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8)
r2 = socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r2)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
getsockopt$auto(r3, 0x8, 0x0, &(0x7f0000000040)='/dev/dmmidi2\x00', &(0x7f0000000100))
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000)

4.09622289s ago: executing program 5 (id=2154):
socket(0xa, 0x4, 0x103)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x6, 0x9, 0x0, 0xfb3)
write$auto(0xffffffffffffffff, &(0x7f0000000140)='7\x00\xb1\x9a\xc0\xf9\xc0e\xd2T\xbe\xb6I\x9d\xd9\x18\xf5\x91\xbfq\xfe\xf2\x9a\x02\x9fC0xr\xccW(\xc1n+\n|5\xa5\x9c=^\xf1\x11H\x1c\xf73\x16\xd2\a\xfaw\xcc\xf1\xff7\xab\xa1\xeaF\x04\x17\x99\xd3\xd1\x83\xccG^\xbbdC\x8a\n\x88\xbcW@+\xafD\xd1\x8a\xc13W\xf66\x86\xe5\xee\xa7\x1d\x0f\x90\x00\xcf\xdb\xf5\xbf\xd4\xc8\x84\xb3\xeeb\xb0\xc7kN\x80\x93\xfd\x89\xe1\xc9tp\xd4jm\x7f\xf0a\xc3\x02\x14\xcf\xcf\\e!\a\x82\t,\xa7\x00\xbd&\xcax\xf8P\xc1\x8f\x87\x83\x0f\x93z', 0x4000081)
openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000280), 0xc0000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0x20eb1, 0xfffffffffffffffa, 0x8000)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x22142, 0x20)
fremovexattr$auto(r0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x1, 0x0)
write$auto_configfs_file_operations_configfs_internal(r1, &(0x7f0000000140)="8e", 0x1)
ioctl$auto_NVRAM_SETCKS(r0, 0x7041, 0x0)
syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
ioctl$auto(0x3, 0x50434903, 0x1)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x6a742, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31)
unshare$auto(0x40000080)

3.809870039s ago: executing program 1 (id=2155):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x1, 0x20009, 0x8, 0xeb1, 0x7f, 0x8000)
rseq$auto(0x0, 0xfffffff5, 0x0, 0x5)
sysfs$auto(0x2, 0x10000000000002a, 0x0)
mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r0 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001580)='/sys/kernel/debug/tracing/events/vmalloc/enable\x00', 0x204, 0x1a00)
read$auto(r0, 0x0, 0x0)

3.074052028s ago: executing program 5 (id=2156):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000380)='/dev/audio1\x00', 0x100, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x2282, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0)
r1 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000004680)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x502, 0x0)
write$auto_dynamic_events_ops_trace_dynevent(r1, &(0x7f0000001680)="65a90950732f", 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000016c0)='/dev/mtd0\x00', 0x28082, 0x0)
ioctl$auto(r2, 0x40084d02, r2)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video26\x00', 0x444100, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/lockd/parameters/nlm_grace_period\x00', 0x8001, 0x0)
r3 = socket(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000280)={'veth1_to_bridge\x00', <r4=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, 0xffffffffffffffff, 0x4, 0x401, <r5=>r3, @relative_id=0x13, 0xe600}, 0xf)
r6 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000002c0), r3)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_SESSION_MODIFY(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r8, 0x41, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x44008840}, 0x0)
r9 = geteuid()
sendmsg$auto_NL802154_CMD_GET_INTERFACE(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000300)={&(0x7f0000001700)=ANY=[@ANYBLOB="84120000a33fe4f7cefa1df2c368b1c40f3119362225be40adaa35c80a81424bf09a538742986e681ce46bde3217d7766a046cc32a628a12513f66799f713f7a649e0b41623c979571535d31c2b3c7f5060000f8385b3ef9a52286758678cf8f0bd3a1055b47f9c3473f035d082427005c187888e6c3c7a40f58a2b3beb7274eb6ebba33b20b0eabc44668e6740e64b7ec552c", @ANYRES16=r6, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="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", @ANYRES32=r9, @ANYBLOB="87cc12c7f10630fa15d453fcd7a8c94e1bac07d25bc3c51882a1b482931346e68b7e38fe0caf54d2645bb438188023279bd8a502b694e3491e04571c0d32c13d7727ee920cb7b365085f18cfd2110f7d59482a80cbcb98be432510daa516b52a835d2ba45024be76c7169311dfba0272bee3aacac62bd30894903060482f381b3e1ec67bc6bdc08e44f56e511cd8ff57ef56e9000000080021002df1000008001600090000000500080006000000"], 0x1284}, 0x1, 0x0, 0x0, 0x48001}, 0x800)
write$auto(r0, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r10 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="130008000300", @ANYRES32, @ANYBLOB="0800610002"], 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x20040894)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

3.026691212s ago: executing program 4 (id=2157):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x11, 0x80003, 0x300)
ustat$auto(0x801, 0x0)
setsockopt$auto(r0, 0x107, 0x8, 0x0, 0x6)
recvmmsg$auto(0x3, 0x0, 0xb94, 0x20, 0x0)

2.930374227s ago: executing program 0 (id=2158):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
write$auto(r0, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/ip_vs_conn\x00', 0xf00, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0xa, 0x7)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0x400000000000003, 0x29, 0x37, 0xffffffffffffffff, 0x0)
socket(0xa, 0x2, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000180), 0x80080, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0x8, 0x3)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0)
write$auto(r1, &(0x7f0000000440)='Y\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="01002bbd7000fcdbdf2504"], 0x1c}}, 0x4044820)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty12\x00', 0x900, 0x0)
r4 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r3, 0x541c, r4)

2.582932298s ago: executing program 5 (id=2159):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x1, 0x20009, 0x8, 0xeb1, 0x7f, 0x8000)
rseq$auto(0x0, 0xfffffff5, 0x0, 0x5)
sysfs$auto(0x2, 0x10000000000002a, 0x0)
mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r0 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001580)='/sys/kernel/debug/tracing/events/vmalloc/enable\x00', 0x204, 0x1a00)
read$auto(r0, 0x0, 0x0)

2.529085398s ago: executing program 1 (id=2160):
r0 = socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x6, 0xfffffffd, 0xfffffffb, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
socket(0x10, 0x2, 0x0)
mmap$auto(0xfffffffffffffffb, 0x59ff, 0xe, 0xeb2, r0, 0x8000)
userfaultfd$auto(0x1)

2.364130907s ago: executing program 0 (id=2161):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
write$auto(r0, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/ip_vs_conn\x00', 0xf00, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0xa, 0x7)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0x400000000000003, 0x29, 0x37, 0xffffffffffffffff, 0x0)
socket(0xa, 0x2, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000180), 0x80080, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0x8, 0x3)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0)
write$auto(r1, &(0x7f0000000440)='Y\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="01002bbd7000fcdbdf2504"], 0x1c}}, 0x4044820)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty12\x00', 0x900, 0x0)
r4 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r3, 0x541c, r4)

2.355303279s ago: executing program 1 (id=2162):
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x60201, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000e2, 0xeb1, 0x401, 0x40000008000)
r0 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r0, 0x0, 0x7, 0x8)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x7, 0x0, 0x0, &(0x7f0000000080)={[0x9, 0x7, 0xd, 0xfffffffffffffffd, 0xfffffffffffffffc, 0x8, 0x15f4da0a, 0x401, 0xffffffff80000001, 0x62, 0x40000080000001, 0x7, 0xfffffffffffffff9, 0x8000000009, 0x2, 0x40]}, 0x0)
write$auto(r1, &(0x7f0000000140)='/dev/audio1\x00', 0x100000a3d9)
r3 = getpid()
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
ioctl$auto(0x3, 0x400454ca, 0x38)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r4, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000003240)=ANY=[@ANYBLOB, @ANYRES16=r5, @ANYBLOB="010025bd5000fddbdf2501000000040007800c0002000600000000200000"], 0x24}, 0x1, 0x100000000000000, 0x0, 0x4}, 0x8c0)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/018/001\x00', 0x802, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r6, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x14, 0x10, 0x3, 0x8, &(0x7f0000000280)="1f9c4106afe65ab6a22e00509d6ccd13fa42621daeb012f0e19a76b3dd7185506b18010016d5c24b1f000000000000faf37de3d4d35d183dd825b74834ed817507a25c8832fd161231eea095eeb9f2bd"})
fsopen$auto(0x0, 0x1)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_BLKIOMIN(r2, 0x1278, 0x0)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x803, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r7 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r7, &(0x7f0000000040)='nbd\x00', 0x4)
mlockall$auto(0x3)
ioctl$auto(0x3, 0xae41, 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)

2.0676858s ago: executing program 4 (id=2163):
sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040), 0xc, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="b23c407a7adde5c972327d2993ddeef312215c5d8873c0884fdabfc25a1bc27fa7d375b6375779dd42350829ec4fbb326a62d2244d5f8c30907dbf34f53d7163fdef8b0fe3fe50f3bfba1f", @ANYRES16=0x0, @ANYBLOB="00082bbd7000fedbdf250f0000000c000680080045800400e98004000780"], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0)
write$auto(r0, 0x0, 0x300001000000)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
ioctl$NS_GET_PARENT(0xffffffffffffffff, 0x8008b705, 0x0)

1.600081499s ago: executing program 4 (id=2164):
unshare$auto(0x40000080)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
read$auto(0xffffffffffffffff, 0x0, 0x1f40)
stat$auto(0x0, &(0x7f0000000380)={0x3, 0x3, 0x6, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0xa, 0xff, 0x100, 0x401, 0x5f57, 0x80000000, 0xaa})
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
getsockopt$auto_SO_PASSCRED(0xffffffffffffffff, 0x1, 0x10, 0x0, 0x0)
mmap$auto(0x0, 0x400005, 0x800000000000df, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20048801)
ioperm$auto(0x400000ffff, 0xe, 0x1)
r2 = openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/setgroups\x00', 0x200041, 0x0)
io_uring_setup$auto(0x6, &(0x7f0000000140)={0x81, 0x80, 0x624, 0x400, 0x2, 0x1, r2, [0x6, 0x3, 0x800], {0x4, 0x8, 0x10000, 0xdfd, 0x2, 0x3, 0x8, 0x80000001, 0x1}, {0x9, 0x5, 0xfdb, 0x30b5, 0x0, 0x2, 0x2, 0x6, 0x8000000000000000}})
syz_genetlink_get_family_id$auto_taskstats(0x0, 0xffffffffffffffff)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
pread64$auto(0xffffffffffffffff, 0x0, 0xe, 0x100000000007)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/smaps_rollup\x00', 0x1a3000, 0x0)
exit$auto(0x7)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
statmount$auto(0x0, 0x0, 0xfffff7fffffffffa, 0x81)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
io_setup$auto(0xffff, &(0x7f0000000580))
write$auto(0x3, 0x0, 0xfffffdef)
r4 = socket$nl_generic(0x11, 0x3, 0x10)
bind$auto(r4, &(0x7f0000000200)=@generic={0x11, "0000100000000000929e006300"}, 0x80)

1.486356606s ago: executing program 0 (id=2165):
socket(0xa, 0x4, 0x103)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x6, 0x9, 0x0, 0xfb3)
write$auto(0xffffffffffffffff, &(0x7f0000000140)='7\x00\xb1\x9a\xc0\xf9\xc0e\xd2T\xbe\xb6I\x9d\xd9\x18\xf5\x91\xbfq\xfe\xf2\x9a\x02\x9fC0xr\xccW(\xc1n+\n|5\xa5\x9c=^\xf1\x11H\x1c\xf73\x16\xd2\a\xfaw\xcc\xf1\xff7\xab\xa1\xeaF\x04\x17\x99\xd3\xd1\x83\xccG^\xbbdC\x8a\n\x88\xbcW@+\xafD\xd1\x8a\xc13W\xf66\x86\xe5\xee\xa7\x1d\x0f\x90\x00\xcf\xdb\xf5\xbf\xd4\xc8\x84\xb3\xeeb\xb0\xc7kN\x80\x93\xfd\x89\xe1\xc9tp\xd4jm\x7f\xf0a\xc3\x02\x14\xcf\xcf\\e!\a\x82\t,\xa7\x00\xbd&\xcax\xf8P\xc1\x8f\x87\x83\x0f\x93z', 0x4000081)
openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000280), 0xc0000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0x20eb1, 0xfffffffffffffffa, 0x8000)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x22142, 0x20)
fremovexattr$auto(r0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x1, 0x0)
write$auto_configfs_file_operations_configfs_internal(r1, &(0x7f0000000140)="8e", 0x1)
ioctl$auto_NVRAM_SETCKS(r0, 0x7041, 0x0)
syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
ioctl$auto(0x3, 0x50434903, 0x1)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x6a742, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31)
unshare$auto(0x40000080)

1.400862144s ago: executing program 5 (id=2166):
socket(0x2, 0x3, 0xa)
openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0)
io_uring_setup$auto(0x9e6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x88000, 0x0)
read$auto(r0, 0x0, 0x20)
sendmsg$auto_NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, 0x0, 0x24008804)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x35, 0x67f, 0x1ffde, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x40080, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x0, 0x7}, 0x1fe, 0xd)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000380)='ns/user\x00')
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8)
sysfs$auto(0xfffffffe, 0x60000, 0x0)
execveat$auto(r1, 0x0, 0x0, 0x0, 0x39)
keyctl$auto(0x1d, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8)
r2 = socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r2)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
getsockopt$auto(r3, 0x8, 0x0, &(0x7f0000000040)='/dev/dmmidi2\x00', &(0x7f0000000100))
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000)

778.130173ms ago: executing program 0 (id=2167):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x23, 0x5, 0x2009, 0x0, 0x0)
r2 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/numa_maps\x00', 0x20000, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x80045439, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x8926, 0xffffffffffffffff)
read$auto_proc_sessionid_operations_base(r2, &(0x7f00000000c0)=""/4096, 0x1000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0xfffffffffffffffd, 0x2003f0, 0xffffff04)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, &(0x7f0000006940)={0x0, 0x0, &(0x7f0000006900)={0x0, 0x124c}, 0x1, 0x0, 0x0, 0x20000041}, 0x800)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00x \xec(\x1d\x98\xe9\xc4\xe8\xfc@6=\xab\xf4\x89\x01\x93\xdc\x19\xffv\'\xa1\xd5\x14\x06S\xae\xadB}\xdf]\x99\xc9\x9f4\xbb\xc5\x81\x9d\x8ak\xdeB\xcbd\xd3\x05\xe4P\x84\xcb\xb8#\x13\nYU\'\x95R\xc8\x9d\xb7*\xe0.\xd2\xdf\x1b\x88D\x8c{k\xcec\xe1\xa2j\xec\xc9\xd2\x98\x94I\x102h\x06\x8c\xa2\xc8\x8a7\xb7t', 0x7ef)
ioperm$auto(0x7, 0x5ad2, 0xc)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/can/rcvlist_sff\x00', 0x400, 0x0)
pread64$auto(r3, 0x0, 0x101fb, 0x8800000005)

16.807348ms ago: executing program 4 (id=2168):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000380)='/dev/audio1\x00', 0x100, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x2282, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0)
r1 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000004680)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x502, 0x0)
write$auto_dynamic_events_ops_trace_dynevent(r1, &(0x7f0000001680)="65a90950732f", 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000016c0)='/dev/mtd0\x00', 0x28082, 0x0)
ioctl$auto(r2, 0x40084d02, r2)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video26\x00', 0x444100, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/lockd/parameters/nlm_grace_period\x00', 0x8001, 0x0)
r3 = socket(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000280)={'veth1_to_bridge\x00', <r4=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, 0xffffffffffffffff, 0x4, 0x401, <r5=>r3, @relative_id=0x13, 0xe600}, 0xf)
r6 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000002c0), r3)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_SESSION_MODIFY(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r8, 0x41, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x44008840}, 0x0)
r9 = geteuid()
sendmsg$auto_NL802154_CMD_GET_INTERFACE(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000300)={&(0x7f0000001700)=ANY=[@ANYBLOB="84120000a33fe4f7cefa1df2c368b1c40f3119362225be40adaa35c80a81424bf09a538742986e681ce46bde3217d7766a046cc32a628a12513f66799f713f7a649e0b41623c979571535d31c2b3c7f5060000f8385b3ef9a52286758678cf8f0bd3a1055b47f9c3473f035d082427005c187888e6c3c7a40f58a2b3beb7274eb6ebba33b20b0eabc44668e6740e64b7ec552c", @ANYRES16=r6, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="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", @ANYRES32=r9, @ANYBLOB="87cc12c7f10630fa15d453fcd7a8c94e1bac07d25bc3c51882a1b482931346e68b7e38fe0caf54d2645bb438188023279bd8a502b694e3491e04571c0d32c13d7727ee920cb7b365085f18cfd2110f7d59482a80cbcb98be432510daa516b52a835d2ba45024be76c7169311dfba0272bee3aacac62bd30894903060482f381b3e1ec67bc6bdc08e44f56e511cd8ff57ef56e9000000080021002df1000008001600090000000500080006000000"], 0x1284}, 0x1, 0x0, 0x0, 0x48001}, 0x800)
write$auto(r0, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r10 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="130008000300", @ANYRES32, @ANYBLOB="0800610002"], 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x20040894)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

0s ago: executing program 1 (id=2169):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
close_range$auto(r0, 0x8, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/rpc/auth.rpcsec.init/flush\x00', 0xb4300, 0x0)
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
socketpair$auto(0x1, 0x0, 0xfffffffc, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0)
r2 = socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x80502, 0x0)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000400)='/dev/bus/usb/019/001\x00', 0x80, 0x0)
r4 = open_by_handle_at$auto(r3, &(0x7f0000000440)={0xd, 0x9, "e34a691d34dd39864ace519d11"}, 0x7)
getegid()
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpu1/topology/thread_siblings\x00', 0x400, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000040)=""/205, 0xcd)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r7 = bpf$auto(0x7fff, &(0x7f0000000480)=@bpf_attr_1={r2, 0x5, @next_key=0x3, 0x2}, 0x2)
sendmsg$auto_CGROUPSTATS_CMD_GET(r4, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000380)={&(0x7f0000000280)={0x1c, 0x0, 0x8, 0x70bd2d, 0x25dfdbfb, {}, [@CGROUPSTATS_CMD_ATTR_FD={0x8, 0x1, r7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x42000}, 0x40)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/mem\x00', 0x4a0001, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vkms/graphics/fb0/modes\x00', 0x129102, 0x0)
write$auto(r5, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x5, 0x406, 0xfffe, 0x10001, 0x2, 0x6d3e, 0x3, 0x2, 0x4]}, 0x0)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0)
ioctl$auto_TIOCVHANGUP2(r1, 0x5437, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000240)='/dev/admmidi2\x00', 0x101000, 0x0)

kernel console output (not intermixed with test programs):

evices/platform/i8042/serio0/input/input44
[  659.947034][T15727] [U] 
[  659.949900][T15727] [U] 
[  659.952653][T15727] [U] 
[  659.955366][T15727] [U] 
[  659.966334][T15727] [U] 
[  659.969053][T15727] [U] 
[  659.971736][T15727] [U] 
[  659.974611][T15727] [U] 
[  659.979971][T15727] [U] 
[  659.982727][T15727] [U] 
[  659.985442][T15727] [U] 
[  659.988123][T15727] [U] 
[  659.992465][T15729] [U] 
[  660.650558][T15744] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input45
[  661.240718][T15767] sp0: Synchronizing with TNC
[  663.399480][T15808] random: crng reseeded on system resumption
[  663.626344][T15814] FAULT_INJECTION: forcing a failure.
[  663.626344][T15814] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  663.686658][T15814] CPU: 1 UID: 0 PID: 15814 Comm: syz.2.1700 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  663.686698][T15814] Tainted: [U]=USER
[  663.686707][T15814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  663.686720][T15814] Call Trace:
[  663.686729][T15814]  <TASK>
[  663.686738][T15814]  dump_stack_lvl+0x16c/0x1f0
[  663.686776][T15814]  should_fail_ex+0x512/0x640
[  663.686814][T15814]  _copy_to_user+0x32/0xd0
[  663.686857][T15814]  simple_read_from_buffer+0xcb/0x170
[  663.686890][T15814]  proc_fail_nth_read+0x197/0x270
[  663.686919][T15814]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  663.686951][T15814]  ? rw_verify_area+0xcf/0x680
[  663.686980][T15814]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  663.687010][T15814]  vfs_read+0x1e4/0xc60
[  663.687046][T15814]  ? __pfx___mutex_lock+0x10/0x10
[  663.687083][T15814]  ? __pfx_vfs_read+0x10/0x10
[  663.687130][T15814]  ? __fget_files+0x20e/0x3c0
[  663.687169][T15814]  ksys_read+0x12a/0x250
[  663.687199][T15814]  ? __pfx_ksys_read+0x10/0x10
[  663.687244][T15814]  do_syscall_64+0xcd/0x490
[  663.687280][T15814]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  663.687305][T15814] RIP: 0033:0x7f4af5f8d33c
[  663.687323][T15814] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  663.687345][T15814] RSP: 002b:00007f4af6dc0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  663.687367][T15814] RAX: ffffffffffffffda RBX: 00007f4af61b5fa0 RCX: 00007f4af5f8d33c
[  663.687382][T15814] RDX: 000000000000000f RSI: 00007f4af6dc00a0 RDI: 0000000000000004
[  663.687395][T15814] RBP: 00007f4af6dc0090 R08: 0000000000000000 R09: 0000000000008000
[  663.687408][T15814] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000001
[  663.687421][T15814] R13: 0000000000000000 R14: 00007f4af61b5fa0 R15: 00007ffde43dcd48
[  663.687452][T15814]  </TASK>
[  664.905659][T15839] sp0: Synchronizing with TNC
[  666.993361][T15878] QAT: Stopping all acceleration devices.
[  667.091173][T15875] FAULT_INJECTION: forcing a failure.
[  667.091173][T15875] name fail_futex, interval 1, probability 0, space 0, times 0
[  667.129247][T15875] CPU: 0 UID: 0 PID: 15875 Comm: syz.1.1711 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  667.129279][T15875] Tainted: [U]=USER
[  667.129284][T15875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  667.129292][T15875] Call Trace:
[  667.129298][T15875]  <TASK>
[  667.129305][T15875]  dump_stack_lvl+0x16c/0x1f0
[  667.129330][T15875]  should_fail_ex+0x512/0x640
[  667.129354][T15875]  get_futex_key+0x1d0/0x1540
[  667.129373][T15875]  ? __pfx_get_futex_key+0x10/0x10
[  667.129390][T15875]  ? rcu_is_watching+0x12/0xc0
[  667.129408][T15875]  futex_wait_setup+0x9d/0x550
[  667.129433][T15875]  __futex_wait+0x194/0x2f0
[  667.129454][T15875]  ? __pfx___futex_wait+0x10/0x10
[  667.129472][T15875]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  667.129491][T15875]  ? lockdep_hardirqs_on+0x7c/0x110
[  667.129513][T15875]  ? __pfx_futex_wake_mark+0x10/0x10
[  667.129543][T15875]  futex_wait+0xe8/0x380
[  667.129562][T15875]  ? __pfx_futex_wait+0x10/0x10
[  667.129587][T15875]  ? kmem_cache_free+0x2d1/0x4d0
[  667.129609][T15875]  do_futex+0x229/0x350
[  667.129626][T15875]  ? __pfx_do_futex+0x10/0x10
[  667.129643][T15875]  ? do_linkat+0x340/0x5a0
[  667.129667][T15875]  __x64_sys_futex+0x1e0/0x4c0
[  667.129686][T15875]  ? __pfx___x64_sys_futex+0x10/0x10
[  667.129703][T15875]  ? xfd_validate_state+0x61/0x180
[  667.129727][T15875]  do_syscall_64+0xcd/0x490
[  667.129757][T15875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.129772][T15875] RIP: 0033:0x7fadccd8e929
[  667.129785][T15875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  667.129800][T15875] RSP: 002b:00007fadcdb570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  667.129814][T15875] RAX: ffffffffffffffda RBX: 00007fadccfb5fa8 RCX: 00007fadccd8e929
[  667.129824][T15875] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fadccfb5fa8
[  667.129833][T15875] RBP: 00007fadccfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  667.129841][T15875] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fadccfb5fac
[  667.129850][T15875] R13: 0000000000000000 R14: 00007fff45e449e0 R15: 00007fff45e44ac8
[  667.129868][T15875]  </TASK>
[  668.675982][T15900] sp0: Synchronizing with TNC
[  668.989542][T15898] sp0: Synchronizing with TNC
[  670.200550][T15932] FAULT_INJECTION: forcing a failure.
[  670.200550][T15932] name failslab, interval 1, probability 0, space 0, times 0
[  670.213353][T15932] CPU: 1 UID: 0 PID: 15932 Comm: syz.1.1721 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  670.213391][T15932] Tainted: [U]=USER
[  670.213399][T15932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  670.213413][T15932] Call Trace:
[  670.213423][T15932]  <TASK>
[  670.213433][T15932]  dump_stack_lvl+0x16c/0x1f0
[  670.213472][T15932]  should_fail_ex+0x512/0x640
[  670.213506][T15932]  ? fs_reclaim_acquire+0xae/0x150
[  670.213537][T15932]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  670.213569][T15932]  should_failslab+0xc2/0x120
[  670.213592][T15932]  __kmalloc_noprof+0xd2/0x510
[  670.213634][T15932]  tomoyo_realpath_from_path+0xc2/0x6e0
[  670.213669][T15932]  ? tomoyo_profile+0x47/0x60
[  670.213708][T15932]  tomoyo_path_number_perm+0x245/0x580
[  670.213735][T15932]  ? tomoyo_path_number_perm+0x237/0x580
[  670.213766][T15932]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  670.213796][T15932]  ? find_held_lock+0x2b/0x80
[  670.213853][T15932]  ? find_held_lock+0x2b/0x80
[  670.213875][T15932]  ? hook_file_ioctl_common+0x145/0x410
[  670.213909][T15932]  ? __fget_files+0x20e/0x3c0
[  670.213947][T15932]  security_file_ioctl+0x9b/0x240
[  670.213978][T15932]  __x64_sys_ioctl+0xb7/0x210
[  670.214010][T15932]  do_syscall_64+0xcd/0x490
[  670.214049][T15932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  670.214074][T15932] RIP: 0033:0x7fadccd8e929
[  670.214094][T15932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  670.214117][T15932] RSP: 002b:00007fadcdb57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  670.214141][T15932] RAX: ffffffffffffffda RBX: 00007fadccfb5fa0 RCX: 00007fadccd8e929
[  670.214159][T15932] RDX: 0000000000000000 RSI: 0000000000009205 RDI: 0000000000000008
[  670.214174][T15932] RBP: 00007fadcdb57090 R08: 0000000000000000 R09: 0000000000000000
[  670.214190][T15932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  670.214205][T15932] R13: 0000000000000000 R14: 00007fadccfb5fa0 R15: 00007fff45e44ac8
[  670.214240][T15932]  </TASK>
[  670.214251][T15932] ERROR: Out of memory at tomoyo_realpath_from_path.
[  670.602709][T15934] Console: switching to colour VGA+ 80x25
[  670.741702][T15943] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input46
[  671.125610][T15934] Console: switching to colour frame buffer device 128x48
[  673.894455][T15975] sp0: Synchronizing with TNC
[  674.369523][T15974] sp0: Synchronizing with TNC
[  675.217244][T15996] sp0: Synchronizing with TNC
[  675.852549][T16003] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7fe08
[  675.867084][T16003] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  675.875833][T16003] ksm flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  675.884537][T16003] page_type: f5(slab)
[  675.889536][T16003] raw: 00fff00000000040 ffff888140e8fc80 ffffea0000d14e00 dead000000000003
[  675.898529][T16003] raw: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  675.943458][T16003] head: 00fff00000000040 ffff888140e8fc80 ffffea0000d14e00 dead000000000003
[  675.974805][T16003] head: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  675.985033][T16003] head: 00fff00000000002 ffffea0001ff8201 00000000ffffffff 00000000ffffffff
[  675.995314][T16003] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  676.004013][T16003] page dumped because: unmovable page
[  676.009884][T16003] page_owner tracks the page as allocated
[  676.026227][T16003] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 11831, tgid 11806 (syz.3.1084), ts 445434623358, free_ts 439204065921
[  676.162262][T16003]  post_alloc_hook+0x1c0/0x230
[  676.252950][T16003]  get_page_from_freelist+0x1321/0x3890
[  676.280309][T16003]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  676.286380][T16003]  alloc_pages_mpol+0x1fb/0x550
[  676.291451][T16003]  new_slab+0x23b/0x330
[  676.295707][T16003]  ___slab_alloc+0xd9c/0x1940
[  676.300450][T16003]  __slab_alloc.constprop.0+0x56/0xb0
[  676.337938][T16003]  kmem_cache_alloc_node_noprof+0xf5/0x3b0
[  676.393243][T16003]  kmalloc_reserve+0x18b/0x2c0
[  676.398649][T16003]  __alloc_skb+0x166/0x380
[  676.404877][T16003]  __ip_append_data+0x3128/0x4240
[  676.410057][T16003]  ip_append_data+0x10f/0x1a0
[  676.415626][T16003]  raw_sendmsg+0xf01/0x3820
[  676.421342][T16003]  inet_sendmsg+0x11c/0x140
[  676.426737][T16003]  ____sys_sendmsg+0x973/0xc70
[  676.431735][T16003]  ___sys_sendmsg+0x134/0x1d0
[  676.437727][T16003] page last free pid 5828 tgid 5828 stack trace:
[  676.445161][T16003]  __free_frozen_pages+0x7fe/0x1180
[  676.452134][T16003]  __folio_put+0x329/0x450
[  676.457079][T16003]  skb_release_data+0x7fb/0x9c0
[  676.462072][T16003]  __kfree_skb+0x4f/0x70
[  676.466723][T16003]  tcp_ack+0x19b2/0x5c90
[  676.471030][T16003]  tcp_rcv_established+0xda1/0x22e0
[  676.476644][T16003]  tcp_v4_do_rcv+0x5ca/0xa90
[  676.481295][T16003]  tcp_v4_rcv+0x3609/0x4650
[  676.513738][T16003]  ip_protocol_deliver_rcu+0xba/0x4c0
[  676.519521][T16003]  ip_local_deliver_finish+0x316/0x570
[  676.529121][T16003]  ip_local_deliver+0x18e/0x1f0
[  676.534048][T16003]  ip_sublist_rcv_finish+0x2c1/0x620
[  676.545401][T16003]  ip_list_rcv_finish+0x552/0x720
[  676.683182][T16003]  ip_list_rcv+0x335/0x450
[  676.688238][T16003]  __netif_receive_skb_list_core+0x752/0x950
[  676.694377][T16003]  netif_receive_skb_list_internal+0x752/0xdb0
[  677.094476][T16025] FAULT_INJECTION: forcing a failure.
[  677.094476][T16025] name failslab, interval 1, probability 0, space 0, times 0
[  677.282291][T16025] CPU: 0 UID: 0 PID: 16025 Comm: syz.0.1740 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  677.282327][T16025] Tainted: [U]=USER
[  677.282332][T16025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  677.282342][T16025] Call Trace:
[  677.282348][T16025]  <TASK>
[  677.282355][T16025]  dump_stack_lvl+0x16c/0x1f0
[  677.282385][T16025]  should_fail_ex+0x512/0x640
[  677.282406][T16025]  ? fs_reclaim_acquire+0xae/0x150
[  677.282424][T16025]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  677.282443][T16025]  should_failslab+0xc2/0x120
[  677.282457][T16025]  __kmalloc_noprof+0xd2/0x510
[  677.282476][T16025]  ? tomoyo_encode2+0x329/0x3e0
[  677.282493][T16025]  ? tomoyo_realpath_from_path+0x19f/0x6e0
[  677.282516][T16025]  tomoyo_realpath_from_path+0xc2/0x6e0
[  677.282537][T16025]  ? tomoyo_fill_path_info+0x233/0x420
[  677.282554][T16025]  tomoyo_path2_perm+0x36a/0x710
[  677.282571][T16025]  ? __pfx_tomoyo_path2_perm+0x10/0x10
[  677.282595][T16025]  ? do_raw_spin_lock+0x12c/0x2b0
[  677.282629][T16025]  ? simple_lookup+0x12c/0x180
[  677.282647][T16025]  ? lookup_one_qstr_excl_raw.part.0+0xf9/0x160
[  677.282662][T16025]  ? lookup_dcache+0x66/0x170
[  677.282679][T16025]  tomoyo_path_link+0xae/0x100
[  677.282706][T16025]  ? __pfx_tomoyo_path_link+0x10/0x10
[  677.282726][T16025]  ? make_vfsgid+0xf1/0x140
[  677.282739][T16025]  ? __pfx_make_vfsgid+0x10/0x10
[  677.282759][T16025]  security_path_link+0x12f/0x2b0
[  677.282776][T16025]  do_linkat+0x412/0x5a0
[  677.282800][T16025]  ? __pfx_do_linkat+0x10/0x10
[  677.282821][T16025]  ? strncpy_from_user+0x203/0x2e0
[  677.282841][T16025]  ? getname_flags.part.0+0x1c5/0x550
[  677.282855][T16025]  ? xfd_validate_state+0x61/0x180
[  677.282877][T16025]  __x64_sys_linkat+0xea/0x130
[  677.282900][T16025]  do_syscall_64+0xcd/0x490
[  677.282923][T16025]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  677.282940][T16025] RIP: 0033:0x7f358598e929
[  677.282953][T16025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  677.282967][T16025] RSP: 002b:00007f3586790038 EFLAGS: 00000246 ORIG_RAX: 0000000000000109
[  677.282981][T16025] RAX: ffffffffffffffda RBX: 00007f3585bb5fa0 RCX: 00007f358598e929
[  677.282991][T16025] RDX: ffffffffffffff9c RSI: 0000000000000000 RDI: 0000000000000006
[  677.283001][T16025] RBP: 00007f3585a10b39 R08: 0000000000001000 R09: 0000000000000000
[  677.283010][T16025] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000000
[  677.283019][T16025] R13: 0000000000000000 R14: 00007f3585bb5fa0 R15: 00007ffcbf79bfa8
[  677.283039][T16025]  </TASK>
[  677.283063][T16025] ERROR: Out of memory at tomoyo_realpath_from_path.
[  678.628771][T16059] QAT: Stopping all acceleration devices.
[  679.253444][T16077] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7fe08
[  679.263615][T16077] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  679.274496][T16077] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  679.282666][T16077] page_type: f5(slab)
[  679.287211][T16077] raw: 00fff00000000040 ffff888140e8fc80 ffffea0001e7ca00 dead000000000004
[  679.296249][T16077] raw: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  679.324682][T16077] head: 00fff00000000040 ffff888140e8fc80 ffffea0001e7ca00 dead000000000004
[  679.392243][T16077] head: 0000000000000000 0000000000130013 00000000f5000000 0000000000000000
[  679.404118][T16077] head: 00fff00000000002 ffffea0001ff8201 00000000ffffffff 00000000ffffffff
[  679.414951][T16077] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  679.425279][T16077] page dumped because: unmovable page
[  679.431900][T16077] page_owner tracks the page as allocated
[  679.441992][T16077] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 11831, tgid 11806 (syz.3.1084), ts 445434623358, free_ts 439204065921
[  679.464002][T16077]  post_alloc_hook+0x1c0/0x230
[  679.653835][T16077]  get_page_from_freelist+0x1321/0x3890
[  679.670134][T16077]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  679.732752][T16077]  alloc_pages_mpol+0x1fb/0x550
[  679.739161][T16077]  new_slab+0x23b/0x330
[  679.743379][T16077]  ___slab_alloc+0xd9c/0x1940
[  679.748360][T16077]  __slab_alloc.constprop.0+0x56/0xb0
[  679.753838][T16077]  kmem_cache_alloc_node_noprof+0xf5/0x3b0
[  679.760392][T16077]  kmalloc_reserve+0x18b/0x2c0
[  679.765424][T16077]  __alloc_skb+0x166/0x380
[  679.769920][T16077]  __ip_append_data+0x3128/0x4240
[  679.776014][T16077]  ip_append_data+0x10f/0x1a0
[  679.780750][T16077]  raw_sendmsg+0xf01/0x3820
[  679.785921][T16077]  inet_sendmsg+0x11c/0x140
[  679.790511][T16077]  ____sys_sendmsg+0x973/0xc70
[  679.795663][T16077]  ___sys_sendmsg+0x134/0x1d0
[  679.803780][T16077] page last free pid 5828 tgid 5828 stack trace:
[  679.904621][T16077]  __free_frozen_pages+0x7fe/0x1180
[  679.911320][T16077]  __folio_put+0x329/0x450
[  679.916173][T16077]  skb_release_data+0x7fb/0x9c0
[  679.921446][T16077]  __kfree_skb+0x4f/0x70
[  679.927811][T16077]  tcp_ack+0x19b2/0x5c90
[  679.933816][T16077]  tcp_rcv_established+0xda1/0x22e0
[  679.943923][T16077]  tcp_v4_do_rcv+0x5ca/0xa90
[  679.948800][T16077]  tcp_v4_rcv+0x3609/0x4650
[  679.953359][T16077]  ip_protocol_deliver_rcu+0xba/0x4c0
[  679.959104][T16077]  ip_local_deliver_finish+0x316/0x570
[  679.968560][T16077]  ip_local_deliver+0x18e/0x1f0
[  680.032758][T16077]  ip_sublist_rcv_finish+0x2c1/0x620
[  680.038430][T16077]  ip_list_rcv_finish+0x552/0x720
[  680.048477][T16077]  ip_list_rcv+0x335/0x450
[  680.053135][T16077]  __netif_receive_skb_list_core+0x752/0x950
[  680.059655][T16077]  netif_receive_skb_list_internal+0x752/0xdb0
[  680.105588][T16092] sp0: Synchronizing with TNC
[  681.476530][T16115] sp0: Synchronizing with TNC
[  682.402197][T16128] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  682.418943][T16128] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  682.427451][T16128] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  682.436303][T16128] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  682.444281][T16128] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  682.969814][T16127] chnl_net:caif_netlink_parms(): no params data found
[  683.330956][T16127] bridge0: port 1(bridge_slave_0) entered blocking state
[  683.346709][T16127] bridge0: port 1(bridge_slave_0) entered disabled state
[  683.365579][T16127] bridge_slave_0: entered allmulticast mode
[  683.421213][T16127] bridge_slave_0: entered promiscuous mode
[  683.477381][T16127] bridge0: port 2(bridge_slave_1) entered blocking state
[  683.486951][T16127] bridge0: port 2(bridge_slave_1) entered disabled state
[  683.496547][T16127] bridge_slave_1: entered allmulticast mode
[  683.503872][T16127] bridge_slave_1: entered promiscuous mode
[  683.720929][T16127] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  683.829757][T16127] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  684.314748][T16127] team0: Port device team_slave_0 added
[  684.356413][T16127] team0: Port device team_slave_1 added
[  684.525628][T15516] Bluetooth: hci4: command tx timeout
[  684.700758][T16127] batman_adv: batadv0: Adding interface: batadv_slave_0
[  684.724936][T16127] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  684.756929][T16127] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  684.793976][T16182] sp0: Synchronizing with TNC
[  684.804963][T16127] batman_adv: batadv0: Adding interface: batadv_slave_1
[  684.811930][T16127] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  684.954969][T16127] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  685.089808][T16127] hsr_slave_0: entered promiscuous mode
[  685.162667][T16127] hsr_slave_1: entered promiscuous mode
[  685.234285][T16127] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  685.242108][T16127] Cannot create hsr debugfs directory
[  685.513275][T16195] ubi0: attaching mtd0
[  685.524708][T16195] ubi0 error: ubi_attach_mtd_dev: bad VID header (63) or data offsets (127)
[  685.642672][T16196] FAULT_INJECTION: forcing a failure.
[  685.642672][T16196] name failslab, interval 1, probability 0, space 0, times 0
[  685.672790][T16196] CPU: 1 UID: 0 PID: 16196 Comm: syz.3.1765 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  685.672839][T16196] Tainted: [U]=USER
[  685.672849][T16196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  685.672869][T16196] Call Trace:
[  685.672879][T16196]  <TASK>
[  685.672891][T16196]  dump_stack_lvl+0x16c/0x1f0
[  685.672944][T16196]  should_fail_ex+0x512/0x640
[  685.672986][T16196]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  685.673031][T16196]  ? __pfx_mempool_alloc_slab+0x10/0x10
[  685.673062][T16196]  should_failslab+0xc2/0x120
[  685.673106][T16196]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  685.673154][T16196]  ? mempool_init_node+0x320/0x760
[  685.673191][T16196]  ? __pfx_mempool_alloc_slab+0x10/0x10
[  685.673220][T16196]  ? __pfx_mempool_alloc_slab+0x10/0x10
[  685.673247][T16196]  mempool_init_node+0x320/0x760
[  685.673280][T16196]  ? __pfx_mempool_alloc_slab+0x10/0x10
[  685.673305][T16196]  ? __pfx_mempool_free_slab+0x10/0x10
[  685.673340][T16196]  mempool_init_noprof+0x3a/0x50
[  685.673379][T16196]  bioset_init+0x37a/0x880
[  685.673412][T16196]  ? __pfx_bioset_init+0x10/0x10
[  685.673456][T16196]  __alloc_disk_node+0x83/0x630
[  685.673498][T16196]  __blk_mq_alloc_disk+0x89/0x120
[  685.673537][T16196]  nbd_dev_add+0x4a0/0xbc0
[  685.673579][T16196]  ? __pfx_nbd_dev_add+0x10/0x10
[  685.673635][T16196]  ? bpf_lsm_capable+0x9/0x10
[  685.673666][T16196]  ? __radix_tree_lookup+0x21f/0x2c0
[  685.673708][T16196]  nbd_genl_connect+0x8b0/0x1c20
[  685.673756][T16196]  ? __pfx_nbd_genl_connect+0x10/0x10
[  685.673794][T16196]  ? __nla_parse+0x40/0x60
[  685.673825][T16196]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  685.673859][T16196]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  685.673900][T16196]  genl_family_rcv_msg_doit+0x209/0x2f0
[  685.673936][T16196]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  685.673968][T16196]  ? genl_get_cmd+0x194/0x580
[  685.674006][T16196]  ? __radix_tree_lookup+0x21f/0x2c0
[  685.674046][T16196]  genl_rcv_msg+0x55c/0x800
[  685.674082][T16196]  ? __pfx_genl_rcv_msg+0x10/0x10
[  685.674125][T16196]  ? __pfx_nbd_genl_connect+0x10/0x10
[  685.674177][T16196]  netlink_rcv_skb+0x158/0x420
[  685.674206][T16196]  ? __pfx_genl_rcv_msg+0x10/0x10
[  685.674240][T16196]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  685.674284][T16196]  ? netlink_deliver_tap+0x1ae/0xd30
[  685.674317][T16196]  genl_rcv+0x28/0x40
[  685.674346][T16196]  netlink_unicast+0x53d/0x7f0
[  685.674380][T16196]  ? __pfx_netlink_unicast+0x10/0x10
[  685.674420][T16196]  netlink_sendmsg+0x8d1/0xdd0
[  685.674455][T16196]  ? __pfx_netlink_sendmsg+0x10/0x10
[  685.674497][T16196]  ____sys_sendmsg+0xa98/0xc70
[  685.674529][T16196]  ? copy_msghdr_from_user+0x10a/0x160
[  685.674569][T16196]  ? __pfx_____sys_sendmsg+0x10/0x10
[  685.674595][T16196]  ? preempt_schedule_thunk+0x16/0x30
[  685.674633][T16196]  ? try_to_wake_up+0xa2f/0x1680
[  685.674668][T16196]  ___sys_sendmsg+0x134/0x1d0
[  685.674705][T16196]  ? __pfx____sys_sendmsg+0x10/0x10
[  685.674739][T16196]  ? __lock_acquire+0x622/0x1c90
[  685.674816][T16196]  __sys_sendmsg+0x16d/0x220
[  685.674854][T16196]  ? __pfx___sys_sendmsg+0x10/0x10
[  685.674886][T16196]  ? __x64_sys_futex+0x1e0/0x4c0
[  685.674930][T16196]  do_syscall_64+0xcd/0x490
[  685.674963][T16196]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  685.674984][T16196] RIP: 0033:0x7fb55538e929
[  685.675003][T16196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  685.675023][T16196] RSP: 002b:00007fb55612d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  685.675043][T16196] RAX: ffffffffffffffda RBX: 00007fb5555b6080 RCX: 00007fb55538e929
[  685.675059][T16196] RDX: 0000000000008880 RSI: 0000200000001e00 RDI: 0000000000000005
[  685.675073][T16196] RBP: 00007fb555410b39 R08: 0000000000000000 R09: 0000000000000000
[  685.675087][T16196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  685.675107][T16196] R13: 0000000000000000 R14: 00007fb5555b6080 R15: 00007fff640dca68
[  685.675136][T16196]  </TASK>
[  686.074886][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  686.081232][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  686.108280][T16196] nbd: failed to add new device
[  686.150574][T16127] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  686.161813][T16127] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  686.174500][T16127] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  686.187724][T16127] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  686.604771][T15516] Bluetooth: hci4: command tx timeout
[  686.789515][T16127] 8021q: adding VLAN 0 to HW filter on device bond0
[  687.067224][T16127] 8021q: adding VLAN 0 to HW filter on device team0
[  687.119444][T15542] bridge0: port 1(bridge_slave_0) entered blocking state
[  687.126672][T15542] bridge0: port 1(bridge_slave_0) entered forwarding state
[  687.234285][T15542] bridge0: port 2(bridge_slave_1) entered blocking state
[  687.241567][T15542] bridge0: port 2(bridge_slave_1) entered forwarding state
[  687.447574][T16127] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  687.466177][T16127] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  687.841298][T16232] FAULT_INJECTION: forcing a failure.
[  687.841298][T16232] name failslab, interval 1, probability 0, space 0, times 0
[  687.855057][T16232] CPU: 1 UID: 0 PID: 16232 Comm: syz.3.1771 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  687.855097][T16232] Tainted: [U]=USER
[  687.855105][T16232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  687.855118][T16232] Call Trace:
[  687.855127][T16232]  <TASK>
[  687.855137][T16232]  dump_stack_lvl+0x16c/0x1f0
[  687.855177][T16232]  should_fail_ex+0x512/0x640
[  687.855214][T16232]  ? fs_reclaim_acquire+0xae/0x150
[  687.855245][T16232]  should_failslab+0xc2/0x120
[  687.855269][T16232]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  687.855304][T16232]  ? ima_inode_get+0x120/0x580
[  687.855345][T16232]  ima_inode_get+0x120/0x580
[  687.855383][T16232]  process_measurement+0x585/0x23e0
[  687.855430][T16232]  ? __pfx_process_measurement+0x10/0x10
[  687.855470][T16232]  ? alloc_empty_file+0x73/0x1e0
[  687.855494][T16232]  ? hugetlb_file_setup+0x4cd/0x620
[  687.855519][T16232]  ? ksys_mmap_pgoff+0x189/0x5c0
[  687.855543][T16232]  ? __x64_sys_mmap+0x125/0x190
[  687.855632][T16232]  ima_file_mmap+0x1b1/0x1d0
[  687.855660][T16232]  ? __pfx_ima_file_mmap+0x10/0x10
[  687.855703][T16232]  security_mmap_file+0x88c/0x990
[  687.855737][T16232]  vm_mmap_pgoff+0xec/0x450
[  687.855766][T16232]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  687.855788][T16232]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  687.855817][T16232]  ? hugetlbfs_get_inode+0x31f/0x730
[  687.855853][T16232]  ksys_mmap_pgoff+0x1c8/0x5c0
[  687.855893][T16232]  __x64_sys_mmap+0x125/0x190
[  687.855931][T16232]  do_syscall_64+0xcd/0x490
[  687.855969][T16232]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  687.855993][T16232] RIP: 0033:0x7fb55538e929
[  687.856014][T16232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  687.856038][T16232] RSP: 002b:00007fb55614e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  687.856062][T16232] RAX: ffffffffffffffda RBX: 00007fb5555b5fa0 RCX: 00007fb55538e929
[  687.856079][T16232] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000
[  687.856095][T16232] RBP: 00007fb55614e090 R08: 0000000000000401 R09: 0000300000000000
[  687.856111][T16232] R10: 0000000000040eb5 R11: 0000000000000246 R12: 0000000000000001
[  687.856127][T16232] R13: 0000000000000000 R14: 00007fb5555b5fa0 R15: 00007fff640dca68
[  687.856162][T16232]  </TASK>
[  688.504958][T16127] 8021q: adding VLAN 0 to HW filter on device batadv0
[  688.698007][T15516] Bluetooth: hci4: command tx timeout
[  688.787987][T16258] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1775'.
[  689.167321][T16258] team0: Port device team_slave_0 removed
[  689.482465][T16269] Falling back ldisc for ttyS2.
[  689.968238][T16294] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input49
[  690.180807][T16127] veth0_vlan: entered promiscuous mode
[  690.262654][T16127] veth1_vlan: entered promiscuous mode
[  690.560144][T16127] veth0_macvtap: entered promiscuous mode
[  690.606243][T16127] veth1_macvtap: entered promiscuous mode
[  690.746963][T16127] batman_adv: batadv0: Interface activated: batadv_slave_0
[  690.765199][T15516] Bluetooth: hci4: command tx timeout
[  690.816038][T16127] batman_adv: batadv0: Interface activated: batadv_slave_1
[  690.896920][T16318] sp0: Synchronizing with TNC
[  691.037135][T16127] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  691.066897][T16127] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  691.091717][T16127] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  691.137739][T16127] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  691.538949][T15542] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  691.568822][T15542] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  691.716739][T15564] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  691.735044][T15564] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  695.804078][T16404] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1795'.
[  697.108760][T16414] FAULT_INJECTION: forcing a failure.
[  697.108760][T16414] name failslab, interval 1, probability 0, space 0, times 0
[  697.236012][T16414] CPU: 1 UID: 0 PID: 16414 Comm: syz.1.1796 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  697.236055][T16414] Tainted: [U]=USER
[  697.236064][T16414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  697.236078][T16414] Call Trace:
[  697.236089][T16414]  <TASK>
[  697.236099][T16414]  dump_stack_lvl+0x16c/0x1f0
[  697.236144][T16414]  should_fail_ex+0x512/0x640
[  697.236179][T16414]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  697.236224][T16414]  should_failslab+0xc2/0x120
[  697.236249][T16414]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  697.236290][T16414]  ? devinet_init_net+0x9c/0x910
[  697.236323][T16414]  ? __pfx_devinet_init_net+0x10/0x10
[  697.236355][T16414]  kmemdup_noprof+0x29/0x60
[  697.236393][T16414]  devinet_init_net+0x9c/0x910
[  697.236427][T16414]  ? __pfx_devinet_init_net+0x10/0x10
[  697.236457][T16414]  ops_init+0x1df/0x5f0
[  697.236485][T16414]  setup_net+0x1ff/0x510
[  697.236508][T16414]  ? lockdep_init_map_type+0x5c/0x280
[  697.236542][T16414]  ? __pfx_setup_net+0x10/0x10
[  697.236569][T16414]  ? debug_mutex_init+0x37/0x70
[  697.236598][T16414]  copy_net_ns+0x2a6/0x5f0
[  697.236630][T16414]  create_new_namespaces+0x3ea/0xa90
[  697.236668][T16414]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  697.236699][T16414]  ksys_unshare+0x45b/0xa40
[  697.236731][T16414]  ? __pfx_ksys_unshare+0x10/0x10
[  697.236764][T16414]  ? xfd_validate_state+0x61/0x180
[  697.236806][T16414]  __x64_sys_unshare+0x31/0x40
[  697.236847][T16414]  do_syscall_64+0xcd/0x490
[  697.236889][T16414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  697.236915][T16414] RIP: 0033:0x7fadccd8e929
[  697.236937][T16414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  697.236962][T16414] RSP: 002b:00007fadcdb57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  697.236988][T16414] RAX: ffffffffffffffda RBX: 00007fadccfb5fa0 RCX: 00007fadccd8e929
[  697.237006][T16414] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  697.237021][T16414] RBP: 00007fadcce10b39 R08: 0000000000000000 R09: 0000000000000000
[  697.237035][T16414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  697.237050][T16414] R13: 0000000000000000 R14: 00007fadccfb5fa0 R15: 00007fff45e44ac8
[  697.237085][T16414]  </TASK>
[  699.384800][T16454] sp0: Synchronizing with TNC
[  699.609148][T16445] sp0: Synchronizing with TNC
[  700.220462][T16468] sp0: Synchronizing with TNC
[  700.599753][T16475] sp0: Synchronizing with TNC
[  701.620885][T16487] sp0: Synchronizing with TNC
[  703.930967][T16523] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1816'.
[  703.999149][T16545] FAULT_INJECTION: forcing a failure.
[  703.999149][T16545] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  704.158759][T16545] CPU: 1 UID: 0 PID: 16545 Comm: syz.4.1819 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  704.158799][T16545] Tainted: [U]=USER
[  704.158807][T16545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  704.158821][T16545] Call Trace:
[  704.158830][T16545]  <TASK>
[  704.158840][T16545]  dump_stack_lvl+0x16c/0x1f0
[  704.158880][T16545]  should_fail_ex+0x512/0x640
[  704.158920][T16545]  _copy_to_user+0x32/0xd0
[  704.158959][T16545]  simple_read_from_buffer+0xcb/0x170
[  704.158994][T16545]  proc_fail_nth_read+0x197/0x270
[  704.159024][T16545]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  704.159055][T16545]  ? rw_verify_area+0xcf/0x680
[  704.159085][T16545]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  704.159113][T16545]  vfs_read+0x1e4/0xc60
[  704.159151][T16545]  ? __pfx___mutex_lock+0x10/0x10
[  704.159187][T16545]  ? __pfx_vfs_read+0x10/0x10
[  704.159230][T16545]  ? __fget_files+0x20e/0x3c0
[  704.159259][T16545]  ? sysvec_kvm_asyncpf_interrupt+0x70/0xc0
[  704.159305][T16545]  ksys_read+0x12a/0x250
[  704.159343][T16545]  ? __pfx_ksys_read+0x10/0x10
[  704.159387][T16545]  do_syscall_64+0xcd/0x490
[  704.159426][T16545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  704.159451][T16545] RIP: 0033:0x7f83db18d33c
[  704.159471][T16545] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  704.159495][T16545] RSP: 002b:00007f83dbf1e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  704.159519][T16545] RAX: ffffffffffffffda RBX: 00007f83db3b5fa0 RCX: 00007f83db18d33c
[  704.159536][T16545] RDX: 000000000000000f RSI: 00007f83dbf1e0a0 RDI: 0000000000000003
[  704.159552][T16545] RBP: 00007f83dbf1e090 R08: 0000000000000000 R09: 0000000000000000
[  704.159567][T16545] R10: fffffffffffffffc R11: 0000000000000246 R12: 0000000000000001
[  704.159583][T16545] R13: 0000000000000001 R14: 00007f83db3b5fa0 R15: 00007fff68e968c8
[  704.159617][T16545]  </TASK>
[  705.185787][T16554] FAULT_INJECTION: forcing a failure.
[  705.185787][T16554] name failslab, interval 1, probability 0, space 0, times 0
[  705.198723][T16554] CPU: 1 UID: 0 PID: 16554 Comm: syz.4.1820 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  705.198753][T16554] Tainted: [U]=USER
[  705.198759][T16554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  705.198768][T16554] Call Trace:
[  705.198774][T16554]  <TASK>
[  705.198780][T16554]  dump_stack_lvl+0x16c/0x1f0
[  705.198808][T16554]  should_fail_ex+0x512/0x640
[  705.198829][T16554]  ? __kmalloc_noprof+0xbf/0x510
[  705.198851][T16554]  ? sk_prot_alloc+0x1a8/0x2a0
[  705.198865][T16554]  should_failslab+0xc2/0x120
[  705.198879][T16554]  __kmalloc_noprof+0xd2/0x510
[  705.198903][T16554]  sk_prot_alloc+0x1a8/0x2a0
[  705.198920][T16554]  sk_alloc+0x36/0xc20
[  705.198941][T16554]  __netlink_create+0x5e/0x2c0
[  705.198960][T16554]  ? __wake_up+0x3f/0x60
[  705.198977][T16554]  netlink_create+0x39e/0x620
[  705.198998][T16554]  ? __pfx_genl_bind+0x10/0x10
[  705.199012][T16554]  ? __pfx_genl_unbind+0x10/0x10
[  705.199034][T16554]  ? __pfx_genl_release+0x10/0x10
[  705.199053][T16554]  __sock_create+0x338/0x8d0
[  705.199074][T16554]  __sys_socket+0x14d/0x260
[  705.199091][T16554]  ? __pfx___sys_socket+0x10/0x10
[  705.199108][T16554]  ? xfd_validate_state+0x61/0x180
[  705.199125][T16554]  ? getname_flags.part.0+0x1c5/0x550
[  705.199145][T16554]  __x64_sys_socket+0x72/0xb0
[  705.199161][T16554]  ? lockdep_hardirqs_on+0x7c/0x110
[  705.199181][T16554]  do_syscall_64+0xcd/0x490
[  705.199203][T16554]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  705.199218][T16554] RIP: 0033:0x7f83db18e929
[  705.199230][T16554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  705.199244][T16554] RSP: 002b:00007f83dbf1e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  705.199259][T16554] RAX: ffffffffffffffda RBX: 00007f83db3b5fa0 RCX: 00007f83db18e929
[  705.199269][T16554] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  705.199277][T16554] RBP: 00007f83db210b39 R08: 0000000000000000 R09: 0000000000000000
[  705.199286][T16554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  705.199294][T16554] R13: 0000000000000000 R14: 00007f83db3b5fa0 R15: 00007fff68e968c8
[  705.199312][T16554]  </TASK>
[  705.353883][T16526] sysfs_service_op_show: Client not running :-5:
[  705.739188][T16563] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input52
[  706.372646][T16580] sp0: Synchronizing with TNC
[  707.212005][T16595] FAULT_INJECTION: forcing a failure.
[  707.212005][T16595] name failslab, interval 1, probability 0, space 0, times 0
[  707.304687][T16595] CPU: 0 UID: 0 PID: 16595 Comm: syz.0.1829 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  707.304726][T16595] Tainted: [U]=USER
[  707.304734][T16595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  707.304747][T16595] Call Trace:
[  707.304763][T16595]  <TASK>
[  707.304772][T16595]  dump_stack_lvl+0x16c/0x1f0
[  707.304810][T16595]  should_fail_ex+0x512/0x640
[  707.304839][T16595]  ? __kmalloc_node_noprof+0xc5/0x500
[  707.304876][T16595]  should_failslab+0xc2/0x120
[  707.304898][T16595]  __kmalloc_node_noprof+0xd8/0x500
[  707.304931][T16595]  ? load_msg+0x43/0x4a0
[  707.304965][T16595]  load_msg+0x43/0x4a0
[  707.305001][T16595]  do_msgsnd+0x1a7/0x17b0
[  707.305038][T16595]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  707.305078][T16595]  ? __pfx_do_msgsnd+0x10/0x10
[  707.305115][T16595]  ? find_held_lock+0x2b/0x80
[  707.305135][T16595]  ? __might_fault+0xe3/0x190
[  707.305166][T16595]  ? __might_fault+0xe3/0x190
[  707.305194][T16595]  ? __might_fault+0x13b/0x190
[  707.305233][T16595]  ? __x64_sys_msgsnd+0xe5/0x130
[  707.305265][T16595]  __x64_sys_msgsnd+0xe5/0x130
[  707.305301][T16595]  do_syscall_64+0xcd/0x490
[  707.305338][T16595]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  707.305361][T16595] RIP: 0033:0x7f358598e929
[  707.305381][T16595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  707.305402][T16595] RSP: 002b:00007f358676f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000045
[  707.305424][T16595] RAX: ffffffffffffffda RBX: 00007f3585bb6080 RCX: 00007f358598e929
[  707.305441][T16595] RDX: 0000000000000008 RSI: 0000200000000000 RDI: 0000000000000000
[  707.305456][T16595] RBP: 00007f358676f090 R08: 0000000000000000 R09: 0000000000000000
[  707.305471][T16595] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[  707.305486][T16595] R13: 0000000000000001 R14: 00007f3585bb6080 R15: 00007ffcbf79bfa8
[  707.305518][T16595]  </TASK>
[  707.801930][T16603] sp0: Synchronizing with TNC
[  708.054042][T16598] Console: switching to colour VGA+ 80x25
[  708.466953][T16615] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input54
[  708.740515][T16620] sp0: Synchronizing with TNC
[  709.365456][T16628] FAULT_INJECTION: forcing a failure.
[  709.365456][T16628] name failslab, interval 1, probability 0, space 0, times 0
[  709.422391][T16628] CPU: 1 UID: 0 PID: 16628 Comm: syz.4.1836 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  709.422428][T16628] Tainted: [U]=USER
[  709.422435][T16628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  709.422448][T16628] Call Trace:
[  709.422457][T16628]  <TASK>
[  709.422466][T16628]  dump_stack_lvl+0x16c/0x1f0
[  709.422507][T16628]  should_fail_ex+0x512/0x640
[  709.422540][T16628]  ? fs_reclaim_acquire+0xae/0x150
[  709.422570][T16628]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  709.422602][T16628]  should_failslab+0xc2/0x120
[  709.422626][T16628]  __kmalloc_noprof+0xd2/0x510
[  709.422668][T16628]  tomoyo_realpath_from_path+0xc2/0x6e0
[  709.422705][T16628]  ? tomoyo_profile+0x47/0x60
[  709.422744][T16628]  tomoyo_path_number_perm+0x245/0x580
[  709.422772][T16628]  ? tomoyo_path_number_perm+0x237/0x580
[  709.422810][T16628]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  709.422840][T16628]  ? find_held_lock+0x2b/0x80
[  709.422897][T16628]  ? find_held_lock+0x2b/0x80
[  709.422920][T16628]  ? hook_file_ioctl_common+0x145/0x410
[  709.422954][T16628]  ? __fget_files+0x20e/0x3c0
[  709.422993][T16628]  security_file_ioctl+0x9b/0x240
[  709.423025][T16628]  __x64_sys_ioctl+0xb7/0x210
[  709.423056][T16628]  do_syscall_64+0xcd/0x490
[  709.423095][T16628]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  709.423121][T16628] RIP: 0033:0x7f83db18e929
[  709.423142][T16628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  709.423166][T16628] RSP: 002b:00007f83dbf1e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  709.423190][T16628] RAX: ffffffffffffffda RBX: 00007f83db3b5fa0 RCX: 00007f83db18e929
[  709.423208][T16628] RDX: 0000000000000006 RSI: 00000000400454d1 RDI: 04000000000000c8
[  709.423224][T16628] RBP: 00007f83dbf1e090 R08: 0000000000000000 R09: 0000000000000000
[  709.423239][T16628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  709.423254][T16628] R13: 0000000000000000 R14: 00007f83db3b5fa0 R15: 00007fff68e968c8
[  709.423289][T16628]  </TASK>
[  709.423305][T16628] ERROR: Out of memory at tomoyo_realpath_from_path.
[  710.128065][T16644] FAULT_INJECTION: forcing a failure.
[  710.128065][T16644] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  710.142778][T16644] CPU: 1 UID: 0 PID: 16644 Comm: syz.4.1840 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  710.142816][T16644] Tainted: [U]=USER
[  710.142824][T16644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  710.142838][T16644] Call Trace:
[  710.142847][T16644]  <TASK>
[  710.142855][T16644]  dump_stack_lvl+0x16c/0x1f0
[  710.142896][T16644]  should_fail_ex+0x512/0x640
[  710.142933][T16644]  should_fail_alloc_page+0xe7/0x130
[  710.142960][T16644]  prepare_alloc_pages+0x3c2/0x610
[  710.142994][T16644]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  710.143032][T16644]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  710.143061][T16644]  ? is_bpf_text_address+0x94/0x1a0
[  710.143093][T16644]  ? kernel_text_address+0x8d/0x100
[  710.143130][T16644]  ? __kernel_text_address+0xd/0x40
[  710.143165][T16644]  ? unwind_get_return_address+0x59/0xa0
[  710.143201][T16644]  ? arch_stack_walk+0xa6/0x100
[  710.143239][T16644]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  710.143276][T16644]  ? __lock_acquire+0x622/0x1c90
[  710.143320][T16644]  ? _kstrtoull+0x145/0x200
[  710.143347][T16644]  ? __pfx__kstrtoull+0x10/0x10
[  710.143372][T16644]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  710.143410][T16644]  ? policy_nodemask+0xea/0x4e0
[  710.143449][T16644]  alloc_pages_mpol+0x1fb/0x550
[  710.143474][T16644]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  710.143507][T16644]  folio_alloc_mpol_noprof+0x36/0x2f0
[  710.143537][T16644]  vma_alloc_folio_noprof+0xed/0x1e0
[  710.143563][T16644]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  710.143597][T16644]  ? find_held_lock+0x2b/0x80
[  710.143622][T16644]  ? __handle_mm_fault+0x1092/0x5490
[  710.143659][T16644]  __handle_mm_fault+0x2f21/0x5490
[  710.143699][T16644]  ? __pfx___handle_mm_fault+0x10/0x10
[  710.143730][T16644]  ? lock_vma_under_rcu+0x47d/0x970
[  710.143762][T16644]  ? lock_vma_under_rcu+0x47d/0x970
[  710.143819][T16644]  handle_mm_fault+0x589/0xd10
[  710.143852][T16644]  ? __pkru_allows_pkey+0x41/0xb0
[  710.143885][T16644]  do_user_addr_fault+0x60c/0x1370
[  710.143921][T16644]  ? rcu_is_watching+0x12/0xc0
[  710.143950][T16644]  exc_page_fault+0x5c/0xb0
[  710.143986][T16644]  asm_exc_page_fault+0x26/0x30
[  710.144011][T16644] RIP: 0033:0x7f83db05a33b
[  710.144032][T16644] Code: 00 00 00 48 8d 3d fd 2b 19 00 48 89 c1 31 c0 e8 fb 3c ff ff eb d2 66 0f 1f 84 00 00 00 00 00 55 31 c0 53 48 81 ec 68 10 00 00 <48> 89 7c 24 08 48 8d 3d 31 2c 19 00 48 89 34 24 48 8b 14 24 48 8b
[  710.144056][T16644] RSP: 002b:00007f83d8fd3fb0 EFLAGS: 00010202
[  710.144076][T16644] RAX: 0000000000000000 RBX: 00007f83db3b6160 RCX: 0000000000000000
[  710.144092][T16644] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000000
[  710.144108][T16644] RBP: 00007f83d8fd5090 R08: 0000000000000000 R09: 0000000000000000
[  710.144124][T16644] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001
[  710.144139][T16644] R13: 0000000000000000 R14: 00007f83db3b6160 R15: 00007fff68e968c8
[  710.144173][T16644]  </TASK>
[  710.437229][T16644] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  711.786011][T16677] sp0: Synchronizing with TNC
[  712.391970][T16687] sp0: Synchronizing with TNC
[  713.294964][T16682] FAULT_INJECTION: forcing a failure.
[  713.294964][T16682] name fail_futex, interval 1, probability 0, space 0, times 0
[  713.364950][T16682] CPU: 1 UID: 0 PID: 16682 Comm: syz.1.1849 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  713.364989][T16682] Tainted: [U]=USER
[  713.364998][T16682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  713.365012][T16682] Call Trace:
[  713.365019][T16682]  <TASK>
[  713.365029][T16682]  dump_stack_lvl+0x16c/0x1f0
[  713.365070][T16682]  should_fail_ex+0x512/0x640
[  713.365109][T16682]  get_futex_key+0x1d0/0x1540
[  713.365145][T16682]  ? __pfx_get_futex_key+0x10/0x10
[  713.365173][T16682]  ? pick_eevdf+0x3be/0x5b0
[  713.365198][T16682]  ? update_curr_se+0x8b/0x270
[  713.365246][T16682]  futex_wait_setup+0x9d/0x550
[  713.365296][T16682]  __futex_wait+0x194/0x2f0
[  713.365336][T16682]  ? __pfx___futex_wait+0x10/0x10
[  713.365371][T16682]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  713.365406][T16682]  ? lockdep_hardirqs_on+0x7c/0x110
[  713.365447][T16682]  ? __pfx_futex_wake_mark+0x10/0x10
[  713.365502][T16682]  futex_wait+0xe8/0x380
[  713.365538][T16682]  ? __pfx_futex_wait+0x10/0x10
[  713.365580][T16682]  ? errseq_sample+0x53/0x70
[  713.365618][T16682]  ? file_init_path+0x4fe/0x760
[  713.365651][T16682]  do_futex+0x229/0x350
[  713.365683][T16682]  ? __pfx_do_futex+0x10/0x10
[  713.365714][T16682]  ? fd_install+0x225/0x750
[  713.365754][T16682]  __x64_sys_futex+0x1e0/0x4c0
[  713.365787][T16682]  ? __sys_socket+0xac/0x260
[  713.365818][T16682]  ? __pfx___x64_sys_futex+0x10/0x10
[  713.365850][T16682]  ? xfd_validate_state+0x61/0x180
[  713.365881][T16682]  ? getname_flags.part.0+0x1c5/0x550
[  713.365921][T16682]  do_syscall_64+0xcd/0x490
[  713.365962][T16682]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  713.365988][T16682] RIP: 0033:0x7fadccd8e929
[  713.366010][T16682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  713.366035][T16682] RSP: 002b:00007fadcdb570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  713.366061][T16682] RAX: ffffffffffffffda RBX: 00007fadccfb5fa8 RCX: 00007fadccd8e929
[  713.366079][T16682] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fadccfb5fa8
[  713.366096][T16682] RBP: 00007fadccfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  713.366113][T16682] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fadccfb5fac
[  713.366131][T16682] R13: 0000000000000000 R14: 00007fff45e449e0 R15: 00007fff45e44ac8
[  713.366166][T16682]  </TASK>
[  714.025134][T16713] lo: entered allmulticast mode
[  714.092944][T16717] lo: left allmulticast mode
[  714.205985][    C0] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff8163eaa9 (__mcheck_cpu_init_clear_banks+0x109/0x1f0)
[  714.221371][    C0] Call Trace:
[  714.224663][    C0]  <IRQ>
[  714.227512][    C0]  ? __pfx_mce_cpu_restart+0x10/0x10
[  714.232832][    C0]  mce_cpu_restart+0x98/0xb0
[  714.237613][    C0]  __flush_smp_call_function_queue+0x27a/0x8c0
[  714.243791][    C0]  __sysvec_call_function_single+0x87/0x400
[  714.249693][    C0]  sysvec_call_function_single+0x9f/0xc0
[  714.255343][    C0]  </IRQ>
[  714.258270][    C0]  <TASK>
[  714.261199][    C0]  asm_sysvec_call_function_single+0x1a/0x20
[  714.267187][    C0] RIP: 0010:proc_invalidate_siblings_dcache+0x5ae/0x760
[  714.274140][    C0] Code: 98 d2 34 0e 01 e8 82 29 3c ff e9 36 fc ff ff e8 d8 00 60 ff 31 f6 31 ff e8 0f fc 5f ff e9 22 fd ff ff 41 89 c5 e9 df fd ff ff <45> 31 f6 e8 ba 00 60 ff e8 85 59 45 ff 31 ff 89 c3 89 c6 e8 8a fb
[  714.293772][    C0] RSP: 0018:ffffc90003e8f930 EFLAGS: 00000202
[  714.299851][    C0] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff825b8d76
[  714.307912][    C0] RDX: ffff88802235bc00 RSI: 0000000000000000 RDI: 0000000000000005
[  714.315887][    C0] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  714.323879][    C0] R10: 0000000000000001 R11: 0000000000000001 R12: ffff8880363a06d0
[  714.331867][    C0] R13: ffff88802ef75a00 R14: ffff88802ef75a00 R15: ffff88802727b710
[  714.339870][    C0]  ? proc_invalidate_siblings_dcache+0x6c6/0x760
[  714.346248][    C0]  ? rcu_is_watching+0x12/0xc0
[  714.351022][    C0]  ? _raw_write_unlock_irq+0x23/0x50
[  714.356327][    C0]  release_task+0xe17/0x1ca0
[  714.360941][    C0]  ? __pfx_release_task+0x10/0x10
[  714.365976][    C0]  ? lock_acquire+0x179/0x350
[  714.370665][    C0]  ? rcu_is_watching+0x12/0xc0
[  714.375433][    C0]  wait_consider_task+0x17ae/0x3f30
[  714.380649][    C0]  ? __pfx_wait_consider_task+0x10/0x10
[  714.386216][    C0]  __do_wait+0x1e2/0x890
[  714.390474][    C0]  ? do_wait+0x1e4/0x5a0
[  714.394723][    C0]  do_wait+0x21e/0x5a0
[  714.398806][    C0]  kernel_wait4+0x16b/0x280
[  714.403326][    C0]  ? __pfx_kernel_wait4+0x10/0x10
[  714.408452][    C0]  ? __pfx_child_wait_callback+0x10/0x10
[  714.414109][    C0]  __do_sys_wait4+0x15d/0x170
[  714.418802][    C0]  ? __pfx___do_sys_wait4+0x10/0x10
[  714.424022][    C0]  ? __pfx_fput_close_sync+0x10/0x10
[  714.429307][    C0]  ? dnotify_flush+0x79/0x4c0
[  714.434005][    C0]  do_syscall_64+0xcd/0x490
[  714.438529][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  714.444426][    C0] RIP: 0033:0x7f6a99ccd407
[  714.448843][    C0] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  714.468456][    C0] RSP: 002b:00007ffd5e29e080 EFLAGS: 00000202 ORIG_RAX: 000000000000003d
[  714.476873][    C0] RAX: ffffffffffffffda RBX: 00007f6a99b7dc80 RCX: 00007f6a99ccd407
[  714.484859][    C0] RDX: 0000000000000000 RSI: 00007ffd5e29e0ec RDI: ffffffffffffffff
[  714.492837][    C0] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  714.500811][    C0] R10: 0000000000000000 R11: 0000000000000202 R12: 000055ce19c154c0
[  714.508784][    C0] R13: 0000000000000001 R14: 000055ce19c0d910 R15: 00007f6a99ee7460
[  714.516794][    C0]  </TASK>
[  714.693959][T16711] program syz.1.1854 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  715.598478][T16718] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  715.654969][T16718] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  715.743849][T16718] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  715.775158][T16718] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  715.940614][T16718] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  715.991252][T16718] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  716.027673][T16718] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  716.092251][T16718] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  716.201582][T16718] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  716.254788][T16718] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  716.367461][T16718] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  716.906405][T16765] FAULT_INJECTION: forcing a failure.
[  716.906405][T16765] name failslab, interval 1, probability 0, space 0, times 0
[  717.024800][T16765] CPU: 1 UID: 0 PID: 16765 Comm: syz.4.1861 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  717.024837][T16765] Tainted: [U]=USER
[  717.024846][T16765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  717.024859][T16765] Call Trace:
[  717.024867][T16765]  <TASK>
[  717.024876][T16765]  dump_stack_lvl+0x16c/0x1f0
[  717.024913][T16765]  should_fail_ex+0x512/0x640
[  717.024944][T16765]  ? fs_reclaim_acquire+0xae/0x150
[  717.024973][T16765]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  717.025003][T16765]  should_failslab+0xc2/0x120
[  717.025025][T16765]  __kmalloc_noprof+0xd2/0x510
[  717.025058][T16765]  tomoyo_realpath_from_path+0xc2/0x6e0
[  717.025095][T16765]  ? tomoyo_profile+0x47/0x60
[  717.025125][T16765]  tomoyo_path_number_perm+0x245/0x580
[  717.025146][T16765]  ? tomoyo_path_number_perm+0x237/0x580
[  717.025169][T16765]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  717.025193][T16765]  ? find_held_lock+0x2b/0x80
[  717.025236][T16765]  ? find_held_lock+0x2b/0x80
[  717.025253][T16765]  ? hook_file_ioctl_common+0x145/0x410
[  717.025279][T16765]  ? __fget_files+0x20e/0x3c0
[  717.025308][T16765]  security_file_ioctl+0x9b/0x240
[  717.025333][T16765]  __x64_sys_ioctl+0xb7/0x210
[  717.025357][T16765]  do_syscall_64+0xcd/0x490
[  717.025387][T16765]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  717.025407][T16765] RIP: 0033:0x7f83db18e929
[  717.025423][T16765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  717.025441][T16765] RSP: 002b:00007f83d8fd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  717.025460][T16765] RAX: ffffffffffffffda RBX: 00007f83db3b6160 RCX: 00007f83db18e929
[  717.025473][T16765] RDX: 0000200000000540 RSI: 000000004004510f RDI: 0000000000000008
[  717.025486][T16765] RBP: 00007f83d8fd5090 R08: 0000000000000000 R09: 0000000000000000
[  717.025498][T16765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  717.025510][T16765] R13: 0000000000000000 R14: 00007f83db3b6160 R15: 00007fff68e968c8
[  717.025535][T16765]  </TASK>
[  717.254905][T15516] Bluetooth: hci0: command 0x0406 tx timeout
[  717.263000][T16765] ERROR: Out of memory at tomoyo_realpath_from_path.
[  717.704427][T16776] FAULT_INJECTION: forcing a failure.
[  717.704427][T16776] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  717.764316][T16776] CPU: 1 UID: 0 PID: 16776 Comm: syz.4.1863 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  717.764345][T16776] Tainted: [U]=USER
[  717.764350][T16776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  717.764359][T16776] Call Trace:
[  717.764364][T16776]  <TASK>
[  717.764370][T16776]  dump_stack_lvl+0x16c/0x1f0
[  717.764395][T16776]  should_fail_ex+0x512/0x640
[  717.764419][T16776]  should_fail_alloc_page+0xe7/0x130
[  717.764434][T16776]  prepare_alloc_pages+0x3c2/0x610
[  717.764454][T16776]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  717.764478][T16776]  ? find_held_lock+0x2b/0x80
[  717.764493][T16776]  ? get_pid_task+0xfc/0x250
[  717.764514][T16776]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  717.764545][T16776]  ? find_held_lock+0x2b/0x80
[  717.764582][T16776]  ? find_held_lock+0x2b/0x80
[  717.764599][T16776]  ? ksys_write+0x190/0x250
[  717.764619][T16776]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  717.764641][T16776]  ? policy_nodemask+0xea/0x4e0
[  717.764665][T16776]  alloc_pages_mpol+0x1fb/0x550
[  717.764679][T16776]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  717.764691][T16776]  ? __fget_files+0x20e/0x3c0
[  717.764714][T16776]  alloc_pages_noprof+0x131/0x390
[  717.764733][T16776]  get_free_pages_noprof+0x10/0xb0
[  717.764749][T16776]  __do_sys_mincore+0xf6/0x620
[  717.764769][T16776]  ? rcu_is_watching+0x12/0xc0
[  717.764785][T16776]  do_syscall_64+0xcd/0x490
[  717.764808][T16776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  717.764828][T16776] RIP: 0033:0x7f83db18e929
[  717.764840][T16776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  717.764853][T16776] RSP: 002b:00007f83dbf1e038 EFLAGS: 00000246 ORIG_RAX: 000000000000001b
[  717.764867][T16776] RAX: ffffffffffffffda RBX: 00007f83db3b5fa0 RCX: 00007f83db18e929
[  717.764877][T16776] RDX: 0000000000000000 RSI: 0000000000010000 RDI: 0000000000000000
[  717.764885][T16776] RBP: 00007f83dbf1e090 R08: 0000000000000000 R09: 0000000000000000
[  717.764893][T16776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  717.764901][T16776] R13: 0000000000000000 R14: 00007f83db3b5fa0 R15: 00007fff68e968c8
[  717.764919][T16776]  </TASK>
[  718.244738][T15516] Bluetooth: hci1: command 0x0406 tx timeout
[  718.250927][T15516] Bluetooth: hci2: command 0x0406 tx timeout
[  718.257113][T15516] Bluetooth: hci3: command 0x0406 tx timeout
[  718.263157][T15516] Bluetooth: hci4: command 0x0c1a tx timeout
[  719.324681][T16128] Bluetooth: hci0: command 0x0406 tx timeout
[  720.293573][T16128] Bluetooth: hci4: command 0x0c1a tx timeout
[  720.299778][T15516] Bluetooth: hci3: command 0x0406 tx timeout
[  720.310571][T15516] Bluetooth: hci2: command 0x0406 tx timeout
[  720.316778][T15503] Bluetooth: hci1: command 0x0406 tx timeout
[  720.607680][T16816] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input55
[  722.367726][T16128] Bluetooth: hci4: command 0x0c1a tx timeout
[  724.394504][T16890] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input57
[  725.360869][T16907] QAT: Stopping all acceleration devices.
[  725.374682][T16890] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1877'.
[  725.708268][T16912] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input58
[  725.959510][T16921] netlink: 216 bytes leftover after parsing attributes in process `syz.3.1882'.
[  731.960061][T17039] QAT: Stopping all acceleration devices.
[  733.525784][T17068] sp0: Synchronizing with TNC
[  734.862064][T17092] sp0: Synchronizing with TNC
[  734.892852][T17071] FAULT_INJECTION: forcing a failure.
[  734.892852][T17071] name fail_futex, interval 1, probability 0, space 0, times 0
[  734.922998][T17071] CPU: 1 UID: 0 PID: 17071 Comm: syz.0.1914 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  734.923028][T17071] Tainted: [U]=USER
[  734.923033][T17071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  734.923042][T17071] Call Trace:
[  734.923048][T17071]  <TASK>
[  734.923055][T17071]  dump_stack_lvl+0x16c/0x1f0
[  734.923081][T17071]  should_fail_ex+0x512/0x640
[  734.923112][T17071]  get_futex_key+0x1d0/0x1540
[  734.923133][T17071]  ? __pfx_get_futex_key+0x10/0x10
[  734.923148][T17071]  ? userfaultfd_unmap_complete+0x266/0x380
[  734.923166][T17071]  ? mremap_userfaultfd_complete+0x106/0x170
[  734.923183][T17071]  ? __pfx_userfaultfd_unmap_complete+0x10/0x10
[  734.923203][T17071]  futex_wake+0xea/0x530
[  734.923224][T17071]  ? __pfx_futex_wake+0x10/0x10
[  734.923245][T17071]  ? __do_sys_mremap+0x5d4/0x1590
[  734.923266][T17071]  ? kmem_cache_free+0x2d1/0x4d0
[  734.923288][T17071]  do_futex+0x1e3/0x350
[  734.923304][T17071]  ? __pfx_do_futex+0x10/0x10
[  734.923321][T17071]  ? do_linkat+0x340/0x5a0
[  734.923348][T17071]  __x64_sys_futex+0x1e0/0x4c0
[  734.923368][T17071]  ? __pfx___x64_sys_futex+0x10/0x10
[  734.923392][T17071]  do_syscall_64+0xcd/0x490
[  734.923414][T17071]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.923429][T17071] RIP: 0033:0x7f358598e929
[  734.923441][T17071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  734.923455][T17071] RSP: 002b:00007f35867900e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  734.923469][T17071] RAX: ffffffffffffffda RBX: 00007f3585bb5fa8 RCX: 00007f358598e929
[  734.923479][T17071] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3585bb5fac
[  734.923488][T17071] RBP: 00007f3585bb5fa0 R08: 00007f3586791000 R09: 0000000000000000
[  734.923497][T17071] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3585bb5fac
[  734.923506][T17071] R13: 0000000000000000 R14: 00007ffcbf79bec0 R15: 00007ffcbf79bfa8
[  734.923523][T17071]  </TASK>
[  735.702595][   T30] audit: type=1326 audit(6046249307.405:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17099 comm="syz.0.1920" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f358598e929 code=0x0
[  737.026494][T17134] QAT: Stopping all acceleration devices.
[  741.571620][T17215] FAULT_INJECTION: forcing a failure.
[  741.571620][T17215] name failslab, interval 1, probability 0, space 0, times 0
[  741.585763][T17215] CPU: 0 UID: 0 PID: 17215 Comm: syz.0.1936 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  741.585805][T17215] Tainted: [U]=USER
[  741.585814][T17215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  741.585830][T17215] Call Trace:
[  741.585839][T17215]  <TASK>
[  741.585850][T17215]  dump_stack_lvl+0x16c/0x1f0
[  741.585895][T17215]  should_fail_ex+0x512/0x640
[  741.585930][T17215]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  741.585970][T17215]  should_failslab+0xc2/0x120
[  741.585996][T17215]  __kmalloc_cache_noprof+0x6a/0x3e0
[  741.586030][T17215]  ? alloc_super+0x52/0xbd0
[  741.586068][T17215]  alloc_super+0x52/0xbd0
[  741.586099][T17215]  ? sget_fc+0xd3/0xc20
[  741.586138][T17215]  sget_fc+0x116/0xc20
[  741.586173][T17215]  ? __pfx_set_anon_super_fc+0x10/0x10
[  741.586207][T17215]  ? __pfx_mqueue_fill_super+0x10/0x10
[  741.586245][T17215]  get_tree_nodev+0x28/0x190
[  741.586283][T17215]  mqueue_get_tree+0xf1/0x130
[  741.586313][T17215]  vfs_get_tree+0x8e/0x340
[  741.586329][T17215]  fc_mount+0x18/0x110
[  741.586345][T17215]  mq_init_ns+0x426/0x620
[  741.586361][T17215]  copy_ipcs+0x383/0x610
[  741.586375][T17215]  ? copy_utsname+0xab/0x470
[  741.586395][T17215]  create_new_namespaces+0x20a/0xa90
[  741.586411][T17215]  ? security_capable+0x7e/0x260
[  741.586436][T17215]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  741.586461][T17215]  ksys_unshare+0x45b/0xa40
[  741.586481][T17215]  ? __pfx_ksys_unshare+0x10/0x10
[  741.586500][T17215]  ? xfd_validate_state+0x61/0x180
[  741.586524][T17215]  __x64_sys_unshare+0x31/0x40
[  741.586542][T17215]  do_syscall_64+0xcd/0x490
[  741.586565][T17215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.586580][T17215] RIP: 0033:0x7f358598e929
[  741.586597][T17215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  741.586612][T17215] RSP: 002b:00007f3586790038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  741.586627][T17215] RAX: ffffffffffffffda RBX: 00007f3585bb5fa0 RCX: 00007f358598e929
[  741.586636][T17215] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000000
[  741.586649][T17215] RBP: 00007f3585a10b39 R08: 0000000000000000 R09: 0000000000000000
[  741.586659][T17215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  741.586668][T17215] R13: 0000000000000000 R14: 00007f3585bb5fa0 R15: 00007ffcbf79bfa8
[  741.586687][T17215]  </TASK>
[  743.023016][T17239] Console: switching to colour frame buffer device 128x48
[  744.511656][T17275] FAULT_INJECTION: forcing a failure.
[  744.511656][T17275] name fail_futex, interval 1, probability 0, space 0, times 0
[  744.528453][T17275] CPU: 1 UID: 0 PID: 17275 Comm: syz.1.1944 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  744.528480][T17275] Tainted: [U]=USER
[  744.528485][T17275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  744.528494][T17275] Call Trace:
[  744.528501][T17275]  <TASK>
[  744.528508][T17275]  dump_stack_lvl+0x16c/0x1f0
[  744.528534][T17275]  should_fail_ex+0x512/0x640
[  744.528557][T17275]  get_futex_key+0x1d0/0x1540
[  744.528577][T17275]  ? __pfx_get_futex_key+0x10/0x10
[  744.528592][T17275]  ? select_task_rq_fair+0x4c4/0x45e0
[  744.528612][T17275]  ? __pfx_call_function_single_prep_ipi+0x10/0x10
[  744.528635][T17275]  futex_wait_setup+0x9d/0x550
[  744.528661][T17275]  __futex_wait+0x194/0x2f0
[  744.528682][T17275]  ? __pfx___futex_wait+0x10/0x10
[  744.528700][T17275]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  744.528719][T17275]  ? lockdep_hardirqs_on+0x7c/0x110
[  744.528741][T17275]  ? __pfx_futex_wake_mark+0x10/0x10
[  744.528775][T17275]  futex_wait+0xe8/0x380
[  744.528794][T17275]  ? __pfx_futex_wait+0x10/0x10
[  744.528820][T17275]  ? kmem_cache_free+0x2d1/0x4d0
[  744.528842][T17275]  do_futex+0x229/0x350
[  744.528859][T17275]  ? __pfx_do_futex+0x10/0x10
[  744.528876][T17275]  ? do_linkat+0x340/0x5a0
[  744.528900][T17275]  __x64_sys_futex+0x1e0/0x4c0
[  744.528919][T17275]  ? __pfx___x64_sys_futex+0x10/0x10
[  744.528936][T17275]  ? xfd_validate_state+0x61/0x180
[  744.528960][T17275]  do_syscall_64+0xcd/0x490
[  744.528981][T17275]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  744.528997][T17275] RIP: 0033:0x7fadccd8e929
[  744.529009][T17275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  744.529024][T17275] RSP: 002b:00007fadcdb570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  744.529038][T17275] RAX: ffffffffffffffda RBX: 00007fadccfb5fa8 RCX: 00007fadccd8e929
[  744.529048][T17275] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fadccfb5fa8
[  744.529057][T17275] RBP: 00007fadccfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  744.529066][T17275] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fadccfb5fac
[  744.529074][T17275] R13: 0000000000000000 R14: 00007fff45e449e0 R15: 00007fff45e44ac8
[  744.529093][T17275]  </TASK>
[  744.755455][    C1] vkms_vblank_simulate: vblank timer overrun
[  744.934921][T17281] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input64
[  745.027263][T17284] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input65
[  747.169147][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  747.175761][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  747.250879][T17308] Console: switching to colour VGA+ 80x9
[  747.570734][T17307] Console: switching to colour frame buffer device 128x48
[  748.886163][T17342] sp0: Synchronizing with TNC
[  750.190679][T17361] sp0: Synchronizing with TNC
[  751.146871][T17381] sp0: Synchronizing with TNC
[  751.330157][T15516] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  751.344854][T15516] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  751.353169][T15516] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  751.363295][T15516] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  751.371623][T15516] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  752.654050][T17383] chnl_net:caif_netlink_parms(): no params data found
[  753.180062][T17383] bridge0: port 1(bridge_slave_0) entered blocking state
[  753.187309][T17383] bridge0: port 1(bridge_slave_0) entered disabled state
[  753.198638][T17383] bridge_slave_0: entered allmulticast mode
[  753.218030][T17383] bridge_slave_0: entered promiscuous mode
[  753.235319][T17383] bridge0: port 2(bridge_slave_1) entered blocking state
[  753.245565][T17383] bridge0: port 2(bridge_slave_1) entered disabled state
[  753.252859][T17383] bridge_slave_1: entered allmulticast mode
[  753.260871][T17383] bridge_slave_1: entered promiscuous mode
[  753.371914][T17383] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  753.398413][T17383] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  753.409068][T15516] Bluetooth: hci5: command tx timeout
[  753.599497][T17383] team0: Port device team_slave_0 added
[  753.610140][T17383] team0: Port device team_slave_1 added
[  753.824843][T17383] batman_adv: batadv0: Adding interface: batadv_slave_0
[  753.840662][T17426] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input67
[  753.854494][T17383] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  753.920061][T17428] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input66
[  753.990755][T17383] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  754.131615][T17383] batman_adv: batadv0: Adding interface: batadv_slave_1
[  754.179240][T17383] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  754.347810][T17383] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  754.631233][T17383] hsr_slave_0: entered promiscuous mode
[  754.655746][T17383] hsr_slave_1: entered promiscuous mode
[  754.666040][T17383] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  754.679310][T17383] Cannot create hsr debugfs directory
[  754.681854][T17440] FAULT_INJECTION: forcing a failure.
[  754.681854][T17440] name failslab, interval 1, probability 0, space 0, times 0
[  754.699442][T17440] CPU: 0 UID: 0 PID: 17440 Comm: syz.0.1973 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  754.699483][T17440] Tainted: [U]=USER
[  754.699491][T17440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  754.699501][T17440] Call Trace:
[  754.699506][T17440]  <TASK>
[  754.699513][T17440]  dump_stack_lvl+0x16c/0x1f0
[  754.699539][T17440]  should_fail_ex+0x512/0x640
[  754.699560][T17440]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  754.699583][T17440]  should_failslab+0xc2/0x120
[  754.699597][T17440]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  754.699625][T17440]  ? kernel_text_address+0x8d/0x100
[  754.699660][T17440]  ? vm_area_dup+0x27/0x8d0
[  754.699690][T17440]  ? __pfx_hugetlb_vm_op_split+0x10/0x10
[  754.699721][T17440]  vm_area_dup+0x27/0x8d0
[  754.699751][T17440]  ? __pfx_hugetlb_vm_op_split+0x10/0x10
[  754.699781][T17440]  __split_vma+0x18e/0x1070
[  754.699819][T17440]  ? __pfx___split_vma+0x10/0x10
[  754.699844][T17440]  ? __lock_acquire+0xb8a/0x1c90
[  754.699888][T17440]  vms_gather_munmap_vmas+0x1c2/0x1310
[  754.699919][T17440]  ? finish_task_switch.isra.0+0x21c/0xc10
[  754.699948][T17440]  ? rcu_is_watching+0x12/0xc0
[  754.699973][T17440]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  754.700006][T17440]  ? finish_task_switch.isra.0+0x221/0xc10
[  754.700033][T17440]  ? rcu_is_watching+0x12/0xc0
[  754.700058][T17440]  ? trace_sched_exit_tp+0xde/0x130
[  754.700087][T17440]  ? __schedule+0x1181/0x5de0
[  754.700131][T17440]  do_vmi_align_munmap+0x27c/0x7d0
[  754.700170][T17440]  ? __lock_acquire+0x622/0x1c90
[  754.700213][T17440]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  754.700299][T17440]  do_vmi_munmap+0x204/0x3e0
[  754.700338][T17440]  shrink_vma+0x1cc/0x380
[  754.700374][T17440]  ? __pfx_shrink_vma+0x10/0x10
[  754.700416][T17440]  ? __pfx_down_write_killable+0x10/0x10
[  754.700440][T17440]  ? __pfx_futex_wait+0x10/0x10
[  754.700484][T17440]  __do_sys_mremap+0xae4/0x1590
[  754.700523][T17440]  ? kmem_cache_free+0x2d1/0x4d0
[  754.700557][T17440]  ? __pfx___do_sys_mremap+0x10/0x10
[  754.700605][T17440]  ? do_linkat+0x340/0x5a0
[  754.700648][T17440]  ? __x64_sys_futex+0x1e0/0x4c0
[  754.700700][T17440]  do_syscall_64+0xcd/0x490
[  754.700741][T17440]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  754.700767][T17440] RIP: 0033:0x7f358598e929
[  754.700789][T17440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  754.700815][T17440] RSP: 002b:00007f3586790038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  754.700840][T17440] RAX: ffffffffffffffda RBX: 00007f3585bb5fa0 RCX: 00007f358598e929
[  754.700859][T17440] RDX: 0000000000003fd7 RSI: 0000000004000007 RDI: 0000000000000000
[  754.700876][T17440] RBP: 00007f3585a10b39 R08: 0020000020000000 R09: 0000000000000000
[  754.700893][T17440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  754.700909][T17440] R13: 0000000000000000 R14: 00007f3585bb5fa0 R15: 00007ffcbf79bfa8
[  754.700945][T17440]  </TASK>
[  755.124501][T17452] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input68
[  755.484095][T15516] Bluetooth: hci5: command tx timeout
[  755.635431][T17462] FAULT_INJECTION: forcing a failure.
[  755.635431][T17462] name failslab, interval 1, probability 0, space 0, times 0
[  755.653021][T17462] CPU: 1 UID: 0 PID: 17462 Comm: syz.4.1976 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  755.653062][T17462] Tainted: [U]=USER
[  755.653072][T17462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  755.653087][T17462] Call Trace:
[  755.653096][T17462]  <TASK>
[  755.653106][T17462]  dump_stack_lvl+0x16c/0x1f0
[  755.653150][T17462]  should_fail_ex+0x512/0x640
[  755.653185][T17462]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  755.653228][T17462]  should_failslab+0xc2/0x120
[  755.653253][T17462]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  755.653292][T17462]  ? security_file_alloc+0x34/0x2b0
[  755.653331][T17462]  security_file_alloc+0x34/0x2b0
[  755.653366][T17462]  init_file+0x93/0x4c0
[  755.653392][T17462]  alloc_empty_file+0x73/0x1e0
[  755.653425][T17462]  dentry_open+0x46/0xd0
[  755.653453][T17462]  ima_calc_file_hash+0x2b6/0x490
[  755.653494][T17462]  ima_collect_measurement+0x897/0xa40
[  755.653531][T17462]  ? __pfx_ima_collect_measurement+0x10/0x10
[  755.653581][T17462]  ? __mutex_lock+0x1ca/0xb90
[  755.653616][T17462]  ? is_bad_inode+0xd/0x40
[  755.653645][T17462]  ? xattr_resolve_name+0x27b/0x3f0
[  755.653684][T17462]  ? vfs_getxattr_alloc+0xec/0x340
[  755.653726][T17462]  ? ima_get_hash_algo+0x27c/0x400
[  755.653760][T17462]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  755.653803][T17462]  ? process_measurement+0x11fa/0x23e0
[  755.653839][T17462]  process_measurement+0x11fa/0x23e0
[  755.653885][T17462]  ? __pfx___mutex_trylock_common+0x10/0x10
[  755.653922][T17462]  ? __pfx_process_measurement+0x10/0x10
[  755.653957][T17462]  ? __pfx___might_resched+0x10/0x10
[  755.653989][T17462]  ? find_held_lock+0x2b/0x80
[  755.654025][T17462]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  755.654094][T17462]  ? tracing_open+0x1d6/0xf90
[  755.654121][T17462]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  755.654154][T17462]  ? inode_to_bdi+0x9e/0x160
[  755.654198][T17462]  ima_file_check+0xc5/0x110
[  755.654235][T17462]  ? __pfx_ima_file_check+0x10/0x10
[  755.654282][T17462]  security_file_post_open+0x8e/0x210
[  755.654315][T17462]  path_openat+0x1404/0x2cb0
[  755.654370][T17462]  ? __pfx_path_openat+0x10/0x10
[  755.654409][T17462]  ? __lock_acquire+0xb8a/0x1c90
[  755.654447][T17462]  do_filp_open+0x20b/0x470
[  755.654484][T17462]  ? __pfx_do_filp_open+0x10/0x10
[  755.654544][T17462]  ? alloc_fd+0x471/0x7d0
[  755.654585][T17462]  do_sys_openat2+0x11b/0x1d0
[  755.654612][T17462]  ? __pfx_do_sys_openat2+0x10/0x10
[  755.654637][T17462]  ? __sock_release+0x20b/0x270
[  755.654677][T17462]  __x64_sys_openat+0x174/0x210
[  755.654706][T17462]  ? __pfx___x64_sys_openat+0x10/0x10
[  755.654753][T17462]  do_syscall_64+0xcd/0x490
[  755.654796][T17462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  755.654822][T17462] RIP: 0033:0x7f83db18e929
[  755.654844][T17462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  755.654869][T17462] RSP: 002b:00007f83d8ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  755.654894][T17462] RAX: ffffffffffffffda RBX: 00007f83db3b6080 RCX: 00007f83db18e929
[  755.654913][T17462] RDX: 000000000000063f RSI: 0000200000000040 RDI: ffffffffffffff9c
[  755.654930][T17462] RBP: 00007f83db210b39 R08: 0000000000000000 R09: 0000000000000000
[  755.654947][T17462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  755.654964][T17462] R13: 0000000000000000 R14: 00007f83db3b6080 R15: 00007fff68e968c8
[  755.655000][T17462]  </TASK>
[  756.118352][   T30] audit: type=1800 audit(6046249327.826:13): pid=17462 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1976" name="trace" dev="tracefs" ino=1133 res=0 errno=0
[  756.719038][T17383] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  756.771826][T17383] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  756.791714][T17488] FAULT_INJECTION: forcing a failure.
[  756.791714][T17488] name failslab, interval 1, probability 0, space 0, times 0
[  756.806057][T17488] CPU: 0 UID: 0 PID: 17488 Comm: syz.1.1978 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  756.806106][T17488] Tainted: [U]=USER
[  756.806112][T17488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  756.806121][T17488] Call Trace:
[  756.806127][T17488]  <TASK>
[  756.806133][T17488]  dump_stack_lvl+0x16c/0x1f0
[  756.806159][T17488]  should_fail_ex+0x512/0x640
[  756.806180][T17488]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  756.806201][T17488]  should_failslab+0xc2/0x120
[  756.806216][T17488]  __kmalloc_cache_noprof+0x6a/0x3e0
[  756.806234][T17488]  ? snd_pcm_oss_change_params_locked+0x211/0x3a30
[  756.806251][T17488]  ? kasan_save_track+0x14/0x30
[  756.806273][T17488]  snd_pcm_oss_change_params_locked+0x211/0x3a30
[  756.806291][T17488]  ? rcu_is_watching+0x12/0xc0
[  756.806307][T17488]  ? __mutex_lock+0x1ca/0xb90
[  756.806336][T17488]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  756.806355][T17488]  ? __pfx___mutex_lock+0x10/0x10
[  756.806383][T17488]  ? __fsnotify_parent+0x24b/0xc40
[  756.806407][T17488]  snd_pcm_oss_make_ready+0xe6/0x1b0
[  756.806423][T17488]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  756.806438][T17488]  snd_pcm_oss_sync+0x1de/0x840
[  756.806456][T17488]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  756.806471][T17488]  snd_pcm_oss_release+0x28b/0x310
[  756.806488][T17488]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  756.806503][T17488]  __fput+0x402/0xb70
[  756.806521][T17488]  task_work_run+0x14d/0x240
[  756.806542][T17488]  ? __pfx_task_work_run+0x10/0x10
[  756.806563][T17488]  ? __pfx___do_sys_close_range+0x10/0x10
[  756.806587][T17488]  exit_to_user_mode_loop+0xeb/0x110
[  756.806609][T17488]  do_syscall_64+0x3f6/0x490
[  756.806632][T17488]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  756.806646][T17488] RIP: 0033:0x7fadccd8e929
[  756.806659][T17488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  756.806672][T17488] RSP: 002b:00007fadcdb15038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  756.806686][T17488] RAX: 0000000000000000 RBX: 00007fadccfb6160 RCX: 00007fadccd8e929
[  756.806695][T17488] RDX: 0000000000000000 RSI: fffffffffffff000 RDI: 0000000000000000
[  756.806704][T17488] RBP: 00007fadcce10b39 R08: 0000000000000000 R09: 0000000000000000
[  756.806713][T17488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  756.806721][T17488] R13: 0000000000000000 R14: 00007fadccfb6160 R15: 00007fff45e44ac8
[  756.806740][T17488]  </TASK>
[  757.057734][T17383] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  757.119080][T17383] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  757.521245][T17383] 8021q: adding VLAN 0 to HW filter on device bond0
[  757.573457][T15516] Bluetooth: hci5: command tx timeout
[  757.609238][T17383] 8021q: adding VLAN 0 to HW filter on device team0
[  757.728636][T15502] bridge0: port 1(bridge_slave_0) entered blocking state
[  757.735811][T15502] bridge0: port 1(bridge_slave_0) entered forwarding state
[  757.881727][T15502] bridge0: port 2(bridge_slave_1) entered blocking state
[  757.888882][T15502] bridge0: port 2(bridge_slave_1) entered forwarding state
[  758.071450][T17512] FAULT_INJECTION: forcing a failure.
[  758.071450][T17512] name failslab, interval 1, probability 0, space 0, times 0
[  758.116343][T17512] CPU: 1 UID: 0 PID: 17512 Comm: syz.0.1982 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  758.116386][T17512] Tainted: [U]=USER
[  758.116394][T17512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  758.116409][T17512] Call Trace:
[  758.116417][T17512]  <TASK>
[  758.116426][T17512]  dump_stack_lvl+0x16c/0x1f0
[  758.116469][T17512]  should_fail_ex+0x512/0x640
[  758.116501][T17512]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  758.116540][T17512]  should_failslab+0xc2/0x120
[  758.116563][T17512]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  758.116598][T17512]  ? kernel_text_address+0x8d/0x100
[  758.116631][T17512]  ? vm_area_dup+0x27/0x8d0
[  758.116662][T17512]  ? __pfx_hugetlb_vm_op_split+0x10/0x10
[  758.116696][T17512]  vm_area_dup+0x27/0x8d0
[  758.116727][T17512]  ? __pfx_hugetlb_vm_op_split+0x10/0x10
[  758.116760][T17512]  __split_vma+0x18e/0x1070
[  758.116795][T17512]  ? __pfx___split_vma+0x10/0x10
[  758.116823][T17512]  ? __lock_acquire+0xb8a/0x1c90
[  758.116881][T17512]  vms_gather_munmap_vmas+0x1c2/0x1310
[  758.116912][T17512]  ? finish_task_switch.isra.0+0x21c/0xc10
[  758.116937][T17512]  ? rcu_is_watching+0x12/0xc0
[  758.116964][T17512]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  758.116995][T17512]  ? finish_task_switch.isra.0+0x2fa/0xc10
[  758.117020][T17512]  ? rcu_is_watching+0x12/0xc0
[  758.117045][T17512]  ? trace_sched_exit_tp+0xde/0x130
[  758.117075][T17512]  ? __schedule+0x1181/0x5de0
[  758.117118][T17512]  do_vmi_align_munmap+0x27c/0x7d0
[  758.117155][T17512]  ? __lock_acquire+0x622/0x1c90
[  758.117186][T17512]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  758.117265][T17512]  do_vmi_munmap+0x204/0x3e0
[  758.117305][T17512]  shrink_vma+0x1cc/0x380
[  758.117340][T17512]  ? __pfx_shrink_vma+0x10/0x10
[  758.117381][T17512]  ? __pfx_down_write_killable+0x10/0x10
[  758.117406][T17512]  ? __pfx_futex_wait+0x10/0x10
[  758.117450][T17512]  __do_sys_mremap+0xae4/0x1590
[  758.117488][T17512]  ? kmem_cache_free+0x2d1/0x4d0
[  758.117520][T17512]  ? __pfx___do_sys_mremap+0x10/0x10
[  758.117567][T17512]  ? do_linkat+0x340/0x5a0
[  758.117609][T17512]  ? __x64_sys_futex+0x1e0/0x4c0
[  758.117661][T17512]  do_syscall_64+0xcd/0x490
[  758.117748][T17512]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  758.117774][T17512] RIP: 0033:0x7f358598e929
[  758.117795][T17512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  758.117821][T17512] RSP: 002b:00007f3586790038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  758.117853][T17512] RAX: ffffffffffffffda RBX: 00007f3585bb5fa0 RCX: 00007f358598e929
[  758.117871][T17512] RDX: 0000000000003fd7 RSI: 0000000004000007 RDI: 0000000000000000
[  758.117888][T17512] RBP: 00007f3585a10b39 R08: 0020000020000000 R09: 0000000000000000
[  758.117905][T17512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  758.117921][T17512] R13: 0000000000000000 R14: 00007f3585bb5fa0 R15: 00007ffcbf79bfa8
[  758.117952][T17512]  </TASK>
[  758.544600][T17520] QAT: Stopping all acceleration devices.
[  758.746833][T17527] FAULT_INJECTION: forcing a failure.
[  758.746833][T17527] name failslab, interval 1, probability 0, space 0, times 0
[  758.764595][T17527] CPU: 0 UID: 0 PID: 17527 Comm: syz.4.1984 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  758.764637][T17527] Tainted: [U]=USER
[  758.764646][T17527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  758.764661][T17527] Call Trace:
[  758.764670][T17527]  <TASK>
[  758.764682][T17527]  dump_stack_lvl+0x16c/0x1f0
[  758.764724][T17527]  should_fail_ex+0x512/0x640
[  758.764759][T17527]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  758.764806][T17527]  should_failslab+0xc2/0x120
[  758.764829][T17527]  __kmalloc_cache_noprof+0x6a/0x3e0
[  758.764859][T17527]  ? devinet_init_net+0x56/0x910
[  758.764878][T17527]  ? __pfx_devinet_init_net+0x10/0x10
[  758.764897][T17527]  devinet_init_net+0x56/0x910
[  758.764916][T17527]  ? __pfx_devinet_init_net+0x10/0x10
[  758.764933][T17527]  ops_init+0x1df/0x5f0
[  758.764949][T17527]  setup_net+0x1ff/0x510
[  758.764961][T17527]  ? lockdep_init_map_type+0x5c/0x280
[  758.764980][T17527]  ? __pfx_setup_net+0x10/0x10
[  758.764995][T17527]  ? debug_mutex_init+0x37/0x70
[  758.765010][T17527]  copy_net_ns+0x2a6/0x5f0
[  758.765027][T17527]  create_new_namespaces+0x3ea/0xa90
[  758.765050][T17527]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  758.765067][T17527]  ksys_unshare+0x45b/0xa40
[  758.765085][T17527]  ? __pfx_ksys_unshare+0x10/0x10
[  758.765104][T17527]  ? xfd_validate_state+0x61/0x180
[  758.765128][T17527]  __x64_sys_unshare+0x31/0x40
[  758.765145][T17527]  do_syscall_64+0xcd/0x490
[  758.765168][T17527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  758.765183][T17527] RIP: 0033:0x7f83db18e929
[  758.765195][T17527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  758.765209][T17527] RSP: 002b:00007f83d8ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  758.765223][T17527] RAX: ffffffffffffffda RBX: 00007f83db3b6080 RCX: 00007f83db18e929
[  758.765233][T17527] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  758.765241][T17527] RBP: 00007f83db210b39 R08: 0000000000000000 R09: 0000000000000000
[  758.765250][T17527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  758.765259][T17527] R13: 0000000000000000 R14: 00007f83db3b6080 R15: 00007fff68e968c8
[  758.765278][T17527]  </TASK>
[  759.245815][T17383] 8021q: adding VLAN 0 to HW filter on device batadv0
[  759.642704][T15516] Bluetooth: hci5: command tx timeout
[  760.390253][T17383] veth0_vlan: entered promiscuous mode
[  760.405128][T17383] veth1_vlan: entered promiscuous mode
[  760.528608][T17383] veth0_macvtap: entered promiscuous mode
[  760.580505][T17383] veth1_macvtap: entered promiscuous mode
[  760.669600][T17383] batman_adv: batadv0: Interface activated: batadv_slave_0
[  760.808575][T17383] batman_adv: batadv0: Interface activated: batadv_slave_1
[  760.863415][T17383] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  760.876491][T17383] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  760.892109][T17576] FAULT_INJECTION: forcing a failure.
[  760.892109][T17576] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  760.905447][T17576] CPU: 1 UID: 0 PID: 17576 Comm: syz.0.1991 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  760.905478][T17576] Tainted: [U]=USER
[  760.905484][T17576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  760.905492][T17576] Call Trace:
[  760.905498][T17576]  <TASK>
[  760.905504][T17576]  dump_stack_lvl+0x16c/0x1f0
[  760.905529][T17576]  should_fail_ex+0x512/0x640
[  760.905552][T17576]  _copy_from_user+0x2e/0xd0
[  760.905574][T17576]  copy_msghdr_from_user+0x98/0x160
[  760.905603][T17576]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  760.905627][T17576]  ? kfree+0x24f/0x4d0
[  760.905644][T17576]  ? rcu_is_watching+0x12/0xc0
[  760.905661][T17576]  ___sys_recvmsg+0xdb/0x1a0
[  760.905682][T17576]  ? __pfx____sys_recvmsg+0x10/0x10
[  760.905717][T17576]  ? __pfx___might_resched+0x10/0x10
[  760.905736][T17576]  do_recvmmsg+0x2fe/0x750
[  760.905758][T17576]  ? __pfx_do_recvmmsg+0x10/0x10
[  760.905782][T17576]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  760.905821][T17576]  ? __fget_files+0x20e/0x3c0
[  760.905844][T17576]  __x64_sys_recvmmsg+0x22a/0x280
[  760.905867][T17576]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  760.905894][T17576]  do_syscall_64+0xcd/0x490
[  760.905916][T17576]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  760.905931][T17576] RIP: 0033:0x7f358598e929
[  760.905943][T17576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  760.905957][T17576] RSP: 002b:00007f358676f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  760.905970][T17576] RAX: ffffffffffffffda RBX: 00007f3585bb6080 RCX: 00007f358598e929
[  760.905980][T17576] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  760.905989][T17576] RBP: 00007f358676f090 R08: 0000000000000000 R09: 0000000000000000
[  760.905998][T17576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  760.906006][T17576] R13: 0000000000000000 R14: 00007f3585bb6080 R15: 00007ffcbf79bfa8
[  760.906024][T17576]  </TASK>
[  761.108285][T17383] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  761.118001][T17383] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  761.380097][T15505] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  761.400726][T15505] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  761.520700][T15505] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  761.528560][T15505] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  764.280873][T17617] FAULT_INJECTION: forcing a failure.
[  764.280873][T17617] name failslab, interval 1, probability 0, space 0, times 0
[  764.359296][T17617] CPU: 0 UID: 0 PID: 17617 Comm: syz.0.1997 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  764.359339][T17617] Tainted: [U]=USER
[  764.359348][T17617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  764.359364][T17617] Call Trace:
[  764.359373][T17617]  <TASK>
[  764.359383][T17617]  dump_stack_lvl+0x16c/0x1f0
[  764.359425][T17617]  should_fail_ex+0x512/0x640
[  764.359459][T17617]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  764.359496][T17617]  should_failslab+0xc2/0x120
[  764.359517][T17617]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  764.359550][T17617]  ? __proc_create+0xc3/0x8c0
[  764.359584][T17617]  ? __proc_create+0x2ce/0x8c0
[  764.359624][T17617]  __proc_create+0x2ce/0x8c0
[  764.359658][T17617]  ? __pfx___proc_create+0x10/0x10
[  764.359693][T17617]  ? __register_sysctl_table+0x736/0x1900
[  764.359737][T17617]  ? _raw_spin_unlock+0x28/0x50
[  764.359775][T17617]  proc_create_reg+0x7d/0x180
[  764.359804][T17617]  proc_create_net_data+0x8e/0x1b0
[  764.359846][T17617]  ? __pfx_proc_create_net_data+0x10/0x10
[  764.359894][T17617]  ? __pfx_arp_net_init+0x10/0x10
[  764.359926][T17617]  arp_net_init+0x53/0x70
[  764.359958][T17617]  ops_init+0x1df/0x5f0
[  764.359987][T17617]  setup_net+0x1ff/0x510
[  764.360010][T17617]  ? lockdep_init_map_type+0x5c/0x280
[  764.360044][T17617]  ? __pfx_setup_net+0x10/0x10
[  764.360070][T17617]  ? debug_mutex_init+0x37/0x70
[  764.360099][T17617]  copy_net_ns+0x2a6/0x5f0
[  764.360129][T17617]  create_new_namespaces+0x3ea/0xa90
[  764.360172][T17617]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  764.360203][T17617]  ksys_unshare+0x45b/0xa40
[  764.360237][T17617]  ? __pfx_ksys_unshare+0x10/0x10
[  764.360280][T17617]  ? xfd_validate_state+0x61/0x180
[  764.360325][T17617]  __x64_sys_unshare+0x31/0x40
[  764.360356][T17617]  do_syscall_64+0xcd/0x490
[  764.360396][T17617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  764.360421][T17617] RIP: 0033:0x7f358598e929
[  764.360442][T17617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  764.360468][T17617] RSP: 002b:00007f3586790038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  764.360495][T17617] RAX: ffffffffffffffda RBX: 00007f3585bb5fa0 RCX: 00007f358598e929
[  764.360512][T17617] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  764.360529][T17617] RBP: 00007f3585a10b39 R08: 0000000000000000 R09: 0000000000000000
[  764.360546][T17617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  764.360561][T17617] R13: 0000000000000000 R14: 00007f3585bb5fa0 R15: 00007ffcbf79bfa8
[  764.360596][T17617]  </TASK>
[  765.770005][T17652] QAT: Stopping all acceleration devices.
[  767.317440][T17684] FAULT_INJECTION: forcing a failure.
[  767.317440][T17684] name failslab, interval 1, probability 0, space 0, times 0
[  767.346483][T17684] CPU: 1 UID: 0 PID: 17684 Comm: syz.1.2008 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  767.346516][T17684] Tainted: [U]=USER
[  767.346521][T17684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  767.346531][T17684] Call Trace:
[  767.346536][T17684]  <TASK>
[  767.346543][T17684]  dump_stack_lvl+0x16c/0x1f0
[  767.346569][T17684]  should_fail_ex+0x512/0x640
[  767.346589][T17684]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  767.346613][T17684]  should_failslab+0xc2/0x120
[  767.346627][T17684]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  767.346648][T17684]  ? mas_alloc_nodes+0x18b/0x8b0
[  767.346669][T17684]  mas_alloc_nodes+0x18b/0x8b0
[  767.346692][T17684]  mas_node_count_gfp+0x105/0x130
[  767.346712][T17684]  mas_preallocate+0x7e0/0xde0
[  767.346730][T17684]  ? __pfx_mas_preallocate+0x10/0x10
[  767.346750][T17684]  ? anon_vma_name+0x75/0x100
[  767.346768][T17684]  __split_vma+0x34a/0x1070
[  767.346790][T17684]  ? __pfx___split_vma+0x10/0x10
[  767.346807][T17684]  ? __lock_acquire+0xb8a/0x1c90
[  767.346836][T17684]  vms_gather_munmap_vmas+0x1c2/0x1310
[  767.346854][T17684]  ? finish_task_switch.isra.0+0x21c/0xc10
[  767.346870][T17684]  ? rcu_is_watching+0x12/0xc0
[  767.346885][T17684]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  767.346904][T17684]  ? finish_task_switch.isra.0+0x221/0xc10
[  767.346919][T17684]  ? rcu_is_watching+0x12/0xc0
[  767.346933][T17684]  ? trace_sched_exit_tp+0xde/0x130
[  767.346949][T17684]  ? __schedule+0x1181/0x5de0
[  767.346980][T17684]  do_vmi_align_munmap+0x27c/0x7d0
[  767.347002][T17684]  ? __lock_acquire+0x622/0x1c90
[  767.347020][T17684]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  767.347067][T17684]  do_vmi_munmap+0x204/0x3e0
[  767.347090][T17684]  shrink_vma+0x1cc/0x380
[  767.347111][T17684]  ? __pfx_shrink_vma+0x10/0x10
[  767.347135][T17684]  ? __pfx_down_write_killable+0x10/0x10
[  767.347149][T17684]  ? __pfx_futex_wait+0x10/0x10
[  767.347173][T17684]  __do_sys_mremap+0xae4/0x1590
[  767.347194][T17684]  ? kmem_cache_free+0x2d1/0x4d0
[  767.347213][T17684]  ? __pfx___do_sys_mremap+0x10/0x10
[  767.347242][T17684]  ? do_linkat+0x340/0x5a0
[  767.347266][T17684]  ? __x64_sys_futex+0x1e0/0x4c0
[  767.347294][T17684]  do_syscall_64+0xcd/0x490
[  767.347317][T17684]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  767.347331][T17684] RIP: 0033:0x7fadccd8e929
[  767.347344][T17684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  767.347358][T17684] RSP: 002b:00007fadcdb57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  767.347372][T17684] RAX: ffffffffffffffda RBX: 00007fadccfb5fa0 RCX: 00007fadccd8e929
[  767.347381][T17684] RDX: 0000000000003fd7 RSI: 0000000004000007 RDI: 0000000000000000
[  767.347390][T17684] RBP: 00007fadcce10b39 R08: 0020000020000000 R09: 0000000000000000
[  767.347399][T17684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  767.347407][T17684] R13: 0000000000000000 R14: 00007fadccfb5fa0 R15: 00007fff45e44ac8
[  767.347427][T17684]  </TASK>
[  767.660010][T17691] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input73
[  767.828595][T17687] Console: switching to colour VGA+ 80x9
[  768.094498][T17685] Console: switching to colour frame buffer device 128x48
[  768.260800][T17711] sp0: Synchronizing with TNC
[  768.827111][T17729] QAT: Stopping all acceleration devices.
[  769.490522][T17746] debugfs: Directory '!PjE�r��҄y�*�"�l-���y–��L̓���]' with parent 'ieee80211' already present!
[  770.297886][T17759] sp0: Synchronizing with TNC
[  770.508373][T17755] FAULT_INJECTION: forcing a failure.
[  770.508373][T17755] name failslab, interval 1, probability 0, space 0, times 0
[  770.522353][T17753] FAULT_INJECTION: forcing a failure.
[  770.522353][T17753] name failslab, interval 1, probability 0, space 0, times 0
[  770.545469][T17755] CPU: 1 UID: 0 PID: 17755 Comm: syz.4.2020 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  770.545514][T17755] Tainted: [U]=USER
[  770.545524][T17755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  770.545539][T17755] Call Trace:
[  770.545549][T17755]  <TASK>
[  770.545560][T17755]  dump_stack_lvl+0x16c/0x1f0
[  770.545604][T17755]  should_fail_ex+0x512/0x640
[  770.545639][T17755]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  770.545670][T17755]  should_failslab+0xc2/0x120
[  770.545685][T17755]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  770.545707][T17755]  ? __pmd_alloc+0xbf/0x930
[  770.545724][T17755]  __pmd_alloc+0xbf/0x930
[  770.545739][T17755]  ? find_held_lock+0x2b/0x80
[  770.545754][T17755]  __handle_mm_fault+0xaac/0x5490
[  770.545778][T17755]  ? __pfx___handle_mm_fault+0x10/0x10
[  770.545794][T17755]  ? __pfx_mt_find+0x10/0x10
[  770.545818][T17755]  ? find_vma+0xbf/0x140
[  770.545833][T17755]  ? __pfx_find_vma+0x10/0x10
[  770.545849][T17755]  handle_mm_fault+0x589/0xd10
[  770.545868][T17755]  ? __pkru_allows_pkey+0x41/0xb0
[  770.545893][T17755]  do_user_addr_fault+0x7a6/0x1370
[  770.545920][T17755]  ? rcu_is_watching+0x12/0xc0
[  770.545937][T17755]  exc_page_fault+0x5c/0xb0
[  770.545959][T17755]  asm_exc_page_fault+0x26/0x30
[  770.545987][T17755] RIP: 0010:strncpy_from_user+0x147/0x2e0
[  770.546020][T17755] Code: 00 00 4d 89 74 1d 00 48 83 ed 08 bf 07 00 00 00 48 83 c3 08 48 89 ee e8 97 f5 b0 fc 48 83 fd 07 76 22 e8 1c fa b0 fc 45 31 ff <49> 8b 04 1c 31 ff 44 89 fe 49 89 c6 e8 48 f5 b0 fc 45 85 ff 0f 84
[  770.546040][T17755] RSP: 0018:ffffc9000211fe50 EFLAGS: 00050246
[  770.546052][T17755] RAX: 000000000000003d RBX: 0000000000000000 RCX: ffffc90018ebd000
[  770.546062][T17755] RDX: 0000000000080000 RSI: ffffffff850a9304 RDI: 0000000000000007
[  770.546071][T17755] RBP: 0000000000000fe0 R08: 0000000000000007 R09: 0000000000000007
[  770.546079][T17755] R10: 0000000000000fe0 R11: 0000000000000000 R12: 0000000000000000
[  770.546088][T17755] R13: ffff88805dde2220 R14: 0000000000000fe0 R15: 0000000000000000
[  770.546103][T17755]  ? strncpy_from_user+0x144/0x2e0
[  770.546127][T17755]  getname_flags.part.0+0x8f/0x550
[  770.546143][T17755]  ? xfd_validate_state+0x61/0x180
[  770.546164][T17755]  getname_flags+0x93/0xf0
[  770.546182][T17755]  __x64_sys_linkat+0xd8/0x130
[  770.546205][T17755]  do_syscall_64+0xcd/0x490
[  770.546228][T17755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  770.546242][T17755] RIP: 0033:0x7f83db18e929
[  770.546254][T17755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  770.546268][T17755] RSP: 002b:00007f83dbf1e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000109
[  770.546280][T17755] RAX: ffffffffffffffda RBX: 00007f83db3b5fa0 RCX: 00007f83db18e929
[  770.546289][T17755] RDX: ffffffffffffff9c RSI: 0000000000000000 RDI: 0000000000000007
[  770.546298][T17755] RBP: 00007f83db210b39 R08: 0000000000001000 R09: 0000000000000000
[  770.546306][T17755] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000000
[  770.546315][T17755] R13: 0000000000000000 R14: 00007f83db3b5fa0 R15: 00007fff68e968c8
[  770.546333][T17755]  </TASK>
[  770.850890][    C1] vkms_vblank_simulate: vblank timer overrun
[  770.863273][T17753] CPU: 0 UID: 0 PID: 17753 Comm: syz.1.2019 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  770.863313][T17753] Tainted: [U]=USER
[  770.863319][T17753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  770.863328][T17753] Call Trace:
[  770.863334][T17753]  <TASK>
[  770.863340][T17753]  dump_stack_lvl+0x16c/0x1f0
[  770.863367][T17753]  should_fail_ex+0x512/0x640
[  770.863387][T17753]  ? fs_reclaim_acquire+0xae/0x150
[  770.863406][T17753]  ? tomoyo_encode2+0x100/0x3e0
[  770.863423][T17753]  should_failslab+0xc2/0x120
[  770.863437][T17753]  __kmalloc_noprof+0xd2/0x510
[  770.863457][T17753]  ? d_absolute_path+0x136/0x1a0
[  770.863475][T17753]  tomoyo_encode2+0x100/0x3e0
[  770.863495][T17753]  tomoyo_encode+0x29/0x50
[  770.863512][T17753]  tomoyo_realpath_from_path+0x18f/0x6e0
[  770.863537][T17753]  tomoyo_check_open_permission+0x2ab/0x3c0
[  770.863555][T17753]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  770.863590][T17753]  ? do_raw_spin_lock+0x12c/0x2b0
[  770.863617][T17753]  tomoyo_file_open+0x6b/0x90
[  770.863639][T17753]  security_file_open+0x84/0x1e0
[  770.863665][T17753]  do_dentry_open+0x596/0x1c10
[  770.863692][T17753]  vfs_open+0x82/0x3f0
[  770.863711][T17753]  path_openat+0x1de4/0x2cb0
[  770.863738][T17753]  ? __pfx_path_openat+0x10/0x10
[  770.863759][T17753]  ? __lock_acquire+0xb8a/0x1c90
[  770.863779][T17753]  do_filp_open+0x20b/0x470
[  770.863799][T17753]  ? __pfx_do_filp_open+0x10/0x10
[  770.863832][T17753]  ? alloc_fd+0x471/0x7d0
[  770.863856][T17753]  do_sys_openat2+0x11b/0x1d0
[  770.863871][T17753]  ? __pfx_do_sys_openat2+0x10/0x10
[  770.863887][T17753]  ? find_held_lock+0x2b/0x80
[  770.863907][T17753]  __x64_sys_openat+0x174/0x210
[  770.863924][T17753]  ? __pfx___x64_sys_openat+0x10/0x10
[  770.863948][T17753]  do_syscall_64+0xcd/0x490
[  770.863970][T17753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  770.863984][T17753] RIP: 0033:0x7fadccd8e929
[  770.863997][T17753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  770.864010][T17753] RSP: 002b:00007fadcdb57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  770.864024][T17753] RAX: ffffffffffffffda RBX: 00007fadccfb5fa0 RCX: 00007fadccd8e929
[  770.864034][T17753] RDX: 000000000006ab82 RSI: 00002000000011c0 RDI: ffffffffffffff9c
[  770.864043][T17753] RBP: 00007fadcce10b39 R08: 0000000000000000 R09: 0000000000000000
[  770.864053][T17753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  770.864062][T17753] R13: 0000000000000000 R14: 00007fadccfb5fa0 R15: 00007fff45e44ac8
[  770.864081][T17753]  </TASK>
[  770.864099][T17753] ERROR: Out of memory at tomoyo_realpath_from_path.
[  771.380194][T17768] sp0: Synchronizing with TNC
[  771.418969][T17769] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input75
[  771.483012][T17776] QAT: Stopping all acceleration devices.
[  773.796252][T17829] FAULT_INJECTION: forcing a failure.
[  773.796252][T17829] name failslab, interval 1, probability 0, space 0, times 0
[  773.974971][T17829] CPU: 1 UID: 0 PID: 17829 Comm: syz.5.2031 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  773.975005][T17829] Tainted: [U]=USER
[  773.975010][T17829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  773.975020][T17829] Call Trace:
[  773.975026][T17829]  <TASK>
[  773.975032][T17829]  dump_stack_lvl+0x16c/0x1f0
[  773.975059][T17829]  should_fail_ex+0x512/0x640
[  773.975080][T17829]  ? fs_reclaim_acquire+0xae/0x150
[  773.975098][T17829]  ? tomoyo_encode2+0x100/0x3e0
[  773.975115][T17829]  should_failslab+0xc2/0x120
[  773.975129][T17829]  __kmalloc_noprof+0xd2/0x510
[  773.975149][T17829]  ? d_absolute_path+0x136/0x1a0
[  773.975167][T17829]  tomoyo_encode2+0x100/0x3e0
[  773.975188][T17829]  tomoyo_encode+0x29/0x50
[  773.975206][T17829]  tomoyo_realpath_from_path+0x18f/0x6e0
[  773.975230][T17829]  tomoyo_path2_perm+0x36a/0x710
[  773.975248][T17829]  ? __pfx_tomoyo_path2_perm+0x10/0x10
[  773.975272][T17829]  ? do_raw_spin_lock+0x12c/0x2b0
[  773.975315][T17829]  ? simple_lookup+0x12c/0x180
[  773.975338][T17829]  ? lookup_one_qstr_excl_raw.part.0+0xf9/0x160
[  773.975354][T17829]  ? lookup_dcache+0x66/0x170
[  773.975371][T17829]  tomoyo_path_link+0xae/0x100
[  773.975400][T17829]  ? __pfx_tomoyo_path_link+0x10/0x10
[  773.975420][T17829]  ? make_vfsgid+0xf1/0x140
[  773.975434][T17829]  ? __pfx_make_vfsgid+0x10/0x10
[  773.975458][T17829]  security_path_link+0x12f/0x2b0
[  773.975476][T17829]  do_linkat+0x412/0x5a0
[  773.975501][T17829]  ? __pfx_do_linkat+0x10/0x10
[  773.975523][T17829]  ? strncpy_from_user+0x203/0x2e0
[  773.975548][T17829]  ? getname_flags.part.0+0x1c5/0x550
[  773.975563][T17829]  ? xfd_validate_state+0x61/0x180
[  773.975593][T17829]  __x64_sys_linkat+0xea/0x130
[  773.975616][T17829]  do_syscall_64+0xcd/0x490
[  773.975641][T17829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  773.975655][T17829] RIP: 0033:0x7f267058e929
[  773.975667][T17829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  773.975685][T17829] RSP: 002b:00007f26713c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000109
[  773.975700][T17829] RAX: ffffffffffffffda RBX: 00007f26707b5fa0 RCX: 00007f267058e929
[  773.975710][T17829] RDX: ffffffffffffff9c RSI: 0000000000000000 RDI: 0000000000000006
[  773.975719][T17829] RBP: 00007f2670610b39 R08: 0000000000001000 R09: 0000000000000000
[  773.975727][T17829] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000000
[  773.975736][T17829] R13: 0000000000000000 R14: 00007f26707b5fa0 R15: 00007fff02b9e788
[  773.975755][T17829]  </TASK>
[  773.975771][T17829] ERROR: Out of memory at tomoyo_realpath_from_path.
[  774.739127][T17860] sp0: Synchronizing with TNC
[  775.158290][T17868] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input77
[  775.375333][T17870] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input78
[  775.590609][T17874] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input79
[  776.996953][T17892] sp0: Synchronizing with TNC
[  777.149312][T17891] sp0: Synchronizing with TNC
[  777.870362][T17906] FAULT_INJECTION: forcing a failure.
[  777.870362][T17906] name failslab, interval 1, probability 0, space 0, times 0
[  777.902514][T17906] CPU: 0 UID: 0 PID: 17906 Comm: syz.1.2046 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  777.902559][T17906] Tainted: [U]=USER
[  777.902569][T17906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  777.902586][T17906] Call Trace:
[  777.902595][T17906]  <TASK>
[  777.902605][T17906]  dump_stack_lvl+0x16c/0x1f0
[  777.902651][T17906]  should_fail_ex+0x512/0x640
[  777.902687][T17906]  ? __kmalloc_noprof+0xbf/0x510
[  777.902727][T17906]  ? __register_sysctl_table+0xb3/0x1900
[  777.902765][T17906]  should_failslab+0xc2/0x120
[  777.902791][T17906]  __kmalloc_noprof+0xd2/0x510
[  777.902836][T17906]  __register_sysctl_table+0xb3/0x1900
[  777.902876][T17906]  ? is_module_address+0x5f/0xf0
[  777.902917][T17906]  ? __pfx___register_sysctl_table+0x10/0x10
[  777.902955][T17906]  ? is_module_address+0x69/0xf0
[  777.902989][T17906]  ? register_net_sysctl_sz+0x228/0x3e0
[  777.903026][T17906]  __devinet_sysctl_register+0x1b9/0x360
[  777.903065][T17906]  ? __pfx___devinet_sysctl_register+0x10/0x10
[  777.903102][T17906]  ? devinet_init_net+0xeb/0x910
[  777.903135][T17906]  ? __asan_memcpy+0x3c/0x60
[  777.903171][T17906]  devinet_init_net+0x315/0x910
[  777.903204][T17906]  ? __pfx_devinet_init_net+0x10/0x10
[  777.903235][T17906]  ops_init+0x1df/0x5f0
[  777.903264][T17906]  setup_net+0x1ff/0x510
[  777.903295][T17906]  ? lockdep_init_map_type+0x5c/0x280
[  777.903330][T17906]  ? __pfx_setup_net+0x10/0x10
[  777.903359][T17906]  ? debug_mutex_init+0x37/0x70
[  777.903389][T17906]  copy_net_ns+0x2a6/0x5f0
[  777.903422][T17906]  create_new_namespaces+0x3ea/0xa90
[  777.903459][T17906]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  777.903491][T17906]  ksys_unshare+0x45b/0xa40
[  777.903525][T17906]  ? __pfx_ksys_unshare+0x10/0x10
[  777.903564][T17906]  ? xfd_validate_state+0x61/0x180
[  777.903609][T17906]  __x64_sys_unshare+0x31/0x40
[  777.903643][T17906]  do_syscall_64+0xcd/0x490
[  777.903685][T17906]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  777.903711][T17906] RIP: 0033:0x7fadccd8e929
[  777.903733][T17906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  777.903758][T17906] RSP: 002b:00007fadcdb57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  777.903783][T17906] RAX: ffffffffffffffda RBX: 00007fadccfb5fa0 RCX: 00007fadccd8e929
[  777.903802][T17906] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  777.903819][T17906] RBP: 00007fadcce10b39 R08: 0000000000000000 R09: 0000000000000000
[  777.903835][T17906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  777.903851][T17906] R13: 0000000000000000 R14: 00007fadccfb5fa0 R15: 00007fff45e44ac8
[  777.903887][T17906]  </TASK>
[  778.498998][T17929] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2050'.
[  778.781627][T17936] QAT: Stopping all acceleration devices.
[  778.994253][T17941] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input80
[  779.209076][T17944] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input81
[  779.913374][T17928] kexec: Could not allocate control_code_buffer
[  780.452975][T17982] openvswitch: netlink: IP tunnel attribute has 16 unknown bytes.
[  780.488227][T17982] openvswitch: netlink: IP tunnel attribute has 16 unknown bytes.
[  781.122326][T17994] QAT: Stopping all acceleration devices.
[  781.566206][T17988] Console: switching to colour VGA+ 80x9
[  781.808030][T17989] Console: switching to colour frame buffer device 128x48
[  782.144857][T18001] FAULT_INJECTION: forcing a failure.
[  782.144857][T18001] name failslab, interval 1, probability 0, space 0, times 0
[  782.160349][T18001] CPU: 1 UID: 0 PID: 18001 Comm: syz.4.2062 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  782.160374][T18001] Tainted: [U]=USER
[  782.160380][T18001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  782.160389][T18001] Call Trace:
[  782.160395][T18001]  <TASK>
[  782.160402][T18001]  dump_stack_lvl+0x16c/0x1f0
[  782.160428][T18001]  should_fail_ex+0x512/0x640
[  782.160448][T18001]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  782.160472][T18001]  should_failslab+0xc2/0x120
[  782.160486][T18001]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  782.160507][T18001]  ? kernel_text_address+0x8d/0x100
[  782.160527][T18001]  ? vm_area_dup+0x27/0x8d0
[  782.160555][T18001]  ? __pfx_hugetlb_vm_op_split+0x10/0x10
[  782.160575][T18001]  vm_area_dup+0x27/0x8d0
[  782.160593][T18001]  ? __pfx_hugetlb_vm_op_split+0x10/0x10
[  782.160613][T18001]  __split_vma+0x18e/0x1070
[  782.160636][T18001]  ? __pfx___split_vma+0x10/0x10
[  782.160653][T18001]  ? __lock_acquire+0xb8a/0x1c90
[  782.160682][T18001]  vms_gather_munmap_vmas+0x1c2/0x1310
[  782.160700][T18001]  ? finish_task_switch.isra.0+0x21c/0xc10
[  782.160716][T18001]  ? rcu_is_watching+0x12/0xc0
[  782.160732][T18001]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  782.160751][T18001]  ? finish_task_switch.isra.0+0x2fa/0xc10
[  782.160765][T18001]  ? rcu_is_watching+0x12/0xc0
[  782.160779][T18001]  ? trace_sched_exit_tp+0xde/0x130
[  782.160795][T18001]  ? __schedule+0x1181/0x5de0
[  782.160819][T18001]  do_vmi_align_munmap+0x27c/0x7d0
[  782.160840][T18001]  ? __lock_acquire+0x622/0x1c90
[  782.160858][T18001]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  782.160903][T18001]  do_vmi_munmap+0x204/0x3e0
[  782.160926][T18001]  shrink_vma+0x1cc/0x380
[  782.160946][T18001]  ? __pfx_shrink_vma+0x10/0x10
[  782.160970][T18001]  ? __pfx_down_write_killable+0x10/0x10
[  782.160984][T18001]  ? __pfx_futex_wait+0x10/0x10
[  782.161008][T18001]  __do_sys_mremap+0xae4/0x1590
[  782.161030][T18001]  ? kmem_cache_free+0x2d1/0x4d0
[  782.161048][T18001]  ? __pfx___do_sys_mremap+0x10/0x10
[  782.161074][T18001]  ? do_linkat+0x340/0x5a0
[  782.161098][T18001]  ? __x64_sys_futex+0x1e0/0x4c0
[  782.161126][T18001]  do_syscall_64+0xcd/0x490
[  782.161149][T18001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  782.161163][T18001] RIP: 0033:0x7f83db18e929
[  782.161176][T18001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  782.161190][T18001] RSP: 002b:00007f83dbf1e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  782.161204][T18001] RAX: ffffffffffffffda RBX: 00007f83db3b5fa0 RCX: 00007f83db18e929
[  782.161213][T18001] RDX: 0000000000003fd7 RSI: 0000000004000007 RDI: 0000000000000000
[  782.161222][T18001] RBP: 00007f83db210b39 R08: 0020000020000000 R09: 0000000000000000
[  782.161230][T18001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  782.161240][T18001] R13: 0000000000000000 R14: 00007f83db3b5fa0 R15: 00007fff68e968c8
[  782.161259][T18001]  </TASK>
[  782.360801][T18008] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input82
[  782.653287][T18006] FAULT_INJECTION: forcing a failure.
[  782.653287][T18006] name failslab, interval 1, probability 0, space 0, times 0
[  782.703390][T18006] CPU: 1 UID: 0 PID: 18006 Comm: syz.5.2065 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  782.703433][T18006] Tainted: [U]=USER
[  782.703442][T18006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  782.703456][T18006] Call Trace:
[  782.703465][T18006]  <TASK>
[  782.703475][T18006]  dump_stack_lvl+0x16c/0x1f0
[  782.703526][T18006]  should_fail_ex+0x512/0x640
[  782.703561][T18006]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  782.703613][T18006]  should_failslab+0xc2/0x120
[  782.703638][T18006]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  782.703676][T18006]  ? mas_alloc_nodes+0x18b/0x8b0
[  782.703717][T18006]  mas_alloc_nodes+0x18b/0x8b0
[  782.703758][T18006]  mas_node_count_gfp+0x105/0x130
[  782.703795][T18006]  mas_preallocate+0x7e0/0xde0
[  782.703828][T18006]  ? __pfx_mas_preallocate+0x10/0x10
[  782.703867][T18006]  ? anon_vma_name+0x75/0x100
[  782.703901][T18006]  __split_vma+0x34a/0x1070
[  782.703937][T18006]  ? __pfx___split_vma+0x10/0x10
[  782.703968][T18006]  ? __lock_acquire+0xb8a/0x1c90
[  782.704020][T18006]  vms_gather_munmap_vmas+0x1c2/0x1310
[  782.704054][T18006]  ? finish_task_switch.isra.0+0x21c/0xc10
[  782.704082][T18006]  ? rcu_is_watching+0x12/0xc0
[  782.704109][T18006]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  782.704143][T18006]  ? finish_task_switch.isra.0+0x221/0xc10
[  782.704170][T18006]  ? rcu_is_watching+0x12/0xc0
[  782.704196][T18006]  ? trace_sched_exit_tp+0xde/0x130
[  782.704224][T18006]  ? __schedule+0x1181/0x5de0
[  782.704266][T18006]  do_vmi_align_munmap+0x27c/0x7d0
[  782.704303][T18006]  ? __lock_acquire+0x622/0x1c90
[  782.704335][T18006]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  782.704421][T18006]  do_vmi_munmap+0x204/0x3e0
[  782.704462][T18006]  shrink_vma+0x1cc/0x380
[  782.704510][T18006]  ? __pfx_shrink_vma+0x10/0x10
[  782.704554][T18006]  ? __pfx_down_write_killable+0x10/0x10
[  782.704579][T18006]  ? __pfx_futex_wait+0x10/0x10
[  782.704622][T18006]  __do_sys_mremap+0xae4/0x1590
[  782.704661][T18006]  ? kmem_cache_free+0x2d1/0x4d0
[  782.704694][T18006]  ? __pfx___do_sys_mremap+0x10/0x10
[  782.704740][T18006]  ? do_linkat+0x340/0x5a0
[  782.704783][T18006]  ? __x64_sys_futex+0x1e0/0x4c0
[  782.704833][T18006]  do_syscall_64+0xcd/0x490
[  782.704873][T18006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  782.704898][T18006] RIP: 0033:0x7f267058e929
[  782.704920][T18006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  782.704945][T18006] RSP: 002b:00007f26713c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  782.704969][T18006] RAX: ffffffffffffffda RBX: 00007f26707b5fa0 RCX: 00007f267058e929
[  782.704985][T18006] RDX: 0000000000003fd7 RSI: 0000000004000007 RDI: 0000000000000000
[  782.704999][T18006] RBP: 00007f2670610b39 R08: 0020000020000000 R09: 0000000000000000
[  782.705013][T18006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  782.705027][T18006] R13: 0000000000000000 R14: 00007f26707b5fa0 R15: 00007fff02b9e788
[  782.705061][T18006]  </TASK>
[  783.002444][    C1] vkms_vblank_simulate: vblank timer overrun
[  785.855399][T18090] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input83
[  789.278450][T18171] Console: switching to colour VGA+ 80x9
[  789.891537][T18181] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input86
[  792.700105][T18237] delete_channel: no stack
[  792.858876][T18244] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input87
[  794.652825][T18282] FAULT_INJECTION: forcing a failure.
[  794.652825][T18282] name failslab, interval 1, probability 0, space 0, times 0
[  794.670222][T18282] CPU: 0 UID: 0 PID: 18282 Comm: syz.4.2108 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  794.670258][T18282] Tainted: [U]=USER
[  794.670264][T18282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  794.670273][T18282] Call Trace:
[  794.670279][T18282]  <TASK>
[  794.670285][T18282]  dump_stack_lvl+0x16c/0x1f0
[  794.670312][T18282]  should_fail_ex+0x512/0x640
[  794.670333][T18282]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  794.670360][T18282]  should_failslab+0xc2/0x120
[  794.670374][T18282]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  794.670395][T18282]  ? mas_alloc_nodes+0x18b/0x8b0
[  794.670417][T18282]  mas_alloc_nodes+0x18b/0x8b0
[  794.670439][T18282]  mas_node_count_gfp+0x105/0x130
[  794.670459][T18282]  mas_preallocate+0x7e0/0xde0
[  794.670477][T18282]  ? __pfx_mas_preallocate+0x10/0x10
[  794.670498][T18282]  ? anon_vma_name+0x75/0x100
[  794.670516][T18282]  __split_vma+0x34a/0x1070
[  794.670538][T18282]  ? __pfx___split_vma+0x10/0x10
[  794.670555][T18282]  ? __lock_acquire+0xb8a/0x1c90
[  794.670584][T18282]  vms_gather_munmap_vmas+0x1c2/0x1310
[  794.670611][T18282]  ? finish_task_switch.isra.0+0x21c/0xc10
[  794.670627][T18282]  ? rcu_is_watching+0x12/0xc0
[  794.670643][T18282]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  794.670663][T18282]  ? finish_task_switch.isra.0+0x221/0xc10
[  794.670678][T18282]  ? rcu_is_watching+0x12/0xc0
[  794.670692][T18282]  ? trace_sched_exit_tp+0xde/0x130
[  794.670709][T18282]  ? __schedule+0x1181/0x5de0
[  794.670733][T18282]  do_vmi_align_munmap+0x27c/0x7d0
[  794.670754][T18282]  ? __lock_acquire+0x622/0x1c90
[  794.670772][T18282]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  794.670817][T18282]  do_vmi_munmap+0x204/0x3e0
[  794.670839][T18282]  shrink_vma+0x1cc/0x380
[  794.670860][T18282]  ? __pfx_shrink_vma+0x10/0x10
[  794.670883][T18282]  ? __pfx_down_write_killable+0x10/0x10
[  794.670897][T18282]  ? __pfx_futex_wait+0x10/0x10
[  794.670921][T18282]  __do_sys_mremap+0xae4/0x1590
[  794.670943][T18282]  ? kmem_cache_free+0x2d1/0x4d0
[  794.670962][T18282]  ? __pfx___do_sys_mremap+0x10/0x10
[  794.670987][T18282]  ? do_linkat+0x340/0x5a0
[  794.671012][T18282]  ? __x64_sys_futex+0x1e0/0x4c0
[  794.671040][T18282]  do_syscall_64+0xcd/0x490
[  794.671063][T18282]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  794.671077][T18282] RIP: 0033:0x7f83db18e929
[  794.671090][T18282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  794.671104][T18282] RSP: 002b:00007f83dbf1e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  794.671118][T18282] RAX: ffffffffffffffda RBX: 00007f83db3b5fa0 RCX: 00007f83db18e929
[  794.671128][T18282] RDX: 0000000000003fd7 RSI: 0000000004000007 RDI: 0000000000000000
[  794.671137][T18282] RBP: 00007f83db210b39 R08: 0020000020000000 R09: 0000000000000000
[  794.671146][T18282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  794.671154][T18282] R13: 0000000000000000 R14: 00007f83db3b5fa0 R15: 00007fff68e968c8
[  794.671173][T18282]  </TASK>
[  795.366357][T18288] FAULT_INJECTION: forcing a failure.
[  795.366357][T18288] name failslab, interval 1, probability 0, space 0, times 0
[  795.384018][T18288] CPU: 0 UID: 0 PID: 18288 Comm: syz.1.2110 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  795.384061][T18288] Tainted: [U]=USER
[  795.384071][T18288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  795.384086][T18288] Call Trace:
[  795.384095][T18288]  <TASK>
[  795.384105][T18288]  dump_stack_lvl+0x16c/0x1f0
[  795.384150][T18288]  should_fail_ex+0x512/0x640
[  795.384184][T18288]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  795.384227][T18288]  should_failslab+0xc2/0x120
[  795.384253][T18288]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  795.384295][T18288]  ? devinet_init_net+0x9c/0x910
[  795.384330][T18288]  ? __pfx_devinet_init_net+0x10/0x10
[  795.384364][T18288]  kmemdup_noprof+0x29/0x60
[  795.384403][T18288]  devinet_init_net+0x9c/0x910
[  795.384437][T18288]  ? __pfx_devinet_init_net+0x10/0x10
[  795.384469][T18288]  ops_init+0x1df/0x5f0
[  795.384499][T18288]  setup_net+0x1ff/0x510
[  795.384529][T18288]  ? lockdep_init_map_type+0x5c/0x280
[  795.384567][T18288]  ? __pfx_setup_net+0x10/0x10
[  795.384595][T18288]  ? debug_mutex_init+0x37/0x70
[  795.384626][T18288]  copy_net_ns+0x2a6/0x5f0
[  795.384659][T18288]  create_new_namespaces+0x3ea/0xa90
[  795.384696][T18288]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  795.384728][T18288]  ksys_unshare+0x45b/0xa40
[  795.384763][T18288]  ? __pfx_ksys_unshare+0x10/0x10
[  795.384797][T18288]  ? xfd_validate_state+0x61/0x180
[  795.384841][T18288]  __x64_sys_unshare+0x31/0x40
[  795.384874][T18288]  do_syscall_64+0xcd/0x490
[  795.384915][T18288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  795.384942][T18288] RIP: 0033:0x7fadccd8e929
[  795.384965][T18288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  795.384992][T18288] RSP: 002b:00007fadcdb57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  795.385017][T18288] RAX: ffffffffffffffda RBX: 00007fadccfb5fa0 RCX: 00007fadccd8e929
[  795.385036][T18288] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  795.385053][T18288] RBP: 00007fadcce10b39 R08: 0000000000000000 R09: 0000000000000000
[  795.385070][T18288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  795.385087][T18288] R13: 0000000000000000 R14: 00007fadccfb5fa0 R15: 00007fff45e44ac8
[  795.385123][T18288]  </TASK>
[  796.641888][T18316] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input89
[  797.404913][T18342] sp0: Synchronizing with TNC
[  797.630901][T18349] QAT: Stopping all acceleration devices.
[  798.446383][T18361] FAULT_INJECTION: forcing a failure.
[  798.446383][T18361] name fail_futex, interval 1, probability 0, space 0, times 0
[  798.474015][T18361] CPU: 1 UID: 0 PID: 18361 Comm: syz.5.2123 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  798.474049][T18361] Tainted: [U]=USER
[  798.474054][T18361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  798.474063][T18361] Call Trace:
[  798.474069][T18361]  <TASK>
[  798.474076][T18361]  dump_stack_lvl+0x16c/0x1f0
[  798.474101][T18361]  should_fail_ex+0x512/0x640
[  798.474122][T18361]  ? __kasan_slab_free+0x51/0x70
[  798.474146][T18361]  get_futex_key+0x1d0/0x1540
[  798.474166][T18361]  ? __pfx_get_futex_key+0x10/0x10
[  798.474188][T18361]  futex_wake+0xea/0x530
[  798.474209][T18361]  ? __pfx_futex_wake+0x10/0x10
[  798.474231][T18361]  ? rcu_is_watching+0x12/0xc0
[  798.474253][T18361]  ? kasan_quarantine_put+0x10a/0x240
[  798.474274][T18361]  ? lockdep_hardirqs_on+0x7c/0x110
[  798.474297][T18361]  do_futex+0x1e3/0x350
[  798.474314][T18361]  ? __pfx_do_futex+0x10/0x10
[  798.474336][T18361]  __x64_sys_futex+0x1e0/0x4c0
[  798.474356][T18361]  ? __pfx___x64_sys_futex+0x10/0x10
[  798.474373][T18361]  ? xfd_validate_state+0x61/0x180
[  798.474389][T18361]  ? getname_flags.part.0+0x1c5/0x550
[  798.474411][T18361]  do_syscall_64+0xcd/0x490
[  798.474433][T18361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  798.474447][T18361] RIP: 0033:0x7f267058e929
[  798.474459][T18361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  798.474473][T18361] RSP: 002b:00007f26713c00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  798.474487][T18361] RAX: ffffffffffffffda RBX: 00007f26707b5fa8 RCX: 00007f267058e929
[  798.474496][T18361] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f26707b5fac
[  798.474505][T18361] RBP: 00007f26707b5fa0 R08: 00007f26713c1000 R09: 0000000000000000
[  798.474514][T18361] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f26707b5fac
[  798.474523][T18361] R13: 0000000000000000 R14: 00007fff02b9e6a0 R15: 00007fff02b9e788
[  798.474541][T18361]  </TASK>
[  800.161205][T18388] QAT: Stopping all acceleration devices.
[  804.950270][T18452] Console: switching to colour frame buffer device 128x48
[  805.404971][T18489] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input91
[  808.288126][T18555] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input92
[  808.405065][T18559] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input93
[  808.583949][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  808.590514][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  808.866896][T18577] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input94
[  809.180498][T18581] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input95
[  810.217302][T18605] Console: switching to colour VGA+ 80x9
[  810.499398][T18601] Console: switching to colour frame buffer device 128x48
[  811.135900][   T31] INFO: task kworker/u10:3:15541 blocked for more than 143 seconds.
[  811.168277][   T31]       Tainted: G     U              6.16.0-rc4-syzkaller #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  811.195714][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  811.219743][   T31] task:kworker/u10:3   state:D stack:27448 pid:15541 tgid:15541 ppid:2      task_flags:0x4208060 flags:0x00004000
[  811.232245][   T31] Workqueue: netns cleanup_net
[  811.285762][   T31] Call Trace:
[  811.335916][   T31]  <TASK>
[  811.338911][   T31]  __schedule+0x116a/0x5de0
[  811.343478][   T31]  ? __pfx___schedule+0x10/0x10
[  811.393184][   T31]  ? find_held_lock+0x2b/0x80
[  811.493522][   T31]  ? schedule+0x2d7/0x3a0
[  811.501741][   T31]  schedule+0xe7/0x3a0
[  811.514528][   T31]  schedule_timeout+0x257/0x290
[  811.524153][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  811.535583][   T31]  ? mark_held_locks+0x49/0x80
[  811.541086][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  811.546372][   T31]  __wait_for_common+0x2ff/0x4e0
[  811.551697][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  811.557143][   T31]  ? __pfx___wait_for_common+0x10/0x10
[  811.562627][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  811.568100][   T31]  ? flush_workqueue_prep_pwqs+0x2e9/0x510
[  811.573920][   T31]  __flush_workqueue+0x3e2/0x1230
[  811.582064][T18626] sp0: Synchronizing with TNC
[  811.586921][   T31]  ? __pfx___flush_workqueue+0x10/0x10
[  811.592525][   T31]  ? reacquire_held_locks+0xcd/0x1f0
[  811.615586][   T31]  ? __pfx_sock_def_readable+0x10/0x10
[  811.622399][   T31]  ? __pfx_sock_def_readable+0x10/0x10
[  811.635665][   T31]  rds_tcp_listen_stop+0x104/0x150
[  811.642241][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  811.647793][   T31]  rds_tcp_exit_net+0xcb/0x810
[  811.652895][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  811.671229][   T31]  ? __pfx___might_resched+0x10/0x10
[  811.696717][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  811.705754][   T31]  ops_undo_list+0x2eb/0xab0
[  811.710605][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[  811.735572][   T31]  ? __local_bh_enable_ip+0xa4/0x120
[  811.741016][   T31]  cleanup_net+0x408/0x890
[  811.752346][   T31]  ? __pfx_cleanup_net+0x10/0x10
[  811.763199][   T31]  ? rcu_is_watching+0x12/0xc0
[  811.776319][   T31]  process_one_work+0x9cf/0x1b70
[  811.788498][   T31]  ? __pfx_process_one_work+0x10/0x10
[  811.877497][   T31]  ? assign_work+0x1a0/0x250
[  811.882263][   T31]  worker_thread+0x6c8/0xf10
[  811.888873][   T31]  ? __kthread_parkme+0x19e/0x250
[  811.894054][   T31]  ? __pfx_worker_thread+0x10/0x10
[  811.899784][   T31]  kthread+0x3c5/0x780
[  811.903983][   T31]  ? __pfx_kthread+0x10/0x10
[  811.909063][   T31]  ? rcu_is_watching+0x12/0xc0
[  811.914132][   T31]  ? __pfx_kthread+0x10/0x10
[  811.919149][   T31]  ret_from_fork+0x5d4/0x6f0
[  811.923806][   T31]  ? __pfx_kthread+0x10/0x10
[  811.928775][   T31]  ret_from_fork_asm+0x1a/0x30
[  811.934404][   T31]  </TASK>
[  811.966046][   T31] 
[  811.966046][   T31] Showing all locks held in the system:
[  811.985036][   T31] 1 lock held by khungtaskd/31:
[  811.991762][   T31]  #0: ffffffff8e5c47c0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  812.002159][   T31] 1 lock held by udevd/5200:
[  812.007150][   T31]  #0: ffff88801c6ff188 (&root->kernfs_rwsem){++++}-{4:4}, at: kernfs_dop_revalidate+0xa5/0x740
[  812.025395][   T31] 2 locks held by getty/5597:
[  812.030195][   T31]  #0: ffff88803206e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  812.063015][   T31]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[  812.085301][   T31] 2 locks held by sshd-session/5818:
[  812.093828][   T31] 2 locks held by syz-executor/5829:
[  812.105242][   T31] 1 lock held by syz-executor/5836:
[  812.110481][   T31]  #0: ffffffff8e5cfdb8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0
[  812.147607][   T31] 3 locks held by kworker/u10:3/15541:
[  812.153111][   T31]  #0: ffff88801c6fe148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  812.195208][   T31]  #1: ffffc90002fa7d10 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  812.225576][   T31]  #2: ffffffff90337c90 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xad/0x890
[  812.234996][   T31] 1 lock held by syz.2.1709/15860:
[  812.265228][   T31]  #0: ffffffff90337c90 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x286/0x5f0
[  812.274733][   T31] 1 lock held by syz-executor/16127:
[  812.335788][   T31]  #0: ffffffff8e5cfdb8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0
[  812.355123][   T31] 1 lock held by syz.3.1918/17108:
[  812.365144][   T31]  #0: ffffffff90337c90 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x286/0x5f0
[  812.374627][   T31] 3 locks held by syz.1.2169/18627:
[  812.391894][   T31]  #0: ffff88803c8451c0 (&tty->legacy_mutex){+.+.}-{4:4}, at: __tty_hangup.part.0+0xae/0x890
[  812.406023][   T31]  #1: ffff88803c8450a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_lock+0x65/0xb0
[  812.419757][   T31]  #2: ffffffff9034dce8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_net_dev_lock+0x146/0x360
[  812.429365][   T31] 
[  812.452444][   T31] =============================================
[  812.452444][   T31] 
[  812.462015][   T31] NMI backtrace for cpu 0
[  812.462038][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  812.462072][   T31] Tainted: [U]=USER
[  812.462080][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  812.462095][   T31] Call Trace:
[  812.462103][   T31]  <TASK>
[  812.462113][   T31]  dump_stack_lvl+0x116/0x1f0
[  812.462152][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  812.462179][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  812.462213][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  812.462245][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  812.462277][   T31]  watchdog+0xf70/0x12c0
[  812.462319][   T31]  ? __pfx_watchdog+0x10/0x10
[  812.462350][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  812.462385][   T31]  ? __kthread_parkme+0x19e/0x250
[  812.462416][   T31]  ? __pfx_watchdog+0x10/0x10
[  812.462450][   T31]  kthread+0x3c5/0x780
[  812.462488][   T31]  ? __pfx_kthread+0x10/0x10
[  812.462522][   T31]  ? rcu_is_watching+0x12/0xc0
[  812.462546][   T31]  ? __pfx_kthread+0x10/0x10
[  812.462580][   T31]  ret_from_fork+0x5d4/0x6f0
[  812.462636][   T31]  ? __pfx_kthread+0x10/0x10
[  812.462669][   T31]  ret_from_fork_asm+0x1a/0x30
[  812.462709][   T31]  </TASK>
[  812.462719][   T31] Sending NMI from CPU 0 to CPUs 1:
[  812.600981][    C1] NMI backtrace for cpu 1
[  812.601004][    C1] CPU: 1 UID: 0 PID: 5824 Comm: syz-executor Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  812.601039][    C1] Tainted: [U]=USER
[  812.601048][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  812.601063][    C1] RIP: 0010:stack_access_ok+0x6e/0x200
[  812.601104][    C1] Code: 00 fc ff df 4c 89 ea 48 c1 ea 03 80 3c 02 00 0f 85 52 01 00 00 48 89 da 48 8b 4b 10 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e 0b 01 00 00 8b 13 85 d2 74 23
[  812.601128][    C1] RSP: 0018:ffffc90003fbf668 EFLAGS: 00000a02
[  812.601148][    C1] RAX: dffffc0000000000 RBX: ffffc90003fbf718 RCX: ffffc90003fc0000
[  812.601165][    C1] RDX: 1ffff920007f7ee3 RSI: ffffc90003fbff10 RDI: ffffc90003fbf718
[  812.601182][    C1] RBP: ffffc90003fbff10 R08: 0000000000000001 R09: 0000000000000000
[  812.601198][    C1] R10: 0000000000000000 R11: 000000000000a50a R12: 0000000000000008
[  812.601213][    C1] R13: ffffc90003fbf728 R14: ffffc90003fbf720 R15: ffffc90003fb8000
[  812.601229][    C1] FS:  0000000000000000(0000) GS:ffff88812485f000(0000) knlGS:0000000000000000
[  812.601252][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  812.601268][    C1] CR2: 0000001b302d1ff8 CR3: 0000000034e48000 CR4: 00000000003526f0
[  812.601285][    C1] Call Trace:
[  812.601293][    C1]  <TASK>
[  812.601304][    C1]  unwind_next_frame+0x15c5/0x20a0
[  812.601341][    C1]  ? exit_to_user_mode_loop+0x84/0x110
[  812.601379][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  812.601408][    C1]  arch_stack_walk+0x94/0x100
[  812.601448][    C1]  ? do_syscall_64+0x3f6/0x490
[  812.601488][    C1]  stack_trace_save+0x8e/0xc0
[  812.601513][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  812.601541][    C1]  ? __lock_acquire+0x622/0x1c90
[  812.601574][    C1]  save_stack+0x160/0x1f0
[  812.601607][    C1]  ? __pfx_save_stack+0x10/0x10
[  812.601659][    C1]  ? __free_frozen_pages+0x7fe/0x1180
[  812.601690][    C1]  ? vfree+0x1fd/0xb50
[  812.601715][    C1]  ? kcov_close+0x34/0x60
[  812.601747][    C1]  ? __fput+0x402/0xb70
[  812.601768][    C1]  ? task_work_run+0x14d/0x240
[  812.601814][    C1]  ? do_exit+0x86c/0x2bd0
[  812.601848][    C1]  ? do_group_exit+0xd3/0x2a0
[  812.601900][    C1]  ? get_signal+0x2673/0x26d0
[  812.601925][    C1]  ? arch_do_signal_or_restart+0x8f/0x790
[  812.601952][    C1]  ? exit_to_user_mode_loop+0x84/0x110
[  812.601991][    C1]  ? page_ext_put+0x3e/0xd0
[  812.602029][    C1]  __reset_page_owner+0x84/0x1a0
[  812.602067][    C1]  __free_frozen_pages+0x7fe/0x1180
[  812.602103][    C1]  vfree+0x1fd/0xb50
[  812.602129][    C1]  ? find_held_lock+0x2b/0x80
[  812.602153][    C1]  ? rcu_is_watching+0x12/0xc0
[  812.602177][    C1]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  812.602213][    C1]  ? __pfx_kcov_close+0x10/0x10
[  812.602245][    C1]  kcov_close+0x34/0x60
[  812.602277][    C1]  __fput+0x402/0xb70
[  812.602300][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  812.602334][    C1]  task_work_run+0x14d/0x240
[  812.602381][    C1]  ? __pfx_task_work_run+0x10/0x10
[  812.602422][    C1]  do_exit+0x86c/0x2bd0
[  812.602452][    C1]  ? find_held_lock+0x2b/0x80
[  812.602483][    C1]  ? __pfx_do_exit+0x10/0x10
[  812.602513][    C1]  ? do_raw_spin_lock+0x12c/0x2b0
[  812.602561][    C1]  ? find_held_lock+0x2b/0x80
[  812.602588][    C1]  do_group_exit+0xd3/0x2a0
[  812.602620][    C1]  get_signal+0x2673/0x26d0
[  812.602652][    C1]  ? __pfx_get_signal+0x10/0x10
[  812.602679][    C1]  ? __do_sys_wait4+0xd1/0x170
[  812.602714][    C1]  arch_do_signal_or_restart+0x8f/0x790
[  812.602742][    C1]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  812.602780][    C1]  exit_to_user_mode_loop+0x84/0x110
[  812.602817][    C1]  do_syscall_64+0x3f6/0x490
[  812.602861][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  812.602885][    C1] RIP: 0033:0x7f3585984b53
[  812.602903][    C1] Code: Unable to access opcode bytes at 0x7f3585984b29.
[  812.602915][    C1] RSP: 002b:00007ffcbf79c4f8 EFLAGS: 00000202 ORIG_RAX: 000000000000003d
[  812.602935][    C1] RAX: fffffffffffffe00 RBX: 00000000000016cc RCX: 00007f3585984b53
[  812.602951][    C1] RDX: 0000000040000000 RSI: 00007ffcbf79c50c RDI: 00000000ffffffff
[  812.602967][    C1] RBP: 00007ffcbf79c50c R08: 0000000000000000 R09: 0000000000000000
[  812.602987][    C1] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  812.603001][    C1] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  812.603027][    C1]  </TASK>
[  813.025643][    C0] vkms_vblank_simulate: vblank timer overrun
[  813.057282][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  813.064170][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  813.075834][   T31] Tainted: [U]=USER
[  813.079648][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  813.089719][   T31] Call Trace:
[  813.093012][   T31]  <TASK>
[  813.095958][   T31]  dump_stack_lvl+0x3d/0x1f0
[  813.100589][   T31]  panic+0x71c/0x800
[  813.104516][   T31]  ? __pfx___irq_work_queue_local+0x10/0x10
[  813.110466][   T31]  ? __pfx_panic+0x10/0x10
[  813.114902][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  813.120280][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  813.126267][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  813.131643][   T31]  ? watchdog+0xdda/0x12c0
[  813.136067][   T31]  ? watchdog+0xdcd/0x12c0
[  813.140490][   T31]  watchdog+0xdeb/0x12c0
[  813.144742][   T31]  ? __pfx_watchdog+0x10/0x10
[  813.149423][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  813.154629][   T31]  ? __kthread_parkme+0x19e/0x250
[  813.159666][   T31]  ? __pfx_watchdog+0x10/0x10
[  813.164349][   T31]  kthread+0x3c5/0x780
[  813.168427][   T31]  ? __pfx_kthread+0x10/0x10
[  813.173033][   T31]  ? rcu_is_watching+0x12/0xc0
[  813.177802][   T31]  ? __pfx_kthread+0x10/0x10
[  813.182399][   T31]  ret_from_fork+0x5d4/0x6f0
[  813.186991][   T31]  ? __pfx_kthread+0x10/0x10
[  813.191584][   T31]  ret_from_fork_asm+0x1a/0x30
[  813.196363][   T31]  </TASK>
[  813.199622][   T31] Kernel Offset: disabled
[  813.203938][   T31] Rebooting in 86400 seconds..