last executing test programs:

12m4.93813915s ago: executing program 2 (id=712):
statmount$auto(0x0, 0x0, 0x1fe, 0xd)
socket(0x2, 0x3, 0xa)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dri/card0\x00', 0x100, 0x0)
ioctl$auto(r0, 0x900064b6, 0x6162)
socket(0x11, 0x3, 0x8)
io_submit$auto(0x2, 0x7f, &(0x7f0000000040)=&(0x7f0000000000)={0x2, 0xb, 0x8, 0x3, 0x2, 0x3b, 0xfffffffffffffc00, 0x2, 0x1001, 0x0, 0x6, <r1=>0xffffffffffffffff})
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptydc\x00', 0x80502, 0x0)
writev$auto(0xc8, &(0x7f00000028c0)={&(0x7f0000000000), 0x200}, 0x9)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x280, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
read$auto_proc_single_file_operations_base(r1, &(0x7f0000000140)=""/206, 0xce)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x80000001, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x10000000000062, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0x8]}, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x400000090, 0x1, 0x3, 0x3, 0x15f4da0a, 0x10003, 0x3, 0x3, 0x8000001b, 0x100000000, 0x6d3c, 0x9, 0xc, 0x8]}, 0x0)
r3 = socket(0x2, 0x5, 0x0)
getsockopt$auto_SO_LOCK_FILTER(r3, 0x0, 0x2c, 0x0, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)

12m2.916659937s ago: executing program 2 (id=717):
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/modules\x00', 0x88400, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$dir(0xffffffffffffff9c, 0x0, 0x385000, 0x44)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
r2 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_timedsend$auto(r2, &(0x7f00000000c0)='\xcf\x8d\xb6\xaa\x80\xd5\xb4_:A\xacz\xdc\xa0\x1d', 0x2, 0x6, &(0x7f0000000240)={0x2000000000000003, 0x101})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x4d, 0x0)
r3 = fsopen$auto(0x0, 0x1)
lremovexattr$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='/sys/devices/system/node/node1/compact\x00')
fsconfig$auto_EROFS_MOUNT_DAX_NEVER(r3, 0x4, &(0x7f0000000100)='\x00', &(0x7f0000000140), 0xffffff9c)
writev$auto(r1, &(0x7f0000000080)={0x0, 0x1000}, 0x3)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x6, 0x2, 0x6)
semctl$auto_SETVAL(0x0, 0xfffffff5, 0x10, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x100000000, 0x66)
read$auto(r4, 0x0, 0x20)
io_uring_register$auto_IORING_REGISTER_CLOCK(0xffffffffffffffff, 0x1d, 0x0, 0x2)

12m0.57438179s ago: executing program 2 (id=721):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000300)='/dev/sg1\x00', 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r1 = getpid()
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x4100, 0x0)
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
ioctl$auto(0x3, 0x400454ca, 0x38)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
r2 = gettid()
ioctl$auto_VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000000)=0x200000000)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000002180)='/dev/snd/pcmC0D0p\x00', 0x0, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$auto(r3, 0x29, 0x18, 0x0, 0x1)
tkill$auto(r2, 0x7)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000440)='/proc/thread-self/fail-nth\x00', 0x80000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_BLKSECTGET2(r0, 0x1267, 0x0)

11m59.779974936s ago: executing program 2 (id=723):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/fcloop/ctl/add_local_port\x00', 0xa001, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000280)=""/65, 0x41)
r0 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r0, 0x10f, 0x85, 0x0, 0x0)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r1 = open(&(0x7f0000000040)='.\x00', 0x0, 0x408)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0006, 0x6)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [0x7ff], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0x401, 0x1, 0x40, 0x76c5, 0x8, 0x4000100000000}})
open(0x0, 0x22240, 0x154)
connect$auto(0x3, 0x0, 0x55)
mmap$auto(0x0, 0x400008, 0xdc, 0x9b72, 0x2, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/net/can/reset_stats\x00', 0x1a1801, 0x0)
add_key$auto_KEY_SPEC_USER_KEYRING(&(0x7f0000001c80)='\\\x00', &(0x7f0000001cc0)='\x00', 0x0, 0x0, 0xfffffffffffffffc)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
close_range$auto(r2, r1, 0x2)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_UDMABUF_CREATE_LIST(0xffffffffffffffff, 0x40087543, &(0x7f0000000100)={0x5eea, 0x7, [{r3, 0x0, 0x4, 0x6}]})
mmap$auto(0x0, 0x9, 0xdf, 0x10, 0x2, 0x8000)
mmap$auto(0x2, 0x2, 0x4000000000df, 0xeb1, r3, 0x38a)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xd4, 0x0, 0x4)
lseek$auto(r1, 0xfffffffffffffff9, 0x1)
close_range$auto(0x2, 0x8, 0x0)

11m58.794590212s ago: executing program 2 (id=726):
openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
io_uring_setup$auto(0xa, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, 0x0, 0xc800)
socket(0x27, 0x800, 0x401)
socket(0x25, 0x1, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = socket(0x23, 0x80805, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
fanotify_init$auto(0x5, 0x2000000000002)
clone$auto(0x20003b46, 0x7, 0x0, 0x0, 0x2)
ioctl$auto(0x3, 0xc060ff0b, r0)

11m58.240714894s ago: executing program 2 (id=728):
socket(0x10, 0x2, 0xc)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff)
adjtimex$auto(&(0x7f0000000300)={0x3, 0x0, 0x7fffffff, 0x55d, 0x12, 0xf2, 0x9, 0x0, 0x5, 0x0, 0xfffffffffffffffb, {0x9, 0xa7}, 0x9, 0x7, 0x1, 0x8, 0x0, 0x8, 0xce34, 0x6, 0x3, 0xfff, 0x3})
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
r1 = openat$auto_ptdump_curknl_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x1002, 0x0)
read$auto_ptdump_curknl_fops_(r1, &(0x7f0000000040)=""/230, 0xe6)
ioctl$auto_SG_GET_NUM_WAITING(r0, 0x227d, 0x0)
mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400005, 0x40df, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000080), 0x2140, 0x0)
mmap$auto(0x1, 0x2000a, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = socket(0x15, 0x5, 0x0)
r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sg1\x00', 0x224a00, 0x0)
ioctl$auto_SG_SET_FORCE_PACK_ID(r4, 0x227b, 0x0)
setsockopt$auto(r3, 0x114, 0x8, 0x0, 0x4)
close_range$auto(0x2, 0x8, 0x0)
link$auto(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')

11m42.811291185s ago: executing program 32 (id=728):
socket(0x10, 0x2, 0xc)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff)
adjtimex$auto(&(0x7f0000000300)={0x3, 0x0, 0x7fffffff, 0x55d, 0x12, 0xf2, 0x9, 0x0, 0x5, 0x0, 0xfffffffffffffffb, {0x9, 0xa7}, 0x9, 0x7, 0x1, 0x8, 0x0, 0x8, 0xce34, 0x6, 0x3, 0xfff, 0x3})
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
r1 = openat$auto_ptdump_curknl_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x1002, 0x0)
read$auto_ptdump_curknl_fops_(r1, &(0x7f0000000040)=""/230, 0xe6)
ioctl$auto_SG_GET_NUM_WAITING(r0, 0x227d, 0x0)
mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400005, 0x40df, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000080), 0x2140, 0x0)
mmap$auto(0x1, 0x2000a, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = socket(0x15, 0x5, 0x0)
r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sg1\x00', 0x224a00, 0x0)
ioctl$auto_SG_SET_FORCE_PACK_ID(r4, 0x227b, 0x0)
setsockopt$auto(r3, 0x114, 0x8, 0x0, 0x4)
close_range$auto(0x2, 0x8, 0x0)
link$auto(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')

16.618571474s ago: executing program 3 (id=2325):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/pcm1p/sub5/sw_params\x00', 0x20a600, 0x0)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0xfffffffffffffffb)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/default/forwarding\x00', 0x141241, 0x0)
readahead$auto(r0, 0x4, 0x4)
sysfs$auto(0x3, 0x401, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0xfffffffffffffffa, 0x4, 0x2000000b)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
semget$auto(0x0, 0x13c, 0x1ff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_MACSEC_CMD_UPD_RXSA(r1, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16, @ANYBLOB="230027bd7000fcdbdf2508ffe9000c00038005000180030000000400028008"], 0x2c}, 0x1, 0x0, 0x0, 0x4008000}, 0x44044)
semtimedop$auto(0x0, &(0x7f0000000140)={0x7, 0x81, 0x70}, 0x1f4, 0x0)
mq_timedreceive$auto(r1, &(0x7f0000000180)='}+}\'\x00', 0x4, &(0x7f0000000300)=0x177, &(0x7f0000000340)={0xc2, 0xffffffffffffff51})
mprotect$auto(0x0, 0xe6a, 0x6)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/controlC1\x00', 0x80, 0x0)
ioctl$auto(r2, 0x80dc5521, 0xffffffffffffffff)
r3 = openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000140)='/dev/media11\x00', 0x40, 0x0)
read$auto_media_devnode_fops_mc_devnode(r3, 0x0, 0x0)
read$auto_media_devnode_fops_mc_devnode(r3, &(0x7f00000003c0)=""/142, 0x8e)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
readv$auto(0x3, &(0x7f0000000040)={&(0x7f0000000000), 0x36a}, 0x6)
semctl$auto_GETNCNT(0x0, 0x0, 0xe, 0xa8)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r4 = socket(0x2a, 0x2, 0x0)
ioctl$auto(r4, 0x8912, 0x38)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f00000001c0)={{@raw=0x3, 0x100110d, 0xffff, 0x6, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa00000000e1800000000000000000040000660e070100", @raw=0x8}, 0x6, 0x0, 0x4, @inferred, @integer64={0x6, 0x4, 0x6}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"})

15.294064691s ago: executing program 3 (id=2329):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/dev/cdrom/info\x00', 0x2000, 0x0)
mmap$auto(0x80000008, 0x400005, 0x2, 0x10, 0x2, 0x7)
r0 = getpid()
r1 = openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x4000, 0x0)
read$auto_lowpan_enable_fops_(r1, &(0x7f0000000140)=""/182, 0xb6)
socket(0xa, 0x1, 0x84)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0)
openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/dynamic_events\x00', 0x542, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/suspend_stats/failed_suspend_noirq\x00', 0x8a100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)=""/38, 0x26)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0xd, 0x3, 0xfffffffffffffffe]}, 0x0)
write$auto_fuse_dev_operations_fuse_i(r2, &(0x7f0000000440)="1100000007000000000000000000000001", 0x11)
migrate_pages$auto(r0, 0x10000, &(0x7f0000000040)=0x4, &(0x7f00000000c0)=0x6)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
close_range$auto(0x2, 0x8000, 0x0)
socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)

13.964826635s ago: executing program 3 (id=2334):
r0 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0)
ioctl$auto_IMDELTIMER(r0, 0x80044941, 0x0)
adjtimex$auto(&(0x7f0000000200)={0x5f95, 0x0, 0x2, 0x2000000a, 0xff7d, 0xbc58, 0x4000005, 0x0, 0x5, 0x8, 0x80000000, {0x7ff, 0xf423f}, 0x2744, 0x200000001, 0xff, 0x7, 0x0, 0x3c8, 0x8, 0x8, 0xffffffffffffffff, 0x1560cc85, 0x9, 0x40000})
sendmmsg$auto(r0, &(0x7f0000000240)={{&(0x7f0000000000)="41a01a3a1b3a80ada9917abde8538919ca952a3a221c47806572c6be036ba070da5d11406271e2e1caaca43be101152129b8fe81c1e6e804a99fbaeabd38243df64f7a1fb8b0d16d860fbed6560b733e5dccd9e6393e5811dee4a771d24c1bc6010ede0f2a3c161c0dbe2bc3ef14efc0707aaadf3368e739", 0xfffffff8, &(0x7f0000000180)={&(0x7f0000000080)="ad21c732274f944ea3775a7800abb012694bd5c65f778d24fc3ce53f42773b999ab3a6d090d02b844bebc5f85119df15f2dbb237f3e4af20d269ef6a3b9b6e4cecf7e3a4e99c80da9deabc575bd317eb97105a1a07ee84e7237c6502e2b562ffc1a1860fbe3f35b785667fd54bdea4ea23cd01925b3b377006b28a20a82a6201a2bc0711fd961e118ae37b042438b423993cf17eeff7c63bfa1326335e8e29", 0x5}, 0x5, &(0x7f00000001c0)="c70a459e5c127f5cf92a6e6f17bb7d1b10c9249f5895e2095f39c3c71244c50bfa6c12abdeeb512e0d5a87acf5191e6aee3ab0598f48611e9b140f5479130cfb94a80e21f0b9afefcb4a44a04fedeea4deb48b54bf57ef0fbc8fdf974dbc82ed5588a549d1ce8376ad34bba537e8e907ff", 0x0, 0x7ff}, 0x78}, 0xfffffffa, 0x2)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000)
renameat2$auto(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
sendmmsg$auto(r0, &(0x7f0000000440)={{&(0x7f0000000280)="0efcb3efdcf282e7d6fc97b5ed091751a9fddd599a9ba5739dfc07d7a17e6df868a1b6d0689fbf07b74a70fb78d5a99f2fc1aa0130cc8ad90d23cad982ab4af9c58cbf257231b1556fc64cd23ca1a68373e8ac74d7dc73e42f892a46e0681f3a85e87f130573029ba037a94a3de569160e", 0x5, &(0x7f00000003c0)={&(0x7f0000000340)="dc716b1ac7b770d9d47be14c7a019793973c1d90bc16effd82eddfc86bdc64ad3a7f7ef3870d2dfc9735bc0e300aa184a514cc506796", 0x9}, 0xb, &(0x7f0000000400)="79433ea18dbffb92", 0x7, 0x3469}, 0x80}, 0xffff4535, 0x401)
mlock$auto(0xfbe8, 0x4)
syz_clone(0x8124400, 0x0, 0x0, 0x0, 0x0, 0x0)

10.092537654s ago: executing program 4 (id=2339):
socket(0x23, 0x2, 0x0)
read$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffffff, &(0x7f0000000000)=""/176, 0xb0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
get_robust_list$auto(0x0, 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
r0 = socket(0x22, 0x2, 0x1)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x129000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xa083, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
fstat$auto(r0, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x2000000)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000)
getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0)

9.331211275s ago: executing program 3 (id=2342):
prctl$auto(0x23, 0x4, 0x7fffffffefff, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv6/neigh/ip_vti0/base_reachable_time_ms\x00', 0x202, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000b80)='/proc/sys/kernel/kptr_restrict\x00', 0x202, 0x0)
read$auto(r0, 0x0, 0xb5)
write$auto(0x3, 0x0, 0xfdef)

8.531055039s ago: executing program 3 (id=2344):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000440)='/proc/thread-self/mountinfo\x00', 0x800, 0x0)
unshare$auto(0x40000080)
write$auto(0xffffffffffffffff, &(0x7f0000000400)='/de\xef\xe7auDio1\x00\f\'\x8b\xd9\xfeN\xcd#)\x8c\x89>-o\xd7\x8f$\xac\xfc\xa2\xccm\x0e \xfb\xe5\xe9\x92\xaa\xef\x84$\x84Ia>6pV;{\'\xaa\xbeS\x14\xb6\xd2\xf6\xb7\xcd\xf6P\x05X\x1dK\x18\x99\x02\xb3\x0fY0\x80\x99\xe3\x0e\xa2D\xc0\xecE\x86\xd9J\x9c\xa8\x98\x02\xdb\xf1\x81TMpS\xc5\xab\xa1\x1bG\v>\x03\xf7\xe1\xaf\xe3\x04\xc3 ffF\x0f\xa6}\xa3\xa8\xd1\xe2\xd0QG\xa6\xa6\x8e7\x80\xd9\xd0\xdf\xad\xb1\x15\xca\xbb\xd5j\x94\xc6<\x18\x15\xcc\x8d\x14\xd8\xb8L\x03\xdd~\xe7%\xcb\xdd\xda!\xd45Z\xd0\xfc\x1b\xf0\xe1\xd6:\xd7\xe9N\xc1W\xe3\xae\xe9\xb27>k\xf8\xdf\xe1\xf9\xcc\xcb\v\x01D\xc3\xa9T\xb9UY\xaf\xa4\xe4\xfec\xa3\x9bI@\xb7w\xf8\x14\xc0\xd5\xd5\x95', 0x8)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001f80), 0xffffffffffffffff)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x10, 0x9, 0x63, 0x0, 0x0, 0x0, 0x0, 0x40000000000f, 0x1000, 0xfffffffffffffffd, 0x7ffffffb, 0x9, 0xffffffff7ffffffc, 0x9, 0x7, 0x200000100103})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
readahead$auto(r1, 0x7fffffffffffffff, 0x8000)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0x7fb, 0x80000011, 0x2, 0x208000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
ioctl$auto_RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, &(0x7f0000000080)={0x0, 0xce, {0x9, 0x4, 0xc6, 0x3ff, 0x4, 0xffffffff, 0x4, 0x20400000, 0x9}})
mprotect$auto(0x0, 0x806121, 0x6)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0x2003f0, 0x15)
r3 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
ppoll$auto(&(0x7f0000000000)={r3, 0x8, 0x9}, 0x9, &(0x7f0000000040)={0x1}, &(0x7f00000000c0)={0x1}, 0x8)
mq_timedsend$auto(r3, 0x0, 0x2000, 0x2, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x7)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x3, 0x21)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r0)

8.417162004s ago: executing program 0 (id=2346):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f602, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0xa, 0x5, 0x84)
setsockopt$auto(r0, 0x10000000084, 0x0, 0x0, 0x7ffe)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3)
socket(0x11, 0x80003, 0x300)
r1 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x4)
r2 = wait4$auto(0xffffffffffffffff, &(0x7f0000000280)=0x7, 0x2, &(0x7f0000000100)={{0x3ff, 0xfffffffffffffff8}, {0x6, 0x963f}, 0x5, 0xfdba, 0xfffffffffffff934, 0x0, 0x8, 0x7, 0x3, 0x4, 0xffff, 0x6, 0x4, 0xbe1, 0x9, 0x8})
prctl$auto(0x3e, 0x0, r2, 0x1, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x4)
open(&(0x7f0000000100)='./cgroup\x00', 0x105040, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xaa102, 0x0)
ioperm$auto(0x7, 0x800, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input0/capabilities/ff\x00', 0x300, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000040)=""/225, 0xe1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
getsockopt$auto(0xffffffffffffffff, 0x29, 0xce, 0x0, 0x0)
socket(0x2, 0x1, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x7, 0x0, 0x0, 0x0, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x10, 0x2000c, 0x20000000000047ff, 0x14, 0xffffffffffffffff, 0x100000001)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0)

6.284086517s ago: executing program 0 (id=2350):
socket(0x10, 0x2, 0xc)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff)
adjtimex$auto(&(0x7f0000000300)={0x3, 0x0, 0x7fffffff, 0x55d, 0x12, 0xf2, 0x9, 0x0, 0x5, 0x0, 0xfffffffffffffffb, {0x9, 0xa7}, 0x9, 0x7, 0x1, 0x8, 0x0, 0x8, 0xce34, 0x6, 0x3, 0xfff, 0x3})
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
ioctl$auto_SG_GET_NUM_WAITING(r0, 0x227d, 0x0)
mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400005, 0x40df, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x3f00000000000000, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000080), 0x2140, 0x0)
mmap$auto(0x1, 0x2000a, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = socket(0x15, 0x5, 0x0)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sg1\x00', 0x224a00, 0x0)
ioctl$auto_SG_SET_FORCE_PACK_ID(r3, 0x227b, 0x0)
setsockopt$auto(r2, 0x114, 0x8, 0x0, 0x4)
close_range$auto(0x2, 0x8, 0x0)
link$auto(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')

6.204732675s ago: executing program 4 (id=2351):
socket(0x10, 0x2, 0xc)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff)
adjtimex$auto(&(0x7f0000000300)={0x3, 0x0, 0x7fffffff, 0x55d, 0x12, 0xf2, 0x9, 0x0, 0x5, 0x0, 0xfffffffffffffffb, {0x9, 0xa7}, 0x9, 0x7, 0x1, 0x8, 0x0, 0x8, 0xce34, 0x6, 0x3, 0xfff, 0x3})
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
ioctl$auto_SG_GET_NUM_WAITING(r0, 0x227d, 0x0)
mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400005, 0x40df, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0xf500000000000000, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000080), 0x2140, 0x0)
mmap$auto(0x1, 0x2000a, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = socket(0x15, 0x5, 0x0)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sg1\x00', 0x224a00, 0x0)
ioctl$auto_SG_SET_FORCE_PACK_ID(r3, 0x227b, 0x0)
setsockopt$auto(r2, 0x114, 0x8, 0x0, 0x4)
close_range$auto(0x2, 0x8, 0x0)
link$auto(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00')

5.704248456s ago: executing program 1 (id=2353):
socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f0000000080)=@nl=@kern={0x10, 0x0, 0x0, 0x800000}, 0x54)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
ioctl$auto(0xffffffffffffffff, 0xab07, 0xffffffffffffffff)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_NL80211_CMD_SET_COALESCE(0xffffffffffffffff, 0x0, 0x48050)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
semctl$auto(0x8, 0x806, 0x13, 0x46)
syz_genetlink_get_family_id$auto_thermal(0x0, 0xffffffffffffffff)
msgctl$auto_IPC_INFO(0x7, 0x3, &(0x7f0000000200)={{0x13b8, 0x0, 0xee01, 0x100, 0x3, 0x7fffffff, 0x3afa}, &(0x7f0000000180)=0x3, &(0x7f00000001c0)=0xa, 0x7, 0x3, 0x9, 0x4, 0x8, 0xffff, 0xfffd, 0x6498, @raw=0x71, @raw=0xa})
sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_GET(r1, 0x0, 0x4004061)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x10000)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/pcmC1D1p\x00', 0xc00, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xeffd)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7)

4.931170985s ago: executing program 0 (id=2354):
socket(0x10, 0x2, 0xc)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff)
adjtimex$auto(&(0x7f0000000300)={0x3, 0x0, 0x7ffffffd, 0x5, 0x12, 0xf1, 0x5, 0x0, 0x80000000, 0x0, 0xfffffffffffffffb, {0x9, 0xa7}, 0x9, 0x7, 0x1, 0xb, 0x0, 0x8, 0xce34, 0x5, 0x20004, 0x8000000000000fff, 0x9})
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
mmap$auto(0x4, 0x8, 0x10000, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
ioctl$auto_SG_GET_NUM_WAITING(r0, 0x227d, 0x0)
r1 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
write$auto_ftrace_subsystem_filter_fops_trace_events(r1, &(0x7f0000000240)="8f0447fef2afea7e35a0274f508a73119aff3bc0528f45fd27fea1bb4baa95f757cf9e57a14e04353736f4a23ce2a531c678ed7d6d28d43aaea2a69abe3e93453380adf35653f5875227ce319330afe5e4cc7601a8eccbb3729f9869ca35edaf6343e41fe91304ef53273ed0943b28e00e9c2f919d54fe990911e4c265c3d23eb6", 0x81)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_NS_GET_TGID_IN_PIDNS(r2, 0x8004b709, &(0x7f00000002c0)=0x1ff00000)
mmap$auto(0x0, 0x400005, 0x40df, 0x9b72, 0xffffffffffffffff, 0x7)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = socket(0x15, 0x5, 0x2)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sg1\x00', 0x371100, 0x0)
setsockopt$auto(r3, 0x114, 0x8, 0x0, 0x4)
modify_ldt$auto(0x0, 0x0, 0x5)
mmap$auto(0x0, 0x7, 0x1, 0xeb1, 0xffffffffffffffff, 0x8000)
r4 = bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_4={0x0, 0xffffffffffffffff, 0x40, r0}, 0xa3)
bpf$auto(0x3, &(0x7f00000001c0)=@query={@target_fd=r4, 0x1, 0x86e6, 0x9, 0x63, @count=0x4, 0x0, 0x6, 0x2, 0x10004, 0xb716}, 0xc)
mmap$auto(0x0, 0xc0, 0xe3, 0x100800eb1, 0x40000000000a1, 0x8000)
r5 = socket(0xa, 0x3, 0x73)
setsockopt$auto(r5, 0xff, 0x7, 0x0, 0xfff)
r6 = socket(0x1d, 0x3, 0x1)
getsockopt$auto(r6, 0x65, 0x1, 0xffffffffffffffff, 0x0)
socket(0x2, 0x801, 0x100)
socket(0xa, 0x3, 0x73)
pipe2$auto(&(0x7f00000000c0), 0x0)
writev$auto(0xca, &(0x7f0000000080)={&(0x7f00000000c0), 0x2}, 0x2000000000000003)

4.824017242s ago: executing program 3 (id=2355):
mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
bpf$auto(0xfffff011, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x4, 0xfab2, 0x468, 0x9, 0x2, 0x4, 0x2, 0x4, 0x200, 0x1fd, 0xb6, 0x4, 0x6, 0x3}, 0xa3)
writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x7e)
r1 = gettid()
kill$auto(r1, 0x11)
ioctl$auto_PPPIOCSCOMPRESS(r0, 0x4010744d, &(0x7f00000001c0)={0x0, 0x8, 0x80})
socket(0x29, 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x0)
statmount$auto(0x0, &(0x7f0000000380)={0x5, 0x1, 0x7, 0x7, 0x5, 0xfffffffffffffff8, 0x8, 0x7, 0x3, 0x9, 0x9, 0x80003, 0x4, 0x200000000001, 0xb4, 0x9, 0x8, 0x10007, 0x7, 0x10000000000, 0x0, 0x40003, 0x22000, 0x203, 0x9, 0x84, 0x0, 0xffffff9b, 0xb7, 0xfffffffc, 0x0, [0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x7, 0x6, 0x4, 0x8, 0xfffffffffffffffd, 0x0, 0x0, 0x10000, 0x8000000000000001, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x7, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], "f5c3b7bb6ae7a3f5bc51c312e69f3337b32e51569360b7d75005732961ac873511f6591e3617498a4ef7dd6570560a1ef01f034eb0a9c37b75e999bb53cbe7d28b6e39db5e77a30ecd0d0b3d16c75ac4e10f260222d5da3c60d378f3552379502473f8701129292265e6f6a9117822fc5028f450616f0ad9f82daad3b2ed73c8a7de8aeda0072bdd2f3d63fd1486d738061538169ba2b119b4fe1f04307660"}, 0x81, 0x3)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9)
mmap$auto(0x3, 0x400008, 0xb71, 0x13, r2, 0x7fffffffffffffff)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x101142, 0x0)
write$auto(0x3, 0x0, 0xfdef)
socket(0x10, 0x2, 0x0)
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, 0x0, 0x4)
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000)
futimesat$auto(0x2, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0xffffffffffffffff)
ioctl$auto(0x3, 0x4040ae77, 0x38)
close_range$auto(0x2, 0x8, 0x0)

4.628690738s ago: executing program 4 (id=2356):
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xf, 0x3, 0x2)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$auto_IMADDTIMER(r2, 0x80044940, &(0x7f00000001c0)=0x7)
socket(0x2, 0x0, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0)
mmap$auto(0x0, 0x402000c, 0x8, 0xebc, 0x401, 0x8010)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x50b880, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x4, 0x3, 0x15f4da0a, 0xffffffff, 0x3, 0xfffffffffffffff9, 0x208000001f, 0x2, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={<r3=>0x2, 0x4, 0x0, 0x2, 0x8, 0xc, 0x66b, 0x4, 0x1}, 0x6f4)
openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/cmdline\x00', 0x481, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000640)={'wlan1\x00'})
mmap$auto(0x0, 0x8, 0xdc, 0xeb1, 0x0, 0x8002)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04, 0x0)
waitid$auto_P_ALL(0x0, 0x468e, &(0x7f0000000580)={@siginfo_0_0={0x7, 0x4, 0x309, @_sigchld={r3, 0x0, 0x40, 0x4, 0xffffffffffff12b5}}}, 0x20003, &(0x7f0000000340)={{0x8, 0x20000000000005}, {0x6, 0xffe}, 0xfffffffffffff801, 0x1af, 0xfffffffffffffffa, 0x2, 0xfffffffffffff5a2, 0x5, 0x402, 0x2, 0xe6, 0x8, 0x7, 0x200006, 0x2, 0x8})
gettid()
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/asound/card1/pcm0p/sub0/xrun_injection\x00', 0x0, 0x0)
pread64$auto(r4, 0x0, 0x8, 0x7fff)
unshare$auto(0x40000080)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
madvise$auto(0x0, 0x20499d, 0x9)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000002b80)='/dev/snd/pcmC1D1p\x00', 0x2205, 0x0)

4.616644964s ago: executing program 1 (id=2357):
openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
r0 = io_uring_setup$auto(0xa, 0x0)
socketpair$auto(0x1e, 0x5, 0x8, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, 0x0, 0xc800)
r1 = socket(0xa, 0x1, 0x100)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
ioctl$auto(r2, 0xc0b45545, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
getsockopt$auto_SO_BPF_EXTENSIONS(r1, 0x0, 0x30, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', &(0x7f0000000240)=0x7)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/ext4/sda1/last_error_time\x00', 0x40000, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14be02, 0x0)
ioctl$auto_TIOCNOTTY2(r0, 0x5422, &(0x7f00000002c0)="136ab014d3c7ab0e3eb98f5e5e21dfcd5b3348b72bd278d05151045308ede60a81ca507f20985427014053b12abb9803b05e9d96685076b0c7faf4e1996f1fbb783300ccd71d43856965bc38ffe3e76d6fc5d996023d9a2905aec8430aafb251a7879ba07c5066b94b47e614591c650b95b8566b50db049ba4346450ffe595fcb47a5886f0b75a9e8bf80d0548eb94f893851bed715fb3ccd0e63a9ec5edb212c0d8536bbe23b977b10f6063")
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000380)='/proc/thread-self/pagemap\x00', 0x21002, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$auto_transaction_log_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x48402, 0x0)
preadv$auto(r6, &(0x7f0000000440)={0x0, 0x9}, 0x40000000000003, 0x19d, 0xa)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(0x1, 0x1, 0x14, &(0x7f0000000000)='\x00', 0xbb)
shutdown$auto(r5, 0x5)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000040)=""/217, 0xd9)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
ioctl$auto(r6, 0x1ff, r1)
r7 = socket(0x2a, 0x2, 0x0)
ioctl$auto(r7, 0x8912, 0x38)

4.496379772s ago: executing program 0 (id=2358):
r0 = open(&(0x7f00009e1000)='./file0\x00', 0xc162, 0x0)
setresuid$auto(0x8, 0x8, 0x0)
r1 = setfsuid$auto(0x0)
setuid$auto(r1)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x101000, 0x0)
cachestat$auto(r2, &(0x7f00000000c0)={0x401, 0x428a}, &(0x7f0000000140)={0x400000008, 0x3, 0x18, 0x5, 0x4}, 0x0)
mmap$auto(0x0, 0x8, 0xdc, 0x9b72, r0, 0x8000)
mmap$auto(0xf000, 0x6, 0x2, 0x9b72, 0x2, 0x8000)
syz_clone3(&(0x7f0000000300)={0x100080, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58)
write$auto(0x3, 0x0, 0xfdef)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r0)
sendmsg$auto_NL80211_CMD_UPDATE_CONNECT_PARAMS(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)={0x9d0, r3, 0x800, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_MLO_LINKS={0x8fc, 0x138, 0x0, 0x1, [{0x8ec, 0x0, 0x0, 0x1, [@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "792a4f0e9c33bd0a1ae7fa61bbeb13ec929a31e65d0169ef"}, @NL80211_ATTR_BEACON_TAIL={0x8ca, 0xf, "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"}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_BSS_HT_OPMODE={0x6, 0x6d, 0x6}]}]}, @NL80211_ATTR_MLO_LINK_DISABLED={0x4}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0xf}, @NL80211_ATTR_STA_SUPPORTED_CHANNELS={0xab, 0xbd, "53aa89e3f7344dffa8034f88a85987acbfc15ebecf1b2020daafb7ded087c4ab0084f6255914ee3983a205274c92e08ea60b40eeafa0c82503e99ee7c1be44fd3fd7625449ea18d1ede6be73298b31f211e1315e56dac1f683bc4195a15e07804b46341a01c6b90cead766453d21055cfc547694998c36946921981667b5db2614752a9f762f51a84686ef07712e66feee2fc988018860240add4ed5a28d9b30830ca55d339526"}, @NL80211_ATTR_ASSOC_SPP_AMSDU={0x4}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}]}, 0x9d0}}, 0x40000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/vhci_hcd.0/usb9/9-0:1.0/usb9-port5/power/autosuspend_delay_ms\x00', 0x0, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x2, 0x0)
socket(0x2c, 0x3, 0x0)
accept$auto(0x3, 0x0, 0x0)
io_uring_register$auto_IORING_REGISTER_BUFFERS2(r4, 0xf, &(0x7f00000000c0)="cf2bcdb152dfae4cd3ccbe43340ed6253ce8d7b10991fc541e2c4f43c529f489d0cab0e10a23cb78aa0b403a88d2ed29bbf541ce38344065f3ab3f5f87f2b42d5789d1f233c0ad1069cddf3690528f0492a651a4eba0d5e59ff0b30ff61f072dc8d0a0b6635f90f8935c1cebe47851101bfb0e79d8208b3da5dcf9701fe0da6cc898d2c78b3bf02e5f5a2cab177f0438e884c0b8721c5747b63c4d884b0fc1259e60bdb819b6e978d0096128ce5c9daf6af06cee78a659e66dfad8", 0x1)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/neigh/sit0/app_solicit\x00', 0x40000, 0x0)
sendfile$auto(r4, r5, 0x0, 0x4)

4.02201948s ago: executing program 0 (id=2359):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2, 0x1, 0x106)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x82, 0x0)
socket(0x2, 0x1, 0x0)
socket(0x2, 0x5, 0x0)
r1 = epoll_create$auto(0x7)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto(0x5, 0x1, r2, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@token_create, 0x6f6)
mount$auto(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='nfs\x00\x00', 0x200, &(0x7f00000001c0))
capset$auto(0x0, 0x0)
epoll_ctl$auto(0x5, 0x3, r2, 0x0)
epoll_wait$auto(r1, 0x0, 0xe007, 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
writev$auto(r3, 0x0, 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x6, 0x2, 0x6)
semctl$auto_SETVAL(0x0, 0xfffffff5, 0x10, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)

3.466518875s ago: executing program 1 (id=2360):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$auto(r0, 0x29, 0x14, 0x0, 0x56b)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
r1 = socket(0x23, 0x80805, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x802, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, 0x0, 0xc800)
socket(0xa, 0x1, 0x100)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x2, 0x8000)
r4 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
write$auto(r4, &(0x7f0000000340)='3\x00', 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(0x3, 0xc060ff0b, r1)

2.417955998s ago: executing program 4 (id=2361):
r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948f, 0x803, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0)
ioctl$auto_SNDCTL_DSP_GETTRIGGER(r3, 0x80045010, &(0x7f0000004440))
ioctl$auto_VHOST_SET_LOG_FD2(r0, 0x4004af07, &(0x7f00000001c0)=<r4=>r0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r4, 0x8000)
r5 = open_by_handle_at$auto(r2, &(0x7f00000002c0)={0x1b, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa15504a19b9a"}, 0x7d)
setsockopt$auto(r5, 0x1, 0x1021, 0x0, 0xd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x100000000, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r6, 0x0, 0xb4d3)
r7 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x0, 0x0)
ioctl$auto(r7, 0x900064b5, 0xc14)
write$auto(0x3, 0x0, 0xffd8)

1.980488601s ago: executing program 1 (id=2362):
socket(0x10, 0x2, 0xc)
close_range$auto(0x2, 0x8, 0x2)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vcsa1\x00', 0x20042, 0x0)
openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/trigger\x00', 0x8400, 0x0)
select$auto(0xa, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0xc, 0x5, 0x7, 0x6, 0x1f2, 0x9, 0xe8, 0x400000000ff, 0xa, 0x80, 0xaab, 0x5, 0x7]}, 0x0, 0x0)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), 0xffffffffffffffff)
adjtimex$auto(&(0x7f0000000300)={0x3, 0x0, 0x7fffffff, 0x55d, 0x12, 0xf2, 0x9, 0x0, 0x5, 0x0, 0xfffffffffffffffb, {0x9, 0xa7}, 0x9, 0x7, 0x1, 0x8, 0x0, 0x8, 0xce34, 0x6, 0x3, 0xfff, 0x3})
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
mmap$auto(0x0, 0x800002020009, 0x1000000003, 0x18, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
ioctl$auto_SG_GET_NUM_WAITING(r0, 0x227d, 0x0)
r1 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
write$auto_ftrace_subsystem_filter_fops_trace_events(r1, &(0x7f0000000240)="8f0447fef2afea7e35a0274f508a73119aff3bc0528f45fd27fea1bb4baa95f757cf9e57a14e04353736f4a23ce2a531c678ed7d6d28d43aaea2a69abe3e93453380adf35653f5875227ce319330afe5e4cc7601a8eccbb3729f9869ca35edaf6343e41fe91304ef53273ed0943b28e00e9c2f919d54fe990911e4c265c3d23eb66229", 0x83)
mmap$auto(0x9, 0x2020009, 0x100005, 0x9000100eb1, 0xfffffffffffffffa, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_NS_GET_TGID_IN_PIDNS(r2, 0x8004b709, &(0x7f00000002c0)=0x1ff00000)
mmap$auto(0x0, 0x400005, 0x40df, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000080), 0x2140, 0x0)
r3 = socket(0x15, 0x5, 0x2)
r4 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sg1\x00', 0x224a00, 0x0)
ioctl$auto_SG_SET_FORCE_PACK_ID(r4, 0x227b, 0x0)
setsockopt$auto(r3, 0x114, 0x8, 0x0, 0x4)
modify_ldt$auto(0x0, 0x0, 0x5)
mmap$auto(0x2, 0x100, 0x0, 0xeb5, 0xffffffffffffffff, 0x6)
r5 = socket(0x1d, 0x3, 0x1)
getsockopt$auto(r5, 0x65, 0x1, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

1.500184746s ago: executing program 0 (id=2363):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) (async)
prctl$auto(0x0, 0x1, 0x0, 0x5850, 0x6)
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000140)="58fcb282bcbc38bfaef257e019406ea6c445cd4f7f7662ac0f8834baa918d5b3cea133243c4f2b9a39e536b67f5a1a2bfdf589da2b1c980e1ce53883444996d1721d7f3ae627c6c604000000000000007910fbc02d899ab93d002d849884a5377ff11be2ed012110f2f520") (async)
r1 = socket(0x10, 0x2, 0x4)
write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/ip6gre0/power/control\x00', 0x10b142, 0x0) (async)
r2 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0xc, 0x3, 0x0, 0x0, 0x2)
socket(0x28, 0x6, 0x0) (async)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async)
getsockopt$auto(r2, 0x4000009, 0x0, &(0x7f0000000080)='\x00', &(0x7f0000000200)=0x1691) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r4, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/block/nbd4/queue/optimal_io_size\x00', 0x40000, 0x0)
read$auto(r5, 0x0, 0x20) (async, rerun: 64)
write$auto(r4, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9 \xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7) (async, rerun: 64)
mmap$auto(0x800000000000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x10, 0x2, 0x0) (async, rerun: 32)
r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
capset$auto(0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r6, 0x40045010, &(0x7f0000000080)) (async, rerun: 64)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r6, 0x40045010, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000002) (async)
socket(0x3, 0x5, 0x0)

1.123207893s ago: executing program 1 (id=2364):
openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x10020400000000)
io_uring_setup$auto(0xa, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, 0x0, 0xc800)
r0 = socket(0xa, 0x1, 0x100)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
getsockopt$auto_SO_BPF_EXTENSIONS(r0, 0x0, 0x30, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', &(0x7f0000000240)=0x7)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/ext4/sda1/last_error_time\x00', 0x40000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000040)=""/217, 0xd9)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = socket(0x2a, 0x2, 0x0)
ioctl$auto(r3, 0x8912, 0x38)

1.025617401s ago: executing program 4 (id=2365):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
clone$auto(0x81000005, 0x6, 0xfffffffffffffffd, 0xffffffffffffffff, 0x80000001)
mmap$auto(0x10000000000000, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

130.962235ms ago: executing program 4 (id=2366):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="110b27bd7000ffdbdf250900000800030000", @ANYRES32=0x0, @ANYBLOB="080006"], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x1000) (async)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc045}, 0x4) (async, rerun: 64)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async, rerun: 64)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_0={0x8000, 0x1, 0x8, 0x7, 0x5, 0xffffffffffffffff, 0x80000001, "787d66da4a620eab7f736e854ef61529", 0x0, 0xffffffffffffffff, 0x7, 0xffff4e8b, 0x2, 0x1}, 0x7) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090) (async)
r0 = socket(0x10, 0x2, 0x0) (async)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) (async)
ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
shmctl$auto(0x0, 0xd, 0x0) (async)
getrandom$auto(0x0, 0xe06, 0x3) (async, rerun: 64)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0) (async, rerun: 64)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
sendfile$auto(r1, 0x3, 0x0, 0xc03) (async)
setreuid$auto(0x0, 0x0) (async, rerun: 32)
shmget$auto(0x8, 0x10565, 0x7ff) (async, rerun: 32)
shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa)
shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)

0s ago: executing program 1 (id=2367):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f00000005c0)="671f264add69b6440843b66668ef000000df2669e6f9cd237232b20e1f63ac8caf4b9b4cd101", 0x26)

kernel console output (not intermixed with test programs):

31] RSP: 002b:00007ffad388cfe0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  570.705199][T11931] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007ffad298d550
[  570.705216][T11931] RDX: 0000000000000002 RSI: 00007ffad2a120d3 RDI: 00000000ffffff9c
[  570.705233][T11931] RBP: 00007ffad2a120d3 R08: 0000000000000000 R09: 00007ffad388e000
[  570.705250][T11931] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005
[  570.705265][T11931] R13: 00007ffad2bc6038 R14: 00007ffad2bc5fa0 R15: 00007ffc17157ac8
[  570.705301][T11931]  </TASK>
[  572.233732][T11944] FAULT_INJECTION: forcing a failure.
[  572.233732][T11944] name fail_futex, interval 1, probability 0, space 0, times 0
[  572.300729][T11944] CPU: 1 UID: 0 PID: 11944 Comm: syz.0.1165 Not tainted syzkaller #0 PREEMPT(full) 
[  572.300763][T11944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  572.300778][T11944] Call Trace:
[  572.300787][T11944]  <TASK>
[  572.300797][T11944]  dump_stack_lvl+0x16c/0x1f0
[  572.300839][T11944]  should_fail_ex+0x512/0x640
[  572.300884][T11944]  get_futex_key+0x1d0/0x1560
[  572.300921][T11944]  ? __pfx_get_futex_key+0x10/0x10
[  572.300957][T11944]  ? mmap_region+0x1ee/0x3f0
[  572.300990][T11944]  ? __get_unmapped_area+0x267/0x440
[  572.301034][T11944]  futex_wake+0xea/0x530
[  572.301078][T11944]  ? __pfx_futex_wake+0x10/0x10
[  572.301124][T11944]  ? up_write+0x1b2/0x520
[  572.301171][T11944]  do_futex+0x1e3/0x350
[  572.301207][T11944]  ? __pfx_do_futex+0x10/0x10
[  572.301262][T11944]  __x64_sys_futex+0x1e0/0x4c0
[  572.301304][T11944]  ? __pfx___x64_sys_futex+0x10/0x10
[  572.301338][T11944]  ? ksys_mmap_pgoff+0x85/0x5c0
[  572.301377][T11944]  ? xfd_validate_state+0x61/0x180
[  572.301418][T11944]  ? __pfx_do_pwritev+0x10/0x10
[  572.301458][T11944]  do_syscall_64+0xcd/0x490
[  572.301503][T11944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.301532][T11944] RIP: 0033:0x7f7edcb8ebe9
[  572.301554][T11944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  572.301582][T11944] RSP: 002b:00007f7eddaad0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  572.301608][T11944] RAX: ffffffffffffffda RBX: 00007f7edcdc5fa8 RCX: 00007f7edcb8ebe9
[  572.301627][T11944] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7edcdc5fac
[  572.301645][T11944] RBP: 00007f7edcdc5fa0 R08: 00007f7eddaae000 R09: 0000000000000000
[  572.301664][T11944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  572.301681][T11944] R13: 00007f7edcdc6038 R14: 00007ffc324dd630 R15: 00007ffc324dd718
[  572.301717][T11944]  </TASK>
[  572.491927][    C1] vkms_vblank_simulate: vblank timer overrun
[  572.567780][T11944] ubi0: attaching mtd0
[  572.578428][T11944] ubi0: scanning is finished
[  572.593581][T11944] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  572.757062][T11944] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  580.379133][T12019] Process accounting resumed
[  582.166785][T12059] netlink: 17 bytes leftover after parsing attributes in process `syz.3.1190'.
[  586.392968][T12106] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007
[  588.925435][T12130] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1206'.
[  590.610054][T12150] zero sized request
[  590.639854][T11428] syz.3.1047 (11428) used greatest stack depth: 17816 bytes left
[  591.042304][T12147] zswap: compressor 000 not available
[  591.988206][T12166] input: f�
 as /devices/virtual/input/input13
[  592.651414][T12166] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1212'.
[  598.446902][T12233] random: crng reseeded on system resumption
[  603.437898][T12270] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1238'.
[  605.127116][T12289] netlink: 268 bytes leftover after parsing attributes in process `syz.4.1242'.
[  607.183004][T12309] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1247'.
[  607.203404][T12309] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  607.962835][T12324] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14
[  608.319880][T12326] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15
[  609.349719][T12324] HfR: entered promiscuous mode
[  609.430980][T12326] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1251'.
[  609.493978][T12326] HfR: left promiscuous mode
[  610.272038][T12326] Process accounting paused
[  612.953469][T12381] can: request_module (can-proto-0) failed.
[  620.638045][T12491] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1286'.
[  620.706814][T12492] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1286'.
[  621.357854][T12492] team0: Port device team_slave_1 removed
[  624.217814][T12518] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  624.514262][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  624.520900][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  629.145129][T12563] FAULT_INJECTION: forcing a failure.
[  629.145129][T12563] name fail_futex, interval 1, probability 0, space 0, times 0
[  629.194413][T12563] CPU: 0 UID: 0 PID: 12563 Comm: syz.0.1302 Not tainted syzkaller #0 PREEMPT(full) 
[  629.194447][T12563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  629.194461][T12563] Call Trace:
[  629.194469][T12563]  <TASK>
[  629.194478][T12563]  dump_stack_lvl+0x16c/0x1f0
[  629.194517][T12563]  should_fail_ex+0x512/0x640
[  629.194556][T12563]  get_futex_key+0x1d0/0x1560
[  629.194590][T12563]  ? __pfx_get_futex_key+0x10/0x10
[  629.194619][T12563]  ? kasan_quarantine_put+0x10a/0x240
[  629.194654][T12563]  ? lockdep_hardirqs_on+0x7c/0x110
[  629.194693][T12563]  futex_wake+0xea/0x530
[  629.194733][T12563]  ? __pfx_futex_wake+0x10/0x10
[  629.194780][T12563]  ? ksys_write+0x190/0x250
[  629.194808][T12563]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  629.194837][T12563]  do_futex+0x1e3/0x350
[  629.194869][T12563]  ? __pfx_do_futex+0x10/0x10
[  629.194908][T12563]  __x64_sys_futex+0x1e0/0x4c0
[  629.194959][T12563]  ? fput+0x9b/0xd0
[  629.194993][T12563]  ? __pfx___x64_sys_futex+0x10/0x10
[  629.195024][T12563]  ? ksys_write+0x1ac/0x250
[  629.195052][T12563]  ? __pfx_ksys_write+0x10/0x10
[  629.195099][T12563]  do_syscall_64+0xcd/0x490
[  629.195141][T12563]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  629.195174][T12563] RIP: 0033:0x7f7edcb8ebe9
[  629.195198][T12563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  629.195237][T12563] RSP: 002b:00007f7eddaad0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  629.195269][T12563] RAX: ffffffffffffffda RBX: 00007f7edcdc5fa8 RCX: 00007f7edcb8ebe9
[  629.195291][T12563] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7edcdc5fac
[  629.195310][T12563] RBP: 00007f7edcdc5fa0 R08: 00007f7eddaae000 R09: 0000000000000000
[  629.195330][T12563] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  629.195348][T12563] R13: 00007f7edcdc6038 R14: 00007ffc324dd630 R15: 00007ffc324dd718
[  629.195388][T12563]  </TASK>
[  629.838431][T12583] FAULT_INJECTION: forcing a failure.
[  629.838431][T12583] name failslab, interval 1, probability 0, space 0, times 0
[  629.851517][T12583] CPU: 0 UID: 0 PID: 12583 Comm: syz.4.1306 Not tainted syzkaller #0 PREEMPT(full) 
[  629.851555][T12583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  629.851574][T12583] Call Trace:
[  629.851584][T12583]  <TASK>
[  629.851595][T12583]  dump_stack_lvl+0x16c/0x1f0
[  629.851646][T12583]  should_fail_ex+0x512/0x640
[  629.851687][T12583]  ? fs_reclaim_acquire+0xae/0x150
[  629.851734][T12583]  ? tomoyo_encode2+0x100/0x3e0
[  629.851774][T12583]  should_failslab+0xc2/0x120
[  629.851820][T12583]  __kmalloc_noprof+0xd2/0x510
[  629.851855][T12583]  ? d_absolute_path+0x136/0x1a0
[  629.851908][T12583]  tomoyo_encode2+0x100/0x3e0
[  629.851955][T12583]  tomoyo_encode+0x29/0x50
[  629.851996][T12583]  tomoyo_realpath_from_path+0x18f/0x6e0
[  629.852052][T12583]  tomoyo_path_number_perm+0x245/0x580
[  629.852093][T12583]  ? tomoyo_path_number_perm+0x237/0x580
[  629.852135][T12583]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  629.852176][T12583]  ? find_held_lock+0x2b/0x80
[  629.852244][T12583]  ? find_held_lock+0x2b/0x80
[  629.852274][T12583]  ? hook_file_ioctl_common+0x145/0x410
[  629.852326][T12583]  ? __fget_files+0x20e/0x3c0
[  629.852376][T12583]  security_file_ioctl+0x9b/0x240
[  629.852415][T12583]  __x64_sys_ioctl+0xb7/0x210
[  629.852456][T12583]  do_syscall_64+0xcd/0x490
[  629.852493][T12583]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  629.852517][T12583] RIP: 0033:0x7fb74978ebe9
[  629.852536][T12583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  629.852559][T12583] RSP: 002b:00007fb74a531038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  629.852581][T12583] RAX: ffffffffffffffda RBX: 00007fb7499c6090 RCX: 00007fb74978ebe9
[  629.852598][T12583] RDX: 0000200000000000 RSI: 000000004008af03 RDI: 000000000000000a
[  629.852612][T12583] RBP: 00007fb74a531090 R08: 0000000000000000 R09: 0000000000000000
[  629.852627][T12583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  629.852641][T12583] R13: 00007fb7499c6128 R14: 00007fb7499c6090 R15: 00007fff2c56ea68
[  629.852671][T12583]  </TASK>
[  630.124146][T12583] ERROR: Out of memory at tomoyo_realpath_from_path.
[  632.277705][T12563] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  633.060377][T12628] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1313'.
[  633.090174][T10461] Bluetooth: hci2: unexpected subevent 0x03 length: 253 > 9
[  634.069267][T12646] FAULT_INJECTION: forcing a failure.
[  634.069267][T12646] name failslab, interval 1, probability 0, space 0, times 0
[  634.119885][T12646] CPU: 0 UID: 0 PID: 12646 Comm: syz.1.1317 Not tainted syzkaller #0 PREEMPT(full) 
[  634.119927][T12646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  634.119945][T12646] Call Trace:
[  634.119955][T12646]  <TASK>
[  634.119968][T12646]  dump_stack_lvl+0x16c/0x1f0
[  634.120015][T12646]  should_fail_ex+0x512/0x640
[  634.120059][T12646]  ? fs_reclaim_acquire+0xae/0x150
[  634.120108][T12646]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  634.120156][T12646]  should_failslab+0xc2/0x120
[  634.120200][T12646]  __kmalloc_noprof+0xd2/0x510
[  634.120248][T12646]  tomoyo_realpath_from_path+0xc2/0x6e0
[  634.120313][T12646]  tomoyo_check_open_permission+0x2ab/0x3c0
[  634.120356][T12646]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  634.120445][T12646]  ? do_raw_spin_lock+0x12c/0x2b0
[  634.120507][T12646]  tomoyo_file_open+0x6b/0x90
[  634.120540][T12646]  security_file_open+0x84/0x1e0
[  634.120586][T12646]  do_dentry_open+0x596/0x1530
[  634.120643][T12646]  vfs_open+0x82/0x3f0
[  634.120695][T12646]  path_openat+0x1de4/0x2cb0
[  634.120757][T12646]  ? __pfx_path_openat+0x10/0x10
[  634.120807][T12646]  do_filp_open+0x20b/0x470
[  634.120846][T12646]  ? __pfx_do_filp_open+0x10/0x10
[  634.120912][T12646]  ? alloc_fd+0x471/0x7d0
[  634.120957][T12646]  do_sys_openat2+0x11b/0x1d0
[  634.121006][T12646]  ? __pfx_do_sys_openat2+0x10/0x10
[  634.121059][T12646]  ? __fget_files+0x20e/0x3c0
[  634.121103][T12646]  __x64_sys_openat+0x174/0x210
[  634.121153][T12646]  ? __pfx___x64_sys_openat+0x10/0x10
[  634.121203][T12646]  ? ksys_write+0x1ac/0x250
[  634.121254][T12646]  do_syscall_64+0xcd/0x490
[  634.121300][T12646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  634.121332][T12646] RIP: 0033:0x7f14bd18ebe9
[  634.121357][T12646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  634.121389][T12646] RSP: 002b:00007f14be0b0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  634.121419][T12646] RAX: ffffffffffffffda RBX: 00007f14bd3c6090 RCX: 00007f14bd18ebe9
[  634.121440][T12646] RDX: 0000000000024600 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  634.121461][T12646] RBP: 00007f14be0b0090 R08: 0000000000000000 R09: 0000000000000000
[  634.121481][T12646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  634.121500][T12646] R13: 00007f14bd3c6128 R14: 00007f14bd3c6090 R15: 00007ffcd3d2f738
[  634.121543][T12646]  </TASK>
[  634.121778][T12646] ERROR: Out of memory at tomoyo_realpath_from_path.
[  635.700264][T12674] kafs: addr_prefs: Invalid Command
[  635.752951][T12674] kafs: addr_prefs: Invalid Command
[  636.115425][T12683] netlink: 268 bytes leftover after parsing attributes in process `syz.4.1327'.
[  640.305994][T12720] Process accounting resumed
[  643.019505][T12754] kAFS: unparsable volume name
[  643.977219][T12761] vivid-003: =================  START STATUS  =================
[  643.998725][T12761] vivid-003: Radio HW Seek Mode: Bounded
[  644.018852][T12761] vivid-003: Radio Programmable HW Seek: false
[  644.040104][T12761] vivid-003: RDS Rx I/O Mode: Block I/O
[  644.098445][T12761] vivid-003: Generate RBDS Instead of RDS: false
[  644.134121][T12761] vivid-003: RDS Reception: true
[  644.162344][T12761] vivid-003: RDS Program Type: 0 inactive
[  644.205269][T12763] FAULT_INJECTION: forcing a failure.
[  644.205269][T12763] name failslab, interval 1, probability 0, space 0, times 0
[  644.241243][T12761] vivid-003: RDS PS Name:  inactive
[  644.246965][T12763] CPU: 1 UID: 0 PID: 12763 Comm: syz.4.1346 Not tainted syzkaller #0 PREEMPT(full) 
[  644.247013][T12763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  644.247031][T12763] Call Trace:
[  644.247042][T12763]  <TASK>
[  644.247053][T12763]  dump_stack_lvl+0x16c/0x1f0
[  644.247100][T12763]  should_fail_ex+0x512/0x640
[  644.247144][T12763]  ? __kmalloc_noprof+0xbf/0x510
[  644.247184][T12763]  ? sk_prot_alloc+0x1a8/0x2a0
[  644.247211][T12763]  should_failslab+0xc2/0x120
[  644.247253][T12763]  __kmalloc_noprof+0xd2/0x510
[  644.247300][T12763]  sk_prot_alloc+0x1a8/0x2a0
[  644.247332][T12763]  sk_alloc+0x36/0xc20
[  644.247374][T12763]  caif_create+0x10b/0x430
[  644.247414][T12763]  __sock_create+0x335/0x8d0
[  644.247455][T12763]  __sys_socket+0x14d/0x260
[  644.247489][T12763]  ? __pfx___sys_socket+0x10/0x10
[  644.247523][T12763]  ? xfd_validate_state+0x61/0x180
[  644.247569][T12763]  ? __pfx_ksys_write+0x10/0x10
[  644.247615][T12763]  __x64_sys_socket+0x72/0xb0
[  644.247645][T12763]  ? lockdep_hardirqs_on+0x7c/0x110
[  644.247681][T12763]  do_syscall_64+0xcd/0x490
[  644.247729][T12763]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  644.247762][T12763] RIP: 0033:0x7fb74978ebe9
[  644.247787][T12763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  644.247823][T12763] RSP: 002b:00007fb7479f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  644.247853][T12763] RAX: ffffffffffffffda RBX: 00007fb7499c6180 RCX: 00007fb74978ebe9
[  644.247872][T12763] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000025
[  644.247891][T12763] RBP: 00007fb749811e19 R08: 0000000000000000 R09: 0000000000000000
[  644.247910][T12763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  644.247929][T12763] R13: 00007fb7499c6218 R14: 00007fb7499c6180 R15: 00007fff2c56ea68
[  644.247978][T12763]  </TASK>
[  644.248738][T12761] vivid-003: RDS Radio Text: 
[  644.386898][    C1] vkms_vblank_simulate: vblank timer overrun
[  644.473687][T12761]  inactive
[  644.481969][T12761] vivid-003: RDS Traffic Announcement: false inactive
[  644.505750][T12761] vivid-003: RDS Traffic Program: false inactive
[  644.512653][T12761] vivid-003: RDS Music: false inactive
[  644.523606][T12761] vivid-003: ==================  END STATUS  ==================
[  644.742751][T12766] vivid-003: =================  START STATUS  =================
[  644.757926][T12766] vivid-003: Radio HW Seek Mode: Bounded
[  644.764255][T12766] vivid-003: Radio Programmable HW Seek: false
[  644.770966][T12766] vivid-003: RDS Rx I/O Mode: Block I/O
[  644.781300][T12766] vivid-003: Generate RBDS Instead of RDS: false
[  644.858998][T12766] vivid-003: RDS Reception: true
[  644.865811][T12766] vivid-003: RDS Program Type: 0 inactive
[  644.872189][T12766] vivid-003: RDS PS Name:  inactive
[  644.877466][T12766] vivid-003: RDS Radio Text:  inactive
[  644.921774][T12766] vivid-003: RDS Traffic Announcement: false inactive
[  644.936972][T12766] vivid-003: RDS Traffic Program: false inactive
[  644.943881][T12766] vivid-003: RDS Music: false inactive
[  644.949557][T12766] vivid-003: ==================  END STATUS  ==================
[  646.660516][T12796] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1352'.
[  646.684919][T12796] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  648.005625][T12816] FAULT_INJECTION: forcing a failure.
[  648.005625][T12816] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  648.145407][T12816] CPU: 0 UID: 0 PID: 12816 Comm: syz.4.1354 Not tainted syzkaller #0 PREEMPT(full) 
[  648.145441][T12816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  648.145456][T12816] Call Trace:
[  648.145463][T12816]  <TASK>
[  648.145472][T12816]  dump_stack_lvl+0x16c/0x1f0
[  648.145508][T12816]  should_fail_ex+0x512/0x640
[  648.145547][T12816]  strncpy_from_user+0x3b/0x2e0
[  648.145581][T12816]  getname_flags.part.0+0x8f/0x550
[  648.145643][T12816]  getname_flags+0x93/0xf0
[  648.145678][T12816]  do_sys_openat2+0xb8/0x1d0
[  648.145717][T12816]  ? __pfx_do_sys_openat2+0x10/0x10
[  648.145757][T12816]  ? __pfx___might_resched+0x10/0x10
[  648.145790][T12816]  __x64_sys_openat+0x174/0x210
[  648.145830][T12816]  ? __pfx___x64_sys_openat+0x10/0x10
[  648.145881][T12816]  do_syscall_64+0xcd/0x490
[  648.145918][T12816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  648.145954][T12816] RIP: 0033:0x7fb74978ebe9
[  648.145972][T12816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  648.145995][T12816] RSP: 002b:00007fb74a531038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  648.146017][T12816] RAX: ffffffffffffffda RBX: 00007fb7499c6090 RCX: 00007fb74978ebe9
[  648.146032][T12816] RDX: 0000000000024401 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  648.146047][T12816] RBP: 00007fb749811e19 R08: 0000000000000000 R09: 0000000000000000
[  648.146062][T12816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  648.146076][T12816] R13: 00007fb7499c6128 R14: 00007fb7499c6090 R15: 00007fff2c56ea68
[  648.146106][T12816]  </TASK>
[  656.495133][T12883] can: request_module (can-proto-0) failed.
[  670.232884][T12982] Process accounting paused
[  674.989461][T13072] zero sized request
[  675.293284][T13072] zswap: compressor 000 not available
[  682.621542][T13158] : renamed from gre0 (while UP)
[  683.272117][T13137] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  685.629153][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  685.635813][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  689.590863][T13227] zero sized request
[  689.861465][T13227] zswap: compressor 000 not available
[  690.792979][   T30] audit: type=1800 audit(34135.510:9): pid=13246 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1453" name="features" dev="configfs" ino=41575 res=0 errno=0
[  692.417513][T13264] zero sized request
[  692.883376][T13264] zswap: compressor 000 not available
[  700.443253][T13359] zero sized request
[  700.632586][T13337] Process accounting resumed
[  700.923197][T13359] zswap: compressor 000 not available
[  707.738528][T13452] random: crng reseeded on system resumption
[  710.986103][T13488] bridge0: port 3(team0) entered blocking state
[  710.994788][T13488] bridge0: port 3(team0) entered disabled state
[  711.037157][T13488] team0: entered allmulticast mode
[  711.061179][T13488] team0: entered promiscuous mode
[  714.399089][T13524] zero sized request
[  714.754874][T13524] zswap: compressor 000 not available
[  714.793520][T13535] zero sized request
[  715.274152][T13535] zswap: compressor 000 not available
[  718.131194][T13574] bridge0: port 3(team0) entered blocking state
[  718.137650][T13574] bridge0: port 3(team0) entered disabled state
[  718.148107][T13574] team0: entered allmulticast mode
[  718.167044][T13574] team_slave_0: entered allmulticast mode
[  718.262086][T13574] team0: entered promiscuous mode
[  718.269299][T13574] team_slave_0: entered promiscuous mode
[  718.303329][T13574] bridge0: port 3(team0) entered blocking state
[  718.309822][T13574] bridge0: port 3(team0) entered forwarding state
[  718.503294][T13577] zero sized request
[  718.881367][T13577] zswap: compressor 000 not available
[  726.783951][T13678] FAULT_INJECTION: forcing a failure.
[  726.783951][T13678] name fail_futex, interval 1, probability 0, space 0, times 0
[  726.798188][T13678] CPU: 1 UID: 0 PID: 13678 Comm: syz.1.1563 Not tainted syzkaller #0 PREEMPT(full) 
[  726.798235][T13678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  726.798254][T13678] Call Trace:
[  726.798264][T13678]  <TASK>
[  726.798276][T13678]  dump_stack_lvl+0x16c/0x1f0
[  726.798326][T13678]  should_fail_ex+0x512/0x640
[  726.798379][T13678]  get_futex_key+0x1d0/0x1560
[  726.798425][T13678]  ? __pfx_get_futex_key+0x10/0x10
[  726.798469][T13678]  ? mmap_region+0x1ee/0x3f0
[  726.798508][T13678]  ? __get_unmapped_area+0x267/0x440
[  726.798563][T13678]  futex_wake+0xea/0x530
[  726.798616][T13678]  ? __pfx_futex_wake+0x10/0x10
[  726.798687][T13678]  ? up_write+0x1b2/0x520
[  726.798741][T13678]  do_futex+0x1e3/0x350
[  726.798783][T13678]  ? __pfx_do_futex+0x10/0x10
[  726.798835][T13678]  __x64_sys_futex+0x1e0/0x4c0
[  726.798884][T13678]  ? __pfx___x64_sys_futex+0x10/0x10
[  726.798932][T13678]  ? ksys_mmap_pgoff+0x85/0x5c0
[  726.798977][T13678]  ? xfd_validate_state+0x61/0x180
[  726.799023][T13678]  ? __pfx_do_pwritev+0x10/0x10
[  726.799071][T13678]  do_syscall_64+0xcd/0x490
[  726.799118][T13678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  726.799151][T13678] RIP: 0033:0x7f14bd18ebe9
[  726.799176][T13678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  726.799208][T13678] RSP: 002b:00007f14be0d10e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  726.799239][T13678] RAX: ffffffffffffffda RBX: 00007f14bd3c5fa8 RCX: 00007f14bd18ebe9
[  726.799260][T13678] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f14bd3c5fac
[  726.799297][T13678] RBP: 00007f14bd3c5fa0 R08: 00007f14be0d2000 R09: 0000000000000000
[  726.799317][T13678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  726.799337][T13678] R13: 00007f14bd3c6038 R14: 00007ffcd3d2f650 R15: 00007ffcd3d2f738
[  726.799378][T13678]  </TASK>
[  730.744708][T13707] Process accounting paused
[  731.154661][T13727] zero sized request
[  731.498631][T13727] zswap: compressor 000 not available
[  732.182900][T13746] FAULT_INJECTION: forcing a failure.
[  732.182900][T13746] name failslab, interval 1, probability 0, space 0, times 0
[  732.286942][T13746] CPU: 1 UID: 0 PID: 13746 Comm: syz.0.1580 Not tainted syzkaller #0 PREEMPT(full) 
[  732.286976][T13746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  732.286991][T13746] Call Trace:
[  732.286999][T13746]  <TASK>
[  732.287007][T13746]  dump_stack_lvl+0x16c/0x1f0
[  732.287047][T13746]  should_fail_ex+0x512/0x640
[  732.287082][T13746]  ? fs_reclaim_acquire+0xae/0x150
[  732.287122][T13746]  ? tomoyo_encode2+0x100/0x3e0
[  732.287157][T13746]  should_failslab+0xc2/0x120
[  732.287190][T13746]  __kmalloc_noprof+0xd2/0x510
[  732.287226][T13746]  tomoyo_encode2+0x100/0x3e0
[  732.287265][T13746]  tomoyo_encode+0x29/0x50
[  732.287312][T13746]  tomoyo_realpath_from_path+0x18f/0x6e0
[  732.287367][T13746]  ? tomoyo_profile+0x47/0x60
[  732.287391][T13746]  tomoyo_path_number_perm+0x245/0x580
[  732.287439][T13746]  ? tomoyo_path_number_perm+0x237/0x580
[  732.287486][T13746]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  732.287550][T13746]  ? find_held_lock+0x2b/0x80
[  732.287573][T13746]  ? hook_file_ioctl_common+0x145/0x410
[  732.287612][T13746]  ? __fget_files+0x20e/0x3c0
[  732.287643][T13746]  security_file_ioctl+0x9b/0x240
[  732.287675][T13746]  __x64_sys_ioctl+0xb7/0x210
[  732.287716][T13746]  do_syscall_64+0xcd/0x490
[  732.287752][T13746]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  732.287776][T13746] RIP: 0033:0x7f7edcb8ebe9
[  732.287794][T13746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  732.287817][T13746] RSP: 002b:00007f7eddaad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  732.287839][T13746] RAX: ffffffffffffffda RBX: 00007f7edcdc5fa0 RCX: 00007f7edcb8ebe9
[  732.287854][T13746] RDX: 0000200000003b40 RSI: 0000000000008933 RDI: 0000000000000003
[  732.287869][T13746] RBP: 00007f7edcc11e19 R08: 0000000000000000 R09: 0000000000000000
[  732.287883][T13746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  732.287897][T13746] R13: 00007f7edcdc6038 R14: 00007f7edcdc5fa0 R15: 00007ffc324dd718
[  732.287932][T13746]  </TASK>
[  732.287952][T13746] ERROR: Out of memory at tomoyo_realpath_from_path.
[  739.013086][T13865] bridge0: port 3(team0) entered blocking state
[  739.086513][T13865] bridge0: port 3(team0) entered disabled state
[  739.129360][T13865] team0: entered allmulticast mode
[  739.195518][T13865] team_slave_0: entered allmulticast mode
[  739.231778][T13865] team_slave_1: entered allmulticast mode
[  739.287939][T13865] team0: entered promiscuous mode
[  739.311609][T13865] team_slave_0: entered promiscuous mode
[  739.348942][T13865] team_slave_1: entered promiscuous mode
[  739.398129][T13865] bridge0: port 3(team0) entered blocking state
[  739.405351][T13865] bridge0: port 3(team0) entered forwarding state
[  746.447531][T13969] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1622'.
[  746.753278][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  746.759915][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  747.093887][T13978] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1624'.
[  749.678438][T14018] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1640'.
[  750.361189][T14016] FAULT_INJECTION: forcing a failure.
[  750.361189][T14016] name failslab, interval 1, probability 0, space 0, times 0
[  750.464025][T14016] CPU: 1 UID: 0 PID: 14016 Comm: syz.3.1632 Not tainted syzkaller #0 PREEMPT(full) 
[  750.464063][T14016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  750.464081][T14016] Call Trace:
[  750.464090][T14016]  <TASK>
[  750.464101][T14016]  dump_stack_lvl+0x16c/0x1f0
[  750.464156][T14016]  should_fail_ex+0x512/0x640
[  750.464215][T14016]  ? fs_reclaim_acquire+0xae/0x150
[  750.464264][T14016]  ? tomoyo_encode2+0x100/0x3e0
[  750.464304][T14016]  should_failslab+0xc2/0x120
[  750.464343][T14016]  __kmalloc_noprof+0xd2/0x510
[  750.464388][T14016]  tomoyo_encode2+0x100/0x3e0
[  750.464433][T14016]  tomoyo_encode+0x29/0x50
[  750.464473][T14016]  tomoyo_realpath_from_path+0x18f/0x6e0
[  750.464521][T14016]  ? tomoyo_profile+0x47/0x60
[  750.464550][T14016]  tomoyo_path_number_perm+0x245/0x580
[  750.464579][T14016]  ? tomoyo_path_number_perm+0x237/0x580
[  750.464613][T14016]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  750.464674][T14016]  ? find_held_lock+0x2b/0x80
[  750.464698][T14016]  ? hook_file_ioctl_common+0x145/0x410
[  750.464738][T14016]  ? __fget_files+0x20e/0x3c0
[  750.464770][T14016]  security_file_ioctl+0x9b/0x240
[  750.464804][T14016]  __x64_sys_ioctl+0xb7/0x210
[  750.464845][T14016]  do_syscall_64+0xcd/0x490
[  750.464883][T14016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  750.464908][T14016] RIP: 0033:0x7ffad298ebe9
[  750.464928][T14016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  750.464952][T14016] RSP: 002b:00007ffad388d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  750.464976][T14016] RAX: ffffffffffffffda RBX: 00007ffad2bc5fa0 RCX: 00007ffad298ebe9
[  750.464992][T14016] RDX: 0000200000003b40 RSI: 0000000000008933 RDI: 0000000000000003
[  750.465007][T14016] RBP: 00007ffad2a11e19 R08: 0000000000000000 R09: 0000000000000000
[  750.465022][T14016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  750.465036][T14016] R13: 00007ffad2bc6038 R14: 00007ffad2bc5fa0 R15: 00007ffc17157ac8
[  750.465067][T14016]  </TASK>
[  750.465540][T14016] ERROR: Out of memory at tomoyo_realpath_from_path.
[  750.753100][T14029] netlink: 25 bytes leftover after parsing attributes in process `syz.4.1635'.
[  751.949040][T14025] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  752.794508][T14051] netlink: 25 bytes leftover after parsing attributes in process `syz.4.1643'.
[  752.977201][T14058] kAFS: unparsable volume name
[  756.688231][T14108] FAULT_INJECTION: forcing a failure.
[  756.688231][T14108] name failslab, interval 1, probability 0, space 0, times 0
[  756.728251][T14108] CPU: 1 UID: 0 PID: 14108 Comm: syz.3.1655 Not tainted syzkaller #0 PREEMPT(full) 
[  756.728297][T14108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  756.728311][T14108] Call Trace:
[  756.728318][T14108]  <TASK>
[  756.728327][T14108]  dump_stack_lvl+0x16c/0x1f0
[  756.728369][T14108]  should_fail_ex+0x512/0x640
[  756.728400][T14108]  ? __kvmalloc_node_noprof+0x124/0x620
[  756.728428][T14108]  should_failslab+0xc2/0x120
[  756.728461][T14108]  __kvmalloc_node_noprof+0x137/0x620
[  756.728487][T14108]  ? __lock_acquire+0xb97/0x1ce0
[  756.728518][T14108]  ? seq_read_iter+0x826/0x12c0
[  756.728545][T14108]  ? seq_read_iter+0x826/0x12c0
[  756.728565][T14108]  seq_read_iter+0x826/0x12c0
[  756.728589][T14108]  ? __mutex_trylock_common+0xe9/0x250
[  756.728629][T14108]  kernfs_fop_read_iter+0x40f/0x5a0
[  756.728652][T14108]  ? rw_verify_area+0xcf/0x6c0
[  756.728678][T14108]  vfs_read+0x8bf/0xcf0
[  756.728708][T14108]  ? __pfx___mutex_lock+0x10/0x10
[  756.728741][T14108]  ? __pfx_vfs_read+0x10/0x10
[  756.728786][T14108]  ksys_read+0x12a/0x250
[  756.728812][T14108]  ? __pfx_ksys_read+0x10/0x10
[  756.728847][T14108]  do_syscall_64+0xcd/0x490
[  756.728881][T14108]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  756.728905][T14108] RIP: 0033:0x7ffad298ebe9
[  756.728923][T14108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  756.728954][T14108] RSP: 002b:00007ffad388d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  756.728975][T14108] RAX: ffffffffffffffda RBX: 00007ffad2bc5fa0 RCX: 00007ffad298ebe9
[  756.728991][T14108] RDX: 000000000000007f RSI: 0000200000000100 RDI: 0000000000000003
[  756.729005][T14108] RBP: 00007ffad388d090 R08: 0000000000000000 R09: 0000000000000000
[  756.729019][T14108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  756.729032][T14108] R13: 00007ffad2bc6038 R14: 00007ffad2bc5fa0 R15: 00007ffc17157ac8
[  756.729062][T14108]  </TASK>
[  758.952106][T14126] zswap: compressor 000 not available
[  759.316809][T14134] vivid-007: =================  START STATUS  =================
[  759.343154][T14134] vivid-007: Generate PTS: true
[  759.377303][T14134] vivid-007: Generate SCR: true
[  759.383079][T14134] tpg source WxH: 320x240 (Y'CbCr)
[  759.412927][T14134] tpg field: 1
[  759.416392][T14134] tpg crop: (0,0)/320x240
[  759.420720][T14134] tpg compose: (0,0)/320x240
[  759.428436][T14134] tpg colorspace: 8
[  759.481713][T14134] tpg transfer function: 0/0
[  759.496724][T14134] tpg Y'CbCr encoding: 0/0
[  759.501367][T14134] tpg quantization: 0/0
[  759.519852][T14134] tpg RGB range: 0/2
[  759.541234][T14134] vivid-007: ==================  END STATUS  ==================
[  760.011382][T14141] can: request_module (can-proto-3) failed.
[  762.507571][T14186] FAULT_INJECTION: forcing a failure.
[  762.507571][T14186] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  762.613312][T14186] CPU: 1 UID: 0 PID: 14186 Comm: syz.0.1670 Not tainted syzkaller #0 PREEMPT(full) 
[  762.613346][T14186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  762.613362][T14186] Call Trace:
[  762.613370][T14186]  <TASK>
[  762.613379][T14186]  dump_stack_lvl+0x16c/0x1f0
[  762.613420][T14186]  should_fail_ex+0x512/0x640
[  762.613463][T14186]  _copy_to_user+0x32/0xd0
[  762.613491][T14186]  pidfd_ioctl+0x1340/0x2700
[  762.613519][T14186]  ? __pfx_pidfd_ioctl+0x10/0x10
[  762.613564][T14186]  ? __pfx_pidfd_ioctl+0x10/0x10
[  762.613592][T14186]  __x64_sys_ioctl+0x18e/0x210
[  762.613636][T14186]  do_syscall_64+0xcd/0x490
[  762.613676][T14186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.613705][T14186] RIP: 0033:0x7f7edcb8ebe9
[  762.613723][T14186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  762.613749][T14186] RSP: 002b:00007f7eddaad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  762.613774][T14186] RAX: ffffffffffffffda RBX: 00007f7edcdc5fa0 RCX: 00007f7edcb8ebe9
[  762.613792][T14186] RDX: 0000000000000003 RSI: 00000000c060ff0b RDI: 0000000000000003
[  762.613808][T14186] RBP: 00007f7eddaad090 R08: 0000000000000000 R09: 0000000000000000
[  762.613823][T14186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  762.613839][T14186] R13: 00007f7edcdc6038 R14: 00007f7edcdc5fa0 R15: 00007ffc324dd718
[  762.613873][T14186]  </TASK>
[  763.606849][T14177] Process accounting resumed
[  766.344988][T14220] zswap: compressor 000 not available
[  769.186145][T14255] zswap: compressor 000 not available
[  772.494145][T14317] FAULT_INJECTION: forcing a failure.
[  772.494145][T14317] name failslab, interval 1, probability 0, space 0, times 0
[  772.550344][T14317] CPU: 1 UID: 0 PID: 14317 Comm: syz.0.1692 Not tainted syzkaller #0 PREEMPT(full) 
[  772.550385][T14317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  772.550402][T14317] Call Trace:
[  772.550413][T14317]  <TASK>
[  772.550424][T14317]  dump_stack_lvl+0x16c/0x1f0
[  772.550473][T14317]  should_fail_ex+0x512/0x640
[  772.550518][T14317]  ? __kvmalloc_node_noprof+0x124/0x620
[  772.550558][T14317]  should_failslab+0xc2/0x120
[  772.550609][T14317]  __kvmalloc_node_noprof+0x137/0x620
[  772.550648][T14317]  ? vhost_dev_ioctl+0x798/0xe20
[  772.550687][T14317]  ? vhost_dev_ioctl+0x798/0xe20
[  772.550714][T14317]  vhost_dev_ioctl+0x798/0xe20
[  772.550753][T14317]  ? __pfx_vhost_dev_ioctl+0x10/0x10
[  772.550803][T14317]  vhost_net_ioctl+0x464/0x1840
[  772.550863][T14317]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  772.550926][T14317]  ? __pfx_vhost_net_ioctl+0x10/0x10
[  772.550971][T14317]  ? find_held_lock+0x2b/0x80
[  772.550999][T14317]  ? hook_file_ioctl_common+0x145/0x410
[  772.551043][T14317]  ? __fget_files+0x20e/0x3c0
[  772.551079][T14317]  ? __pfx_vhost_net_ioctl+0x10/0x10
[  772.551121][T14317]  __x64_sys_ioctl+0x18e/0x210
[  772.551168][T14317]  do_syscall_64+0xcd/0x490
[  772.551208][T14317]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  772.551236][T14317] RIP: 0033:0x7f7edcb8ebe9
[  772.551256][T14317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  772.551282][T14317] RSP: 002b:00007f7edda8c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  772.551307][T14317] RAX: ffffffffffffffda RBX: 00007f7edcdc6090 RCX: 00007f7edcb8ebe9
[  772.551324][T14317] RDX: 0000200000000000 RSI: 000000004008af03 RDI: 000000000000000a
[  772.551341][T14317] RBP: 00007f7edda8c090 R08: 0000000000000000 R09: 0000000000000000
[  772.551356][T14317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  772.551372][T14317] R13: 00007f7edcdc6128 R14: 00007f7edcdc6090 R15: 00007ffc324dd718
[  772.551407][T14317]  </TASK>
[  774.748314][T14341] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1696'.
[  779.513084][T14389] zswap: compressor 000 not available
[  780.503332][T14408] zswap: compressor 000 not available
[  784.387352][T14448] FAULT_INJECTION: forcing a failure.
[  784.387352][T14448] name failslab, interval 1, probability 0, space 0, times 0
[  784.400209][T14448] CPU: 0 UID: 0 PID: 14448 Comm: syz.4.1720 Not tainted syzkaller #0 PREEMPT(full) 
[  784.400240][T14448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  784.400255][T14448] Call Trace:
[  784.400263][T14448]  <TASK>
[  784.400271][T14448]  dump_stack_lvl+0x16c/0x1f0
[  784.400308][T14448]  should_fail_ex+0x512/0x640
[  784.400340][T14448]  ? __kmalloc_noprof+0xbf/0x510
[  784.400369][T14448]  ? alloc_pipe_info+0x1ec/0x590
[  784.400397][T14448]  should_failslab+0xc2/0x120
[  784.400428][T14448]  __kmalloc_noprof+0xd2/0x510
[  784.400487][T14448]  alloc_pipe_info+0x1ec/0x590
[  784.400535][T14448]  splice_direct_to_actor+0x77d/0xa30
[  784.400564][T14448]  ? __lock_acquire+0x62e/0x1ce0
[  784.400594][T14448]  ? __pfx_direct_splice_actor+0x10/0x10
[  784.400621][T14448]  ? __pfx_aa_file_perm+0x10/0x10
[  784.400657][T14448]  ? find_held_lock+0x2b/0x80
[  784.400680][T14448]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  784.400705][T14448]  ? get_pid_task+0xfc/0x250
[  784.400744][T14448]  do_splice_direct+0x174/0x240
[  784.400768][T14448]  ? __pfx_do_splice_direct+0x10/0x10
[  784.400791][T14448]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  784.400816][T14448]  ? bpf_lsm_file_permission+0x9/0x10
[  784.400849][T14448]  ? security_file_permission+0x71/0x210
[  784.400882][T14448]  ? rw_verify_area+0xcf/0x6c0
[  784.400908][T14448]  do_sendfile+0xb06/0xe50
[  784.400946][T14448]  ? __pfx_do_sendfile+0x10/0x10
[  784.400972][T14448]  ? __fget_files+0x20e/0x3c0
[  784.401006][T14448]  __x64_sys_sendfile64+0x1d8/0x220
[  784.401038][T14448]  ? ksys_write+0x1ac/0x250
[  784.401066][T14448]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  784.401108][T14448]  do_syscall_64+0xcd/0x490
[  784.401145][T14448]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  784.401181][T14448] RIP: 0033:0x7fb74978ebe9
[  784.401200][T14448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  784.401224][T14448] RSP: 002b:00007fb74a552038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  784.401246][T14448] RAX: ffffffffffffffda RBX: 00007fb7499c5fa0 RCX: 00007fb74978ebe9
[  784.401262][T14448] RDX: 0000000000000000 RSI: 000000000000000e RDI: 000000000000000d
[  784.401276][T14448] RBP: 00007fb74a552090 R08: 0000000000000000 R09: 0000000000000000
[  784.401290][T14448] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001
[  784.401304][T14448] R13: 00007fb7499c6038 R14: 00007fb7499c5fa0 R15: 00007fff2c56ea68
[  784.401333][T14448]  </TASK>
[  794.576042][T14541] input: jJ�-���9�%v����l��Q�	J86�� as /devices/virtual/input/input16
[  795.004542][T14546] ALSA: mixer_oss: invalid OSS volume ''
[  795.614176][T14556] FAULT_INJECTION: forcing a failure.
[  795.614176][T14556] name failslab, interval 1, probability 0, space 0, times 0
[  795.706493][T14556] CPU: 0 UID: 0 PID: 14556 Comm: syz.1.1741 Not tainted syzkaller #0 PREEMPT(full) 
[  795.706535][T14556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  795.706558][T14556] Call Trace:
[  795.706568][T14556]  <TASK>
[  795.706579][T14556]  dump_stack_lvl+0x16c/0x1f0
[  795.706630][T14556]  should_fail_ex+0x512/0x640
[  795.706676][T14556]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  795.706712][T14556]  should_failslab+0xc2/0x120
[  795.706767][T14556]  __kmalloc_cache_noprof+0x6a/0x3e0
[  795.706799][T14556]  ? mon_bin_open+0x1a8/0x4a0
[  795.706850][T14556]  mon_bin_open+0x1a8/0x4a0
[  795.706891][T14556]  ? __pfx_mon_bin_open+0x10/0x10
[  795.706928][T14556]  chrdev_open+0x231/0x6a0
[  795.706972][T14556]  ? __pfx_chrdev_open+0x10/0x10
[  795.707011][T14556]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  795.707056][T14556]  do_dentry_open+0x97f/0x1530
[  795.707092][T14556]  ? __pfx_chrdev_open+0x10/0x10
[  795.707140][T14556]  vfs_open+0x82/0x3f0
[  795.707191][T14556]  path_openat+0x1de4/0x2cb0
[  795.707237][T14556]  ? __pfx_path_openat+0x10/0x10
[  795.707285][T14556]  do_filp_open+0x20b/0x470
[  795.707320][T14556]  ? __pfx_do_filp_open+0x10/0x10
[  795.707384][T14556]  ? alloc_fd+0x471/0x7d0
[  795.707423][T14556]  do_sys_openat2+0x11b/0x1d0
[  795.707465][T14556]  ? __pfx_do_sys_openat2+0x10/0x10
[  795.707521][T14556]  __x64_sys_openat+0x174/0x210
[  795.707570][T14556]  ? __pfx___x64_sys_openat+0x10/0x10
[  795.707634][T14556]  do_syscall_64+0xcd/0x490
[  795.707677][T14556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  795.707709][T14556] RIP: 0033:0x7f14bd18ebe9
[  795.707733][T14556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  795.707761][T14556] RSP: 002b:00007f14be0d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  795.707790][T14556] RAX: ffffffffffffffda RBX: 00007f14bd3c5fa0 RCX: 00007f14bd18ebe9
[  795.707812][T14556] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  795.707838][T14556] RBP: 00007f14bd211e19 R08: 0000000000000000 R09: 0000000000000000
[  795.707855][T14556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  795.707872][T14556] R13: 00007f14bd3c6038 R14: 00007f14bd3c5fa0 R15: 00007ffcd3d2f738
[  795.707908][T14556]  </TASK>
[  796.391219][T14557] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1741'.
[  796.577516][T14532] Process accounting paused
[  801.999094][T14645] FAULT_INJECTION: forcing a failure.
[  801.999094][T14645] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  802.012433][T14645] CPU: 1 UID: 0 PID: 14645 Comm: syz.1.1754 Not tainted syzkaller #0 PREEMPT(full) 
[  802.012477][T14645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  802.012496][T14645] Call Trace:
[  802.012508][T14645]  <TASK>
[  802.012520][T14645]  dump_stack_lvl+0x16c/0x1f0
[  802.012571][T14645]  should_fail_ex+0x512/0x640
[  802.012640][T14645]  _copy_from_user+0x2e/0xd0
[  802.012700][T14645]  __sys_bpf+0x21d/0x4de0
[  802.012755][T14645]  ? __pfx___sys_bpf+0x10/0x10
[  802.012816][T14645]  ? do_futex+0x122/0x350
[  802.012858][T14645]  ? __pfx_do_futex+0x10/0x10
[  802.012924][T14645]  ? xfd_validate_state+0x61/0x180
[  802.012982][T14645]  __x64_sys_bpf+0x78/0xc0
[  802.013032][T14645]  ? lockdep_hardirqs_on+0x7c/0x110
[  802.013076][T14645]  do_syscall_64+0xcd/0x490
[  802.013125][T14645]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  802.013159][T14645] RIP: 0033:0x7f14bd18ebe9
[  802.013185][T14645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  802.013218][T14645] RSP: 002b:00007f14be0d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  802.013247][T14645] RAX: ffffffffffffffda RBX: 00007f14bd3c5fa0 RCX: 00007f14bd18ebe9
[  802.013269][T14645] RDX: 000000000000000c RSI: 00002000000001c0 RDI: 0000000000000002
[  802.013288][T14645] RBP: 00007f14bd211e19 R08: 0000000000000000 R09: 0000000000000000
[  802.013308][T14645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  802.013328][T14645] R13: 00007f14bd3c6038 R14: 00007f14bd3c5fa0 R15: 00007ffcd3d2f738
[  802.013371][T14645]  </TASK>
[  803.731963][T14615] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  804.530777][T14630] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  807.871543][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  807.880420][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  812.953343][T14786] kAFS: unparsable volume name
[  814.840386][T14812] [U] 
[  814.843263][T14812] [U] 
[  814.845968][T14812] [U] 
[  814.848669][T14812] [U] 
[  814.896768][T14812] [U] 
[  814.899525][T14812] [U] 
[  814.902249][T14812] [U] 
[  814.904975][T14812] [U] 
[  814.908095][T14812] [U] 
[  814.910856][T14812] [U] 
[  814.913615][T14812] [U] 
[  814.916341][T14812] [U] 
[  814.919443][T14812] [U] 
[  814.922186][T14812] [U] 
[  814.924914][T14812] [U] 
[  814.927649][T14812] [U] 
[  814.930891][T14812] [U] 
[  814.933659][T14812] [U] 
[  814.936423][T14812] [U] 
[  814.939153][T14812] [U] 
[  815.000511][T14812] [U] 
[  815.003264][T14812] [U] 
[  815.005974][T14812] [U] 
[  815.008681][T14812] [U] 
[  815.090841][T14799] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  815.136514][T14812] [U] 
[  815.139282][T14812] [U] 
[  815.142022][T14812] [U] 
[  815.144755][T14812] [U] 
[  815.295770][T14812] [U] 
[  815.298545][T14812] [U] 
[  815.301274][T14812] [U] 
[  815.303983][T14812] [U] 
[  815.581377][T14812] [U] 
[  815.584167][T14812] [U] 
[  815.586901][T14812] [U] 
[  815.589640][T14812] [U] 
[  815.708720][T14812] [U] 
[  815.708799][T14812] [U] 
[  815.708855][T14812] [U] 
[  815.708912][T14812] [U] 
[  815.709172][T14812] [U] 
[  815.709230][T14812] [U] 
[  815.709281][T14812] [U] 
[  815.709337][T14812] [U] 
[  815.709586][T14812] [U] 
[  815.709648][T14812] [U] 
[  815.709725][T14812] [U] 
[  815.709788][T14812] [U] 
[  815.710064][T14812] [U] 
[  815.710127][T14812] [U] 
[  815.710191][T14812] [U] 
[  815.710253][T14812] [U] 
[  815.710545][T14812] [U] 
[  815.710609][T14812] [U] 
[  815.710677][T14812] [U] 
[  815.710751][T14812] [U] 
[  815.711036][T14812] [U] 
[  815.711092][T14812] [U] 
[  815.711149][T14812] [U] 
[  815.711205][T14812] [U] 
[  815.711472][T14812] [U] 
[  815.711530][T14812] [U] 
[  815.711587][T14812] [U] 
[  815.711644][T14812] [U] 
[  815.711896][T14812] [U] 
[  815.711949][T14812] [U] 
[  815.712008][T14812] [U] 
[  815.712062][T14812] [U] 
[  815.712255][T14812] [U] 
[  815.712294][T14812] [U] 
[  815.712333][T14812] [U] 
[  815.712378][T14812] [U] 
[  815.712554][T14812] [U] 
[  815.712593][T14812] [U] 
[  815.712633][T14812] [U] 
[  815.712679][T14812] [U] 
[  815.824345][T14812] [U] 
[  815.824410][T14812] [U] 
[  815.824486][T14812] [U] 
[  815.824548][T14812] [U] 
[  815.834744][T14812] [U] 
[  815.834793][T14812] [U] 
[  815.834847][T14812] [U] 
[  815.834885][T14812] [U] 
[  815.835068][T14812] [U] 
[  815.835107][T14812] [U] 
[  815.835146][T14812] [U] 
[  815.835184][T14812] [U] 
[  815.835385][T14812] [U] 
[  815.835426][T14812] [U] 
[  815.835468][T14812] [U] 
[  815.835509][T14812] [U] 
[  815.895454][T14812] [U] 
[  815.895500][T14812] [U] 
[  815.895540][T14812] [U] 
[  815.895579][T14812] [U] 
[  815.895649][T14812] [U] 
[  817.699853][T14863] bcache: register_bcache() error : failed to open device
[  827.233082][T15008] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1823'.
[  827.508402][T15003] Process accounting resumed
[  828.686130][T15036] FAULT_INJECTION: forcing a failure.
[  828.686130][T15036] name failslab, interval 1, probability 0, space 0, times 0
[  828.799864][T15036] CPU: 1 UID: 0 PID: 15036 Comm: syz.4.1832 Not tainted syzkaller #0 PREEMPT(full) 
[  828.799906][T15036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  828.799932][T15036] Call Trace:
[  828.799942][T15036]  <TASK>
[  828.799954][T15036]  dump_stack_lvl+0x16c/0x1f0
[  828.800004][T15036]  should_fail_ex+0x512/0x640
[  828.800050][T15036]  ? __kvmalloc_node_noprof+0x124/0x620
[  828.800091][T15036]  should_failslab+0xc2/0x120
[  828.800134][T15036]  __kvmalloc_node_noprof+0x137/0x620
[  828.800172][T15036]  ? seq_read_iter+0x826/0x12c0
[  828.800212][T15036]  ? seq_read_iter+0x826/0x12c0
[  828.800241][T15036]  seq_read_iter+0x826/0x12c0
[  828.800285][T15036]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  828.800342][T15036]  kernfs_fop_read_iter+0x40f/0x5a0
[  828.800380][T15036]  copy_splice_read+0x618/0xc20
[  828.800424][T15036]  ? __pfx_copy_splice_read+0x10/0x10
[  828.800461][T15036]  ? look_up_lock_class+0x59/0x150
[  828.800510][T15036]  ? lockdep_init_map_type+0x5c/0x280
[  828.800558][T15036]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  828.800599][T15036]  ? __pfx_copy_splice_read+0x10/0x10
[  828.800631][T15036]  do_splice_read+0x282/0x370
[  828.800679][T15036]  splice_direct_to_actor+0x2a1/0xa30
[  828.800716][T15036]  ? __pfx_direct_splice_actor+0x10/0x10
[  828.800758][T15036]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  828.800787][T15036]  ? get_pid_task+0xfc/0x250
[  828.800842][T15036]  do_splice_direct+0x174/0x240
[  828.800876][T15036]  ? __pfx_do_splice_direct+0x10/0x10
[  828.800911][T15036]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  828.800947][T15036]  ? bpf_lsm_file_permission+0x9/0x10
[  828.800993][T15036]  ? security_file_permission+0x71/0x210
[  828.801036][T15036]  ? rw_verify_area+0xcf/0x6c0
[  828.801085][T15036]  do_sendfile+0xb06/0xe50
[  828.801132][T15036]  ? __pfx_do_sendfile+0x10/0x10
[  828.801169][T15036]  ? __fget_files+0x20e/0x3c0
[  828.801214][T15036]  __x64_sys_sendfile64+0x1d8/0x220
[  828.801263][T15036]  ? ksys_write+0x1ac/0x250
[  828.801298][T15036]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  828.801356][T15036]  do_syscall_64+0xcd/0x490
[  828.801402][T15036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.801434][T15036] RIP: 0033:0x7fb74978ebe9
[  828.801458][T15036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  828.801489][T15036] RSP: 002b:00007fb74a552038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  828.801526][T15036] RAX: ffffffffffffffda RBX: 00007fb7499c5fa0 RCX: 00007fb74978ebe9
[  828.801545][T15036] RDX: 0000000000000000 RSI: 000000000000000e RDI: 000000000000000d
[  828.801560][T15036] RBP: 00007fb74a552090 R08: 0000000000000000 R09: 0000000000000000
[  828.801576][T15036] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001
[  828.801592][T15036] R13: 00007fb7499c6038 R14: 00007fb7499c5fa0 R15: 00007fff2c56ea68
[  828.801628][T15036]  </TASK>
[  829.236771][T15042] openvswitch: netlink: IP tunnel dst address not specified
[  829.615048][T15044] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1834'.
[  832.928519][T15020] syz.3.1828 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  832.998968][T15020] CPU: 1 UID: 0 PID: 15020 Comm: syz.3.1828 Not tainted syzkaller #0 PREEMPT(full) 
[  832.999001][T15020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  832.999015][T15020] Call Trace:
[  832.999023][T15020]  <TASK>
[  832.999032][T15020]  dump_stack_lvl+0x16c/0x1f0
[  832.999069][T15020]  dump_header+0x101/0x930
[  832.999103][T15020]  oom_kill_process+0x272/0xa40
[  832.999143][T15020]  out_of_memory+0x350/0x1700
[  832.999181][T15020]  ? __pfx_out_of_memory+0x10/0x10
[  832.999220][T15020]  mem_cgroup_out_of_memory+0x118/0x130
[  832.999260][T15020]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  832.999305][T15020]  ? do_raw_spin_unlock+0x172/0x230
[  832.999349][T15020]  try_charge_memcg+0x72b/0xd50
[  832.999385][T15020]  ? __pfx_try_charge_memcg+0x10/0x10
[  832.999421][T15020]  ? find_held_lock+0x2b/0x80
[  832.999449][T15020]  charge_memcg+0x8a/0x230
[  832.999478][T15020]  mem_cgroup_swapin_charge_folio+0xbb/0x440
[  832.999518][T15020]  __read_swap_cache_async+0x43e/0x5a0
[  832.999549][T15020]  ? __pfx___read_swap_cache_async+0x10/0x10
[  832.999574][T15020]  ? __pfx_debug_object_activate+0x10/0x10
[  832.999601][T15020]  ? swapcache_clear+0x30/0x30
[  832.999634][T15020]  ? __pfx_swp_swap_info+0x10/0x10
[  832.999674][T15020]  swap_cluster_readahead+0x3eb/0x710
[  832.999705][T15020]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  832.999730][T15020]  ? css_rstat_updated+0x1c2/0x510
[  832.999771][T15020]  ? get_vma_policy+0x242/0x3c0
[  832.999807][T15020]  swapin_readahead+0x13a/0xd60
[  832.999840][T15020]  ? __pfx_swapin_readahead+0x10/0x10
[  832.999863][T15020]  ? __filemap_get_folio+0x32b/0xc30
[  832.999902][T15020]  ? swap_cache_get_folio+0x1df/0x450
[  832.999926][T15020]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  832.999949][T15020]  ? __pfx_get_swap_device+0x10/0x10
[  832.999993][T15020]  ? do_swap_page+0x125/0x6490
[  833.000035][T15020]  do_swap_page+0x635/0x6490
[  833.000073][T15020]  ? __lock_acquire+0x62e/0x1ce0
[  833.000120][T15020]  ? __pfx_do_swap_page+0x10/0x10
[  833.000159][T15020]  ? __pfx_default_wake_function+0x10/0x10
[  833.000184][T15020]  ? __lock_acquire+0x62e/0x1ce0
[  833.000220][T15020]  ? rcu_is_watching+0x12/0xc0
[  833.000244][T15020]  ? ___pte_offset_map+0x2ad/0x4f0
[  833.000283][T15020]  __handle_mm_fault+0x1719/0x2a50
[  833.000317][T15020]  ? __pfx___handle_mm_fault+0x10/0x10
[  833.000347][T15020]  ? lock_vma_under_rcu+0x1eb/0x530
[  833.000382][T15020]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  833.000406][T15020]  ? get_timespec64+0x136/0x1b0
[  833.000443][T15020]  handle_mm_fault+0x589/0xd10
[  833.000468][T15020]  ? __bpf_trace_exceptions+0x1/0x40
[  833.000508][T15020]  do_user_addr_fault+0x60c/0x1370
[  833.000549][T15020]  ? rcu_is_watching+0x12/0xc0
[  833.000577][T15020]  exc_page_fault+0x5c/0xb0
[  833.000608][T15020]  asm_exc_page_fault+0x26/0x30
[  833.000631][T15020] RIP: 0033:0x7ffad2860ede
[  833.000650][T15020] Code: e9 97 c7 12 00 0f 1f 80 00 00 00 00 48 83 c4 28 48 c7 c0 ff ff ff ff 5b 5d c3 66 90 41 57 41 56 41 55 41 54 55 53 48 83 ec 38 <80> 3d 1b 11 36 00 00 89 7c 24 0c 88 54 24 10 48 89 74 24 28 0f 85
[  833.000673][T15020] RSP: 002b:00007ffc17157bc0 EFLAGS: 00010206
[  833.000691][T15020] RAX: 00007ffad2bc5fa0 RBX: 00007ffad2bc5fa0 RCX: 0000000000000026
[  833.000707][T15020] RDX: 0000000000000001 RSI: 00007ffad2bc6038 RDI: 000000000000000f
[  833.000721][T15020] RBP: 00007ffad2bc7da0 R08: 0000000000000000 R09: 0000000000000026
[  833.000736][T15020] R10: 0000000000000001 R11: 0009d94e48c65cf7 R12: 00000000000cba80
[  833.000751][T15020] R13: 00007ffad2bc6090 R14: ffffffffffffffff R15: 00007ffc17157d40
[  833.000781][T15020]  </TASK>
[  833.000790][T15020] memory: usage 3072kB, limit 3072kB, failcnt 334047
[  833.658060][T15020] memory+swap: usage 3548kB, limit 9007199254740988kB, failcnt 0
[  833.666035][T15020] kmem: usage 940kB, limit 9007199254740988kB, failcnt 0
[  833.674924][T15020] Memory cgroup stats for /syz3:
[  833.675141][T15020] cache 2117632
[  833.684520][T15020] rss 0
[  833.694730][T15020] rss_huge 0
[  833.799998][T15020] shmem 0
[  833.884273][T15020] mapped_file 0
[  834.013482][T15020] dirty 0
[  834.025587][T15020] writeback 8192
[  834.080592][T15020] workingset_refault_anon 22593
[  834.154153][T15020] workingset_refault_file 85528
[  834.176631][T15020] swap 487424
[  834.224814][T15020] swapcached 65536
[  834.251389][T15020] pgpgin 679772
[  834.281664][T15020] pgpgout 681794
[  834.332802][T15020] pgfault 690115
[  834.344653][T15020] pgmajfault 11543
[  834.348427][T15020] inactive_anon 65536
[  834.411149][T15020] active_anon 0
[  834.433465][T15020] inactive_file 544768
[  834.437604][T15020] active_file 1572864
[  834.442957][T15020] unevictable 0
[  834.528293][T15020] hierarchical_memory_limit 3145728
[  834.568993][T15020] hierarchical_memsw_limit 9223372036854771712
[  834.648507][T15020] total_cache 2117632
[  834.652802][T15020] total_rss 0
[  834.656118][T15020] total_rss_huge 0
[  834.659882][T15020] total_shmem 0
[  834.663676][T15020] total_mapped_file 0
[  834.667692][T15020] total_dirty 0
[  834.671190][T15020] total_writeback 8192
[  834.675715][T15020] total_workingset_refault_anon 22593
[  834.681129][T15020] total_workingset_refault_file 85528
[  834.686606][T15020] total_swap 487424
[  834.690449][T15020] total_swapcached 65536
[  834.712314][T15020] total_pgpgin 679772
[  834.716367][T15020] total_pgpgout 681794
[  834.720472][T15020] total_pgfault 690115
[  834.756296][T15020] total_pgmajfault 11543
[  834.760607][T15020] total_inactive_anon 65536
[  834.769398][T15020] total_active_anon 0
[  834.775747][T15020] total_inactive_file 544768
[  834.780393][T15020] total_active_file 1572864
[  834.803684][T15020] total_unevictable 0
[  834.807736][T15020] anon_cost 0
[  834.811056][T15020] file_cost 0
[  834.851190][T15020] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1828,pid=15020,uid=0
[  834.924343][T15020] Memory cgroup out of memory: Killed process 15020 (syz.3.1828) total-vm:104336kB, anon-rss:1012kB, file-rss:23292kB, shmem-rss:0kB, UID:0 pgtables:148kB oom_score_adj:1000
[  836.290205][T15109] random: crng reseeded on system resumption
[  837.068406][   T32] oom_reaper: reaped process 15020 (syz.3.1828), now anon-rss:0kB, file-rss:22160kB, shmem-rss:0kB
[  837.632674][T15105] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  837.691977][T15105] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  838.470410][ T5868] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  838.538895][ T5868] CPU: 1 UID: 0 PID: 5868 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  838.538937][ T5868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  838.538955][ T5868] Call Trace:
[  838.538965][ T5868]  <TASK>
[  838.538976][ T5868]  dump_stack_lvl+0x16c/0x1f0
[  838.539025][ T5868]  dump_header+0x101/0x930
[  838.539069][ T5868]  oom_kill_process+0x272/0xa40
[  838.539116][ T5868]  out_of_memory+0x350/0x1700
[  838.539167][ T5868]  ? __pfx_out_of_memory+0x10/0x10
[  838.539222][ T5868]  mem_cgroup_out_of_memory+0x118/0x130
[  838.539272][ T5868]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  838.539339][ T5868]  ? do_raw_spin_unlock+0x172/0x230
[  838.539395][ T5868]  try_charge_memcg+0x72b/0xd50
[  838.539443][ T5868]  ? __pfx_try_charge_memcg+0x10/0x10
[  838.539495][ T5868]  ? find_held_lock+0x2b/0x80
[  838.539533][ T5868]  charge_memcg+0x8a/0x230
[  838.539585][ T5868]  mem_cgroup_swapin_charge_folio+0xbb/0x440
[  838.539637][ T5868]  __read_swap_cache_async+0x43e/0x5a0
[  838.539679][ T5868]  ? __pfx___read_swap_cache_async+0x10/0x10
[  838.539713][ T5868]  ? swp_swap_info+0xce/0x130
[  838.539771][ T5868]  ? __pfx_swp_swap_info+0x10/0x10
[  838.539816][ T5868]  ? _raw_spin_unlock+0x28/0x50
[  838.539860][ T5868]  swap_cluster_readahead+0x3eb/0x710
[  838.539904][ T5868]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  838.539967][ T5868]  ? get_vma_policy+0x242/0x3c0
[  838.540016][ T5868]  swapin_readahead+0x13a/0xd60
[  838.540064][ T5868]  ? __pfx_swapin_readahead+0x10/0x10
[  838.540097][ T5868]  ? __filemap_get_folio+0x32b/0xc30
[  838.540151][ T5868]  ? swap_cache_get_folio+0x1df/0x450
[  838.540187][ T5868]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  838.540217][ T5868]  ? __pfx_get_swap_device+0x10/0x10
[  838.540256][ T5868]  ? do_swap_page+0x125/0x6490
[  838.540309][ T5868]  do_swap_page+0x635/0x6490
[  838.540360][ T5868]  ? __lock_acquire+0x62e/0x1ce0
[  838.540415][ T5868]  ? __pfx_do_swap_page+0x10/0x10
[  838.540466][ T5868]  ? __pfx_default_wake_function+0x10/0x10
[  838.540499][ T5868]  ? __lock_acquire+0x62e/0x1ce0
[  838.540547][ T5868]  ? rcu_is_watching+0x12/0xc0
[  838.540579][ T5868]  ? ___pte_offset_map+0x2ad/0x4f0
[  838.540632][ T5868]  __handle_mm_fault+0x1719/0x2a50
[  838.540678][ T5868]  ? __pfx___handle_mm_fault+0x10/0x10
[  838.540719][ T5868]  ? lock_vma_under_rcu+0x1eb/0x530
[  838.540771][ T5868]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  838.540801][ T5868]  ? get_timespec64+0x136/0x1b0
[  838.540849][ T5868]  handle_mm_fault+0x589/0xd10
[  838.540884][ T5868]  ? __bpf_trace_exceptions+0x1/0x40
[  838.540947][ T5868]  do_user_addr_fault+0x60c/0x1370
[  838.541000][ T5868]  ? rcu_is_watching+0x12/0xc0
[  838.541036][ T5868]  exc_page_fault+0x5c/0xb0
[  838.541076][ T5868]  asm_exc_page_fault+0x26/0x30
[  838.541104][ T5868] RIP: 0033:0x7ffad29c14a8
[  838.541129][ T5868] Code: 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[  838.541159][ T5868] RSP: 002b:00007ffc17157de0 EFLAGS: 00010293
[  838.541183][ T5868] RAX: 0000000000000000 RBX: 0000000000000669 RCX: 00007ffad29c14a5
[  838.541201][ T5868] RDX: 00007ffc17157e20 RSI: 0000000000000000 RDI: 0000000000000000
[  838.541219][ T5868] RBP: 00007ffc17157e8c R08: 0000000000000000 R09: 0000000000000000
[  838.541236][ T5868] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000001388
[  838.541253][ T5868] R13: 00000000000927c0 R14: 00000000000cb9fb R15: 00007ffc17157ee0
[  838.541293][ T5868]  </TASK>
[  838.941240][ T5868] memory: usage 3072kB, limit 3072kB, failcnt 334121
[  838.947957][ T5868] memory+swap: usage 3428kB, limit 9007199254740988kB, failcnt 0
[  838.955748][ T5868] kmem: usage 940kB, limit 9007199254740988kB, failcnt 0
[  838.962786][ T5868] Memory cgroup stats for /syz3:
[  838.962938][ T5868] cache 2117632
[  838.971389][ T5868] rss 0
[  838.974157][ T5868] rss_huge 0
[  838.977347][ T5868] shmem 0
[  838.980301][ T5868] mapped_file 0
[  838.983788][ T5868] dirty 0
[  838.986730][ T5868] writeback 8192
[  838.990430][ T5868] workingset_refault_anon 22593
[  838.995287][ T5868] workingset_refault_file 85528
[  839.000176][ T5868] swap 364544
[  839.004026][ T5868] swapcached 65536
[  839.007759][ T5868] pgpgin 679772
[  839.011237][ T5868] pgpgout 681794
[  839.014785][ T5868] pgfault 690115
[  839.018326][ T5868] pgmajfault 11543
[  839.022071][ T5868] inactive_anon 65536
[  839.026872][ T5868] active_anon 0
[  839.030352][ T5868] inactive_file 1855488
[  839.034514][ T5868] active_file 0
[  839.037974][ T5868] unevictable 0
[  839.041450][ T5868] hierarchical_memory_limit 3145728
[  839.046642][ T5868] hierarchical_memsw_limit 9223372036854771712
[  839.052991][ T5868] total_cache 2117632
[  839.056971][ T5868] total_rss 0
[  839.060296][ T5868] total_rss_huge 0
[  839.064015][ T5868] total_shmem 0
[  839.067472][ T5868] total_mapped_file 0
[  839.071475][ T5868] total_dirty 0
[  839.074932][ T5868] total_writeback 8192
[  839.079010][ T5868] total_workingset_refault_anon 22593
[  839.084465][ T5868] total_workingset_refault_file 85528
[  839.089851][ T5868] total_swap 364544
[  839.093659][ T5868] total_swapcached 65536
[  839.097904][ T5868] total_pgpgin 679772
[  839.101950][ T5868] total_pgpgout 681794
[  839.106597][ T5868] total_pgfault 690115
[  839.110704][ T5868] total_pgmajfault 11543
[  839.114968][ T5868] total_inactive_anon 65536
[  839.119538][ T5868] total_active_anon 0
[  839.123547][ T5868] total_inactive_file 1855488
[  839.128920][ T5868] total_active_file 0
[  839.132943][ T5868] total_unevictable 0
[  839.136946][ T5868] anon_cost 0
[  839.140648][ T5868] file_cost 0
[  839.143938][ T5868] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.407,pid=8055,uid=0
[  839.158710][ T5868] Memory cgroup out of memory: Killed process 8055 (syz.3.407) total-vm:134924kB, anon-rss:1172kB, file-rss:20736kB, shmem-rss:0kB, UID:0 pgtables:104kB oom_score_adj:1000
[  845.481776][T15184] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  845.916675][T15200] netlink: 206 bytes leftover after parsing attributes in process `syz.4.1866'.
[  848.599576][T15217] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  848.605788][T15217] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  848.667936][T15217] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  848.674036][T15217] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  848.787595][T15229] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  849.214960][ T5893] smpboot: CPU 1 is now offline
[  850.425609][T15245] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  850.512207][T15245] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  850.586287][T15245] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  850.631658][T15245] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  850.893564][T15238] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  851.629220][T15274] zswap: compressor 000 not available
[  851.940900][T10460] Bluetooth: hci3: command 0x0c1a tx timeout
[  852.577027][T10460] Bluetooth: hci2: command 0x0c1a tx timeout
[  852.583706][T10460] Bluetooth: hci0: command 0x0c1a tx timeout
[  852.656794][T15302] Bluetooth: hci4: command 0x0c1a tx timeout
[  855.362182][T15302] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  857.797190][T15423] openvswitch: netlink: Unknown nsh attribute 0
[  859.033272][T15401] Process accounting paused
[  859.725695][T15446] cougar: G6 mapped to space
[  860.046339][T15452] program syz.0.1900 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  862.751374][T15481] syz.3.1905 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  864.698350][T15499] vivid-003: =================  START STATUS  =================
[  864.749366][T15499] vivid-003: Radio HW Seek Mode: Bounded
[  864.778800][T15499] vivid-003: Radio Programmable HW Seek: false
[  864.844944][T15499] vivid-003: RDS Rx I/O Mode: Block I/O
[  864.880949][T15499] vivid-003: Generate RBDS Instead of RDS: false
[  864.926371][T15499] vivid-003: RDS Reception: true
[  864.952420][T15499] vivid-003: RDS Program Type: 0 inactive
[  864.994103][T15499] vivid-003: RDS PS Name:  inactive
[  865.051672][T15499] vivid-003: RDS Radio Text:  inactive
[  865.106799][T15499] vivid-003: RDS Traffic Announcement: false inactive
[  865.149309][T15499] vivid-003: RDS Traffic Program: false inactive
[  865.186627][T15499] vivid-003: RDS Music: false inactive
[  865.220151][T15499] vivid-003: ==================  END STATUS  ==================
[  867.700234][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  867.706860][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  874.508070][T15564] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  876.014945][T15610] FAULT_INJECTION: forcing a failure.
[  876.014945][T15610] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  876.060284][T15610] CPU: 0 UID: 0 PID: 15610 Comm: syz.1.1932 Not tainted syzkaller #0 PREEMPT(full) 
[  876.060329][T15610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  876.060343][T15610] Call Trace:
[  876.060350][T15610]  <TASK>
[  876.060359][T15610]  dump_stack_lvl+0x16c/0x1f0
[  876.060395][T15610]  should_fail_ex+0x512/0x640
[  876.060431][T15610]  _copy_from_user+0x2e/0xd0
[  876.060468][T15610]  kstrtouint_from_user+0xd6/0x1d0
[  876.060497][T15610]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  876.060524][T15610]  ? __lock_acquire+0xb97/0x1ce0
[  876.060567][T15610]  proc_fail_nth_write+0x83/0x220
[  876.060592][T15610]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  876.060624][T15610]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  876.060647][T15610]  vfs_write+0x29d/0x11d0
[  876.060677][T15610]  ? __pfx___mutex_lock+0x10/0x10
[  876.060709][T15610]  ? __pfx_vfs_write+0x10/0x10
[  876.060743][T15610]  ? __fget_files+0x20e/0x3c0
[  876.060775][T15610]  ksys_write+0x12a/0x250
[  876.060801][T15610]  ? __pfx_ksys_write+0x10/0x10
[  876.060836][T15610]  do_syscall_64+0xcd/0x490
[  876.060869][T15610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  876.060891][T15610] RIP: 0033:0x7f14bd18d69f
[  876.060910][T15610] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  876.060942][T15610] RSP: 002b:00007f14be0b0030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  876.060967][T15610] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f14bd18d69f
[  876.060981][T15610] RDX: 0000000000000001 RSI: 00007f14be0b00a0 RDI: 0000000000000009
[  876.060994][T15610] RBP: 00007f14be0b0090 R08: 0000000000000000 R09: 0000000000000000
[  876.061007][T15610] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  876.061020][T15610] R13: 00007f14bd3c6128 R14: 00007f14bd3c6090 R15: 00007ffcd3d2f738
[  876.061047][T15610]  </TASK>
[  876.295784][T15612] FAULT_INJECTION: forcing a failure.
[  876.295784][T15612] name failslab, interval 1, probability 0, space 0, times 0
[  876.309916][T15612] CPU: 0 UID: 0 PID: 15612 Comm: syz.3.1933 Not tainted syzkaller #0 PREEMPT(full) 
[  876.309948][T15612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  876.309970][T15612] Call Trace:
[  876.309977][T15612]  <TASK>
[  876.309985][T15612]  dump_stack_lvl+0x16c/0x1f0
[  876.310022][T15612]  should_fail_ex+0x512/0x640
[  876.310053][T15612]  ? __kmalloc_noprof+0xbf/0x510
[  876.310081][T15612]  ? copy_splice_read+0x1a8/0xc20
[  876.310102][T15612]  should_failslab+0xc2/0x120
[  876.310132][T15612]  __kmalloc_noprof+0xd2/0x510
[  876.310165][T15612]  copy_splice_read+0x1a8/0xc20
[  876.310186][T15612]  ? __pfx_iter_file_splice_write+0x10/0x10
[  876.310217][T15612]  ? __pfx_copy_splice_read+0x10/0x10
[  876.310242][T15612]  ? look_up_lock_class+0x59/0x150
[  876.310279][T15612]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  876.310308][T15612]  ? __pfx_copy_splice_read+0x10/0x10
[  876.310330][T15612]  do_splice_read+0x282/0x370
[  876.310355][T15612]  splice_direct_to_actor+0x2a1/0xa30
[  876.310380][T15612]  ? __pfx_direct_splice_actor+0x10/0x10
[  876.310409][T15612]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  876.310431][T15612]  ? get_pid_task+0xfc/0x250
[  876.310470][T15612]  do_splice_direct+0x174/0x240
[  876.310494][T15612]  ? __pfx_do_splice_direct+0x10/0x10
[  876.310518][T15612]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  876.310542][T15612]  ? bpf_lsm_file_permission+0x9/0x10
[  876.310575][T15612]  ? security_file_permission+0x71/0x210
[  876.310607][T15612]  ? rw_verify_area+0xcf/0x6c0
[  876.310632][T15612]  do_sendfile+0xb06/0xe50
[  876.310662][T15612]  ? __pfx_do_sendfile+0x10/0x10
[  876.310687][T15612]  ? __fget_files+0x20e/0x3c0
[  876.310719][T15612]  __x64_sys_sendfile64+0x1d8/0x220
[  876.310749][T15612]  ? ksys_write+0x1ac/0x250
[  876.310774][T15612]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  876.310815][T15612]  do_syscall_64+0xcd/0x490
[  876.310852][T15612]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  876.310889][T15612] RIP: 0033:0x7ffad298ebe9
[  876.310907][T15612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  876.310929][T15612] RSP: 002b:00007ffad388d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  876.310951][T15612] RAX: ffffffffffffffda RBX: 00007ffad2bc5fa0 RCX: 00007ffad298ebe9
[  876.310974][T15612] RDX: 0000000000000000 RSI: 000000000000000e RDI: 000000000000000d
[  876.310987][T15612] RBP: 00007ffad388d090 R08: 0000000000000000 R09: 0000000000000000
[  876.311003][T15612] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001
[  876.311017][T15612] R13: 00007ffad2bc6038 R14: 00007ffad2bc5fa0 R15: 00007ffc17157ac8
[  876.311045][T15612]  </TASK>
[  876.838074][T15618] Device name cannot be null; rc = [-22]
[  883.113989][T15657] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  883.670682][T15709] HfR: entered promiscuous mode
[  883.942622][T15718] openvswitch: netlink: Tunnel attr 238 out of range max 16
[  884.128112][T15726] FAULT_INJECTION: forcing a failure.
[  884.128112][T15726] name failslab, interval 1, probability 0, space 0, times 0
[  884.216957][T15726] CPU: 0 UID: 0 PID: 15726 Comm: syz.4.1957 Not tainted syzkaller #0 PREEMPT(full) 
[  884.216988][T15726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  884.217002][T15726] Call Trace:
[  884.217009][T15726]  <TASK>
[  884.217017][T15726]  dump_stack_lvl+0x16c/0x1f0
[  884.217051][T15726]  should_fail_ex+0x512/0x640
[  884.217083][T15726]  ? fs_reclaim_acquire+0xae/0x150
[  884.217137][T15726]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  884.217173][T15726]  should_failslab+0xc2/0x120
[  884.217205][T15726]  __kmalloc_noprof+0xd2/0x510
[  884.217240][T15726]  tomoyo_realpath_from_path+0xc2/0x6e0
[  884.217283][T15726]  tomoyo_check_open_permission+0x2ab/0x3c0
[  884.217315][T15726]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  884.217382][T15726]  ? do_raw_spin_lock+0x12c/0x2b0
[  884.217428][T15726]  tomoyo_file_open+0x6b/0x90
[  884.217452][T15726]  security_file_open+0x84/0x1e0
[  884.217486][T15726]  do_dentry_open+0x596/0x1530
[  884.217524][T15726]  vfs_open+0x82/0x3f0
[  884.217564][T15726]  path_openat+0x1de4/0x2cb0
[  884.217601][T15726]  ? __pfx_path_openat+0x10/0x10
[  884.217637][T15726]  do_filp_open+0x20b/0x470
[  884.217666][T15726]  ? __pfx_do_filp_open+0x10/0x10
[  884.217715][T15726]  ? alloc_fd+0x471/0x7d0
[  884.217749][T15726]  do_sys_openat2+0x11b/0x1d0
[  884.217785][T15726]  ? __pfx_do_sys_openat2+0x10/0x10
[  884.217834][T15726]  __x64_sys_openat+0x174/0x210
[  884.217872][T15726]  ? __pfx___x64_sys_openat+0x10/0x10
[  884.217922][T15726]  do_syscall_64+0xcd/0x490
[  884.217962][T15726]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  884.217986][T15726] RIP: 0033:0x7fb74978ebe9
[  884.218004][T15726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  884.218027][T15726] RSP: 002b:00007fb74a552038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  884.218049][T15726] RAX: ffffffffffffffda RBX: 00007fb7499c5fa0 RCX: 00007fb74978ebe9
[  884.218064][T15726] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  884.218079][T15726] RBP: 00007fb749811e19 R08: 0000000000000000 R09: 0000000000000000
[  884.218093][T15726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  884.218107][T15726] R13: 00007fb7499c6038 R14: 00007fb7499c5fa0 R15: 00007fff2c56ea68
[  884.218136][T15726]  </TASK>
[  884.444437][    C0] vkms_vblank_simulate: vblank timer overrun
[  884.461921][T15726] ERROR: Out of memory at tomoyo_realpath_from_path.
[  886.363500][T15743] FAULT_INJECTION: forcing a failure.
[  886.363500][T15743] name fail_futex, interval 1, probability 0, space 0, times 0
[  886.457924][T15743] CPU: 0 UID: 0 PID: 15743 Comm: syz.4.1961 Not tainted syzkaller #0 PREEMPT(full) 
[  886.457960][T15743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  886.457975][T15743] Call Trace:
[  886.457983][T15743]  <TASK>
[  886.457992][T15743]  dump_stack_lvl+0x16c/0x1f0
[  886.458028][T15743]  should_fail_ex+0x512/0x640
[  886.458066][T15743]  get_futex_key+0x1d0/0x1560
[  886.458100][T15743]  ? __pfx_get_futex_key+0x10/0x10
[  886.458128][T15743]  ? __pfx_map_create+0x10/0x10
[  886.458166][T15743]  ? __might_fault+0xe3/0x190
[  886.458193][T15743]  ? __might_fault+0xe3/0x190
[  886.458219][T15743]  ? __might_fault+0x13b/0x190
[  886.458252][T15743]  futex_wake+0xea/0x530
[  886.458290][T15743]  ? __pfx_futex_wake+0x10/0x10
[  886.458331][T15743]  ? ksys_write+0x190/0x250
[  886.458363][T15743]  do_futex+0x1e3/0x350
[  886.458394][T15743]  ? __pfx_do_futex+0x10/0x10
[  886.458432][T15743]  __x64_sys_futex+0x1e0/0x4c0
[  886.458464][T15743]  ? fput+0x9b/0xd0
[  886.458496][T15743]  ? __pfx___x64_sys_futex+0x10/0x10
[  886.458527][T15743]  ? xfd_validate_state+0x61/0x180
[  886.458562][T15743]  ? __pfx_ksys_write+0x10/0x10
[  886.458598][T15743]  do_syscall_64+0xcd/0x490
[  886.458633][T15743]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  886.458657][T15743] RIP: 0033:0x7fb74978ebe9
[  886.458675][T15743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  886.458698][T15743] RSP: 002b:00007fb74a5520e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  886.458719][T15743] RAX: ffffffffffffffda RBX: 00007fb7499c5fa8 RCX: 00007fb74978ebe9
[  886.458735][T15743] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb7499c5fac
[  886.458750][T15743] RBP: 00007fb7499c5fa0 R08: 00007fb74a553000 R09: 0000000000000000
[  886.458764][T15743] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  886.458779][T15743] R13: 00007fb7499c6038 R14: 00007fff2c56e980 R15: 00007fff2c56ea68
[  886.458807][T15743]  </TASK>
[  886.662608][    C0] vkms_vblank_simulate: vblank timer overrun
[  888.147580][T15761] FAULT_INJECTION: forcing a failure.
[  888.147580][T15761] name failslab, interval 1, probability 0, space 0, times 0
[  888.241752][T15761] CPU: 0 UID: 0 PID: 15761 Comm: syz.4.1966 Not tainted syzkaller #0 PREEMPT(full) 
[  888.241787][T15761] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  888.241801][T15761] Call Trace:
[  888.241809][T15761]  <TASK>
[  888.241818][T15761]  dump_stack_lvl+0x16c/0x1f0
[  888.241855][T15761]  should_fail_ex+0x512/0x640
[  888.241890][T15761]  ? __kmalloc_noprof+0xbf/0x510
[  888.241921][T15761]  ? __register_sysctl_table+0xb3/0x1900
[  888.241959][T15761]  should_failslab+0xc2/0x120
[  888.241992][T15761]  __kmalloc_noprof+0xd2/0x510
[  888.242027][T15761]  __register_sysctl_table+0xb3/0x1900
[  888.242072][T15761]  ? is_module_address+0x5f/0xf0
[  888.242113][T15761]  ? __pfx___register_sysctl_table+0x10/0x10
[  888.242149][T15761]  ? is_module_address+0x69/0xf0
[  888.242184][T15761]  ? register_net_sysctl_sz+0x228/0x3e0
[  888.242223][T15761]  ? __asan_memcpy+0x3c/0x60
[  888.242262][T15761]  __ip_vs_lblc_init+0x159/0x340
[  888.242292][T15761]  ? __pfx___ip_vs_lblc_init+0x10/0x10
[  888.242319][T15761]  ops_init+0x1e2/0x5f0
[  888.242356][T15761]  setup_net+0x10f/0x380
[  888.242388][T15761]  ? lockdep_init_map_type+0x5c/0x280
[  888.242423][T15761]  ? __pfx_setup_net+0x10/0x10
[  888.242459][T15761]  ? debug_mutex_init+0x37/0x70
[  888.242485][T15761]  copy_net_ns+0x2a6/0x5f0
[  888.242525][T15761]  create_new_namespaces+0x3ea/0xa90
[  888.242563][T15761]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  888.242593][T15761]  ksys_unshare+0x45b/0xa40
[  888.242627][T15761]  ? __pfx_ksys_unshare+0x10/0x10
[  888.242661][T15761]  ? xfd_validate_state+0x61/0x180
[  888.242705][T15761]  __x64_sys_unshare+0x31/0x40
[  888.242738][T15761]  do_syscall_64+0xcd/0x490
[  888.242773][T15761]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  888.242797][T15761] RIP: 0033:0x7fb74978ebe9
[  888.242815][T15761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  888.242838][T15761] RSP: 002b:00007fb74a552038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  888.242860][T15761] RAX: ffffffffffffffda RBX: 00007fb7499c5fa0 RCX: 00007fb74978ebe9
[  888.242875][T15761] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  888.242889][T15761] RBP: 00007fb749811e19 R08: 0000000000000000 R09: 0000000000000000
[  888.242903][T15761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  888.242917][T15761] R13: 00007fb7499c6038 R14: 00007fb7499c5fa0 R15: 00007fff2c56ea68
[  888.242946][T15761]  </TASK>
[  888.487844][    C0] vkms_vblank_simulate: vblank timer overrun
[  892.442590][T15804] FAULT_INJECTION: forcing a failure.
[  892.442590][T15804] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  892.515083][T15804] CPU: 0 UID: 0 PID: 15804 Comm: syz.1.1974 Not tainted syzkaller #0 PREEMPT(full) 
[  892.515115][T15804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  892.515130][T15804] Call Trace:
[  892.515137][T15804]  <TASK>
[  892.515146][T15804]  dump_stack_lvl+0x16c/0x1f0
[  892.515183][T15804]  should_fail_ex+0x512/0x640
[  892.515221][T15804]  _copy_from_iter+0x29f/0x1720
[  892.515263][T15804]  ? __alloc_skb+0x200/0x380
[  892.515294][T15804]  ? __pfx__copy_from_iter+0x10/0x10
[  892.515335][T15804]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  892.515369][T15804]  ? __lock_acquire+0xb97/0x1ce0
[  892.515408][T15804]  netlink_sendmsg+0x829/0xdd0
[  892.515447][T15804]  ? __pfx_netlink_sendmsg+0x10/0x10
[  892.515485][T15804]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  892.515516][T15804]  ____sys_sendmsg+0xa98/0xc70
[  892.515539][T15804]  ? copy_msghdr_from_user+0x10a/0x160
[  892.515571][T15804]  ? __pfx_____sys_sendmsg+0x10/0x10
[  892.515623][T15804]  ___sys_sendmsg+0x134/0x1d0
[  892.515657][T15804]  ? __pfx____sys_sendmsg+0x10/0x10
[  892.515729][T15804]  __sys_sendmsg+0x16d/0x220
[  892.515762][T15804]  ? __pfx___sys_sendmsg+0x10/0x10
[  892.515795][T15804]  ? __x64_sys_futex+0x1e0/0x4c0
[  892.515843][T15804]  do_syscall_64+0xcd/0x490
[  892.515879][T15804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  892.515903][T15804] RIP: 0033:0x7f14bd18ebe9
[  892.515921][T15804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  892.515944][T15804] RSP: 002b:00007f14be0d1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  892.515966][T15804] RAX: ffffffffffffffda RBX: 00007f14bd3c5fa0 RCX: 00007f14bd18ebe9
[  892.515982][T15804] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006
[  892.515996][T15804] RBP: 00007f14bd211e19 R08: 0000000000000000 R09: 0000000000000000
[  892.516011][T15804] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  892.516025][T15804] R13: 00007f14bd3c6038 R14: 00007f14bd3c5fa0 R15: 00007ffcd3d2f738
[  892.516054][T15804]  </TASK>
[  892.726920][    C0] vkms_vblank_simulate: vblank timer overrun
[  894.955023][T15836] input: f�
 as /devices/virtual/input/input17
[  895.654633][T15846] FAULT_INJECTION: forcing a failure.
[  895.654633][T15846] name failslab, interval 1, probability 0, space 0, times 0
[  895.704030][T15846] CPU: 0 UID: 0 PID: 15846 Comm: syz.1.1984 Not tainted syzkaller #0 PREEMPT(full) 
[  895.704062][T15846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  895.704076][T15846] Call Trace:
[  895.704084][T15846]  <TASK>
[  895.704093][T15846]  dump_stack_lvl+0x16c/0x1f0
[  895.704129][T15846]  should_fail_ex+0x512/0x640
[  895.704161][T15846]  ? __kmalloc_noprof+0xbf/0x510
[  895.704189][T15846]  ? load_msg+0x118/0x4a0
[  895.704220][T15846]  should_failslab+0xc2/0x120
[  895.704250][T15846]  __kmalloc_noprof+0xd2/0x510
[  895.704276][T15846]  ? __pfx___might_resched+0x10/0x10
[  895.704299][T15846]  ? load_msg+0x43/0x4a0
[  895.704347][T15846]  load_msg+0x118/0x4a0
[  895.704389][T15846]  do_mq_timedsend+0x3d7/0xc40
[  895.704415][T15846]  ? __pfx_do_mq_timedsend+0x10/0x10
[  895.704439][T15846]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  895.704475][T15846]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  895.704512][T15846]  ? __fget_files+0x20e/0x3c0
[  895.704549][T15846]  __x64_sys_mq_timedsend+0x1cd/0x260
[  895.704574][T15846]  ? ksys_write+0x1ac/0x250
[  895.704602][T15846]  ? __pfx___x64_sys_mq_timedsend+0x10/0x10
[  895.704636][T15846]  do_syscall_64+0xcd/0x490
[  895.704670][T15846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  895.704694][T15846] RIP: 0033:0x7f14bd18ebe9
[  895.704712][T15846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  895.704734][T15846] RSP: 002b:00007f14be0b0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f2
[  895.704755][T15846] RAX: ffffffffffffffda RBX: 00007f14bd3c6090 RCX: 00007f14bd18ebe9
[  895.704771][T15846] RDX: 0000000000002000 RSI: 0000000000000000 RDI: 0000000000000003
[  895.704784][T15846] RBP: 00007f14be0b0090 R08: 0000000000000000 R09: 0000000000000000
[  895.704798][T15846] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  895.704811][T15846] R13: 00007f14bd3c6128 R14: 00007f14bd3c6090 R15: 00007ffcd3d2f738
[  895.704840][T15846]  </TASK>
[  896.605100][T15851] sg_write: process 2053 (syz.1.1986) changed security contexts after opening file descriptor, this is not allowed.
[  896.956866][T15855] vhci_hcd: invalid port number 23
[  897.007361][T15855] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[  897.405428][T15800] Process accounting resumed
[  898.637759][T15887] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1992'.
[  906.029425][T15982] vivid-007: =================  START STATUS  =================
[  906.117851][T15982] vivid-007: Generate PTS: true
[  906.172021][T15982] vivid-007: Generate SCR: true
[  906.238093][T15982] tpg source WxH: 320x240 (Y'CbCr)
[  906.293806][T15982] tpg field: 1
[  906.297220][T15982] tpg crop: (0,0)/320x240
[  906.444802][T15982] tpg compose: (0,0)/320x240
[  906.597214][T15982] tpg colorspace: 8
[  906.629117][T15982] tpg transfer function: 0/0
[  906.670054][T15982] tpg Y'CbCr encoding: 0/0
[  906.757030][T15982] tpg quantization: 0/0
[  906.815223][T15982] tpg RGB range: 0/2
[  906.898566][T15982] vivid-007: ==================  END STATUS  ==================
[  913.729796][T16086] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  913.872588][T16086] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  913.979912][T16086] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  914.071178][T16086] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  914.202528][T16091] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_cmd_wq": -EINTR
[  915.764657][T15302] Bluetooth: hci3: command 0x0c1a tx timeout
[  915.924534][T15302] Bluetooth: hci2: command 0x0c1a tx timeout
[  915.931508][T10461] Bluetooth: hci0: command 0x0c1a tx timeout
[  916.079984][T15302] Bluetooth: hci4: command 0x0c1a tx timeout
[  916.744909][T16134] FAULT_INJECTION: forcing a failure.
[  916.744909][T16134] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  916.916313][T16134] CPU: 0 UID: 0 PID: 16134 Comm: syz.1.2043 Not tainted syzkaller #0 PREEMPT(full) 
[  916.916344][T16134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  916.916359][T16134] Call Trace:
[  916.916366][T16134]  <TASK>
[  916.916375][T16134]  dump_stack_lvl+0x16c/0x1f0
[  916.916410][T16134]  should_fail_ex+0x512/0x640
[  916.916448][T16134]  _copy_to_user+0x32/0xd0
[  916.916471][T16134]  simple_read_from_buffer+0xcb/0x170
[  916.916496][T16134]  proc_fail_nth_read+0x197/0x240
[  916.916526][T16134]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  916.916553][T16134]  ? rw_verify_area+0xcf/0x6c0
[  916.916575][T16134]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  916.916603][T16134]  vfs_read+0x1e4/0xcf0
[  916.916632][T16134]  ? __pfx___mutex_lock+0x10/0x10
[  916.916663][T16134]  ? __pfx_vfs_read+0x10/0x10
[  916.916695][T16134]  ? __fget_files+0x20e/0x3c0
[  916.916727][T16134]  ksys_read+0x12a/0x250
[  916.916752][T16134]  ? __pfx_ksys_read+0x10/0x10
[  916.916785][T16134]  do_syscall_64+0xcd/0x490
[  916.916818][T16134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  916.916841][T16134] RIP: 0033:0x7f14bd18d5fc
[  916.916858][T16134] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  916.916879][T16134] RSP: 002b:00007f14be0b0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  916.916911][T16134] RAX: ffffffffffffffda RBX: 00007f14bd3c6090 RCX: 00007f14bd18d5fc
[  916.916925][T16134] RDX: 000000000000000f RSI: 00007f14be0b00a0 RDI: 0000000000000004
[  916.916942][T16134] RBP: 00007f14be0b0090 R08: 0000000000000000 R09: 0000000000000000
[  916.916955][T16134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  916.916968][T16134] R13: 00007f14bd3c6128 R14: 00007f14bd3c6090 R15: 00007ffcd3d2f738
[  916.916995][T16134]  </TASK>
[  919.072724][T16145] netlink: 186 bytes leftover after parsing attributes in process `syz.0.2046'.
[  919.619315][T16154] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2049'.
[  922.931585][T16183] random: crng reseeded on system resumption
[  923.025037][T16185] vhci_hcd: default hub control req: 2306 v0014 i0007 l2044
[  926.882670][T16290] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2062'.
[  927.229322][T16294] FAULT_INJECTION: forcing a failure.
[  927.229322][T16294] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  927.303242][T16294] CPU: 0 UID: 0 PID: 16294 Comm: syz.0.2063 Not tainted syzkaller #0 PREEMPT(full) 
[  927.303274][T16294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  927.303288][T16294] Call Trace:
[  927.303295][T16294]  <TASK>
[  927.303304][T16294]  dump_stack_lvl+0x16c/0x1f0
[  927.303340][T16294]  should_fail_ex+0x512/0x640
[  927.303378][T16294]  should_fail_alloc_page+0xe7/0x130
[  927.303412][T16294]  prepare_alloc_pages+0x3c2/0x610
[  927.303452][T16294]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  927.303485][T16294]  ? __pfx___might_resched+0x10/0x10
[  927.303510][T16294]  ? find_held_lock+0x2b/0x80
[  927.303534][T16294]  ? process_measurement+0x4a6/0x23e0
[  927.303556][T16294]  ? down_write+0x14d/0x200
[  927.303589][T16294]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  927.303616][T16294]  ? __lock_acquire+0x62e/0x1ce0
[  927.303659][T16294]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  927.303694][T16294]  ? policy_nodemask+0xea/0x4e0
[  927.303725][T16294]  alloc_pages_mpol+0x1fb/0x550
[  927.303755][T16294]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  927.303792][T16294]  alloc_pages_noprof+0x131/0x390
[  927.303822][T16294]  __pmd_alloc+0x3b/0x930
[  927.303858][T16294]  __handle_mm_fault+0xa06/0x2a50
[  927.303884][T16294]  ? mt_find+0x3ef/0xa30
[  927.303917][T16294]  ? __pfx___handle_mm_fault+0x10/0x10
[  927.303937][T16294]  ? __pfx_mt_find+0x10/0x10
[  927.303984][T16294]  ? find_vma+0xbf/0x140
[  927.304013][T16294]  ? __pfx_find_vma+0x10/0x10
[  927.304044][T16294]  handle_mm_fault+0x589/0xd10
[  927.304068][T16294]  ? __bpf_trace_exceptions+0x1/0x40
[  927.304104][T16294]  do_user_addr_fault+0x7a6/0x1370
[  927.304140][T16294]  ? rcu_is_watching+0x12/0xc0
[  927.304166][T16294]  exc_page_fault+0x5c/0xb0
[  927.304200][T16294]  asm_exc_page_fault+0x26/0x30
[  927.304222][T16294] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  927.304246][T16294] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 c3 cc cc cc cc 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  927.304272][T16294] RSP: 0018:ffffc90004b0fcc0 EFLAGS: 00050206
[  927.304290][T16294] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000fd0
[  927.304305][T16294] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88805ea90030
[  927.304319][T16294] RBP: 0000000000000fd0 R08: 0000000000000001 R09: ffffed100bd521ff
[  927.304334][T16294] R10: ffff88805ea90fff R11: 0000000000000000 R12: 0000000000000000
[  927.304348][T16294] R13: ffff88805ea90030 R14: dffffc0000000000 R15: ffff88802a877200
[  927.304377][T16294]  _copy_from_user+0x98/0xd0
[  927.304417][T16294]  load_msg+0x19e/0x4a0
[  927.304456][T16294]  do_mq_timedsend+0x3d7/0xc40
[  927.304483][T16294]  ? __pfx_do_mq_timedsend+0x10/0x10
[  927.304506][T16294]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  927.304543][T16294]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  927.304580][T16294]  ? __fget_files+0x20e/0x3c0
[  927.304612][T16294]  __x64_sys_mq_timedsend+0x1cd/0x260
[  927.304638][T16294]  ? ksys_write+0x1ac/0x250
[  927.304664][T16294]  ? __pfx___x64_sys_mq_timedsend+0x10/0x10
[  927.304699][T16294]  do_syscall_64+0xcd/0x490
[  927.304734][T16294]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  927.304757][T16294] RIP: 0033:0x7f7edcb8ebe9
[  927.304774][T16294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  927.304796][T16294] RSP: 002b:00007f7edda8c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f2
[  927.304816][T16294] RAX: ffffffffffffffda RBX: 00007f7edcdc6090 RCX: 00007f7edcb8ebe9
[  927.304832][T16294] RDX: 0000000000002000 RSI: 0000000000000000 RDI: 0000000000000003
[  927.304845][T16294] RBP: 00007f7edda8c090 R08: 0000000000000000 R09: 0000000000000000
[  927.304870][T16294] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  927.304882][T16294] R13: 00007f7edcdc6128 R14: 00007f7edcdc6090 R15: 00007ffc324dd718
[  927.304909][T16294]  </TASK>
[  928.971348][T16299] FAULT_INJECTION: forcing a failure.
[  928.971348][T16299] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  929.074881][T16299] CPU: 0 UID: 0 PID: 16299 Comm: syz.0.2065 Not tainted syzkaller #0 PREEMPT(full) 
[  929.074910][T16299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  929.074923][T16299] Call Trace:
[  929.074929][T16299]  <TASK>
[  929.074954][T16299]  dump_stack_lvl+0x16c/0x1f0
[  929.074986][T16299]  should_fail_ex+0x512/0x640
[  929.075020][T16299]  _copy_from_user+0x2e/0xd0
[  929.075061][T16299]  do_sock_getsockopt+0x3ca/0x440
[  929.075099][T16299]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  929.075133][T16299]  ? __fget_files+0x204/0x3c0
[  929.075170][T16299]  __sys_getsockopt+0x123/0x1b0
[  929.075214][T16299]  __x64_sys_getsockopt+0xbd/0x160
[  929.075240][T16299]  ? do_syscall_64+0x91/0x490
[  929.075268][T16299]  ? lockdep_hardirqs_on+0x7c/0x110
[  929.075294][T16299]  do_syscall_64+0xcd/0x490
[  929.075324][T16299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  929.075346][T16299] RIP: 0033:0x7f7edcb8ebe9
[  929.075361][T16299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  929.075381][T16299] RSP: 002b:00007f7edda8c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  929.075417][T16299] RAX: ffffffffffffffda RBX: 00007f7edcdc6090 RCX: 00007f7edcb8ebe9
[  929.075431][T16299] RDX: 0000000000000001 RSI: 0000000000000065 RDI: 0000000000000009
[  929.075443][T16299] RBP: 00007f7edda8c090 R08: 0000000000000000 R09: 0000000000000000
[  929.075456][T16299] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  929.075473][T16299] R13: 00007f7edcdc6128 R14: 00007f7edcdc6090 R15: 00007ffc324dd718
[  929.075500][T16299]  </TASK>
[  930.093510][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  930.102053][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  930.228421][T16288] Process accounting paused
[  932.234875][T16329] netlink: 'syz.0.2074': attribute type 10 has an invalid length.
[  932.320138][T16329] netlink: 210 bytes leftover after parsing attributes in process `syz.0.2074'.
[  934.998558][T16353] FAULT_INJECTION: forcing a failure.
[  934.998558][T16353] name failslab, interval 1, probability 0, space 0, times 0
[  935.274097][T16353] CPU: 0 UID: 0 PID: 16353 Comm: syz.3.2077 Not tainted syzkaller #0 PREEMPT(full) 
[  935.274128][T16353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  935.274142][T16353] Call Trace:
[  935.274149][T16353]  <TASK>
[  935.274157][T16353]  dump_stack_lvl+0x16c/0x1f0
[  935.274191][T16353]  should_fail_ex+0x512/0x640
[  935.274222][T16353]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  935.274253][T16353]  should_failslab+0xc2/0x120
[  935.274283][T16353]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  935.274309][T16353]  ? __pfx_futex_wait+0x10/0x10
[  935.274342][T16353]  ? kernel_wait4+0x1d4/0x280
[  935.274386][T16353]  ? getname_flags.part.0+0x4c/0x550
[  935.274423][T16353]  getname_flags.part.0+0x4c/0x550
[  935.274455][T16353]  ? __pfx_child_wait_callback+0x10/0x10
[  935.274488][T16353]  getname_flags+0x93/0xf0
[  935.274510][T16353]  vfs_fstatat+0xe1/0xf0
[  935.274543][T16353]  __do_sys_newfstatat+0x97/0x120
[  935.274575][T16353]  ? __pfx___do_sys_newfstatat+0x10/0x10
[  935.274628][T16353]  ? xfd_validate_state+0x61/0x180
[  935.274659][T16353]  ? __pfx_do_pwritev+0x10/0x10
[  935.274689][T16353]  do_syscall_64+0xcd/0x490
[  935.274721][T16353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  935.274741][T16353] RIP: 0033:0x7ffad298ebe9
[  935.274758][T16353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  935.274781][T16353] RSP: 002b:00007ffad388d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[  935.274800][T16353] RAX: ffffffffffffffda RBX: 00007ffad2bc5fa0 RCX: 00007ffad298ebe9
[  935.274814][T16353] RDX: 0000200000000440 RSI: 0000200000000400 RDI: ffffffffffffff9c
[  935.274828][T16353] RBP: 00007ffad2a11e19 R08: 0000000000000000 R09: 0000000000000000
[  935.274840][T16353] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  935.274853][T16353] R13: 00007ffad2bc6038 R14: 00007ffad2bc5fa0 R15: 00007ffc17157ac8
[  935.274879][T16353]  </TASK>
[  938.240832][T16364] FAULT_INJECTION: forcing a failure.
[  938.240832][T16364] name failslab, interval 1, probability 0, space 0, times 0
[  938.287459][T16369] FAULT_INJECTION: forcing a failure.
[  938.287459][T16369] name failslab, interval 1, probability 0, space 0, times 0
[  938.377735][T16369] CPU: 0 UID: 0 PID: 16369 Comm: syz.4.2082 Not tainted syzkaller #0 PREEMPT(full) 
[  938.377768][T16369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  938.377783][T16369] Call Trace:
[  938.377790][T16369]  <TASK>
[  938.377799][T16369]  dump_stack_lvl+0x16c/0x1f0
[  938.377835][T16369]  should_fail_ex+0x512/0x640
[  938.377870][T16369]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  938.377903][T16369]  should_failslab+0xc2/0x120
[  938.377936][T16369]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  938.377965][T16369]  ? copy_process+0x400f/0x7690
[  938.378000][T16369]  copy_process+0x400f/0x7690
[  938.378042][T16369]  ? __pfx_copy_process+0x10/0x10
[  938.378072][T16369]  ? futex_private_hash_put+0x176/0x300
[  938.378105][T16369]  ? futex_private_hash_put+0x18a/0x300
[  938.378138][T16369]  kernel_clone+0xfc/0x930
[  938.378169][T16369]  ? __pfx_futex_wake+0x10/0x10
[  938.378203][T16369]  ? __pfx_kernel_clone+0x10/0x10
[  938.378250][T16369]  __do_sys_clone+0xce/0x120
[  938.378280][T16369]  ? __pfx___do_sys_clone+0x10/0x10
[  938.378324][T16369]  ? xfd_validate_state+0x61/0x180
[  938.378369][T16369]  do_syscall_64+0xcd/0x490
[  938.378412][T16369]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  938.378437][T16369] RIP: 0033:0x7fb74978ebe9
[  938.378455][T16369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  938.378478][T16369] RSP: 002b:00007fb74a552038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  938.378500][T16369] RAX: ffffffffffffffda RBX: 00007fb7499c5fa0 RCX: 00007fb74978ebe9
[  938.378516][T16369] RDX: 0000200000000340 RSI: 0000000000000001 RDI: 0000000000000001
[  938.378530][T16369] RBP: 00007fb749811e19 R08: 0000000000000000 R09: 0000000000000000
[  938.378544][T16369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  938.378558][T16369] R13: 00007fb7499c6038 R14: 00007fb7499c5fa0 R15: 00007fff2c56ea68
[  938.378587][T16369]  </TASK>
[  938.572517][    C0] vkms_vblank_simulate: vblank timer overrun
[  938.790902][T16364] CPU: 0 UID: 0 PID: 16364 Comm: syz.1.2080 Not tainted syzkaller #0 PREEMPT(full) 
[  938.790948][T16364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  938.790963][T16364] Call Trace:
[  938.790970][T16364]  <TASK>
[  938.790978][T16364]  dump_stack_lvl+0x16c/0x1f0
[  938.791024][T16364]  should_fail_ex+0x512/0x640
[  938.791056][T16364]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  938.791090][T16364]  should_failslab+0xc2/0x120
[  938.791119][T16364]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  938.791149][T16364]  ? trace_kmem_cache_alloc+0x28/0xc0
[  938.791183][T16364]  ? key_alloc+0xc4d/0x1330
[  938.791217][T16364]  kmemdup_noprof+0x29/0x60
[  938.791244][T16364]  key_alloc+0xc4d/0x1330
[  938.791283][T16364]  ? __pfx_key_alloc+0x10/0x10
[  938.791311][T16364]  ? __asan_memcpy+0x3c/0x60
[  938.791340][T16364]  keyring_alloc+0x44/0xc0
[  938.791385][T16364]  keyctl_get_persistent+0x750/0x8c0
[  938.791421][T16364]  ? __pfx_keyctl_get_persistent+0x10/0x10
[  938.791458][T16364]  ? __x64_sys_futex+0x1e0/0x4c0
[  938.791486][T16364]  ? __x64_sys_futex+0x1e9/0x4c0
[  938.791520][T16364]  ? xfd_validate_state+0x61/0x180
[  938.791559][T16364]  __do_sys_keyctl+0x1a9/0x590
[  938.791585][T16364]  do_syscall_64+0xcd/0x490
[  938.791618][T16364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  938.791640][T16364] RIP: 0033:0x7f14bd18ebe9
[  938.791657][T16364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  938.791679][T16364] RSP: 002b:00007f14be0b0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  938.791699][T16364] RAX: ffffffffffffffda RBX: 00007f14bd3c6090 RCX: 00007f14bd18ebe9
[  938.791714][T16364] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 0000000000000016
[  938.791728][T16364] RBP: 00007f14bd211e19 R08: 0000000000000001 R09: 0000000000000000
[  938.791741][T16364] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000
[  938.791754][T16364] R13: 00007f14bd3c6128 R14: 00007f14bd3c6090 R15: 00007ffcd3d2f738
[  938.791782][T16364]  </TASK>
[  939.002056][    C0] vkms_vblank_simulate: vblank timer overrun
[  943.738511][T16413] FAULT_INJECTION: forcing a failure.
[  943.738511][T16413] name fail_futex, interval 1, probability 0, space 0, times 0
[  943.953845][T16413] CPU: 0 UID: 0 PID: 16413 Comm: syz.0.2093 Not tainted syzkaller #0 PREEMPT(full) 
[  943.953881][T16413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  943.953896][T16413] Call Trace:
[  943.953904][T16413]  <TASK>
[  943.953912][T16413]  dump_stack_lvl+0x16c/0x1f0
[  943.953958][T16413]  should_fail_ex+0x512/0x640
[  943.953995][T16413]  get_futex_key+0x293/0x1560
[  943.954026][T16413]  ? __pfx_get_futex_key+0x10/0x10
[  943.954055][T16413]  ? __mutex_trylock_common+0xe9/0x250
[  943.954095][T16413]  futex_wake+0xea/0x530
[  943.954134][T16413]  ? __pfx_futex_wake+0x10/0x10
[  943.954184][T16413]  do_futex+0x1e3/0x350
[  943.954218][T16413]  ? __pfx_do_futex+0x10/0x10
[  943.954245][T16413]  ? __might_fault+0xe3/0x190
[  943.954281][T16413]  mm_release+0x24e/0x300
[  943.954309][T16413]  do_exit+0x68e/0x2bf0
[  943.954343][T16413]  ? __pfx___might_resched+0x10/0x10
[  943.954373][T16413]  ? __pfx_do_exit+0x10/0x10
[  943.954408][T16413]  ? do_raw_spin_lock+0x12c/0x2b0
[  943.954444][T16413]  ? find_held_lock+0x2b/0x80
[  943.954472][T16413]  do_group_exit+0xd3/0x2a0
[  943.954508][T16413]  get_signal+0x2673/0x26d0
[  943.954537][T16413]  ? fput+0xb8/0xd0
[  943.954575][T16413]  ? __pfx___sys_sendto+0x10/0x10
[  943.954607][T16413]  ? __pfx_get_signal+0x10/0x10
[  943.954643][T16413]  arch_do_signal_or_restart+0x8f/0x790
[  943.954678][T16413]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  943.954729][T16413]  exit_to_user_mode_loop+0x84/0x110
[  943.954767][T16413]  do_syscall_64+0x3f6/0x490
[  943.954803][T16413]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  943.954827][T16413] RIP: 0033:0x7f7edcb90a7c
[  943.954846][T16413] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  943.954871][T16413] RSP: 002b:00007f7edda8aec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  943.954893][T16413] RAX: 000000000000001c RBX: 00007f7edda8afc0 RCX: 00007f7edcb90a7c
[  943.954910][T16413] RDX: 000000000000001c RSI: 00007f7edda8b010 RDI: 0000000000000004
[  943.954926][T16413] RBP: 0000000000000000 R08: 00007f7edda8af14 R09: 000000000000000c
[  943.954940][T16413] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004
[  943.954962][T16413] R13: 00007f7edda8af68 R14: 00007f7edda8b010 R15: 0000000000000000
[  943.954992][T16413]  </TASK>
[  947.885545][T16438] openvswitch: netlink: Message has 8 unknown bytes.
[  951.937556][T16496] FAULT_INJECTION: forcing a failure.
[  951.937556][T16496] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  952.137739][T16496] CPU: 0 UID: 0 PID: 16496 Comm: syz.0.2110 Not tainted syzkaller #0 PREEMPT(full) 
[  952.137766][T16496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  952.137778][T16496] Call Trace:
[  952.137784][T16496]  <TASK>
[  952.137792][T16496]  dump_stack_lvl+0x16c/0x1f0
[  952.137824][T16496]  should_fail_ex+0x512/0x640
[  952.137855][T16496]  _copy_to_user+0x32/0xd0
[  952.137875][T16496]  simple_read_from_buffer+0xcb/0x170
[  952.137897][T16496]  proc_fail_nth_read+0x197/0x240
[  952.137919][T16496]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  952.137941][T16496]  ? rw_verify_area+0xcf/0x6c0
[  952.137960][T16496]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  952.137981][T16496]  vfs_read+0x1e4/0xcf0
[  952.138006][T16496]  ? __pfx___mutex_lock+0x10/0x10
[  952.138032][T16496]  ? __pfx_vfs_read+0x10/0x10
[  952.138060][T16496]  ? __fget_files+0x20e/0x3c0
[  952.138079][T16496]  ? rcu_watching_snap_stopped_since+0xc0/0x110
[  952.138108][T16496]  ksys_read+0x12a/0x250
[  952.138129][T16496]  ? __pfx_ksys_read+0x10/0x10
[  952.138158][T16496]  do_syscall_64+0xcd/0x490
[  952.138186][T16496]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  952.138206][T16496] RIP: 0033:0x7f7edcb8d5fc
[  952.138220][T16496] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  952.138239][T16496] RSP: 002b:00007f7edda8c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  952.138258][T16496] RAX: ffffffffffffffda RBX: 00007f7edcdc6090 RCX: 00007f7edcb8d5fc
[  952.138271][T16496] RDX: 000000000000000f RSI: 00007f7edda8c0a0 RDI: 0000000000000006
[  952.138283][T16496] RBP: 00007f7edda8c090 R08: 0000000000000000 R09: 0000000000000000
[  952.138295][T16496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  952.138306][T16496] R13: 00007f7edcdc6128 R14: 00007f7edcdc6090 R15: 00007ffc324dd718
[  952.138331][T16496]  </TASK>
[  955.955203][T15302] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  961.601412][T16589] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input18
[  962.639229][T16602] aoe: invalid device specification 
[  964.072420][T16625] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2143'.
[  966.152892][T16592] Process accounting resumed
[  966.197343][T16640] zswap: compressor 000 not available
[  967.071409][T16671] FAULT_INJECTION: forcing a failure.
[  967.071409][T16671] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  967.301384][T16671] CPU: 0 UID: 0 PID: 16671 Comm: syz.0.2151 Not tainted syzkaller #0 PREEMPT(full) 
[  967.301410][T16671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  967.301422][T16671] Call Trace:
[  967.301428][T16671]  <TASK>
[  967.301435][T16671]  dump_stack_lvl+0x16c/0x1f0
[  967.301466][T16671]  should_fail_ex+0x512/0x640
[  967.301498][T16671]  _copy_from_user+0x2e/0xd0
[  967.301530][T16671]  memdup_user_nul+0x6c/0x120
[  967.301557][T16671]  subsystem_filter_write+0x6a/0x120
[  967.301584][T16671]  ? __pfx_subsystem_filter_write+0x10/0x10
[  967.301607][T16671]  vfs_write+0x29d/0x11d0
[  967.301633][T16671]  ? __pfx___mutex_lock+0x10/0x10
[  967.301660][T16671]  ? __pfx_vfs_write+0x10/0x10
[  967.301689][T16671]  ? __fget_files+0x20e/0x3c0
[  967.301717][T16671]  ksys_write+0x12a/0x250
[  967.301738][T16671]  ? __pfx_ksys_write+0x10/0x10
[  967.301768][T16671]  do_syscall_64+0xcd/0x490
[  967.301796][T16671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  967.301816][T16671] RIP: 0033:0x7f7edcb8ebe9
[  967.301831][T16671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  967.301850][T16671] RSP: 002b:00007f7eddaad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  967.301868][T16671] RAX: ffffffffffffffda RBX: 00007f7edcdc5fa0 RCX: 00007f7edcb8ebe9
[  967.301881][T16671] RDX: 0000000000000081 RSI: 0000200000000240 RDI: 0000000000000005
[  967.301893][T16671] RBP: 00007f7eddaad090 R08: 0000000000000000 R09: 0000000000000000
[  967.301905][T16671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  967.301917][T16671] R13: 00007f7edcdc6038 R14: 00007f7edcdc5fa0 R15: 00007ffc324dd718
[  967.301942][T16671]  </TASK>
[  967.476830][    C0] vkms_vblank_simulate: vblank timer overrun
[  969.101909][T16698] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2155'.
[  978.962764][T16781] FAULT_INJECTION: forcing a failure.
[  978.962764][T16781] name failslab, interval 1, probability 0, space 0, times 0
[  979.354047][T16781] CPU: 0 UID: 0 PID: 16781 Comm: syz.0.2173 Not tainted syzkaller #0 PREEMPT(full) 
[  979.354075][T16781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  979.354087][T16781] Call Trace:
[  979.354093][T16781]  <TASK>
[  979.354100][T16781]  dump_stack_lvl+0x16c/0x1f0
[  979.354132][T16781]  should_fail_ex+0x512/0x640
[  979.354159][T16781]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  979.354182][T16781]  should_failslab+0xc2/0x120
[  979.354207][T16781]  __kmalloc_cache_noprof+0x6a/0x3e0
[  979.354228][T16781]  ? create_filter_start.constprop.0+0xa5/0x300
[  979.354257][T16781]  create_filter_start.constprop.0+0xa5/0x300
[  979.354284][T16781]  apply_subsystem_event_filter+0x188/0x17e0
[  979.354315][T16781]  ? __might_fault+0x13b/0x190
[  979.354338][T16781]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[  979.354375][T16781]  ? _copy_from_user+0x59/0xd0
[  979.354410][T16781]  subsystem_filter_write+0x95/0x120
[  979.354438][T16781]  ? __pfx_subsystem_filter_write+0x10/0x10
[  979.354463][T16781]  vfs_write+0x29d/0x11d0
[  979.354491][T16781]  ? __pfx___mutex_lock+0x10/0x10
[  979.354523][T16781]  ? __pfx_vfs_write+0x10/0x10
[  979.354553][T16781]  ? __fget_files+0x20e/0x3c0
[  979.354583][T16781]  ksys_write+0x12a/0x250
[  979.354607][T16781]  ? __pfx_ksys_write+0x10/0x10
[  979.354638][T16781]  do_syscall_64+0xcd/0x490
[  979.354668][T16781]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  979.354688][T16781] RIP: 0033:0x7f7edcb8ebe9
[  979.354704][T16781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  979.354723][T16781] RSP: 002b:00007f7eddaad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  979.354741][T16781] RAX: ffffffffffffffda RBX: 00007f7edcdc5fa0 RCX: 00007f7edcb8ebe9
[  979.354755][T16781] RDX: 0000000000000081 RSI: 0000200000000240 RDI: 0000000000000005
[  979.354767][T16781] RBP: 00007f7eddaad090 R08: 0000000000000000 R09: 0000000000000000
[  979.354779][T16781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  979.354791][T16781] R13: 00007f7edcdc6038 R14: 00007f7edcdc5fa0 R15: 00007ffc324dd718
[  979.354816][T16781]  </TASK>
[  980.914662][T16796] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[  983.557126][T16805] FAULT_INJECTION: forcing a failure.
[  983.557126][T16805] name fail_futex, interval 1, probability 0, space 0, times 0
[  983.709356][T16805] CPU: 0 UID: 0 PID: 16805 Comm: syz.1.2178 Not tainted syzkaller #0 PREEMPT(full) 
[  983.709386][T16805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  983.709399][T16805] Call Trace:
[  983.709406][T16805]  <TASK>
[  983.709414][T16805]  dump_stack_lvl+0x16c/0x1f0
[  983.709446][T16805]  should_fail_ex+0x512/0x640
[  983.709480][T16805]  get_futex_key+0x1d0/0x1560
[  983.709509][T16805]  ? __pfx_get_futex_key+0x10/0x10
[  983.709534][T16805]  ? __queue_work+0x431/0x1160
[  983.709559][T16805]  futex_wait_setup+0x9d/0x550
[  983.709598][T16805]  __futex_wait+0x194/0x2f0
[  983.709631][T16805]  ? __pfx___futex_wait+0x10/0x10
[  983.709667][T16805]  ? __pfx_futex_wake_mark+0x10/0x10
[  983.709702][T16805]  ? futex_private_hash_put+0x176/0x300
[  983.709734][T16805]  ? futex_private_hash_put+0x18a/0x300
[  983.709779][T16805]  futex_wait+0xe8/0x380
[  983.709815][T16805]  ? __pfx_futex_wait+0x10/0x10
[  983.709856][T16805]  ? vfs_write+0xa38/0x11d0
[  983.709892][T16805]  do_futex+0x229/0x350
[  983.709922][T16805]  ? __pfx_do_futex+0x10/0x10
[  983.709953][T16805]  ? preempt_schedule_common+0x44/0xc0
[  983.709988][T16805]  __x64_sys_futex+0x1e0/0x4c0
[  983.710025][T16805]  ? fput+0x9b/0xd0
[  983.710058][T16805]  ? __pfx___x64_sys_futex+0x10/0x10
[  983.710089][T16805]  ? xfd_validate_state+0x61/0x180
[  983.710124][T16805]  ? __pfx_ksys_write+0x10/0x10
[  983.710160][T16805]  do_syscall_64+0xcd/0x490
[  983.710196][T16805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  983.710220][T16805] RIP: 0033:0x7f14bd18ebe9
[  983.710237][T16805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  983.710261][T16805] RSP: 002b:00007f14be0b00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  983.710284][T16805] RAX: ffffffffffffffda RBX: 00007f14bd3c6098 RCX: 00007f14bd18ebe9
[  983.710300][T16805] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f14bd3c6098
[  983.710314][T16805] RBP: 00007f14bd3c6090 R08: 0000000000000000 R09: 0000000000000000
[  983.710329][T16805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  983.710343][T16805] R13: 00007f14bd3c6128 R14: 00007ffcd3d2f650 R15: 00007ffcd3d2f738
[  983.710371][T16805]  </TASK>
[  983.928119][    C0] vkms_vblank_simulate: vblank timer overrun
[  986.010431][T16814] =======================================================
[  986.010431][T16814] WARNING: The mand mount option has been deprecated and
[  986.010431][T16814]          and is ignored by this kernel. Remove the mand
[  986.010431][T16814]          option from the mount to silence this warning.
[  986.010431][T16814] =======================================================
[  991.204988][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  991.231246][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  997.429666][T16861] Process accounting paused
[  998.066110][T16870] netlink: 'syz.4.2193': attribute type 1 has an invalid length.
[ 1011.780865][T16979] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2217'.
[ 1014.155123][T17005] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2224'.
[ 1017.961616][T17056] kAFS: unparsable volume name
[ 1021.101256][T17100] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2246'.
[ 1025.358021][T17147] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2256'.
[ 1027.430216][T17176] sd 0:0:1:0: device reset
[ 1027.988074][T17188] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2262'.
[ 1028.232714][T17191] can: request_module (can-proto-0) failed.
[ 1028.296504][T17195] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2267'.
[ 1028.488514][T17188] Process accounting resumed
[ 1029.649864][T17214] FAULT_INJECTION: forcing a failure.
[ 1029.649864][T17214] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1029.746722][T17214] CPU: 0 UID: 0 PID: 17214 Comm: syz.4.2274 Not tainted syzkaller #0 PREEMPT(full) 
[ 1029.746764][T17214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1029.746776][T17214] Call Trace:
[ 1029.746783][T17214]  <TASK>
[ 1029.746790][T17214]  dump_stack_lvl+0x16c/0x1f0
[ 1029.746823][T17214]  should_fail_ex+0x512/0x640
[ 1029.746854][T17214]  should_fail_alloc_page+0xe7/0x130
[ 1029.746882][T17214]  prepare_alloc_pages+0x3c2/0x610
[ 1029.746916][T17214]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1029.746941][T17214]  ? __pfx_stack_trace_save+0x10/0x10
[ 1029.746964][T17214]  ? stack_depot_save_flags+0x29/0x9c0
[ 1029.746996][T17214]  ? kasan_save_stack+0x42/0x60
[ 1029.747017][T17214]  ? kasan_save_stack+0x33/0x60
[ 1029.747037][T17214]  ? kasan_save_track+0x14/0x30
[ 1029.747057][T17214]  ? __kasan_kmalloc+0xaa/0xb0
[ 1029.747078][T17214]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1029.747101][T17214]  ? subsystem_filter_write+0x95/0x120
[ 1029.747125][T17214]  ? ksys_write+0x12a/0x250
[ 1029.747147][T17214]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1029.747181][T17214]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1029.747211][T17214]  ? policy_nodemask+0xea/0x4e0
[ 1029.747238][T17214]  alloc_pages_mpol+0x1fb/0x550
[ 1029.747265][T17214]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1029.747298][T17214]  ___kmalloc_large_node+0xed/0x160
[ 1029.747331][T17214]  __kmalloc_large_noprof+0x1c/0x70
[ 1029.747361][T17214]  append_filter_err+0x8f/0x5e0
[ 1029.747387][T17214]  apply_subsystem_event_filter+0x75a/0x17e0
[ 1029.747420][T17214]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[ 1029.747450][T17214]  ? _copy_from_user+0x59/0xd0
[ 1029.747484][T17214]  subsystem_filter_write+0x95/0x120
[ 1029.747510][T17214]  ? __pfx_subsystem_filter_write+0x10/0x10
[ 1029.747533][T17214]  vfs_write+0x29d/0x11d0
[ 1029.747559][T17214]  ? __pfx___mutex_lock+0x10/0x10
[ 1029.747585][T17214]  ? __pfx_vfs_write+0x10/0x10
[ 1029.747614][T17214]  ? __fget_files+0x20e/0x3c0
[ 1029.747647][T17214]  ksys_write+0x12a/0x250
[ 1029.747671][T17214]  ? __pfx_ksys_write+0x10/0x10
[ 1029.747702][T17214]  do_syscall_64+0xcd/0x490
[ 1029.747732][T17214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1029.747752][T17214] RIP: 0033:0x7fb74978ebe9
[ 1029.747768][T17214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1029.747788][T17214] RSP: 002b:00007fb74a552038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1029.747807][T17214] RAX: ffffffffffffffda RBX: 00007fb7499c5fa0 RCX: 00007fb74978ebe9
[ 1029.747821][T17214] RDX: 0000000000000081 RSI: 0000200000000240 RDI: 0000000000000005
[ 1029.747833][T17214] RBP: 00007fb74a552090 R08: 0000000000000000 R09: 0000000000000000
[ 1029.747845][T17214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1029.747857][T17214] R13: 00007fb7499c6038 R14: 00007fb7499c5fa0 R15: 00007fff2c56ea68
[ 1029.747883][T17214]  </TASK>
[ 1034.211751][T17250] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2284'.
[ 1035.556737][T10461] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1035.571681][T10461] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1035.580681][T10461] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1035.592669][T10461] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1035.603731][T10461] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1037.182050][T17259] chnl_net:caif_netlink_parms(): no params data found
[ 1037.677452][T10461] Bluetooth: hci1: command tx timeout
[ 1038.138835][T17265] zswap: compressor 000 not available
[ 1038.278047][T17259] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1038.324732][T17259] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1038.364283][T17259] bridge_slave_0: entered allmulticast mode
[ 1038.401922][T17259] bridge_slave_0: entered promiscuous mode
[ 1038.439896][T17259] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1038.478953][T17259] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1038.525311][T17259] bridge_slave_1: entered allmulticast mode
[ 1038.555112][T17259] bridge_slave_1: entered promiscuous mode
[ 1039.697666][   T59] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1039.745698][T10461] Bluetooth: hci1: command tx timeout
[ 1039.816024][T17259] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1039.870877][T17259] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1040.127579][   T59] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1040.945653][   T59] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1041.062275][T17259] team0: Port device team_slave_0 added
[ 1041.108421][T17259] team0: Port device team_slave_1 added
[ 1041.572198][   T59] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1041.717832][T17259] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1041.747047][T17259] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1041.826971][T10461] Bluetooth: hci1: command tx timeout
[ 1041.883571][T17259] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1041.963614][T17259] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1041.993715][T17259] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1042.143665][T17259] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1042.591548][T17259] hsr_slave_0: entered promiscuous mode
[ 1042.628654][T17259] hsr_slave_1: entered promiscuous mode
[ 1043.252516][   T59] team0: left allmulticast mode
[ 1043.278748][   T59] team0: left promiscuous mode
[ 1043.283716][   T59] bridge0: port 3(team0) entered disabled state
[ 1043.552122][   T59] bridge_slave_1: left allmulticast mode
[ 1043.577389][   T59] bridge_slave_1: left promiscuous mode
[ 1043.616281][   T59] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1043.756507][T17302] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2292'.
[ 1043.779957][   T59] bridge_slave_0: left allmulticast mode
[ 1043.806178][   T59] bridge_slave_0: left promiscuous mode
[ 1043.848855][   T59] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1043.881483][T10461] Bluetooth: hci1: command tx timeout
[ 1046.657193][   T59] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1046.863614][   T59] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1046.927566][   T59] bond0 (unregistering): Released all slaves
[ 1049.668868][   T59] hsr_slave_0: left promiscuous mode
[ 1049.698127][   T59] hsr_slave_1: left promiscuous mode
[ 1049.723682][   T59] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1049.745162][   T59] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1049.812670][   T59] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1049.832091][   T59] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1049.954393][   T59] veth1_macvtap: left promiscuous mode
[ 1049.981899][   T59] veth0_macvtap: left promiscuous mode
[ 1050.018600][   T59] veth1_vlan: left promiscuous mode
[ 1050.031563][   T59] veth0_vlan: left promiscuous mode
[ 1052.330063][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[ 1052.346779][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[ 1052.816218][T17259] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1052.917472][T17373] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19
[ 1052.994448][T17259] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1053.101066][T17259] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1053.863546][T17374] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input20
[ 1054.023456][T17259] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1054.932202][T17384] ieee80211 phy26: Failed to add default virtual iface
[ 1055.805534][T17259] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1055.912848][T17259] 8021q: adding VLAN 0 to HW filter on device team0
[ 1056.083041][ T4936] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1056.090245][ T4936] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1056.180944][ T4936] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1056.188151][ T4936] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1056.407274][T17259] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1057.393009][T17259] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1057.642095][T17259] veth0_vlan: entered promiscuous mode
[ 1057.716181][T17259] veth1_vlan: entered promiscuous mode
[ 1057.859958][T17259] veth0_macvtap: entered promiscuous mode
[ 1057.905933][T17259] veth1_macvtap: entered promiscuous mode
[ 1057.955025][T17461] Console: switching to colour VGA+ 80x25
[ 1058.001254][T17259] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1058.059456][T17259] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1058.159431][   T36] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1058.204265][   T36] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1058.373818][   T36] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1058.711506][   T36] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1059.257961][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1059.301842][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1059.383796][T14113] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1059.421568][T14113] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1061.612387][T17504] zswap: compressor 000 not available
[ 1062.813947][T17526] bridge0: port 3(team0) entered blocking state
[ 1062.895484][T17526] bridge0: port 3(team0) entered disabled state
[ 1062.950513][T17526] team0: entered allmulticast mode
[ 1063.012144][T17526] team_slave_0: entered allmulticast mode
[ 1063.065136][T17526] team_slave_1: entered allmulticast mode
[ 1063.152147][T17526] team0: entered promiscuous mode
[ 1063.190714][T17526] team_slave_0: entered promiscuous mode
[ 1063.228600][T17526] team_slave_1: entered promiscuous mode
[ 1063.271571][T17526] bridge0: port 3(team0) entered blocking state
[ 1063.277919][T17526] bridge0: port 3(team0) entered forwarding state
[ 1063.556156][T17465] Process accounting paused
[ 1064.508637][T17547] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[ 1064.508637][T17547] The task syz.3.2325 (17547) triggered the difference, watch for misbehavior.
[ 1065.421563][T17561] __vm_enough_memory: pid: 17561, comm: syz.0.2330, bytes: 4398046511104 not enough memory for the allocation
[ 1067.864758][T17609] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1073.761449][T17658] openvswitch: netlink: Flow key attr not present in new flow.
[ 1073.830592][T17658] netlink: 268 bytes leftover after parsing attributes in process `syz.1.2349'.
[ 1079.084421][T17721] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21
[ 1080.012410][T17725] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22
[ 1080.515045][T17750] ==================================================================
[ 1080.515062][T17750] BUG: KASAN: slab-out-of-bounds in do_con_write+0x3839/0x8280
[ 1080.515106][T17750] Write of size 2 at addr ffff88806ba3df94 by task syz.1.2367/17750
[ 1080.515124][T17750] 
[ 1080.515137][T17750] CPU: 0 UID: 0 PID: 17750 Comm: syz.1.2367 Not tainted syzkaller #0 PREEMPT(full) 
[ 1080.515162][T17750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1080.515176][T17750] Call Trace:
[ 1080.515183][T17750]  <TASK>
[ 1080.515191][T17750]  dump_stack_lvl+0x116/0x1f0
[ 1080.515222][T17750]  print_report+0xcd/0x630
[ 1080.515252][T17750]  ? __virt_addr_valid+0x81/0x610
[ 1080.515280][T17750]  ? __phys_addr+0xe8/0x180
[ 1080.515307][T17750]  ? do_con_write+0x3839/0x8280
[ 1080.515337][T17750]  kasan_report+0xe0/0x110
[ 1080.515366][T17750]  ? do_con_write+0x3839/0x8280
[ 1080.515400][T17750]  do_con_write+0x3839/0x8280
[ 1080.515432][T17750]  ? srcu_gp_start_if_needed+0xb70/0xe70
[ 1080.515473][T17750]  ? __pfx___mutex_lock+0x10/0x10
[ 1080.515505][T17750]  ? __pfx_do_con_write+0x10/0x10
[ 1080.515542][T17750]  con_write+0x23/0xb0
[ 1080.515572][T17750]  n_tty_write+0x41c/0x11e0
[ 1080.515598][T17750]  ? __pfx_n_tty_write+0x10/0x10
[ 1080.515617][T17750]  ? rcu_is_watching+0x12/0xc0
[ 1080.515639][T17750]  ? __pfx_woken_wake_function+0x10/0x10
[ 1080.515676][T17750]  ? kfree+0x24f/0x4d0
[ 1080.515694][T17750]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[ 1080.515727][T17750]  ? __pfx_n_tty_write+0x10/0x10
[ 1080.515747][T17750]  file_tty_write.constprop.0+0x504/0x9b0
[ 1080.515783][T17750]  redirected_tty_write+0xd4/0x150
[ 1080.515813][T17750]  vfs_write+0x7d0/0x11d0
[ 1080.515839][T17750]  ? __pfx_redirected_tty_write+0x10/0x10
[ 1080.515871][T17750]  ? __pfx_vfs_write+0x10/0x10
[ 1080.515895][T17750]  ? find_held_lock+0x2b/0x80
[ 1080.515925][T17750]  ksys_write+0x12a/0x250
[ 1080.515950][T17750]  ? __pfx_ksys_write+0x10/0x10
[ 1080.515986][T17750]  do_syscall_64+0xcd/0x490
[ 1080.516017][T17750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1080.516040][T17750] RIP: 0033:0x7f406058ebe9
[ 1080.516061][T17750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1080.516087][T17750] RSP: 002b:00007f40614f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1080.516108][T17750] RAX: ffffffffffffffda RBX: 00007f40607c5fa0 RCX: 00007f406058ebe9
[ 1080.516123][T17750] RDX: 0000000000000026 RSI: 00002000000005c0 RDI: 0000000000000003
[ 1080.516138][T17750] RBP: 00007f4060611e19 R08: 0000000000000000 R09: 0000000000000000
[ 1080.516152][T17750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1080.516165][T17750] R13: 00007f40607c6038 R14: 00007f40607c5fa0 R15: 00007ffcdb441a28
[ 1080.516187][T17750]  </TASK>
[ 1080.516194][T17750] 
[ 1080.516199][T17750] Allocated by task 17461:
[ 1080.516210][T17750]  kasan_save_stack+0x33/0x60
[ 1080.516234][T17750]  kasan_save_track+0x14/0x30
[ 1080.516257][T17750]  __kasan_kmalloc+0xaa/0xb0
[ 1080.516279][T17750]  __kmalloc_noprof+0x223/0x510
[ 1080.516302][T17750]  vc_do_resize+0x1de/0x10e0
[ 1080.516326][T17750]  vgacon_init+0x37c/0x440
[ 1080.516359][T17750]  visual_init+0x320/0x620
[ 1080.516378][T17750]  do_bind_con_driver.isra.0+0x57a/0xbf0
[ 1080.516406][T17750]  do_unbind_con_driver+0x571/0x6d0
[ 1080.516432][T17750]  store_bind+0x421/0x760
[ 1080.516456][T17750]  dev_attr_store+0x58/0x80
[ 1080.516488][T17750]  sysfs_kf_write+0xf2/0x150
[ 1080.516510][T17750]  kernfs_fop_write_iter+0x354/0x510
[ 1080.516529][T17750]  do_iter_readv_writev+0x662/0x9e0
[ 1080.516549][T17750]  vfs_writev+0x35f/0xde0
[ 1080.516570][T17750]  do_writev+0x132/0x340
[ 1080.516591][T17750]  do_syscall_64+0xcd/0x490
[ 1080.516619][T17750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1080.516640][T17750] 
[ 1080.516644][T17750] The buggy address belongs to the object at ffff88806ba3c000
[ 1080.516644][T17750]  which belongs to the cache kmalloc-4k of size 4096
[ 1080.516662][T17750] The buggy address is located 4084 bytes to the right of
[ 1080.516662][T17750]  allocated 4000-byte region [ffff88806ba3c000, ffff88806ba3cfa0)
[ 1080.516685][T17750] 
[ 1080.516691][T17750] The buggy address belongs to the physical page:
[ 1080.516705][T17750] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6ba38
[ 1080.516725][T17750] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1080.516743][T17750] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1080.516770][T17750] page_type: f5(slab)
[ 1080.516792][T17750] raw: 00fff00000000040 ffff88801b842140 0000000000000000 dead000000000001
[ 1080.516814][T17750] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[ 1080.516835][T17750] head: 00fff00000000040 ffff88801b842140 0000000000000000 dead000000000001
[ 1080.516856][T17750] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[ 1080.516877][T17750] head: 00fff00000000003 ffffea0001ae8e01 00000000ffffffff 00000000ffffffff
[ 1080.516898][T17750] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 1080.516912][T17750] page dumped because: kasan: bad access detected
[ 1080.516924][T17750] page_owner tracks the page as allocated
[ 1080.516931][T17750] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 16866, tgid 16863 (syz.0.2191), ts 998230231715, free_ts 985175812738
[ 1080.516975][T17750]  post_alloc_hook+0x1c0/0x230
[ 1080.516998][T17750]  get_page_from_freelist+0x132b/0x38e0
[ 1080.517023][T17750]  __alloc_frozen_pages_noprof+0x261/0x23f0
[ 1080.517048][T17750]  alloc_pages_mpol+0x1fb/0x550
[ 1080.517076][T17750]  new_slab+0x247/0x330
[ 1080.517093][T17750]  ___slab_alloc+0xcf2/0x1740
[ 1080.517111][T17750]  __slab_alloc.constprop.0+0x56/0xb0
[ 1080.517132][T17750]  __kmalloc_noprof+0x2f2/0x510
[ 1080.517155][T17750]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1080.517187][T17750]  tomoyo_get_exe+0x63/0xa0
[ 1080.517208][T17750]  tomoyo_write_control+0x689/0x1430
[ 1080.517227][T17750]  vfs_write+0x29d/0x11d0
[ 1080.517254][T17750]  ksys_write+0x12a/0x250
[ 1080.517276][T17750]  do_syscall_64+0xcd/0x490
[ 1080.517305][T17750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1080.517326][T17750] page last free pid 16786 tgid 16777 stack trace:
[ 1080.517337][T17750]  __free_frozen_pages+0x7d5/0x10f0
[ 1080.517356][T17750]  __put_partials+0x165/0x1c0
[ 1080.517376][T17750]  qlist_free_all+0x4d/0x120
[ 1080.517397][T17750]  kasan_quarantine_reduce+0x195/0x1e0
[ 1080.517421][T17750]  __kasan_slab_alloc+0x69/0x90
[ 1080.517465][T17750]  __kmalloc_cache_noprof+0x1f1/0x3e0
[ 1080.517486][T17750]  inetdev_init+0x66/0x5a0
[ 1080.517518][T17750]  inetdev_event+0xc5f/0x18a0
[ 1080.517551][T17750]  notifier_call_chain+0xbc/0x410
[ 1080.517579][T17750]  call_netdevice_notifiers_info+0xbe/0x140
[ 1080.517600][T17750]  register_netdevice+0x182e/0x2270
[ 1080.517632][T17750]  __ip_tunnel_create+0x540/0x6e0
[ 1080.517664][T17750]  ip_tunnel_init_net+0x22f/0x7d0
[ 1080.517698][T17750]  ops_init+0x1e2/0x5f0
[ 1080.517727][T17750]  setup_net+0x10f/0x380
[ 1080.517756][T17750]  copy_net_ns+0x2a6/0x5f0
[ 1080.517788][T17750] 
[ 1080.517793][T17750] Memory state around the buggy address:
[ 1080.517803][T17750]  ffff88806ba3de80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1080.517819][T17750]  ffff88806ba3df00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1080.517835][T17750] >ffff88806ba3df80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1080.517847][T17750]                          ^
[ 1080.517859][T17750]  ffff88806ba3e000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1080.517874][T17750]  ffff88806ba3e080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1080.517899][T17750] ==================================================================
[ 1080.554215][   T30] audit: type=1800 audit(4294967304.378:10): pid=17749 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2366" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[ 1080.554326][T17750] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1080.554342][T17750] CPU: 0 UID: 0 PID: 17750 Comm: syz.1.2367 Not tainted syzkaller #0 PREEMPT(full) 
[ 1080.554368][T17750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1080.554381][T17750] Call Trace:
[ 1080.554388][T17750]  <TASK>
[ 1080.554396][T17750]  dump_stack_lvl+0x3d/0x1f0
[ 1080.554447][T17750]  vpanic+0x6e8/0x7a0
[ 1080.554479][T17750]  ? __pfx_vpanic+0x10/0x10
[ 1080.554515][T17750]  ? do_con_write+0x3839/0x8280
[ 1080.554547][T17750]  panic+0xca/0xd0
[ 1080.554578][T17750]  ? __pfx_panic+0x10/0x10
[ 1080.554610][T17750]  ? do_con_write+0x3839/0x8280
[ 1080.554640][T17750]  ? preempt_schedule_common+0x44/0xc0
[ 1080.554669][T17750]  ? preempt_schedule_thunk+0x16/0x30
[ 1080.554704][T17750]  check_panic_on_warn+0xab/0xb0
[ 1080.554738][T17750]  end_report+0x107/0x170
[ 1080.554767][T17750]  kasan_report+0xee/0x110
[ 1080.554795][T17750]  ? do_con_write+0x3839/0x8280
[ 1080.554830][T17750]  do_con_write+0x3839/0x8280
[ 1080.554862][T17750]  ? srcu_gp_start_if_needed+0xb70/0xe70
[ 1080.554903][T17750]  ? __pfx___mutex_lock+0x10/0x10
[ 1080.554934][T17750]  ? __pfx_do_con_write+0x10/0x10
[ 1080.554981][T17750]  con_write+0x23/0xb0
[ 1080.555012][T17750]  n_tty_write+0x41c/0x11e0
[ 1080.555039][T17750]  ? __pfx_n_tty_write+0x10/0x10
[ 1080.555058][T17750]  ? rcu_is_watching+0x12/0xc0
[ 1080.555081][T17750]  ? __pfx_woken_wake_function+0x10/0x10
[ 1080.555118][T17750]  ? kfree+0x24f/0x4d0
[ 1080.555137][T17750]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[ 1080.555169][T17750]  ? __pfx_n_tty_write+0x10/0x10
[ 1080.555190][T17750]  file_tty_write.constprop.0+0x504/0x9b0
[ 1080.555226][T17750]  redirected_tty_write+0xd4/0x150
[ 1080.555256][T17750]  vfs_write+0x7d0/0x11d0
[ 1080.555283][T17750]  ? __pfx_redirected_tty_write+0x10/0x10
[ 1080.555315][T17750]  ? __pfx_vfs_write+0x10/0x10
[ 1080.555339][T17750]  ? find_held_lock+0x2b/0x80
[ 1080.555369][T17750]  ksys_write+0x12a/0x250
[ 1080.555394][T17750]  ? __pfx_ksys_write+0x10/0x10
[ 1080.555424][T17750]  do_syscall_64+0xcd/0x490
[ 1080.555456][T17750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1080.555479][T17750] RIP: 0033:0x7f406058ebe9
[ 1080.555496][T17750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1080.555517][T17750] RSP: 002b:00007f40614f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1080.555538][T17750] RAX: ffffffffffffffda RBX: 00007f40607c5fa0 RCX: 00007f406058ebe9
[ 1080.555553][T17750] RDX: 0000000000000026 RSI: 00002000000005c0 RDI: 0000000000000003
[ 1080.555567][T17750] RBP: 00007f4060611e19 R08: 0000000000000000 R09: 0000000000000000
[ 1080.555581][T17750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1080.555594][T17750] R13: 00007f40607c6038 R14: 00007f40607c5fa0 R15: 00007ffcdb441a28
[ 1080.555616][T17750]  </TASK>
[ 1080.555682][T17750] Kernel Offset: disabled