last executing test programs:

7.063658969s ago: executing program 0 (id=757):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = getpid()
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f00000000c0), 0xffffffff}, 0x6, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
timer_create$auto(0x9, 0x0, 0x0)
timer_settime$auto(0x0, 0x4b, &(0x7f0000000040)={{0x3, 0x1}, {0xc, 0x4c}}, 0x0)
timer_gettime$auto(0x0, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x100000000000033, 0x0)
fsopen$auto(0x0, 0x1)
ioctl$auto(0x4000000000000c8, 0x400454d1, 0x6)
r1 = gettid()
tkill$auto(r1, 0x7)
prctl$auto_PR_SYS_DISPATCH_OFF(0x2, 0x0, r1, 0xc0, 0x8)

6.705421388s ago: executing program 0 (id=760):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/reboot/mode\x00', 0x1e2142, 0x0)
r0 = socket(0x2, 0x80002, 0x73)
getpeername$auto(r0, 0x0, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x1000, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/ati_remote2/parameters/channel_mask\x00', 0x1e1842, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000680)='/dev/v4l-subdev5\x00', 0x20281, 0x0)
ioctl$auto(r2, 0x5646, 0xffffffffffffffff)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSCOMPRESS(r1, 0x4010744d, &(0x7f00000001c0)={&(0x7f00000000c0)='\x8e\x04\x8f~\xa7 \xcf\x1fg7\n\xd8\xbd\xd3&\xa7\xa6_\xaa\xe2;\xb5\x82\x9dA\x8f|\xf3\xd7\xc6X\xdf\xdaC\x9aoqM2\x10\xb1\xd1\xbd\xca0\x9f\xe7\x00\x00\x00\x00\x00\x00\x00\x00T\r\xbfZO\x7f\xbd\x91\xf2\xbd\xc6.\xa2*\xdb\xd7\f\xebM\xba\x15P\as\x82\x17\xa3\xf5\xf6\xcd\x19P&\x88*\xf9\xdd\xc3t[`\xf3h\xc0\"\xd2\xa5\x81\xd6l\xc2k|\rX]XP\xfe\xc9\xe3\xea\xa4P\x95!3\xce\x9f\x9f<\x1eI\xfd\x80\x1c\xf9~\x06\x1b{K\x04\x85\xfa\x14\xbf\t\xc0\xced?j\xb2\xf1~T\xb2i\n\x15\x0e\xf7G9\'}^B=\xfc\x11\xfa\x0f\x0fd4^`\xc2\xb0\xaf\\\x1duPu\x02\xce:`c\xb0\xd0\xde\x13\xb4\xe0\xfcn\x98%\x1d\xff(\xa3\x10d\x89', 0x8, 0x80})
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv6/conf/sit0/regen_max_retry\x00', 0x800, 0x0)
read$auto(r3, 0x0, 0x1ff)
r4 = socket(0x8, 0x2, 0xb)
r5 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="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"], 0x1c}, 0x1, 0x0, 0x0, 0x24050803}, 0x10004010)
write$auto(0x3, 0x0, 0xfdef)
socket(0x2, 0x1, 0xfffffffd)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
listen$auto(0x3, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x62c00, 0x0)

6.221441673s ago: executing program 0 (id=764):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17) (async)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
madvise$auto(0x0, 0xfc3d, 0x6)
r0 = socket(0x2, 0x1, 0x0)
r1 = socket(0x3, 0x1, 0xc)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
listen$auto(r0, 0x7)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x800009}, 0x5, 0x2000fdff)
setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4) (async)
setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x4020009, 0x2, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x4020009, 0x2, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x9, 0x72, 0x8b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(0xffffffffffffffff, 0x10000000084, 0x0, 0x0, 0x10) (async)
setsockopt$auto(0xffffffffffffffff, 0x10000000084, 0x0, 0x0, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) (async)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto(r2, 0x301, 0x5)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sda\x00', 0x202, 0x0) (async)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sda\x00', 0x202, 0x0)
ioctl$auto_IOC_PR_RELEASE(r3, 0x401070ca, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
r4 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(r4, r4, 0x0) (async)
close_range$auto(r4, r4, 0x0)
r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi2\x00', 0xa200, 0x0)
ioctl$auto(r5, 0xc0585611, r5)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55) (async)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
sendmmsg$auto(r1, 0x0, 0x9a6, 0xe000)

6.119571473s ago: executing program 1 (id=766):
mmap$auto(0x0, 0xd, 0xdb, 0x9b72, 0x5, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
pread64$auto(r0, &(0x7f0000000000)=').{^{@@,$&{\x00', 0x4, 0x8)
semctl$auto_GETPID(0x4, 0x8, 0xb, 0xffffffffffffffff)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4$auto(0x0, 0x0, 0x2, 0x0)

6.047743418s ago: executing program 2 (id=767):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event1\x00', 0x20000, 0x0)
mmap$auto(0x0, 0x2020009, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x40, 0x0)
io_uring_setup$auto(0xa, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
close_range$auto(0x2, 0xa, 0x0)
open(0x0, 0xa240, 0x15e)
open(0x0, 0x161342, 0x100)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(0x3, 0x400, 0x1)
open(&(0x7f0000000080)='./file0\x00', 0x40, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x2040, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
shmctl$auto_SHM_LOCK(0x0, 0xb, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
statmount$auto(0x0, 0x0, 0xfffff7fffffff7fa, 0x81)
socket(0x10, 0x2, 0x0)
modify_ldt$auto(0x1, &(0x7f00000001c0), 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
mmap$auto(0x8, 0x20009, 0xdf, 0xeb1, 0x401, 0x8001)
setsockopt$auto(0x3, 0x10000000084, 0x28, 0x0, 0x8)
syz_genetlink_get_family_id$auto_ila(0x0, 0xffffffffffffffff)
sendmsg$auto_ILA_CMD_ADD(r0, 0x0, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='.\x00', @ANYRES16], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x40090)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1, 0x5)

5.452664969s ago: executing program 1 (id=768):
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_11={0x1ff, 0x1, 0xd77, 0xffffffff, 0x8001, 0x7, 0x8}, 0x6f3) (async)
pidfd_open$auto(0x0, 0x0) (async, rerun: 64)
socket(0xf, 0x3, 0x2) (async, rerun: 64)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
socket(0x2, 0x2, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0xa480, 0x0) (async, rerun: 32)
readv$auto(0x3, 0x0, 0x87) (async, rerun: 64)
socket(0x2, 0x2, 0x0) (async, rerun: 64)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0) (async, rerun: 32)
mmap$auto(0x4, 0xe983, 0xdf, 0x8010, 0x401, 0x7fffffffffffffff) (async, rerun: 32)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r1, 0x2, 0x0) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async)
ppoll$auto(&(0x7f0000000180)={0xffffffffffffffff, 0x4, 0x8}, 0x6, 0x0, 0x0, 0x8)
open(&(0x7f0000000800)='./file0\x00', 0x183242, 0x154)
mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8002)
unshare$auto(0x40000080) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)={0x14, r3, 0xb01, 0x70bd27, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000084) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x305080, 0x0) (rerun: 32)
madvise$auto(0x0, 0xfffffffffffeffff, 0x15) (async)
unshare$auto(0x40000080) (async)
r4 = socket(0xa, 0x2, 0x0)
setsockopt$auto_SO_WIFI_STATUS(r4, 0x0, 0x29, 0x0, 0x403)

5.443777247s ago: executing program 3 (id=769):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = getpid()
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f00000000c0), 0xffffffff}, 0x6, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
timer_create$auto(0x9, 0x0, 0x0)
timer_settime$auto(0x0, 0x4b, &(0x7f0000000040)={{0x3, 0x1}, {0xc, 0x4c}}, 0x0)
timer_gettime$auto(0x0, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x100000000000033, 0x0)
fsconfig$auto(0xffffffffffffffff, 0x8, 0x0, 0x0, 0x0)
ioctl$auto(0x4000000000000c8, 0x400454d1, 0x6)
r1 = gettid()
tkill$auto(r1, 0x7)
prctl$auto_PR_SYS_DISPATCH_OFF(0x2, 0x0, r1, 0xc0, 0x8)

5.27611316s ago: executing program 1 (id=770):
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
io_uring_setup$auto(0x3, 0x0)
socket(0xa, 0x1, 0x84)
prctl$auto(0x35, 0x0, 0x4, 0x0, 0x3)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x0, @rand_addr=0x2}, 0x52)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x4, 0x2020009, 0x7, 0xeb1, r1, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x106)
socket(0x2, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
connect$auto(0xffffffffffffffff, &(0x7f0000000000)=@tipc=@id={0x1e, 0x3, 0x2, {0x4e20, 0x1}}, 0x10)
unshare$auto(0x188c)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = socket(0x22, 0x2, 0x2)
sendmsg$auto_TIPC_NL_PEER_REMOVE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x40)
close_range$auto(0x2, 0x8, 0x0)
shmget$auto(0x400, 0x200000000008, 0x568c12f2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000001980), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_GET_TUNSRC(r3, &(0x7f0000001b80)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f00000019c0)={0x14, r4, 0x103, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x8000)
socket(0xf, 0x2, 0x40008)
timerfd_create$auto(0x9, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)

5.113759532s ago: executing program 3 (id=771):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000340), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4000000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)

4.92840854s ago: executing program 2 (id=772):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/reboot/mode\x00', 0x1e2142, 0x0)
r0 = socket(0x2, 0x80002, 0x73)
getpeername$auto(r0, 0x0, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x1000, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/ati_remote2/parameters/channel_mask\x00', 0x1e1842, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000680)='/dev/v4l-subdev5\x00', 0x20281, 0x0)
ioctl$auto(r3, 0x5646, 0xffffffffffffffff)
ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSCOMPRESS(r2, 0x4010744d, &(0x7f00000001c0)={&(0x7f00000000c0)='\x8e\x04\x8f~\xa7 \xcf\x1fg7\n\xd8\xbd\xd3&\xa7\xa6_\xaa\xe2;\xb5\x82\x9dA\x8f|\xf3\xd7\xc6X\xdf\xdaC\x9aoqM2\x10\xb1\xd1\xbd\xca0\x9f\xe7\x00\x00\x00\x00\x00\x00\x00\x00T\r\xbfZO\x7f\xbd\x91\xf2\xbd\xc6.\xa2*\xdb\xd7\f\xebM\xba\x15P\as\x82\x17\xa3\xf5\xf6\xcd\x19P&\x88*\xf9\xdd\xc3t[`\xf3h\xc0\"\xd2\xa5\x81\xd6l\xc2k|\rX]XP\xfe\xc9\xe3\xea\xa4P\x95!3\xce\x9f\x9f<\x1eI\xfd\x80\x1c\xf9~\x06\x1b{K\x04\x85\xfa\x14\xbf\t\xc0\xced?j\xb2\xf1~T\xb2i\n\x15\x0e\xf7G9\'}^B=\xfc\x11\xfa\x0f\x0fd4^`\xc2\xb0\xaf\\\x1duPu\x02\xce:`c\xb0\xd0\xde\x13\xb4\xe0\xfcn\x98%\x1d\xff(\xa3\x10d\x89', 0x8, 0x80})
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv6/conf/sit0/regen_max_retry\x00', 0x800, 0x0)
read$auto(r4, 0x0, 0x1ff)
r5 = socket(0x8, 0x2, 0xb)
r6 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="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"], 0x1c}, 0x1, 0x0, 0x0, 0x24050803}, 0x10004010)
write$auto(0x3, 0x0, 0xfdef)
socket(0x2, 0x1, 0xfffffffd)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
listen$auto(0x3, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x62c00, 0x0)

4.667391852s ago: executing program 3 (id=773):
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/driver/serial\x00', 0x43102, 0x0)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x40, 0x3, 0x0, 0x1, 0xfffffffffffffffb) (async)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x40, 0x3, 0x0, 0x1, 0xfffffffffffffffb)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D1\x00', 0x401, 0x0) (async)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D1\x00', 0x401, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0xffffffffffffffff, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x17820080, 0x0, 0x37, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r1, 0x4, 0x8000040006)
ptrace$auto(0xf, r1, 0xfffffffffffffffe, 0x8000000000000000)
mmap$auto(0x0, 0x4000a, 0xdf, 0x9b72, 0x7, 0x80000000)
ioperm$auto(0x2, 0xffdfffffffffffff, 0x59)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
getpid() (async)
r2 = getpid()
r3 = gettid()
rt_tgsigqueueinfo$auto(r2, r3, 0x1f, 0x0) (async)
rt_tgsigqueueinfo$auto(r2, r3, 0x1f, 0x0)
ppoll$auto(&(0x7f0000000000)={<r4=>0xffffffffffffffff, 0x692, 0xffa0}, 0x4, 0x0, &(0x7f00000000c0)={0x4}, 0x8)
close_range$auto(0x2, 0x8, 0x0)
r5 = open(&(0x7f0000000000)='./file0\x00', 0x105a42, 0xe1d2b27bdc14ab30)
write$auto(r0, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73) (async)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84) (async)
socket(0x2, 0x1, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x72, 0x0, 0xc) (async)
setsockopt$auto(0x3, 0x10000000084, 0x72, 0x0, 0xc)
ioctl$auto_SNDCTL_DSP_GETTRIGGER(r5, 0x80045010, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x1cb842, 0x0)
mmap$auto(0xeaf2, 0x1, 0xdb, 0x9b72, r4, 0xfffffffffffffffa)
sendmsg$auto_OVS_FLOW_CMD_GET(r4, 0x0, 0x4080)
setsockopt$auto(0xffffffffffffffff, 0x1, 0x1021, 0x0, 0xd)

4.496190816s ago: executing program 0 (id=774):
r0 = socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(r0, 0x0, 0x10000, 0x0, 0x0)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000040), 0xc0000, 0x0)
sendmmsg$auto(r1, 0x0, 0x80000003, 0x41)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000)
prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0030e5", @ANYRES16], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
mmap$auto(0x1, 0x3, 0x1, 0xe31, 0xffffffffffffffff, 0xe0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0)
socket(0x1d, 0x5, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x119000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x20100, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dmmidi2\x00', 0x101, 0x0)
socket(0x10, 0x2, 0x0)
mmap$auto(0x3, 0xa00006, 0x4, 0x40eb1, 0x602, 0x300000000000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x16e)
socket(0x2, 0x80802, 0xa57)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4, @multicast2}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)

4.126756049s ago: executing program 1 (id=775):
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000001d40), 0x40a40, 0x0)
mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_SMC_PNETID_DEL(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r1, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@SMC_PNETID_NAME={0x5, 0x1, '\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r3 = socket(0xa, 0x2, 0x84)
getsockopt$auto(r3, 0x0, 0x53, 0x0, &(0x7f0000000040)=0x28)
r4 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r2, 0x4b4d, r4)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
readv$auto(r5, &(0x7f00000000c0)={0x0, 0x5}, 0x3)
ioctl$auto_TIOCVHANGUP2(r5, 0x5437, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0x1010001, 0x100000003)
read$auto(r6, 0x0, 0x20)
sendmsg$auto_NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x2408c810}, 0x40418c0)
mmap$auto(0xff0f200000000000, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_IPVS_CMD_NEW_SERVICE(r4, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f0000003d40)={0x105c, 0x0, 0x4, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x1018, 0x1, 0x0, 0x1, [@typed={0x14, 0x10d, 0x0, 0x0, @ipv6=@private1}, @generic="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"]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_DAEMON={0x28, 0x3, 0x0, 0x1, [@typed={0x23, 0x99, 0x0, 0x0, @str='/sys/kernel/debug/sync/sw_sync\x00'}]}]}, 0x105c}, 0x1, 0x0, 0x0, 0x20004010}, 0x4)
select$auto(0x9, 0x0, &(0x7f0000000200)={[0x8, 0x4, 0x2, 0xb, 0x1, 0x209, 0x0, 0x7fff, 0xa, 0x193, 0xfffffffffffffff9, 0x3, 0x5e4, 0x1000, 0x1, 0x1]}, 0x0, 0x0)

3.708129187s ago: executing program 2 (id=776):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_genetlink_get_family_id$auto_net_shaper(0x0, 0xffffffffffffffff)
sendmsg$auto_NET_SHAPER_CMD_GROUP(0xffffffffffffffff, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2004c804}, 0x14)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f0, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
timerfd_create$auto(0x9, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000040)=""/49, 0x31)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
readv$auto(r1, &(0x7f00000001c0)={&(0x7f0000000100)="6044bb67f5459d8e4e1e504b25452ef3e83b0b52c8f49e50044485180830a1ed51282827b917476d5ad380335434bdb1c564508879b5e5d57f2e26b641f809355a93e70dbfaf2f0b63d20cbc16247dc38b5b9a471f4ae0e2e7ba7d1b81eb247c8f12d9dc892059ba5533480195d2cf6ae62b01db81c6a987ae4049f3c8a3792bfa2ffd7fe02e4488d3f8cb44073a7975173dbeb67b1bbc", 0x4}, 0x3)
ioctl$auto_SIOCGIFHWADDR2(0xffffffffffffffff, 0x8927, 0x0)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000500)='/dev/bus/usb/023/001\x00', 0x201, 0x0)
ioctl$auto_USBDEVFS_DISCONNECT_CLAIM(r3, 0x8108551b, &(0x7f0000000540)={0x0, 0x6, "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"})
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x27111}, 0x8)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x2, 0x9, 0x2, 0x6]}, 0x0)
getsockopt$auto(r0, 0x0, 0x1df, &(0x7f00000000c0)='\x00', &(0x7f0000000100)=0x29e8)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'veth1_virt_wifi\x00'})

3.596143266s ago: executing program 3 (id=777):
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000340), 0x2000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
io_uring_setup$auto(0x6, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
close_range$auto(0x2, 0x8, 0x0)
socket(0x3, 0x3, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf2503000000080003178102"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0xc4494)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0)
write$auto(r1, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x630001, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x20000000)
socket(0x10, 0x2, 0xc)
socket(0x28, 0x1, 0x0)
connect$auto(0x3, &(0x7f0000000180)=@generic={0x28, "606f30396a0000f00000000200"}, 0x54)
setsockopt$auto(0x400000000000003, 0x28, 0x0, 0x0, 0x56b)

3.548577682s ago: executing program 0 (id=778):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_genetlink_get_family_id$auto_net_shaper(0x0, 0xffffffffffffffff)
sendmsg$auto_NET_SHAPER_CMD_GROUP(0xffffffffffffffff, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2004c804}, 0x14)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f0, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
timerfd_create$auto(0x9, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000040)=""/49, 0x31)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
readv$auto(r1, &(0x7f00000001c0)={&(0x7f0000000100)="6044bb67f5459d8e4e1e504b25452ef3e83b0b52c8f49e50044485180830a1ed51282827b917476d5ad380335434bdb1c564508879b5e5d57f2e26b641f809355a93e70dbfaf2f0b63d20cbc16247dc38b5b9a471f4ae0e2e7ba7d1b81eb247c8f12d9dc892059ba5533480195d2cf6ae62b01db81c6a987ae4049f3c8a3792bfa2ffd7fe02e4488d3f8cb44073a7975173dbeb67b1bbc", 0x4}, 0x3)
ioctl$auto_SIOCGIFHWADDR2(0xffffffffffffffff, 0x8927, 0x0)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000500)='/dev/bus/usb/023/001\x00', 0x201, 0x0)
ioctl$auto_USBDEVFS_DISCONNECT_CLAIM(r3, 0x8108551b, &(0x7f0000000540)={0x0, 0x6, "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"})
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x27111}, 0x8)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x2, 0x9, 0x2, 0x6]}, 0x0)
getsockopt$auto(r0, 0x0, 0x1df, &(0x7f00000000c0)='\x00', &(0x7f0000000100)=0x29e8)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'veth1_virt_wifi\x00'})

1.851056089s ago: executing program 3 (id=779):
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x82201, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000080)={0x2, 0x0, [{0xc0000080, 0x400, 0x9}]})
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x10, 0x2, 0xc) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x82201, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0xae41, r1) (async)
ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000080)={0x2, 0x0, [{0xc0000080, 0x400, 0x9}]}) (async)

1.685854368s ago: executing program 2 (id=780):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x101502, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="1f91f2c3881f4610e18d5fc5e5bfd9800e9b", 0x12)

1.267346916s ago: executing program 3 (id=781):
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x100, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_CHANNEL_INFO2(r0, 0x80184132, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/security/tomoyo/manager\x00', 0x200, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r3 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/pcmC1D0p\x00', 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0)
read$auto_gpiolib_fops_(r2, &(0x7f0000000240)=""/66, 0x42)
ioctl$auto_BLKRRPART(r4, 0x125f, 0x700000000000000)
msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004)
open(0x0, 0xeee00, 0x31)
mmap$auto(0x1, 0x2020006, 0x3, 0xeb1, r3, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000340)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cec23\x00', 0x4700, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
socket(0x1, 0x1, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0xae41, 0x38)
ioctl$auto(0x3, 0x4020aea5, 0x38)

1.253161803s ago: executing program 2 (id=782):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/rawdata_compression_level\x00', 0x80, 0x0)
read$auto(r0, 0x0, 0x4)
sendmsg$auto_NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)=ANY=[@ANYBLOB, @ANYRES16], 0x20}, 0x1, 0x0, 0x0, 0x24008010}, 0x51)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x9, 0x3, 0x16, 0x93f, 0x1ffe0, 0x3, 0x6, 0x2, 0x0, 0x5, 0xfff, 0xf, 0xb0, 0x1, 0x5, 0x7, 0x9, 0x7, 0x0, 0x0, 0x7, 0x200, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x100003043, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x200000000000, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x11, 0x8000000000000001]}, 0x1fe, 0x10081)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa503}, 0x800}, 0x7, 0x4008)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0)
write$auto(r2, &(0x7f0000000040)='\xce*+#\x00', 0x80)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.7/usb8/bConfigurationValue\x00', 0x10b042, 0x0)
sendfile$auto(r3, r3, 0x0, 0x2)
r4 = socket(0x1d, 0x2, 0x6)
setsockopt$auto(r4, 0x6a, 0x3, 0x0, 0x4)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
r5 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f00000000c0), r1)
sendmsg$auto_KSMBD_EVENT_TREE_CONNECT_RESPONSE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000003c0)={&(0x7f0000000140)={0x14, r5, 0x300, 0x70bd29, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000091}, 0x20000001)
r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000200), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r7, &(0x7f0000003bc0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000003c00)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="0585ffc38969d65a06c0f60026bd7000fddbdf250500"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
mmap$auto(0x0, 0x40009, 0xde, 0x9b72, 0x7, 0x28000)
capset$auto(0x0, 0x0)

998.207789ms ago: executing program 1 (id=783):
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
io_uring_setup$auto(0x3, 0x0)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x0, @rand_addr=0x2}, 0x52)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), r0)
r1 = socket(0x2, 0x2, 0x0)
r2 = getsockopt$auto(r1, 0x0, 0x1, 0xfffffffffffffffc, 0x0)
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x900, 0x0)
mmap$auto(0x0, 0x580f, 0x1, 0x8000000008011, 0x3, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
write$auto(0x1, 0x0, 0x80000000) (fail_nth: 17)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000abd9)
munmap$auto(0x8000, 0xffffffff)
shutdown$auto(0x200000003, 0x2)

523.647346ms ago: executing program 0 (id=784):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/reboot/mode\x00', 0x1e2142, 0x0)
r0 = socket(0x2, 0x80002, 0x73)
getpeername$auto(r0, 0x0, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x1000, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/ati_remote2/parameters/channel_mask\x00', 0x1e1842, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000680)='/dev/v4l-subdev5\x00', 0x20281, 0x0)
ioctl$auto(r3, 0x5646, 0xffffffffffffffff)
ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSCOMPRESS(r2, 0x4010744d, &(0x7f00000001c0)={&(0x7f00000000c0)='\x8e\x04\x8f~\xa7 \xcf\x1fg7\n\xd8\xbd\xd3&\xa7\xa6_\xaa\xe2;\xb5\x82\x9dA\x8f|\xf3\xd7\xc6X\xdf\xdaC\x9aoqM2\x10\xb1\xd1\xbd\xca0\x9f\xe7\x00\x00\x00\x00\x00\x00\x00\x00T\r\xbfZO\x7f\xbd\x91\xf2\xbd\xc6.\xa2*\xdb\xd7\f\xebM\xba\x15P\as\x82\x17\xa3\xf5\xf6\xcd\x19P&\x88*\xf9\xdd\xc3t[`\xf3h\xc0\"\xd2\xa5\x81\xd6l\xc2k|\rX]XP\xfe\xc9\xe3\xea\xa4P\x95!3\xce\x9f\x9f<\x1eI\xfd\x80\x1c\xf9~\x06\x1b{K\x04\x85\xfa\x14\xbf\t\xc0\xced?j\xb2\xf1~T\xb2i\n\x15\x0e\xf7G9\'}^B=\xfc\x11\xfa\x0f\x0fd4^`\xc2\xb0\xaf\\\x1duPu\x02\xce:`c\xb0\xd0\xde\x13\xb4\xe0\xfcn\x98%\x1d\xff(\xa3\x10d\x89', 0x8, 0x80})
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv6/conf/sit0/regen_max_retry\x00', 0x800, 0x0)
read$auto(r4, 0x0, 0x1ff)
r5 = socket(0x8, 0x2, 0xb)
r6 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETPOLICY(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="10002cbd7000fadbdf250a00000a06000100060000000312d583a95bc933399d21c99ea1c75a90e60b662d5e9668e9bdec452a25f728fb2d8b23dd6553c4ad7b6968b96dbc21c8d6475cc59cf6006e2d979d7b4b613b7e3f0eed945510d9050f394dfc8053e13d4b8b54580caf51a7a3a14e98c6a4c71bc14223f0a3a509c81f750acf7eaef047c574472ec58c70cb307dcd1831f9031a413a6fff1919ff0e7aee7a9dbc93c61c7e69d3e8871db4e8a08cb000d9fe002af52dec4886b1c48a889c6d6fcb10865d497d4e47677f0319ca8ae676e37411f274ecf2ac76e97fb42b1b4ba0d0fe78e9fcfd5a5f206d7c6169d29af0ffb6484d73fa0c30e17976cfed4c0ba1698fab"], 0x1c}, 0x1, 0x0, 0x0, 0x24050803}, 0x10004010)
write$auto(0x3, 0x0, 0xfdef)
socket(0x2, 0x1, 0xfffffffd)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
listen$auto(0x3, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x62c00, 0x0)

164.880528ms ago: executing program 2 (id=785):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x6, 0xdf, 0xeb1, r0, 0x8000)
mmap$auto(0x0, 0x20000b, 0x2, 0x40eb3, 0xffffffffffffffff, 0x14f)
r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_ADAP_G_LOG_ADDRS(r1, 0x805c6103, &(0x7f00000001c0)={"8911bd3a", 0x1, 0x0, 0x6, 0x4, 0x6, "feaf587cdf4d2f534a1c88d3e40a00", "e6cf6512", "f34cae3a", "10a991b3", ["3ae887a128f1d8c79420d880", "b11feafce4d296d8c985d069", "00ebffffffffffffff00", "0059c09dca7de9bdbbc6be07"]})
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/midiC2D2\x00', 0x30100, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f0, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000)
mmap$auto(0x3, 0x40009, 0x5, 0x9b72, 0x7, 0x28000)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r4, 0x4018aee1, 0x0)
rename$auto(0x0, &(0x7f0000000240)='./file0/file0\x00')
ioctl$auto_XFS_IOC_FSBULKSTAT(r3, 0xc0205865, &(0x7f00000002c0)={&(0x7f0000000040)=0x1, 0x10001, 0x0, &(0x7f0000000280)=0x2})

0s ago: executing program 1 (id=786):
unshare$auto(0x200)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f00000000c0)={0x0, 0x92, 0x1a}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x5, 0x20009, 0x6, 0x10, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/asound/card1/pcm1p/sub3/hw_params\x00', 0x1900, 0x0)
pread64$auto(r1, 0x0, 0xe, 0x100000000007)
read$auto(r0, 0x0, 0xe8) (async)
read$auto(r0, 0x0, 0xe8)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0322, 0x0) (async)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0322, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ram7\x00', 0xc0440, 0x0)
ioctl$auto_BLKTRACESETUP(r3, 0xc0481273, &(0x7f00000000c0)={"2252f65ca1b92f72a92538725b0694521629e8c3e6ba91c62e2e9d42cf4aef15", 0x4, 0x3, 0x8000, 0x6, 0xff}) (async)
ioctl$auto_BLKTRACESETUP(r3, 0xc0481273, &(0x7f00000000c0)={"2252f65ca1b92f72a92538725b0694521629e8c3e6ba91c62e2e9d42cf4aef15", 0x4, 0x3, 0x8000, 0x6, 0xff})
read$auto_mousedev_fops_mousedev(0xffffffffffffffff, &(0x7f0000000340)=""/167, 0xa7)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x801, 0x84)
migrate_pages$auto(0x0, 0x99, 0x0, &(0x7f00000001c0)=0x7b)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x480502, 0x0) (async)
r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x480502, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/mtrr\x00', 0x8f3b7a51b80ebd01, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r4, 0xc0045002, &(0x7f00000000c0))
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
io_uring_setup$auto(0x7ff, &(0x7f0000000080)={0x7efffffc, 0x8, 0x3002, 0x7, 0x7, 0x4006, 0xffffffffffffffff, [0x0, 0x0, 0x4000000], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x69cb, 0x6, 0x3}, {0x5, 0x8001, 0x2052, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
r5 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x60100, 0x0)
read$auto_vhci_fops_hci_vhci(r5, &(0x7f0000000040)=""/15, 0xf) (async)
read$auto_vhci_fops_hci_vhci(r5, &(0x7f0000000040)=""/15, 0xf)
mmap$auto(0x1, 0x20006, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0xc)
unshare$auto(0x40000080)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x9)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video42\x00', 0x10001, 0x0)

kernel console output (not intermixed with test programs):

epare_alloc_pages+0x3c2/0x610
[  139.482384][ T6520]  ? rcu_is_watching+0x12/0xc0
[  139.482411][ T6520]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  139.482449][ T6520]  ? __lock_acquire+0xb8a/0x1c90
[  139.482498][ T6520]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  139.482533][ T6520]  ? do_raw_spin_lock+0x12c/0x2b0
[  139.482574][ T6520]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  139.482609][ T6520]  ? find_held_lock+0x2b/0x80
[  139.482644][ T6520]  ? __lock_acquire+0xb8a/0x1c90
[  139.482673][ T6520]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  139.482709][ T6520]  ? policy_nodemask+0xea/0x4e0
[  139.482749][ T6520]  alloc_pages_mpol+0x1fb/0x550
[  139.482774][ T6520]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  139.482808][ T6520]  folio_alloc_mpol_noprof+0x36/0x2f0
[  139.482838][ T6520]  shmem_alloc_folio+0x135/0x160
[  139.482869][ T6520]  shmem_alloc_and_add_folio+0x499/0xc20
[  139.482911][ T6520]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  139.482948][ T6520]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  139.482988][ T6520]  shmem_get_folio_gfp+0x67f/0x1600
[  139.483029][ T6520]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  139.483066][ T6520]  ? filemap_map_pages+0xf6f/0x1680
[  139.483105][ T6520]  shmem_fault+0x1fe/0xa30
[  139.483140][ T6520]  ? __pfx_shmem_fault+0x10/0x10
[  139.483180][ T6520]  ? __pfx_filemap_map_pages+0x10/0x10
[  139.483228][ T6520]  __do_fault+0x10a/0x490
[  139.483262][ T6520]  __handle_mm_fault+0x3c2a/0x5490
[  139.483300][ T6520]  ? __pfx___handle_mm_fault+0x10/0x10
[  139.483327][ T6520]  ? __pfx_mt_find+0x10/0x10
[  139.483371][ T6520]  ? find_vma+0xbf/0x140
[  139.483394][ T6520]  ? __pfx_find_vma+0x10/0x10
[  139.483422][ T6520]  handle_mm_fault+0x589/0xd10
[  139.483453][ T6520]  ? __pkru_allows_pkey+0x41/0xb0
[  139.483487][ T6520]  do_user_addr_fault+0x7a6/0x1370
[  139.483522][ T6520]  ? rcu_is_watching+0x12/0xc0
[  139.483558][ T6520]  exc_page_fault+0x5c/0xb0
[  139.483592][ T6520]  asm_exc_page_fault+0x26/0x30
[  139.483615][ T6520] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  139.483644][ T6520] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  139.483666][ T6520] RSP: 0018:ffffc9000c0a7b78 EFLAGS: 00050206
[  139.483685][ T6520] RAX: 0000000000000001 RBX: 0000000000010000 RCX: 0000000000003000
[  139.483700][ T6520] RDX: 0000000000000000 RSI: 000000000000d000 RDI: ffff88805c4fd000
[  139.483714][ T6520] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100b89ffff
[  139.483729][ T6520] R10: ffff88805c4fffff R11: 0000000000000000 R12: ffffc9000c0a7da0
[  139.483743][ T6520] R13: 0000000000010000 R14: ffff88805c4f0000 R15: 00007ffffffff000
[  139.483780][ T6520]  _copy_from_iter+0x383/0x16f0
[  139.483822][ T6520]  ? rcu_is_watching+0x12/0xc0
[  139.483846][ T6520]  ? __pfx__copy_from_iter+0x10/0x10
[  139.483878][ T6520]  ? rcu_is_watching+0x12/0xc0
[  139.483903][ T6520]  ? rcu_is_watching+0x12/0xc0
[  139.483927][ T6520]  ? kfree+0x24f/0x4d0
[  139.483952][ T6520]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[  139.483998][ T6520]  file_tty_write.constprop.0+0x488/0x9b0
[  139.484045][ T6520]  vfs_write+0x6c4/0x1150
[  139.484079][ T6520]  ? __pfx_tty_write+0x10/0x10
[  139.484117][ T6520]  ? __pfx_vfs_write+0x10/0x10
[  139.484146][ T6520]  ? find_held_lock+0x2b/0x80
[  139.484194][ T6520]  ksys_write+0x12a/0x250
[  139.484226][ T6520]  ? __pfx_ksys_write+0x10/0x10
[  139.484269][ T6520]  do_syscall_64+0xcd/0x490
[  139.484306][ T6520]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.484329][ T6520] RIP: 0033:0x7fe01398e929
[  139.484348][ T6520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.484369][ T6520] RSP: 002b:00007fe01484a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  139.484391][ T6520] RAX: ffffffffffffffda RBX: 00007fe013bb5fa0 RCX: 00007fe01398e929
[  139.484406][ T6520] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  139.484421][ T6520] RBP: 00007fe01484a090 R08: 0000000000000000 R09: 0000000000000000
[  139.484435][ T6520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  139.484449][ T6520] R13: 0000000000000000 R14: 00007fe013bb5fa0 R15: 00007ffd64992ca8
[  139.484483][ T6520]  </TASK>
[  140.763975][ T6525] netlink: 28 bytes leftover after parsing attributes in process `syz.1.136'.
[  142.845927][ T6551] can: request_module (can-proto-0) failed.
[  143.177856][ T6561] mmap: syz.2.143 (6561) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  143.735765][ T6563] Setting dangerous option i915.mitigations - tainting kernel
[  144.088510][ T6572] vhci_hcd: invalid port number 16
[  144.093852][ T6572] vhci_hcd: invalid port number 16
[  144.407297][ T6570] FAULT_INJECTION: forcing a failure.
[  144.407297][ T6570] name fail_futex, interval 1, probability 0, space 0, times 1
[  144.430711][ T6570] CPU: 0 UID: 0 PID: 6570 Comm: syz.0.148 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  144.430754][ T6570] Tainted: [U]=USER
[  144.430763][ T6570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  144.430777][ T6570] Call Trace:
[  144.430785][ T6570]  <TASK>
[  144.430796][ T6570]  dump_stack_lvl+0x16c/0x1f0
[  144.430838][ T6570]  should_fail_ex+0x512/0x640
[  144.430886][ T6570]  get_futex_key+0x1d0/0x1540
[  144.430922][ T6570]  ? __pfx_get_futex_key+0x10/0x10
[  144.430963][ T6570]  futex_wake+0xea/0x530
[  144.431000][ T6570]  ? rcu_is_watching+0x12/0xc0
[  144.431026][ T6570]  ? __pfx_futex_wake+0x10/0x10
[  144.431064][ T6570]  ? kmem_cache_free+0x2d1/0x4d0
[  144.431096][ T6570]  ? fd_install+0x225/0x750
[  144.431125][ T6570]  ? putname+0x154/0x1a0
[  144.431156][ T6570]  do_futex+0x1e3/0x350
[  144.431186][ T6570]  ? __pfx_do_futex+0x10/0x10
[  144.431226][ T6570]  __x64_sys_futex+0x1e0/0x4c0
[  144.431255][ T6570]  ? __x64_sys_openat+0x174/0x210
[  144.431278][ T6570]  ? __pfx___x64_sys_futex+0x10/0x10
[  144.431302][ T6570]  do_syscall_64+0xcd/0x490
[  144.431324][ T6570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.431338][ T6570] RIP: 0033:0x7fba66f8e929
[  144.431350][ T6570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.431363][ T6570] RSP: 002b:00007fba67de40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  144.431377][ T6570] RAX: ffffffffffffffda RBX: 00007fba671b5fa8 RCX: 00007fba66f8e929
[  144.431386][ T6570] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fba671b5fac
[  144.431394][ T6570] RBP: 00007fba671b5fa0 R08: 00007fba67de5000 R09: 0000000000000000
[  144.431403][ T6570] R10: 000000000000000a R11: 0000000000000246 R12: 00007fba671b5fac
[  144.431411][ T6570] R13: 0000000000000000 R14: 00007fff108c4c50 R15: 00007fff108c4d38
[  144.431428][ T6570]  </TASK>
[  146.979450][ T6598] can: request_module (can-proto-0) failed.
[  147.356745][ T6608] FAULT_INJECTION: forcing a failure.
[  147.356745][ T6608] name failslab, interval 1, probability 0, space 0, times 0
[  147.409055][ T6608] CPU: 1 UID: 0 PID: 6608 Comm: syz.3.154 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  147.409098][ T6608] Tainted: [U]=USER
[  147.409106][ T6608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  147.409121][ T6608] Call Trace:
[  147.409130][ T6608]  <TASK>
[  147.409140][ T6608]  dump_stack_lvl+0x16c/0x1f0
[  147.409184][ T6608]  should_fail_ex+0x512/0x640
[  147.409218][ T6608]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  147.409270][ T6608]  should_failslab+0xc2/0x120
[  147.409295][ T6608]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  147.409337][ T6608]  ? __kthread_create_on_node+0x186/0x3f0
[  147.409375][ T6608]  kvasprintf+0xbc/0x160
[  147.409398][ T6608]  ? __pfx_kvasprintf+0x10/0x10
[  147.409437][ T6608]  ? __pfx_worker_thread+0x10/0x10
[  147.409472][ T6608]  __kthread_create_on_node+0x186/0x3f0
[  147.409507][ T6608]  ? __pfx___kthread_create_on_node+0x10/0x10
[  147.409559][ T6608]  ? __pfx_worker_thread+0x10/0x10
[  147.409604][ T6608]  kthread_create_on_node+0xc7/0x100
[  147.409637][ T6608]  ? __pfx_kthread_create_on_node+0x10/0x10
[  147.409693][ T6608]  create_worker+0x416/0x7e0
[  147.409729][ T6608]  ? __pfx_create_worker+0x10/0x10
[  147.409761][ T6608]  ? idr_alloc+0xdd/0x130
[  147.409812][ T6608]  alloc_unbound_pwq+0xb94/0xe10
[  147.409842][ T6608]  ? kasan_save_track+0x14/0x30
[  147.409882][ T6608]  apply_wqattrs_prepare+0x3af/0xbd0
[  147.409924][ T6608]  workqueue_apply_unbound_cpumask+0x17e/0x4f0
[  147.409957][ T6608]  ? __pfx_workqueue_apply_unbound_cpumask+0x10/0x10
[  147.409984][ T6608]  ? bitmap_parse+0x327/0x410
[  147.410019][ T6608]  cpumask_store+0x1ad/0x220
[  147.410045][ T6608]  ? __pfx_cpumask_store+0x10/0x10
[  147.410070][ T6608]  ? find_held_lock+0x2b/0x80
[  147.410100][ T6608]  ? sysfs_file_kobj+0xe4/0x290
[  147.410133][ T6608]  ? __pfx_cpumask_store+0x10/0x10
[  147.410157][ T6608]  dev_attr_store+0x55/0x80
[  147.410181][ T6608]  ? __pfx_dev_attr_store+0x10/0x10
[  147.410202][ T6608]  sysfs_kf_write+0xf2/0x150
[  147.410229][ T6608]  kernfs_fop_write_iter+0x351/0x510
[  147.410254][ T6608]  ? __pfx_sysfs_kf_write+0x10/0x10
[  147.410288][ T6608]  vfs_write+0x6c4/0x1150
[  147.410324][ T6608]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  147.410354][ T6608]  ? __pfx___mutex_lock+0x10/0x10
[  147.410391][ T6608]  ? __pfx_vfs_write+0x10/0x10
[  147.410453][ T6608]  ksys_write+0x12a/0x250
[  147.410487][ T6608]  ? __pfx_ksys_write+0x10/0x10
[  147.410533][ T6608]  do_syscall_64+0xcd/0x490
[  147.410574][ T6608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.410607][ T6608] RIP: 0033:0x7f9f5cf8e929
[  147.410629][ T6608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.410653][ T6608] RSP: 002b:00007f9f5de3b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  147.410678][ T6608] RAX: ffffffffffffffda RBX: 00007f9f5d1b6080 RCX: 00007f9f5cf8e929
[  147.410695][ T6608] RDX: 0000000000000005 RSI: 0000200000000180 RDI: 0000000000000004
[  147.410711][ T6608] RBP: 00007f9f5d010b39 R08: 0000000000000000 R09: 0000000000000000
[  147.410727][ T6608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  147.410742][ T6608] R13: 0000000000000000 R14: 00007f9f5d1b6080 R15: 00007ffc73082c38
[  147.410779][ T6608]  </TASK>
[  147.745875][ T6608] workqueue: Failed to create a worker thread: -ENOMEM
[  150.621075][ T6658] Scaler: =================  START STATUS  =================
[  150.635610][ T6658] Scaler: ==================  END STATUS  ==================
[  151.058919][ T6632] kexec: Could not allocate control_code_buffer
[  153.351559][ T6685] vhci_hcd: invalid port number 16
[  153.389657][ T6685] vhci_hcd: invalid port number 16
[  153.697617][ T6685] FAULT_INJECTION: forcing a failure.
[  153.697617][ T6685] name failslab, interval 1, probability 0, space 0, times 0
[  153.855717][ T6685] CPU: 1 UID: 0 PID: 6685 Comm: syz.2.163 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  153.855755][ T6685] Tainted: [U]=USER
[  153.855764][ T6685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  153.855776][ T6685] Call Trace:
[  153.855784][ T6685]  <TASK>
[  153.855795][ T6685]  dump_stack_lvl+0x16c/0x1f0
[  153.855839][ T6685]  should_fail_ex+0x512/0x640
[  153.855873][ T6685]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  153.855964][ T6685]  should_failslab+0xc2/0x120
[  153.855993][ T6685]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  153.856028][ T6685]  ? seq_open+0x55/0x170
[  153.856055][ T6685]  ? __pfx_tracing_trace_options_show+0x10/0x10
[  153.856091][ T6685]  seq_open+0x55/0x170
[  153.856113][ T6685]  ? __pfx_tracing_trace_options_show+0x10/0x10
[  153.856149][ T6685]  single_open+0xfc/0x1f0
[  153.856174][ T6685]  tracing_trace_options_open+0xa7/0x100
[  153.856206][ T6685]  do_dentry_open+0x744/0x1c10
[  153.856240][ T6685]  ? __pfx_tracing_trace_options_open+0x10/0x10
[  153.856279][ T6685]  vfs_open+0x82/0x3f0
[  153.856308][ T6685]  path_openat+0x1de4/0x2cb0
[  153.856349][ T6685]  ? __pfx_path_openat+0x10/0x10
[  153.856384][ T6685]  ? __lock_acquire+0xb8a/0x1c90
[  153.856421][ T6685]  do_filp_open+0x20b/0x470
[  153.856453][ T6685]  ? __pfx_do_filp_open+0x10/0x10
[  153.856508][ T6685]  ? alloc_fd+0x471/0x7d0
[  153.856548][ T6685]  do_sys_openat2+0x11b/0x1d0
[  153.856574][ T6685]  ? __pfx_do_sys_openat2+0x10/0x10
[  153.856615][ T6685]  __x64_sys_openat+0x174/0x210
[  153.856643][ T6685]  ? __pfx___x64_sys_openat+0x10/0x10
[  153.856685][ T6685]  do_syscall_64+0xcd/0x490
[  153.856722][ T6685]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.856748][ T6685] RIP: 0033:0x7fe01398e929
[  153.856768][ T6685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.856790][ T6685] RSP: 002b:00007fe01484a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  153.856813][ T6685] RAX: ffffffffffffffda RBX: 00007fe013bb5fa0 RCX: 00007fe01398e929
[  153.856828][ T6685] RDX: 0000000000008501 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  153.856843][ T6685] RBP: 00007fe013a10b39 R08: 0000000000000000 R09: 0000000000000000
[  153.856858][ T6685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  153.856872][ T6685] R13: 0000000000000000 R14: 00007fe013bb5fa0 R15: 00007ffd64992ca8
[  153.857038][ T6685]  </TASK>
[  154.099742][    C1] vkms_vblank_simulate: vblank timer overrun
[  154.604016][ T6701] Setting dangerous option i915.mitigations - tainting kernel
[  154.654148][ T6698] netlink: 24 bytes leftover after parsing attributes in process `syz.0.165'.
[  155.827009][ T6728] netlink: 206 bytes leftover after parsing attributes in process `syz.1.172'.
[  155.842877][ T6728] FAULT_INJECTION: forcing a failure.
[  155.842877][ T6728] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  155.877337][ T6728] CPU: 1 UID: 0 PID: 6728 Comm: syz.1.172 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  155.877374][ T6728] Tainted: [U]=USER
[  155.877381][ T6728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.877393][ T6728] Call Trace:
[  155.877401][ T6728]  <TASK>
[  155.877410][ T6728]  dump_stack_lvl+0x16c/0x1f0
[  155.877449][ T6728]  should_fail_ex+0x512/0x640
[  155.877487][ T6728]  _copy_from_user+0x2e/0xd0
[  155.877523][ T6728]  copy_msghdr_from_user+0x98/0x160
[  155.877559][ T6728]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  155.877596][ T6728]  ? kfree+0x24f/0x4d0
[  155.877622][ T6728]  ? __pfx__kstrtoull+0x10/0x10
[  155.877656][ T6728]  ___sys_sendmsg+0xfe/0x1d0
[  155.877691][ T6728]  ? __pfx____sys_sendmsg+0x10/0x10
[  155.877756][ T6728]  ? __pfx___might_resched+0x10/0x10
[  155.877788][ T6728]  __sys_sendmmsg+0x200/0x420
[  155.877827][ T6728]  ? __pfx___sys_sendmmsg+0x10/0x10
[  155.877872][ T6728]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  155.877922][ T6728]  ? fput+0x70/0xf0
[  155.877944][ T6728]  ? ksys_write+0x1ac/0x250
[  155.877978][ T6728]  ? __pfx_ksys_write+0x10/0x10
[  155.878013][ T6728]  __x64_sys_sendmmsg+0x9c/0x100
[  155.878044][ T6728]  ? lockdep_hardirqs_on+0x7c/0x110
[  155.878073][ T6728]  do_syscall_64+0xcd/0x490
[  155.878110][ T6728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.878134][ T6728] RIP: 0033:0x7fa2a6d8e929
[  155.878153][ T6728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.878174][ T6728] RSP: 002b:00007fa2a7c31038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  155.878195][ T6728] RAX: ffffffffffffffda RBX: 00007fa2a6fb5fa0 RCX: 00007fa2a6d8e929
[  155.878211][ T6728] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000003
[  155.878225][ T6728] RBP: 00007fa2a7c31090 R08: 0000000000000000 R09: 0000000000000000
[  155.878239][ T6728] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000002
[  155.878253][ T6728] R13: 0000000000000000 R14: 00007fa2a6fb5fa0 R15: 00007ffd3da7df88
[  155.878285][ T6728]  </TASK>
[  156.089678][    C1] vkms_vblank_simulate: vblank timer overrun
[  158.014925][ T6756] vhci_hcd: invalid port number 16
[  158.065372][ T6756] vhci_hcd: invalid port number 16
[  158.073138][ T6747] serio: Serial port pty238
[  158.280558][ T6756] FAULT_INJECTION: forcing a failure.
[  158.280558][ T6756] name failslab, interval 1, probability 0, space 0, times 0
[  158.375978][ T6756] CPU: 1 UID: 0 PID: 6756 Comm: syz.2.176 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  158.376021][ T6756] Tainted: [U]=USER
[  158.376029][ T6756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  158.376042][ T6756] Call Trace:
[  158.376049][ T6756]  <TASK>
[  158.376058][ T6756]  dump_stack_lvl+0x16c/0x1f0
[  158.376102][ T6756]  should_fail_ex+0x512/0x640
[  158.376138][ T6756]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  158.376179][ T6756]  should_failslab+0xc2/0x120
[  158.376205][ T6756]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  158.376244][ T6756]  ? seq_open+0x55/0x170
[  158.376274][ T6756]  ? __pfx_tracing_trace_options_show+0x10/0x10
[  158.376313][ T6756]  seq_open+0x55/0x170
[  158.376337][ T6756]  ? __pfx_tracing_trace_options_show+0x10/0x10
[  158.376377][ T6756]  single_open+0xfc/0x1f0
[  158.376404][ T6756]  tracing_trace_options_open+0xa7/0x100
[  158.376443][ T6756]  do_dentry_open+0x744/0x1c10
[  158.376478][ T6756]  ? __pfx_tracing_trace_options_open+0x10/0x10
[  158.376521][ T6756]  vfs_open+0x82/0x3f0
[  158.376552][ T6756]  path_openat+0x1de4/0x2cb0
[  158.376598][ T6756]  ? __pfx_path_openat+0x10/0x10
[  158.376636][ T6756]  ? __lock_acquire+0xb8a/0x1c90
[  158.376673][ T6756]  do_filp_open+0x20b/0x470
[  158.376708][ T6756]  ? __pfx_do_filp_open+0x10/0x10
[  158.376779][ T6756]  ? alloc_fd+0x471/0x7d0
[  158.376823][ T6756]  do_sys_openat2+0x11b/0x1d0
[  158.376851][ T6756]  ? __pfx_do_sys_openat2+0x10/0x10
[  158.376894][ T6756]  __x64_sys_openat+0x174/0x210
[  158.376922][ T6756]  ? __pfx___x64_sys_openat+0x10/0x10
[  158.376964][ T6756]  do_syscall_64+0xcd/0x490
[  158.377005][ T6756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.377031][ T6756] RIP: 0033:0x7fe01398e929
[  158.377052][ T6756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.377076][ T6756] RSP: 002b:00007fe01484a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  158.377100][ T6756] RAX: ffffffffffffffda RBX: 00007fe013bb5fa0 RCX: 00007fe01398e929
[  158.377118][ T6756] RDX: 0000000000008501 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  158.377134][ T6756] RBP: 00007fe013a10b39 R08: 0000000000000000 R09: 0000000000000000
[  158.377149][ T6756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  158.377164][ T6756] R13: 0000000000000000 R14: 00007fe013bb5fa0 R15: 00007ffd64992ca8
[  158.377199][ T6756]  </TASK>
[  159.189963][ T6778] netlink: 28 bytes leftover after parsing attributes in process `syz.2.178'.
[  160.079716][ T6787] Scaler: =================  START STATUS  =================
[  160.096923][ T6787] Scaler: ==================  END STATUS  ==================
[  161.380190][ T6799] program syz.1.181 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  161.456665][ T6799] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  162.417949][   T30] audit: type=1800 audit(6046260343.779:5): pid=6806 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.183" name="dbroot" dev="configfs" ino=10162 res=0 errno=0
[  163.191125][ T6826] Scaler: =================  START STATUS  =================
[  163.258333][ T6826] Scaler: ==================  END STATUS  ==================
[  164.492005][ T6840] Scaler: =================  START STATUS  =================
[  164.524079][ T6840] Scaler: ==================  END STATUS  ==================
[  165.247110][ T6850] netlink: 24 bytes leftover after parsing attributes in process `syz.3.192'.
[  165.259878][   T30] audit: type=1800 audit(6046260346.608:6): pid=6843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.190" name="dbroot" dev="configfs" ino=10239 res=0 errno=0
[  166.017670][ T6865] program syz.0.194 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  166.052326][ T6865] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  166.446047][ T6872] snd_aloop snd_aloop.0: control 1:262152:7:ª¸è:11 is already present
[  167.187046][ T6890] Scaler: =================  START STATUS  =================
[  167.203017][ T6890] Scaler: ==================  END STATUS  ==================
[  167.596210][   T30] audit: type=1800 audit(6046260348.957:7): pid=6889 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.199" name="dbroot" dev="configfs" ino=11345 res=0 errno=0
[  167.932345][ T6903] vhci_hcd: invalid port number 16
[  168.048621][ T6903] vhci_hcd: invalid port number 16
[  168.651890][ T6917] vhci_hcd: invalid port number 16
[  168.661066][ T6917] vhci_hcd: invalid port number 16
[  168.829948][   T30] audit: type=1804 audit(6046260350.186:8): pid=6913 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.205" name="/newroot/52/file0" dev="tmpfs" ino=297 res=1 errno=0
[  168.848102][ T6908] syz.1.203 (6908): attempted to duplicate a private mapping with mremap.  This is not supported.
[  168.888462][ T6912] can: request_module (can-proto-0) failed.
[  169.284221][ T6928] vhci_hcd: invalid port number 16
[  169.315888][ T6928] vhci_hcd: invalid port number 16
[  170.810829][ T6961] vhci_hcd: invalid port number 16
[  170.848530][ T6961] vhci_hcd: invalid port number 16
[  172.293800][ T6973] can: request_module (can-proto-0) failed.
[  172.734626][   T30] audit: type=1800 audit(6046261377.099:9): pid=6981 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.221" name="dbroot" dev="configfs" ino=12403 res=0 errno=0
[  172.894457][ T6989] ima: policy update failed
[  172.903523][   T30] audit: type=1802 audit(6046261377.269:10): pid=6989 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.223" res=0 errno=0
[  172.994173][ T6985] netlink: 198 bytes leftover after parsing attributes in process `syz.0.222'.
[  173.248469][ T6997] vhci_hcd: invalid port number 16
[  173.264464][ T6997] vhci_hcd: invalid port number 16
[  174.548066][ T7016] can: request_module (can-proto-0) failed.
[  175.716631][ T7043] serio: Serial port pty238
[  177.922119][ T7087] serio: Serial port pty238
[  177.934266][   T30] audit: type=1807 audit(6046265474.289:11): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0
[  177.958844][   T30] audit: type=1802 audit(6046265474.309:12): pid=7090 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.251" res=0 errno=0
[  178.609555][ T7100] serio: Serial port pty238
[  178.749346][ T7089] ima: policy update failed
[  178.852695][   T30] audit: type=1802 audit(6046265475.119:13): pid=7089 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.251" res=0 errno=0
[  180.146205][ T7123] netlink: 342 bytes leftover after parsing attributes in process `syz.3.261'.
[  180.518734][ T7130] can: request_module (can-proto-0) failed.
[  180.860177][ T7142] netlink: 13832 bytes leftover after parsing attributes in process `syz.3.264'.
[  181.509974][ T7153] vhci_hcd: invalid port number 16
[  181.515373][ T7153] vhci_hcd: invalid port number 16
[  181.601401][ T7153] FAULT_INJECTION: forcing a failure.
[  181.601401][ T7153] name fail_futex, interval 1, probability 0, space 0, times 0
[  181.636014][ T7153] CPU: 0 UID: 0 PID: 7153 Comm: syz.3.267 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  181.636057][ T7153] Tainted: [U]=USER
[  181.636066][ T7153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  181.636081][ T7153] Call Trace:
[  181.636090][ T7153]  <TASK>
[  181.636104][ T7153]  dump_stack_lvl+0x16c/0x1f0
[  181.636149][ T7153]  should_fail_ex+0x512/0x640
[  181.636189][ T7153]  get_futex_key+0x1d0/0x1540
[  181.636224][ T7153]  ? __pfx_get_futex_key+0x10/0x10
[  181.636255][ T7153]  ? __pfx___schedule+0x10/0x10
[  181.636296][ T7153]  futex_wait_setup+0x9d/0x550
[  181.636342][ T7153]  __futex_wait+0x194/0x2f0
[  181.636379][ T7153]  ? __pfx___futex_wait+0x10/0x10
[  181.636421][ T7153]  ? __pfx_futex_wake_mark+0x10/0x10
[  181.636481][ T7153]  futex_wait+0xe8/0x380
[  181.636523][ T7153]  ? __pfx_futex_wait+0x10/0x10
[  181.636567][ T7153]  ? kmem_cache_free+0x2d1/0x4d0
[  181.636602][ T7153]  ? fd_install+0x225/0x750
[  181.636632][ T7153]  ? putname+0x154/0x1a0
[  181.636662][ T7153]  do_futex+0x229/0x350
[  181.636693][ T7153]  ? __pfx_do_futex+0x10/0x10
[  181.636733][ T7153]  __x64_sys_futex+0x1e0/0x4c0
[  181.636766][ T7153]  ? __x64_sys_openat+0x174/0x210
[  181.636795][ T7153]  ? __pfx___x64_sys_futex+0x10/0x10
[  181.636825][ T7153]  ? xfd_validate_state+0x61/0x180
[  181.636870][ T7153]  do_syscall_64+0xcd/0x490
[  181.636911][ T7153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.636936][ T7153] RIP: 0033:0x7f9f5cf8e929
[  181.636957][ T7153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  181.636981][ T7153] RSP: 002b:00007f9f5de5c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  181.637005][ T7153] RAX: ffffffffffffffda RBX: 00007f9f5d1b5fa8 RCX: 00007f9f5cf8e929
[  181.637022][ T7153] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9f5d1b5fa8
[  181.637038][ T7153] RBP: 00007f9f5d1b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  181.637054][ T7153] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9f5d1b5fac
[  181.637069][ T7153] R13: 0000000000000000 R14: 00007ffc73082b50 R15: 00007ffc73082c38
[  181.637104][ T7153]  </TASK>

syzkaller
syzkaller login: [  182.322707][ T7171] serio: Serial port pty238
[  182.826117][ T7184] can: request_module (can-proto-0) failed.
[  183.842506][   T30] audit: type=1800 audit(6046269572.196:14): pid=7199 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.278" name="dbroot" dev="configfs" ino=12945 res=0 errno=0
[  184.168123][ T7204] netlink: 198 bytes leftover after parsing attributes in process `syz.3.280'.
[  184.519800][ T7207] uvcvideo: [Deprecated]: nodrop parameter will be eventually removed.
[  184.534260][ T7207] FAULT_INJECTION: forcing a failure.
[  184.534260][ T7207] name failslab, interval 1, probability 0, space 0, times 0
[  184.534298][ T7207] CPU: 0 UID: 0 PID: 7207 Comm: syz.2.281 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  184.534332][ T7207] Tainted: [U]=USER
[  184.534339][ T7207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  184.534352][ T7207] Call Trace:
[  184.534359][ T7207]  <TASK>
[  184.534368][ T7207]  dump_stack_lvl+0x16c/0x1f0
[  184.534407][ T7207]  should_fail_ex+0x512/0x640
[  184.534438][ T7207]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  184.534472][ T7207]  should_failslab+0xc2/0x120
[  184.534494][ T7207]  __kmalloc_cache_noprof+0x6a/0x3e0
[  184.534524][ T7207]  ? con_insert_unipair+0x151/0x270
[  184.534552][ T7207]  con_insert_unipair+0x151/0x270
[  184.534579][ T7207]  con_set_unimap+0x3e6/0x640
[  184.534613][ T7207]  vt_ioctl+0x1117/0x30a0
[  184.534637][ T7207]  ? lockdep_hardirqs_on+0x7c/0x110
[  184.534674][ T7207]  ? __pfx_vt_ioctl+0x10/0x10
[  184.534701][ T7207]  ? tomoyo_path_number_perm+0x295/0x580
[  184.534733][ T7207]  ? tomoyo_path_number_perm+0x18d/0x580
[  184.534762][ T7207]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  184.534788][ T7207]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  184.534824][ T7207]  ? do_vfs_ioctl+0x523/0x1a60
[  184.534848][ T7207]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  184.534883][ T7207]  ? tty_jobctrl_ioctl+0x152/0xe00
[  184.534913][ T7207]  ? __pfx_vt_ioctl+0x10/0x10
[  184.534937][ T7207]  tty_ioctl+0x65e/0x1640
[  184.534973][ T7207]  ? __pfx_tty_ioctl+0x10/0x10
[  184.535023][ T7207]  ? find_held_lock+0x2b/0x80
[  184.535046][ T7207]  ? hook_file_ioctl_common+0x145/0x410
[  184.535078][ T7207]  ? __fget_files+0x20e/0x3c0
[  184.535114][ T7207]  ? __pfx_tty_ioctl+0x10/0x10
[  184.535149][ T7207]  __x64_sys_ioctl+0x18b/0x210
[  184.535178][ T7207]  do_syscall_64+0xcd/0x490
[  184.535215][ T7207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.535238][ T7207] RIP: 0033:0x7fe01398e929
[  184.535258][ T7207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.535278][ T7207] RSP: 002b:00007fe01484a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  184.535300][ T7207] RAX: ffffffffffffffda RBX: 00007fe013bb5fa0 RCX: 00007fe01398e929
[  184.535315][ T7207] RDX: 0000000000000000 RSI: 0000000000004b67 RDI: 0000000000000006
[  184.535329][ T7207] RBP: 00007fe01484a090 R08: 0000000000000000 R09: 0000000000000000
[  184.535343][ T7207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  184.535356][ T7207] R13: 0000000000000000 R14: 00007fe013bb5fa0 R15: 00007ffd64992ca8
[  184.535389][ T7207]  </TASK>
[  184.890141][ T7215] Scaler: =================  START STATUS  =================
[  184.890154][ T7215] Scaler: ==================  END STATUS  ==================
[  186.430825][ T7236] can: request_module (can-proto-0) failed.
[  186.819887][ T7235] mkiss: ax0: crc mode is auto.
[  187.594795][ T7263] Scaler: =================  START STATUS  =================
[  187.631389][ T7263] Scaler: ==================  END STATUS  ==================
[  187.916093][ T7265] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  189.667376][ T7302] cifs: Unknown parameter 'no+ 1§• Ö`ÑørêsFn)ÈøaõH†šÄ�¿¡h`àØÝë9k¤A}€žŠ1\D@‹Ç.ÁäZÔCg^‚'
[  190.481760][ T7317] FAULT_INJECTION: forcing a failure.
[  190.481760][ T7317] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  190.530885][ T7294] mkiss: ax0: crc mode is auto.
[  190.575209][ T7317] CPU: 1 UID: 0 PID: 7317 Comm: syz.3.305 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  190.575245][ T7317] Tainted: [U]=USER
[  190.575253][ T7317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  190.575265][ T7317] Call Trace:
[  190.575272][ T7317]  <TASK>
[  190.575281][ T7317]  dump_stack_lvl+0x16c/0x1f0
[  190.575319][ T7317]  should_fail_ex+0x512/0x640
[  190.575356][ T7317]  _copy_from_user+0x2e/0xd0
[  190.575393][ T7317]  copy_msghdr_from_user+0x98/0x160
[  190.575427][ T7317]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  190.575468][ T7317]  ? kfree+0x24f/0x4d0
[  190.575495][ T7317]  ? __lock_acquire+0x622/0x1c90
[  190.575531][ T7317]  ___sys_recvmsg+0xdb/0x1a0
[  190.575565][ T7317]  ? __pfx____sys_recvmsg+0x10/0x10
[  190.575618][ T7317]  ? __pfx___might_resched+0x10/0x10
[  190.575649][ T7317]  do_recvmmsg+0x2fe/0x750
[  190.575687][ T7317]  ? __pfx_do_recvmmsg+0x10/0x10
[  190.575735][ T7317]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  190.575779][ T7317]  ? __fget_files+0x20e/0x3c0
[  190.575818][ T7317]  __x64_sys_recvmmsg+0x22a/0x280
[  190.575854][ T7317]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  190.575899][ T7317]  do_syscall_64+0xcd/0x490
[  190.575935][ T7317]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.575958][ T7317] RIP: 0033:0x7f9f5cf8e929
[  190.575978][ T7317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.576000][ T7317] RSP: 002b:00007f9f5de3b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  190.576022][ T7317] RAX: ffffffffffffffda RBX: 00007f9f5d1b6080 RCX: 00007f9f5cf8e929
[  190.576039][ T7317] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  190.576053][ T7317] RBP: 00007f9f5de3b090 R08: 0000000000000000 R09: 0000000000000000
[  190.576068][ T7317] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000002
[  190.576082][ T7317] R13: 0000000000000000 R14: 00007f9f5d1b6080 R15: 00007ffc73082c38
[  190.576114][ T7317]  </TASK>
[  190.774654][    C1] vkms_vblank_simulate: vblank timer overrun
[  191.310370][ T7329] binder: 7326:7329 unknown command 0
[  191.315785][ T7329] binder: 7326:7329 ioctl c0306201 2000000000c0 returned -22
[  192.509907][ T7355] vhci_hcd: invalid port number 16
[  192.515079][ T7355] vhci_hcd: invalid port number 16
[  192.571948][ T7355] FAULT_INJECTION: forcing a failure.
[  192.571948][ T7355] name fail_futex, interval 1, probability 0, space 0, times 0
[  192.612889][ T7355] CPU: 0 UID: 0 PID: 7355 Comm: syz.3.313 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  192.612930][ T7355] Tainted: [U]=USER
[  192.612938][ T7355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  192.612952][ T7355] Call Trace:
[  192.612959][ T7355]  <TASK>
[  192.612968][ T7355]  dump_stack_lvl+0x16c/0x1f0
[  192.613012][ T7355]  should_fail_ex+0x512/0x640
[  192.613049][ T7355]  get_futex_key+0x1d0/0x1540
[  192.613083][ T7355]  ? __pfx_get_futex_key+0x10/0x10
[  192.613113][ T7355]  ? __pfx___schedule+0x10/0x10
[  192.613155][ T7355]  futex_wait_setup+0x9d/0x550
[  192.613203][ T7355]  __futex_wait+0x194/0x2f0
[  192.613243][ T7355]  ? __pfx___futex_wait+0x10/0x10
[  192.613286][ T7355]  ? __pfx_futex_wake_mark+0x10/0x10
[  192.613353][ T7355]  futex_wait+0xe8/0x380
[  192.613389][ T7355]  ? __pfx_futex_wait+0x10/0x10
[  192.613433][ T7355]  ? kmem_cache_free+0x2d1/0x4d0
[  192.613467][ T7355]  ? fd_install+0x225/0x750
[  192.613502][ T7355]  ? putname+0x154/0x1a0
[  192.613532][ T7355]  do_futex+0x229/0x350
[  192.613559][ T7355]  ? __pfx_do_futex+0x10/0x10
[  192.613597][ T7355]  __x64_sys_futex+0x1e0/0x4c0
[  192.613628][ T7355]  ? __x64_sys_openat+0x174/0x210
[  192.613654][ T7355]  ? __pfx___x64_sys_futex+0x10/0x10
[  192.613682][ T7355]  ? xfd_validate_state+0x61/0x180
[  192.613723][ T7355]  do_syscall_64+0xcd/0x490
[  192.613763][ T7355]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.613789][ T7355] RIP: 0033:0x7f9f5cf8e929
[  192.613809][ T7355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.613833][ T7355] RSP: 002b:00007f9f5de5c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  192.613857][ T7355] RAX: ffffffffffffffda RBX: 00007f9f5d1b5fa8 RCX: 00007f9f5cf8e929
[  192.613874][ T7355] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9f5d1b5fa8
[  192.613889][ T7355] RBP: 00007f9f5d1b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  192.613905][ T7355] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9f5d1b5fac
[  192.613920][ T7355] R13: 0000000000000000 R14: 00007ffc73082b50 R15: 00007ffc73082c38
[  192.613955][ T7355]  </TASK>
[  193.707833][   T30] audit: type=1800 audit(4294969354.908:15): pid=7373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.317" name="members" dev="configfs" ino=14367 res=0 errno=0
[  193.727980][    C1] vkms_vblank_simulate: vblank timer overrun
[  194.229157][   T30] audit: type=1804 audit(4294970378.406:16): pid=7384 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.320" name="/newroot/78/file0" dev="tmpfs" ino=427 res=1 errno=0
[  194.294462][   T30] audit: type=1800 audit(4294970378.406:17): pid=7384 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.320" name="file0" dev="tmpfs" ino=427 res=0 errno=0
[  194.700987][ T7396] can: request_module (can-proto-0) failed.
[  195.158785][ T7405] Invalid ELF header magic: != ELF
[  196.679654][   T30] audit: type=1806 audit(4294972426.878:18): xattr="." res=0
[  198.170668][   T30] audit: type=1800 audit(4294972428.368:19): pid=7458 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.336" name="dbroot" dev="configfs" ino=14096 res=0 errno=0
[  198.315235][ T7451] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  198.328747][ T7451] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  198.419786][ T7451] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  198.517001][ T7451] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  198.542145][ T7451] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  198.611359][ T7451] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  198.635068][ T7451] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  198.689781][ T7451] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  198.759829][ T7451] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  198.772136][ T7451] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  198.784279][ T7451] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  198.802173][ T7451] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  199.493089][ T5828] Bluetooth: hci0: command 0x0c1a tx timeout
[  199.578506][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  199.585031][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  200.536051][ T5828] Bluetooth: hci1: command 0x0c1a tx timeout
[  200.694125][ T5828] Bluetooth: hci2: command 0x0c1a tx timeout
[  200.773669][ T5828] Bluetooth: hci3: command 0x0c1a tx timeout
[  201.574068][ T5828] Bluetooth: hci0: command 0x0c1a tx timeout
[  202.201590][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  202.208433][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  202.220592][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  202.228848][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  202.266534][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  202.273301][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  202.284112][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  202.290672][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  202.614619][ T5828] Bluetooth: hci1: command 0x0c1a tx timeout
[  202.787062][ T5828] Bluetooth: hci2: command 0x0c1a tx timeout
[  202.854832][ T5828] Bluetooth: hci3: command 0x0c1a tx timeout
[  203.655114][ T5828] Bluetooth: hci0: command 0x0c1a tx timeout
[  204.001715][ T7564] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  204.178930][ T7568] netlink: 4 bytes leftover after parsing attributes in process `syz.1.358'.
[  204.189245][ T7568] netlink: 13 bytes leftover after parsing attributes in process `syz.1.358'.
[  204.695799][ T5828] Bluetooth: hci1: command 0x0c1a tx timeout
[  204.856754][ T5828] Bluetooth: hci2: command 0x0c1a tx timeout
[  204.936364][ T5828] Bluetooth: hci3: command 0x0c1a tx timeout
[  205.196534][ T7589] can: request_module (can-proto-0) failed.
[  205.926098][ T7606] vhci_hcd: invalid port number 16
[  205.931321][ T7606] vhci_hcd: invalid port number 16
[  205.952579][ T7607] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjEùrõ£Ò„yù*›"¤l-ý¤ôy–ú„
[  205.977014][ T7606] FAULT_INJECTION: forcing a failure.
[  205.977014][ T7606] name fail_futex, interval 1, probability 0, space 0, times 0
[  206.007129][ T7606] CPU: 1 UID: 0 PID: 7606 Comm: syz.0.367 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  206.007170][ T7606] Tainted: [U]=USER
[  206.007178][ T7606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  206.007192][ T7606] Call Trace:
[  206.007201][ T7606]  <TASK>
[  206.007211][ T7606]  dump_stack_lvl+0x16c/0x1f0
[  206.007254][ T7606]  should_fail_ex+0x512/0x640
[  206.007303][ T7606]  get_futex_key+0x1d0/0x1540
[  206.007338][ T7606]  ? __pfx_get_futex_key+0x10/0x10
[  206.007374][ T7606]  ? __pfx___schedule+0x10/0x10
[  206.007414][ T7606]  futex_wait_setup+0x9d/0x550
[  206.007460][ T7606]  __futex_wait+0x194/0x2f0
[  206.007499][ T7606]  ? __pfx___futex_wait+0x10/0x10
[  206.007541][ T7606]  ? __pfx_futex_wake_mark+0x10/0x10
[  206.007596][ T7606]  futex_wait+0xe8/0x380
[  206.007632][ T7606]  ? __pfx_futex_wait+0x10/0x10
[  206.007674][ T7606]  ? kmem_cache_free+0x2d1/0x4d0
[  206.007707][ T7606]  ? fd_install+0x225/0x750
[  206.007738][ T7606]  ? putname+0x154/0x1a0
[  206.007767][ T7606]  do_futex+0x229/0x350
[  206.007798][ T7606]  ? __pfx_do_futex+0x10/0x10
[  206.007838][ T7606]  __x64_sys_futex+0x1e0/0x4c0
[  206.007870][ T7606]  ? __x64_sys_openat+0x174/0x210
[  206.007899][ T7606]  ? __pfx___x64_sys_futex+0x10/0x10
[  206.007930][ T7606]  ? xfd_validate_state+0x61/0x180
[  206.007975][ T7606]  do_syscall_64+0xcd/0x490
[  206.008015][ T7606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.008040][ T7606] RIP: 0033:0x7fba66f8e929
[  206.008060][ T7606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.008083][ T7606] RSP: 002b:00007fba67de40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  206.008107][ T7606] RAX: ffffffffffffffda RBX: 00007fba671b5fa8 RCX: 00007fba66f8e929
[  206.008124][ T7606] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fba671b5fa8
[  206.008140][ T7606] RBP: 00007fba671b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  206.008155][ T7606] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fba671b5fac
[  206.008171][ T7606] R13: 0000000000000000 R14: 00007fff108c4c50 R15: 00007fff108c4d38
[  206.008204][ T7606]  </TASK>
[  206.228981][    C1] vkms_vblank_simulate: vblank timer overrun
[  206.394808][ T7611] vhci_hcd: invalid port number 16
[  206.405495][ T7609] vhci_hcd: invalid port number 16
[  206.410856][ T7611] vhci_hcd: invalid port number 16
[  206.431523][ T7609] vhci_hcd: invalid port number 16
[  206.519607][ T7611] FAULT_INJECTION: forcing a failure.
[  206.519607][ T7611] name failslab, interval 1, probability 0, space 0, times 0
[  206.535376][ T7611] CPU: 0 UID: 0 PID: 7611 Comm: syz.3.368 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  206.535417][ T7611] Tainted: [U]=USER
[  206.535426][ T7611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  206.535439][ T7611] Call Trace:
[  206.535447][ T7611]  <TASK>
[  206.535456][ T7611]  dump_stack_lvl+0x16c/0x1f0
[  206.535497][ T7611]  should_fail_ex+0x512/0x640
[  206.535528][ T7611]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  206.535568][ T7611]  should_failslab+0xc2/0x120
[  206.535593][ T7611]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  206.535629][ T7611]  ? seq_open+0x55/0x170
[  206.535657][ T7611]  ? __pfx_tracing_trace_options_show+0x10/0x10
[  206.535694][ T7611]  seq_open+0x55/0x170
[  206.535716][ T7611]  ? __pfx_tracing_trace_options_show+0x10/0x10
[  206.535754][ T7611]  single_open+0xfc/0x1f0
[  206.535779][ T7611]  tracing_trace_options_open+0xa7/0x100
[  206.535815][ T7611]  do_dentry_open+0x744/0x1c10
[  206.535851][ T7611]  ? __pfx_tracing_trace_options_open+0x10/0x10
[  206.535890][ T7611]  vfs_open+0x82/0x3f0
[  206.535919][ T7611]  path_openat+0x1de4/0x2cb0
[  206.535975][ T7611]  ? __pfx_path_openat+0x10/0x10
[  206.536012][ T7611]  ? __lock_acquire+0xb8a/0x1c90
[  206.536045][ T7611]  do_filp_open+0x20b/0x470
[  206.536078][ T7611]  ? __pfx_do_filp_open+0x10/0x10
[  206.536132][ T7611]  ? alloc_fd+0x471/0x7d0
[  206.536170][ T7611]  do_sys_openat2+0x11b/0x1d0
[  206.536195][ T7611]  ? __pfx_do_sys_openat2+0x10/0x10
[  206.536234][ T7611]  __x64_sys_openat+0x174/0x210
[  206.536258][ T7611]  ? __pfx___x64_sys_openat+0x10/0x10
[  206.536299][ T7611]  do_syscall_64+0xcd/0x490
[  206.536337][ T7611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.536361][ T7611] RIP: 0033:0x7f9f5cf8e929
[  206.536381][ T7611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.536403][ T7611] RSP: 002b:00007f9f5de5c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  206.536430][ T7611] RAX: ffffffffffffffda RBX: 00007f9f5d1b5fa0 RCX: 00007f9f5cf8e929
[  206.536445][ T7611] RDX: 0000000000008501 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  206.536459][ T7611] RBP: 00007f9f5d010b39 R08: 0000000000000000 R09: 0000000000000000
[  206.536473][ T7611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  206.536487][ T7611] R13: 0000000000000000 R14: 00007f9f5d1b5fa0 R15: 00007ffc73082c38
[  206.536518][ T7611]  </TASK>
[  206.776714][ T7609] FAULT_INJECTION: forcing a failure.
[  206.776714][ T7609] name fail_futex, interval 1, probability 0, space 0, times 0
[  206.793857][ T7609] CPU: 1 UID: 0 PID: 7609 Comm: syz.0.369 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  206.793899][ T7609] Tainted: [U]=USER
[  206.793908][ T7609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  206.793922][ T7609] Call Trace:
[  206.793931][ T7609]  <TASK>
[  206.793942][ T7609]  dump_stack_lvl+0x16c/0x1f0
[  206.793987][ T7609]  should_fail_ex+0x512/0x640
[  206.794028][ T7609]  get_futex_key+0x1d0/0x1540
[  206.794063][ T7609]  ? __pfx_get_futex_key+0x10/0x10
[  206.794094][ T7609]  ? __pfx___schedule+0x10/0x10
[  206.794128][ T7609]  ? smp_text_poke_int3_handler+0x9e/0x270
[  206.794166][ T7609]  futex_wait_setup+0x9d/0x550
[  206.794221][ T7609]  __futex_wait+0x194/0x2f0
[  206.794259][ T7609]  ? __pfx___futex_wait+0x10/0x10
[  206.794301][ T7609]  ? __pfx_futex_wake_mark+0x10/0x10
[  206.794356][ T7609]  futex_wait+0xe8/0x380
[  206.794391][ T7609]  ? __pfx_futex_wait+0x10/0x10
[  206.794434][ T7609]  ? kmem_cache_free+0x2d1/0x4d0
[  206.794469][ T7609]  ? fd_install+0x225/0x750
[  206.794499][ T7609]  ? putname+0x154/0x1a0
[  206.794529][ T7609]  do_futex+0x229/0x350
[  206.794560][ T7609]  ? __pfx_do_futex+0x10/0x10
[  206.794600][ T7609]  __x64_sys_futex+0x1e0/0x4c0
[  206.794633][ T7609]  ? __x64_sys_openat+0x174/0x210
[  206.794662][ T7609]  ? __pfx___x64_sys_futex+0x10/0x10
[  206.794693][ T7609]  ? xfd_validate_state+0x61/0x180
[  206.794737][ T7609]  do_syscall_64+0xcd/0x490
[  206.794777][ T7609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.794803][ T7609] RIP: 0033:0x7fba66f8e929
[  206.794824][ T7609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.794847][ T7609] RSP: 002b:00007fba67de40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  206.794871][ T7609] RAX: ffffffffffffffda RBX: 00007fba671b5fa8 RCX: 00007fba66f8e929
[  206.794888][ T7609] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fba671b5fa8
[  206.794903][ T7609] RBP: 00007fba671b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  206.794919][ T7609] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fba671b5fac
[  206.794934][ T7609] R13: 0000000000000000 R14: 00007fff108c4c50 R15: 00007fff108c4d38
[  206.794969][ T7609]  </TASK>
[  207.015321][    C1] vkms_vblank_simulate: vblank timer overrun
[  207.422021][ T7615] Scaler: =================  START STATUS  =================
[  207.431794][ T7615] Scaler: ==================  END STATUS  ==================
[  208.541916][ T7641] can: request_module (can-proto-0) failed.
[  209.394846][ T7663] FAULT_INJECTION: forcing a failure.
[  209.394846][ T7663] name failslab, interval 1, probability 0, space 0, times 0
[  209.412004][ T7663] CPU: 1 UID: 0 PID: 7663 Comm: syz.0.384 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  209.412045][ T7663] Tainted: [U]=USER
[  209.412052][ T7663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  209.412066][ T7663] Call Trace:
[  209.412074][ T7663]  <TASK>
[  209.412084][ T7663]  dump_stack_lvl+0x16c/0x1f0
[  209.412130][ T7663]  should_fail_ex+0x512/0x640
[  209.412165][ T7663]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  209.412201][ T7663]  should_failslab+0xc2/0x120
[  209.412225][ T7663]  __kmalloc_cache_noprof+0x6a/0x3e0
[  209.412256][ T7663]  ? key_user_lookup+0x169/0x560
[  209.412287][ T7663]  ? key_user_lookup+0x195/0x560
[  209.412324][ T7663]  key_user_lookup+0x195/0x560
[  209.412355][ T7663]  ? __pfx_key_user_lookup+0x10/0x10
[  209.412388][ T7663]  ? bpf_lsm_capable+0x9/0x10
[  209.412413][ T7663]  ? security_capable+0x7e/0x260
[  209.412456][ T7663]  keyctl_chown_key+0x605/0xfb0
[  209.412484][ T7663]  ? __x64_sys_futex+0x1e0/0x4c0
[  209.412513][ T7663]  ? __x64_sys_futex+0x1e9/0x4c0
[  209.412547][ T7663]  ? __pfx_keyctl_chown_key+0x10/0x10
[  209.412575][ T7663]  ? xfd_validate_state+0x61/0x180
[  209.412606][ T7663]  ? __pfx_ksys_write+0x10/0x10
[  209.412645][ T7663]  __do_sys_keyctl+0x283/0x590
[  209.412674][ T7663]  do_syscall_64+0xcd/0x490
[  209.412716][ T7663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.412742][ T7663] RIP: 0033:0x7fba66f8e929
[  209.412765][ T7663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.412789][ T7663] RSP: 002b:00007fba67de4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  209.412814][ T7663] RAX: ffffffffffffffda RBX: 00007fba671b5fa0 RCX: 00007fba66f8e929
[  209.412831][ T7663] RDX: 0000000000000006 RSI: 00000000fffffffe RDI: 0000000000000004
[  209.412847][ T7663] RBP: 00007fba67010b39 R08: 000000000000000e R09: 0000000000000000
[  209.412863][ T7663] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  209.412880][ T7663] R13: 0000000000000000 R14: 00007fba671b5fa0 R15: 00007fff108c4d38
[  209.412925][ T7663]  </TASK>
[  209.624129][    C1] vkms_vblank_simulate: vblank timer overrun
[  210.114802][ T7679] Scaler: =================  START STATUS  =================
[  210.130150][ T7679] Scaler: ==================  END STATUS  ==================
[  210.542635][ T7675] can: request_module (can-proto-0) failed.
[  211.489435][ T7693] can: request_module (can-proto-0) failed.
[  212.402038][ T7713] process 'syz.2.394' launched './file0' with NULL argv: empty string added
[  213.288853][ T7706] capability: warning: `syz.1.391' uses 32-bit capabilities (legacy support in use)
[  213.323505][ T7729] Scaler: =================  START STATUS  =================
[  213.356259][ T7729] Scaler: ==================  END STATUS  ==================
[  215.180206][ T7746] can: request_module (can-proto-0) failed.
[  216.898034][ T7789] vhci_hcd: invalid port number 16
[  216.903395][ T7789] vhci_hcd: invalid port number 16
[  216.931380][ T7789] FAULT_INJECTION: forcing a failure.
[  216.931380][ T7789] name failslab, interval 1, probability 0, space 0, times 0
[  216.952706][ T7789] CPU: 1 UID: 0 PID: 7789 Comm: syz.1.409 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  216.952748][ T7789] Tainted: [U]=USER
[  216.952756][ T7789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  216.952771][ T7789] Call Trace:
[  216.952779][ T7789]  <TASK>
[  216.952790][ T7789]  dump_stack_lvl+0x16c/0x1f0
[  216.952834][ T7789]  should_fail_ex+0x512/0x640
[  216.952869][ T7789]  ? fs_reclaim_acquire+0xae/0x150
[  216.952902][ T7789]  ? tomoyo_encode2+0x100/0x3e0
[  216.952941][ T7789]  should_failslab+0xc2/0x120
[  216.952967][ T7789]  __kmalloc_noprof+0xd2/0x510
[  216.953013][ T7789]  tomoyo_encode2+0x100/0x3e0
[  216.953052][ T7789]  tomoyo_encode+0x29/0x50
[  216.953084][ T7789]  tomoyo_realpath_from_path+0x18f/0x6e0
[  216.953129][ T7789]  tomoyo_check_open_permission+0x2ab/0x3c0
[  216.953168][ T7789]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  216.953196][ T7789]  ? mntput_no_expire+0x15e/0xbb0
[  216.953262][ T7789]  ? find_held_lock+0x2b/0x80
[  216.953297][ T7789]  tomoyo_file_open+0x6b/0x90
[  216.953337][ T7789]  security_file_open+0x84/0x1e0
[  216.953370][ T7789]  do_dentry_open+0x596/0x1c10
[  216.953418][ T7789]  vfs_open+0x82/0x3f0
[  216.953449][ T7789]  path_openat+0x1de4/0x2cb0
[  216.953496][ T7789]  ? __pfx_path_openat+0x10/0x10
[  216.953533][ T7789]  ? __lock_acquire+0xb8a/0x1c90
[  216.953568][ T7789]  do_filp_open+0x20b/0x470
[  216.953602][ T7789]  ? __pfx_do_filp_open+0x10/0x10
[  216.953661][ T7789]  ? alloc_fd+0x471/0x7d0
[  216.953703][ T7789]  do_sys_openat2+0x11b/0x1d0
[  216.953731][ T7789]  ? __pfx_do_sys_openat2+0x10/0x10
[  216.953774][ T7789]  __x64_sys_openat+0x174/0x210
[  216.953802][ T7789]  ? __pfx___x64_sys_openat+0x10/0x10
[  216.953846][ T7789]  do_syscall_64+0xcd/0x490
[  216.953886][ T7789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.953911][ T7789] RIP: 0033:0x7fa2a6d8e929
[  216.953939][ T7789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.953964][ T7789] RSP: 002b:00007fa2a7c31038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  216.953989][ T7789] RAX: ffffffffffffffda RBX: 00007fa2a6fb5fa0 RCX: 00007fa2a6d8e929
[  216.954006][ T7789] RDX: 0000000000008501 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  216.954022][ T7789] RBP: 00007fa2a6e10b39 R08: 0000000000000000 R09: 0000000000000000
[  216.954037][ T7789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  216.954052][ T7789] R13: 0000000000000000 R14: 00007fa2a6fb5fa0 R15: 00007ffd3da7df88
[  216.954086][ T7789]  </TASK>
[  217.210509][    C1] vkms_vblank_simulate: vblank timer overrun
[  217.233435][ T7789] ERROR: Out of memory at tomoyo_realpath_from_path.
[  218.120514][   T30] audit: type=1800 audit(4294973471.277:20): pid=7809 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.416" name="dbroot" dev="configfs" ino=16651 res=0 errno=0
[  218.443232][   T30] audit: type=1800 audit(4294973471.617:21): pid=7815 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.417" name="dbroot" dev="configfs" ino=16663 res=0 errno=0
[  218.948892][ T7828] vhci_hcd: invalid port number 16
[  218.954166][ T7828] vhci_hcd: invalid port number 16
[  218.980093][ T7828] FAULT_INJECTION: forcing a failure.
[  218.980093][ T7828] name failslab, interval 1, probability 0, space 0, times 0
[  219.002851][ T7828] CPU: 1 UID: 0 PID: 7828 Comm: syz.1.419 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  219.002888][ T7828] Tainted: [U]=USER
[  219.002895][ T7828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  219.002910][ T7828] Call Trace:
[  219.002918][ T7828]  <TASK>
[  219.002928][ T7828]  dump_stack_lvl+0x16c/0x1f0
[  219.002955][ T7828]  should_fail_ex+0x512/0x640
[  219.002975][ T7828]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  219.002999][ T7828]  should_failslab+0xc2/0x120
[  219.003023][ T7828]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  219.003045][ T7828]  ? seq_open+0x55/0x170
[  219.003063][ T7828]  ? __pfx_tracing_trace_options_show+0x10/0x10
[  219.003085][ T7828]  seq_open+0x55/0x170
[  219.003097][ T7828]  ? __pfx_tracing_trace_options_show+0x10/0x10
[  219.003119][ T7828]  single_open+0xfc/0x1f0
[  219.003133][ T7828]  tracing_trace_options_open+0xa7/0x100
[  219.003153][ T7828]  do_dentry_open+0x744/0x1c10
[  219.003173][ T7828]  ? __pfx_tracing_trace_options_open+0x10/0x10
[  219.003196][ T7828]  vfs_open+0x82/0x3f0
[  219.003212][ T7828]  path_openat+0x1de4/0x2cb0
[  219.003238][ T7828]  ? __pfx_path_openat+0x10/0x10
[  219.003257][ T7828]  ? __lock_acquire+0xb8a/0x1c90
[  219.003278][ T7828]  do_filp_open+0x20b/0x470
[  219.003296][ T7828]  ? __pfx_do_filp_open+0x10/0x10
[  219.003329][ T7828]  ? alloc_fd+0x471/0x7d0
[  219.003351][ T7828]  do_sys_openat2+0x11b/0x1d0
[  219.003365][ T7828]  ? __pfx_do_sys_openat2+0x10/0x10
[  219.003387][ T7828]  __x64_sys_openat+0x174/0x210
[  219.003402][ T7828]  ? __pfx___x64_sys_openat+0x10/0x10
[  219.003425][ T7828]  do_syscall_64+0xcd/0x490
[  219.003447][ T7828]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.003460][ T7828] RIP: 0033:0x7fa2a6d8e929
[  219.003472][ T7828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.003485][ T7828] RSP: 002b:00007fa2a7c31038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  219.003498][ T7828] RAX: ffffffffffffffda RBX: 00007fa2a6fb5fa0 RCX: 00007fa2a6d8e929
[  219.003507][ T7828] RDX: 0000000000008501 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  219.003516][ T7828] RBP: 00007fa2a6e10b39 R08: 0000000000000000 R09: 0000000000000000
[  219.003524][ T7828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  219.003533][ T7828] R13: 0000000000000000 R14: 00007fa2a6fb5fa0 R15: 00007ffd3da7df88
[  219.003551][ T7828]  </TASK>
[  219.973449][ T7842] netlink: 330 bytes leftover after parsing attributes in process `syz.1.424'.
[  220.884663][ T7849] can: request_module (can-proto-0) failed.
[  221.521312][ T7868] netlink: 12 bytes leftover after parsing attributes in process `syz.1.430'.
[  222.472938][ T7878] syz.1.432 (7878): /proc/7877/oom_adj is deprecated, please use /proc/7877/oom_score_adj instead.
[  222.834778][   T30] audit: type=1804 audit(4294974499.007:22): pid=7886 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.433" name="/newroot/110/file0" dev="tmpfs" ino=605 res=1 errno=0
[  222.941668][   T30] audit: type=1800 audit(4294974499.047:23): pid=7886 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.433" name="file0" dev="tmpfs" ino=605 res=0 errno=0
[  223.064839][   T30] audit: type=1804 audit(4294974499.057:24): pid=7889 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.433" name="/newroot/110/file0" dev="tmpfs" ino=605 res=1 errno=0
[  223.090266][ T7895] can: request_module (can-proto-0) failed.
[  223.396360][ T7904] netlink: 28 bytes leftover after parsing attributes in process `syz.3.435'.
[  223.985656][ T7914] serio: Serial port pty238
[  225.238885][ T7942] sctp: [Deprecated]: syz.1.445 (pid 7942) Use of int in max_burst socket option.
[  225.238885][ T7942] Use struct sctp_assoc_value instead
[  225.301041][ T7942] ubi4: attaching mtd0
[  225.514638][ T7950] netlink: 146 bytes leftover after parsing attributes in process `syz.0.446'.
[  226.669444][ T7968] vhci_hcd: invalid port number 16
[  226.674652][ T7968] vhci_hcd: invalid port number 16
[  226.699121][ T7966] serio: Serial port pty238
[  226.724812][ T7968] FAULT_INJECTION: forcing a failure.
[  226.724812][ T7968] name failslab, interval 1, probability 0, space 0, times 0
[  226.742701][ T7968] CPU: 0 UID: 0 PID: 7968 Comm: syz.2.450 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  226.742741][ T7968] Tainted: [U]=USER
[  226.742749][ T7968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  226.742759][ T7968] Call Trace:
[  226.742764][ T7968]  <TASK>
[  226.742770][ T7968]  dump_stack_lvl+0x16c/0x1f0
[  226.742796][ T7968]  should_fail_ex+0x512/0x640
[  226.742815][ T7968]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  226.742838][ T7968]  should_failslab+0xc2/0x120
[  226.742851][ T7968]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  226.742871][ T7968]  ? seq_open+0x55/0x170
[  226.742887][ T7968]  ? __pfx_tracing_trace_options_show+0x10/0x10
[  226.742909][ T7968]  seq_open+0x55/0x170
[  226.742921][ T7968]  ? __pfx_tracing_trace_options_show+0x10/0x10
[  226.742943][ T7968]  single_open+0xfc/0x1f0
[  226.742957][ T7968]  tracing_trace_options_open+0xa7/0x100
[  226.742977][ T7968]  do_dentry_open+0x744/0x1c10
[  226.742997][ T7968]  ? __pfx_tracing_trace_options_open+0x10/0x10
[  226.743028][ T7968]  vfs_open+0x82/0x3f0
[  226.743046][ T7968]  path_openat+0x1de4/0x2cb0
[  226.743073][ T7968]  ? __pfx_path_openat+0x10/0x10
[  226.743094][ T7968]  ? __lock_acquire+0xb8a/0x1c90
[  226.743115][ T7968]  do_filp_open+0x20b/0x470
[  226.743134][ T7968]  ? __pfx_do_filp_open+0x10/0x10
[  226.743166][ T7968]  ? alloc_fd+0x471/0x7d0
[  226.743188][ T7968]  do_sys_openat2+0x11b/0x1d0
[  226.743203][ T7968]  ? __pfx_do_sys_openat2+0x10/0x10
[  226.743224][ T7968]  __x64_sys_openat+0x174/0x210
[  226.743239][ T7968]  ? __pfx___x64_sys_openat+0x10/0x10
[  226.743262][ T7968]  do_syscall_64+0xcd/0x490
[  226.743286][ T7968]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.743300][ T7968] RIP: 0033:0x7fe01398e929
[  226.743312][ T7968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.743325][ T7968] RSP: 002b:00007fe01484a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  226.743339][ T7968] RAX: ffffffffffffffda RBX: 00007fe013bb5fa0 RCX: 00007fe01398e929
[  226.743348][ T7968] RDX: 0000000000008501 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  226.743356][ T7968] RBP: 00007fe013a10b39 R08: 0000000000000000 R09: 0000000000000000
[  226.743364][ T7968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  226.743373][ T7968] R13: 0000000000000000 R14: 00007fe013bb5fa0 R15: 00007ffd64992ca8
[  226.743391][ T7968]  </TASK>
[  227.197924][ T7971] FAULT_INJECTION: forcing a failure.
[  227.197924][ T7971] name failslab, interval 1, probability 0, space 0, times 0
[  227.219051][ T7971] CPU: 1 UID: 0 PID: 7971 Comm: syz.2.452 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  227.219089][ T7971] Tainted: [U]=USER
[  227.219096][ T7971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  227.219109][ T7971] Call Trace:
[  227.219117][ T7971]  <TASK>
[  227.219125][ T7971]  dump_stack_lvl+0x16c/0x1f0
[  227.219164][ T7971]  should_fail_ex+0x512/0x640
[  227.219196][ T7971]  ? __kmalloc_noprof+0xbf/0x510
[  227.219240][ T7971]  ? kernfs_fop_write_iter+0x237/0x510
[  227.219263][ T7971]  should_failslab+0xc2/0x120
[  227.219285][ T7971]  __kmalloc_noprof+0xd2/0x510
[  227.219327][ T7971]  kernfs_fop_write_iter+0x237/0x510
[  227.219357][ T7971]  iter_file_splice_write+0x91c/0x1150
[  227.219409][ T7971]  ? __pfx_iter_file_splice_write+0x10/0x10
[  227.219446][ T7971]  ? __pfx_copy_splice_read+0x10/0x10
[  227.219494][ T7971]  ? __pfx_iter_file_splice_write+0x10/0x10
[  227.219527][ T7971]  direct_splice_actor+0x18f/0x6c0
[  227.219561][ T7971]  splice_direct_to_actor+0x345/0xa30
[  227.219593][ T7971]  ? __pfx_direct_splice_actor+0x10/0x10
[  227.219629][ T7971]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  227.219656][ T7971]  ? get_pid_task+0xfc/0x250
[  227.219695][ T7971]  do_splice_direct+0x174/0x240
[  227.219725][ T7971]  ? __pfx_do_splice_direct+0x10/0x10
[  227.219755][ T7971]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  227.219789][ T7971]  ? rw_verify_area+0xcf/0x680
[  227.219821][ T7971]  do_sendfile+0xb06/0xe50
[  227.219858][ T7971]  ? __pfx_do_sendfile+0x10/0x10
[  227.219889][ T7971]  ? __fget_files+0x20e/0x3c0
[  227.219929][ T7971]  __x64_sys_sendfile64+0x1d8/0x220
[  227.219950][ T7971]  ? ksys_write+0x1ac/0x250
[  227.219980][ T7971]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  227.220014][ T7971]  do_syscall_64+0xcd/0x490
[  227.220051][ T7971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.220075][ T7971] RIP: 0033:0x7fe01398e929
[  227.220094][ T7971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.220115][ T7971] RSP: 002b:00007fe01484a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  227.220136][ T7971] RAX: ffffffffffffffda RBX: 00007fe013bb5fa0 RCX: 00007fe01398e929
[  227.220151][ T7971] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000003
[  227.220165][ T7971] RBP: 00007fe01484a090 R08: 0000000000000000 R09: 0000000000000000
[  227.220178][ T7971] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  227.220191][ T7971] R13: 0000000000000000 R14: 00007fe013bb5fa0 R15: 00007ffd64992ca8
[  227.220229][ T7971]  </TASK>
[  227.980658][ T7989] FAULT_INJECTION: forcing a failure.
[  227.980658][ T7989] name failslab, interval 1, probability 0, space 0, times 0
[  228.027528][ T7989] CPU: 1 UID: 0 PID: 7989 Comm: syz.2.457 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  228.027573][ T7989] Tainted: [U]=USER
[  228.027581][ T7989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  228.027595][ T7989] Call Trace:
[  228.027604][ T7989]  <TASK>
[  228.027614][ T7989]  dump_stack_lvl+0x16c/0x1f0
[  228.027659][ T7989]  should_fail_ex+0x512/0x640
[  228.027694][ T7989]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  228.027734][ T7989]  should_failslab+0xc2/0x120
[  228.027759][ T7989]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  228.027794][ T7989]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  228.027831][ T7989]  ? sock_alloc_inode+0x25/0x1c0
[  228.027863][ T7989]  ? __pfx_sock_alloc_inode+0x10/0x10
[  228.027888][ T7989]  sock_alloc_inode+0x25/0x1c0
[  228.027925][ T7989]  alloc_inode+0x64/0x240
[  228.027952][ T7989]  sock_alloc+0x40/0x280
[  228.027977][ T7989]  __sock_create+0xc1/0x8d0
[  228.028013][ T7989]  __sys_socket+0x14d/0x260
[  228.028040][ T7989]  ? __pfx_do_readv+0x10/0x10
[  228.028072][ T7989]  ? __pfx___sys_socket+0x10/0x10
[  228.028101][ T7989]  ? xfd_validate_state+0x61/0x180
[  228.028131][ T7989]  ? __pfx_ksys_write+0x10/0x10
[  228.028169][ T7989]  __x64_sys_socket+0x72/0xb0
[  228.028196][ T7989]  ? lockdep_hardirqs_on+0x7c/0x110
[  228.028231][ T7989]  do_syscall_64+0xcd/0x490
[  228.028271][ T7989]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.028296][ T7989] RIP: 0033:0x7fe01398e929
[  228.028317][ T7989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.028341][ T7989] RSP: 002b:00007fe01484a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  228.028366][ T7989] RAX: ffffffffffffffda RBX: 00007fe013bb5fa0 RCX: 00007fe01398e929
[  228.028382][ T7989] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  228.028396][ T7989] RBP: 00007fe013a10b39 R08: 0000000000000000 R09: 0000000000000000
[  228.028410][ T7989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  228.028425][ T7989] R13: 0000000000000000 R14: 00007fe013bb5fa0 R15: 00007ffd64992ca8
[  228.028459][ T7989]  </TASK>
[  228.028655][ T7989] socket: no more sockets
		
	
		
	
	

	
	
				
		

























		


	


		
	
		
	

	


		
	

	
		


	

	
		
	

	
		


	

	
		
	

	
		
	

	
		


	

	

		
		
		
	
		
	

	
		

	


		

		
	
		
	
	

	



			








	





	
	




	
















	





	






		










	
		

	


		

		
	
		
	
	

	



			








	

	
	










	








	








		










	

	
		



	
				
	
	



	
		
	

	
		

	
				
	
	



	
		
		


	
				
	
	



	
		

	
		

	


	

	

		
	
		
	
	

	



			








	

	












	
	









	





	


	
	




		
	
	













	


	



	



	



	
	

	








	









	
	

	










	
	







	

	







		








	










	
	












	








	









	
	











	

	
		


	

	
		








	
				
	
	



	
		
	

	
		


	

	
		
	

	
		
				
	

	
		


	

	
		

	
				
	
	



	
		
	

	
		
	

	
		


	
	

	
	

	
		

	

	
		


	
		

	


		

		
	
	

	
	

	
	

	
	

	
		
	
	

	



			








	

	


	


	

	



	






	











	


	





	
	







	

	
	

	

		
		
	

	
	

	
	

	
	

	
	

	
		


	

	
		

	
		

	


	
	

		
	
		
	
	

	



			








	





	






	
	


	
	
	

	
	



	
	








	

	
	
















	




	





		







	

	


	
	


	
	







	

	
		



	
		

	


	

	

		
	
		
	
	

	



			








	

	





































	



	








	



	


	


		
	
	









	

	





	

	




	

		











	

	
	
















	






	






		







	

	
		
	
	
	
	
	
	
	
	

	


	
	
		


	
		

	


	
	

		
	
		
	
	

	



			








	





	






	
	


	
	
	

	
	



	
	








	

	
	
















	





	





		
















	
	




		
		

	
				
	
	



	
		
	

	
		










	
		

	


	
	

		
	
		
	
	

	



			








	





	





			

			
			
		

		


		


















	










	






	







		









				



	
	

	


	




	
				
	

	
		


	

	
		
	




	
				


	
	

	

	
				
	
	



	
		







	

	
		
	

	
		

	
		

	


	
	

		
	
		
	
	

	



			








	

	






		


		

		

	

	
	
	



	
	
		


		

		

	

	



	
	
		
		
			
				
	


	
		
	
	
	
	






	








	









		











	

	
		


	

	
		
	

	
		


	

	
		
	

	
		



	
				
	
	



	
		


	
	

	
		

	


	
	

		
	
		
	
	

	



			








	




	









			


	





	
	

	

	
	






		
	


		
	









	








	










		













	
	
	
			
	
			


	
	
	

	
		


	

	
		
	

	
		




	
	


	
	


	

	
		
	

	
		

	
		

	


	
	

		
	
		
	
	

	



			








	





	






	
	


	
	
	

	
	



	
	








	

	
	
















	






	







		

















	
	

	
				
	
	



	
		
		
	








	


		

	
				
	
	



	
		


	
	
	

	
		


	

	
		

	
		

	


	
	

		
	
		
	
	

	



			








	





	














	










	

	




	

		











	

	
	
















	








	









		












	

	
	

	
	

	

	
				
	
		


	

	
				
	
	



	
		
	

	
		


	

	
		
	

	
		
	

	
		


	

	
		

	
		

	


		

		
	
		
	
	

	



			








	

	
	
	


		

		

		
		


	

	



	
	
	
	
	






	






	







		









	

	
		


	
				
	
	



	
		


	
	







		


	
		

	


		

		
	


	
		
	
	

	



			








	



	









	







	










	




	






		








	


	
	

	









	
	

syzkaller
syzkaller login: [  309.518849][ T9479] netlink: 28 bytes leftover after parsing attributes in process `syz.2.782'.
[  309.571486][ T9481] FAULT_INJECTION: forcing a failure.
[  309.571486][ T9481] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  309.614471][ T9481] CPU: 0 UID: 0 PID: 9481 Comm: syz.1.783 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  309.614507][ T9481] Tainted: [U]=USER
[  309.614514][ T9481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  309.614527][ T9481] Call Trace:
[  309.614534][ T9481]  <TASK>
[  309.614543][ T9481]  dump_stack_lvl+0x16c/0x1f0
[  309.614583][ T9481]  should_fail_ex+0x512/0x640
[  309.614621][ T9481]  _copy_from_iter+0x29f/0x16f0
[  309.614659][ T9481]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  309.614697][ T9481]  ? __pfx__copy_from_iter+0x10/0x10
[  309.614733][ T9481]  ? alloc_pages_mpol+0x25a/0x550
[  309.614757][ T9481]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  309.614784][ T9481]  copy_page_from_iter+0xde/0x180
[  309.614819][ T9481]  anon_pipe_write+0xbe7/0x1a70
[  309.614864][ T9481]  ? __pfx_anon_pipe_write+0x10/0x10
[  309.614898][ T9481]  ? apparmor_file_permission+0x251/0x400
[  309.614924][ T9481]  ? bpf_lsm_file_permission+0x9/0x10
[  309.614946][ T9481]  ? security_file_permission+0x71/0x210
[  309.614977][ T9481]  ? rw_verify_area+0xcf/0x680
[  309.615008][ T9481]  vfs_write+0x6c4/0x1150
[  309.615037][ T9481]  ? __pfx_anon_pipe_write+0x10/0x10
[  309.615072][ T9481]  ? __pfx_vfs_write+0x10/0x10
[  309.615098][ T9481]  ? find_held_lock+0x2b/0x80
[  309.615144][ T9481]  ksys_write+0x1f8/0x250
[  309.615174][ T9481]  ? __pfx_ksys_write+0x10/0x10
[  309.615223][ T9481]  do_syscall_64+0xcd/0x490
[  309.615311][ T9481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.615336][ T9481] RIP: 0033:0x7fa2a6d8e929
[  309.615356][ T9481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  309.615380][ T9481] RSP: 002b:00007fa2a7c10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  309.615403][ T9481] RAX: ffffffffffffffda RBX: 00007fa2a6fb6080 RCX: 00007fa2a6d8e929
[  309.615420][ T9481] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  309.615434][ T9481] RBP: 00007fa2a7c10090 R08: 0000000000000000 R09: 0000000000000000
[  309.615448][ T9481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  309.615462][ T9481] R13: 0000000000000000 R14: 00007fa2a6fb6080 R15: 00007ffd3da7df88
[  309.615496][ T9481]  </TASK>
[  309.660002][ T9479] netlink: 4 bytes leftover after parsing attributes in process `syz.2.782'.
[  309.759337][ T9476] hub 8-0:1.0: USB hub found
[  309.922422][ T9476] hub 8-0:1.0: 1 port detected
[  310.093997][ T9487] Scaler: =================  START STATUS  =================
[  310.101683][ T9487] Scaler: ==================  END STATUS  ==================
[  310.502996][ T9494] FAULT_INJECTION: forcing a failure.
[  310.502996][ T9494] name failslab, interval 1, probability 0, space 0, times 0
[  310.516088][ T9494] CPU: 1 UID: 0 PID: 9494 Comm: syz.1.786 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  310.516110][ T9494] Tainted: [U]=USER
[  310.516114][ T9494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  310.516122][ T9494] Call Trace:
[  310.516127][ T9494]  <TASK>
[  310.516132][ T9494]  dump_stack_lvl+0x16c/0x1f0
[  310.516158][ T9494]  should_fail_ex+0x512/0x640
[  310.516177][ T9494]  ? __kmalloc_noprof+0xbf/0x510
[  310.516198][ T9494]  ? tracepoint_add_func+0x2a6/0xea0
[  310.516218][ T9494]  should_failslab+0xc2/0x120
[  310.516231][ T9494]  __kmalloc_noprof+0xd2/0x510
[  310.516253][ T9494]  ? __pfx_blk_add_trace_bio_frontmerge+0x10/0x10
[  310.516271][ T9494]  tracepoint_add_func+0x2a6/0xea0
[  310.516289][ T9494]  ? __pfx_blk_add_trace_bio_frontmerge+0x10/0x10
[  310.516310][ T9494]  ? __pfx_blk_add_trace_bio_frontmerge+0x10/0x10
[  310.516326][ T9494]  tracepoint_probe_register+0xbf/0x100
[  310.516346][ T9494]  ? __pfx_tracepoint_probe_register+0x10/0x10
[  310.516367][ T9494]  ? __pfx_blk_add_trace_bio_frontmerge+0x10/0x10
[  310.516384][ T9494]  ? relay_open+0x62e/0xad0
[  310.516404][ T9494]  blk_register_tracepoints+0x156/0x380
[  310.516425][ T9494]  do_blk_trace_setup+0x933/0xb50
[  310.516442][ T9494]  blk_trace_setup+0xed/0x1b0
[  310.516457][ T9494]  ? __pfx_blk_trace_setup+0x10/0x10
[  310.516478][ T9494]  ? __pfx_snprintf+0x10/0x10
[  310.516507][ T9494]  blk_trace_ioctl+0x146/0x280
[  310.516522][ T9494]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  310.516540][ T9494]  ? find_held_lock+0x2b/0x80
[  310.516553][ T9494]  ? hook_file_ioctl_common+0x145/0x410
[  310.516570][ T9494]  blkdev_ioctl+0x108/0x6d0
[  310.516587][ T9494]  ? __pfx_blkdev_ioctl+0x10/0x10
[  310.516605][ T9494]  ? __pfx_blkdev_ioctl+0x10/0x10
[  310.516620][ T9494]  __x64_sys_ioctl+0x18b/0x210
[  310.516638][ T9494]  do_syscall_64+0xcd/0x490
[  310.516661][ T9494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.516674][ T9494] RIP: 0033:0x7fa2a6d8e929
[  310.516687][ T9494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.516700][ T9494] RSP: 002b:00007fa2a7c10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  310.516713][ T9494] RAX: ffffffffffffffda RBX: 00007fa2a6fb6080 RCX: 00007fa2a6d8e929
[  310.516722][ T9494] RDX: 00002000000000c0 RSI: 00000000c0481273 RDI: 0000000000000009
[  310.516730][ T9494] RBP: 00007fa2a6e10b39 R08: 0000000000000000 R09: 0000000000000000
[  310.516738][ T9494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  310.516746][ T9494] R13: 0000000000000000 R14: 00007fa2a6fb6080 R15: 00007ffd3da7df88
[  310.516764][ T9494]  </TASK>
[  310.516858][ T9494] ------------[ cut here ]------------
[  310.785629][ T9494] WARNING: CPU: 1 PID: 9494 at kernel/trace/blktrace.c:1092 blk_register_tracepoints+0x312/0x380
[  310.796215][ T9494] Modules linked in:
[  310.800436][ T9494] CPU: 1 UID: 0 PID: 9494 Comm: syz.1.786 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  310.812460][ T9494] Tainted: [U]=USER
[  310.816288][ T9494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  310.826416][ T9494] RIP: 0010:blk_register_tracepoints+0x312/0x380
[  310.833017][ T9494] Code: 0f 0b 90 e9 f2 fd ff ff e8 2b 17 f8 ff 90 0f 0b 90 e9 11 fe ff ff e8 1d 17 f8 ff 90 0f 0b 90 e9 30 fe ff ff e8 0f 17 f8 ff 90 <0f> 0b 90 e9 4f fe ff ff e8 01 17 f8 ff 90 0f 0b 90 e9 6e fe ff ff
[  310.852712][ T9494] RSP: 0018:ffffc9001895fc28 EFLAGS: 00010293
[  310.859028][ T9494] RAX: 0000000000000000 RBX: 00000000fffffff4 RCX: ffffffff81c37461
[  310.867169][ T9494] RDX: ffff888029783c00 RSI: ffffffff81c37611 RDI: 0000000000000005
[  310.875805][ T9494] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  310.884298][ T9494] R10: 00000000fffffff4 R11: 0000000000000001 R12: 00000000000000ff
[  310.892316][ T9494] R13: 0000000000002000 R14: ffff88802650c478 R15: ffffc9001895fcf4
[  310.900312][ T9494] FS:  00007fa2a7c106c0(0000) GS:ffff88812485f000(0000) knlGS:0000000000000000
[  310.909363][ T9494] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  310.915942][ T9494] CR2: 0000200000001240 CR3: 000000006114e000 CR4: 00000000003526f0
[  310.923931][ T9494] Call Trace:
[  310.927198][ T9494]  <TASK>
[  310.930152][ T9494]  do_blk_trace_setup+0x933/0xb50
[  310.935173][ T9494]  blk_trace_setup+0xed/0x1b0
[  310.939864][ T9494]  ? __pfx_blk_trace_setup+0x10/0x10
[  310.945135][ T9494]  ? __pfx_snprintf+0x10/0x10
[  310.949864][ T9494]  blk_trace_ioctl+0x146/0x280
[  310.954618][ T9494]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  310.959916][ T9494]  ? find_held_lock+0x2b/0x80
[  310.964582][ T9494]  ? hook_file_ioctl_common+0x145/0x410
[  310.971016][ T9494]  blkdev_ioctl+0x108/0x6d0
[  310.975553][ T9494]  ? __pfx_blkdev_ioctl+0x10/0x10
[  310.981177][ T9494]  ? __pfx_blkdev_ioctl+0x10/0x10
[  310.986206][ T9494]  __x64_sys_ioctl+0x18b/0x210
[  310.991142][ T9494]  do_syscall_64+0xcd/0x490
[  310.995652][ T9494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.001590][ T9494] RIP: 0033:0x7fa2a6d8e929
[  311.005995][ T9494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  311.025764][ T9494] RSP: 002b:00007fa2a7c10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  311.034225][ T9494] RAX: ffffffffffffffda RBX: 00007fa2a6fb6080 RCX: 00007fa2a6d8e929
[  311.042240][ T9494] RDX: 00002000000000c0 RSI: 00000000c0481273 RDI: 0000000000000009
[  311.050227][ T9494] RBP: 00007fa2a6e10b39 R08: 0000000000000000 R09: 0000000000000000
[  311.058194][ T9494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  311.066292][ T9494] R13: 0000000000000000 R14: 00007fa2a6fb6080 R15: 00007ffd3da7df88
[  311.075676][ T9494]  </TASK>
[  311.079642][ T9494] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  311.086954][ T9494] CPU: 1 UID: 0 PID: 9494 Comm: syz.1.786 Tainted: G     U              6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  311.098703][ T9494] Tainted: [U]=USER
[  311.102524][ T9494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  311.112606][ T9494] Call Trace:
[  311.115904][ T9494]  <TASK>
[  311.118851][ T9494]  dump_stack_lvl+0x3d/0x1f0
[  311.123479][ T9494]  panic+0x71c/0x800
[  311.127414][ T9494]  ? __pfx_panic+0x10/0x10
[  311.131868][ T9494]  ? show_trace_log_lvl+0x29b/0x3e0
[  311.137120][ T9494]  ? check_panic_on_warn+0x1f/0xb0
[  311.142271][ T9494]  ? blk_register_tracepoints+0x312/0x380
[  311.148028][ T9494]  check_panic_on_warn+0xab/0xb0
[  311.153054][ T9494]  __warn+0xf6/0x3c0
[  311.157142][ T9494]  ? blk_register_tracepoints+0x312/0x380
[  311.162909][ T9494]  report_bug+0x3c3/0x580
[  311.167271][ T9494]  ? blk_register_tracepoints+0x312/0x380
[  311.173011][ T9494]  handle_bug+0x184/0x210
[  311.177383][ T9494]  exc_invalid_op+0x17/0x50
[  311.181884][ T9494]  asm_exc_invalid_op+0x1a/0x20
[  311.186729][ T9494] RIP: 0010:blk_register_tracepoints+0x312/0x380
[  311.193070][ T9494] Code: 0f 0b 90 e9 f2 fd ff ff e8 2b 17 f8 ff 90 0f 0b 90 e9 11 fe ff ff e8 1d 17 f8 ff 90 0f 0b 90 e9 30 fe ff ff e8 0f 17 f8 ff 90 <0f> 0b 90 e9 4f fe ff ff e8 01 17 f8 ff 90 0f 0b 90 e9 6e fe ff ff
[  311.212697][ T9494] RSP: 0018:ffffc9001895fc28 EFLAGS: 00010293
[  311.218769][ T9494] RAX: 0000000000000000 RBX: 00000000fffffff4 RCX: ffffffff81c37461
[  311.226736][ T9494] RDX: ffff888029783c00 RSI: ffffffff81c37611 RDI: 0000000000000005
[  311.234703][ T9494] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[  311.242670][ T9494] R10: 00000000fffffff4 R11: 0000000000000001 R12: 00000000000000ff
[  311.250636][ T9494] R13: 0000000000002000 R14: ffff88802650c478 R15: ffffc9001895fcf4
[  311.258617][ T9494]  ? blk_register_tracepoints+0x161/0x380
[  311.264348][ T9494]  ? blk_register_tracepoints+0x311/0x380
[  311.270079][ T9494]  ? blk_register_tracepoints+0x311/0x380
[  311.275809][ T9494]  do_blk_trace_setup+0x933/0xb50
[  311.280842][ T9494]  blk_trace_setup+0xed/0x1b0
[  311.285526][ T9494]  ? __pfx_blk_trace_setup+0x10/0x10
[  311.290895][ T9494]  ? __pfx_snprintf+0x10/0x10
[  311.295605][ T9494]  blk_trace_ioctl+0x146/0x280
[  311.300368][ T9494]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  311.305658][ T9494]  ? find_held_lock+0x2b/0x80
[  311.310335][ T9494]  ? hook_file_ioctl_common+0x145/0x410
[  311.315884][ T9494]  blkdev_ioctl+0x108/0x6d0
[  311.320388][ T9494]  ? __pfx_blkdev_ioctl+0x10/0x10
[  311.325413][ T9494]  ? __pfx_blkdev_ioctl+0x10/0x10
[  311.330445][ T9494]  __x64_sys_ioctl+0x18b/0x210
[  311.335213][ T9494]  do_syscall_64+0xcd/0x490
[  311.339732][ T9494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.345622][ T9494] RIP: 0033:0x7fa2a6d8e929
[  311.350034][ T9494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  311.369639][ T9494] RSP: 002b:00007fa2a7c10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  311.378050][ T9494] RAX: ffffffffffffffda RBX: 00007fa2a6fb6080 RCX: 00007fa2a6d8e929
[  311.386024][ T9494] RDX: 00002000000000c0 RSI: 00000000c0481273 RDI: 0000000000000009
[  311.393994][ T9494] RBP: 00007fa2a6e10b39 R08: 0000000000000000 R09: 0000000000000000
[  311.401960][ T9494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  311.409927][ T9494] R13: 0000000000000000 R14: 00007fa2a6fb6080 R15: 00007ffd3da7df88
[  311.417908][ T9494]  </TASK>
[  311.421177][ T9494] Kernel Offset: disabled
[  311.425497][ T9494] Rebooting in 86400 seconds..