last executing test programs:

5.499077947s ago: executing program 2 (id=1411):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0xfffd, 0x8000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0)
write$auto_tty_fops_tty_io(r0, &(0x7f00000001c0)="976f09bd689a850edbe36136c8535f593331280bb0b4ba0edd7932ab185cca064833fd9b5d", 0x25)
sched_get_priority_min$auto(0x40)
openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, 0x0, 0x981e82, 0x0)
socket(0x6, 0x2, 0x80000000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x5f}, 0x1, 0x0, 0x0, 0x400c810}, 0x8800)
sendmmsg$auto(0x3, 0x0, 0x2, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
close_range$auto(0x2, 0x8, 0x0)
bpf$auto(0x0, &(0x7f0000000340)=@bpf_attr_5={@target_fd=0x5, 0x7f, 0x9c, 0x7b2, 0x1, @relative_id=0xfa, 0x80}, 0x96)
r1 = openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
mmap$auto(0x0, 0x400008, 0x1000df, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x4, 0x2020009, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000)
msync$auto(0x10000000000000, 0xe0, 0x6)
write$auto(0xffffffffffffffff, 0x0, 0x4)
preadv$auto(r1, &(0x7f0000000100)={&(0x7f00000001c0), 0x82}, 0x8, 0x6, 0x5)
r3 = getpgid$auto(0x0)
getpriority$auto_PRIO_PGRP(0x1, r3)
openat$auto_deferred_devs_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x8001, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000b00), 0xffffffffffffffff)

4.556068891s ago: executing program 3 (id=1417):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/netdevsim0/del_port\x00', 0xa001, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/platform/vhci_hcd.11/usb31/31-0:1.0/usb31-port6/power/runtime_suspended_time\x00', 0x0, 0x0)
r0 = set_tid_address$auto(0x0)
ioprio_get$auto_IOPRIO_WHO_PROCESS(0x1, r0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000180)='/:$]\x00', 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x88001, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r3, &(0x7f00000002c0)="f618de", 0x3)
sysfs$auto(0x2, 0x4d, 0x0)
r4 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r4, 0x6, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
madvise$auto(0x0, 0x8000000000000000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_11={0x7e, 0x81, 0x3, 0x7, 0x8, 0x5, 0x76f}, 0xf)
fcntl$auto_F_SETOWN_EX(r2, 0xf, 0xe3)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event1\x00', 0x22040, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x1fe, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r6)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_KVM_GET_VCPU_MMAP_SIZE(r5, 0x4008ae90, 0x0)

4.000448309s ago: executing program 0 (id=1418):
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mtd0\x00', 0x601, 0x0)
mmap$auto(0x0, 0xf4, 0xdf, 0xeb1, 0x401, 0x8000)
timer_create$auto(0x2, 0x0, 0x0)
timer_settime$auto(0x0, 0x7ff, &(0x7f0000000000)={{0xa6, 0x7}, {0x0, 0x3}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0)
sendmsg$auto_NL80211_CMD_VENDOR(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000480)={0x1c, r1, 0xb21, 0x70bd2a, 0x25dfdbff, {}, [@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0xfe}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008835}, 0x4000000)
shmctl$auto_SHM_UNLOCK(0x7fff, 0xc, 0x0)
newfstatat$auto(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x1, 0x15, 0x2, 0x5, 0xee00, 0xee01, 0x0, 0x3ff, 0x10000, 0x1, 0x101, 0x1, 0x3, 0x96, 0x100, 0x6, 0x5}, 0x7ff)
read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0)
ioctl$auto_BLKFLSBUF(0xffffffffffffffff, 0x1261, 0x0)

3.575577619s ago: executing program 0 (id=1419):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL802154_CMD_SET_CHANNEL(r0, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x24, 0x0, 0xa, 0x70bd2c, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_SUPPORTED_COMMANDS={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x24000000}, 0x8014)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
bind$auto(0xffffffffffffffff, 0x0, 0x80)
r1 = socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
setfsuid$auto(0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0)
r2 = io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
r4 = getpid()
process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
setsockopt$auto(r1, 0x10000000084, 0x9, 0x0, 0x9c)
ustat$auto(0x801, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
fanotify_mark$auto(r0, 0x2, 0x3, 0xffffffffffffffff, &(0x7f0000000340)='./file0\x00')
io_uring_setup$auto(0x0, 0x0)
bpf$auto_BPF_PROG_ATTACH(0x8, &(0x7f0000000180)=@link_create={@map_fd, @target_ifindex, 0x800, 0x101, @netkit={@relative_id=0x8001, 0x7d}}, 0x11)
madvise$auto(0x0, 0x1010001, 0x100000003)
socket(0x2, 0x5, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x0, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
sendmmsg$auto(r2, &(0x7f0000000100)={{&(0x7f0000000400)="68054786f55e2ed2ba92d5d04e7353e4d88d7300400000000000eabece713f9d23043dc2e611d920aac984ce3eafeddaf5eabbd1bc27fb607e881d424afee0d894b8b98d9500000000000000", 0x10, &(0x7f00000000c0)={0x0, 0x9}, 0x7, 0x0, 0x4, 0xb}, 0xb}, 0xffffffff, 0x2)

3.359336144s ago: executing program 2 (id=1420):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x1a, 0x800, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
eventfd$auto(0x4)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty51\x00', 0x40001, 0x0)
socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0)
unshare$auto(0x40000080)
unshare$auto(0x49e5)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
setsockopt$auto(0x3, 0x10000000084, 0x7c, 0x0, 0x8)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpu1/cache/index2/size\x00', 0x180, 0x0)
read$auto(r0, &(0x7f00000000c0)='/sys/devices/platform/vhci_hcd.7/usb23/23-0:1.0/ep_81/interval\x00', 0x3)

2.936833439s ago: executing program 2 (id=1423):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x8000, 0x0)
read$auto(r0, 0x0, 0x9) (fail_nth: 2)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1e, 0x805, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x60840, 0x0)
ioctl$auto(0x3, 0x40045532, 0x38)
r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x88c00, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_WRITEI_FRAMES2(r1, 0x40184150, &(0x7f0000000080)={0x3ff, &(0x7f0000000240), 0x2})
ioctl$auto_SNDRV_PCM_IOCTL_DRAIN2(r1, 0x4144, 0x0)

2.933864745s ago: executing program 3 (id=1424):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
execve$auto(&(0x7f0000000000)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00'})
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
r1 = socket(0x10, 0x2, 0x4)
write$auto(r1, &(0x7f0000000000)='-\x00', 0x2fb) (fail_nth: 2)

2.184168662s ago: executing program 1 (id=1426):
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/mnt\x00')
socket(0x2, 0x801, 0x106)
r0 = socket(0xa, 0x801, 0x84)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0x9)
execve$auto(&(0x7f00000001c0)=':,\x00\a\x8c\\zt\x0f\xdct\xa7\xd1R\x81\x06\x8a\x1b\x1c\xdd\x99\xb6\x9e\xce\x94\xf0a\xb5\x05\xf3\bn\xb7\xae\v\xc8zp\xdc\xb7\xd8\xea\xf3\xdb\x19?\xce\xdd\xd4K\xf1\xae\xfd[y\xe4\xe5B\x96\n\xa2\xef\x8c\x18\xa7\xa9\x11\x89\xf8[\x90\x81\xf1B\x03\xd8 \xc7\xc9Y\xf3\x9c?\xb9Qg*k\xdfH\xcad\xf8/\t\x9aEk\x9c\xaa\f\xba\x16\xe3U!\xfe\xee\xacK\x1ce\n\xc2-a\x17=q\xc1v\xe9\x96\x19|\x83\x84\xdf\xc7\xde\xb6\x80\x95\'\x98yG\xda\x9fO\x1a\xcc\x1b\xef\x11\"Vd}\t\xf9\xa4\xddU\t\x83\b\f\xce4\xe9U\x02<\x89C\xff\a\xee\x05\f\xcaS\x0e\xff\xab\x17\xceQ\x90\xff\xfd\xf5\xda\x90;o\xcb\x10v<\x1e\xf0\x92\xcd\xe8l\xe4\xabl\xbc\x8f\x06d=\xf2\v\x7f\x1e\x88\ft\xb7\x82\r\xaf\x8e\xcd[W*\x90\x1e\x9f\x06\xb2j?\n\xe0\x01\xf5\xcdo3\x1a\x91h\x9c\xcdtS\x89p\xe8+MKd5i7\x13\x9b{\xf7\xa0\xcc\x96G\xf6\xdbeB\xa1\x16y\xd1\x9ad\x9eJ\xe1\xd2X\xb6\x9a\x01\x97!\x05\x7f\x0f\xc9r\xcd\x87\a\xd2\x12\xdd\x8bh\x80\xc3\xfeW\xd2FSf\xb6\xf6\xa6\xcb\xd6dMre\xd5*\xd1\xa2\xcb\x92\x7f\xe46L\xa1\xaf\x8f\xc2jK\vQH\x92vn\xb2\xd6|p\xdcs\xdcN\"\xa1v&\t\x0f{Sld%6O\xc7=h3\xf4\x1c\xf71f\x99\xd1y\x87\x1e\x95\x82\x05\xec\xefuu\x9b\x06)\xdf\xd2\xc6\x83\x02Q8\xffB2\x8c\xefcp\xfa\x14\xa7mW\xa6\xcf9a\x90u\xc7\x92\xbf\x90e\x1f\xfa\x1c\xdb\xceq\xc3\x12\xddR\x01A\x98\x89C\x16\'\x93$\x1f\x0e\xb4y\x16\xc4\xb0/^)\xb6j\xd8\xea\x93D\x8c\xba\x03\xe9\x89?\xb9^\x17dx\xd8\\\x13:\xc8>\x98\xbcz^\x83\xfao\xae#\xa3m\x0e\xece<\xce\xad\xccaK\xa4\xa6\xf67\x1f\xd2\xdf\xaa\xb38\v\xe1\x10\'D\xf0H\x04c\x92\xab[If\xa4\x18\xd3\xc9\x13MR,\a\xdfc\xed\xcc\xc8\x87\xa7\x00'/539, 0x0, 0x0)
listen$auto(0x3, 0xfffffffa)
listen$auto(r0, 0x81)

2.18383618s ago: executing program 2 (id=1427):
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000)
prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0030e5", @ANYBLOB="01002dbd7000f9dbdf25010000000500070058000000080009009c781e01060002000100000008001800030000000800190006000000"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
mmap$auto(0x10000000001, 0x3, 0x1, 0xe31, 0xffffffffffffffff, 0x7ff)
r1 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/schedstat\x00', 0x2, 0x0)
read$auto_proc_single_file_operations_base(r1, &(0x7f0000000040)=""/228, 0xe4)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0)
socket(0x2, 0x5, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)

2.111305255s ago: executing program 0 (id=1428):
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x0, 0xffffffffffffffff, 0x4)
r0 = socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x242a82, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/machinecheck/machinecheck1/cmci_disabled\x00', 0x20102, 0x0)
sendfile$auto(0x6, 0x3, 0x0, 0xc01)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = open(0x0, 0x80842, 0x91)
read$auto(r1, 0x0, 0x1)
write$auto(0x3, 0x0, 0xfffffdef)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa001, 0x0)
write$auto(r0, &(0x7f0000000700)='0\x81=\"\xad/\x8d\b\x00\x18\xa4\xb0\xb4\xd9\x82=~\x17\xfb&L\xeb=j\a\xf1y\xb3\"\xeb\a\xdd\xf4\xf4Ry\xee\xd7\x1e\x1c\x86\x0f\xcf\x7f\xbf\xab\x12{\xc2\xc2*\xc1M+6/v8\xea\xe9\x85s4\xfe\xe5\t\x7fc\xfb7^\xb86J_\x1d1s!\x01\xff\xff\xff\xff\xff\xff\xff\x1dF\xe6\xf6\x17\x10+\xc0\xb0\xafc\x99\xd4\x150Y~\x1e\xe2\xd6x4fW\x13\xc4U`\x9e-X\xd7\xe2H^\fLS`\xfc\xbb\r\f\x00\xeaN\xa5\xd2\x82;\x7f\xa0.\x9a\xfb\x8d\xf3l\xf2\xd3\x95\xc1M5\xcb\xa6I\x067\xe36\xea\xe9\xe3\xf44oT_`8\xb3\xef\x04 \x05K\xf9\x87pl\xac\x86\nE\xc7e\xc5Q\x89\xcd@\x1c\x92\x00\x87\x976\x9f>\xa2\xcfm\xec\r\x11\x7f\x00\x00\x00\xb1\xde@\x02\xce\x03\xb7\xb1\xfb\x9fr\v\xb2\xe3\xc7\b\x85K /zm\x7f\x8fg,p\a\xc8\x7f\xa5\x87\x02\x87\xbbR=A\x00\x1f\x8a\xa7/Q\"J\xbb\xb0m\xf2SP\x84\x84S\xf0\xba\x9a\xf6\xb6`WI\xba\xba*8\x9f\xea\xe8K/\x98\xbc7~>\x12\x9buB\xcb\xe4\x8aKf\xba\x8c\x19m\xe6I\x02\xde\x80\x9d\x87}\xf4\xbd9\xaa\xd6\xdb1]\xde\xa0r\x14\xca56^\x94\xd2\xd8\xe6}9\x91\xb6\xf7\xa1=\x96\x11\xf1\\\xa91\x0e\xd1\xe4z\xc1;Pw!\x8b\xf5{\xc7Xd\xf1\xf2}\x96EVf\xc9\xa8\xcd\xe4\xc9\x8d\x1d7\xd5\x94\\\xb5\r\xd2\xaa\xe6H\xfe)\xb3a\x04\x1eRMl\xa3F\xa8W0\x90\xc9Ky#\x03\xf5~\xd2Z\xe9(\x99\b\x00M\xde\x01]\r\xd09k\xc2\x84\xc1\xabN\x96\x8a6\x98@\xd3\xab\xa8m\xdf\x8d\x1d\b\x82\xfcP\x87\x93\x80\x97Q\x86\x8a\x9c\xf8L\x0f\xa8@VE2\x9d\x1e`#\xd8\xd7M\xd4k1\xe6\x13Y\\\x83E\xd0e\x0eM\xa9Q\xac\x0e\x1d]\a\x19H\x81\xd2\xccF\xc6\xd4\xe2R$\xfa\xd6}\xbdsN\x18\xdf\xf5\xffP\xf5\f\xccL\xef\x83\xb3$\xd4\xf4\xb5\xe6\xd0 \xb9\xa7\x8e6\t\x83q\xef\b\xd2\xdb', 0x1)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0x2, 0xd6, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x81, 0x10800}, 0x3, 0x6, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x100083, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x1800})
madvise$auto(0x0, 0x2003f0, 0x15)
timerfd_create$auto(0x8, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
socketpair$auto(0x8000, 0x85, 0x1fffffff, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x8, 0x6, 0xd759)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000)

2.084839001s ago: executing program 1 (id=1429):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
ioctl$auto(0xffffffffffffffff, 0x64c8, 0x1e2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0xf90000, 0x0, 0xfffffffffffffffd)
mmap$auto(0x0, 0x1000, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x8)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

1.844602034s ago: executing program 0 (id=1430):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x6e)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000)
io_uring_setup$auto(0x1, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_STATUS322(0xffffffffffffffff, 0x806c4120, &(0x7f0000000100)={0x0, 0x6, 0x95d7, 0x7f, 0x3, 0x1, 0x9, 0x2, 0x0, 0x7, 0xb, 0x8, 0x100, 0x2, 0x3, 0x3ff, 0x400, 0x80000000, "0c1056e3480805f935e214e44f620fa9eba8238cacc3d9e6fc45cf541e509fc2457ae4ae"})
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdef)
unshare$auto(0x40000080)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3b87, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$dir(0xffffffffffffff9c, 0x0, 0x381000, 0x100)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
writev$auto(r1, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0)
ioctl$auto(r2, 0xc0285629, r2)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
open(0x0, 0x6041, 0x0)
socket(0x6, 0x2, 0x6)
semctl$auto_SETVAL(0x4, 0xfffffff7, 0x10, 0x0)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x3, 0x0, 0xfffffffffffffffc, 0x696b}, 0xed7138c}, 0x2, 0x9)
set_tid_address$auto(&(0x7f0000000040)=0x6)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0xa, 0x5, 0x84)

1.684497392s ago: executing program 3 (id=1431):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/i8042/serio1/protocol\x00', 0x181482, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x104, 0x6, 0x3}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
statmount$auto(0x0, &(0x7f0000000400)={0x8, 0x1, 0x9, 0x3, 0xb, 0x940, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x3, 0x4, 0xb0, 0x7, 0x6, 0x3, 0x5, 0x7}, 0x1fe, 0x81)
ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1)
socket(0x2, 0xa, 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000000240)=0x2)
sendmsg$auto_MACSEC_CMD_UPD_TXSA(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x4004040}, 0x4004004)
bind$auto(0x3, &(0x7f0000000080)=@generic={0x1a, "94c8e36ecb860bc93eef401d0770"}, 0x6b)
listen$auto(0x3, 0x81)
close_range$auto(0x2, 0x8, 0x0)

1.569497788s ago: executing program 3 (id=1432):
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/mnt\x00')
socket(0x2, 0x801, 0x106)
r0 = socket(0xa, 0x801, 0x84)
r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1c\x00', 0x44000, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_READN_FRAMES2(r1, 0x80184153, &(0x7f0000000100)={0x5, &(0x7f00000000c0)=&(0x7f0000000040)="16e4ab6c4e394e2b648783fd8ddb131c074e8b97e09a", 0x4})
mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0x9)
execve$auto(&(0x7f00000001c0)=':,\x00\a\x8c\\zt\x0f\xdct\xa7\xd1R\x81\x06\x8a\x1b\x1c\xdd\x99\xb6\x9e\xce\x94\xf0a\xb5\x05\xf3\bn\xb7\xae\v\xc8zp\xdc\xb7\xd8\xea\xf3\xdb\x19?\xce\xdd\xd4K\xf1\xae\xfd[y\xe4\xe5B\x96\n\xa2\xef\x8c\x18\xa7\xa9\x11\x89\xf8[\x90\x81\xf1B\x03\xd8 \xc7\xc9Y\xf3\x9c?\xb9Qg*k\xdfH\xcad\xf8/\t\x9aEk\x9c\xaa\f\xba\x16\xe3U!\xfe\xee\xacK\x1ce\n\xc2-a\x17=q\xc1v\xe9\x96\x19|\x83\x84\xdf\xc7\xde\xb6\x80\x95\'\x98yG\xda\x9fO\x1a\xcc\x1b\xef\x11\"Vd}\t\xf9\xa4\xddU\t\x83\b\f\xce4\xe9U\x02<\x89C\xff\a\xee\x05\f\xcaS\x0e\xff\xab\x17\xceQ\x90\xff\xfd\xf5\xda\x90;o\xcb\x10v<\x1e\xf0\x92\xcd\xe8l\xe4\xabl\xbc\x8f\x06d=\xf2\v\x7f\x1e\x88\ft\xb7\x82\r\xaf\x8e\xcd[W*\x90\x1e\x9f\x06\xb2j?\n\xe0\x01\xf5\xcdo3\x1a\x91h\x9c\xcdtS\x89p\xe8+MKd5i7\x13\x9b{\xf7\xa0\xcc\x96G\xf6\xdbeB\xa1\x16y\xd1\x9ad\x9eJ\xe1\xd2X\xb6\x9a\x01\x97!\x05\x7f\x0f\xc9r\xcd\x87\a\xd2\x12\xdd\x8bh\x80\xc3\xfeW\xd2FSf\xb6\xf6\xa6\xcb\xd6dMre\xd5*\xd1\xa2\xcb\x92\x7f\xe46L\xa1\xaf\x8f\xc2jK\vQH\x92vn\xb2\xd6|p\xdcs\xdcN\"\xa1v&\t\x0f{Sld%6O\xc7=h3\xf4\x1c\xf71f\x99\xd1y\x87\x1e\x95\x82\x05\xec\xefuu\x9b\x06)\xdf\xd2\xc6\x83\x02Q8\xffB2\x8c\xefcp\xfa\x14\xa7mW\xa6\xcf9a\x90u\xc7\x92\xbf\x90e\x1f\xfa\x1c\xdb\xceq\xc3\x12\xddR\x01A\x98\x89C\x16\'\x93$\x1f\x0e\xb4y\x16\xc4\xb0/^)\xb6j\xd8\xea\x93D\x8c\xba\x03\xe9\x89?\xb9^\x17dx\xd8\\\x13:\xc8>\x98\xbcz^\x83\xfao\xae#\xa3m\x0e\xece<\xce\xad\xccaK\xa4\xa6\xf67\x1f\xd2\xdf\xaa\xb38\v\xe1\x10\'D\xf0H\x04c\x92\xab[If\xa4\x18\xd3\xc9\x13MR,\a\xdfc\xed\xcc\xc8\x87\xa7\x00'/539, 0x0, 0x0)
listen$auto(0x3, 0xfffffffa)
listen$auto(r0, 0x81)

1.469363762s ago: executing program 3 (id=1433):
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x0, 0xffffffffffffffff, 0x4)
r0 = socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x242a82, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/machinecheck/machinecheck1/cmci_disabled\x00', 0x20102, 0x0)
sendfile$auto(0x6, 0x3, 0x0, 0xc01)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = open(0x0, 0x80842, 0x91)
read$auto(r1, 0x0, 0x1)
write$auto(0x3, 0x0, 0xfffffdef)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa001, 0x0)
write$auto(r0, &(0x7f0000000700)='0\x81=\"\xad/\x8d\b\x00\x18\xa4\xb0\xb4\xd9\x82=~\x17\xfb&L\xeb=j\a\xf1y\xb3\"\xeb\a\xdd\xf4\xf4Ry\xee\xd7\x1e\x1c\x86\x0f\xcf\x7f\xbf\xab\x12{\xc2\xc2*\xc1M+6/v8\xea\xe9\x85s4\xfe\xe5\t\x7fc\xfb7^\xb86J_\x1d1s!\x01\xff\xff\xff\xff\xff\xff\xff\x1dF\xe6\xf6\x17\x10+\xc0\xb0\xafc\x99\xd4\x150Y~\x1e\xe2\xd6x4fW\x13\xc4U`\x9e-X\xd7\xe2H^\fLS`\xfc\xbb\r\f\x00\xeaN\xa5\xd2\x82;\x7f\xa0.\x9a\xfb\x8d\xf3l\xf2\xd3\x95\xc1M5\xcb\xa6I\x067\xe36\xea\xe9\xe3\xf44oT_`8\xb3\xef\x04 \x05K\xf9\x87pl\xac\x86\nE\xc7e\xc5Q\x89\xcd@\x1c\x92\x00\x87\x976\x9f>\xa2\xcfm\xec\r\x11\x7f\x00\x00\x00\xb1\xde@\x02\xce\x03\xb7\xb1\xfb\x9fr\v\xb2\xe3\xc7\b\x85K /zm\x7f\x8fg,p\a\xc8\x7f\xa5\x87\x02\x87\xbbR=A\x00\x1f\x8a\xa7/Q\"J\xbb\xb0m\xf2SP\x84\x84S\xf0\xba\x9a\xf6\xb6`WI\xba\xba*8\x9f\xea\xe8K/\x98\xbc7~>\x12\x9buB\xcb\xe4\x8aKf\xba\x8c\x19m\xe6I\x02\xde\x80\x9d\x87}\xf4\xbd9\xaa\xd6\xdb1]\xde\xa0r\x14\xca56^\x94\xd2\xd8\xe6}9\x91\xb6\xf7\xa1=\x96\x11\xf1\\\xa91\x0e\xd1\xe4z\xc1;Pw!\x8b\xf5{\xc7Xd\xf1\xf2}\x96EVf\xc9\xa8\xcd\xe4\xc9\x8d\x1d7\xd5\x94\\\xb5\r\xd2\xaa\xe6H\xfe)\xb3a\x04\x1eRMl\xa3F\xa8W0\x90\xc9Ky#\x03\xf5~\xd2Z\xe9(\x99\b\x00M\xde\x01]\r\xd09k\xc2\x84\xc1\xabN\x96\x8a6\x98@\xd3\xab\xa8m\xdf\x8d\x1d\b\x82\xfcP\x87\x93\x80\x97Q\x86\x8a\x9c\xf8L\x0f\xa8@VE2\x9d\x1e`#\xd8\xd7M\xd4k1\xe6\x13Y\\\x83E\xd0e\x0eM\xa9Q\xac\x0e\x1d]\a\x19H\x81\xd2\xccF\xc6\xd4\xe2R$\xfa\xd6}\xbdsN\x18\xdf\xf5\xffP\xf5\f\xccL\xef\x83\xb3$\xd4\xf4\xb5\xe6\xd0 \xb9\xa7\x8e6\t\x83q\xef\b\xd2\xdb', 0x1)
mmap$auto(0x0, 0x40009, 0xdf, 0xffffffffffffff93, r1, 0x8)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0x2, 0xd6, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x81, 0x10800}, 0x3, 0x6, 0xffffffffffffffdd, 0x1008000, 0x0, 0x80000004, 0x100083, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x1800})
madvise$auto(0x0, 0x2003f0, 0x15)
timerfd_create$auto(0x8, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
socketpair$auto(0x8000, 0x85, 0x1fffffff, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x8, 0x6, 0xd759)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000)

1.411425621s ago: executing program 1 (id=1434):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
statx$auto(0x2, 0x0, 0x1000, 0x8, 0x0)
ioctl$auto(r0, 0x40104d05, 0x8)

1.351552782s ago: executing program 1 (id=1435):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x8, 0xbe4, 0x7)
r0 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1p\x00', 0x800, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_STATUS_EXT64(r0, 0xc0984124, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0)
read$auto(r1, 0x0, 0x39b8)
r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0)
ioctl$auto_SG_SET_FORCE_PACK_ID(r2, 0x227b, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
clone$auto(0x400d56e, 0x5, 0x0, 0x0, 0x8c5)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22040, 0x75)
socket(0x840000000002, 0x3, 0xff)
connect$auto(0x3, &(0x7f0000000000), 0x55)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4, @multicast2}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
io_uring_setup$auto(0x9e6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, 0x0, 0x20000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)

1.078899036s ago: executing program 2 (id=1436):
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x6c, 0x0, 0x800, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IFINDEX={0x8}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_IF1_SEQ={0x6, 0x6, 0xd}, @HSR_A_IF1_SEQ={0x6, 0x6, 0x7}, @HSR_A_NODE_ADDR={0xa, 0x1, @multicast}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

807.394481ms ago: executing program 2 (id=1437):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x4)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000e3d9)
mmap$auto(0x0, 0x400006, 0xdf, 0x9b72, 0x2, 0x8000)
pivot_root$auto(0x0, 0x0)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
mmap$auto(0x0, 0xbd31, 0x4000000000df, 0x40000000000eb1, 0x401, 0x3fe)
getpid()
socket(0x0, 0x800, 0x9)
write$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffffff, &(0x7f0000000040)="6524b5aac083b05c1173a1174ad8f5246cdc9552bbdffc095f2e", 0x1a)
socket(0xa, 0x3, 0x5)
setsockopt$auto(0x3, 0x29, 0x46, 0x0, 0x808)
mmap$auto(0x59599c6c, 0x2020005, 0x2, 0xfb, 0xffffffffffffffff, 0x5)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/loop0\x00', 0xded40, 0x0)
write$auto(r1, &(0x7f0000000180)='//\xf2\x00', 0xab81)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
shmdt$auto(0x0)
socket(0x7, 0x3, 0x2)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
unshare$auto(0x8000000)
syz_clone(0x41080100, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)

654.270441ms ago: executing program 0 (id=1438):
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x6c, 0x0, 0x800, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IFINDEX={0x8}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_NODE_ADDR={0xa}, @HSR_A_IF1_SEQ={0x6, 0x6, 0xd}, @HSR_A_IF1_SEQ={0x6, 0x6, 0x7}, @HSR_A_NODE_ADDR={0xa, 0x1, @multicast}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000000)=<r0=>0xffffffffffffffff)
r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_SMC_NETLINK_GET_FBACK_STATS(r0, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="0b2674e3d88f38c9df25000000070f090032c95adccc09742c85e13c9da4562a1159239f72c84cae484f77dd99cc054aa11eb1a624053cd226666dbc1f7f76bbeb1d4d3ca9d1d95f085c7befd82c10881e04ff1d673c48b78148e16f00f409d2cfa276dd578c2a550920"], 0x18}, 0x1, 0x0, 0x0, 0x4004}, 0x8001)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/oss/devices\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000000)=""/65, 0x41)
write$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000400)="e47add27633ab50e5076ced052b9bbe151cb1705efe2585cfb4f1278e784f82f5b710ba9f1facb692d705664c6fb38725805568a6af60119cebc2fce86db933d670583f391b2b4363c89a4d48ed0ee997a08708257746e37bf8c5e404066aa9afd143d9f36332cf01f4780823eb522f0df2d2c8d28aeffa2c162a84a6cc607330da9f314bcb6fcf5e060", 0x8a)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
timer_create$auto(0x3, 0x0, 0x0)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x0, 0x400}, {0x0, 0x87}}, 0x0)
mmap$auto(0x0, 0x5, 0xfff, 0x44eb2, 0x10006, 0x300000000000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

611.332122ms ago: executing program 3 (id=1439):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder1\x00', 0x0, 0x0)
dup$auto(r0)
socket(0x2, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x106)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948a, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x81, 0x3, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x958b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x40008000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x10000]}, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x23, 0x0)
r2 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r2, 0x0, 0x4)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(r4, 0xae41, r3)
ioctl$auto_KVM_GET_MSRS(r5, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x4b564d03, 0x400, 0x1}]})
socket(0x28, 0x801, 0x0)

472.995358ms ago: executing program 1 (id=1440):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/i8042/serio1/protocol\x00', 0x181482, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x104, 0x6, 0x3}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
statmount$auto(0x0, &(0x7f0000000400)={0x8, 0x1, 0x9, 0x3, 0xb, 0x940, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x3, 0x4, 0xb0, 0x7, 0x6, 0x3, 0x5, 0x7}, 0x1fe, 0x81)
ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1)
socket(0x2, 0xa, 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000000240)=0x2)
sendmsg$auto_MACSEC_CMD_UPD_TXSA(r1, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x4004040}, 0x4004004)
bind$auto(0x3, &(0x7f0000000080)=@generic={0x1a, "94c8e36ecb860bc93eef401d0770"}, 0x6b)
listen$auto(0x3, 0x81)
close_range$auto(0x2, 0x8, 0x0)

124.868189ms ago: executing program 0 (id=1441):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/bus/netdevsim/unlink_device\x00', 0x10b081, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (fail_nth: 2)

0s ago: executing program 1 (id=1442):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x8000, 0x0)
read$auto(r0, 0x0, 0x9)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1e, 0x805, 0x0)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x60840, 0x0)
mmap$auto(0x6, 0x5, 0x1fc, 0x16, r1, 0x7ffd)
r2 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
r3 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/bluetooth/hci2/force_devcoredump\x00', 0x20040, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x0, 0x0)
r4 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f00000001c0)="b6b065cd502e4e86239042fb2ebfae06c1172221d9a209c0c78f971602", 0x12, 0x0, 0x9, 0x0, 0xfffffffffffffffd, 0xb}, 0x9}, 0x8a7, 0x20000003)
r5 = getpgrp(0xffffffffffffffff)
fcntl$auto_F_SETOWN(r2, 0x8, r5)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc0}, 0x1, 0x0, 0x0, 0x9}, 0x100007}, 0x31cd3c7c, 0xb1)
ioctl$auto(0x3, 0x40045532, 0x38)
r6 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x88c00, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_WRITEI_FRAMES2(r6, 0x40184150, &(0x7f0000000080)={0x3ff, &(0x7f0000000240), 0x2})
ioctl$auto_SNDRV_PCM_IOCTL_DRAIN2(r6, 0x4144, 0x0)
open(&(0x7f0000000240)='./file0\x00', 0x2042c0, 0x10)
msgget$auto(0x80000000, 0x1)
r7 = openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/projid_map\x00', 0x400, 0x0)
write$auto_proc_projid_map_operations_base(r7, &(0x7f0000000100)="83be4dc543c295895e9fbd6a70aed89e69dee381f4b9fcfd9d6edf166b688d0c2e3d1bf5529677ad9f36e08887ee3164e5876265c56217b324a9e8d83932e26d6f624e67346c17b246111193e25ffc6b2c061f06c9e302cc27cfc831f23ed724ea11174232fa97e064e20dc22dc7d656531e9534b90460fc07981241de3223b1f7b4a19e4a7083aac15fee8cfeb36738bc16c7418e5efa514c572a64588ce28e1f087db0", 0xa4)

kernel console output (not intermixed with test programs):






	

	


	


	

				
	



	






	
	
	
	











	




	







	

	









	
		

	


		

		
	
		
	
	



			








	














	
	
	




	





	
	
	








	

	






	





	







		









	

	

	
		

	


	
	

		
	
		
	
	



			








	


	









	








	
	
	
		


	
			
	






	







	








	

	














	
				
	
	



	
			
		
		



	
		

	


	
	

		
	
		
	
	



			








	



	





	








	

	

	
	



	





	








	







	








		









	
		

	


		

		
	
		
	
	



			








	

	


	


	

				
	



	



			
	



				

				











	


	





	
	







	
		

	


	
	

		
	
		
	
	



			








	

	










	
		

	


	

	





	
	


	
	








	







	







	
	








	

	

	
		

	


		

		
	
		
	
	



			








	






	
	


	
	


	
	









	





	






		







	

	
			
	
	

	

		
		
	

	

		
		
	

	
		

	
		

	


	
	

		
	
		
	
	



			








	


	















	


	

	
	
	
	

	
	
	
	
	
	

	






	





	






		













	
		

	


	
	

		
	
		
	
	



			








	

	












	







	


	

	





	
	


	
	








	







	








		









	

	

[  373.534818][T10554] FAULT_INJECTION: forcing a failure.
[  373.534818][T10554] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  373.549504][T10554] CPU: 1 UID: 0 PID: 10554 Comm: syz.2.1227 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  373.549546][T10554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  373.549567][T10554] Call Trace:
[  373.549577][T10554]  <TASK>
[  373.549590][T10554]  dump_stack_lvl+0x16c/0x1f0
[  373.549627][T10554]  should_fail_ex+0x512/0x640
[  373.549674][T10554]  _copy_to_user+0x32/0xd0
[  373.549712][T10554]  simple_read_from_buffer+0xcb/0x170
[  373.549763][T10554]  proc_fail_nth_read+0x197/0x270
[  373.549809][T10554]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  373.549854][T10554]  ? security_file_permission+0x71/0x210
[  373.549906][T10554]  ? rw_verify_area+0xcf/0x680
[  373.549954][T10554]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  373.549999][T10554]  vfs_read+0x1e4/0xc60
[  373.550031][T10554]  ? __pfx___mutex_lock+0x10/0x10
[  373.550065][T10554]  ? __pfx_vfs_read+0x10/0x10
[  373.550093][T10554]  ? __fget_files+0x204/0x3c0
[  373.550140][T10554]  ? rcu_is_watching+0x12/0xc0
[  373.550177][T10554]  ? __fget_files+0x20e/0x3c0
[  373.550231][T10554]  ksys_read+0x12a/0x250
[  373.550258][T10554]  ? __pfx_ksys_read+0x10/0x10
[  373.550292][T10554]  do_syscall_64+0xcd/0x490
[  373.550325][T10554]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.550358][T10554] RIP: 0033:0x7f71f658d3bc
[  373.550383][T10554] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  373.550415][T10554] RSP: 002b:00007f71f73fa030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  373.550444][T10554] RAX: ffffffffffffffda RBX: 00007f71f67b5fa0 RCX: 00007f71f658d3bc
[  373.550466][T10554] RDX: 000000000000000f RSI: 00007f71f73fa0a0 RDI: 0000000000000004
[  373.550487][T10554] RBP: 00007f71f73fa090 R08: 0000000000000000 R09: 0000000000000000
[  373.550508][T10554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  373.550522][T10554] R13: 0000000000000000 R14: 00007f71f67b5fa0 R15: 00007fff526fe4b8
[  373.550545][T10554]  </TASK>
[  373.750303][    C1] vkms_vblank_simulate: vblank timer overrun
[  373.859603][T10555] netlink: zone id is out of range
[  373.872090][T10555] netlink: zone id is out of range
[  373.949718][T10555] netlink: set zone limit has 8 unknown bytes
[  374.476369][T10571] FAULT_INJECTION: forcing a failure.
[  374.476369][T10571] name failslab, interval 1, probability 0, space 0, times 0
[  374.491462][T10571] CPU: 0 UID: 0 PID: 10571 Comm: syz.1.1231 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  374.491508][T10571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  374.491529][T10571] Call Trace:
[  374.491540][T10571]  <TASK>
[  374.491553][T10571]  dump_stack_lvl+0x16c/0x1f0
[  374.491591][T10571]  should_fail_ex+0x512/0x640
[  374.491628][T10571]  ? tomoyo_encode2+0x100/0x3e0
[  374.491663][T10571]  should_failslab+0xc2/0x120
[  374.491705][T10571]  __kmalloc_noprof+0xd2/0x510
[  374.491737][T10571]  ? d_absolute_path+0x136/0x1a0
[  374.491781][T10571]  tomoyo_encode2+0x100/0x3e0
[  374.491814][T10571]  tomoyo_encode+0x29/0x50
[  374.491843][T10571]  tomoyo_realpath_from_path+0x18f/0x6e0
[  374.491889][T10571]  tomoyo_path_number_perm+0x245/0x580
[  374.491936][T10571]  ? tomoyo_path_number_perm+0x237/0x580
[  374.491984][T10571]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  374.492042][T10571]  ? preempt_count_add+0x76/0x150
[  374.492105][T10571]  ? rcu_is_watching+0x12/0xc0
[  374.492141][T10571]  ? __fget_files+0x204/0x3c0
[  374.492192][T10571]  ? hook_file_ioctl_common+0x145/0x410
[  374.492236][T10571]  ? lock_release+0x201/0x2f0
[  374.492282][T10571]  ? __fget_files+0x20e/0x3c0
[  374.492335][T10571]  security_file_ioctl+0x9b/0x240
[  374.492385][T10571]  __x64_sys_ioctl+0xb7/0x210
[  374.492434][T10571]  do_syscall_64+0xcd/0x490
[  374.492470][T10571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.492503][T10571] RIP: 0033:0x7f547f38e9a9
[  374.492528][T10571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  374.492561][T10571] RSP: 002b:00007f54801c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  374.492592][T10571] RAX: ffffffffffffffda RBX: 00007f547f5b5fa0 RCX: 00007f547f38e9a9
[  374.492615][T10571] RDX: ffffffffffffffff RSI: 000000000000ab04 RDI: 0000000000000004
[  374.492636][T10571] RBP: 00007f54801c5090 R08: 0000000000000000 R09: 0000000000000000
[  374.492658][T10571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  374.492678][T10571] R13: 0000000000000000 R14: 00007f547f5b5fa0 R15: 00007ffd88119da8

[  374.492710][T10571]  </TASK>
[  374.492839][T10571] ERROR: Out of memory at tomoyo_realpath_from_path.
syzkaller
syzkaller login: [  376.323685][T10592] FAULT_INJECTION: forcing a failure.
[  376.323685][T10592] name failslab, interval 1, probability 0, space 0, times 0
[  376.382637][T10592] CPU: 0 UID: 0 PID: 10592 Comm: syz.2.1237 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  376.382683][T10592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  376.382832][T10592] Call Trace:
[  376.382848][T10592]  <TASK>
[  376.382861][T10592]  dump_stack_lvl+0x16c/0x1f0
[  376.382900][T10592]  should_fail_ex+0x512/0x640
[  376.382937][T10592]  should_failslab+0xc2/0x120
[  376.382975][T10592]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  376.383008][T10592]  ? rcu_is_watching+0x12/0xc0
[  376.383042][T10592]  ? __alloc_skb+0x2b2/0x380
[  376.383076][T10592]  __alloc_skb+0x2b2/0x380
[  376.383112][T10592]  ? __pfx___alloc_skb+0x10/0x10
[  376.383144][T10592]  ? process_measurement+0x180/0x23e0
[  376.383182][T10592]  ? tcp_send_mss+0x159/0x2c0
[  376.383232][T10592]  mptcp_sendmsg_frag+0x4c9/0x2e30
[  376.383285][T10592]  ? __pfx_mptcp_subflow_get_send+0x10/0x10
[  376.383336][T10592]  ? __pfx_mptcp_sendmsg_frag+0x10/0x10
[  376.383385][T10592]  __subflow_push_pending+0x345/0xac0
[  376.383436][T10592]  ? __mptcp_push_pending+0x2ad/0x550
[  376.383489][T10592]  __mptcp_push_pending+0x2ce/0x550
[  376.383575][T10592]  ? __pfx___mptcp_push_pending+0x10/0x10
[  376.383626][T10592]  ? mptcp_sendmsg+0x13e/0x1eb0
[  376.383672][T10592]  ? rcu_is_watching+0x12/0xc0
[  376.383703][T10592]  ? mptcp_sendmsg+0x13e/0x1eb0
[  376.383836][T10592]  ? rcu_is_watching+0x12/0xc0
[  376.383870][T10592]  ? mptcp_sendmsg+0x13e/0x1eb0
[  376.383902][T10592]  mptcp_sendmsg+0x17a4/0x1eb0
[  376.383939][T10592]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  376.383970][T10592]  ? __pfx_aa_sk_perm+0x10/0x10
[  376.384018][T10592]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  376.384050][T10592]  inet_sendmsg+0x11c/0x140
[  376.384101][T10592]  sock_write_iter+0x4aa/0x5b0
[  376.384145][T10592]  ? __pfx_sock_write_iter+0x10/0x10
[  376.384187][T10592]  ? lock_release+0x201/0x2f0
[  376.384235][T10592]  ? bpf_lsm_file_permission+0x9/0x10
[  376.384277][T10592]  ? security_file_permission+0x71/0x210
[  376.384328][T10592]  ? rw_verify_area+0xcf/0x680
[  376.384379][T10592]  vfs_write+0x6c4/0x1150
[  376.384410][T10592]  ? __pfx_sock_write_iter+0x10/0x10
[  376.384457][T10592]  ? __pfx_vfs_write+0x10/0x10
[  376.384500][T10592]  ? lock_release+0x201/0x2f0
[  376.384553][T10592]  ksys_write+0x1f8/0x250
[  376.384583][T10592]  ? __pfx_ksys_write+0x10/0x10
[  376.384618][T10592]  do_syscall_64+0xcd/0x490
[  376.384654][T10592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.384689][T10592] RIP: 0033:0x7f71f658e9a9
[  376.384714][T10592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  376.384747][T10592] RSP: 002b:00007f71f73fa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  376.384778][T10592] RAX: ffffffffffffffda RBX: 00007f71f67b5fa0 RCX: 00007f71f658e9a9
[  376.384801][T10592] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000004
[  376.384821][T10592] RBP: 00007f71f73fa090 R08: 0000000000000000 R09: 0000000000000000
[  376.384842][T10592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  376.384862][T10592] R13: 0000000000000000 R14: 00007f71f67b5fa0 R15: 00007fff526fe4b8
[  376.384894][T10592]  </TASK>
[  378.157005][T10594] Process accounting resumed
[  378.207914][T10625] FAULT_INJECTION: forcing a failure.
[  378.207914][T10625] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  378.230000][T10625] CPU: 0 UID: 0 PID: 10625 Comm: syz.1.1246 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  378.230043][T10625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  378.230063][T10625] Call Trace:
[  378.230074][T10625]  <TASK>
[  378.230087][T10625]  dump_stack_lvl+0x16c/0x1f0
[  378.230123][T10625]  should_fail_ex+0x512/0x640
[  378.230158][T10625]  _copy_from_user+0x2e/0xd0
[  378.230195][T10625]  orangefs_debug_write+0x180/0x710
[  378.230244][T10625]  ? lock_release+0x201/0x2f0
[  378.230282][T10625]  ? __pfx_orangefs_debug_write+0x10/0x10
[  378.230316][T10625]  ? __debugfs_file_get+0x1fe/0x840
[  378.230347][T10625]  ? rcu_is_watching+0x12/0xc0
[  378.230374][T10625]  full_proxy_write+0x13c/0x200
[  378.230404][T10625]  ? __pfx_full_proxy_write+0x10/0x10
[  378.230432][T10625]  vfs_write+0x29d/0x1150
[  378.230457][T10625]  ? __pfx___mutex_lock+0x10/0x10
[  378.230492][T10625]  ? __pfx_vfs_write+0x10/0x10
[  378.230521][T10625]  ? __fget_files+0x204/0x3c0
[  378.230557][T10625]  ? rcu_is_watching+0x12/0xc0
[  378.230592][T10625]  ? __fget_files+0x20e/0x3c0
[  378.230632][T10625]  ksys_write+0x12a/0x250
[  378.230654][T10625]  ? __pfx_ksys_write+0x10/0x10
[  378.230679][T10625]  do_syscall_64+0xcd/0x490
[  378.230704][T10625]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.230729][T10625] RIP: 0033:0x7f547f38e9a9
[  378.230747][T10625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  378.230771][T10625] RSP: 002b:00007f54801c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  378.230792][T10625] RAX: ffffffffffffffda RBX: 00007f547f5b5fa0 RCX: 00007f547f38e9a9
[  378.230808][T10625] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  378.230823][T10625] RBP: 00007f54801c5090 R08: 0000000000000000 R09: 0000000000000000
[  378.230838][T10625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  378.230852][T10625] R13: 0000000000000000 R14: 00007f547f5b5fa0 R15: 00007ffd88119da8
[  378.230874][T10625]  </TASK>
[  378.588676][T10633] FAULT_INJECTION: forcing a failure.
[  378.588676][T10633] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  378.602479][T10633] CPU: 0 UID: 0 PID: 10633 Comm: syz.0.1249 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  378.602653][T10633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  378.602678][T10633] Call Trace:
[  378.602691][T10633]  <TASK>
[  378.602704][T10633]  dump_stack_lvl+0x16c/0x1f0
[  378.602743][T10633]  should_fail_ex+0x512/0x640
[  378.602782][T10633]  should_fail_alloc_page+0xe7/0x130
[  378.602827][T10633]  prepare_alloc_pages+0x3c2/0x610
[  378.602879][T10633]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  378.602918][T10633]  ? rcu_is_watching+0x12/0xc0
[  378.602955][T10633]  ? is_bpf_text_address+0x8a/0x1a0
[  378.603003][T10633]  ? rcu_is_watching+0x12/0xc0
[  378.603045][T10633]  ? lock_release+0x201/0x2f0
[  378.603089][T10633]  ? bpf_ksym_find+0x124/0x1c0
[  378.603131][T10633]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  378.603166][T10633]  ? is_bpf_text_address+0x94/0x1a0
[  378.603214][T10633]  ? __kernel_text_address+0xd/0x40
[  378.603270][T10633]  ? unwind_get_return_address+0x59/0xa0
[  378.603363][T10633]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  378.603417][T10633]  ? policy_nodemask+0xea/0x4e0
[  378.603457][T10633]  alloc_pages_mpol+0x1fb/0x550
[  378.603498][T10633]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  378.603535][T10633]  ? kasan_save_stack+0x33/0x60
[  378.603645][T10633]  ? __kasan_kmalloc+0xaa/0xb0
[  378.603687][T10633]  ? __get_vm_area_node+0x101/0x330
[  378.603731][T10633]  ? __vmalloc_node_range_noprof+0x271/0x14b0
[  378.603776][T10633]  ? __vmalloc_node_noprof+0xad/0xf0
[  378.603810][T10633]  ? copy_process+0x2c70/0x7650
[  378.603839][T10633]  ? kernel_clone+0xfc/0x960
[  378.603871][T10633]  alloc_pages_noprof+0x131/0x390
[  378.603899][T10633]  get_free_pages_noprof+0x10/0xb0
[  378.603929][T10633]  kasan_populate_vmalloc+0x89/0x1f0
[  378.603972][T10633]  alloc_vmap_area+0x959/0x29c0
[  378.604008][T10633]  ? __pfx_alloc_vmap_area+0x10/0x10
[  378.604043][T10633]  __get_vm_area_node+0x1ca/0x330
[  378.604080][T10633]  __vmalloc_node_range_noprof+0x271/0x14b0
[  378.604116][T10633]  ? kernel_clone+0xfc/0x960
[  378.604146][T10633]  ? lock_release+0x201/0x2f0
[  378.604181][T10633]  ? kernel_clone+0xfc/0x960
[  378.604211][T10633]  ? lock_release+0x201/0x2f0
[  378.604245][T10633]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  378.604296][T10633]  ? kernel_clone+0xfc/0x960
[  378.604326][T10633]  __vmalloc_node_noprof+0xad/0xf0
[  378.604362][T10633]  ? kernel_clone+0xfc/0x960
[  378.604394][T10633]  copy_process+0x2c70/0x7650
[  378.604426][T10633]  ? __pfx___futex_wait+0x10/0x10
[  378.604461][T10633]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  378.604505][T10633]  ? __pfx_copy_process+0x10/0x10
[  378.604542][T10633]  kernel_clone+0xfc/0x960
[  378.604574][T10633]  ? __pfx_kernel_clone+0x10/0x10
[  378.604613][T10633]  __do_sys_clone+0xce/0x120
[  378.604644][T10633]  ? __pfx___do_sys_clone+0x10/0x10
[  378.604682][T10633]  ? xfd_validate_state+0x61/0x180
[  378.604719][T10633]  do_syscall_64+0xcd/0x490
[  378.604746][T10633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.604771][T10633] RIP: 0033:0x7f6b2b98e9a9
[  378.604791][T10633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  378.604816][T10633] RSP: 002b:00007f6b2c7e5fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  378.604839][T10633] RAX: ffffffffffffffda RBX: 00007f6b2bbb5fa0 RCX: 00007f6b2b98e9a9
[  378.604856][T10633] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  378.604870][T10633] RBP: 00007f6b2ba10d69 R08: 0000000000000000 R09: 0000000000000000
[  378.604885][T10633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  378.604900][T10633] R13: 0000000000000000 R14: 00007f6b2bbb5fa0 R15: 00007ffcc4471658
[  378.604923][T10633]  </TASK>
[  378.604972][T10633] syz.0.1249: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  379.003639][T10633] CPU: 0 UID: 0 PID: 10633 Comm: syz.0.1249 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  379.003680][T10633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  379.003701][T10633] Call Trace:
[  379.003711][T10633]  <TASK>
[  379.003723][T10633]  dump_stack_lvl+0x16c/0x1f0
[  379.003764][T10633]  warn_alloc+0x248/0x3a0
[  379.003801][T10633]  ? __pfx_warn_alloc+0x10/0x10
[  379.003835][T10633]  ? kfree+0x2b4/0x4d0
[  379.003891][T10633]  ? __get_vm_area_node+0x208/0x330
[  379.003944][T10633]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  379.003997][T10633]  ? lock_release+0x201/0x2f0
[  379.004049][T10633]  ? kernel_clone+0xfc/0x960
[  379.004093][T10633]  ? lock_release+0x201/0x2f0
[  379.004143][T10633]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  379.004204][T10633]  ? kernel_clone+0xfc/0x960
[  379.004246][T10633]  __vmalloc_node_noprof+0xad/0xf0
[  379.004293][T10633]  ? kernel_clone+0xfc/0x960
[  379.004335][T10633]  copy_process+0x2c70/0x7650
[  379.004378][T10633]  ? __pfx___futex_wait+0x10/0x10
[  379.004429][T10633]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  379.004490][T10633]  ? __pfx_copy_process+0x10/0x10
[  379.004554][T10633]  kernel_clone+0xfc/0x960
[  379.004600][T10633]  ? __pfx_kernel_clone+0x10/0x10
[  379.004655][T10633]  __do_sys_clone+0xce/0x120
[  379.004699][T10633]  ? __pfx___do_sys_clone+0x10/0x10
[  379.004754][T10633]  ? xfd_validate_state+0x61/0x180
[  379.004809][T10633]  do_syscall_64+0xcd/0x490
[  379.004847][T10633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.004883][T10633] RIP: 0033:0x7f6b2b98e9a9
[  379.004911][T10633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  379.004948][T10633] RSP: 002b:00007f6b2c7e5fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  379.004980][T10633] RAX: ffffffffffffffda RBX: 00007f6b2bbb5fa0 RCX: 00007f6b2b98e9a9
[  379.005003][T10633] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  379.005024][T10633] RBP: 00007f6b2ba10d69 R08: 0000000000000000 R09: 0000000000000000
[  379.005046][T10633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  379.005067][T10633] R13: 0000000000000000 R14: 00007f6b2bbb5fa0 R15: 00007ffcc4471658
[  379.005099][T10633]  </TASK>
[  379.005112][T10633] Mem-Info:
[  379.253189][T10633] active_anon:10122 inactive_anon:53 isolated_anon:0
[  379.253189][T10633]  active_file:8004 inactive_file:50495 isolated_file:0
[  379.253189][T10633]  unevictable:768 dirty:2 writeback:50
[  379.253189][T10633]  slab_reclaimable:11288 slab_unreclaimable:93787
[  379.253189][T10633]  mapped:27177 shmem:1363 pagetables:1149
[  379.253189][T10633]  sec_pagetables:0 bounce:0
[  379.253189][T10633]  kernel_misc_reclaimable:0
[  379.253189][T10633]  free:1316955 free_pcp:18883 free_cma:0
[  379.311432][T10633] Node 0 active_anon:42088kB inactive_anon:212kB active_file:32016kB inactive_file:201844kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:108708kB dirty:8kB writeback:100kB shmem:5948kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11908kB pagetables:4468kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  379.346651][T10633] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  379.583965][T10633] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  379.720860][   T30] audit: type=1800 audit(1753737524.224:16): pid=10630 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1250" name="features" dev="configfs" ino=30787 res=0 errno=0
[  379.761661][T10633] lowmem_reserve[]: 0 2480 2482 2482 2482
[  379.767916][T10633] Node 0 DMA32 free:1364864kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:40976kB inactive_anon:212kB active_file:32016kB inactive_file:200528kB unevictable:1536kB writepending:60kB present:3129332kB managed:2540444kB mlocked:0kB bounce:0kB free_pcp:41356kB local_pcp:20592kB free_cma:0kB
[  379.801880][T10633] lowmem_reserve[]: 0 0 1 1 1
[  379.807303][T10633] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1316kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  379.841799][T10633] lowmem_reserve[]: 0 0 0 0 0
[  379.851531][T10633] Node 1 Normal free:3889552kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:31180kB local_pcp:18176kB free_cma:0kB
[  379.957202][T10633] lowmem_reserve[]: 0 0 0 0 0
[  379.991451][T10633] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  380.016417][T10633] Node 0 DMA32: 2197*4kB (UME) 1996*8kB (UME) 1505*16kB (UME) 1237*32kB (UME) 726*64kB (UM) 271*128kB (UM) 122*256kB (UM) 82*512kB (UME) 27*1024kB (UM) 8*2048kB (UME) 263*4096kB (UM) = 1364068kB
[  380.101233][T10633] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  380.151521][T10633] Node 1 Normal: 220*4kB (UME) 64*8kB (UME) 48*16kB (UME) 191*32kB (UME) 61*64kB (UME) 18*128kB (UME) 5*256kB (UM) 4*512kB (UM) 3*1024kB (UME) 3*2048kB (ME) 943*4096kB (M) = 3889552kB
[  380.177980][T10633] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  380.188784][T10633] Node 0 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  380.200581][T10633] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  380.210718][T10633] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  380.220791][T10633] 59865 total pagecache pages
[  380.225840][T10633] 0 pages in swap cache
[  380.230503][T10633] Free swap  = 124996kB
[  380.235663][T10633] Total swap = 124996kB
[  380.239996][T10633] 2097051 pages RAM
[  380.265806][T10633] 0 pages HighMem/MovableOnly
[  380.311424][T10633] 429962 pages reserved
[  380.316313][T10633] 0 pages cma reserved
[  380.697846][T10654] FAULT_INJECTION: forcing a failure.
[  380.697846][T10654] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  380.722772][T10654] CPU: 1 UID: 0 PID: 10654 Comm: syz.2.1255 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  380.722818][T10654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  380.722839][T10654] Call Trace:
[  380.722849][T10654]  <TASK>
[  380.722862][T10654]  dump_stack_lvl+0x16c/0x1f0
[  380.722899][T10654]  should_fail_ex+0x512/0x640
[  380.722936][T10654]  _copy_from_iter+0x29f/0x16f0
[  380.722978][T10654]  ? __pfx__copy_from_iter+0x10/0x10
[  380.723015][T10654]  ? rcu_is_watching+0x12/0xc0
[  380.723051][T10654]  ? trace_kmalloc+0x2b/0xd0
[  380.723097][T10654]  ? __kmalloc_noprof+0x242/0x510
[  380.723134][T10654]  kernfs_fop_write_iter+0x19a/0x510
[  380.723273][T10654]  vfs_write+0x6c4/0x1150
[  380.723305][T10654]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  380.723361][T10654]  ? __pfx___mutex_lock+0x10/0x10
[  380.723395][T10654]  ? __pfx_vfs_write+0x10/0x10
[  380.723439][T10654]  ksys_write+0x12a/0x250
[  380.723467][T10654]  ? __pfx_ksys_write+0x10/0x10
[  380.723502][T10654]  do_syscall_64+0xcd/0x490
[  380.723536][T10654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.723569][T10654] RIP: 0033:0x7f71f658e9a9
[  380.723594][T10654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  380.723627][T10654] RSP: 002b:00007f71f73fa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  380.723659][T10654] RAX: ffffffffffffffda RBX: 00007f71f67b5fa0 RCX: 00007f71f658e9a9
[  380.723681][T10654] RDX: 0000000000000004 RSI: 0000200000000100 RDI: 0000000000000003
[  380.723703][T10654] RBP: 00007f71f73fa090 R08: 0000000000000000 R09: 0000000000000000
[  380.723724][T10654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  380.723749][T10654] R13: 0000000000000000 R14: 00007f71f67b5fa0 R15: 00007fff526fe4b8
[  380.723782][T10654]  </TASK>
[  381.145668][T10662] block nbd9: NBD_DISCONNECT
[  382.037746][   T30] audit: type=1800 audit(1753737526.594:17): pid=10669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1259" name="features" dev="configfs" ino=30943 res=0 errno=0
[  384.484492][T10716] FAULT_INJECTION: forcing a failure.
[  384.484492][T10716] name failslab, interval 1, probability 0, space 0, times 0
[  384.511406][T10716] CPU: 0 UID: 0 PID: 10716 Comm: syz.0.1271 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  384.511451][T10716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  384.511472][T10716] Call Trace:
[  384.511483][T10716]  <TASK>
[  384.511495][T10716]  dump_stack_lvl+0x16c/0x1f0
[  384.511533][T10716]  should_fail_ex+0x512/0x640
[  384.511571][T10716]  should_failslab+0xc2/0x120
[  384.511611][T10716]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  384.511646][T10716]  ? __alloc_skb+0x2b2/0x380
[  384.511680][T10716]  __alloc_skb+0x2b2/0x380
[  384.511711][T10716]  ? __pfx___alloc_skb+0x10/0x10
[  384.511742][T10716]  ? kernel_text_address+0x8d/0x100
[  384.511806][T10716]  ? unwind_get_return_address+0x59/0xa0
[  384.511861][T10716]  ? arch_stack_walk+0xa6/0x100
[  384.511895][T10716]  netlink_alloc_large_skb+0x69/0x130
[  384.511938][T10716]  netlink_sendmsg+0x6a1/0xdd0
[  384.511982][T10716]  ? __pfx_netlink_sendmsg+0x10/0x10
[  384.512030][T10716]  ____sys_sendmsg+0xa95/0xc70
[  384.512075][T10716]  ? copy_msghdr_from_user+0x10a/0x160
[  384.512111][T10716]  ? __pfx_____sys_sendmsg+0x10/0x10
[  384.512154][T10716]  ? __pfx_kstrtouint+0x10/0x10
[  384.512207][T10716]  ? kstrtouint_from_user+0x13c/0x1d0
[  384.512258][T10716]  ___sys_sendmsg+0x134/0x1d0
[  384.512293][T10716]  ? __pfx____sys_sendmsg+0x10/0x10
[  384.512337][T10716]  ? rcu_is_watching+0x12/0xc0
[  384.512385][T10716]  __sys_sendmsg+0x16d/0x220
[  384.512420][T10716]  ? __pfx___sys_sendmsg+0x10/0x10
[  384.512467][T10716]  do_syscall_64+0xcd/0x490
[  384.512503][T10716]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.512535][T10716] RIP: 0033:0x7f6b2b98e9a9
[  384.512559][T10716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  384.512593][T10716] RSP: 002b:00007f6b2c7e6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  384.512624][T10716] RAX: ffffffffffffffda RBX: 00007f6b2bbb5fa0 RCX: 00007f6b2b98e9a9
[  384.512647][T10716] RDX: 0000000004000000 RSI: 00002000000002c0 RDI: 0000000000000003
[  384.512668][T10716] RBP: 00007f6b2c7e6090 R08: 0000000000000000 R09: 0000000000000000
[  384.512689][T10716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  384.512708][T10716] R13: 0000000000000000 R14: 00007f6b2bbb5fa0 R15: 00007ffcc4471658
[  384.512739][T10716]  </TASK>
[  385.206705][T10732] FAULT_INJECTION: forcing a failure.
[  385.206705][T10732] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  385.251232][T10732] CPU: 0 UID: 0 PID: 10732 Comm: syz.3.1276 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  385.251275][T10732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  385.251296][T10732] Call Trace:
[  385.251306][T10732]  <TASK>
[  385.251319][T10732]  dump_stack_lvl+0x16c/0x1f0
[  385.251356][T10732]  should_fail_ex+0x512/0x640
[  385.251392][T10732]  _copy_from_user+0x2e/0xd0
[  385.251430][T10732]  cache_do_downcall+0x66/0x160
[  385.251463][T10732]  cache_write_procfs+0xf0/0x160
[  385.251497][T10732]  ? __pfx_cache_write_procfs+0x10/0x10
[  385.251532][T10732]  proc_reg_write+0x23d/0x330
[  385.251566][T10732]  ? __pfx_proc_reg_write+0x10/0x10
[  385.251598][T10732]  vfs_write+0x29d/0x1150
[  385.251631][T10732]  ? __pfx___mutex_lock+0x10/0x10
[  385.251665][T10732]  ? __pfx_vfs_write+0x10/0x10
[  385.251694][T10732]  ? __fget_files+0x204/0x3c0
[  385.251742][T10732]  ? rcu_is_watching+0x12/0xc0
[  385.251781][T10732]  ? __fget_files+0x20e/0x3c0
[  385.251836][T10732]  ksys_write+0x12a/0x250
[  385.251866][T10732]  ? __pfx_ksys_write+0x10/0x10
[  385.251902][T10732]  do_syscall_64+0xcd/0x490
[  385.251937][T10732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.251971][T10732] RIP: 0033:0x7fba74d8e9a9
[  385.252005][T10732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  385.252040][T10732] RSP: 002b:00007fba75c03038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  385.252071][T10732] RAX: ffffffffffffffda RBX: 00007fba74fb5fa0 RCX: 00007fba74d8e9a9
[  385.252094][T10732] RDX: 0000000000000009 RSI: 0000200000000080 RDI: 0000000000000003
[  385.252115][T10732] RBP: 00007fba75c03090 R08: 0000000000000000 R09: 0000000000000000
[  385.252136][T10732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  385.252156][T10732] R13: 0000000000000000 R14: 00007fba74fb5fa0 R15: 00007fff64623dd8
[  385.252187][T10732]  </TASK>
[  386.564129][T10746] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9
[  387.106885][T10780] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1288'.
[  387.661041][T10802] vhci_hcd: pdev 268435455
[  387.691726][T10792] FAULT_INJECTION: forcing a failure.
[  387.691726][T10792] name failslab, interval 1, probability 0, space 0, times 0
[  387.727626][T10792] CPU: 1 UID: 0 PID: 10792 Comm: syz.1.1290 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  387.727674][T10792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  387.727695][T10792] Call Trace:
[  387.727706][T10792]  <TASK>
[  387.727719][T10792]  dump_stack_lvl+0x16c/0x1f0
[  387.727757][T10792]  should_fail_ex+0x512/0x640
[  387.727802][T10792]  should_failslab+0xc2/0x120
[  387.727840][T10792]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  387.727876][T10792]  ? __alloc_skb+0x2b2/0x380
[  387.727912][T10792]  __alloc_skb+0x2b2/0x380
[  387.727943][T10792]  ? __pfx___alloc_skb+0x10/0x10
[  387.727977][T10792]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  387.728023][T10792]  netlink_alloc_large_skb+0x69/0x130
[  387.728066][T10792]  netlink_sendmsg+0x6a1/0xdd0
[  387.728108][T10792]  ? __pfx_netlink_sendmsg+0x10/0x10
[  387.728155][T10792]  ____sys_sendmsg+0xa95/0xc70
[  387.728199][T10792]  ? copy_msghdr_from_user+0x10a/0x160
[  387.728235][T10792]  ? __pfx_____sys_sendmsg+0x10/0x10
[  387.728283][T10792]  ? __pfx__kstrtoull+0x10/0x10
[  387.728331][T10792]  ? aa_file_perm+0x4c7/0xfb0
[  387.728364][T10792]  ___sys_sendmsg+0x134/0x1d0
[  387.728399][T10792]  ? __pfx____sys_sendmsg+0x10/0x10
[  387.728441][T10792]  ? rcu_is_watching+0x12/0xc0
[  387.728490][T10792]  __sys_sendmmsg+0x200/0x420
[  387.728528][T10792]  ? __pfx___sys_sendmmsg+0x10/0x10
[  387.728563][T10792]  ? lock_release+0x201/0x2f0
[  387.728614][T10792]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  387.728659][T10792]  ? fput+0x70/0xf0
[  387.728697][T10792]  ? ksys_write+0x1ac/0x250
[  387.728727][T10792]  ? __pfx_ksys_write+0x10/0x10
[  387.728761][T10792]  __x64_sys_sendmmsg+0x9c/0x100
[  387.728803][T10792]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  387.728855][T10792]  do_syscall_64+0xcd/0x490
[  387.728890][T10792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.728924][T10792] RIP: 0033:0x7f547f38e9a9
[  387.728949][T10792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  387.728981][T10792] RSP: 002b:00007f54801c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  387.729012][T10792] RAX: ffffffffffffffda RBX: 00007f547f5b5fa0 RCX: 00007f547f38e9a9
[  387.729035][T10792] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  387.729055][T10792] RBP: 00007f54801c5090 R08: 0000000000000000 R09: 0000000000000000
[  387.729075][T10792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  387.729095][T10792] R13: 0000000000000000 R14: 00007f547f5b5fa0 R15: 00007ffd88119da8
[  387.729126][T10792]  </TASK>
[  388.185192][T10807] FAULT_INJECTION: forcing a failure.
[  388.185192][T10807] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  388.360981][T10807] CPU: 0 UID: 0 PID: 10807 Comm: syz.0.1293 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  388.361027][T10807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  388.361047][T10807] Call Trace:
[  388.361058][T10807]  <TASK>
[  388.361070][T10807]  dump_stack_lvl+0x16c/0x1f0
[  388.361111][T10807]  should_fail_ex+0x512/0x640
[  388.361147][T10807]  _copy_to_iter+0x29f/0x16f0
[  388.361185][T10807]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  388.361224][T10807]  ? __pfx__copy_to_iter+0x10/0x10
[  388.361261][T10807]  ? rcu_is_watching+0x12/0xc0
[  388.361297][T10807]  ? lock_release+0x201/0x2f0
[  388.361339][T10807]  ? dev_attr_show+0x74/0xe0
[  388.361381][T10807]  ? kernfs_put_active+0x86/0xe0
[  388.361419][T10807]  seq_read_iter+0xcf8/0x12c0
[  388.361488][T10807]  kernfs_fop_read_iter+0x40f/0x5a0
[  388.361531][T10807]  ? rw_verify_area+0xcf/0x680
[  388.361578][T10807]  ? trace_contention_end+0xdd/0x130
[  388.361629][T10807]  vfs_read+0x8bc/0xc60
[  388.361660][T10807]  ? __pfx___mutex_lock+0x10/0x10
[  388.361695][T10807]  ? __pfx_vfs_read+0x10/0x10
[  388.361738][T10807]  ksys_read+0x12a/0x250
[  388.361768][T10807]  ? __pfx_ksys_read+0x10/0x10
[  388.361815][T10807]  do_syscall_64+0xcd/0x490
[  388.361851][T10807]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.361886][T10807] RIP: 0033:0x7f6b2b98e9a9
[  388.361911][T10807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.361944][T10807] RSP: 002b:00007f6b2c7e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  388.361974][T10807] RAX: ffffffffffffffda RBX: 00007f6b2bbb5fa0 RCX: 00007f6b2b98e9a9
[  388.361997][T10807] RDX: 00000000000000fa RSI: 0000200000000b00 RDI: 0000000000000003
[  388.362018][T10807] RBP: 00007f6b2c7e6090 R08: 0000000000000000 R09: 0000000000000000
[  388.362038][T10807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  388.362059][T10807] R13: 0000000000000000 R14: 00007f6b2bbb5fa0 R15: 00007ffcc4471658
[  388.362091][T10807]  </TASK>
[  388.985738][T10818] FAULT_INJECTION: forcing a failure.
[  388.985738][T10818] name failslab, interval 1, probability 0, space 0, times 0
[  388.998886][T10818] CPU: 1 UID: 0 PID: 10818 Comm: syz.2.1298 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  388.998929][T10818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  388.998949][T10818] Call Trace:
[  388.998960][T10818]  <TASK>
[  388.998972][T10818]  dump_stack_lvl+0x16c/0x1f0
[  388.999010][T10818]  should_fail_ex+0x512/0x640
[  388.999048][T10818]  ? tomoyo_encode2+0x100/0x3e0
[  388.999078][T10818]  should_failslab+0xc2/0x120
[  388.999118][T10818]  __kmalloc_noprof+0xd2/0x510
[  388.999150][T10818]  ? d_absolute_path+0x136/0x1a0
[  388.999193][T10818]  tomoyo_encode2+0x100/0x3e0
[  388.999227][T10818]  tomoyo_encode+0x29/0x50
[  388.999256][T10818]  tomoyo_realpath_from_path+0x18f/0x6e0
[  388.999295][T10818]  tomoyo_path_number_perm+0x245/0x580
[  388.999343][T10818]  ? tomoyo_path_number_perm+0x237/0x580
[  388.999416][T10818]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  388.999471][T10818]  ? preempt_count_add+0x76/0x150
[  388.999535][T10818]  ? rcu_is_watching+0x12/0xc0
[  388.999571][T10818]  ? __fget_files+0x204/0x3c0
[  388.999621][T10818]  ? hook_file_ioctl_common+0x145/0x410
[  388.999665][T10818]  ? lock_release+0x201/0x2f0
[  388.999713][T10818]  ? __fget_files+0x20e/0x3c0
[  388.999768][T10818]  security_file_ioctl+0x9b/0x240
[  388.999819][T10818]  __x64_sys_ioctl+0xb7/0x210
[  388.999867][T10818]  do_syscall_64+0xcd/0x490
[  388.999903][T10818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.999938][T10818] RIP: 0033:0x7f71f658e9a9
[  388.999963][T10818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.999995][T10818] RSP: 002b:00007f71f73fa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  389.000026][T10818] RAX: ffffffffffffffda RBX: 00007f71f67b5fa0 RCX: 00007f71f658e9a9
[  389.000048][T10818] RDX: 0000200000000300 RSI: 0000000040084d02 RDI: 0000000000000003
[  389.000069][T10818] RBP: 00007f71f73fa090 R08: 0000000000000000 R09: 0000000000000000
[  389.000090][T10818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  389.000110][T10818] R13: 0000000000000000 R14: 00007f71f67b5fa0 R15: 00007fff526fe4b8
[  389.000142][T10818]  </TASK>
[  389.000163][T10818] ERROR: Out of memory at tomoyo_realpath_from_path.
[  389.524499][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  389.530956][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  389.609765][T10825] FAULT_INJECTION: forcing a failure.
[  389.609765][T10825] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  389.623295][T10825] CPU: 0 UID: 0 PID: 10825 Comm: syz.0.1300 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  389.623339][T10825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  389.623360][T10825] Call Trace:
[  389.623370][T10825]  <TASK>
[  389.623382][T10825]  dump_stack_lvl+0x16c/0x1f0
[  389.623424][T10825]  should_fail_ex+0x512/0x640
[  389.623462][T10825]  _copy_from_iter+0x29f/0x16f0
[  389.623503][T10825]  ? __pfx__copy_from_iter+0x10/0x10
[  389.623541][T10825]  ? rcu_is_watching+0x12/0xc0
[  389.623687][T10825]  ? trace_kmalloc+0x2b/0xd0
[  389.623728][T10825]  ? __kmalloc_noprof+0x242/0x510
[  389.623764][T10825]  kernfs_fop_write_iter+0x19a/0x510
[  389.623816][T10825]  vfs_write+0x6c4/0x1150
[  389.623848][T10825]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  389.623891][T10825]  ? __pfx___mutex_lock+0x10/0x10
[  389.623925][T10825]  ? __pfx_vfs_write+0x10/0x10
[  389.623968][T10825]  ksys_write+0x12a/0x250
[  389.623998][T10825]  ? __pfx_ksys_write+0x10/0x10
[  389.624034][T10825]  do_syscall_64+0xcd/0x490
[  389.624070][T10825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.624104][T10825] RIP: 0033:0x7f6b2b98e9a9
[  389.624130][T10825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  389.624163][T10825] RSP: 002b:00007f6b2c7e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  389.624195][T10825] RAX: ffffffffffffffda RBX: 00007f6b2bbb5fa0 RCX: 00007f6b2b98e9a9
[  389.624218][T10825] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  389.624238][T10825] RBP: 00007f6b2c7e6090 R08: 0000000000000000 R09: 0000000000000000
[  389.624258][T10825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  389.624278][T10825] R13: 0000000000000000 R14: 00007f6b2bbb5fa0 R15: 00007ffcc4471658
[  389.624308][T10825]  </TASK>
[  390.641800][T10845] FAULT_INJECTION: forcing a failure.
[  390.641800][T10845] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  390.665259][T10845] CPU: 1 UID: 0 PID: 10845 Comm: syz.0.1304 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  390.665305][T10845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  390.665325][T10845] Call Trace:
[  390.665336][T10845]  <TASK>
[  390.665349][T10845]  dump_stack_lvl+0x16c/0x1f0
[  390.665382][T10845]  should_fail_ex+0x512/0x640
[  390.665414][T10845]  _copy_from_user+0x2e/0xd0
[  390.665445][T10845]  move_addr_to_kernel+0x65/0x170
[  390.665486][T10845]  __copy_msghdr+0x386/0x470
[  390.665514][T10845]  copy_msghdr_from_user+0xc1/0x160
[  390.665542][T10845]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  390.665647][T10845]  ? __pfx__kstrtoull+0x10/0x10
[  390.665693][T10845]  ? aa_file_perm+0x4c7/0xfb0
[  390.665721][T10845]  ___sys_sendmsg+0xfe/0x1d0
[  390.665752][T10845]  ? __pfx____sys_sendmsg+0x10/0x10
[  390.665787][T10845]  ? rcu_is_watching+0x12/0xc0
[  390.665830][T10845]  __sys_sendmmsg+0x200/0x420
[  390.665862][T10845]  ? __pfx___sys_sendmmsg+0x10/0x10
[  390.665891][T10845]  ? lock_release+0x201/0x2f0
[  390.665934][T10845]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  390.665972][T10845]  ? fput+0x70/0xf0
[  390.666003][T10845]  ? ksys_write+0x1ac/0x250
[  390.666028][T10845]  ? __pfx_ksys_write+0x10/0x10
[  390.666056][T10845]  __x64_sys_sendmmsg+0x9c/0x100
[  390.666085][T10845]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  390.666129][T10845]  do_syscall_64+0xcd/0x490
[  390.666159][T10845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.666189][T10845] RIP: 0033:0x7f6b2b98e9a9
[  390.666211][T10845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  390.666239][T10845] RSP: 002b:00007f6b2c7e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  390.666268][T10845] RAX: ffffffffffffffda RBX: 00007f6b2bbb5fa0 RCX: 00007f6b2b98e9a9
[  390.666288][T10845] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000004
[  390.666306][T10845] RBP: 00007f6b2c7e6090 R08: 0000000000000000 R09: 0000000000000000
[  390.666324][T10845] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  390.666343][T10845] R13: 0000000000000000 R14: 00007f6b2bbb5fa0 R15: 00007ffcc4471658
[  390.666370][T10845]  </TASK>
[  391.592002][T10849] FAULT_INJECTION: forcing a failure.
[  391.592002][T10849] name failslab, interval 1, probability 0, space 0, times 0
[  392.033573][T10849] CPU: 0 UID: 0 PID: 10849 Comm: syz.2.1305 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  392.033619][T10849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  392.033641][T10849] Call Trace:
[  392.033653][T10849]  <TASK>
[  392.033667][T10849]  dump_stack_lvl+0x16c/0x1f0
[  392.033707][T10849]  should_fail_ex+0x512/0x640
[  392.033743][T10849]  should_failslab+0xc2/0x120
[  392.033782][T10849]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  392.033816][T10849]  ? __alloc_skb+0x2b2/0x380
[  392.033851][T10849]  __alloc_skb+0x2b2/0x380
[  392.033881][T10849]  ? __pfx___alloc_skb+0x10/0x10
[  392.033915][T10849]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  392.033961][T10849]  netlink_alloc_large_skb+0x69/0x130
[  392.034004][T10849]  netlink_sendmsg+0x6a1/0xdd0
[  392.034047][T10849]  ? __pfx_netlink_sendmsg+0x10/0x10
[  392.034096][T10849]  ____sys_sendmsg+0xa95/0xc70
[  392.034141][T10849]  ? copy_msghdr_from_user+0x10a/0x160
[  392.034175][T10849]  ? __pfx_____sys_sendmsg+0x10/0x10
[  392.034220][T10849]  ? __pfx_kstrtouint+0x10/0x10
[  392.034271][T10849]  ? kstrtouint_from_user+0x13c/0x1d0
[  392.034323][T10849]  ___sys_sendmsg+0x134/0x1d0
[  392.034359][T10849]  ? __pfx____sys_sendmsg+0x10/0x10
[  392.034511][T10849]  ? rcu_is_watching+0x12/0xc0
[  392.034568][T10849]  __sys_sendmsg+0x16d/0x220
[  392.034604][T10849]  ? __pfx___sys_sendmsg+0x10/0x10
[  392.034653][T10849]  do_syscall_64+0xcd/0x490
[  392.034690][T10849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  392.034725][T10849] RIP: 0033:0x7f71f658e9a9
[  392.034752][T10849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  392.034785][T10849] RSP: 002b:00007f71f73fa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  392.034818][T10849] RAX: ffffffffffffffda RBX: 00007f71f67b5fa0 RCX: 00007f71f658e9a9
[  392.034846][T10849] RDX: 0000000000000000 RSI: 0000200000005e40 RDI: 0000000000000003
[  392.034868][T10849] RBP: 00007f71f73fa090 R08: 0000000000000000 R09: 0000000000000000
[  392.034889][T10849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  392.034910][T10849] R13: 0000000000000000 R14: 00007f71f67b5fa0 R15: 00007fff526fe4b8
[  392.034942][T10849]  </TASK>
[  392.939154][T10863] vivid-007: =================  START STATUS  =================
[  392.971236][T10863] vivid-007: Generate PTS: true
[  392.976331][T10863] vivid-007: Generate SCR: true
[  393.004006][T10863] tpg source WxH: 320x240 (Y'CbCr)
[  393.009253][T10863] tpg field: 1
[  393.021656][T10863] tpg crop: (0,0)/320x240
[  393.038703][T10863] tpg compose: (0,0)/320x240
[  393.043567][T10863] tpg colorspace: 8
[  393.047686][T10863] tpg transfer function: 0/0
[  393.053774][T10863] tpg Y'CbCr encoding: 0/0
[  393.061840][T10863] tpg quantization: 0/0
[  393.066185][T10863] tpg RGB range: 0/2
[  393.157005][T10863] vivid-007: ==================  END STATUS  ==================
[  394.184147][T10881] FAULT_INJECTION: forcing a failure.
[  394.184147][T10881] name failslab, interval 1, probability 0, space 0, times 0
[  394.373803][T10881] CPU: 0 UID: 0 PID: 10881 Comm: syz.1.1313 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  394.373850][T10881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  394.373870][T10881] Call Trace:
[  394.373881][T10881]  <TASK>
[  394.373901][T10881]  dump_stack_lvl+0x16c/0x1f0
[  394.373939][T10881]  should_fail_ex+0x512/0x640
[  394.374001][T10881]  should_failslab+0xc2/0x120
[  394.374043][T10881]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  394.374081][T10881]  ? __alloc_skb+0x2b2/0x380
[  394.374117][T10881]  __alloc_skb+0x2b2/0x380
[  394.374149][T10881]  ? __pfx___alloc_skb+0x10/0x10
[  394.374180][T10881]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  394.374333][T10881]  ? __bpf_address_lookup+0x340/0x340
[  394.374469][T10881]  ? kernel_text_address+0x8d/0x100
[  394.374522][T10881]  ? __kernel_text_address+0xd/0x40
[  394.374576][T10881]  ? unwind_get_return_address+0x59/0xa0
[  394.374633][T10881]  alloc_skb_with_frags+0xe0/0x860
[  394.374673][T10881]  ? rcu_is_watching+0x12/0xc0
[  394.374709][T10881]  ? __might_fault+0xe3/0x190
[  394.374747][T10881]  sock_alloc_send_pskb+0x7fb/0x990
[  394.374804][T10881]  ? _copy_from_iter+0x15d/0x16f0
[  394.374853][T10881]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  394.374909][T10881]  ? lock_release+0x201/0x2f0
[  394.374957][T10881]  ? aa_file_perm+0x4d6/0xfb0
[  394.374984][T10881]  ? iov_iter_advance+0x7d/0x6c0
[  394.375023][T10881]  tap_get_user+0x36e/0x1a50
[  394.375073][T10881]  ? rcu_is_watching+0x12/0xc0
[  394.375110][T10881]  ? __pfx_tap_get_user+0x10/0x10
[  394.375153][T10881]  ? get_pid_task+0xfc/0x250
[  394.375198][T10881]  ? rcu_is_watching+0x12/0xc0
[  394.375301][T10881]  ? lock_release+0x201/0x2f0
[  394.375352][T10881]  ? apparmor_file_permission+0x251/0x400
[  394.375400][T10881]  ? bpf_lsm_file_permission+0x9/0x10
[  394.375445][T10881]  ? security_file_permission+0x71/0x210
[  394.375502][T10881]  ? rw_verify_area+0xcf/0x680
[  394.375571][T10881]  vfs_write+0x6c4/0x1150
[  394.375603][T10881]  ? __pfx_tap_write_iter+0x10/0x10
[  394.375650][T10881]  ? __pfx_vfs_write+0x10/0x10
[  394.375682][T10881]  ? lock_release+0x201/0x2f0
[  394.375736][T10881]  ksys_write+0x12a/0x250
[  394.375769][T10881]  ? __pfx_ksys_write+0x10/0x10
[  394.375807][T10881]  do_syscall_64+0xcd/0x490
[  394.375843][T10881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  394.375877][T10881] RIP: 0033:0x7f547f38e9a9
[  394.375903][T10881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  394.375935][T10881] RSP: 002b:00007f54801c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  394.375966][T10881] RAX: ffffffffffffffda RBX: 00007f547f5b5fa0 RCX: 00007f547f38e9a9
[  394.375988][T10881] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003
[  394.376009][T10881] RBP: 00007f54801c5090 R08: 0000000000000000 R09: 0000000000000000
[  394.376029][T10881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  394.376050][T10881] R13: 0000000000000000 R14: 00007f547f5b5fa0 R15: 00007ffd88119da8
[  394.376081][T10881]  </TASK>
[  396.614721][T10927] vivid-003: =================  START STATUS  =================
[  396.661239][T10927] vivid-003: Radio HW Seek Mode: Bounded
[  396.672871][T10927] vivid-003: Radio Programmable HW Seek: false
[  396.731881][T10927] vivid-003: RDS Rx I/O Mode: Block I/O
[  396.790068][T10927] vivid-003: Generate RBDS Instead of RDS: false
[  396.834090][T10927] vivid-003: RDS Reception: true
[  396.855656][T10927] vivid-003: RDS Program Type: 0 inactive
[  396.870183][T10927] vivid-003: RDS PS Name:  inactive
[  396.881188][T10927] vivid-003: RDS Radio Text:  inactive
[  396.886887][T10927] vivid-003: RDS Traffic Announcement: false inactive
[  396.902612][T10927] vivid-003: RDS Traffic Program: false inactive
[  396.909345][T10927] vivid-003: RDS Music: false inactive
[  396.930478][T10927] vivid-003: ==================  END STATUS  ==================
[  397.465170][T10944] FAULT_INJECTION: forcing a failure.
[  397.465170][T10944] name failslab, interval 1, probability 0, space 0, times 0
[  397.544815][T10944] CPU: 0 UID: 0 PID: 10944 Comm: syz.1.1327 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  397.544864][T10944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  397.544886][T10944] Call Trace:
[  397.544898][T10944]  <TASK>
[  397.544911][T10944]  dump_stack_lvl+0x16c/0x1f0
[  397.544972][T10944]  should_fail_ex+0x512/0x640
[  397.545010][T10944]  should_failslab+0xc2/0x120
[  397.545050][T10944]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  397.545087][T10944]  ? lock_release+0x201/0x2f0
[  397.545132][T10944]  ? __proc_create+0x2ce/0x8c0
[  397.545173][T10944]  __proc_create+0x2ce/0x8c0
[  397.545211][T10944]  ? __pfx___proc_create+0x10/0x10
[  397.545248][T10944]  ? lock_release+0x201/0x2f0
[  397.545294][T10944]  ? _raw_write_unlock+0x28/0x50
[  397.545325][T10944]  proc_create_reg+0x7d/0x180
[  397.545363][T10944]  proc_create_data+0x86/0x110
[  397.545400][T10944]  ? __pfx_proc_create_data+0x10/0x10
[  397.545439][T10944]  ? cache_register_net+0x137/0x5e0
[  397.545479][T10944]  ? lock_release+0x201/0x2f0
[  397.545526][T10944]  cache_register_net+0x1e0/0x5e0
[  397.545567][T10944]  ip_map_cache_create+0x8b/0x130
[  397.545604][T10944]  ? __pfx_sunrpc_init_net+0x10/0x10
[  397.545633][T10944]  sunrpc_init_net+0x55/0x190
[  397.545663][T10944]  ops_init+0x1df/0x5f0
[  397.545703][T10944]  setup_net+0x1ff/0x510
[  397.545740][T10944]  ? lockdep_init_map_type+0x5c/0x280
[  397.545789][T10944]  ? __pfx_setup_net+0x10/0x10
[  397.545826][T10944]  ? __raw_spin_lock_init+0x3a/0x110
[  397.545891][T10944]  ? debug_mutex_init+0x37/0x70
[  397.545927][T10944]  copy_net_ns+0x2a6/0x5f0
[  397.545981][T10944]  create_new_namespaces+0x3ea/0xa90
[  397.546026][T10944]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  397.546067][T10944]  ksys_unshare+0x45b/0xa40
[  397.546115][T10944]  ? __pfx_ksys_unshare+0x10/0x10
[  397.546162][T10944]  ? xfd_validate_state+0x61/0x180
[  397.546215][T10944]  __x64_sys_unshare+0x31/0x40
[  397.546261][T10944]  do_syscall_64+0xcd/0x490
[  397.546299][T10944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  397.546338][T10944] RIP: 0033:0x7f547f38e9a9
[  397.546364][T10944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  397.546399][T10944] RSP: 002b:00007f54801c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  397.546431][T10944] RAX: ffffffffffffffda RBX: 00007f547f5b5fa0 RCX: 00007f547f38e9a9
[  397.546454][T10944] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  397.546476][T10944] RBP: 00007f547f410d69 R08: 0000000000000000 R09: 0000000000000000
[  397.546497][T10944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  397.546519][T10944] R13: 0000000000000000 R14: 00007f547f5b5fa0 R15: 00007ffd88119da8
[  397.546551][T10944]  </TASK>
[  397.830751][    C0] vkms_vblank_simulate: vblank timer overrun
[  398.105845][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  398.112636][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  398.130956][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  398.138199][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  398.206619][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  398.213158][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  398.223438][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  398.229853][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  398.608026][T10961] FAULT_INJECTION: forcing a failure.
[  398.608026][T10961] name failslab, interval 1, probability 0, space 0, times 0
[  398.669788][T10963] vivid-007: =================  START STATUS  =================
[  398.693327][T10963] vivid-007: Generate PTS: true
[  398.698823][T10963] vivid-007: Generate SCR: true
[  398.710485][T10963] tpg source WxH: 320x240 (Y'CbCr)
[  398.713581][T10961] CPU: 1 UID: 0 PID: 10961 Comm: syz.1.1331 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  398.713630][T10961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  398.713655][T10961] Call Trace:
[  398.713666][T10961]  <TASK>
[  398.713679][T10961]  dump_stack_lvl+0x16c/0x1f0
[  398.713723][T10961]  should_fail_ex+0x512/0x640
[  398.713764][T10961]  ? splice_grow_spd+0xf4/0x1c0
[  398.713819][T10961]  should_failslab+0xc2/0x120
[  398.713983][T10961]  __kmalloc_noprof+0xd2/0x510
[  398.714112][T10961]  ? rcu_is_watching+0x12/0xc0
[  398.714155][T10961]  ? is_bpf_text_address+0x8a/0x1a0
[  398.714210][T10961]  splice_grow_spd+0xf4/0x1c0
[  398.714266][T10961]  tracing_buffers_splice_read+0x23f/0xef0
[  398.714319][T10961]  ? kernel_text_address+0x8d/0x100
[  398.714384][T10961]  ? __pfx_tracing_buffers_splice_read+0x10/0x10
[  398.714438][T10961]  ? __pfx_buffer_spd_release+0x10/0x10
[  398.714480][T10961]  ? _parse_integer_limit+0x17f/0x1d0
[  398.714542][T10961]  ? __pfx___mutex_trylock_common+0x10/0x10
[  398.714613][T10961]  ? rcu_is_watching+0x12/0xc0
[  398.714653][T10961]  ? lock_release+0x201/0x2f0
[  398.714715][T10961]  ? __pfx_tracing_buffers_splice_read+0x10/0x10
[  398.714767][T10961]  do_splice_read+0x285/0x370
[  398.714822][T10961]  splice_file_to_pipe+0x109/0x120
[  398.714971][T10961]  do_splice+0x118c/0x1fc0
[  398.715029][T10961]  ? preempt_count_add+0x76/0x150
[  398.715088][T10961]  ? ksys_write+0x190/0x250
[  398.715122][T10961]  ? rcu_is_watching+0x12/0xc0
[  398.715164][T10961]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  398.715205][T10961]  ? __pfx_do_splice+0x10/0x10
[  398.715259][T10961]  ? __pfx_pipe_clear_nowait+0x10/0x10
[  398.715312][T10961]  ? rcu_is_watching+0x12/0xc0
[  398.715354][T10961]  __do_splice+0x15d/0x360
[  398.715412][T10961]  ? __pfx___do_splice+0x10/0x10
[  398.715466][T10961]  ? __fput_deferred+0x480/0x480
[  398.715517][T10961]  __x64_sys_splice+0x187/0x250
[  398.715576][T10961]  do_syscall_64+0xcd/0x490
[  398.715617][T10961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.715669][T10961] RIP: 0033:0x7f547f38e9a9
[  398.715696][T10961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  398.715725][T10961] RSP: 002b:00007f54801c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  398.715756][T10961] RAX: ffffffffffffffda RBX: 00007f547f5b5fa0 RCX: 00007f547f38e9a9
[  398.715778][T10961] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000004
[  398.715797][T10961] RBP: 00007f54801c5090 R08: 0000000000001000 R09: 000000000000000f
[  398.715818][T10961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  398.715971][T10961] R13: 0000000000000000 R14: 00007f547f5b5fa0 R15: 00007ffd88119da8
[  398.716083][T10961]  </TASK>
[  398.994175][T10963] tpg field: 1
[  398.997657][T10963] tpg crop: (0,0)/320x240
[  399.003770][T10963] tpg compose: (0,0)/320x240
[  399.008441][T10963] tpg colorspace: 8
[  399.012552][T10963] tpg transfer function: 0/0
[  399.017672][T10963] tpg Y'CbCr encoding: 0/0
[  399.044925][T10963] tpg quantization: 0/0
[  399.049312][T10963] tpg RGB range: 0/2
[  399.051828][T10965] ptrace attach of "./syz-executor exec"[10968] was attempted by "./syz-executor exec"[10965]
[  399.072824][T10963] vivid-007: ==================  END STATUS  ==================
[  400.837849][   T30] audit: type=1800 audit(6048704968.389:18): pid=10989 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1339" name="features" dev="configfs" ino=31548 res=0 errno=0
[  401.534828][T11019] FAULT_INJECTION: forcing a failure.
[  401.534828][T11019] name failslab, interval 1, probability 0, space 0, times 0
[  401.601245][T11019] CPU: 1 UID: 0 PID: 11019 Comm: syz.1.1347 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  401.601289][T11019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  401.601309][T11019] Call Trace:
[  401.601319][T11019]  <TASK>
[  401.601331][T11019]  dump_stack_lvl+0x16c/0x1f0
[  401.601380][T11019]  should_fail_ex+0x512/0x640
[  401.601414][T11019]  ? tomoyo_encode2+0x100/0x3e0
[  401.601440][T11019]  should_failslab+0xc2/0x120
[  401.601475][T11019]  __kmalloc_noprof+0xd2/0x510
[  401.601508][T11019]  ? d_absolute_path+0x136/0x1a0
[  401.601551][T11019]  tomoyo_encode2+0x100/0x3e0
[  401.601584][T11019]  tomoyo_encode+0x29/0x50
[  401.601772][T11019]  tomoyo_realpath_from_path+0x18f/0x6e0
[  401.601810][T11019]  tomoyo_path_number_perm+0x245/0x580
[  401.601856][T11019]  ? tomoyo_path_number_perm+0x237/0x580
[  401.601921][T11019]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  401.601980][T11019]  ? preempt_count_add+0x76/0x150
[  401.602048][T11019]  ? rcu_is_watching+0x12/0xc0
[  401.602084][T11019]  ? __fget_files+0x204/0x3c0
[  401.602135][T11019]  ? hook_file_ioctl_common+0x145/0x410
[  401.602181][T11019]  ? lock_release+0x201/0x2f0
[  401.602229][T11019]  ? __fget_files+0x20e/0x3c0
[  401.602289][T11019]  security_file_ioctl+0x9b/0x240
[  401.602339][T11019]  __x64_sys_ioctl+0xb7/0x210
[  401.602395][T11019]  do_syscall_64+0xcd/0x490
[  401.602432][T11019]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.602467][T11019] RIP: 0033:0x7f547f38e9a9
[  401.602492][T11019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  401.602525][T11019] RSP: 002b:00007f54801a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  401.602561][T11019] RAX: ffffffffffffffda RBX: 00007f547f5b6080 RCX: 00007f547f38e9a9
[  401.602583][T11019] RDX: 0000200000000000 RSI: 00000000800c5012 RDI: 0000000000000003
[  401.602605][T11019] RBP: 00007f54801a4090 R08: 0000000000000000 R09: 0000000000000000
[  401.602626][T11019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  401.602727][T11019] R13: 0000000000000000 R14: 00007f547f5b6080 R15: 00007ffd88119da8
[  401.602762][T11019]  </TASK>
[  401.602873][T11019] ERROR: Out of memory at tomoyo_realpath_from_path.
[  402.108949][   T30] audit: type=1800 audit(6048704969.659:19): pid=11022 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1348" name="features" dev="configfs" ino=31854 res=0 errno=0
[  403.346030][T11039] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1354'.
[  403.357741][T11039] mac80211_hwsim hwsim4 �: renamed from wlan0 (while UP)
[  404.007357][T11059] vivid-007: =================  START STATUS  =================
[  404.028484][T11059] vivid-007: Generate PTS: true
[  404.044121][T11059] vivid-007: Generate SCR: true
[  404.055261][T11059] tpg source WxH: 320x240 (Y'CbCr)
[  404.067402][T11059] tpg field: 1
[  404.078670][T11059] tpg crop: (0,0)/320x240
[  404.091583][T11059] tpg compose: (0,0)/320x240
[  404.104177][T11059] tpg colorspace: 8
[  404.116463][T11059] tpg transfer function: 0/0
[  404.128619][T11059] tpg Y'CbCr encoding: 0/0
[  404.138881][T11059] tpg quantization: 0/0
[  404.148808][T11059] tpg RGB range: 0/2
[  404.157037][T11059] vivid-007: ==================  END STATUS  ==================
[  404.255645][T11068] vivid-007: =================  START STATUS  =================
[  404.267426][T11068] vivid-007: Generate PTS: true
[  404.276040][T11068] vivid-007: Generate SCR: true
[  404.286320][T11068] tpg source WxH: 320x240 (Y'CbCr)
[  404.295223][T11068] tpg field: 1
[  404.304662][T11068] tpg crop: (0,0)/320x240
[  404.311174][T11068] tpg compose: (0,0)/320x240
[  404.320713][T11068] tpg colorspace: 8
[  404.330789][T11068] tpg transfer function: 0/0
[  404.339038][T11068] tpg Y'CbCr encoding: 0/0
[  404.347210][T11068] tpg quantization: 0/0
[  404.361284][T11068] tpg RGB range: 0/2
[  404.369351][T11068] vivid-007: ==================  END STATUS  ==================
[  405.164428][T11098] FAULT_INJECTION: forcing a failure.
[  405.164428][T11098] name failslab, interval 1, probability 0, space 0, times 0
[  405.248597][T11098] CPU: 1 UID: 0 PID: 11098 Comm: syz.2.1369 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  405.248648][T11098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  405.248669][T11098] Call Trace:
[  405.248680][T11098]  <TASK>
[  405.248692][T11098]  dump_stack_lvl+0x16c/0x1f0
[  405.248732][T11098]  should_fail_ex+0x512/0x640
[  405.248768][T11098]  should_failslab+0xc2/0x120
[  405.248807][T11098]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  405.248843][T11098]  ? __alloc_skb+0x2b2/0x380
[  405.248877][T11098]  __alloc_skb+0x2b2/0x380
[  405.248908][T11098]  ? __pfx___alloc_skb+0x10/0x10
[  405.248939][T11098]  ? is_bpf_text_address+0x8a/0x1a0
[  405.248985][T11098]  ? rcu_watching_snap_stopped_since+0xb0/0x110
[  405.249034][T11098]  ? rcu_is_watching+0x12/0xc0
[  405.249072][T11098]  alloc_skb_with_frags+0xe0/0x860
[  405.249112][T11098]  ? unwind_next_frame+0x3f4/0x20a0
[  405.249168][T11098]  sock_alloc_send_pskb+0x7fb/0x990
[  405.249229][T11098]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  405.249284][T11098]  ? rcu_is_watching+0x12/0xc0
[  405.249320][T11098]  ? is_bpf_text_address+0x8a/0x1a0
[  405.249365][T11098]  ? rcu_is_watching+0x12/0xc0
[  405.249400][T11098]  ? lock_release+0x201/0x2f0
[  405.249443][T11098]  ? bpf_ksym_find+0x124/0x1c0
[  405.249481][T11098]  __ip6_append_data+0x2af5/0x4780
[  405.249530][T11098]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  405.249576][T11098]  ? ip6_mtu+0x1a3/0x4a0
[  405.249607][T11098]  ? lock_release+0x201/0x2f0
[  405.249651][T11098]  ? __pfx___ip6_append_data+0x10/0x10
[  405.249695][T11098]  ? __pfx_ip6_mtu+0x10/0x10
[  405.249730][T11098]  ? ip6_setup_cork+0xc51/0x1530
[  405.249774][T11098]  ip6_make_skb+0x2c8/0x3f0
[  405.249823][T11098]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  405.249866][T11098]  ? __pfx_ip6_make_skb+0x10/0x10
[  405.249920][T11098]  ? ip6_dst_hoplimit+0x1a7/0x430
[  405.249952][T11098]  ? rcu_is_watching+0x12/0xc0
[  405.249986][T11098]  ? lock_release+0x201/0x2f0
[  405.250040][T11098]  ? udpv6_sendmsg+0x235c/0x2d20
[  405.250071][T11098]  udpv6_sendmsg+0x235c/0x2d20
[  405.250105][T11098]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  405.250153][T11098]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  405.250189][T11098]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  405.250244][T11098]  ? rcu_is_watching+0x12/0xc0
[  405.250280][T11098]  ? unwind_next_frame+0x3f4/0x20a0
[  405.250331][T11098]  ? rcu_is_watching+0x12/0xc0
[  405.250374][T11098]  ? iovec_from_user+0xbb/0x140
[  405.250414][T11098]  ? __pfx_aa_sk_perm+0x10/0x10
[  405.250460][T11098]  ? __import_iovec+0x1dd/0x650
[  405.250497][T11098]  ? rcu_is_watching+0x12/0xc0
[  405.250531][T11098]  ? __might_fault+0xe3/0x190
[  405.250562][T11098]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  405.250595][T11098]  ? inet6_sendmsg+0x105/0x140
[  405.250626][T11098]  inet6_sendmsg+0x105/0x140
[  405.250661][T11098]  ____sys_sendmsg+0x705/0xc70
[  405.250706][T11098]  ? copy_msghdr_from_user+0x10a/0x160
[  405.250742][T11098]  ? __pfx_____sys_sendmsg+0x10/0x10
[  405.250790][T11098]  ? __pfx__kstrtoull+0x10/0x10
[  405.250838][T11098]  ? aa_file_perm+0x4c7/0xfb0
[  405.250869][T11098]  ___sys_sendmsg+0x134/0x1d0
[  405.250904][T11098]  ? __pfx____sys_sendmsg+0x10/0x10
[  405.250946][T11098]  ? rcu_is_watching+0x12/0xc0
[  405.250995][T11098]  __sys_sendmmsg+0x200/0x420
[  405.251040][T11098]  ? __pfx___sys_sendmmsg+0x10/0x10
[  405.251075][T11098]  ? lock_release+0x201/0x2f0
[  405.251119][T11098]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  405.251162][T11098]  ? fput+0x70/0xf0
[  405.251195][T11098]  ? ksys_write+0x1ac/0x250
[  405.251223][T11098]  ? __pfx_ksys_write+0x10/0x10
[  405.251256][T11098]  __x64_sys_sendmmsg+0x9c/0x100
[  405.251289][T11098]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  405.251342][T11098]  do_syscall_64+0xcd/0x490
[  405.251378][T11098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.251412][T11098] RIP: 0033:0x7f71f658e9a9
[  405.251438][T11098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  405.251471][T11098] RSP: 002b:00007f71f73fa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  405.251502][T11098] RAX: ffffffffffffffda RBX: 00007f71f67b5fa0 RCX: 00007f71f658e9a9
[  405.251525][T11098] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000003
[  405.251545][T11098] RBP: 00007f71f73fa090 R08: 0000000000000000 R09: 0000000000000000
[  405.251566][T11098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  405.251585][T11098] R13: 0000000000000000 R14: 00007f71f67b5fa0 R15: 00007fff526fe4b8
[  405.251618][T11098]  </TASK>
[  409.385028][T11174] FAULT_INJECTION: forcing a failure.
[  409.385028][T11174] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  409.403624][T11174] CPU: 0 UID: 0 PID: 11174 Comm: syz.2.1382 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  409.403670][T11174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  409.403691][T11174] Call Trace:
[  409.403702][T11174]  <TASK>
[  409.403715][T11174]  dump_stack_lvl+0x16c/0x1f0
[  409.403754][T11174]  should_fail_ex+0x512/0x640
[  409.403791][T11174]  _copy_from_user+0x2e/0xd0
[  409.403827][T11174]  kstrtouint_from_user+0xd6/0x1d0
[  409.403876][T11174]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  409.403929][T11174]  ? simple_read_from_buffer+0x10d/0x170
[  409.403988][T11174]  proc_fail_nth_write+0x83/0x250
[  409.404034][T11174]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  409.404080][T11174]  ? __pfx___might_resched+0x10/0x10
[  409.404118][T11174]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  409.404165][T11174]  vfs_write+0x29d/0x1150
[  409.404198][T11174]  ? __pfx___mutex_lock+0x10/0x10
[  409.404232][T11174]  ? __pfx_vfs_write+0x10/0x10
[  409.404260][T11174]  ? __fget_files+0x204/0x3c0
[  409.404308][T11174]  ? rcu_is_watching+0x12/0xc0
[  409.404346][T11174]  ? __fget_files+0x20e/0x3c0
[  409.404402][T11174]  ksys_write+0x12a/0x250
[  409.404433][T11174]  ? __pfx_ksys_write+0x10/0x10
[  409.404463][T11174]  ? fdget+0x187/0x210
[  409.404494][T11174]  do_syscall_64+0xcd/0x490
[  409.404529][T11174]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  409.404563][T11174] RIP: 0033:0x7f71f658d45f
[  409.404588][T11174] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  409.404684][T11174] RSP: 002b:00007f71f73fa030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  409.404718][T11174] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f71f658d45f
[  409.404738][T11174] RDX: 0000000000000001 RSI: 00007f71f73fa0a0 RDI: 0000000000000004
[  409.404757][T11174] RBP: 00007f71f73fa090 R08: 0000000000000000 R09: 0000000000000000
[  409.404777][T11174] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  409.404794][T11174] R13: 0000000000000000 R14: 00007f71f67b5fa0 R15: 00007fff526fe4b8
[  409.404823][T11174]  </TASK>
[  409.787689][T11162] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  409.823586][T11162] Process accounting paused
[  410.078544][T11182] FAULT_INJECTION: forcing a failure.
[  410.078544][T11182] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  410.118148][T11182] CPU: 0 UID: 0 PID: 11182 Comm: syz.3.1383 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  410.118197][T11182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  410.118219][T11182] Call Trace:
[  410.118230][T11182]  <TASK>
[  410.118243][T11182]  dump_stack_lvl+0x16c/0x1f0
[  410.118285][T11182]  should_fail_ex+0x512/0x640
[  410.118323][T11182]  _copy_from_iter+0x29f/0x16f0
[  410.118365][T11182]  ? __pfx__copy_from_iter+0x10/0x10
[  410.118403][T11182]  ? rcu_is_watching+0x12/0xc0
[  410.118438][T11182]  ? trace_kmalloc+0x2b/0xd0
[  410.118479][T11182]  ? __kmalloc_noprof+0x242/0x510
[  410.118516][T11182]  kernfs_fop_write_iter+0x19a/0x510
[  410.118562][T11182]  vfs_write+0x6c4/0x1150
[  410.118593][T11182]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  410.118636][T11182]  ? __pfx___mutex_lock+0x10/0x10
[  410.118670][T11182]  ? __pfx_vfs_write+0x10/0x10
[  410.118713][T11182]  ksys_write+0x12a/0x250
[  410.118743][T11182]  ? __pfx_ksys_write+0x10/0x10
[  410.118895][T11182]  do_syscall_64+0xcd/0x490
[  410.118949][T11182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  410.118989][T11182] RIP: 0033:0x7fba74d8e9a9
[  410.119018][T11182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  410.119055][T11182] RSP: 002b:00007fba75c03038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  410.119090][T11182] RAX: ffffffffffffffda RBX: 00007fba74fb5fa0 RCX: 00007fba74d8e9a9
[  410.119115][T11182] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003
[  410.119138][T11182] RBP: 00007fba75c03090 R08: 0000000000000000 R09: 0000000000000000
[  410.119162][T11182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  410.119193][T11182] R13: 0000000000000000 R14: 00007fba74fb5fa0 R15: 00007fff64623dd8
[  410.119230][T11182]  </TASK>
[  410.134279][T11192] vivid-007: =================  START STATUS  =================
[  410.325320][T11192] vivid-007: Generate PTS: true
[  410.332855][T11192] vivid-007: Generate SCR: true
[  410.337824][T11192] tpg source WxH: 320x240 (Y'CbCr)
[  410.343284][T11192] tpg field: 1
[  410.346717][T11192] tpg crop: (0,0)/320x240
[  410.353692][T11192] tpg compose: (0,0)/320x240
[  410.358601][T11192] tpg colorspace: 8
[  410.371739][T11192] tpg transfer function: 0/0
[  410.376800][T11192] tpg Y'CbCr encoding: 0/0
[  410.413279][T11192] tpg quantization: 0/0
[  410.417542][T11192] tpg RGB range: 0/2
[  410.436326][T11192] vivid-007: ==================  END STATUS  ==================
[  410.969480][T11216] FAULT_INJECTION: forcing a failure.
[  410.969480][T11216] name failslab, interval 1, probability 0, space 0, times 0
[  410.993786][T11216] CPU: 1 UID: 0 PID: 11216 Comm: syz.3.1391 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  410.993831][T11216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  410.993852][T11216] Call Trace:
[  410.993863][T11216]  <TASK>
[  410.993875][T11216]  dump_stack_lvl+0x16c/0x1f0
[  410.993914][T11216]  should_fail_ex+0x512/0x640
[  410.993951][T11216]  should_failslab+0xc2/0x120
[  410.993991][T11216]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  410.994026][T11216]  ? __alloc_skb+0x2b2/0x380
[  410.994061][T11216]  __alloc_skb+0x2b2/0x380
[  410.994090][T11216]  ? __pfx___alloc_skb+0x10/0x10
[  410.994123][T11216]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  410.994168][T11216]  netlink_alloc_large_skb+0x69/0x130
[  410.994209][T11216]  netlink_sendmsg+0x6a1/0xdd0
[  410.994253][T11216]  ? __pfx_netlink_sendmsg+0x10/0x10
[  410.994300][T11216]  ____sys_sendmsg+0xa95/0xc70
[  410.994347][T11216]  ? copy_msghdr_from_user+0x10a/0x160
[  410.994383][T11216]  ? __pfx_____sys_sendmsg+0x10/0x10
[  410.994425][T11216]  ? __pfx_kstrtouint+0x10/0x10
[  410.994478][T11216]  ? kstrtouint_from_user+0x13c/0x1d0
[  410.994527][T11216]  ___sys_sendmsg+0x134/0x1d0
[  410.994562][T11216]  ? __pfx____sys_sendmsg+0x10/0x10
[  410.994676][T11216]  ? rcu_is_watching+0x12/0xc0
[  410.994725][T11216]  __sys_sendmsg+0x16d/0x220
[  410.994760][T11216]  ? __pfx___sys_sendmsg+0x10/0x10
[  410.994812][T11216]  do_syscall_64+0xcd/0x490
[  410.994854][T11216]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  410.994888][T11216] RIP: 0033:0x7fba74d8e9a9
[  410.994913][T11216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  410.994947][T11216] RSP: 002b:00007fba75be2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  410.994988][T11216] RAX: ffffffffffffffda RBX: 00007fba74fb6080 RCX: 00007fba74d8e9a9
[  410.995012][T11216] RDX: 0000000000000890 RSI: 00002000000048c0 RDI: 0000000000000004
[  410.995033][T11216] RBP: 00007fba75be2090 R08: 0000000000000000 R09: 0000000000000000
[  410.995055][T11216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  410.995076][T11216] R13: 0000000000000001 R14: 00007fba74fb6080 R15: 00007fff64623dd8
[  410.995108][T11216]  </TASK>
[  411.352926][   T30] audit: type=1800 audit(6048704978.909:20): pid=11221 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1390" name="features" dev="configfs" ino=32190 res=0 errno=0
[  412.009936][T11234] FAULT_INJECTION: forcing a failure.
[  412.009936][T11234] name failslab, interval 1, probability 0, space 0, times 0
[  412.036909][T11234] CPU: 0 UID: 0 PID: 11234 Comm: syz.0.1395 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  412.036955][T11234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  412.036982][T11234] Call Trace:
[  412.036992][T11234]  <TASK>
[  412.037005][T11234]  dump_stack_lvl+0x16c/0x1f0
[  412.037042][T11234]  should_fail_ex+0x512/0x640
[  412.037078][T11234]  ? tomoyo_encode2+0x100/0x3e0
[  412.037107][T11234]  should_failslab+0xc2/0x120
[  412.037144][T11234]  __kmalloc_noprof+0xd2/0x510
[  412.037176][T11234]  ? d_absolute_path+0x136/0x1a0
[  412.037218][T11234]  tomoyo_encode2+0x100/0x3e0
[  412.037262][T11234]  tomoyo_encode+0x29/0x50
[  412.037290][T11234]  tomoyo_realpath_from_path+0x18f/0x6e0
[  412.037327][T11234]  tomoyo_path_number_perm+0x245/0x580
[  412.037372][T11234]  ? tomoyo_path_number_perm+0x237/0x580
[  412.037420][T11234]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  412.037491][T11234]  ? preempt_count_add+0x76/0x150
[  412.037548][T11234]  ? rcu_is_watching+0x12/0xc0
[  412.037583][T11234]  ? __fget_files+0x204/0x3c0
[  412.037631][T11234]  ? hook_file_ioctl_common+0x145/0x410
[  412.037675][T11234]  ? lock_release+0x201/0x2f0
[  412.037721][T11234]  ? __fget_files+0x20e/0x3c0
[  412.037783][T11234]  security_file_ioctl+0x9b/0x240
[  412.037833][T11234]  __x64_sys_ioctl+0xb7/0x210
[  412.037879][T11234]  do_syscall_64+0xcd/0x490
[  412.037914][T11234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  412.037947][T11234] RIP: 0033:0x7f6b2b98e9a9
[  412.037972][T11234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  412.038005][T11234] RSP: 002b:00007f6b2c7e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  412.038036][T11234] RAX: ffffffffffffffda RBX: 00007f6b2bbb5fa0 RCX: 00007f6b2b98e9a9
[  412.038057][T11234] RDX: 00002000000001c0 RSI: fffffffffffffd03 RDI: 0000000000000003
[  412.038078][T11234] RBP: 00007f6b2c7e6090 R08: 0000000000000000 R09: 0000000000000000
[  412.038097][T11234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  412.038115][T11234] R13: 0000000000000000 R14: 00007f6b2bbb5fa0 R15: 00007ffcc4471658
[  412.038147][T11234]  </TASK>
[  412.038170][T11234] ERROR: Out of memory at tomoyo_realpath_from_path.
[  412.263352][T11234] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1633771873.1633771873.1633771873), cmd(3)
[  412.455423][T11242] FAULT_INJECTION: forcing a failure.
[  412.455423][T11242] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  412.486629][T11242] CPU: 0 UID: 0 PID: 11242 Comm: syz.1.1398 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  412.486674][T11242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  412.486694][T11242] Call Trace:
[  412.486713][T11242]  <TASK>
[  412.486724][T11242]  dump_stack_lvl+0x16c/0x1f0
[  412.486762][T11242]  should_fail_ex+0x512/0x640
[  412.486798][T11242]  _copy_from_user+0x2e/0xd0
[  412.486833][T11242]  cache_do_downcall+0x66/0x160
[  412.486866][T11242]  cache_write_procfs+0xf0/0x160
[  412.486900][T11242]  ? __pfx_cache_write_procfs+0x10/0x10
[  412.486934][T11242]  proc_reg_write+0x23d/0x330
[  412.486968][T11242]  ? __pfx_proc_reg_write+0x10/0x10
[  412.486999][T11242]  vfs_write+0x29d/0x1150
[  412.487033][T11242]  ? __pfx___mutex_lock+0x10/0x10
[  412.487066][T11242]  ? __pfx_vfs_write+0x10/0x10
[  412.487095][T11242]  ? __fget_files+0x204/0x3c0
[  412.487145][T11242]  ? rcu_is_watching+0x12/0xc0
[  412.487175][T11242]  ? __fget_files+0x20e/0x3c0
[  412.487215][T11242]  ksys_write+0x12a/0x250
[  412.487237][T11242]  ? __pfx_ksys_write+0x10/0x10
[  412.487263][T11242]  do_syscall_64+0xcd/0x490
[  412.487288][T11242]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  412.487312][T11242] RIP: 0033:0x7f547f38e9a9
[  412.487331][T11242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  412.487354][T11242] RSP: 002b:00007f54801c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  412.487376][T11242] RAX: ffffffffffffffda RBX: 00007f547f5b5fa0 RCX: 00007f547f38e9a9
[  412.487392][T11242] RDX: 0000000000000060 RSI: 0000200000000000 RDI: 0000000000000004
[  412.487407][T11242] RBP: 00007f54801c5090 R08: 0000000000000000 R09: 0000000000000000
[  412.487421][T11242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  412.487444][T11242] R13: 0000000000000000 R14: 00007f547f5b5fa0 R15: 00007ffd88119da8
[  412.487479][T11242]  </TASK>
[  412.743234][T11245] vivid-007: =================  START STATUS  =================
[  412.750965][T11245] vivid-007: Generate PTS: true
[  412.760627][T11240] FAULT_INJECTION: forcing a failure.
[  412.760627][T11240] name failslab, interval 1, probability 0, space 0, times 0
[  412.788990][T11245] vivid-007: Generate SCR: true
[  412.793342][T11240] CPU: 1 UID: 0 PID: 11240 Comm: syz.0.1397 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  412.793397][T11240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  412.793431][T11240] Call Trace:
[  412.793445][T11240]  <TASK>
[  412.793459][T11240]  dump_stack_lvl+0x16c/0x1f0
[  412.793505][T11240]  should_fail_ex+0x512/0x640
[  412.793550][T11240]  should_failslab+0xc2/0x120
[  412.793596][T11240]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  412.793637][T11240]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  412.793775][T11240]  ? mas_alloc_nodes+0x18b/0x8b0
[  412.793845][T11240]  mas_alloc_nodes+0x18b/0x8b0
[  412.793907][T11240]  mas_node_count_gfp+0x105/0x130
[  412.793971][T11240]  mas_preallocate+0x7e0/0xde0
[  412.794020][T11240]  ? __pfx_mas_preallocate+0x10/0x10
[  412.794073][T11240]  ? __asan_memset+0x23/0x50
[  412.794131][T11240]  ? init_multi_vma_prep+0x30a/0x650
[  412.794191][T11240]  commit_merge+0x2a8/0x1030
[  412.794243][T11240]  ? __pfx_commit_merge+0x10/0x10
[  412.794303][T11240]  ? vms_clear_ptes+0xbd/0x770
[  412.794357][T11240]  vma_expand+0x3c1/0x910
[  412.794386][T11240]  ? __pfx_vms_clear_ptes+0x10/0x10
[  412.794450][T11240]  ? __pfx_vma_expand+0x10/0x10
[  412.794484][T11240]  ? can_vma_merge_right+0xa5/0x530
[  412.794540][T11240]  vma_merge_new_range+0x2c0/0xa00
[  412.794578][T11240]  ? __sanitizer_cov_trace_const_cmp2+0x1/0x20
[  412.794644][T11240]  __mmap_region+0x7f1/0x25e0
[  412.794849][T11240]  ? finish_task_switch.isra.0+0x21c/0xc10
[  412.794895][T11240]  ? rcu_is_watching+0x12/0xc0
[  412.794937][T11240]  ? __pfx___mmap_region+0x10/0x10
[  412.794976][T11240]  ? rcu_is_watching+0x12/0xc0
[  412.795020][T11240]  ? rcu_is_watching+0x12/0xc0
[  412.795059][T11240]  ? trace_sched_exit_tp+0xde/0x130
[  412.795103][T11240]  ? __schedule+0x1181/0x5dd0
[  412.795159][T11240]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  412.795205][T11240]  ? is_bpf_text_address+0x94/0x1a0
[  412.795263][T11240]  ? __kernel_text_address+0xd/0x40
[  412.795332][T11240]  ? __pfx___schedule+0x10/0x10
[  412.795388][T11240]  ? plist_check_prev_next+0x12a/0x1a0
[  412.795514][T11240]  ? trace_cap_capable+0x18d/0x200
[  412.795564][T11240]  ? cap_capable+0xb3/0x250
[  412.795628][T11240]  mmap_region+0x1ab/0x3f0
[  412.795667][T11240]  ? __get_unmapped_area+0x267/0x440
[  412.795824][T11240]  do_mmap+0xa3e/0x1210
[  412.795883][T11240]  ? __pfx_do_mmap+0x10/0x10
[  412.795937][T11240]  ? __pfx_down_write_killable+0x10/0x10
[  412.795987][T11240]  vm_mmap_pgoff+0x281/0x450
[  412.796039][T11240]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  412.796086][T11240]  ? rcu_is_watching+0x12/0xc0
[  412.796126][T11240]  ? kfree+0x24f/0x4d0
[  412.796183][T11240]  ? __x64_sys_futex+0x1e0/0x4c0
[  412.796230][T11240]  ? __x64_sys_futex+0x1e9/0x4c0
[  412.796279][T11240]  ksys_mmap_pgoff+0x7d/0x5c0
[  412.796327][T11240]  ? xfd_validate_state+0x61/0x180
[  412.796378][T11240]  ? __sys_setsockopt+0x140/0x1a0
[  412.796416][T11240]  __x64_sys_mmap+0x125/0x190
[  412.796473][T11240]  do_syscall_64+0xcd/0x490
[  412.796529][T11240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  412.796570][T11240] RIP: 0033:0x7f6b2b98e9a9
[  412.796602][T11240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  412.796640][T11240] RSP: 002b:00007f6b2c7e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  412.796676][T11240] RAX: ffffffffffffffda RBX: 00007f6b2bbb5fa0 RCX: 00007f6b2b98e9a9
[  412.796701][T11240] RDX: 00008000000000df RSI: 0000000000000fff RDI: 0000000000000000
[  412.796724][T11240] RBP: 00007f6b2ba10d69 R08: 0000000000000400 R09: 0000000000028000
[  412.796749][T11240] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  412.796773][T11240] R13: 0000000000000000 R14: 00007f6b2bbb5fa0 R15: 00007ffcc4471658
[  412.796807][T11240]  </TASK>
[  413.079012][T11243] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  413.079012][T11243] The task syz.0.1397 (11243) triggered the difference, watch for misbehavior.
[  413.100405][T11245] tpg source WxH: 320x240 (Y'CbCr)
[  413.304662][T11245] tpg field: 1
[  413.308193][T11245] tpg crop: (0,0)/320x240
[  413.313035][T11245] tpg compose: (0,0)/320x240
[  413.405916][T11245] tpg colorspace: 8
[  413.409900][T11245] tpg transfer function: 0/0
[  413.414963][T11245] tpg Y'CbCr encoding: 0/0
[  413.419518][T11245] tpg quantization: 0/0
[  413.423923][T11245] tpg RGB range: 0/2
[  413.428235][T11245] vivid-007: ==================  END STATUS  ==================
[  413.487587][T11258] FAULT_INJECTION: forcing a failure.
[  413.487587][T11258] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  413.514551][T11258] CPU: 0 UID: 0 PID: 11258 Comm: syz.2.1402 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  413.514596][T11258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  413.514814][T11258] Call Trace:
[  413.514828][T11258]  <TASK>
[  413.514841][T11258]  dump_stack_lvl+0x16c/0x1f0
[  413.514880][T11258]  should_fail_ex+0x512/0x640
[  413.514916][T11258]  _copy_from_iter+0x29f/0x16f0
[  413.514957][T11258]  ? __pfx__copy_from_iter+0x10/0x10
[  413.514992][T11258]  ? rcu_is_watching+0x12/0xc0
[  413.515031][T11258]  ? trace_kmalloc+0x2b/0xd0
[  413.515072][T11258]  ? __kvmalloc_node_noprof+0x298/0x620
[  413.515126][T11258]  ? register_net_sysctl_sz+0x3d1/0x3e0
[  413.515163][T11258]  ? proc_sys_call_handler+0x281/0x570
[  413.515198][T11258]  ? ns_capable_noaudit+0xda/0x110
[  413.515237][T11258]  proc_sys_call_handler+0x3ad/0x570
[  413.515274][T11258]  ? __pfx_proc_sys_call_handler+0x10/0x10
[  413.515308][T11258]  ? lock_acquire+0x2cd/0x350
[  413.515352][T11258]  ? __pfx___might_resched+0x10/0x10
[  413.515392][T11258]  vfs_write+0x6c4/0x1150
[  413.515422][T11258]  ? __pfx_proc_sys_write+0x10/0x10
[  413.515458][T11258]  ? __pfx_vfs_write+0x10/0x10
[  413.515489][T11258]  ? lock_release+0x201/0x2f0
[  413.515542][T11258]  __x64_sys_pwrite64+0x1eb/0x250
[  413.515576][T11258]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  413.515700][T11258]  do_syscall_64+0xcd/0x490
[  413.515816][T11258]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  413.515860][T11258] RIP: 0033:0x7f71f658e9a9
[  413.515887][T11258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  413.515922][T11258] RSP: 002b:00007f71f73fa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  413.515954][T11258] RAX: ffffffffffffffda RBX: 00007f71f67b5fa0 RCX: 00007f71f658e9a9
[  413.515977][T11258] RDX: 0000000000000008 RSI: 0000200000000000 RDI: 0000000000000003
[  413.515998][T11258] RBP: 00007f71f73fa090 R08: 0000000000000000 R09: 0000000000000000
[  413.516020][T11258] R10: 000000000000000f R11: 0000000000000246 R12: 0000000000000001
[  413.516040][T11258] R13: 0000000000000000 R14: 00007f71f67b5fa0 R15: 00007fff526fe4b8
[  413.516071][T11258]  </TASK>
[  413.838471][T11264] FAULT_INJECTION: forcing a failure.
[  413.838471][T11264] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  413.868065][T11264] CPU: 0 UID: 0 PID: 11264 Comm: syz.1.1404 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  413.868105][T11264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  413.868123][T11264] Call Trace:
[  413.868133][T11264]  <TASK>
[  413.868143][T11264]  dump_stack_lvl+0x16c/0x1f0
[  413.868176][T11264]  should_fail_ex+0x512/0x640
[  413.868208][T11264]  _copy_to_user+0x32/0xd0
[  413.868240][T11264]  simple_read_from_buffer+0xcb/0x170
[  413.868289][T11264]  proc_fail_nth_read+0x197/0x270
[  413.868339][T11264]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  413.868379][T11264]  ? security_file_permission+0x71/0x210
[  413.868425][T11264]  ? rw_verify_area+0xcf/0x680
[  413.868466][T11264]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  413.868506][T11264]  vfs_read+0x1e4/0xc60
[  413.868533][T11264]  ? __pfx___mutex_lock+0x10/0x10
[  413.868563][T11264]  ? __pfx_vfs_read+0x10/0x10
[  413.868588][T11264]  ? __fget_files+0x204/0x3c0
[  413.868632][T11264]  ? rcu_is_watching+0x12/0xc0
[  413.868666][T11264]  ? __fget_files+0x20e/0x3c0
[  413.868715][T11264]  ksys_read+0x12a/0x250
[  413.868740][T11264]  ? __pfx_ksys_read+0x10/0x10
[  413.868771][T11264]  do_syscall_64+0xcd/0x490
[  413.868803][T11264]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  413.868833][T11264] RIP: 0033:0x7f547f38d3bc
[  413.868856][T11264] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  413.868885][T11264] RSP: 002b:00007f54801c5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  413.868913][T11264] RAX: ffffffffffffffda RBX: 00007f547f5b5fa0 RCX: 00007f547f38d3bc
[  413.868933][T11264] RDX: 000000000000000f RSI: 00007f54801c50a0 RDI: 0000000000000004
[  413.868952][T11264] RBP: 00007f54801c5090 R08: 0000000000000000 R09: 0000000000000000
[  413.868971][T11264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  413.868989][T11264] R13: 0000000000000000 R14: 00007f547f5b5fa0 R15: 00007ffd88119da8
[  413.869016][T11264]  </TASK>
[  414.099509][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807e013c00: rx timeout, send abort
[  414.110353][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807e010000: rx timeout, send abort
[  414.119910][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88807e013c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  414.135741][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88807e010000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  414.221350][T11268] caif:caif_disconnect_client(): nothing to disconnect
[  414.592154][T11284] FAULT_INJECTION: forcing a failure.
[  414.592154][T11284] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  414.609957][T11283] FAULT_INJECTION: forcing a failure.
[  414.609957][T11283] name failslab, interval 1, probability 0, space 0, times 0
[  414.624890][T11283] CPU: 1 UID: 0 PID: 11283 Comm: syz.0.1410 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  414.624940][T11283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  414.624962][T11283] Call Trace:
[  414.624973][T11283]  <TASK>
[  414.624982][T11283]  dump_stack_lvl+0x16c/0x1f0
[  414.625011][T11283]  should_fail_ex+0x512/0x640
[  414.625039][T11283]  should_failslab+0xc2/0x120
[  414.625067][T11283]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  414.625093][T11283]  ? copy_process+0x4b6/0x7650
[  414.625126][T11283]  copy_process+0x4b6/0x7650
[  414.625156][T11283]  ? __pfx___futex_wait+0x10/0x10
[  414.625197][T11283]  ? __pfx_copy_process+0x10/0x10
[  414.625230][T11283]  ? __futex_hash.constprop.0+0x1e9/0x440
[  414.625260][T11283]  kernel_clone+0xfc/0x960
[  414.625291][T11283]  ? __pfx_kernel_clone+0x10/0x10
[  414.625332][T11283]  __do_sys_clone+0xce/0x120
[  414.625362][T11283]  ? __pfx___do_sys_clone+0x10/0x10
[  414.625400][T11283]  ? xfd_validate_state+0x61/0x180
[  414.625442][T11283]  do_syscall_64+0xcd/0x490
[  414.625468][T11283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.625494][T11283] RIP: 0033:0x7f6b2b98e9a9
[  414.625512][T11283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.625537][T11283] RSP: 002b:00007f6b2c7e5fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  414.625569][T11283] RAX: ffffffffffffffda RBX: 00007f6b2bbb5fa0 RCX: 00007f6b2b98e9a9
[  414.625586][T11283] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  414.625601][T11283] RBP: 00007f6b2ba10d69 R08: 0000000000000000 R09: 0000000000000000
[  414.625616][T11283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  414.625631][T11283] R13: 0000000000000000 R14: 00007f6b2bbb5fa0 R15: 00007ffcc4471658
[  414.625655][T11283]  </TASK>
[  414.627014][T11284] CPU: 1 UID: 0 PID: 11284 Comm: syz.1.1412 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  414.627051][T11284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  414.627065][T11284] Call Trace:
[  414.627073][T11284]  <TASK>
[  414.627081][T11284]  dump_stack_lvl+0x16c/0x1f0
[  414.627107][T11284]  should_fail_ex+0x512/0x640
[  414.627134][T11284]  _copy_from_user+0x2e/0xd0
[  414.627160][T11284]  move_addr_to_kernel+0x65/0x170
[  414.627196][T11284]  __copy_msghdr+0x386/0x470
[  414.627220][T11284]  copy_msghdr_from_user+0xc1/0x160
[  414.627244][T11284]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  414.627273][T11284]  ? __pfx__kstrtoull+0x10/0x10
[  414.627307][T11284]  ? aa_file_perm+0x4c7/0xfb0
[  414.627330][T11284]  ___sys_sendmsg+0xfe/0x1d0
[  414.627354][T11284]  ? __pfx____sys_sendmsg+0x10/0x10
[  414.627384][T11284]  ? rcu_is_watching+0x12/0xc0
[  414.627419][T11284]  __sys_sendmmsg+0x200/0x420
[  414.627445][T11284]  ? __pfx___sys_sendmmsg+0x10/0x10
[  414.627470][T11284]  ? lock_release+0x201/0x2f0
[  414.627506][T11284]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  414.627547][T11284]  ? fput+0x70/0xf0
[  414.627574][T11284]  ? ksys_write+0x1ac/0x250
[  414.627595][T11284]  ? __pfx_ksys_write+0x10/0x10
[  414.627619][T11284]  __x64_sys_sendmmsg+0x9c/0x100
[  414.627644][T11284]  ? trace_irq_enable.constprop.0+0xd4/0x120
[  414.627683][T11284]  do_syscall_64+0xcd/0x490
[  414.627708][T11284]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.627733][T11284] RIP: 0033:0x7f547f38e9a9
[  414.627751][T11284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.627775][T11284] RSP: 002b:00007f54801c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  414.627797][T11284] RAX: ffffffffffffffda RBX: 00007f547f5b5fa0 RCX: 00007f547f38e9a9
[  414.627813][T11284] RDX: 0000000000000005 RSI: 0000200000000100 RDI: 0000000000000003
[  414.627828][T11284] RBP: 00007f54801c5090 R08: 0000000000000000 R09: 0000000000000000
[  414.627843][T11284] R10: 000000007fffffff R11: 0000000000000246 R12: 0000000000000001
[  414.627858][T11284] R13: 0000000000000000 R14: 00007f547f5b5fa0 R15: 00007ffd88119da8
[  414.627881][T11284]  </TASK>
[  415.143492][T11288] FAULT_INJECTION: forcing a failure.
[  415.143492][T11288] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  415.182818][T11288] CPU: 0 UID: 0 PID: 11288 Comm: syz.3.1413 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  415.182864][T11288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  415.182885][T11288] Call Trace:
[  415.182896][T11288]  <TASK>
[  415.182908][T11288]  dump_stack_lvl+0x16c/0x1f0
[  415.182947][T11288]  should_fail_ex+0x512/0x640
[  415.182984][T11288]  _copy_to_iter+0x29f/0x16f0
[  415.183022][T11288]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  415.183061][T11288]  ? __pfx__copy_to_iter+0x10/0x10
[  415.183098][T11288]  ? rcu_is_watching+0x12/0xc0
[  415.183134][T11288]  ? lock_release+0x201/0x2f0
[  415.183176][T11288]  ? dev_attr_show+0x74/0xe0
[  415.183219][T11288]  ? kernfs_put_active+0x86/0xe0
[  415.183264][T11288]  seq_read_iter+0xcf8/0x12c0
[  415.183319][T11288]  kernfs_fop_read_iter+0x40f/0x5a0
[  415.183360][T11288]  ? rw_verify_area+0xcf/0x680
[  415.183406][T11288]  ? trace_contention_end+0xdd/0x130
[  415.183454][T11288]  vfs_read+0x8bc/0xc60
[  415.183485][T11288]  ? __pfx___mutex_lock+0x10/0x10
[  415.183619][T11288]  ? __pfx_vfs_read+0x10/0x10
[  415.183663][T11288]  ksys_read+0x12a/0x250
[  415.183694][T11288]  ? __pfx_ksys_read+0x10/0x10
[  415.183731][T11288]  do_syscall_64+0xcd/0x490
[  415.183767][T11288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  415.183802][T11288] RIP: 0033:0x7fba74d8e9a9
[  415.183829][T11288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  415.183863][T11288] RSP: 002b:00007fba75c03038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  415.183895][T11288] RAX: ffffffffffffffda RBX: 00007fba74fb5fa0 RCX: 00007fba74d8e9a9
[  415.183919][T11288] RDX: 0000000000000003 RSI: 00002000000000c0 RDI: 0000000000000003
[  415.183941][T11288] RBP: 00007fba75c03090 R08: 0000000000000000 R09: 0000000000000000
[  415.183962][T11288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  415.183984][T11288] R13: 0000000000000000 R14: 00007fba74fb5fa0 R15: 00007fff64623dd8
[  415.184016][T11288]  </TASK>
[  415.738984][T11304] FAULT_INJECTION: forcing a failure.
[  415.738984][T11304] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  415.754109][T11304] CPU: 0 UID: 0 PID: 11304 Comm: syz.0.1415 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  415.754151][T11304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  415.754172][T11304] Call Trace:
[  415.754190][T11304]  <TASK>
[  415.754202][T11304]  dump_stack_lvl+0x16c/0x1f0
[  415.754239][T11304]  should_fail_ex+0x512/0x640
[  415.754275][T11304]  strncpy_from_user+0x3b/0x2e0
[  415.754331][T11304]  getname_flags.part.0+0x8f/0x550
[  415.754378][T11304]  __x64_sys_rmdir+0xb0/0x110
[  415.754412][T11304]  do_syscall_64+0xcd/0x490
[  415.754446][T11304]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  415.754480][T11304] RIP: 0033:0x7f6b2b98e9a9
[  415.754504][T11304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  415.754536][T11304] RSP: 002b:00007f6b2c7e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  415.754567][T11304] RAX: ffffffffffffffda RBX: 00007f6b2bbb5fa0 RCX: 00007f6b2b98e9a9
[  415.754590][T11304] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000340
[  415.754610][T11304] RBP: 00007f6b2c7e6090 R08: 0000000000000000 R09: 0000000000000000
[  415.754629][T11304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  415.754649][T11304] R13: 0000000000000000 R14: 00007f6b2bbb5fa0 R15: 00007ffcc4471658
[  415.754680][T11304]  </TASK>
[  416.994816][T11321] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input10
[  417.086380][T11321] FAULT_INJECTION: forcing a failure.
[  417.086380][T11321] name failslab, interval 1, probability 0, space 0, times 0
[  417.125855][T11329] FAULT_INJECTION: forcing a failure.
[  417.125855][T11329] name failslab, interval 1, probability 0, space 0, times 0
[  417.131172][T11321] CPU: 1 UID: 0 PID: 11321 Comm: syz.1.1422 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  417.131223][T11321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  417.131248][T11321] Call Trace:
[  417.131261][T11321]  <TASK>
[  417.131278][T11321]  dump_stack_lvl+0x16c/0x1f0
[  417.131320][T11321]  should_fail_ex+0x512/0x640
[  417.131361][T11321]  should_failslab+0xc2/0x120
[  417.131404][T11321]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  417.131445][T11321]  ? shmem_alloc_inode+0x25/0x50
[  417.131493][T11321]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  417.131537][T11321]  shmem_alloc_inode+0x25/0x50
[  417.131580][T11321]  alloc_inode+0x61/0x240
[  417.131628][T11321]  new_inode+0x22/0x1c0
[  417.131672][T11321]  ? trace_cap_capable+0x18d/0x200
[  417.131719][T11321]  shmem_get_inode+0x19a/0xfb0
[  417.131767][T11321]  ? __vm_enough_memory+0x184/0x3f0
[  417.131816][T11321]  __shmem_file_setup+0x279/0x330
[  417.131871][T11321]  shmem_zero_setup+0x93/0x1a0
[  417.131909][T11321]  __mmap_region+0x1ece/0x25e0
[  417.131949][T11321]  ? __pfx___mmap_region+0x10/0x10
[  417.131985][T11321]  ? rcu_is_watching+0x12/0xc0
[  417.132029][T11321]  ? rcu_is_watching+0x12/0xc0
[  417.132074][T11321]  ? trace_sched_exit_tp+0xde/0x130
[  417.132119][T11321]  ? __schedule+0x1181/0x5dd0
[  417.132172][T11321]  ? rcu_is_watching+0x12/0xc0
[  417.132211][T11321]  ? trace_sched_exit_tp+0xde/0x130
[  417.132254][T11321]  ? __schedule+0x1181/0x5dd0
[  417.132308][T11321]  ? __kernel_text_address+0xd/0x40
[  417.132372][T11321]  ? __pfx___schedule+0x10/0x10
[  417.132425][T11321]  ? plist_check_prev_next+0x12a/0x1a0
[  417.132501][T11321]  ? trace_cap_capable+0x18d/0x200
[  417.132547][T11321]  ? cap_capable+0xb3/0x250
[  417.132592][T11321]  mmap_region+0x1ab/0x3f0
[  417.132629][T11321]  ? __get_unmapped_area+0x267/0x440
[  417.132680][T11321]  do_mmap+0xa3e/0x1210
[  417.132731][T11321]  ? __pfx_do_mmap+0x10/0x10
[  417.132779][T11321]  ? __pfx_down_write_killable+0x10/0x10
[  417.132823][T11321]  ? kmem_cache_free+0x2d1/0x4d0
[  417.132860][T11321]  vm_mmap_pgoff+0x281/0x450
[  417.132908][T11321]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  417.132958][T11321]  ? __x64_sys_futex+0x1e0/0x4c0
[  417.133005][T11321]  ? __x64_sys_futex+0x1e9/0x4c0
[  417.133054][T11321]  ksys_mmap_pgoff+0x7d/0x5c0
[  417.133107][T11321]  ? xfd_validate_state+0x61/0x180
[  417.133155][T11321]  ? __sys_setsockopt+0x140/0x1a0
[  417.133193][T11321]  __x64_sys_mmap+0x125/0x190
[  417.133248][T11321]  do_syscall_64+0xcd/0x490
[  417.133286][T11321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.133431][T11321] RIP: 0033:0x7f547f38e9a9
[  417.133461][T11321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.133499][T11321] RSP: 002b:00007f54801c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  417.133535][T11321] RAX: ffffffffffffffda RBX: 00007f547f5b5fa0 RCX: 00007f547f38e9a9
[  417.133560][T11321] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  417.133583][T11321] RBP: 00007f547f410d69 R08: fffffffffffffffa R09: 0000000000008000
[  417.133607][T11321] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  417.133630][T11321] R13: 0000000000000000 R14: 00007f547f5b5fa0 R15: 00007ffd88119da8
[  417.133666][T11321]  </TASK>
[  417.469535][T11329] CPU: 0 UID: 0 PID: 11329 Comm: syz.2.1423 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  417.469581][T11329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  417.469601][T11329] Call Trace:
[  417.469612][T11329]  <TASK>
[  417.469624][T11329]  dump_stack_lvl+0x16c/0x1f0
[  417.469664][T11329]  should_fail_ex+0x512/0x640
[  417.469699][T11329]  should_failslab+0xc2/0x120
[  417.469739][T11329]  __kmalloc_cache_noprof+0x6a/0x3e0
[  417.469795][T11329]  ? snd_pcm_oss_change_params_locked+0x211/0x3a30
[  417.469845][T11329]  snd_pcm_oss_change_params_locked+0x211/0x3a30
[  417.469893][T11329]  ? __pfx___might_resched+0x10/0x10
[  417.469931][T11329]  ? rcu_is_watching+0x12/0xc0
[  417.469967][T11329]  ? trace_contention_end+0xdd/0x130
[  417.470014][T11329]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  417.470061][T11329]  ? snd_pcm_oss_read+0x379/0x760
[  417.470109][T11329]  ? rcu_is_watching+0x12/0xc0
[  417.470145][T11329]  ? lock_release+0x201/0x2f0
[  417.470190][T11329]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  417.470381][T11329]  snd_pcm_oss_read+0x39b/0x760
[  417.470424][T11329]  ? security_file_permission+0x71/0x210
[  417.470489][T11329]  ? __pfx_snd_pcm_oss_read+0x10/0x10
[  417.470533][T11329]  vfs_read+0x1e4/0xc60
[  417.470566][T11329]  ? __pfx_vfs_read+0x10/0x10
[  417.470593][T11329]  ? __fget_files+0x204/0x3c0
[  417.470642][T11329]  ? rcu_is_watching+0x12/0xc0
[  417.470676][T11329]  ? lock_release+0x201/0x2f0
[  417.470720][T11329]  ? __fget_files+0x20e/0x3c0
[  417.470774][T11329]  ksys_read+0x12a/0x250
[  417.470802][T11329]  ? __pfx_ksys_read+0x10/0x10
[  417.470836][T11329]  do_syscall_64+0xcd/0x490
[  417.470872][T11329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.470907][T11329] RIP: 0033:0x7f71f658e9a9
[  417.470933][T11329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.470964][T11329] RSP: 002b:00007f71f73fa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  417.470996][T11329] RAX: ffffffffffffffda RBX: 00007f71f67b5fa0 RCX: 00007f71f658e9a9
[  417.471018][T11329] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 0000000000000003
[  417.471038][T11329] RBP: 00007f71f73fa090 R08: 0000000000000000 R09: 0000000000000000
[  417.471074][T11329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  417.471093][T11329] R13: 0000000000000000 R14: 00007f71f67b5fa0 R15: 00007fff526fe4b8
[  417.471123][T11329]  </TASK>
[  419.003434][T11373] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1436'.
[  419.540569][T11385] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1438'.
[  420.032342][T11395] FAULT_INJECTION: forcing a failure.
[  420.032342][T11395] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  420.092242][T11395] CPU: 0 UID: 0 PID: 11395 Comm: syz.0.1441 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  420.092277][T11395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  420.092293][T11395] Call Trace:
[  420.092301][T11395]  <TASK>
[  420.092310][T11395]  dump_stack_lvl+0x16c/0x1f0
[  420.092339][T11395]  should_fail_ex+0x512/0x640
[  420.092366][T11395]  _copy_from_iter+0x29f/0x16f0
[  420.092395][T11395]  ? __pfx__copy_from_iter+0x10/0x10
[  420.092421][T11395]  ? rcu_is_watching+0x12/0xc0
[  420.092446][T11395]  ? trace_kmalloc+0x2b/0xd0
[  420.092477][T11395]  ? __kmalloc_noprof+0x242/0x510
[  420.092503][T11395]  kernfs_fop_write_iter+0x19a/0x510
[  420.092537][T11395]  vfs_write+0x6c4/0x1150
[  420.092558][T11395]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  420.092589][T11395]  ? __pfx___mutex_lock+0x10/0x10
[  420.092613][T11395]  ? __pfx_vfs_write+0x10/0x10
[  420.092643][T11395]  ksys_write+0x12a/0x250
[  420.092664][T11395]  ? __pfx_ksys_write+0x10/0x10
[  420.092690][T11395]  do_syscall_64+0xcd/0x490
[  420.092715][T11395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.092739][T11395] RIP: 0033:0x7f6b2b98e9a9
[  420.092756][T11395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.092780][T11395] RSP: 002b:00007f6b2c7e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  420.092803][T11395] RAX: ffffffffffffffda RBX: 00007f6b2bbb5fa0 RCX: 00007f6b2b98e9a9
[  420.092825][T11395] RDX: 0000000000000081 RSI: 0000200000000040 RDI: 0000000000000003
[  420.092840][T11395] RBP: 00007f6b2c7e6090 R08: 0000000000000000 R09: 0000000000000000
[  420.092856][T11395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  420.092871][T11395] R13: 0000000000000000 R14: 00007f6b2bbb5fa0 R15: 00007ffcc4471658
[  420.092893][T11395]  </TASK>
[  420.290770][T11387] ------------[ cut here ]------------
[  420.298078][T11387] WARNING: CPU: 0 PID: 11387 at kernel/tracepoint.c:358 tracepoint_probe_unregister+0x894/0xd70
[  420.309676][T11387] Modules linked in:
[  420.314307][T11387] CPU: 0 UID: 0 PID: 11387 Comm: syz.3.1439 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  420.324729][T11387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  420.335526][T11387] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70
[  420.342875][T11387] Code: 41 5e 41 5f c3 cc cc cc cc e8 e8 27 fe ff 48 c7 c6 e0 1b bd 81 48 89 df e8 99 09 e5 ff eb 9f bb fe ff ff ff e8 cd 27 fe ff 90 <0f> 0b 90 eb 91 e8 c2 27 fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff
[  420.364426][T11387] RSP: 0018:ffffc900033b78a0 EFLAGS: 00010287
[  420.370669][T11387] RAX: 00000000000458a0 RBX: 00000000fffffffe RCX: ffffc9000d6f1000
[  420.379578][T11387] RDX: 0000000000080000 RSI: ffffffff81bd2d23 RDI: 0000000000000005
[  420.388599][T11387] RBP: ffffffff8e991520 R08: 0000000000000005 R09: 0000000000000000
[  420.397291][T11387] R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff81c314c0
[  420.405688][T11387] R13: ffff88801c68d848 R14: 0000000000000002 R15: ffff88801c68d800
[  420.414610][T11387] FS:  00007fba75bc16c0(0000) GS:ffff88812472d000(0000) knlGS:0000000000000000
[  420.423960][T11387] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  420.431327][T11387] CR2: 000020000059d000 CR3: 00000000754d0000 CR4: 00000000003526f0
[  420.439442][T11387] Call Trace:
[  420.443224][T11387]  <TASK>
[  420.446421][T11387]  ? __pfx_tracepoint_probe_unregister+0x10/0x10
[  420.453440][T11387]  tracing_stop_cmdline_record+0x66/0xa0
[  420.459140][T11387]  __ftrace_event_enable_disable+0x762/0x8b0
[  420.465471][T11387]  ftrace_event_set_open+0x232/0x380
[  420.471676][T11387]  do_dentry_open+0x744/0x1c10
[  420.476477][T11387]  ? __pfx_ftrace_event_set_open+0x10/0x10
[  420.482499][T11387]  vfs_open+0x82/0x3f0
[  420.486614][T11387]  path_openat+0x1de4/0x2cb0
[  420.491543][T11387]  ? __pfx_path_openat+0x10/0x10
[  420.496535][T11387]  do_filp_open+0x20b/0x470
[  420.501908][T11387]  ? __pfx_do_filp_open+0x10/0x10
[  420.507325][T11387]  ? alloc_fd+0x471/0x7d0
[  420.511968][T11387]  do_sys_openat2+0x11b/0x1d0
[  420.516793][T11387]  ? __pfx_do_sys_openat2+0x10/0x10
[  420.522624][T11387]  __x64_sys_openat+0x174/0x210
[  420.527893][T11387]  ? __pfx___x64_sys_openat+0x10/0x10
[  420.533815][T11387]  do_syscall_64+0xcd/0x490
[  420.539471][T11387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.546669][T11387] RIP: 0033:0x7fba74d8e9a9
[  420.552202][T11387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.572836][T11387] RSP: 002b:00007fba75bc1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  420.581741][T11387] RAX: ffffffffffffffda RBX: 00007fba74fb6160 RCX: 00007fba74d8e9a9
[  420.592953][T11387] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  420.601709][T11387] RBP: 00007fba74e10d69 R08: 0000000000000000 R09: 0000000000000000
[  420.610324][T11387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  420.619115][T11387] R13: 0000000000000000 R14: 00007fba74fb6160 R15: 00007fff64623dd8
[  420.627516][T11387]  </TASK>
[  420.630848][T11387] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  420.638356][T11387] CPU: 0 UID: 0 PID: 11387 Comm: syz.3.1439 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) 
[  420.649420][T11387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  420.661224][T11387] Call Trace:
[  420.664648][T11387]  <TASK>
[  420.667642][T11387]  dump_stack_lvl+0x3d/0x1f0
[  420.672539][T11387]  panic+0x71c/0x800
[  420.676501][T11387]  ? __pfx_panic+0x10/0x10
[  420.680982][T11387]  ? show_trace_log_lvl+0x29b/0x3e0
[  420.686278][T11387]  ? tracepoint_probe_unregister+0x894/0xd70
[  420.693357][T11387]  check_panic_on_warn+0xab/0xb0
[  420.698352][T11387]  __warn+0xf6/0x3c0
[  420.702308][T11387]  ? tracepoint_probe_unregister+0x894/0xd70
[  420.708442][T11387]  report_bug+0x3c3/0x580
[  420.712918][T11387]  ? tracepoint_probe_unregister+0x894/0xd70
[  420.719148][T11387]  handle_bug+0x184/0x210
[  420.724019][T11387]  exc_invalid_op+0x17/0x50
[  420.728668][T11387]  asm_exc_invalid_op+0x1a/0x20
[  420.733762][T11387] RIP: 0010:tracepoint_probe_unregister+0x894/0xd70
[  420.740419][T11387] Code: 41 5e 41 5f c3 cc cc cc cc e8 e8 27 fe ff 48 c7 c6 e0 1b bd 81 48 89 df e8 99 09 e5 ff eb 9f bb fe ff ff ff e8 cd 27 fe ff 90 <0f> 0b 90 eb 91 e8 c2 27 fe ff 48 89 da 48 b8 00 00 00 00 00 fc ff
[  420.760528][T11387] RSP: 0018:ffffc900033b78a0 EFLAGS: 00010287
[  420.766640][T11387] RAX: 00000000000458a0 RBX: 00000000fffffffe RCX: ffffc9000d6f1000
[  420.774730][T11387] RDX: 0000000000080000 RSI: ffffffff81bd2d23 RDI: 0000000000000005
[  420.782742][T11387] RBP: ffffffff8e991520 R08: 0000000000000005 R09: 0000000000000000
[  420.791757][T11387] R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff81c314c0
[  420.800065][T11387] R13: ffff88801c68d848 R14: 0000000000000002 R15: ffff88801c68d800
[  420.808361][T11387]  ? __pfx_probe_sched_switch+0x10/0x10
[  420.815389][T11387]  ? tracepoint_probe_unregister+0x893/0xd70
[  420.822585][T11387]  ? __pfx_tracepoint_probe_unregister+0x10/0x10
[  420.831008][T11387]  tracing_stop_cmdline_record+0x66/0xa0
[  420.837512][T11387]  __ftrace_event_enable_disable+0x762/0x8b0
[  420.843766][T11387]  ftrace_event_set_open+0x232/0x380
[  420.849576][T11387]  do_dentry_open+0x744/0x1c10
[  420.854840][T11387]  ? __pfx_ftrace_event_set_open+0x10/0x10
[  420.860737][T11387]  vfs_open+0x82/0x3f0
[  420.865077][T11387]  path_openat+0x1de4/0x2cb0
[  420.869716][T11387]  ? __pfx_path_openat+0x10/0x10
[  420.874910][T11387]  do_filp_open+0x20b/0x470
[  420.879907][T11387]  ? __pfx_do_filp_open+0x10/0x10
[  420.885102][T11387]  ? alloc_fd+0x471/0x7d0
[  420.889768][T11387]  do_sys_openat2+0x11b/0x1d0
[  420.894762][T11387]  ? __pfx_do_sys_openat2+0x10/0x10
[  420.900156][T11387]  __x64_sys_openat+0x174/0x210
[  420.905178][T11387]  ? __pfx___x64_sys_openat+0x10/0x10
[  420.911058][T11387]  do_syscall_64+0xcd/0x490
[  420.916236][T11387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.922659][T11387] RIP: 0033:0x7fba74d8e9a9
[  420.927681][T11387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.949359][T11387] RSP: 002b:00007fba75bc1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  420.958235][T11387] RAX: ffffffffffffffda RBX: 00007fba74fb6160 RCX: 00007fba74d8e9a9
[  420.966794][T11387] RDX: 0000000000020201 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  420.975348][T11387] RBP: 00007fba74e10d69 R08: 0000000000000000 R09: 0000000000000000
[  420.983732][T11387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  420.991763][T11387] R13: 0000000000000000 R14: 00007fba74fb6160 R15: 00007fff64623dd8
[  421.000587][T11387]  </TASK>
[  421.004266][T11387] Kernel Offset: disabled
[  421.008741][T11387] Rebooting in 86400 seconds..