last executing test programs:

2m42.883228835s ago: executing program 1 (id=167):
r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/block/nbd15/sched/write0_next_rq\x00', 0x2000, 0x0)
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x2, 0x3, 0x95f4da0a, 0xefffffffffffffff, 0x3, 0x62, 0x80000001, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket(0x2b, 0x1, 0x1)
setsockopt$auto(r2, 0x0, 0x1, 0x0, 0x1e)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x7, 0xc45d, 0x80, 0x6, 0x3, 0x2, 0x3, 0x3, 0x62, 0x80000022, 0x7, 0x6d3e, 0x2000000004000009, 0x2, 0x6]}, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x5522, 0xf15)
ioctl$auto(0xffffffffffffffff, 0x5523, 0xffffffffffffffff)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0)
writev$auto(0x3, 0x0, 0x8)
mmap$auto(0xf87f, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r0, &(0x7f00000000c0)=""/209, 0xd1)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup/cpu.weight.nice\x00', 0x10b142, 0x0)
sendfile$auto(r3, r3, 0x0, 0x2f2)

2m40.978410713s ago: executing program 1 (id=170):
sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000)
prctl$auto(0x16, 0x2, 0x2, 0x4000000d, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0)
ioctl$auto_SNDCTL_DSP_GETODELAY(r0, 0x80045017, &(0x7f0000000c00))
io_uring_setup$auto(0x6, 0x0)
openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto_EVIOCGMASK(r1, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x105})
ioctl$auto(0x3, 0x80004509, 0x10000000000402)
ioctl$auto(0x3, 0x800005411, 0x38)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)

2m37.027184266s ago: executing program 1 (id=179):
mmap$auto(0x5, 0xfffffffffffffffc, 0x5, 0x13, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = signalfd$auto(0xffffffffffffffff, &(0x7f0000000040)={0x6}, 0x5)
mmap$auto(0x0, 0x40009, 0x7, 0x9b72, r0, 0x28000)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000380), 0x400, 0x0)
ioctl$auto_UI_SET_LEDBIT(r1, 0x40045569, 0x0)
socket(0x8, 0x800, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
open(0x0, 0x14d27e, 0x72)
socket(0x1e, 0x1, 0x0)
socket(0x6, 0x2, 0x2)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xffff, 0x0, 0x0, &(0x7f0000000100)={[0x8, 0x6, 0x1, 0xfffff7fffffffff7, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8001, 0x26, 0x1, 0x20000000007fff, 0x2, 0x6]}, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
io_uring_setup$auto(0x6, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video6\x00', 0x204000, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x65, 0x1, 0x0, 0x800)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)

2m36.01766243s ago: executing program 1 (id=182):
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x200000, 0x0)
r0 = openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
read$auto(r0, &(0x7f0000000040)='}+\'%\'#@^\x00', 0xffffffff)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioperm$auto(0x7ff, 0x1, 0x4000005)
munlock$auto(0x9, 0x29b9)
mmap$auto(0x10, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
r4 = accept4$auto(r3, 0x0, 0x0, 0x3)
ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
getresuid$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x84)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r5, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8010}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="03052abd7000fbdbdf251f000000140022801000188008002400", @ANYRES32=0x0, @ANYBLOB="0400c88008000d0746a5d30806c3000400000010003400318c66cb04"], 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)

2m34.693833726s ago: executing program 1 (id=185):
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
rseq$auto(0x0, 0x7ffd, 0xfffffff4, 0x6)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
open(0x0, 0xeee00, 0x31)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
open(0x0, 0x1e1401, 0xe5)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
rt_sigtimedwait$auto(&(0x7f0000000000)={0x86e}, 0x0, 0x0, 0x8)
tkill$auto(0x0, 0x7)
write$auto(0x3, 0x0, 0x100082)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0xc, 0xbc5, 0x13, 0x3, 0x8000)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
clone$auto(0x4, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x100000000006)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
r0 = socket(0x5, 0x2, 0x73)
getsockname$auto(r0, 0x0, &(0x7f0000000280)=0xaea)
mlockall$auto(0x7)
mmap$auto(0x0, 0x200004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
rseq$auto(0x0, 0x4, 0x0, 0x4)
open(&(0x7f0000000000)='./file0\x00', 0x40440, 0x40)
mmap$auto(0x9, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x3, 0x3a)
ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3)

2m29.892874279s ago: executing program 1 (id=191):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netdevsim0\x00'})
sendmsg$auto_MACSEC_CMD_ADD_RXSC(0xffffffffffffffff, 0x0, 0x4000081)
openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/framebuffer\x00', 0x8000, 0x0)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
writev$auto(0x1, 0x0, 0x1)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x34d802, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x171e02, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video24\x00', 0xa240, 0x0)
ioctl$auto(r3, 0xc0585611, r3)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0)
sysfs$auto(0x2, 0x11, 0x0)
r4 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0)

2m14.784676243s ago: executing program 32 (id=191):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netdevsim0\x00'})
sendmsg$auto_MACSEC_CMD_ADD_RXSC(0xffffffffffffffff, 0x0, 0x4000081)
openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/framebuffer\x00', 0x8000, 0x0)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
writev$auto(0x1, 0x0, 0x1)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x34d802, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x171e02, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video24\x00', 0xa240, 0x0)
ioctl$auto(r3, 0xc0585611, r3)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0)
sysfs$auto(0x2, 0x11, 0x0)
r4 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0)

2m5.824754056s ago: executing program 4 (id=223):
mmap$auto(0x0, 0x9, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1c}}, 0x4044820)
ioctl$auto_XFS_IOC_ERROR_INJECTION(0xffffffffffffffff, 0x40085874, &(0x7f00000000c0)={0xffffffffffffffff, 0x1})
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xd, 0x0, 0x0, 0x0, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0xdef, 0x0)
write$auto(r1, &(0x7f0000000400)='/d\xe5\xf0\xff\xff\xff\xff\xff\xff\xff\x00', 0x100000a3d9)
socket(0x22, 0x5, 0x0)
setsockopt$auto(0x3, 0x5, 0x100000000, 0xfffffffffffffffc, 0xa)
getpid()
rt_sigprocmask$auto(0x26, &(0x7f0000000040)={0x80000000}, &(0x7f0000000080)={0x9}, 0x8)
mmap$auto(0x6, 0x48000a, 0x100002bb, 0x14, r0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xc, 0x800008000)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x2, 0x2)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/nbd8/queue/iosched/async_depth\x00', 0x40800, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000280)=""/4096, 0x1000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00)
close_range$auto(0x2, 0x8, 0x0)

2m4.463601744s ago: executing program 4 (id=241):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x6e)
io_uring_setup$auto(0x1, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x0, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_STATUS322(r0, 0x806c4120, &(0x7f0000000100)={0x0, 0x6, 0x95d7, 0x7f, 0x3, 0x1, 0x9, 0x2, 0x2, 0x7, 0xb, 0x8, 0x100, 0x2, 0x40000003, 0x3ff, 0x400, 0x80000000, "0c1056e3480805f935e214e44f620fa9eba8238cacc3d9e6fc45cf541e509fc2457ae4ae"})
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdef)
unshare$auto(0x40000080)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3b87, 0xa)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
openat$dir(0xffffffffffffff9c, 0x0, 0x381000, 0x100)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
writev$auto(r1, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3)
close_range$auto(0x2, 0x8, 0x40000000)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0)
ioctl$auto(r2, 0xc0285629, r2)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
lsm_list_modules$auto(0x0, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)

1m49.356041636s ago: executing program 33 (id=241):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x6e)
io_uring_setup$auto(0x1, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x0, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_STATUS322(r0, 0x806c4120, &(0x7f0000000100)={0x0, 0x6, 0x95d7, 0x7f, 0x3, 0x1, 0x9, 0x2, 0x2, 0x7, 0xb, 0x8, 0x100, 0x2, 0x40000003, 0x3ff, 0x400, 0x80000000, "0c1056e3480805f935e214e44f620fa9eba8238cacc3d9e6fc45cf541e509fc2457ae4ae"})
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdef)
unshare$auto(0x40000080)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3b87, 0xa)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
openat$dir(0xffffffffffffff9c, 0x0, 0x381000, 0x100)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
writev$auto(r1, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3)
close_range$auto(0x2, 0x8, 0x40000000)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0)
ioctl$auto(r2, 0xc0285629, r2)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
lsm_list_modules$auto(0x0, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)

1m0.021608227s ago: executing program 5 (id=441):
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
sendmsg$auto_TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0xc8c0}, 0x800)
r0 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
ppoll$auto(&(0x7f0000000040)={r0, 0x7ff}, 0x7, 0x0, 0x0, 0x8)

59.824300433s ago: executing program 5 (id=443):
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a00010000000000000000000600070001"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
r0 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x6000000, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000002c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

59.495564699s ago: executing program 5 (id=446):
r0 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/prev\x00', 0x1, 0x0)
write$auto_proc_pid_attr_operations_base(r0, 0x0, 0x0)

59.311055222s ago: executing program 5 (id=449):
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
unshare$auto(0x40000080)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x2, 0x1, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x90000, 0x0)
mmap$auto(0x4, 0x20009, 0x8, 0xeb1, 0x401, 0x3)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x103700, 0x0)
read$auto(r2, 0x0, 0x4000000081)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
syz_genetlink_get_family_id$auto_nl80211(0x0, r1)
sendmsg$auto_NL80211_CMD_GET_REG(r1, 0x0, 0x808)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

57.981824956s ago: executing program 5 (id=460):
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
madvise$auto(0x0, 0xffffffffffff0006, 0x17)
mmap$auto(0x0, 0x8de, 0xdf, 0x591b, 0x2, 0xb)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r2 = socket(0x2b, 0x1, 0x1)
ioctl$auto(r2, 0x8983, 0x4)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0)
sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff)
statmount$auto(&(0x7f0000000140)={0x9, @inferred=r3, 0x2, 0x3ff, 0x7f}, &(0x7f0000000440)={0x6, 0x6, 0x53, 0x4, 0x3, 0x101, 0x2, 0x3, 0x5, 0xffffffff80000001, 0x57d6, 0x8, 0x3, 0x1, 0x8, 0x3, 0x1, 0x8001, 0x400, 0x1ff, 0xfff, 0xd8, 0x8, 0x2, 0x9, 0xbef3, 0x411, 0x7, 0x0, 0x7, 0x7, [0x6, 0x7f, 0xbce7, 0x599, 0x56, 0xf93, 0x6, 0x8, 0xffffffffffffffff, 0x0, 0x200000000000, 0x2, 0x1, 0x9, 0x100, 0x40004545, 0x4, 0xa, 0xb, 0xf5fd, 0x7, 0x4, 0x7fffffff, 0x1fc, 0x2, 0x5, 0x8, 0x4, 0x4, 0x7fffffff, 0x4, 0x0, 0x7, 0x80, 0x6, 0x4, 0x7, 0x4, 0xffc0000000000000, 0x1, 0x9, 0x8, 0x80000001], "73e9b0abe71d1e2aee680f7f0e812f294220578764aaba215588c48129939d0d8c6c8dcb488aeb5a653cee9f3407b9069269771811ce667d8e"}, 0x40, 0x36)
msync$auto(0x2, 0x9, 0x40)
select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0xcb})
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0xfffffdef)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
socket(0x27, 0x5, 0x7)

56.766685435s ago: executing program 5 (id=469):
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
unshare$auto(0x40000080)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x2, 0x1, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x90000, 0x0)
mmap$auto(0x4, 0x20009, 0x8, 0xeb1, 0x401, 0x3)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x103700, 0x0)
read$auto(r2, 0x0, 0x4000000081)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
syz_genetlink_get_family_id$auto_nl80211(0x0, r1)
sendmsg$auto_NL80211_CMD_GET_REG(r1, 0x0, 0x808)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

41.334390147s ago: executing program 34 (id=469):
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
unshare$auto(0x40000080)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x2, 0x1, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x90000, 0x0)
mmap$auto(0x4, 0x20009, 0x8, 0xeb1, 0x401, 0x3)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x103700, 0x0)
read$auto(r2, 0x0, 0x4000000081)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
syz_genetlink_get_family_id$auto_nl80211(0x0, r1)
sendmsg$auto_NL80211_CMD_GET_REG(r1, 0x0, 0x808)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

9.461231828s ago: executing program 6 (id=672):
socket(0x1d, 0x1, 0xd)
socket(0x2, 0x1, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
preadv2$auto(0x3, &(0x7f0000001000)={0x0, 0x3}, 0x6, 0x1, 0x7, 0x3f)
pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = socketcall$auto_SYS_SOCKET(0x1, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000340)=""/156, 0x9c)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/arp_tables_matches\x00', 0x80, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r2, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000001140)='/proc/self/oom_adj\x00', 0x8042, 0x0)
read$auto(r3, 0x0, 0x1f40)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/per_cpu/cpu0/buffer_size_kb\x00', 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x6, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0xc, 0x2, 0x6]}, 0x0)

8.832303105s ago: executing program 2 (id=676):
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x43102, 0x0)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = socket(0xa, 0x2, 0x3a)
r3 = syz_clone(0x20a08200, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/rnbd-client/ctl/map_device\x00', 0x60442, 0x0)
pwrite64$auto(r4, &(0x7f0000000280)='(\x00', 0x4, 0x88000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x600002, 0x0)
ptrace$auto(0xf, r3, 0xfffffffffffffffe, 0x8000000000000000)
setsockopt$auto(r2, 0x29, 0x39, 0x0, 0x110)
write$auto(r1, &(0x7f0000003240)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4$\x1dU\x9d\x8b\xa4U\x953.\xc5+\xa4N\x92\nC\x81\xd1\xc8\xd1s\xfe\xf7O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x95\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?\x97\xfe\x9dz\xc23eQh\x93\xecw(\xcd\x15\xfc\x19~{\xe1\xd1\\\xf6\xb5Fy\xcdh4\xf1\xb3\xfcg\xb0pXL\xe1x:Fp\xb4\x04M\x89\x97J\x81\b\x11\xa9\xb7B\x00\x96x\x89I\xb9\xe6\xc5\x16\xb7\x06\xe5\xcb\x14l:\x1e\x8b.\xf4\x87\xd8:\x13p}|\xae]r\xcd\xef8\x92\x11\x12F\xf0\t\xbe#\xc9\x97\xa6\x96\a\x1eg\xe2U\x10y?`S\xe7EDl\xdaZ^\x18\xb9\f\xb0\x14\x12t\x8b\xe5\x11}\xe6l\xb0\xa7\xe0\xa3\x9cH\xf7\xaa*\xe5\xfe\f\x85\xb4}\x11M\xee\xaf\xd8\xc2\x7f\xac\xa4^E\xe2\x18d\x86\x04O\xf5\xea\xce\x9cp\xfa\xda\xe7\xccs.\\Xc\x18\xc08)2\xfd\xb6,\xe3\v\xda\x82\xf1\xea\x06\xb8>2\xf7@HK6\xa8\xf0\x05\xe9\x18hH5.\x87#X<\xd4\x05\x00\xe7\x19\xceS\v\xdd\xa9m(\xbc\xce\x04\x02\f]T\xa0P\xb3\xc7b_\x06\xe0fH\xc8%\xa8\xeb\x86k\x88', 0x100000a3d9)
r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0)
ioctl$auto_SNDCTL_DSP_GETTRIGGER(r5, 0x80045010, &(0x7f0000004440))
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r0, 0x8000)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f00000001c0), r2)
sendmsg$auto_OVS_FLOW_CMD_GET(r2, 0x0, 0x20000000)
setsockopt$auto(0xffffffffffffffff, 0x1, 0x1021, 0x0, 0xd)
openat$auto_nst_seq_fops_netdebug(0xffffffffffffff9c, 0x0, 0x101080, 0x0)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r6, 0x0, 0x10000)
write$auto(0x3, 0x0, 0xffd8)
sendfile$auto(r0, r0, 0x0, 0xb9)

8.412092393s ago: executing program 6 (id=677):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$auto_NETDEV_CMD_QSTATS_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x0, 0x200, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20008800}, 0x1)
write$auto(0x3, 0x0, 0xfffffdef)
connect$auto(0x3, 0x0, 0x55)

8.155027029s ago: executing program 3 (id=678):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2b, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/memory.kmem.tcp.limit_in_bytes\x00', 0xc2481, 0x0)
openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_score_adj\x00', 0xc0401, 0x0)
socket(0x2, 0x5, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
semctl$auto(0x204, 0xfffffffe, 0x3, 0x4)
r0 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0)
write$auto(r0, 0x0, 0xc3)

7.762906994s ago: executing program 6 (id=680):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x400, 0x0)
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000080), 0xffffffffffffffff)
swapon$auto(&(0x7f0000000080)='/proc/bus/pci/00/01.3\x00', 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x106)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000100)='ns/pid_for_children\x00')
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x18, 0xa, 0x1)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x1, 0x5, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/mnt\x00')
socket(0x80000000000000a, 0x2, 0x0)
bpf$auto(0x0, &(0x7f0000000300)=@link_update={r1, @new_prog_fd=r0, 0x100, @old_map_fd=r0}, 0x10)
bpf$auto(0x3, &(0x7f0000000340)=@enable_stats={0x5}, 0x3)

7.524981601s ago: executing program 3 (id=681):
socket(0x1d, 0x2, 0x6)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x40000002c55, 0x0)
socket(0xa, 0x1, 0x84)
socket(0x2, 0x1, 0x0)
openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/tracing/trace_marker\x00', 0x201, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcsa1\x00', 0x1, 0x0)
socketpair$auto(0x1e, 0x5, 0xfffffffc, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x1f, 0x0)

6.821072429s ago: executing program 3 (id=682):
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto_CEC_ADAP_G_LOG_ADDRS(r0, 0x805c6103, &(0x7f00000001c0)={"8911bd3a", 0x1, 0x0, 0x6, 0x4, 0x6, "feaf587cdf4d2f534a1c88d3e40a00", "e6cf6512", "f34cae3a", "10a991b3", ["3ae887a128f1d8c79420d880", "b11feafce4d296d8c985d069", "0149f0a7102c3fffab592db0", "0059c09dca7de9bdbbc6be07"]})
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f0, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r4)
ioctl$auto_KVM_CREATE_VM(r3, 0x4018aee1, 0x0)
rename$auto(0x0, &(0x7f0000000240)='./file0/file0\x00')
ioctl$auto_XFS_IOC_FSBULKSTAT(r2, 0xc0205865, &(0x7f00000002c0)={&(0x7f0000000040)=0x1, 0x10001, 0x0, &(0x7f0000000280)=0x2})
io_uring_setup$auto(0x2, 0x0)

6.818970127s ago: executing program 6 (id=683):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182b02, 0x0)
mmap$auto(0xfffffffffffffffe, 0x400008, 0xe0, 0x9b72, 0x2, 0x9)
pwrite64$auto(0xc8, 0x0, 0xfdef, 0x3)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
open(0x0, 0x5d52c0, 0x0)
prctl$auto_PR_PAC_RESET_KEYS(0x36, 0x0, 0xffffffffffffffff, 0x9, 0x7)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0xa, 0x801, 0x84)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
adjtimex$auto(0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000ac0), 0xffffffffffffffff)
tgkill$auto(0x1, 0x1, 0x5)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfffffdef)

5.775403595s ago: executing program 2 (id=685):
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x3, 0x0)
unshare$auto(0x40000080)
socket(0x10, 0x2, 0xc)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
socket(0x10, 0x2, 0x0)
bpf$auto(0x0, 0x0, 0x10)
mmap$auto(0x0, 0xfff, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, 0x0, 0x10500, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/stat/rt_cache\x00', 0x20000, 0x0)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x8000, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
clone$auto(0x0, 0x4, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
ioctl$auto_SNDCTL_DSP_SPEED(r2, 0xc0045002, 0x0)
read$auto(r2, 0x0, 0xcefbce6)
write$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x4, 0x3, 0xeb1, 0x401, 0x8000)

4.21334156s ago: executing program 0 (id=686):
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000)
socket(0x2, 0x3, 0x6)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
r1 = openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/kernel/debug/bdi/1:15/wb_stats\x00', 0x40, 0x0)
mmap$auto(0x7ffffffffe, 0x4, 0x4000000000df, 0x40eb5, r1, 0x300000000000)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socket(0x2, 0x1, 0x0)
socketpair$auto(0x1e, 0x3, 0xfffffffe, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x3}, 0x7}, 0x3, 0xcad7)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
write$auto(0x3, 0x0, 0x100085)

3.971697429s ago: executing program 2 (id=687):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x242a82, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/machinecheck/machinecheck1/cmci_disabled\x00', 0x20102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x1)
r0 = socket(0x11, 0x6, 0x4000000)
r1 = getsockopt$auto(r0, 0x84, 0x12, 0x0, 0x0)
ioctl$auto_MON_IOCX_GETX(r1, 0x4018920a, &(0x7f0000000080)={&(0x7f0000000040)={0x170, 0x3, 0x80, 0x4, 0x9, 0x2, 0x75, 0xe, 0x7, 0x3, 0x339, 0x2, 0xffffffff, @iso={0x2, 0x1004}, 0x5, 0x0, 0x1, 0xffffffdb}, 0x0, 0x40000000000})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r2)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000f80)={0x19c, r3, 0x1, 0x51bd2e, 0x25dfcbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x184, 0x1, 0x0, 0x1, [@nested={0x4, 0x6}, @generic="398f32525e629163bfcc5d377bd8aed3ff1d26fc3c79ca435794c67d39b21ed0e95d1b3756e1789925d5c8a1a918c121a2b84869b15bb40ae4f671a8dd8ed01bb44efef2f4c768a2484f03635658fe8bfff71b8bf933532a61abcb7516ccfa73d70af3acc26f2c526959f19efd99202bc7ec5a2259a82d8e191691f5b23172f4f19ca9b0080dff732a7df559ae2279f426f2baa018832cd8e9b58fee32b1bcd4c087f83b0f3c0aed0c943a50ba5a327530d1", @typed={0x8, 0xd2, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @generic="f3c1881feb99fe432d5fa89114591690f2efcbe9a7f87a8774637face20e7a821c481a653778aaf92185e8bfb092c2900920cca139540fd90efab653551552721f2b2889999ce801e47cfad8f735f702c852bd40e1ef6f259c36d7d8bc31748c903b1ceadd56ead8730d0e727f333855c6b3b286c779abbfff5f47e390b1336271492db0b266e2b8910bf339d4037a7dcf9c8a0669629580c65489f41db5adb59f53f3acd871444d9f34952c00ec9365f3dd", @typed={0x8, 0x38, 0x0, 0x0, @fd}, @nested={0x8, 0x6f, 0x0, 0x1, [@typed={0x4, 0x2d, 0x0, 0x0, @binary}]}]}]}, 0x19c}, 0x1, 0x0, 0x0, 0x40}, 0x4)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x2000c001}, 0x85)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/pcrypt/pencrypt/serial_cpumask\x00', 0xa001, 0x0)
write$auto(r4, &(0x7f0000000040)=',\x00^\xa2\x02\x00\x00\x00\x00\x00\xd8l\x00\x00\x00\x00\x00\x00\xb2s\x83\xbd\xc5_%\xc1\xa3\xd0\x95Hq\xf4zG\x01[{\x17\x05I\xe0\xb1d)\x06z8L\xe6&[\xa9X6\x7f\xec\x94\xdal\xa1\xbb\x86\x9c\xc2\xef\x02\r9%\x06\xc5\'b%m_\x96A\"\xdd\xe40\xa7\xc3\x9ah\xf3B\xc2\xec\xf8\r\f[\xe5\x9dK\xe1\x99\x86\xfc\xac\x9f\x8a', 0x1000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x3c, r6, 0x1b, 0x74bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0x19, 0x0, 0x1, [@nested={0x4, 0x1}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "8987714800"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
r7 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
io_uring_setup$auto(0xc, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r7, 0x403c6f2b, 0x0)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8)
readv$auto(0x3, 0x0, 0x1)
read$auto(r7, 0x0, 0x1f40)
ioctl$auto_TIOCSTI2(0xffffffffffffffff, 0x545c, 0x0)
ioctl$auto_TIOCVHANGUP2(0xffffffffffffffff, 0x5437, 0x0)

2.91297862s ago: executing program 0 (id=688):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000100)={{@inferred, 0x85, 0x20e, 0x9, "669cbbd9e9756f227dffa188e0f1a560e2a1facac1f00b2f4ab8633824f2d2252ca5f200"}, 0x0, @integer64=@value=[0x9, 0x4, 0xc2bf, 0x3, 0x100000002, 0x7, 0x4, 0x7, 0xcf6c, 0x7ff, 0xfffffffffffffff9, 0x8000000000000001, 0x0, 0x9, 0x86, 0x8, 0x8, 0x5, 0x7ffffffffffffffc, 0x58a2, 0x5, 0x8, 0x4, 0x1000ffffe, 0x800002, 0x7, 0xc01, 0x7fffffff, 0x5, 0xfd, 0x7fc5, 0x19, 0x4, 0xfffffffefffffffd, 0x10000000000007, 0x0, 0x1, 0x9, 0x6, 0x8000000000000000, 0xfff, 0x9, 0xa, 0x4, 0x8001, 0x3, 0x3, 0x3, 0x80000001, 0x81, 0x10002, 0x4, 0x5cd, 0x7, 0xfffffffffffffffd, 0x7fff, 0xd426, 0x9, 0x612, 0xffff, 0x8, 0x5, 0x6, 0x8000000000000001], "282f77b07e718ed4d99a34617774e3a82f982e0f05e516c299a28a585e87e0d908e2c8e50de5016f1de5d432da2cc20e951d8fcdc4f791a11996aad5af504c0d9927e62ef70b23a13735a4fe805c1ce1b6b1d83d21bb42794ec925b4547a3d52d4b5210392111e181719fef9d685b6534b171d76ad633f94a608b818600a6c85"})
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r1, 0x0, 0x7ff, 0x400)
socket(0x1a, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1e, 0x805, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x60840, 0x0)
ioctl$auto(0x3, 0x40045532, 0x38)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x129600, 0x0)
close_range$auto(0x2, 0x8, 0x0)

2.591963264s ago: executing program 3 (id=689):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptye9\x00', 0x109000, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x8000, 0x0)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0)
sendfile$auto(r1, r0, 0x0, 0x10000)
socket(0x5, 0x3, 0x0)
ioctl$auto(0xffffffffffffffff, 0x4, 0xffffffffffffffff)
mmap$auto(0x0, 0x2060009, 0x3, 0xeb2, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0x80eb1, 0xfffffffffffffffa, 0x8001)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa041, 0x0)
write$auto(0x3, 0x0, 0xfdef)
close_range$auto(0x2, 0x8, 0x0)

2.556388125s ago: executing program 6 (id=690):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x800000000801f, r0, 0x8000)
preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
r1 = socket(0x1e, 0x6, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="030100c7b2000000000000000000008ab719e990d200000000faff0000000000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x8000)
mmap$auto(0x0, 0x2020009, 0x8000000007, 0x11, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
getdents$auto(r3, 0x0, 0xfff)
msync$auto(0x7f, 0x6, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop15/queue/discard_granularity\x00', 0x8000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'})
r5 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
write$auto(r5, &(0x7f0000000000)='-\x00', 0x2fb)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r6=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYRESDEC=r4, @ANYRES16=0x0, @ANYBLOB="13002cbd7000dddbdf2502000000080003", @ANYRES32=r6, @ANYBLOB="08000a01"], 0x24}, 0x1, 0x0, 0x0, 0x2400c884}, 0x20040894)
unshare$auto(0x40000080)
madvise$auto(0x0, 0xffffffffffff0009, 0x13)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
remap_file_pages$auto(0x8, 0xda, 0x5, 0x4, 0x4)

2.430759067s ago: executing program 2 (id=692):
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_FLUSH_PMKSA(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000300)={0x50, r0, 0x0, 0x70bd2c, 0x25dfdbfb, {}, [@NL80211_ATTR_VHT_CAPABILITY={0x3b, 0x9d, "2eefcd79166cf82936e375d3c44ccb0565cde52e399c271e4a7b14a98fb034ebd965496076b75406979f17e5ef7346e0d4ee4447187477"}]}, 0x50}, 0x1, 0x0, 0x0, 0x800}, 0x8000)
socket(0x10, 0x2, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x20000, 0x0)
ioctl$auto(r1, 0xab05, 0xffffffffffffffff)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10002ca4706b67dbdf251c"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004814)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r2, &(0x7f0000000640)="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", 0xba0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

2.141459767s ago: executing program 2 (id=693):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x242a82, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/machinecheck/machinecheck1/cmci_disabled\x00', 0x20102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x1)
r0 = socket(0x11, 0x6, 0x4000000)
r1 = getsockopt$auto(r0, 0x84, 0x12, 0x0, 0x0)
ioctl$auto_MON_IOCX_GETX(r1, 0x4018920a, &(0x7f0000000080)={&(0x7f0000000040)={0x170, 0x3, 0x80, 0x4, 0x9, 0x2, 0x75, 0xe, 0x7, 0x3, 0x339, 0x2, 0xffffffff, @iso={0x2, 0x1004}, 0x5, 0x0, 0x1, 0xffffffdb}, 0x0, 0x40000000000})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r2)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000f80)={0x19c, r3, 0x1, 0x51bd2e, 0x25dfcbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x184, 0x1, 0x0, 0x1, [@nested={0x4, 0x6}, @generic="398f32525e629163bfcc5d377bd8aed3ff1d26fc3c79ca435794c67d39b21ed0e95d1b3756e1789925d5c8a1a918c121a2b84869b15bb40ae4f671a8dd8ed01bb44efef2f4c768a2484f03635658fe8bfff71b8bf933532a61abcb7516ccfa73d70af3acc26f2c526959f19efd99202bc7ec5a2259a82d8e191691f5b23172f4f19ca9b0080dff732a7df559ae2279f426f2baa018832cd8e9b58fee32b1bcd4c087f83b0f3c0aed0c943a50ba5a327530d1", @typed={0x8, 0xd2, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @generic="f3c1881feb99fe432d5fa89114591690f2efcbe9a7f87a8774637face20e7a821c481a653778aaf92185e8bfb092c2900920cca139540fd90efab653551552721f2b2889999ce801e47cfad8f735f702c852bd40e1ef6f259c36d7d8bc31748c903b1ceadd56ead8730d0e727f333855c6b3b286c779abbfff5f47e390b1336271492db0b266e2b8910bf339d4037a7dcf9c8a0669629580c65489f41db5adb59f53f3acd871444d9f34952c00ec9365f3dd", @typed={0x8, 0x38, 0x0, 0x0, @fd}, @nested={0x8, 0x6f, 0x0, 0x1, [@typed={0x4, 0x2d, 0x0, 0x0, @binary}]}]}]}, 0x19c}, 0x1, 0x0, 0x0, 0x40}, 0x4)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x2000c001}, 0x85)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/pcrypt/pencrypt/serial_cpumask\x00', 0xa001, 0x0)
write$auto(r4, &(0x7f0000000040)=',\x00^\xa2\x02\x00\x00\x00\x00\x00\xd8l\x00\x00\x00\x00\x00\x00\xb2s\x83\xbd\xc5_%\xc1\xa3\xd0\x95Hq\xf4zG\x01[{\x17\x05I\xe0\xb1d)\x06z8L\xe6&[\xa9X6\x7f\xec\x94\xdal\xa1\xbb\x86\x9c\xc2\xef\x02\r9%\x06\xc5\'b%m_\x96A\"\xdd\xe40\xa7\xc3\x9ah\xf3B\xc2\xec\xf8\r\f[\xe5\x9dK\xe1\x99\x86\xfc\xac\x9f\x8a', 0x1000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x3c, r6, 0x1b, 0x74bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0x19, 0x0, 0x1, [@nested={0x4, 0x1}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "8987714800"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
r7 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
io_uring_setup$auto(0xc, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r7, 0x403c6f2b, 0x0)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8)
read$auto(r7, 0x0, 0x1f40)
r8 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSTI2(r8, 0x545c, 0x0)
ioctl$auto_TIOCVHANGUP2(r8, 0x5437, 0x0)

2.123760051s ago: executing program 3 (id=694):
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$auto(0x7ff, 0x58, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x88300, 0x0)
mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x3, 0x5, 0x7, 0x0)
socket(0xa, 0x1, 0x0)
socket(0x2, 0x1, 0x84)
connect$auto(0x3, 0x0, 0x55)
listen$auto(0x3, 0x81)
accept$auto(0x3, 0x0, 0x0)

1.908931378s ago: executing program 0 (id=695):
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/i8042/serio0/set\x00', 0x80302, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyz9\x00', 0x800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x101401, 0x0)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x87)
socket(0xa, 0x2, 0x73)
socket(0x18, 0x3, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)

1.630820607s ago: executing program 0 (id=696):
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
r0 = socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
socket$nl_generic(0x10, 0x3, 0x10)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
socket(0x10, 0x2, 0x0)
memfd_secret$auto(0x0)
getsockopt$auto(r0, 0x84, 0x6c, 0x0, &(0x7f0000000280)=0x1000c0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x301001, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0)

1.165032327s ago: executing program 0 (id=697):
mmap$auto(0x0, 0x2000000000004, 0x4000000000df, 0x60ebd, 0xffffffffffffffff, 0x7c)
socket(0xa, 0x3, 0x3b)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x400, 0xe983, 0xdf, 0xeb1, r0, 0x4)
mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000)
r1 = clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r2 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
read$auto(r2, 0x0, 0x80000000006)
tkill$auto(r1, 0x9)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
socket(0xa, 0x2, 0x0)
r3 = socket(0xa, 0x3, 0xff)
connect$auto(r3, 0x0, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
mmap$auto(0x0, 0x20009, 0x4001000000df, 0xeb1, 0x401, 0x8000)
syz_clone3(&(0x7f0000000080)={0x123060000, 0x0, 0x0, 0x0, {0x14}, 0x0, 0x0, 0x0, 0x0}, 0x58)
madvise$auto(0x2, 0x7, 0x200000)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2)
ioperm$auto(0x7, 0x6, 0x2)

1.155513176s ago: executing program 6 (id=698):
unshare$auto(0x40000080)
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0)
write$auto(r0, 0x0, 0xfff)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
listmount$auto(0x0, &(0x7f00000001c0)=0x4, 0x4, 0x101)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0)
pidfd_open$auto(0x1, 0x0)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0x1842, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu0/hotplug/target\x00', 0x201, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x0, 0x80000001, 0x7, 0x6d39, 0x5, 0x2, 0x1]}, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000062c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_hpet_fops_hpet(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x165602, 0x0)

989.783858ms ago: executing program 3 (id=699):
mmap$auto(0x0, 0xa020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x15, 0x5, 0x0)
sendmsg$auto(r0, 0x0, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
remap_file_pages$auto(0x3, 0x1000, 0x0, 0x3, 0x4)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r1, 0xffffffffffdffe00, &(0x7f0000000140)=';')
r2 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x40, 0x0)
ioctl$auto(0x3, 0xc0086202, r2)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x15, 0x5, 0x0)
setsockopt$auto(0x3, 0x114, 0xa, 0x0, 0x4)
mmap$auto(0x0, 0x40009, 0x6, 0x9b72, 0x7, 0x3)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
r3 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x4}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"})
ioctl$auto_SNDRV_TIMER_IOCTL_PARAMS(r3, 0x40505412, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0)
unshare$auto(0x40000080)
r4 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r4, &(0x7f0000000e00)="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", 0xc83)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa041, 0x0)

795.824176ms ago: executing program 2 (id=700):
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = clone3$auto(&(0x7f00000002c0)={0x4, 0x9, 0x1, 0x2, 0x8000, 0xffffffffffffffff, 0x7, 0x3, 0xffffffffffffffea, 0x8, 0x200}, 0x7)
ptrace$auto_PTRACE_GETSIGMASK(0x420a, r1, 0x6e3, 0x1)
ioctl$auto_IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ptyzf\x00', 0x2200, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
io_setup$auto(0x7ffe, 0x0)
io_setup$auto(0x7ffe, &(0x7f0000000000))
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/bus/pci/rescan\x00', 0x20681, 0x0)
syz_genetlink_get_family_id$auto_smc_gen_netlink(0x0, r3)
write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000200)='5', 0x1)
capset$auto(&(0x7f0000000340)={0x19980330}, 0x0)
select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, &(0x7f0000000200)={[0x8, 0x4, 0x2, 0xb, 0x1, 0x4, 0x0, 0x7fff, 0xa, 0x193, 0xfffffffffffffff9, 0x3, 0x5e4, 0x1000, 0x1, 0x1]}, 0x0, &(0x7f0000000280)={0x6, 0xc8})
open(&(0x7f0000000040)='./file0\x00', 0x40841, 0x8)
io_uring_register$auto_IORING_UNREGISTER_PERSONALITY(r0, 0xa, &(0x7f0000000180)="221aa2a2e1a47c16e9b935b36eb66fa98ca6d90b78e1fc1799ad1e15807c54f58fa1ee6c6927048cbda12b4e1ad0336a4b88db6e5c7e4fedd6852f33d0b576", 0x2f)
socket(0xa, 0x5, 0x94)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)

0s ago: executing program 0 (id=701):
lseek$auto(0x3, 0x7ffffffffffffffd, 0x2)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
readv$auto(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x7}, 0x8)
close_range$auto(0x2, 0x8, 0x0)
madvise$auto(0x0, 0xd0, 0x2)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x4821c0, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x12bc00, 0x0)
faccessat2$auto(0xffffffffffffffff, 0x0, 0x0, 0x7)
read$auto(r0, 0x0, 0x20)
openat$dir(0xffffffffffffff9c, 0x0, 0x2d2802, 0x48)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xc44c1, 0x0)
mmap$auto(0x0, 0x5, 0xfff, 0x44eb2, 0x10006, 0x300000000000)
mmap$auto(0x0, 0x9, 0xe3, 0xeb1, 0xffffffffffffffff, 0x8000)
write$auto(0xffffffffffffffff, 0x0, 0x1ff)
r2 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
ioperm$auto(0x7, 0x6, 0x2)
ioctl$auto_LOOP_CTL_ADD(r2, 0x4c80, 0xfffffffffffffffd)

kernel console output (not intermixed with test programs):

 ? drm_atomic_helper_setup_commit+0x73c/0x15d0
[   99.339229][ T6057]  ? drm_atomic_helper_setup_commit+0x8d7/0x15d0
[   99.339271][ T6057]  drm_atomic_helper_setup_commit+0x8d7/0x15d0
[   99.339326][ T6057]  drm_atomic_helper_commit+0xa9/0x380
[   99.339365][ T6057]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[   99.339403][ T6057]  drm_atomic_commit+0x231/0x300
[   99.339430][ T6057]  ? __pfx_drm_atomic_commit+0x10/0x10
[   99.339456][ T6057]  ? __pfx___drm_printfn_info+0x10/0x10
[   99.339494][ T6057]  ? drm_client_rotation+0x4da/0x6a0
[   99.339527][ T6057]  drm_client_modeset_commit_atomic+0x69d/0x7e0
[   99.339568][ T6057]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[   99.339634][ T6057]  drm_client_modeset_commit_locked+0x14d/0x580
[   99.339677][ T6057]  drm_client_modeset_commit+0x4f/0x80
[   99.339706][ T6057]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[   99.339750][ T6057]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[   99.339786][ T6057]  drm_fbdev_client_restore+0x2c/0x40
[   99.339820][ T6057]  drm_client_dev_restore+0x1f3/0x2a0
[   99.339856][ T6057]  drm_release+0x2c4/0x360
[   99.339885][ T6057]  ? __pfx_drm_release+0x10/0x10
[   99.339909][ T6057]  __fput+0x3ff/0xb70
[   99.339945][ T6057]  task_work_run+0x14d/0x240
[   99.339987][ T6057]  ? __pfx_task_work_run+0x10/0x10
[   99.340024][ T6057]  ? __pfx___do_sys_close_range+0x10/0x10
[   99.340065][ T6057]  exit_to_user_mode_loop+0xeb/0x110
[   99.340103][ T6057]  do_syscall_64+0x3f6/0x490
[   99.340141][ T6057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.340168][ T6057] RIP: 0033:0x7f0a1c38e929
[   99.340190][ T6057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.340214][ T6057] RSP: 002b:00007f0a1d2e3038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   99.340238][ T6057] RAX: 0000000000000000 RBX: 00007f0a1c5b5fa0 RCX: 00007f0a1c38e929
[   99.340256][ T6057] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[   99.340271][ T6057] RBP: 00007f0a1c410b39 R08: 0000000000000000 R09: 0000000000000000
[   99.340287][ T6057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   99.340302][ T6057] R13: 0000000000000000 R14: 00007f0a1c5b5fa0 R15: 00007ffcbcb1d2d8
[   99.340339][ T6057]  </TASK>
[  101.995067][    T9] smpboot: CPU 1 is now offline
[  103.089155][ T6109] FAULT_INJECTION: forcing a failure.
[  103.089155][ T6109] name failslab, interval 1, probability 0, space 0, times 0
[  103.212641][ T6109] CPU: 0 UID: 0 PID: 6109 Comm: syz.0.39 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  103.212664][ T6109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  103.212672][ T6109] Call Trace:
[  103.212678][ T6109]  <TASK>
[  103.212683][ T6109]  dump_stack_lvl+0x16c/0x1f0
[  103.212708][ T6109]  should_fail_ex+0x512/0x640
[  103.212726][ T6109]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  103.212746][ T6109]  should_failslab+0xc2/0x120
[  103.212759][ T6109]  __kmalloc_cache_noprof+0x6a/0x3e0
[  103.212777][ T6109]  ? cuse_channel_open+0x1de/0x7f0
[  103.212798][ T6109]  cuse_channel_open+0x1de/0x7f0
[  103.212815][ T6109]  ? __pfx_cuse_channel_open+0x10/0x10
[  103.212833][ T6109]  misc_open+0x35d/0x420
[  103.212850][ T6109]  ? __pfx_misc_open+0x10/0x10
[  103.212865][ T6109]  chrdev_open+0x231/0x6a0
[  103.212885][ T6109]  ? __pfx_apparmor_file_open+0x10/0x10
[  103.212902][ T6109]  ? __pfx_chrdev_open+0x10/0x10
[  103.212923][ T6109]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  103.212943][ T6109]  do_dentry_open+0x744/0x1c10
[  103.212964][ T6109]  ? __pfx_chrdev_open+0x10/0x10
[  103.212997][ T6109]  vfs_open+0x82/0x3f0
[  103.213015][ T6109]  path_openat+0x1de4/0x2cb0
[  103.213041][ T6109]  ? __pfx_path_openat+0x10/0x10
[  103.213061][ T6109]  ? __lock_acquire+0xb8a/0x1c90
[  103.213081][ T6109]  do_filp_open+0x20b/0x470
[  103.213100][ T6109]  ? __pfx_do_filp_open+0x10/0x10
[  103.213131][ T6109]  ? alloc_fd+0x471/0x7d0
[  103.213153][ T6109]  do_sys_openat2+0x11b/0x1d0
[  103.213168][ T6109]  ? __pfx_do_sys_openat2+0x10/0x10
[  103.213189][ T6109]  __x64_sys_openat+0x174/0x210
[  103.213204][ T6109]  ? __pfx___x64_sys_openat+0x10/0x10
[  103.213227][ T6109]  do_syscall_64+0xcd/0x490
[  103.213248][ T6109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.213262][ T6109] RIP: 0033:0x7f986bf8e929
[  103.213275][ T6109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.213287][ T6109] RSP: 002b:00007f986ce51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  103.213300][ T6109] RAX: ffffffffffffffda RBX: 00007f986c1b6080 RCX: 00007f986bf8e929
[  103.213309][ T6109] RDX: 00000000001c1041 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  103.213317][ T6109] RBP: 00007f986c010b39 R08: 0000000000000000 R09: 0000000000000000
[  103.213325][ T6109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  103.213332][ T6109] R13: 0000000000000000 R14: 00007f986c1b6080 R15: 00007fffe8367cc8
[  103.213350][ T6109]  </TASK>
[  103.911434][ T6120] random: crng reseeded on system resumption
[  106.727026][ T6142] FAULT_INJECTION: forcing a failure.
[  106.727026][ T6142] name failslab, interval 1, probability 0, space 0, times 0
[  106.804852][ T6142] CPU: 0 UID: 0 PID: 6142 Comm: syz.3.44 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  106.804876][ T6142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  106.804885][ T6142] Call Trace:
[  106.804890][ T6142]  <TASK>
[  106.804896][ T6142]  dump_stack_lvl+0x16c/0x1f0
[  106.804921][ T6142]  should_fail_ex+0x512/0x640
[  106.804941][ T6142]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  106.804960][ T6142]  should_failslab+0xc2/0x120
[  106.804974][ T6142]  __kmalloc_cache_noprof+0x6a/0x3e0
[  106.804991][ T6142]  ? io_uring_setup+0x24f/0x2080
[  106.805011][ T6142]  io_uring_setup+0x24f/0x2080
[  106.805029][ T6142]  ? __pfx_io_uring_setup+0x10/0x10
[  106.805045][ T6142]  ? do_futex+0x122/0x350
[  106.805062][ T6142]  ? __pfx_do_futex+0x10/0x10
[  106.805075][ T6142]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  106.805106][ T6142]  ? xfd_validate_state+0x61/0x180
[  106.805122][ T6142]  ? __pfx_do_writev+0x10/0x10
[  106.805143][ T6142]  __x64_sys_io_uring_setup+0xc2/0x170
[  106.805161][ T6142]  do_syscall_64+0xcd/0x490
[  106.805182][ T6142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.805196][ T6142] RIP: 0033:0x7f981558e929
[  106.805208][ T6142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.805220][ T6142] RSP: 002b:00007f98164c4038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  106.805234][ T6142] RAX: ffffffffffffffda RBX: 00007f98157b5fa0 RCX: 00007f981558e929
[  106.805243][ T6142] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  106.805251][ T6142] RBP: 00007f9815610b39 R08: 0000000000000000 R09: 0000000000000000
[  106.805259][ T6142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  106.805266][ T6142] R13: 0000000000000000 R14: 00007f98157b5fa0 R15: 00007ffe569fd5f8
[  106.805283][ T6142]  </TASK>
[  108.119511][ T6158] syz.0.49 uses obsolete (PF_INET,SOCK_PACKET)
[  108.401040][ T6165] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  109.123321][ T6180] Invalid ELF header magic: != ELF
[  112.405084][ T6216] ptrace attach of ""[6217] was attempted by "./syz-executor exec"[6216]
[  114.098468][ T5840] Bluetooth: hci0: unexpected event 0x04 length: 504 > 10
[  114.098534][ T5840] Bluetooth: hci0: connection err: -111
[  116.141399][ T6250] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  116.171183][ T6245] input: 00
[  116.171183][ T6245]  as /devices/virtual/input/input8
[  116.245437][ T6245] FAULT_INJECTION: forcing a failure.
[  116.245437][ T6245] name failslab, interval 1, probability 0, space 0, times 0
[  116.283563][ T6250] netlink: 25 bytes leftover after parsing attributes in process `syz.1.68'.
[  116.369611][ T6248] can0: slcan on ttyS2.
[  116.456986][ T6245] CPU: 0 UID: 0 PID: 6245 Comm: syz.2.66 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  116.457010][ T6245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  116.457019][ T6245] Call Trace:
[  116.457024][ T6245]  <TASK>
[  116.457030][ T6245]  dump_stack_lvl+0x16c/0x1f0
[  116.457056][ T6245]  should_fail_ex+0x512/0x640
[  116.457075][ T6245]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  116.457098][ T6245]  should_failslab+0xc2/0x120
[  116.457112][ T6245]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  116.457132][ T6245]  ? __kernfs_new_node+0xd2/0x8e0
[  116.457153][ T6245]  __kernfs_new_node+0xd2/0x8e0
[  116.457173][ T6245]  ? __pfx___kernfs_new_node+0x10/0x10
[  116.457195][ T6245]  ? find_held_lock+0x2b/0x80
[  116.457209][ T6245]  ? kernfs_root+0xee/0x2a0
[  116.457231][ T6245]  kernfs_new_node+0x13c/0x1e0
[  116.457254][ T6245]  __kernfs_create_file+0x53/0x350
[  116.457271][ T6245]  sysfs_add_file_mode_ns+0x207/0x3c0
[  116.457292][ T6245]  sysfs_merge_group+0x1aa/0x340
[  116.457311][ T6245]  ? __pfx_sysfs_merge_group+0x10/0x10
[  116.457332][ T6245]  ? __pfx_dev_add_physical_location+0x10/0x10
[  116.457354][ T6245]  ? bus_to_subsys+0x131/0x160
[  116.457372][ T6245]  dpm_sysfs_add+0x237/0x280
[  116.457386][ T6245]  device_add+0x9a6/0x1a70
[  116.457402][ T6245]  ? __pfx_device_add+0x10/0x10
[  116.457416][ T6245]  ? __pfx_exact_lock+0x10/0x10
[  116.457438][ T6245]  ? kobject_get+0xbb/0x150
[  116.457452][ T6245]  cdev_device_add+0xc2/0x1e0
[  116.457473][ T6245]  evdev_connect+0x3a4/0x4c0
[  116.457494][ T6245]  input_attach_handler.isra.0+0x181/0x260
[  116.457514][ T6245]  input_register_device+0xa84/0x1130
[  116.457534][ T6245]  uinput_ioctl_handler.isra.0+0x1357/0x1df0
[  116.457551][ T6245]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[  116.457580][ T6245]  ? find_held_lock+0x2b/0x80
[  116.457603][ T6245]  ? __pfx_uinput_ioctl+0x10/0x10
[  116.457617][ T6245]  __x64_sys_ioctl+0x18b/0x210
[  116.457636][ T6245]  do_syscall_64+0xcd/0x490
[  116.457658][ T6245]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.457672][ T6245] RIP: 0033:0x7f0287d8e929
[  116.457684][ T6245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.457696][ T6245] RSP: 002b:00007f0288c66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  116.457710][ T6245] RAX: ffffffffffffffda RBX: 00007f0287fb5fa0 RCX: 00007f0287d8e929
[  116.457719][ T6245] RDX: 0000000000000000 RSI: 0000000000005501 RDI: 0000000000000007
[  116.457726][ T6245] RBP: 00007f0287e10b39 R08: 0000000000000000 R09: 0000000000000000
[  116.457734][ T6245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  116.457742][ T6245] R13: 0000000000000000 R14: 00007f0287fb5fa0 R15: 00007ffc865cc768
[  116.457760][ T6245]  </TASK>
[  116.733275][    C0] vkms_vblank_simulate: vblank timer overrun
[  116.740020][ T6245] input: failed to attach handler evdev to device input8, error: -12
[  116.776283][    C0] sd 0:0:1:0: [sda] tag#2846 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  116.786734][    C0] sd 0:0:1:0: [sda] tag#2846 CDB: Read(6) 08 00 00 00 09 00 00 00 00 00 00 00
[  117.797918][ T6253] can0 (unregistered): slcan off ttyS2.
[  120.380769][ T6306] FAULT_INJECTION: forcing a failure.
[  120.380769][ T6306] name failslab, interval 1, probability 0, space 0, times 0
[  120.482257][ T6306] CPU: 0 UID: 0 PID: 6306 Comm: syz.2.76 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  120.482281][ T6306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  120.482290][ T6306] Call Trace:
[  120.482294][ T6306]  <TASK>
[  120.482301][ T6306]  dump_stack_lvl+0x16c/0x1f0
[  120.482327][ T6306]  should_fail_ex+0x512/0x640
[  120.482346][ T6306]  ? fs_reclaim_acquire+0xae/0x150
[  120.482364][ T6306]  ? tomoyo_init_log+0x1385/0x2140
[  120.482381][ T6306]  should_failslab+0xc2/0x120
[  120.482394][ T6306]  __kmalloc_noprof+0xd2/0x510
[  120.482412][ T6306]  ? __pfx_from_kuid+0x10/0x10
[  120.482430][ T6306]  ? tomoyo_get_attributes+0x2c3/0x5b0
[  120.482455][ T6306]  tomoyo_init_log+0x1385/0x2140
[  120.482483][ T6306]  ? __pfx_tomoyo_init_log+0x10/0x10
[  120.482500][ T6306]  ? tomoyo_profile+0x47/0x60
[  120.482519][ T6306]  ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0
[  120.482537][ T6306]  tomoyo_supervisor+0x302/0x13b0
[  120.482560][ T6306]  ? __pfx_tomoyo_supervisor+0x10/0x10
[  120.482592][ T6306]  ? rcu_is_watching+0x12/0xc0
[  120.482606][ T6306]  ? trace_kmalloc+0x2b/0xd0
[  120.482620][ T6306]  ? tomoyo_check_acl+0x1f7/0x410
[  120.482637][ T6306]  tomoyo_path_permission+0x270/0x3b0
[  120.482654][ T6306]  tomoyo_path_perm+0x3d4/0x460
[  120.482671][ T6306]  ? __pfx_tomoyo_path_perm+0x10/0x10
[  120.482695][ T6306]  ? d_add+0x47a/0x780
[  120.482716][ T6306]  ? __pfx_current_check_access_path+0x10/0x10
[  120.482733][ T6306]  ? lookup_one_qstr_excl_raw.part.0+0xf9/0x160
[  120.482748][ T6306]  ? lookup_dcache+0x66/0x170
[  120.482766][ T6306]  tomoyo_path_symlink+0x97/0xe0
[  120.482785][ T6306]  ? __pfx_tomoyo_path_symlink+0x10/0x10
[  120.482803][ T6306]  ? find_held_lock+0x2b/0x80
[  120.482816][ T6306]  ? __might_fault+0xe3/0x190
[  120.482838][ T6306]  security_path_symlink+0x152/0x2e0
[  120.482854][ T6306]  do_symlinkat+0x10d/0x310
[  120.482874][ T6306]  ? __pfx_do_symlinkat+0x10/0x10
[  120.482893][ T6306]  ? getname_flags.part.0+0x1c5/0x550
[  120.482912][ T6306]  __x64_sys_symlinkat+0x93/0xc0
[  120.482932][ T6306]  do_syscall_64+0xcd/0x490
[  120.482958][ T6306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.482973][ T6306] RIP: 0033:0x7f0287d8e929
[  120.482986][ T6306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.482999][ T6306] RSP: 002b:00007f0288c66038 EFLAGS: 00000246 ORIG_RAX: 000000000000010a
[  120.483018][ T6306] RAX: ffffffffffffffda RBX: 00007f0287fb5fa0 RCX: 00007f0287d8e929
[  120.483027][ T6306] RDX: 0000200000000040 RSI: ffffffffffffff9c RDI: 0000200000000000
[  120.483036][ T6306] RBP: 00007f0287e10b39 R08: 0000000000000000 R09: 0000000000000000
[  120.483044][ T6306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  120.483052][ T6306] R13: 0000000000000000 R14: 00007f0287fb5fa0 R15: 00007ffc865cc768
[  120.483074][ T6306]  </TASK>
[  122.555897][ T6333] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  122.608918][ T6333] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  122.785183][ T6333] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  122.870416][ T6333] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  123.569027][ T6333] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9
[  124.644299][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout
[  124.650342][ T5152] Bluetooth: hci0: command 0x0419 tx timeout
[  124.887004][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout
[  124.893040][ T5152] Bluetooth: hci2: command 0x0c1a tx timeout
[  125.212547][ T6361] netlink: 354 bytes leftover after parsing attributes in process `syz.3.84'.
[  125.829110][ T6366] FAULT_INJECTION: forcing a failure.
[  125.829110][ T6366] name failslab, interval 1, probability 0, space 0, times 0
[  126.015564][ T6366] CPU: 0 UID: 0 PID: 6366 Comm: syz.1.86 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  126.015592][ T6366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  126.015601][ T6366] Call Trace:
[  126.015606][ T6366]  <TASK>
[  126.015612][ T6366]  dump_stack_lvl+0x16c/0x1f0
[  126.015638][ T6366]  should_fail_ex+0x512/0x640
[  126.015657][ T6366]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  126.015683][ T6366]  should_failslab+0xc2/0x120
[  126.015696][ T6366]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  126.015715][ T6366]  ? is_module_address+0x69/0xf0
[  126.015733][ T6366]  ? register_net_sysctl_sz+0x228/0x3e0
[  126.015746][ T6366]  ? mpls_net_init+0xef/0x230
[  126.015766][ T6366]  ? __pfx_mpls_net_init+0x10/0x10
[  126.015785][ T6366]  kmemdup_noprof+0x29/0x60
[  126.015804][ T6366]  mpls_net_init+0xef/0x230
[  126.015823][ T6366]  ops_init+0x1df/0x5f0
[  126.015839][ T6366]  setup_net+0x1ff/0x510
[  126.015850][ T6366]  ? lockdep_init_map_type+0x5c/0x280
[  126.015868][ T6366]  ? __pfx_setup_net+0x10/0x10
[  126.015882][ T6366]  ? debug_mutex_init+0x37/0x70
[  126.015897][ T6366]  copy_net_ns+0x2a6/0x5f0
[  126.015914][ T6366]  create_new_namespaces+0x3ea/0xa90
[  126.015934][ T6366]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  126.015950][ T6366]  ksys_unshare+0x45b/0xa40
[  126.015968][ T6366]  ? __pfx_ksys_unshare+0x10/0x10
[  126.015985][ T6366]  ? xfd_validate_state+0x61/0x180
[  126.016007][ T6366]  __x64_sys_unshare+0x31/0x40
[  126.016024][ T6366]  do_syscall_64+0xcd/0x490
[  126.016045][ T6366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.016059][ T6366] RIP: 0033:0x7f0a1c38e929
[  126.016072][ T6366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.016085][ T6366] RSP: 002b:00007f0a1d2e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  126.016099][ T6366] RAX: ffffffffffffffda RBX: 00007f0a1c5b5fa0 RCX: 00007f0a1c38e929
[  126.016107][ T6366] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  126.016115][ T6366] RBP: 00007f0a1c410b39 R08: 0000000000000000 R09: 0000000000000000
[  126.016123][ T6366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  126.016131][ T6366] R13: 0000000000000000 R14: 00007f0a1c5b5fa0 R15: 00007ffcbcb1d2d8
[  126.016148][ T6366]  </TASK>
[  126.023813][ T6381] bridge0: port 3(batadv0) entered blocking state
[  126.204103][    C0] vkms_vblank_simulate: vblank timer overrun
[  126.848593][ T6381] bridge0: port 3(batadv0) entered disabled state
[  126.875331][ T6381] batadv0: entered allmulticast mode
[  126.890988][ T6381] batadv0: entered promiscuous mode
[  126.907802][ T6381] bridge0: port 3(batadv0) entered blocking state
[  126.915126][ T6381] bridge0: port 3(batadv0) entered forwarding state
[  127.308335][ T1123] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  127.317822][ T1123] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  127.376832][ T6390] Zero length message leads to an empty skb
[  130.612925][ T6429] netlink: 28 bytes leftover after parsing attributes in process `syz.1.97'.
[  131.938671][ T6429] team0: Port device team_slave_1 removed
[  132.810835][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  132.817423][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  135.524412][ T5840] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  147.640798][ T6505] kexec: Could not allocate control_code_buffer
[  149.340832][ T6525] program syz.0.115 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  150.021709][ T6525] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  151.132745][ T6546] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10

syzkaller
syzkaller login: [  154.488248][ T6562] =======================================================
[  154.488248][ T6562] WARNING: The mand mount option has been deprecated and
[  154.488248][ T6562]          and is ignored by this kernel. Remove the mand
[  154.488248][ T6562]          option from the mount to silence this warning.
[  154.488248][ T6562] =======================================================
[  155.020604][ T6576] program syz.1.123 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  155.363643][ T6576] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  161.362759][ T6587] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  165.249695][ T6632] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  165.289281][ T5840] Bluetooth: hci0: command 0x0419 tx timeout
[  165.308537][ T6632] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  165.396432][ T6632] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  165.402475][ T6632] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  166.224445][ T6660] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  166.998558][ T6648] netlink: 338 bytes leftover after parsing attributes in process `syz.2.134'.
[  167.367194][ T5841] Bluetooth: hci1: command 0x0c1a tx timeout
[  167.444352][ T5841] Bluetooth: hci3: command 0x0c1a tx timeout
[  167.450375][ T5841] Bluetooth: hci2: command 0x0c1a tx timeout
[  167.511085][ T6673] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  170.718635][ T6678] random: crng reseeded on system resumption
[  171.369420][ T6689] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12
[  171.548585][ T6691] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input11
[  173.346878][ T6708] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  173.387476][ T6708] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  173.432349][ T6708] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  173.480716][ T6708] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  174.648708][ T5841] Bluetooth: hci0: command 0x0419 tx timeout
[  175.442052][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout
[  175.448083][ T5841] Bluetooth: hci2: command 0x0c1a tx timeout
[  175.524039][ T5841] Bluetooth: hci3: command 0x0c1a tx timeout
[  180.098548][ T6794] netlink: 28 bytes leftover after parsing attributes in process `syz.2.160'.
[  180.322582][ T6795] hub 8-0:1.0: USB hub found
[  180.376828][ T6795] hub 8-0:1.0: 1 port detected
[  180.887725][ T6777] kexec: Could not allocate control_code_buffer
[  183.087633][ T6813] kexec: Could not allocate control_code_buffer
[  183.443044][ T6826] netlink: 'syz.0.164': attribute type 11 has an invalid length.
[  183.539143][ T6826] netlink: 'syz.0.164': attribute type 11 has an invalid length.
[  183.699278][ T6826] netlink: 'syz.0.164': attribute type 11 has an invalid length.
[  184.032920][ T6826] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f527fecc pfn:0x7fe00
[  184.182607][ T6826] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  184.328741][ T6826] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  184.394132][ T6826] raw: 00000007f527fecc 0000000000000000 0000000400000002 0000000000000000
[  184.481577][ T6826] page dumped because: unmovable page
[  184.525280][ T6826] page_owner tracks the page as allocated
[  184.559394][ T6826] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5828, tgid 5828 (syz-executor), ts 83078926737, free_ts 81916249653
[  184.696878][ T6826]  post_alloc_hook+0x1c0/0x230
[  184.730631][ T6826]  get_page_from_freelist+0x1321/0x3890
[  184.764235][ T6826]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  184.793577][ T6826]  alloc_pages_mpol+0x1fb/0x550
[  184.798460][ T6826]  alloc_pages_noprof+0x131/0x390
[  184.847407][ T6826]  __vmalloc_node_range_noprof+0x72f/0x14b0
[  184.885668][ T6826]  vmalloc_user_noprof+0x9e/0xe0
[  184.910367][ T6826]  kcov_ioctl+0x4c/0x730
[  184.934973][ T6826]  __x64_sys_ioctl+0x18b/0x210
[  184.962148][ T6826]  do_syscall_64+0xcd/0x490
[  184.983620][ T6826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.033496][ T6826] page last free pid 5819 tgid 5819 stack trace:
[  185.061957][ T6826]  free_unref_folios+0xa65/0x1800
[  185.085661][ T6826]  folios_put_refs+0x56f/0x740
[  185.117104][ T6826]  free_pages_and_swap_cache+0x245/0x4a0
[  185.153771][ T6826]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  185.175439][ T6826]  tlb_finish_mmu+0x168/0x7c0
[  185.218144][ T6826]  vms_clear_ptes+0x55e/0x770
[  185.236455][ T6826]  vms_complete_munmap_vmas+0x1ca/0x970
[  185.268363][ T6826]  do_vmi_align_munmap+0x43b/0x7d0
[  185.297551][ T6826]  do_vmi_munmap+0x204/0x3e0
[  185.317865][ T6826]  __vm_munmap+0x19a/0x390
[  185.348005][ T6826]  __x64_sys_munmap+0x59/0x80
[  185.369788][ T6826]  do_syscall_64+0xcd/0x490
[  185.374344][ T6826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.025775][ T6878] Invalid ELF header magic: != ELF
[  190.170930][ T6911] netlink: 28 bytes leftover after parsing attributes in process `syz.2.181'.
[  190.222992][ T6911] ipvlan1: entered allmulticast mode
[  190.228304][ T6911] veth0_vlan: entered allmulticast mode
[  191.771682][ T6917] syz.1.182 (6917) used greatest stack depth: 19800 bytes left
[  194.243261][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  194.249697][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  194.292196][ T6947] openvswitch: netlink: Tunnel attr 242 out of range max 16
[  194.301150][ T6942] hub 8-0:1.0: USB hub found
[  194.342939][ T6942] hub 8-0:1.0: 1 port detected
[  197.659496][ T6976] FAULT_INJECTION: forcing a failure.
[  197.659496][ T6976] name failslab, interval 1, probability 0, space 0, times 0
[  197.907695][ T6976] CPU: 0 UID: 0 PID: 6976 Comm: syz.1.191 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  197.907717][ T6976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  197.907725][ T6976] Call Trace:
[  197.907730][ T6976]  <TASK>
[  197.907736][ T6976]  dump_stack_lvl+0x16c/0x1f0
[  197.907761][ T6976]  should_fail_ex+0x512/0x640
[  197.907780][ T6976]  ? fs_reclaim_acquire+0xae/0x150
[  197.907798][ T6976]  should_failslab+0xc2/0x120
[  197.907812][ T6976]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  197.907833][ T6976]  ? security_inode_alloc+0x3b/0x2b0
[  197.907850][ T6976]  security_inode_alloc+0x3b/0x2b0
[  197.907866][ T6976]  inode_init_always_gfp+0xce4/0x1030
[  197.907892][ T6976]  ? __pfx_rpc_fill_super+0x10/0x10
[  197.907913][ T6976]  alloc_inode+0x86/0x240
[  197.907927][ T6976]  new_inode+0x22/0x1c0
[  197.907942][ T6976]  ? __pfx_rpc_fill_super+0x10/0x10
[  197.907961][ T6976]  rpc_fill_super+0x19c/0x840
[  197.907980][ T6976]  ? sget_fc+0x808/0xc20
[  197.907998][ T6976]  ? __pfx_set_anon_super_fc+0x10/0x10
[  197.908014][ T6976]  ? __pfx_rpc_fill_super+0x10/0x10
[  197.908033][ T6976]  get_tree_keyed+0x10b/0x1d0
[  197.908051][ T6976]  vfs_get_tree+0x8b/0x340
[  197.908066][ T6976]  vfs_cmd_create+0xd7/0x2a0
[  197.908080][ T6976]  __do_sys_fsconfig+0x7b8/0xbe0
[  197.908094][ T6976]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  197.908116][ T6976]  do_syscall_64+0xcd/0x490
[  197.908138][ T6976]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.908152][ T6976] RIP: 0033:0x7f0a1c38e929
[  197.908164][ T6976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.908176][ T6976] RSP: 002b:00007f0a1d2a1038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  197.908189][ T6976] RAX: ffffffffffffffda RBX: 00007f0a1c5b6160 RCX: 00007f0a1c38e929
[  197.908198][ T6976] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000000a
[  197.908205][ T6976] RBP: 00007f0a1c410b39 R08: 0000000000000000 R09: 0000000000000000
[  197.908213][ T6976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  197.908221][ T6976] R13: 0000000000000000 R14: 00007f0a1c5b6160 R15: 00007ffcbcb1d2d8
[  197.908239][ T6976]  </TASK>
[  200.930251][ T7015] vhci_hcd: invalid port number 16
[  200.968748][ T7015] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[  206.622832][ T7071] ubi0: attaching mtd0
[  206.645589][ T7071] ubi0: scanning is finished
[  206.655014][ T7071] ubi0: empty MTD device detected
[  207.208411][ T7071] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  207.247164][ T7085] netlink: 354 bytes leftover after parsing attributes in process `syz.2.212'.
[  207.473940][ T7071] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  207.574555][ T7071] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  207.720098][ T7071] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  207.761198][ T7071] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  207.767985][ T7071] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  207.833671][ T7071] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 864255917
[  207.890856][ T7071] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  207.939103][ T7088] ubi0: background thread "ubi_bgt0d" started, PID 7088
[  208.204030][ T7094] vivid-003: =================  START STATUS  =================
[  208.204075][ T7094] vivid-003: Radio HW Seek Mode: Bounded
[  208.204113][ T7094] vivid-003: Radio Programmable HW Seek: false
[  208.204128][ T7094] vivid-003: RDS Rx I/O Mode: Block I/O
[  208.204144][ T7094] vivid-003: Generate RBDS Instead of RDS: false
[  208.204159][ T7094] vivid-003: RDS Reception: true
[  208.204174][ T7094] vivid-003: RDS Program Type: 0 inactive
[  208.204193][ T7094] vivid-003: RDS PS Name:  inactive
[  208.204211][ T7094] vivid-003: RDS Radio Text:  inactive
[  208.204229][ T7094] vivid-003: RDS Traffic Announcement: false inactive
[  208.204247][ T7094] vivid-003: RDS Traffic Program: false inactive
[  208.204264][ T7094] vivid-003: RDS Music: false inactive
[  208.204281][ T7094] vivid-003: ==================  END STATUS  ==================
[  208.931024][ T7103] FAULT_INJECTION: forcing a failure.
[  208.931024][ T7103] name failslab, interval 1, probability 0, space 0, times 0
[  208.993062][ T7103] CPU: 0 UID: 0 PID: 7103 Comm: syz.2.217 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  208.993089][ T7103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  208.993098][ T7103] Call Trace:
[  208.993103][ T7103]  <TASK>
[  208.993109][ T7103]  dump_stack_lvl+0x16c/0x1f0
[  208.993134][ T7103]  should_fail_ex+0x512/0x640
[  208.993154][ T7103]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  208.993177][ T7103]  should_failslab+0xc2/0x120
[  208.993191][ T7103]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  208.993210][ T7103]  ? lockdep_init_map_type+0x5c/0x280
[  208.993227][ T7103]  ? seq_open+0x55/0x170
[  208.993243][ T7103]  seq_open+0x55/0x170
[  208.993257][ T7103]  kernfs_fop_open+0x59f/0xda0
[  208.993272][ T7103]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  208.993296][ T7103]  do_dentry_open+0x744/0x1c10
[  208.993317][ T7103]  ? __pfx_kernfs_fop_open+0x10/0x10
[  208.993335][ T7103]  vfs_open+0x82/0x3f0
[  208.993351][ T7103]  path_openat+0x1de4/0x2cb0
[  208.993376][ T7103]  ? __pfx_path_openat+0x10/0x10
[  208.993395][ T7103]  ? __lock_acquire+0xb8a/0x1c90
[  208.993414][ T7103]  do_filp_open+0x20b/0x470
[  208.993432][ T7103]  ? __pfx_do_filp_open+0x10/0x10
[  208.993464][ T7103]  ? alloc_fd+0x471/0x7d0
[  208.993486][ T7103]  do_sys_openat2+0x11b/0x1d0
[  208.993501][ T7103]  ? __pfx_do_sys_openat2+0x10/0x10
[  208.993522][ T7103]  __x64_sys_openat+0x174/0x210
[  208.993537][ T7103]  ? __pfx___x64_sys_openat+0x10/0x10
[  208.993560][ T7103]  do_syscall_64+0xcd/0x490
[  208.993582][ T7103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.993596][ T7103] RIP: 0033:0x7f0287d8e929
[  208.993608][ T7103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.993621][ T7103] RSP: 002b:00007f0288c66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  208.993634][ T7103] RAX: ffffffffffffffda RBX: 00007f0287fb5fa0 RCX: 00007f0287d8e929
[  208.993643][ T7103] RDX: 0000000000001182 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  208.993651][ T7103] RBP: 00007f0287e10b39 R08: 0000000000000000 R09: 0000000000000000
[  208.993659][ T7103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  208.993667][ T7103] R13: 0000000000000000 R14: 00007f0287fb5fa0 R15: 00007ffc865cc768
[  208.993692][ T7103]  </TASK>
[  212.593607][ T7160] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  212.602527][ T7160] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  212.612471][ T7160] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  212.620368][ T7160] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  212.628028][ T7160] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  213.493966][ T7168] ip_vti0: entered allmulticast mode
[  213.602938][ T7159] chnl_net:caif_netlink_parms(): no params data found
[  214.209431][ T7159] bridge0: port 1(bridge_slave_0) entered blocking state
[  214.216534][ T7159] bridge0: port 1(bridge_slave_0) entered disabled state
[  214.278873][ T7159] bridge_slave_0: entered allmulticast mode
[  214.316487][ T7159] bridge_slave_0: entered promiscuous mode
[  214.355340][ T7159] bridge0: port 2(bridge_slave_1) entered blocking state
[  214.375686][ T7185] ubi: mtd0 is already attached to ubi0
[  214.400113][ T7185] ubi0: detaching mtd0
[  214.404319][ T7159] bridge0: port 2(bridge_slave_1) entered disabled state
[  214.433662][ T7159] bridge_slave_1: entered allmulticast mode
[  214.440893][ T7185] ubi0: mtd0 is detached
[  214.464206][ T7159] bridge_slave_1: entered promiscuous mode
[  214.497411][ T7192] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjEùrõ£Ò„yù*›"¤l-ý¤ôy–ú„
[  214.730597][ T7160] Bluetooth: hci4: command tx timeout
[  214.807986][ T7159] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  214.853080][ T7159] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  215.076555][ T7159] team0: Port device team_slave_0 added
[  215.122483][ T7159] team0: Port device team_slave_1 added
[  215.331093][ T7159] batman_adv: batadv0: Adding interface: batadv_slave_0
[  215.352876][ T7159] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  215.411103][ T7159] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  215.449925][ T7159] batman_adv: batadv0: Adding interface: batadv_slave_1
[  215.465052][ T7159] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  215.526478][ T7159] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  215.672984][ T7159] hsr_slave_0: entered promiscuous mode
[  215.710394][ T7159] hsr_slave_1: entered promiscuous mode
[  215.735944][ T7159] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  215.761750][ T7159] Cannot create hsr debugfs directory
[  216.550609][ T7159] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  216.605053][ T7159] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  216.685401][ T7159] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  216.721359][ T7159] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  216.799234][ T7160] Bluetooth: hci4: command tx timeout
[  216.846743][ T7189] kexec: Could not allocate control_code_buffer
[  216.980878][ T7159] 8021q: adding VLAN 0 to HW filter on device bond0
[  217.081135][ T7159] 8021q: adding VLAN 0 to HW filter on device team0
[  217.388354][ T6766] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.395532][ T6766] bridge0: port 1(bridge_slave_0) entered forwarding state
[  217.486063][ T6778] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.493213][ T6778] bridge0: port 2(bridge_slave_1) entered forwarding state
[  218.248161][ T7159] 8021q: adding VLAN 0 to HW filter on device batadv0
[  218.879241][ T7160] Bluetooth: hci4: command tx timeout
[  219.094220][ T7159] veth0_vlan: entered promiscuous mode
[  219.150423][ T7159] veth1_vlan: entered promiscuous mode
[  219.269675][ T7159] veth0_macvtap: entered promiscuous mode
[  219.321970][ T7159] veth1_macvtap: entered promiscuous mode
[  219.384225][ T7159] batman_adv: batadv0: Interface activated: batadv_slave_0
[  219.451689][ T7159] batman_adv: batadv0: Interface activated: batadv_slave_1
[  219.492720][ T7159] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  219.538924][ T7159] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  219.573625][ T7159] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  219.606798][ T7159] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  219.657407][ T7160] Bluetooth: hci0: unexpected event 0x3d length: 726 > 14
[  220.185640][ T6778] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  220.243956][ T6778] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  220.351135][ T6763] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  220.389157][ T6763] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  220.959166][ T7160] Bluetooth: hci4: command tx timeout
[  225.064380][ T7326] rnbd_client L202: map_device: Unknown parameter or missing value '('
[  226.178172][ T7332] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  226.997622][ T7346] capability: warning: `syz.0.254' uses 32-bit capabilities (legacy support in use)
[  227.029587][ T7346] FAULT_INJECTION: forcing a failure.
[  227.029587][ T7346] name fail_futex, interval 1, probability 0, space 0, times 1
[  227.090688][ T7346] CPU: 0 UID: 0 PID: 7346 Comm: syz.0.254 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  227.090712][ T7346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  227.090721][ T7346] Call Trace:
[  227.090726][ T7346]  <TASK>
[  227.090732][ T7346]  dump_stack_lvl+0x16c/0x1f0
[  227.090764][ T7346]  should_fail_ex+0x512/0x640
[  227.090784][ T7346]  ? __irq_work_queue_local+0x1d7/0x580
[  227.090808][ T7346]  get_futex_key+0x1d0/0x1540
[  227.090826][ T7346]  ? __pfx_get_futex_key+0x10/0x10
[  227.090841][ T7346]  ? irq_work_queue+0xce/0x100
[  227.090862][ T7346]  ? __wake_up_klogd.part.0+0x99/0xf0
[  227.090888][ T7346]  futex_wake+0xea/0x530
[  227.090908][ T7346]  ? __pfx_futex_wake+0x10/0x10
[  227.090926][ T7346]  ? _printk+0xc7/0x100
[  227.090944][ T7346]  ? __might_fault+0xe3/0x190
[  227.090962][ T7346]  ? __might_fault+0xe3/0x190
[  227.090978][ T7346]  ? __might_fault+0x13b/0x190
[  227.090998][ T7346]  do_futex+0x1e3/0x350
[  227.091014][ T7346]  ? __pfx_do_futex+0x10/0x10
[  227.091031][ T7346]  ? __do_sys_capget+0x109/0x540
[  227.091046][ T7346]  __x64_sys_futex+0x1e0/0x4c0
[  227.091063][ T7346]  ? __x64_sys_openat+0x174/0x210
[  227.091079][ T7346]  ? __pfx___x64_sys_futex+0x10/0x10
[  227.091094][ T7346]  ? xfd_validate_state+0x61/0x180
[  227.091117][ T7346]  do_syscall_64+0xcd/0x490
[  227.091138][ T7346]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.091152][ T7346] RIP: 0033:0x7f986bf8e929
[  227.091165][ T7346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.091178][ T7346] RSP: 002b:00007f986ce720e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  227.091191][ T7346] RAX: ffffffffffffffda RBX: 00007f986c1b5fa8 RCX: 00007f986bf8e929
[  227.091200][ T7346] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f986c1b5fac
[  227.091208][ T7346] RBP: 00007f986c1b5fa0 R08: 00007f986ce73000 R09: 0000000000000000
[  227.091216][ T7346] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f986c1b5fac
[  227.091224][ T7346] R13: 0000000000000000 R14: 00007fffe8367be0 R15: 00007fffe8367cc8
[  227.091241][ T7346]  </TASK>
[  227.307649][    C0] vkms_vblank_simulate: vblank timer overrun
[  227.862633][ T7346] netlink: 12 bytes leftover after parsing attributes in process `syz.0.254'.
[  227.923872][ T7346] HfR: entered promiscuous mode
[  227.942867][ T7160] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5
[  228.578579][ T7373] Invalid ELF header magic: != ELF
[  230.524191][ T7413] netlink: 28 bytes leftover after parsing attributes in process `syz.3.264'.
[  230.580959][ T7413] ipvlan1: entered allmulticast mode
[  230.586271][ T7413] veth0_vlan: entered allmulticast mode
[  230.646562][ T7415] netlink: 28 bytes leftover after parsing attributes in process `syz.3.264'.
[  232.449109][ T7450] netlink: 28 bytes leftover after parsing attributes in process `syz.3.269'.
[  232.492760][ T7450] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[  233.759852][ T7474] netlink: 4 bytes leftover after parsing attributes in process `syz.3.273'.
[  233.809930][ T7474] netlink: 354 bytes leftover after parsing attributes in process `syz.3.273'.
[  234.889792][ T7496] ALSA: mixer_oss: invalid OSS volume '0'
[  234.895544][ T7496] ALSA: mixer_oss: invalid OSS volume ''
[  237.423947][ T7534] can: request_module (can-proto-3) failed.
[  237.832378][ T7543] FAULT_INJECTION: forcing a failure.
[  237.832378][ T7543] name failslab, interval 1, probability 0, space 0, times 0
[  237.854204][ T6790] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  237.865156][ T6790] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  237.873300][ T6790] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  237.881851][ T6790] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  237.894206][ T6790] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  237.959173][ T7543] CPU: 0 UID: 0 PID: 7543 Comm: syz.2.280 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  237.959196][ T7543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  237.959204][ T7543] Call Trace:
[  237.959209][ T7543]  <TASK>
[  237.959215][ T7543]  dump_stack_lvl+0x16c/0x1f0
[  237.959240][ T7543]  should_fail_ex+0x512/0x640
[  237.959260][ T7543]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  237.959281][ T7543]  should_failslab+0xc2/0x120
[  237.959294][ T7543]  __kmalloc_cache_noprof+0x6a/0x3e0
[  237.959311][ T7543]  ? do_epoll_create+0x62/0x470
[  237.959330][ T7543]  do_epoll_create+0x62/0x470
[  237.959347][ T7543]  __x64_sys_epoll_create+0x45/0x70
[  237.959363][ T7543]  do_syscall_64+0xcd/0x490
[  237.959384][ T7543]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.959398][ T7543] RIP: 0033:0x7f0287d8e929
[  237.959409][ T7543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.959422][ T7543] RSP: 002b:00007f0288c66038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d5
[  237.959435][ T7543] RAX: ffffffffffffffda RBX: 00007f0287fb5fa0 RCX: 00007f0287d8e929
[  237.959444][ T7543] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  237.959451][ T7543] RBP: 00007f0287e10b39 R08: 0000000000000000 R09: 0000000000000000
[  237.959459][ T7543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  237.959466][ T7543] R13: 0000000000000000 R14: 00007f0287fb5fa0 R15: 00007ffc865cc768
[  237.959484][ T7543]  </TASK>
[  238.426820][ T7539] FAULT_INJECTION: forcing a failure.
[  238.426820][ T7539] name failslab, interval 1, probability 0, space 0, times 0
[  238.508787][ T7539] CPU: 0 UID: 0 PID: 7539 Comm: syz.3.279 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  238.508811][ T7539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  238.508819][ T7539] Call Trace:
[  238.508825][ T7539]  <TASK>
[  238.508831][ T7539]  dump_stack_lvl+0x16c/0x1f0
[  238.508856][ T7539]  should_fail_ex+0x512/0x640
[  238.508875][ T7539]  ? fs_reclaim_acquire+0xae/0x150
[  238.508893][ T7539]  ? tomoyo_encode2+0x100/0x3e0
[  238.508910][ T7539]  should_failslab+0xc2/0x120
[  238.508924][ T7539]  __kmalloc_noprof+0xd2/0x510
[  238.508943][ T7539]  ? d_absolute_path+0x136/0x1a0
[  238.508960][ T7539]  tomoyo_encode2+0x100/0x3e0
[  238.508980][ T7539]  tomoyo_encode+0x29/0x50
[  238.508996][ T7539]  tomoyo_realpath_from_path+0x18f/0x6e0
[  238.509019][ T7539]  tomoyo_check_open_permission+0x2ab/0x3c0
[  238.509036][ T7539]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  238.509070][ T7539]  ? do_raw_spin_lock+0x12c/0x2b0
[  238.509095][ T7539]  tomoyo_file_open+0x6b/0x90
[  238.509116][ T7539]  security_file_open+0x84/0x1e0
[  238.509133][ T7539]  do_dentry_open+0x596/0x1c10
[  238.509158][ T7539]  vfs_open+0x82/0x3f0
[  238.509175][ T7539]  path_openat+0x1de4/0x2cb0
[  238.509200][ T7539]  ? __pfx_path_openat+0x10/0x10
[  238.509219][ T7539]  ? __lock_acquire+0xb8a/0x1c90
[  238.509238][ T7539]  do_filp_open+0x20b/0x470
[  238.509257][ T7539]  ? __pfx_do_filp_open+0x10/0x10
[  238.509289][ T7539]  ? alloc_fd+0x471/0x7d0
[  238.509311][ T7539]  do_sys_openat2+0x11b/0x1d0
[  238.509325][ T7539]  ? __pfx_do_sys_openat2+0x10/0x10
[  238.509347][ T7539]  __x64_sys_openat+0x174/0x210
[  238.509362][ T7539]  ? __pfx___x64_sys_openat+0x10/0x10
[  238.509385][ T7539]  do_syscall_64+0xcd/0x490
[  238.509406][ T7539]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.509421][ T7539] RIP: 0033:0x7f981558e929
[  238.509433][ T7539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  238.509445][ T7539] RSP: 002b:00007f98164a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  238.509459][ T7539] RAX: ffffffffffffffda RBX: 00007f98157b6080 RCX: 00007f981558e929
[  238.509468][ T7539] RDX: 0000000000000802 RSI: 0000200000000480 RDI: ffffffffffffff9c
[  238.509476][ T7539] RBP: 00007f9815610b39 R08: 0000000000000000 R09: 0000000000000000
[  238.509484][ T7539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  238.509492][ T7539] R13: 0000000000000000 R14: 00007f98157b6080 R15: 00007ffe569fd5f8
[  238.509509][ T7539]  </TASK>
[  238.509527][ T7539] ERROR: Out of memory at tomoyo_realpath_from_path.
[  239.457379][ T7544] chnl_net:caif_netlink_parms(): no params data found
[  239.919646][ T6790] Bluetooth: hci5: command tx timeout
[  240.084119][ T7544] bridge0: port 1(bridge_slave_0) entered blocking state
[  240.111944][ T7544] bridge0: port 1(bridge_slave_0) entered disabled state
[  240.171471][ T7544] bridge_slave_0: entered allmulticast mode
[  240.220532][ T7544] bridge_slave_0: entered promiscuous mode
[  240.266731][ T7544] bridge0: port 2(bridge_slave_1) entered blocking state
[  240.304095][ T7544] bridge0: port 2(bridge_slave_1) entered disabled state
[  240.341262][ T7544] bridge_slave_1: entered allmulticast mode
[  240.379820][ T7544] bridge_slave_1: entered promiscuous mode
[  240.407013][ T7575] sysfs_service_op_show: Client not running :-5:
[  240.516732][ T7575] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15
[  240.702738][ T7544] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  240.763589][ T7544] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  240.983856][ T7544] team0: Port device team_slave_0 added
[  241.033500][ T7544] team0: Port device team_slave_1 added
[  241.154687][ T7544] batman_adv: batadv0: Adding interface: batadv_slave_0
[  241.183006][ T7544] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  241.208958][    C0] vkms_vblank_simulate: vblank timer overrun
[  241.307928][ T7544] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  241.348912][ T7544] batman_adv: batadv0: Adding interface: batadv_slave_1
[  241.371315][ T7544] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  241.529609][ T7544] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  241.763443][ T7544] hsr_slave_0: entered promiscuous mode
[  241.792029][ T7544] hsr_slave_1: entered promiscuous mode
[  241.830011][ T7544] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  241.872240][ T7544] Cannot create hsr debugfs directory
[  242.002804][ T6790] Bluetooth: hci5: command tx timeout
[  242.820992][ T7544] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  242.885981][ T7544] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  242.946989][ T7544] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  243.003467][ T7544] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  243.434274][ T7544] 8021q: adding VLAN 0 to HW filter on device bond0
[  243.534193][ T7544] 8021q: adding VLAN 0 to HW filter on device team0
[  243.585104][ T6801] bridge0: port 1(bridge_slave_0) entered blocking state
[  243.592346][ T6801] bridge0: port 1(bridge_slave_0) entered forwarding state
[  243.692316][ T6801] bridge0: port 2(bridge_slave_1) entered blocking state
[  243.699466][ T6801] bridge0: port 2(bridge_slave_1) entered forwarding state
[  244.080745][ T6790] Bluetooth: hci5: command tx timeout
[  244.907765][ T7544] 8021q: adding VLAN 0 to HW filter on device batadv0
[  245.868204][ T7544] veth0_vlan: entered promiscuous mode
[  245.924033][ T7544] veth1_vlan: entered promiscuous mode
[  246.036797][ T7544] veth0_macvtap: entered promiscuous mode
[  246.105094][ T7544] veth1_macvtap: entered promiscuous mode
[  246.158824][ T6790] Bluetooth: hci5: command tx timeout
[  246.187992][ T7544] batman_adv: batadv0: Interface activated: batadv_slave_0
[  246.507470][ T7544] batman_adv: batadv0: Interface activated: batadv_slave_1
[  246.773928][ T7544] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  246.840004][ T7544] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  246.952458][ T7544] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  247.010899][ T7544] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  247.427034][ T6763] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  247.470636][ T7657] FAULT_INJECTION: forcing a failure.
[  247.470636][ T7657] name failslab, interval 1, probability 0, space 0, times 0
[  247.498710][ T6763] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  247.651273][ T7657] CPU: 0 UID: 0 PID: 7657 Comm: syz.2.296 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  247.651296][ T7657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  247.651304][ T7657] Call Trace:
[  247.651309][ T7657]  <TASK>
[  247.651318][ T7657]  dump_stack_lvl+0x16c/0x1f0
[  247.651343][ T7657]  should_fail_ex+0x512/0x640
[  247.651362][ T7657]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  247.651384][ T7657]  should_failslab+0xc2/0x120
[  247.651398][ T7657]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  247.651417][ T7657]  ? is_bpf_text_address+0x94/0x1a0
[  247.651435][ T7657]  ? alloc_empty_file+0x55/0x1e0
[  247.651451][ T7657]  alloc_empty_file+0x55/0x1e0
[  247.651466][ T7657]  path_openat+0xda/0x2cb0
[  247.651488][ T7657]  ? stack_trace_save+0x8e/0xc0
[  247.651503][ T7657]  ? __pfx_path_openat+0x10/0x10
[  247.651520][ T7657]  ? stack_depot_save_flags+0x28/0xa40
[  247.651543][ T7657]  do_filp_open+0x20b/0x470
[  247.651560][ T7657]  ? kasan_save_track+0x14/0x30
[  247.651580][ T7657]  ? __pfx_do_filp_open+0x10/0x10
[  247.651596][ T7657]  ? __x64_sys_execve+0x74/0xb0
[  247.651620][ T7657]  ? do_syscall_64+0xcd/0x490
[  247.651640][ T7657]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.651674][ T7657]  do_open_execat+0xf9/0x450
[  247.651690][ T7657]  ? __pfx_do_open_execat+0x10/0x10
[  247.651713][ T7657]  alloc_bprm+0x2d/0x6f0
[  247.651731][ T7657]  do_execveat_common.isra.0+0x1ce/0x610
[  247.651752][ T7657]  __x64_sys_execve+0x8e/0xb0
[  247.651770][ T7657]  do_syscall_64+0xcd/0x490
[  247.651791][ T7657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.651804][ T7657] RIP: 0033:0x7f0287d8e929
[  247.651816][ T7657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.651828][ T7657] RSP: 002b:00007f0288c45038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  247.651841][ T7657] RAX: ffffffffffffffda RBX: 00007f0287fb6080 RCX: 00007f0287d8e929
[  247.651850][ T7657] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[  247.651858][ T7657] RBP: 00007f0287e10b39 R08: 0000000000000000 R09: 0000000000000000
[  247.651866][ T7657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  247.651874][ T7657] R13: 0000000000000000 R14: 00007f0287fb6080 R15: 00007ffc865cc768
[  247.651892][ T7657]  </TASK>
[  248.052081][ T6766] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  248.060014][ T6766] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  250.020449][ T7704] batman_adv: Routing algorithm '' is not supported
[  251.927531][ T7733] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  252.091487][ T7733] CIFS mount error: No usable UNC path provided in device string!
[  252.091487][ T7733] 
[  252.258916][ T7733] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  252.790956][ T7740] netlink: 354 bytes leftover after parsing attributes in process `syz.2.314'.
[  254.213964][ T7770] netlink: 28 bytes leftover after parsing attributes in process `syz.3.311'.
[  255.688863][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  255.695220][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  255.760685][ T7788] batman_adv: Routing algorithm '' is not supported
[  259.846889][ T7831] CIFS mount error: No usable UNC path provided in device string!
[  259.846889][ T7831] 
[  259.886314][   T30] audit: type=1800 audit(6046008420.000:2): pid=7839 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.323" name="SYSVffffffff" dev="tmpfs" ino=0 res=0 errno=0
[  259.927992][ T7831] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  260.377088][ T7842] ERROR: Out of memory at tomoyo_memory_ok.
[  261.245423][ T7849] ip_vti0: entered allmulticast mode
[  266.891336][ T7909] netlink: 8 bytes leftover after parsing attributes in process `syz.0.339'.
[  267.814969][ T7927] FAULT_INJECTION: forcing a failure.
[  267.814969][ T7927] name failslab, interval 1, probability 0, space 0, times 0
[  268.064894][ T7932] netlink: 4 bytes leftover after parsing attributes in process `syz.0.343'.
[  268.101476][ T7927] CPU: 0 UID: 0 PID: 7927 Comm: syz.0.343 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  268.101499][ T7927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  268.101507][ T7927] Call Trace:
[  268.101513][ T7927]  <TASK>
[  268.101519][ T7927]  dump_stack_lvl+0x16c/0x1f0
[  268.101546][ T7927]  should_fail_ex+0x512/0x640
[  268.101566][ T7927]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  268.101588][ T7927]  should_failslab+0xc2/0x120
[  268.101602][ T7927]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  268.101625][ T7927]  ? alloc_unbound_pwq+0x3ff/0xe10
[  268.101642][ T7927]  alloc_unbound_pwq+0x3ff/0xe10
[  268.101661][ T7927]  apply_wqattrs_prepare+0x3af/0xbd0
[  268.101682][ T7927]  apply_workqueue_attrs_locked+0x64/0xe0
[  268.101697][ T7927]  __alloc_workqueue+0xf41/0x1810
[  268.101717][ T7927]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  268.101738][ T7927]  alloc_workqueue+0xd2/0x200
[  268.101753][ T7927]  ? __pfx_alloc_workqueue+0x10/0x10
[  268.101774][ T7927]  ? __pfx___debug_object_init+0x10/0x10
[  268.101793][ T7927]  nci_register_device+0x394/0xb80
[  268.101813][ T7927]  ? __pfx_nci_register_device+0x10/0x10
[  268.101834][ T7927]  ? lockdep_init_map_type+0x5c/0x280
[  268.101855][ T7927]  virtual_ncidev_open+0x141/0x220
[  268.101872][ T7927]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  268.101888][ T7927]  misc_open+0x35d/0x420
[  268.101905][ T7927]  ? __pfx_misc_open+0x10/0x10
[  268.101920][ T7927]  chrdev_open+0x231/0x6a0
[  268.101940][ T7927]  ? __pfx_apparmor_file_open+0x10/0x10
[  268.101957][ T7927]  ? __pfx_chrdev_open+0x10/0x10
[  268.101977][ T7927]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  268.101998][ T7927]  do_dentry_open+0x744/0x1c10
[  268.102018][ T7927]  ? __pfx_chrdev_open+0x10/0x10
[  268.102041][ T7927]  vfs_open+0x82/0x3f0
[  268.102057][ T7927]  path_openat+0x1de4/0x2cb0
[  268.102082][ T7927]  ? __pfx_path_openat+0x10/0x10
[  268.102102][ T7927]  ? __lock_acquire+0xb8a/0x1c90
[  268.102121][ T7927]  do_filp_open+0x20b/0x470
[  268.102139][ T7927]  ? __pfx_do_filp_open+0x10/0x10
[  268.102171][ T7927]  ? alloc_fd+0x471/0x7d0
[  268.102194][ T7927]  do_sys_openat2+0x11b/0x1d0
[  268.102208][ T7927]  ? __pfx_do_sys_openat2+0x10/0x10
[  268.102230][ T7927]  __x64_sys_openat+0x174/0x210
[  268.102245][ T7927]  ? __pfx___x64_sys_openat+0x10/0x10
[  268.102268][ T7927]  do_syscall_64+0xcd/0x490
[  268.102290][ T7927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.102304][ T7927] RIP: 0033:0x7f986bf8e929
[  268.102316][ T7927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.102328][ T7927] RSP: 002b:00007f986ce51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  268.102341][ T7927] RAX: ffffffffffffffda RBX: 00007f986c1b6080 RCX: 00007f986bf8e929
[  268.102350][ T7927] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c
[  268.102359][ T7927] RBP: 00007f986c010b39 R08: 0000000000000000 R09: 0000000000000000
[  268.102367][ T7927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  268.102375][ T7927] R13: 0000000000000000 R14: 00007f986c1b6080 R15: 00007fffe8367cc8
[  268.102401][ T7927]  </TASK>
[  270.571326][ T7956] FAULT_INJECTION: forcing a failure.
[  270.571326][ T7956] name failslab, interval 1, probability 0, space 0, times 0
[  270.653180][ T7956] CPU: 0 UID: 0 PID: 7956 Comm: syz.3.350 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  270.653204][ T7956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  270.653212][ T7956] Call Trace:
[  270.653221][ T7956]  <TASK>
[  270.653226][ T7956]  dump_stack_lvl+0x16c/0x1f0
[  270.653252][ T7956]  should_fail_ex+0x512/0x640
[  270.653270][ T7956]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  270.653290][ T7956]  should_failslab+0xc2/0x120
[  270.653305][ T7956]  __kmalloc_cache_noprof+0x6a/0x3e0
[  270.653321][ T7956]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  270.653342][ T7956]  ? vicodec_open+0xe4/0xf90
[  270.653362][ T7956]  vicodec_open+0xe4/0xf90
[  270.653382][ T7956]  v4l2_open+0x222/0x490
[  270.653400][ T7956]  ? __pfx_v4l2_open+0x10/0x10
[  270.653416][ T7956]  chrdev_open+0x231/0x6a0
[  270.653436][ T7956]  ? __pfx_apparmor_file_open+0x10/0x10
[  270.653453][ T7956]  ? __pfx_chrdev_open+0x10/0x10
[  270.653473][ T7956]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  270.653494][ T7956]  do_dentry_open+0x744/0x1c10
[  270.653513][ T7956]  ? __pfx_chrdev_open+0x10/0x10
[  270.653536][ T7956]  vfs_open+0x82/0x3f0
[  270.653552][ T7956]  path_openat+0x1de4/0x2cb0
[  270.653577][ T7956]  ? __pfx_path_openat+0x10/0x10
[  270.653596][ T7956]  ? __lock_acquire+0xb8a/0x1c90
[  270.653616][ T7956]  do_filp_open+0x20b/0x470
[  270.653634][ T7956]  ? __pfx_do_filp_open+0x10/0x10
[  270.653666][ T7956]  ? alloc_fd+0x471/0x7d0
[  270.653688][ T7956]  do_sys_openat2+0x11b/0x1d0
[  270.653702][ T7956]  ? __pfx_do_sys_openat2+0x10/0x10
[  270.653724][ T7956]  __x64_sys_openat+0x174/0x210
[  270.653739][ T7956]  ? __pfx___x64_sys_openat+0x10/0x10
[  270.653761][ T7956]  do_syscall_64+0xcd/0x490
[  270.653783][ T7956]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.653796][ T7956] RIP: 0033:0x7f981558e929
[  270.653809][ T7956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  270.653821][ T7956] RSP: 002b:00007f98164c4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  270.653834][ T7956] RAX: ffffffffffffffda RBX: 00007f98157b5fa0 RCX: 00007f981558e929
[  270.653843][ T7956] RDX: 00000000000c4400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  270.653851][ T7956] RBP: 00007f9815610b39 R08: 0000000000000000 R09: 0000000000000000
[  270.653859][ T7956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  270.653866][ T7956] R13: 0000000000000000 R14: 00007f98157b5fa0 R15: 00007ffe569fd5f8
[  270.653884][ T7956]  </TASK>
[  271.378728][ T7962] can0: slcan on pty117.
[  271.496417][ T7965] netlink: zone id is out of range
[  271.514001][ T7965] netlink: zone id is out of range
[  271.538888][ T7965] netlink: zone id is out of range
[  271.558865][ T7965] netlink: zone id is out of range
[  271.563995][ T7965] netlink: zone id is out of range
[  271.595181][ T7965] netlink: zone id is out of range
[  271.626036][ T7965] netlink: zone id is out of range
[  271.646571][ T7968] netlink: 'syz.3.352': attribute type 1 has an invalid length.
[  271.676888][ T7965] netlink: zone id is out of range
[  271.695118][ T7965] netlink: zone id is out of range
[  271.740528][ T7965] netlink: zone id is out of range
[  272.122736][ T7960] can0 (unregistered): slcan off pty117.
[  272.465523][ T7976] random: crng reseeded on system resumption
[  272.952811][ T7982] block nbd7: not configured, cannot reconfigure
[  274.598452][ T8001] usbip-vudc usbip-vudc.0: gadget not bound
[  274.616760][ T7997] netlink: 354 bytes leftover after parsing attributes in process `syz.2.359'.
[  277.900094][ T8043] netlink: 354 bytes leftover after parsing attributes in process `syz.2.374'.
[  278.841565][ T8065] FAULT_INJECTION: forcing a failure.
[  278.841565][ T8065] name fail_futex, interval 1, probability 0, space 0, times 0
[  278.906031][ T8065] CPU: 0 UID: 0 PID: 8065 Comm: syz.2.384 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  278.906053][ T8065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  278.906062][ T8065] Call Trace:
[  278.906067][ T8065]  <TASK>
[  278.906072][ T8065]  dump_stack_lvl+0x16c/0x1f0
[  278.906098][ T8065]  should_fail_ex+0x512/0x640
[  278.906121][ T8065]  get_futex_key+0x1d0/0x1540
[  278.906139][ T8065]  ? __pfx_get_futex_key+0x10/0x10
[  278.906162][ T8065]  futex_wake+0xea/0x530
[  278.906182][ T8065]  ? __pfx_futex_wake+0x10/0x10
[  278.906202][ T8065]  ? find_held_lock+0x2b/0x80
[  278.906215][ T8065]  ? __might_fault+0xe3/0x190
[  278.906233][ T8065]  ? __might_fault+0xe3/0x190
[  278.906258][ T8065]  ? __might_fault+0x13b/0x190
[  278.906279][ T8065]  do_futex+0x1e3/0x350
[  278.906295][ T8065]  ? __pfx_do_futex+0x10/0x10
[  278.906313][ T8065]  ? __do_sys_capget+0x109/0x540
[  278.906330][ T8065]  __x64_sys_futex+0x1e0/0x4c0
[  278.906347][ T8065]  ? __x64_sys_openat+0x174/0x210
[  278.906363][ T8065]  ? __pfx___x64_sys_futex+0x10/0x10
[  278.906386][ T8065]  do_syscall_64+0xcd/0x490
[  278.906407][ T8065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.906421][ T8065] RIP: 0033:0x7f0287d8e929
[  278.906432][ T8065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  278.906444][ T8065] RSP: 002b:00007f0288c660e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  278.906457][ T8065] RAX: ffffffffffffffda RBX: 00007f0287fb5fa8 RCX: 00007f0287d8e929
[  278.906466][ T8065] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0287fb5fac
[  278.906474][ T8065] RBP: 00007f0287fb5fa0 R08: 00007f0288c67000 R09: 0000000000000000
[  278.906482][ T8065] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0287fb5fac
[  278.906490][ T8065] R13: 0000000000000000 R14: 00007ffc865cc680 R15: 00007ffc865cc768
[  278.906507][ T8065]  </TASK>
[  279.171215][ T8065] netlink: 12 bytes leftover after parsing attributes in process `syz.2.384'.
[  279.183975][ T8065] HfR: entered promiscuous mode
[  279.328111][ T8073] netlink: 354 bytes leftover after parsing attributes in process `syz.0.386'.
[  280.567483][ T8085] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input17
[  281.112886][ T8094] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18
[  281.682686][ T8092] Console: switching to colour VGA+ 80x25
[  282.272276][ T8114] netlink: 354 bytes leftover after parsing attributes in process `syz.3.397'.
[  283.520629][ T8150] netlink: 354 bytes leftover after parsing attributes in process `syz.2.411'.
[  283.914769][ T8162] sd 0:0:1:0: PR command failed: 1026
[  283.945445][ T8162] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  283.986057][ T8162] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  284.348225][ T6790] Bluetooth: hci5: unexpected event 0x3e length: 508 > 260
[  284.348249][ T6790] Bluetooth: hci5: unexpected subevent 0x02 length: 507 > 260
[  284.363866][ T6790] Bluetooth: hci5: Dropping invalid advertising data
[  284.372303][ T6790] Bluetooth: hci5: unknown advertising packet type: 0xe9
[  284.372330][ T6790] Bluetooth: hci5: Dropping invalid advertising data
[  284.386117][ T6790] Bluetooth: hci5: Malformed LE Event: 0x02
[  284.891438][ T8179] netlink: 354 bytes leftover after parsing attributes in process `syz.0.423'.
[  285.204983][   T30] audit: type=1800 audit(6046008445.340:3): pid=8191 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=31853 res=0 errno=0
[  286.169316][ T8212] netlink: 354 bytes leftover after parsing attributes in process `syz.5.436'.
[  286.722510][ T8234] netlink: 338 bytes leftover after parsing attributes in process `syz.5.443'.
[  288.347489][ T8276] netlink: 354 bytes leftover after parsing attributes in process `syz.2.459'.
[  288.376821][ T8271] usb usb38: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  288.418810][ T8271] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  288.872301][ T8290] FAULT_INJECTION: forcing a failure.
[  288.872301][ T8290] name failslab, interval 1, probability 0, space 0, times 0
[  288.994268][ T8290] CPU: 0 UID: 0 PID: 8290 Comm: syz.3.463 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  288.994290][ T8290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  288.994299][ T8290] Call Trace:
[  288.994305][ T8290]  <TASK>
[  288.994311][ T8290]  dump_stack_lvl+0x16c/0x1f0
[  288.994336][ T8290]  should_fail_ex+0x512/0x640
[  288.994356][ T8290]  ? __kmalloc_noprof+0xbf/0x510
[  288.994377][ T8290]  ? __register_sysctl_table+0xb3/0x1900
[  288.994398][ T8290]  should_failslab+0xc2/0x120
[  288.994411][ T8290]  __kmalloc_noprof+0xd2/0x510
[  288.994443][ T8290]  __register_sysctl_table+0xb3/0x1900
[  288.994467][ T8290]  ? is_module_address+0x5f/0xf0
[  288.994489][ T8290]  ? __pfx___register_sysctl_table+0x10/0x10
[  288.994509][ T8290]  ? is_module_address+0x69/0xf0
[  288.994527][ T8290]  ? register_net_sysctl_sz+0x228/0x3e0
[  288.994546][ T8290]  nf_ct_net_init+0x249/0x370
[  288.994566][ T8290]  ? __pfx_nf_ct_net_init+0x10/0x10
[  288.994584][ T8290]  ops_init+0x1df/0x5f0
[  288.994599][ T8290]  setup_net+0x1ff/0x510
[  288.994611][ T8290]  ? lockdep_init_map_type+0x5c/0x280
[  288.994629][ T8290]  ? __pfx_setup_net+0x10/0x10
[  288.994643][ T8290]  ? debug_mutex_init+0x37/0x70
[  288.994658][ T8290]  copy_net_ns+0x2a6/0x5f0
[  288.994673][ T8290]  create_new_namespaces+0x3ea/0xa90
[  288.994692][ T8290]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  288.994708][ T8290]  ksys_unshare+0x45b/0xa40
[  288.994726][ T8290]  ? __pfx_ksys_unshare+0x10/0x10
[  288.994743][ T8290]  ? xfd_validate_state+0x61/0x180
[  288.994765][ T8290]  __x64_sys_unshare+0x31/0x40
[  288.994782][ T8290]  do_syscall_64+0xcd/0x490
[  288.994803][ T8290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.994817][ T8290] RIP: 0033:0x7f981558e929
[  288.994829][ T8290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.994842][ T8290] RSP: 002b:00007f98164c4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  288.994855][ T8290] RAX: ffffffffffffffda RBX: 00007f98157b5fa0 RCX: 00007f981558e929
[  288.994863][ T8290] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  288.994872][ T8290] RBP: 00007f9815610b39 R08: 0000000000000000 R09: 0000000000000000
[  288.994880][ T8290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  288.994888][ T8290] R13: 0000000000000000 R14: 00007f98157b5fa0 R15: 00007ffe569fd5f8
[  288.994907][ T8290]  </TASK>
[  290.299468][ T8319] random: crng reseeded on system resumption
[  290.357701][ T8319] FAULT_INJECTION: forcing a failure.
[  290.357701][ T8319] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  290.427508][ T8319] CPU: 0 UID: 0 PID: 8319 Comm: syz.2.473 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  290.427531][ T8319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  290.427539][ T8319] Call Trace:
[  290.427544][ T8319]  <TASK>
[  290.427550][ T8319]  dump_stack_lvl+0x16c/0x1f0
[  290.427575][ T8319]  should_fail_ex+0x512/0x640
[  290.427597][ T8319]  should_fail_alloc_page+0xe7/0x130
[  290.427612][ T8319]  prepare_alloc_pages+0x3c2/0x610
[  290.427629][ T8319]  ? rcu_is_watching+0x12/0xc0
[  290.427645][ T8319]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  290.427670][ T8319]  ? stack_trace_save+0x8e/0xc0
[  290.427684][ T8319]  ? __pfx_stack_trace_save+0x10/0x10
[  290.427699][ T8319]  ? stack_depot_save_flags+0x28/0xa40
[  290.427720][ T8319]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  290.427742][ T8319]  ? kasan_save_stack+0x42/0x60
[  290.427760][ T8319]  ? kasan_save_stack+0x33/0x60
[  290.427780][ T8319]  ? do_dentry_open+0x744/0x1c10
[  290.427798][ T8319]  ? vfs_open+0x82/0x3f0
[  290.427810][ T8319]  ? path_openat+0x1de4/0x2cb0
[  290.427826][ T8319]  ? do_filp_open+0x20b/0x470
[  290.427843][ T8319]  ? do_sys_openat2+0x11b/0x1d0
[  290.427855][ T8319]  ? __x64_sys_openat+0x174/0x210
[  290.427869][ T8319]  ? do_syscall_64+0xcd/0x490
[  290.427887][ T8319]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.427902][ T8319]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  290.427921][ T8319]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  290.427941][ T8319]  ? policy_nodemask+0xea/0x4e0
[  290.427955][ T8319]  alloc_pages_mpol+0x1fb/0x550
[  290.427969][ T8319]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  290.427995][ T8319]  alloc_pages_noprof+0x131/0x390
[  290.428010][ T8319]  get_zeroed_page_noprof+0x18/0xb0
[  290.428026][ T8319]  get_image_page+0x18/0x190
[  290.428041][ T8319]  alloc_rtree_node+0x3c/0xb0
[  290.428054][ T8319]  memory_bm_create+0x519/0x810
[  290.428077][ T8319]  create_basic_memory_bitmaps+0x10b/0x320
[  290.428095][ T8319]  snapshot_open+0x235/0x2b0
[  290.428111][ T8319]  ? __pfx_snapshot_open+0x10/0x10
[  290.428127][ T8319]  misc_open+0x35d/0x420
[  290.428144][ T8319]  ? __pfx_misc_open+0x10/0x10
[  290.428159][ T8319]  chrdev_open+0x231/0x6a0
[  290.428179][ T8319]  ? __pfx_apparmor_file_open+0x10/0x10
[  290.428196][ T8319]  ? __pfx_chrdev_open+0x10/0x10
[  290.428217][ T8319]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  290.428238][ T8319]  do_dentry_open+0x744/0x1c10
[  290.428258][ T8319]  ? __pfx_chrdev_open+0x10/0x10
[  290.428287][ T8319]  vfs_open+0x82/0x3f0
[  290.428304][ T8319]  path_openat+0x1de4/0x2cb0
[  290.428330][ T8319]  ? __pfx_path_openat+0x10/0x10
[  290.428350][ T8319]  ? __lock_acquire+0xb8a/0x1c90
[  290.428369][ T8319]  do_filp_open+0x20b/0x470
[  290.428392][ T8319]  ? __pfx_do_filp_open+0x10/0x10
[  290.428424][ T8319]  ? alloc_fd+0x471/0x7d0
[  290.428446][ T8319]  do_sys_openat2+0x11b/0x1d0
[  290.428460][ T8319]  ? __pfx_do_sys_openat2+0x10/0x10
[  290.428488][ T8319]  __x64_sys_openat+0x174/0x210
[  290.428504][ T8319]  ? __pfx___x64_sys_openat+0x10/0x10
[  290.428527][ T8319]  do_syscall_64+0xcd/0x490
[  290.428549][ T8319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.428563][ T8319] RIP: 0033:0x7f0287d8e929
[  290.428575][ T8319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  290.428588][ T8319] RSP: 002b:00007f0288c66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  290.428602][ T8319] RAX: ffffffffffffffda RBX: 00007f0287fb5fa0 RCX: 00007f0287d8e929
[  290.428611][ T8319] RDX: 0000000000184b01 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  290.428619][ T8319] RBP: 00007f0287e10b39 R08: 0000000000000000 R09: 0000000000000000
[  290.428627][ T8319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  290.428635][ T8319] R13: 0000000000000000 R14: 00007f0287fb5fa0 R15: 00007ffc865cc768
[  290.428653][ T8319]  </TASK>
[  291.666929][ T6790] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  291.666954][ T6790] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  291.682992][ T6790] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  291.683023][ T6790] Bluetooth: hci1: Unknown advertising packet type: 0x5a
[  291.693330][ T6790] Bluetooth: hci1: Malformed LE Event: 0x0d
[  292.296774][ T8355] netlink: 354 bytes leftover after parsing attributes in process `syz.2.485'.
[  294.464865][ T8386] netlink: 28 bytes leftover after parsing attributes in process `syz.0.496'.
[  294.506183][ T8386] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  294.532643][ T8386] batman_adv: batadv0: Removing interface: batadv_slave_0
[  294.581276][ T8386] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  294.611124][ T8386] batman_adv: batadv0: Removing interface: batadv_slave_1
[  295.633121][ T8407] netlink: 354 bytes leftover after parsing attributes in process `syz.2.505'.
[  296.634677][ T8417] net_ratelimit: 21 callbacks suppressed
[  296.634690][ T8417] netlink: zone id is out of range
[  296.694162][ T8417] netlink: zone id is out of range
[  296.717711][ T8423] netlink: 'syz.2.509': attribute type 1 has an invalid length.
[  296.757329][ T8417] netlink: zone id is out of range
[  296.778092][ T8417] netlink: zone id is out of range
[  296.795233][ T8417] netlink: zone id is out of range
[  296.814881][ T8417] netlink: zone id is out of range
[  296.828091][ T8417] netlink: zone id is out of range
[  296.854762][ T8417] netlink: zone id is out of range
[  296.882141][ T8417] netlink: zone id is out of range
[  296.899153][ T8417] netlink: zone id is out of range
[  297.806324][ T8434] zswap: compressor 000 not available
[  300.331503][ T8452] FAULT_INJECTION: forcing a failure.
[  300.331503][ T8452] name failslab, interval 1, probability 0, space 0, times 0
[  300.408572][ T8452] CPU: 0 UID: 0 PID: 8452 Comm: syz.3.514 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  300.408599][ T8452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  300.408608][ T8452] Call Trace:
[  300.408613][ T8452]  <TASK>
[  300.408620][ T8452]  dump_stack_lvl+0x16c/0x1f0
[  300.408644][ T8452]  should_fail_ex+0x512/0x640
[  300.408663][ T8452]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  300.408684][ T8452]  should_failslab+0xc2/0x120
[  300.408698][ T8452]  __kmalloc_cache_noprof+0x6a/0x3e0
[  300.408715][ T8452]  ? open_substream+0xec/0x9b0
[  300.408730][ T8452]  ? _raw_spin_unlock_irq+0x23/0x50
[  300.408750][ T8452]  open_substream+0xec/0x9b0
[  300.408767][ T8452]  rawmidi_open_priv+0x543/0x6e0
[  300.408786][ T8452]  snd_rawmidi_open+0x4cc/0xbf0
[  300.408807][ T8452]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  300.408825][ T8452]  ? __pfx_default_wake_function+0x10/0x10
[  300.408841][ T8452]  ? kobject_get_unless_zero+0x156/0x1e0
[  300.408856][ T8452]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  300.408875][ T8452]  snd_open+0x201/0x450
[  300.408890][ T8452]  ? __pfx_snd_open+0x10/0x10
[  300.408902][ T8452]  chrdev_open+0x231/0x6a0
[  300.409010][ T8452]  ? __pfx_apparmor_file_open+0x10/0x10
[  300.409030][ T8452]  ? __pfx_chrdev_open+0x10/0x10
[  300.409052][ T8452]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  300.409075][ T8452]  do_dentry_open+0x744/0x1c10
[  300.409095][ T8452]  ? __pfx_chrdev_open+0x10/0x10
[  300.409119][ T8452]  vfs_open+0x82/0x3f0
[  300.409135][ T8452]  path_openat+0x1de4/0x2cb0
[  300.409160][ T8452]  ? __pfx_path_openat+0x10/0x10
[  300.409179][ T8452]  ? __lock_acquire+0xb8a/0x1c90
[  300.409199][ T8452]  do_filp_open+0x20b/0x470
[  300.409218][ T8452]  ? __pfx_do_filp_open+0x10/0x10
[  300.409250][ T8452]  ? alloc_fd+0x471/0x7d0
[  300.409273][ T8452]  do_sys_openat2+0x11b/0x1d0
[  300.409287][ T8452]  ? __pfx_do_sys_openat2+0x10/0x10
[  300.409309][ T8452]  __x64_sys_openat+0x174/0x210
[  300.409325][ T8452]  ? __pfx___x64_sys_openat+0x10/0x10
[  300.409347][ T8452]  do_syscall_64+0xcd/0x490
[  300.409369][ T8452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.409383][ T8452] RIP: 0033:0x7f981558e929
[  300.409397][ T8452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  300.409409][ T8452] RSP: 002b:00007f98164c4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  300.409423][ T8452] RAX: ffffffffffffffda RBX: 00007f98157b5fa0 RCX: 00007f981558e929
[  300.409432][ T8452] RDX: 0000000000080102 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  300.409441][ T8452] RBP: 00007f9815610b39 R08: 0000000000000000 R09: 0000000000000000
[  300.409449][ T8452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  300.409457][ T8452] R13: 0000000000000000 R14: 00007f98157b5fa0 R15: 00007ffe569fd5f8
[  300.409476][ T8452]  </TASK>
[  300.745514][ T8456] netlink: 8 bytes leftover after parsing attributes in process `syz.0.518'.
[  300.865761][ T8459] netlink: 4 bytes leftover after parsing attributes in process `syz.2.519'.
[  300.876083][ T8459] netlink: 25 bytes leftover after parsing attributes in process `syz.2.519'.
[  301.606093][ T8479] netlink: 354 bytes leftover after parsing attributes in process `syz.3.527'.
[  302.452349][ T8490] netlink: 'syz.3.530': attribute type 1 has an invalid length.
[  302.828847][ T8500] FAULT_INJECTION: forcing a failure.
[  302.828847][ T8500] name failslab, interval 1, probability 0, space 0, times 0
[  302.873827][ T8500] CPU: 0 UID: 0 PID: 8500 Comm: syz.3.535 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  302.873849][ T8500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  302.873858][ T8500] Call Trace:
[  302.873863][ T8500]  <TASK>
[  302.873869][ T8500]  dump_stack_lvl+0x16c/0x1f0
[  302.873894][ T8500]  should_fail_ex+0x512/0x640
[  302.873914][ T8500]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  302.873933][ T8500]  should_failslab+0xc2/0x120
[  302.873947][ T8500]  __kmalloc_cache_noprof+0x6a/0x3e0
[  302.873964][ T8500]  ? mqueue_init_fs_context+0x4b/0x480
[  302.873980][ T8500]  ? __pfx_mqueue_init_fs_context+0x10/0x10
[  302.873993][ T8500]  mqueue_init_fs_context+0x4b/0x480
[  302.874005][ T8500]  ? __pfx_mqueue_init_fs_context+0x10/0x10
[  302.874020][ T8500]  alloc_fs_context+0x54a/0x9c0
[  302.874043][ T8500]  mq_init_ns+0x172/0x620
[  302.874059][ T8500]  copy_ipcs+0x383/0x610
[  302.874072][ T8500]  ? copy_utsname+0xab/0x470
[  302.874091][ T8500]  create_new_namespaces+0x20a/0xa90
[  302.874106][ T8500]  ? security_capable+0x7e/0x260
[  302.874129][ T8500]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  302.874145][ T8500]  ksys_unshare+0x45b/0xa40
[  302.874162][ T8500]  ? __pfx_ksys_unshare+0x10/0x10
[  302.874180][ T8500]  ? xfd_validate_state+0x61/0x180
[  302.874202][ T8500]  __x64_sys_unshare+0x31/0x40
[  302.874218][ T8500]  do_syscall_64+0xcd/0x490
[  302.874239][ T8500]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.874253][ T8500] RIP: 0033:0x7f981558e929
[  302.874265][ T8500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  302.874277][ T8500] RSP: 002b:00007f98164c4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  302.874290][ T8500] RAX: ffffffffffffffda RBX: 00007f98157b5fa0 RCX: 00007f981558e929
[  302.874299][ T8500] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000000
[  302.874307][ T8500] RBP: 00007f9815610b39 R08: 0000000000000000 R09: 0000000000000000
[  302.874315][ T8500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  302.874322][ T8500] R13: 0000000000000000 R14: 00007f98157b5fa0 R15: 00007ffe569fd5f8
[  302.874339][ T8500]  </TASK>
[  303.112617][ T8502] netlink: 8 bytes leftover after parsing attributes in process `syz.0.536'.
[  303.539746][ T8516] netlink: 'syz.0.542': attribute type 1 has an invalid length.
[  304.276714][ T8526] netlink: 334 bytes leftover after parsing attributes in process `syz.3.544'.
[  305.274370][ T8542] netlink: 326 bytes leftover after parsing attributes in process `syz.2.550'.
[  305.428998][ T8544] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  305.975851][ T7160] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  305.990971][ T7160] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  306.000945][ T7160] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  306.010258][ T7160] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  306.027769][ T7160] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  306.401994][ T8569] netlink: 354 bytes leftover after parsing attributes in process `syz.2.559'.
[  306.442022][ T8570] netlink: 10 bytes leftover after parsing attributes in process `syz.0.558'.
[  306.789597][ T8557] chnl_net:caif_netlink_parms(): no params data found
[  307.104634][ T8557] bridge0: port 1(bridge_slave_0) entered blocking state
[  307.130097][ T8557] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.165126][ T8557] bridge_slave_0: entered allmulticast mode
[  307.216663][ T8557] bridge_slave_0: entered promiscuous mode
[  307.247032][ T8557] bridge0: port 2(bridge_slave_1) entered blocking state
[  307.285889][ T8557] bridge0: port 2(bridge_slave_1) entered disabled state
[  307.313037][ T8557] bridge_slave_1: entered allmulticast mode
[  307.340512][ T8557] bridge_slave_1: entered promiscuous mode
[  307.459315][ T8557] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  307.487826][ T8557] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  307.630770][ T8557] team0: Port device team_slave_0 added
[  307.667502][ T8557] team0: Port device team_slave_1 added
[  307.945460][ T8557] batman_adv: batadv0: Adding interface: batadv_slave_0
[  307.983703][ T8557] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  308.023984][ T8594] FAULT_INJECTION: forcing a failure.
[  308.023984][ T8594] name failslab, interval 1, probability 0, space 0, times 0
[  308.088272][ T7160] Bluetooth: hci6: command tx timeout
[  308.101814][ T8594] CPU: 0 UID: 0 PID: 8594 Comm: syz.2.566 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  308.101836][ T8594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  308.101856][ T8594] Call Trace:
[  308.101861][ T8594]  <TASK>
[  308.101867][ T8594]  dump_stack_lvl+0x16c/0x1f0
[  308.101893][ T8594]  should_fail_ex+0x512/0x640
[  308.101912][ T8594]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  308.101933][ T8594]  should_failslab+0xc2/0x120
[  308.101946][ T8594]  __kmalloc_cache_noprof+0x6a/0x3e0
[  308.101964][ T8594]  ? ptp_open+0xe3/0x520
[  308.101982][ T8594]  ptp_open+0xe3/0x520
[  308.102000][ T8594]  ? __pfx_ptp_open+0x10/0x10
[  308.102021][ T8594]  ? __pfx_ptp_open+0x10/0x10
[  308.102036][ T8594]  posix_clock_open+0x17b/0x290
[  308.102053][ T8594]  ? __pfx_posix_clock_open+0x10/0x10
[  308.102067][ T8594]  chrdev_open+0x231/0x6a0
[  308.102086][ T8594]  ? __pfx_apparmor_file_open+0x10/0x10
[  308.102103][ T8594]  ? __pfx_chrdev_open+0x10/0x10
[  308.102134][ T8594]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  308.102156][ T8594]  do_dentry_open+0x744/0x1c10
[  308.102177][ T8594]  ? __pfx_chrdev_open+0x10/0x10
[  308.102201][ T8594]  vfs_open+0x82/0x3f0
[  308.102218][ T8594]  path_openat+0x1de4/0x2cb0
[  308.102243][ T8594]  ? __pfx_path_openat+0x10/0x10
[  308.102262][ T8594]  ? __lock_acquire+0xb8a/0x1c90
[  308.102281][ T8594]  do_filp_open+0x20b/0x470
[  308.102300][ T8594]  ? __pfx_do_filp_open+0x10/0x10
[  308.102332][ T8594]  ? alloc_fd+0x471/0x7d0
[  308.102354][ T8594]  do_sys_openat2+0x11b/0x1d0
[  308.102368][ T8594]  ? __pfx_do_sys_openat2+0x10/0x10
[  308.102391][ T8594]  __x64_sys_openat+0x174/0x210
[  308.102405][ T8594]  ? __pfx___x64_sys_openat+0x10/0x10
[  308.102428][ T8594]  do_syscall_64+0xcd/0x490
[  308.102449][ T8594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.102463][ T8594] RIP: 0033:0x7f0287d8e929
[  308.102474][ T8594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  308.102487][ T8594] RSP: 002b:00007f0288c66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  308.102500][ T8594] RAX: ffffffffffffffda RBX: 00007f0287fb5fa0 RCX: 00007f0287d8e929
[  308.102509][ T8594] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c
[  308.102518][ T8594] RBP: 00007f0287e10b39 R08: 0000000000000000 R09: 0000000000000000
[  308.102526][ T8594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  308.102534][ T8594] R13: 0000000000000000 R14: 00007f0287fb5fa0 R15: 00007ffc865cc768
[  308.102552][ T8594]  </TASK>
[  308.494356][ T8557] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  308.661989][ T8557] batman_adv: batadv0: Adding interface: batadv_slave_1
[  308.669614][ T8557] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  308.712678][ T8604] net_ratelimit: 21 callbacks suppressed
[  308.712692][ T8604] netlink: zone id is out of range
[  308.724897][ T8604] netlink: zone id is out of range
[  308.730114][ T8557] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  308.741114][ T8604] netlink: zone id is out of range
[  308.746218][ T8604] netlink: zone id is out of range
[  308.751860][ T8604] netlink: zone id is out of range
[  308.756959][ T8604] netlink: zone id is out of range
[  308.790308][ T8604] netlink: zone id is out of range
[  308.795444][ T8604] netlink: zone id is out of range
[  308.804808][ T8604] netlink: zone id is out of range
[  308.812208][ T8604] netlink: zone id is out of range
[  308.847556][ T8604] netlink: 'syz.3.571': attribute type 1 has an invalid length.
[  309.043640][ T8557] hsr_slave_0: entered promiscuous mode
[  309.070541][ T8557] hsr_slave_1: entered promiscuous mode
[  309.096069][ T8557] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  309.113929][ T8557] Cannot create hsr debugfs directory
[  309.868003][ T8557] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  309.946208][ T8557] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  310.003453][ T8557] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  310.117792][ T8557] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  310.161523][ T7160] Bluetooth: hci6: command tx timeout
[  310.195801][ T8630] FAULT_INJECTION: forcing a failure.
[  310.195801][ T8630] name failslab, interval 1, probability 0, space 0, times 0
[  310.253828][ T8630] CPU: 0 UID: 0 PID: 8630 Comm: syz.3.576 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  310.253851][ T8630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  310.253859][ T8630] Call Trace:
[  310.253864][ T8630]  <TASK>
[  310.253870][ T8630]  dump_stack_lvl+0x16c/0x1f0
[  310.253896][ T8630]  should_fail_ex+0x512/0x640
[  310.253921][ T8630]  ? __kvmalloc_node_noprof+0x124/0x620
[  310.253944][ T8630]  should_failslab+0xc2/0x120
[  310.253958][ T8630]  __kvmalloc_node_noprof+0x137/0x620
[  310.253977][ T8630]  ? __pfx___mutex_lock+0x10/0x10
[  310.253997][ T8630]  ? traverse.part.0.constprop.0+0x392/0x640
[  310.254018][ T8630]  ? traverse.part.0.constprop.0+0x392/0x640
[  310.254033][ T8630]  traverse.part.0.constprop.0+0x392/0x640
[  310.254056][ T8630]  seq_read_iter+0x932/0x12c0
[  310.254073][ T8630]  ? aa_file_perm+0x4d6/0xfb0
[  310.254096][ T8630]  seq_read+0x39e/0x4e0
[  310.254112][ T8630]  ? __pfx_seq_read+0x10/0x10
[  310.254139][ T8630]  ? __pfx_seq_read+0x10/0x10
[  310.254154][ T8630]  proc_reg_read+0x23d/0x330
[  310.254173][ T8630]  ? __pfx_proc_reg_read+0x10/0x10
[  310.254192][ T8630]  vfs_read+0x1e4/0xc60
[  310.254214][ T8630]  ? __pfx_vfs_read+0x10/0x10
[  310.254230][ T8630]  ? find_held_lock+0x2b/0x80
[  310.254244][ T8630]  ? __fget_files+0x204/0x3c0
[  310.254265][ T8630]  ? __fget_files+0x20e/0x3c0
[  310.254287][ T8630]  __x64_sys_pread64+0x1eb/0x250
[  310.254306][ T8630]  ? __pfx___x64_sys_pread64+0x10/0x10
[  310.254330][ T8630]  do_syscall_64+0xcd/0x490
[  310.254353][ T8630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.254367][ T8630] RIP: 0033:0x7f981558e929
[  310.254379][ T8630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.254392][ T8630] RSP: 002b:00007f98164c4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  310.254405][ T8630] RAX: ffffffffffffffda RBX: 00007f98157b5fa0 RCX: 00007f981558e929
[  310.254414][ T8630] RDX: 0000200000000009 RSI: 0000000000000000 RDI: 0000000000000003
[  310.254422][ T8630] RBP: 00007f9815610b39 R08: 0000000000000000 R09: 0000000000000000
[  310.254430][ T8630] R10: 00000000000000fc R11: 0000000000000246 R12: 0000000000000000
[  310.254438][ T8630] R13: 0000000000000000 R14: 00007f98157b5fa0 R15: 00007ffe569fd5f8
[  310.254456][ T8630]  </TASK>
[  310.485088][    C0] vkms_vblank_simulate: vblank timer overrun
[  310.531558][ T8557] 8021q: adding VLAN 0 to HW filter on device bond0
[  310.546672][ T8557] 8021q: adding VLAN 0 to HW filter on device team0
[  310.579472][ T8557] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  310.590707][ T8557] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  310.835671][ T6763] bridge0: port 1(bridge_slave_0) entered blocking state
[  310.842884][ T6763] bridge0: port 1(bridge_slave_0) entered forwarding state
[  310.855152][ T6763] bridge0: port 2(bridge_slave_1) entered blocking state
[  310.862335][ T6763] bridge0: port 2(bridge_slave_1) entered forwarding state
[  311.463033][ T8557] 8021q: adding VLAN 0 to HW filter on device batadv0
[  312.239022][ T7160] Bluetooth: hci6: command tx timeout
[  312.485263][ T8557] veth0_vlan: entered promiscuous mode
[  312.561031][ T8557] veth1_vlan: entered promiscuous mode
[  312.746756][ T8557] veth0_macvtap: entered promiscuous mode
[  312.819298][ T8557] veth1_macvtap: entered promiscuous mode
[  312.925630][ T8557] batman_adv: batadv0: Interface activated: batadv_slave_0
[  313.010120][ T8557] batman_adv: batadv0: Interface activated: batadv_slave_1
[  313.089902][ T8557] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  313.157458][ T8557] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  313.216445][ T8557] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  313.281104][ T8557] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  313.763469][ T6801] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  313.816300][ T6801] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  313.930334][ T6763] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  313.973644][ T6763] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  314.013569][ T8676] net_ratelimit: 21 callbacks suppressed
[  314.013584][ T8676] netlink: zone id is out of range
[  314.056488][ T8676] netlink: zone id is out of range
[  314.090245][ T8676] netlink: zone id is out of range
[  314.095402][ T8676] netlink: zone id is out of range
[  314.149893][ T8676] netlink: zone id is out of range
[  314.155055][ T8676] netlink: zone id is out of range
[  314.226505][ T8677] netlink: 'syz.3.583': attribute type 1 has an invalid length.
[  314.276633][ T8676] netlink: zone id is out of range
[  314.319045][ T7160] Bluetooth: hci6: command tx timeout
[  314.333767][ T8682] FAULT_INJECTION: forcing a failure.
[  314.333767][ T8682] name failslab, interval 1, probability 0, space 0, times 0
[  314.368300][ T8676] netlink: zone id is out of range
[  314.408885][ T8682] CPU: 0 UID: 0 PID: 8682 Comm: syz.6.549 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  314.408911][ T8682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  314.408919][ T8682] Call Trace:
[  314.408924][ T8682]  <TASK>
[  314.408930][ T8682]  dump_stack_lvl+0x16c/0x1f0
[  314.408956][ T8682]  should_fail_ex+0x512/0x640
[  314.408976][ T8682]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  314.408997][ T8682]  should_failslab+0xc2/0x120
[  314.409010][ T8682]  __kmalloc_cache_noprof+0x6a/0x3e0
[  314.409028][ T8682]  ? ipv4_mib_init_net+0x263/0x5f0
[  314.409049][ T8682]  ipv4_mib_init_net+0x263/0x5f0
[  314.409066][ T8682]  ? __pfx_igmp_net_init+0x10/0x10
[  314.409085][ T8682]  ? __pfx_ipv4_mib_init_net+0x10/0x10
[  314.409103][ T8682]  ops_init+0x1df/0x5f0
[  314.409119][ T8682]  setup_net+0x1ff/0x510
[  314.409130][ T8682]  ? lockdep_init_map_type+0x5c/0x280
[  314.409149][ T8682]  ? __pfx_setup_net+0x10/0x10
[  314.409163][ T8682]  ? debug_mutex_init+0x37/0x70
[  314.409178][ T8682]  copy_net_ns+0x2a6/0x5f0
[  314.409195][ T8682]  create_new_namespaces+0x3ea/0xa90
[  314.409214][ T8682]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  314.409230][ T8682]  ksys_unshare+0x45b/0xa40
[  314.409248][ T8682]  ? __pfx_ksys_unshare+0x10/0x10
[  314.409265][ T8682]  ? xfd_validate_state+0x61/0x180
[  314.409288][ T8682]  __x64_sys_unshare+0x31/0x40
[  314.409304][ T8682]  do_syscall_64+0xcd/0x490
[  314.409326][ T8682]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.409340][ T8682] RIP: 0033:0x7f320c78e929
[  314.409352][ T8682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  314.409365][ T8682] RSP: 002b:00007f320d535038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  314.409378][ T8682] RAX: ffffffffffffffda RBX: 00007f320c9b5fa0 RCX: 00007f320c78e929
[  314.409387][ T8682] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  314.409395][ T8682] RBP: 00007f320c810b39 R08: 0000000000000000 R09: 0000000000000000
[  314.409403][ T8682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  314.409411][ T8682] R13: 0000000000000000 R14: 00007f320c9b5fa0 R15: 00007ffc5e6f9ae8
[  314.409429][ T8682]  </TASK>
[  314.460387][ T8676] netlink: zone id is out of range
[  314.460410][ T8676] netlink: zone id is out of range
[  316.347657][ T8679] tty tty1: ldisc open failed (-12), clearing slot 0
[  316.369779][ T8677] ttyS ttyS2: ldisc open failed (-12), clearing slot 2
[  316.399806][ T8694] tty tty12: ldisc open failed (-12), clearing slot 11
[  317.123558][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  317.130102][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  317.480277][ T8718] FAULT_INJECTION: forcing a failure.
[  317.480277][ T8718] name failslab, interval 1, probability 0, space 0, times 0
[  317.549606][ T8718] CPU: 0 UID: 0 PID: 8718 Comm: syz.6.593 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  317.549629][ T8718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  317.549637][ T8718] Call Trace:
[  317.549642][ T8718]  <TASK>
[  317.549647][ T8718]  dump_stack_lvl+0x16c/0x1f0
[  317.549673][ T8718]  should_fail_ex+0x512/0x640
[  317.549692][ T8718]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  317.549714][ T8718]  should_failslab+0xc2/0x120
[  317.549728][ T8718]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  317.549746][ T8718]  ? __pfx_acct_collect+0x10/0x10
[  317.549766][ T8718]  ? taskstats_exit+0x654/0xbe0
[  317.549788][ T8718]  taskstats_exit+0x654/0xbe0
[  317.549808][ T8718]  ? __pfx_taskstats_exit+0x10/0x10
[  317.549831][ T8718]  do_exit+0x5d9/0x2bd0
[  317.549853][ T8718]  ? __pfx_do_exit+0x10/0x10
[  317.549869][ T8718]  ? do_raw_spin_lock+0x12c/0x2b0
[  317.549890][ T8718]  ? find_held_lock+0x2b/0x80
[  317.549906][ T8718]  do_group_exit+0xd3/0x2a0
[  317.549924][ T8718]  get_signal+0x2673/0x26d0
[  317.549942][ T8718]  ? lock_acquire+0x179/0x350
[  317.549958][ T8718]  ? find_held_lock+0x2b/0x80
[  317.549973][ T8718]  ? __pfx_get_signal+0x10/0x10
[  317.549986][ T8718]  ? do_futex+0x122/0x350
[  317.550004][ T8718]  ? __pfx_do_futex+0x10/0x10
[  317.550021][ T8718]  arch_do_signal_or_restart+0x8f/0x790
[  317.550039][ T8718]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  317.550059][ T8718]  ? __pfx___do_sys_prctl+0x10/0x10
[  317.550082][ T8718]  exit_to_user_mode_loop+0x84/0x110
[  317.550103][ T8718]  do_syscall_64+0x3f6/0x490
[  317.550126][ T8718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.550140][ T8718] RIP: 0033:0x7f320c78e929
[  317.550158][ T8718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  317.550171][ T8718] RSP: 002b:00007f320d5350e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  317.550184][ T8718] RAX: fffffffffffffe00 RBX: 00007f320c9b5fa8 RCX: 00007f320c78e929
[  317.550194][ T8718] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f320c9b5fa8
[  317.550202][ T8718] RBP: 00007f320c9b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  317.550210][ T8718] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f320c9b5fac
[  317.550218][ T8718] R13: 0000000000000000 R14: 00007ffc5e6f9a00 R15: 00007ffc5e6f9ae8
[  317.550235][ T8718]  </TASK>
[  318.040941][ T8720] sp0: Synchronizing with TNC
[  318.574278][ T7160] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  318.574304][ T7160] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  318.606761][ T7160] Bluetooth: hci1: adv larger than maximum supported
[  318.606782][ T7160] Bluetooth: hci1: Unknown advertising packet type: 0x20
[  318.624276][ T7160] Bluetooth: hci1: adv larger than maximum supported
[  318.631895][ T7160] Bluetooth: hci1: Unknown advertising packet type: 0x20
[  318.638857][ T7160] Bluetooth: hci1: Unknown advertising packet type: 0x32
[  319.292555][ T8741] net_ratelimit: 21 callbacks suppressed
[  319.292571][ T8741] netlink: zone id is out of range
[  319.393633][ T8741] netlink: zone id is out of range
[  319.393646][ T8741] netlink: zone id is out of range
[  319.393652][ T8741] netlink: zone id is out of range
[  319.393657][ T8741] netlink: zone id is out of range
[  319.393662][ T8741] netlink: zone id is out of range
[  319.393668][ T8741] netlink: zone id is out of range
[  319.393673][ T8741] netlink: zone id is out of range
[  319.393679][ T8741] netlink: zone id is out of range
[  319.393684][ T8741] netlink: zone id is out of range
[  319.444257][ T8741] netlink: 'syz.2.600': attribute type 1 has an invalid length.
[  320.367438][ T8757] netlink: 'syz.6.604': attribute type 1 has an invalid length.
[  321.766592][ T8781] netlink: 354 bytes leftover after parsing attributes in process `syz.3.610'.
[  322.001275][ T8772] FAULT_INJECTION: forcing a failure.
[  322.001275][ T8772] name failslab, interval 1, probability 0, space 0, times 0
[  322.065260][ T8772] CPU: 0 UID: 0 PID: 8772 Comm: syz.6.608 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  322.065285][ T8772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  322.065294][ T8772] Call Trace:
[  322.065299][ T8772]  <TASK>
[  322.065305][ T8772]  dump_stack_lvl+0x16c/0x1f0
[  322.065330][ T8772]  should_fail_ex+0x512/0x640
[  322.065351][ T8772]  ? __kmalloc_noprof+0xbf/0x510
[  322.065373][ T8772]  ? sk_prot_alloc+0x1a8/0x2a0
[  322.065387][ T8772]  should_failslab+0xc2/0x120
[  322.065401][ T8772]  __kmalloc_noprof+0xd2/0x510
[  322.065420][ T8772]  ? __pfx___mutex_lock+0x10/0x10
[  322.065443][ T8772]  sk_prot_alloc+0x1a8/0x2a0
[  322.065459][ T8772]  sk_alloc+0x36/0xc20
[  322.065478][ T8772]  tun_chr_open+0x80/0x5e0
[  322.065497][ T8772]  ? __pfx_tun_chr_open+0x10/0x10
[  322.065516][ T8772]  misc_open+0x35d/0x420
[  322.065533][ T8772]  ? __pfx_misc_open+0x10/0x10
[  322.065548][ T8772]  chrdev_open+0x231/0x6a0
[  322.065568][ T8772]  ? __pfx_apparmor_file_open+0x10/0x10
[  322.065585][ T8772]  ? __pfx_chrdev_open+0x10/0x10
[  322.065606][ T8772]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  322.065643][ T8772]  do_dentry_open+0x744/0x1c10
[  322.065664][ T8772]  ? __pfx_chrdev_open+0x10/0x10
[  322.065688][ T8772]  vfs_open+0x82/0x3f0
[  322.065705][ T8772]  path_openat+0x1de4/0x2cb0
[  322.065730][ T8772]  ? __pfx_path_openat+0x10/0x10
[  322.065750][ T8772]  ? __lock_acquire+0xb8a/0x1c90
[  322.065770][ T8772]  do_filp_open+0x20b/0x470
[  322.065789][ T8772]  ? __pfx_do_filp_open+0x10/0x10
[  322.065821][ T8772]  ? alloc_fd+0x471/0x7d0
[  322.065844][ T8772]  do_sys_openat2+0x11b/0x1d0
[  322.065858][ T8772]  ? __pfx_do_sys_openat2+0x10/0x10
[  322.065874][ T8772]  ? __pfx_get_timespec64+0x10/0x10
[  322.065895][ T8772]  __x64_sys_openat+0x174/0x210
[  322.065911][ T8772]  ? __pfx___x64_sys_openat+0x10/0x10
[  322.065933][ T8772]  do_syscall_64+0xcd/0x490
[  322.065955][ T8772]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.065969][ T8772] RIP: 0033:0x7f320c78e929
[  322.065981][ T8772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  322.065993][ T8772] RSP: 002b:00007f320d535038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  322.066007][ T8772] RAX: ffffffffffffffda RBX: 00007f320c9b5fa0 RCX: 00007f320c78e929
[  322.066016][ T8772] RDX: 0000000000002002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  322.066025][ T8772] RBP: 00007f320c810b39 R08: 0000000000000000 R09: 0000000000000000
[  322.066033][ T8772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  322.066041][ T8772] R13: 0000000000000000 R14: 00007f320c9b5fa0 R15: 00007ffc5e6f9ae8
[  322.066059][ T8772]  </TASK>
[  322.985440][ T8794] ima: policy update failed
[  323.013495][ T8792] netlink: 25 bytes leftover after parsing attributes in process `syz.0.613'.
[  323.057004][   T30] audit: type=1802 audit(6046008483.150:4): pid=8794 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.613" res=0 errno=0
[  326.020024][ T8838] netlink: 4 bytes leftover after parsing attributes in process `syz.3.627'.
[  326.097478][ T8840] netlink: 25 bytes leftover after parsing attributes in process `syz.3.627'.
[  326.187194][ T8837] ERROR: Out of memory at tomoyo_memory_ok.
[  326.202805][ T8842] FAULT_INJECTION: forcing a failure.
[  326.202805][ T8842] name failslab, interval 1, probability 0, space 0, times 0
[  326.283032][ T8842] CPU: 0 UID: 0 PID: 8842 Comm: syz.6.629 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  326.283056][ T8842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  326.283064][ T8842] Call Trace:
[  326.283070][ T8842]  <TASK>
[  326.283076][ T8842]  dump_stack_lvl+0x16c/0x1f0
[  326.283101][ T8842]  should_fail_ex+0x512/0x640
[  326.283120][ T8842]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  326.283143][ T8842]  should_failslab+0xc2/0x120
[  326.283157][ T8842]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  326.283182][ T8842]  ? d_instantiate+0x77/0x90
[  326.283194][ T8842]  ? alloc_empty_file+0x55/0x1e0
[  326.283212][ T8842]  alloc_empty_file+0x55/0x1e0
[  326.283227][ T8842]  alloc_file_pseudo+0x13a/0x230
[  326.283243][ T8842]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  326.283264][ T8842]  ioctx_alloc+0x5ab/0x2120
[  326.283288][ T8842]  ? find_held_lock+0x2b/0x80
[  326.283303][ T8842]  ? __pfx_ioctx_alloc+0x10/0x10
[  326.283318][ T8842]  ? __might_fault+0x13b/0x190
[  326.283342][ T8842]  __x64_sys_io_setup+0xc9/0x210
[  326.283360][ T8842]  do_syscall_64+0xcd/0x490
[  326.283382][ T8842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.283396][ T8842] RIP: 0033:0x7f320c78e929
[  326.283407][ T8842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  326.283420][ T8842] RSP: 002b:00007f320d535038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  326.283434][ T8842] RAX: ffffffffffffffda RBX: 00007f320c9b5fa0 RCX: 00007f320c78e929
[  326.283443][ T8842] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff
[  326.283451][ T8842] RBP: 00007f320c810b39 R08: 0000000000000000 R09: 0000000000000000
[  326.283459][ T8842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  326.283467][ T8842] R13: 0000000000000000 R14: 00007f320c9b5fa0 R15: 00007ffc5e6f9ae8
[  326.283485][ T8842]  </TASK>
[  326.903305][ T8854] FAULT_INJECTION: forcing a failure.
[  326.903305][ T8854] name failslab, interval 1, probability 0, space 0, times 0
[  326.938822][ T8854] CPU: 0 UID: 0 PID: 8854 Comm: syz.2.632 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  326.938847][ T8854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  326.938859][ T8854] Call Trace:
[  326.938864][ T8854]  <TASK>
[  326.938869][ T8854]  dump_stack_lvl+0x16c/0x1f0
[  326.938895][ T8854]  should_fail_ex+0x512/0x640
[  326.938914][ T8854]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  326.938937][ T8854]  should_failslab+0xc2/0x120
[  326.938952][ T8854]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  326.938971][ T8854]  ? getname_flags.part.0+0x4c/0x550
[  326.938990][ T8854]  getname_flags.part.0+0x4c/0x550
[  326.939007][ T8854]  getname_flags+0x93/0xf0
[  326.939024][ T8854]  do_sys_openat2+0xb8/0x1d0
[  326.939039][ T8854]  ? __pfx_do_sys_openat2+0x10/0x10
[  326.939061][ T8854]  __x64_sys_openat+0x174/0x210
[  326.939076][ T8854]  ? __pfx___x64_sys_openat+0x10/0x10
[  326.939098][ T8854]  do_syscall_64+0xcd/0x490
[  326.939119][ T8854]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.939133][ T8854] RIP: 0033:0x7f0287d8d290
[  326.939145][ T8854] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  326.939158][ T8854] RSP: 002b:00007f0288c65f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  326.939172][ T8854] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0287d8d290
[  326.939181][ T8854] RDX: 0000000000000002 RSI: 00007f0288c65fa0 RDI: 00000000ffffff9c
[  326.939195][ T8854] RBP: 00007f0288c65fa0 R08: 0000000000000000 R09: 00007f0288c65cd5
[  326.939204][ T8854] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  326.939212][ T8854] R13: 0000000000000000 R14: 00007f0287fb5fa0 R15: 00007ffc865cc768
[  326.939230][ T8854]  </TASK>
[  327.240400][ T8858] FAULT_INJECTION: forcing a failure.
[  327.240400][ T8858] name failslab, interval 1, probability 0, space 0, times 0
[  327.240428][ T8858] CPU: 0 UID: 0 PID: 8858 Comm: syz.0.628 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  327.240447][ T8858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  327.240455][ T8858] Call Trace:
[  327.240460][ T8858]  <TASK>
[  327.240466][ T8858]  dump_stack_lvl+0x16c/0x1f0
[  327.240490][ T8858]  should_fail_ex+0x512/0x640
[  327.240509][ T8858]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  327.240528][ T8858]  should_failslab+0xc2/0x120
[  327.240542][ T8858]  __kmalloc_cache_noprof+0x6a/0x3e0
[  327.240559][ T8858]  ? tracing_open+0x328/0xf90
[  327.240577][ T8858]  tracing_open+0x328/0xf90
[  327.240590][ T8858]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  327.240611][ T8858]  do_dentry_open+0x744/0x1c10
[  327.240631][ T8858]  ? __pfx_tracing_open+0x10/0x10
[  327.240649][ T8858]  vfs_open+0x82/0x3f0
[  327.240665][ T8858]  path_openat+0x1de4/0x2cb0
[  327.240689][ T8858]  ? __pfx_path_openat+0x10/0x10
[  327.240709][ T8858]  ? __lock_acquire+0xb8a/0x1c90
[  327.240728][ T8858]  do_filp_open+0x20b/0x470
[  327.240746][ T8858]  ? __pfx_do_filp_open+0x10/0x10
[  327.240777][ T8858]  ? alloc_fd+0x471/0x7d0
[  327.240799][ T8858]  do_sys_openat2+0x11b/0x1d0
[  327.240814][ T8858]  ? __pfx_do_sys_openat2+0x10/0x10
[  327.240829][ T8858]  ? find_held_lock+0x2b/0x80
[  327.240846][ T8858]  __x64_sys_openat+0x174/0x210
[  327.240861][ T8858]  ? __pfx___x64_sys_openat+0x10/0x10
[  327.240883][ T8858]  do_syscall_64+0xcd/0x490
[  327.240904][ T8858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.240919][ T8858] RIP: 0033:0x7f986bf8e929
[  327.240931][ T8858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.240944][ T8858] RSP: 002b:00007f986ce30038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  327.240958][ T8858] RAX: ffffffffffffffda RBX: 00007f986c1b6160 RCX: 00007f986bf8e929
[  327.240966][ T8858] RDX: 0000000000000002 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  327.240975][ T8858] RBP: 00007f986c010b39 R08: 0000000000000000 R09: 0000000000000000
[  327.240983][ T8858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  327.240991][ T8858] R13: 0000000000000000 R14: 00007f986c1b6160 R15: 00007fffe8367cc8
[  327.241008][ T8858]  </TASK>
[  327.319010][ T8861] net_ratelimit: 52 callbacks suppressed
[  327.319024][ T8861] netlink: zone id is out of range
[  327.319031][ T8861] netlink: zone id is out of range
[  327.319037][ T8861] netlink: zone id is out of range
[  327.319042][ T8861] netlink: zone id is out of range
[  327.319047][ T8861] netlink: zone id is out of range
[  327.319052][ T8861] netlink: zone id is out of range
[  327.319057][ T8861] netlink: zone id is out of range
[  327.319062][ T8861] netlink: zone id is out of range
[  327.319068][ T8861] netlink: zone id is out of range
[  327.319073][ T8861] netlink: zone id is out of range
[  327.328521][ T8861] netlink: 'syz.6.633': attribute type 1 has an invalid length.
[  327.348250][ T8862] netlink: 354 bytes leftover after parsing attributes in process `syz.3.634'.
[  327.928128][ T8869] zswap: compressor  not available
[  328.348487][ T8882] netlink: 'syz.6.647': attribute type 1 has an invalid length.
[  329.362050][ T7160] Bluetooth: hci2: unexpected event 0x1d length: 10 > 5
[  329.427104][ T8900] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000001) at rIP: 0xffffffff8163eaa9 (__mcheck_cpu_init_clear_banks+0x109/0x1f0)
[  329.427175][ T8900] Call Trace:
[  329.427181][ T8900]  <TASK>
[  329.427189][ T8900]  ? __pfx_mce_cpu_restart+0x10/0x10
[  329.427212][ T8900]  mce_cpu_restart+0x98/0xb0
[  329.427237][ T8900]  smp_call_function_many_cond+0xefc/0x1510
[  329.427252][ T8900]  ? __pfx_mce_cpu_restart+0x10/0x10
[  329.427272][ T8900]  ? mark_held_locks+0x49/0x80
[  329.427290][ T8900]  ? _raw_spin_unlock_bh+0x21/0x30
[  329.427308][ T8900]  ? lockdep_hardirqs_on+0x7c/0x110
[  329.427328][ T8900]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  329.427347][ T8900]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  329.427361][ T8900]  ? __pfx___try_to_del_timer_sync+0x10/0x10
[  329.427386][ T8900]  ? __pfx_mce_cpu_restart+0x10/0x10
[  329.427407][ T8900]  on_each_cpu_cond_mask+0x40/0x90
[  329.427423][ T8900]  set_bank+0x240/0x3a0
[  329.427439][ T8900]  ? __pfx_set_bank+0x10/0x10
[  329.427456][ T8900]  ? find_held_lock+0x2b/0x80
[  329.427473][ T8900]  ? __pfx_set_bank+0x10/0x10
[  329.427489][ T8900]  dev_attr_store+0x55/0x80
[  329.427503][ T8900]  ? __pfx_dev_attr_store+0x10/0x10
[  329.427516][ T8900]  sysfs_kf_write+0xef/0x150
[  329.427534][ T8900]  kernfs_fop_write_iter+0x351/0x510
[  329.427548][ T8900]  ? __pfx_sysfs_kf_write+0x10/0x10
[  329.427566][ T8900]  iter_file_splice_write+0x91f/0x1150
[  329.427595][ T8900]  ? __pfx_iter_file_splice_write+0x10/0x10
[  329.427617][ T8900]  ? __pfx_copy_splice_read+0x10/0x10
[  329.427644][ T8900]  ? __pfx_iter_file_splice_write+0x10/0x10
[  329.427664][ T8900]  direct_splice_actor+0x192/0x6c0
[  329.427683][ T8900]  splice_direct_to_actor+0x345/0xa30
[  329.427702][ T8900]  ? __pfx_direct_splice_actor+0x10/0x10
[  329.427723][ T8900]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  329.427747][ T8900]  do_splice_direct+0x174/0x240
[  329.427764][ T8900]  ? __pfx_do_splice_direct+0x10/0x10
[  329.427782][ T8900]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  329.427802][ T8900]  ? rw_verify_area+0xcf/0x680
[  329.427822][ T8900]  do_sendfile+0xb06/0xe50
[  329.427844][ T8900]  ? __pfx_do_sendfile+0x10/0x10
[  329.427864][ T8900]  ? __x64_sys_futex+0x1e0/0x4c0
[  329.427880][ T8900]  ? __x64_sys_futex+0x1e9/0x4c0
[  329.427898][ T8900]  __x64_sys_sendfile64+0x1d8/0x220
[  329.427921][ T8900]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  329.427941][ T8900]  do_syscall_64+0xcd/0x490
[  329.427964][ T8900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.427979][ T8900] RIP: 0033:0x7f320c78e929
[  329.427993][ T8900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  329.428006][ T8900] RSP: 002b:00007f320d514038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  329.428022][ T8900] RAX: ffffffffffffffda RBX: 00007f320c9b6080 RCX: 00007f320c78e929
[  329.428032][ T8900] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[  329.428041][ T8900] RBP: 00007f320c810b39 R08: 0000000000000000 R09: 0000000000000000
[  329.428051][ T8900] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  329.428060][ T8900] R13: 0000000000000000 R14: 00007f320c9b6080 R15: 00007ffc5e6f9ae8
[  329.428079][ T8900]  </TASK>
[  329.516983][ T8902] FAULT_INJECTION: forcing a failure.
[  329.516983][ T8902] name failslab, interval 1, probability 0, space 0, times 0
[  329.517036][ T8902] CPU: 0 UID: 0 PID: 8902 Comm: syz.3.643 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  329.517053][ T8902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  329.517062][ T8902] Call Trace:
[  329.517067][ T8902]  <TASK>
[  329.517073][ T8902]  dump_stack_lvl+0x16c/0x1f0
[  329.517098][ T8902]  should_fail_ex+0x512/0x640
[  329.517117][ T8902]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  329.517136][ T8902]  should_failslab+0xc2/0x120
[  329.517149][ T8902]  __kmalloc_cache_noprof+0x6a/0x3e0
[  329.517166][ T8902]  ? __lock_acquire+0xb8a/0x1c90
[  329.517183][ T8902]  ? snd_timer_instance_new+0x47/0x2e0
[  329.517200][ T8902]  snd_timer_instance_new+0x47/0x2e0
[  329.517214][ T8902]  snd_seq_timer_open+0x1cc/0x5e0
[  329.517234][ T8902]  ? __pfx_snd_seq_timer_open+0x10/0x10
[  329.517253][ T8902]  ? find_held_lock+0x2b/0x80
[  329.517269][ T8902]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  329.517287][ T8902]  ? lockdep_hardirqs_on+0x7c/0x110
[  329.517306][ T8902]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  329.517327][ T8902]  queue_use+0xe3/0x250
[  329.517342][ T8902]  snd_seq_queue_alloc+0x2e5/0x550
[  329.517361][ T8902]  snd_seq_ioctl_create_queue+0xa9/0x380
[  329.517382][ T8902]  snd_seq_kernel_client_ctl+0x107/0x1c0
[  329.517397][ T8902]  alloc_seq_queue+0xda/0x180
[  329.517411][ T8902]  ? __pfx_alloc_seq_queue+0x10/0x10
[  329.517435][ T8902]  ? mark_held_locks+0x49/0x80
[  329.517451][ T8902]  ? _raw_spin_unlock_irq+0x23/0x50
[  329.517470][ T8902]  snd_seq_oss_open+0x38c/0xa20
[  329.517487][ T8902]  odev_open+0x6f/0x90
[  329.517497][ T8902]  ? __pfx_odev_open+0x10/0x10
[  329.517509][ T8902]  soundcore_open+0x40c/0x580
[  329.517530][ T8902]  ? __pfx_soundcore_open+0x10/0x10
[  329.517550][ T8902]  chrdev_open+0x231/0x6a0
[  329.517570][ T8902]  ? __pfx_apparmor_file_open+0x10/0x10
[  329.517587][ T8902]  ? __pfx_chrdev_open+0x10/0x10
[  329.517608][ T8902]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  329.517629][ T8902]  do_dentry_open+0x744/0x1c10
[  329.517648][ T8902]  ? __pfx_chrdev_open+0x10/0x10
[  329.517671][ T8902]  vfs_open+0x82/0x3f0
[  329.517688][ T8902]  path_openat+0x1de4/0x2cb0
[  329.517713][ T8902]  ? __pfx_path_openat+0x10/0x10
[  329.517732][ T8902]  ? __lock_acquire+0xb8a/0x1c90
[  329.517751][ T8902]  do_filp_open+0x20b/0x470
[  329.517769][ T8902]  ? __pfx_do_filp_open+0x10/0x10
[  329.517801][ T8902]  ? alloc_fd+0x471/0x7d0
[  329.517824][ T8902]  do_sys_openat2+0x11b/0x1d0
[  329.517839][ T8902]  ? __pfx_do_sys_openat2+0x10/0x10
[  329.517860][ T8902]  __x64_sys_openat+0x174/0x210
[  329.517875][ T8902]  ? __pfx___x64_sys_openat+0x10/0x10
[  329.517905][ T8902]  do_syscall_64+0xcd/0x490
[  329.517928][ T8902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.517944][ T8902] RIP: 0033:0x7f981558e929
[  329.517956][ T8902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  329.517969][ T8902] RSP: 002b:00007f98164c4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  329.517982][ T8902] RAX: ffffffffffffffda RBX: 00007f98157b5fa0 RCX: 00007f981558e929
[  329.517991][ T8902] RDX: 0000000000000080 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  329.518000][ T8902] RBP: 00007f9815610b39 R08: 0000000000000000 R09: 0000000000000000
[  329.518008][ T8902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  329.518016][ T8902] R13: 0000000000000000 R14: 00007f98157b5fa0 R15: 00007ffe569fd5f8
[  329.518033][ T8902]  </TASK>
[  329.694430][ T8904] netlink: 354 bytes leftover after parsing attributes in process `syz.6.644'.
[  330.586631][ T8916] netlink: 4 bytes leftover after parsing attributes in process `syz.0.649'.
[  331.576098][ T8927] netlink: 'syz.0.653': attribute type 1 has an invalid length.
[  332.581319][ T8854] tty tty12: ldisc open failed (-12), clearing slot 11
[  332.604126][ T8856] tty tty12: ldisc open failed (-12), clearing slot 11
[  332.633751][ T8909] tty tty53: ldisc open failed (-12), clearing slot 52
[  332.659321][ T8928] ttyS ttyS2: ldisc open failed (-12), clearing slot 2
[  333.169017][ T8946] random: crng reseeded on system resumption
[  334.216815][ T8964] ERROR: Out of memory at tomoyo_memory_ok.
[  334.290769][ T8964] ERROR: Domain '<kernel> /sbin/init /etc/init.d/rcS /etc/init.d/S50sshd /sbin/start-stop-daemon /usr/sbin/sshd /usr/libexec/sshd-session /bin/sh /root/syz-executor /root/syz-executor /newroot/173/:,' not defined.
[  335.589403][ T8982] random: crng reseeded on system resumption
[  335.836164][ T8985] FAULT_INJECTION: forcing a failure.
[  335.836164][ T8985] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  336.049976][ T8985] CPU: 0 UID: 0 PID: 8985 Comm: syz.0.668 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  336.050000][ T8985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  336.050008][ T8985] Call Trace:
[  336.050014][ T8985]  <TASK>
[  336.050020][ T8985]  dump_stack_lvl+0x16c/0x1f0
[  336.050046][ T8985]  should_fail_ex+0x512/0x640
[  336.050068][ T8985]  should_fail_alloc_page+0xe7/0x130
[  336.050084][ T8985]  prepare_alloc_pages+0x3c2/0x610
[  336.050100][ T8985]  ? rcu_is_watching+0x12/0xc0
[  336.050117][ T8985]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  336.050139][ T8985]  ? rcu_is_watching+0x12/0xc0
[  336.050152][ T8985]  ? trace_mm_page_alloc+0x11f/0x1a0
[  336.050179][ T8985]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  336.050200][ T8985]  ? stack_trace_save+0x8e/0xc0
[  336.050216][ T8985]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  336.050244][ T8985]  ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0
[  336.050263][ T8985]  ? __get_vm_area_node+0x1ca/0x330
[  336.050278][ T8985]  ? __vmalloc_node_noprof+0xad/0xf0
[  336.050292][ T8985]  ? __do_sys_init_module+0x158/0x250
[  336.050309][ T8985]  ? do_syscall_64+0xcd/0x490
[  336.050330][ T8985]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.050352][ T8985]  alloc_pages_bulk_noprof+0x71c/0x1410
[  336.050371][ T8985]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  336.050392][ T8985]  ? policy_nodemask+0xea/0x4e0
[  336.050408][ T8985]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  336.050428][ T8985]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  336.050449][ T8985]  kasan_populate_vmalloc+0xf1/0x1f0
[  336.050471][ T8985]  alloc_vmap_area+0x959/0x29c0
[  336.050493][ T8985]  ? __pfx_alloc_vmap_area+0x10/0x10
[  336.050513][ T8985]  __get_vm_area_node+0x1ca/0x330
[  336.050531][ T8985]  __vmalloc_node_range_noprof+0x271/0x14b0
[  336.050549][ T8985]  ? __do_sys_init_module+0x158/0x250
[  336.050571][ T8985]  ? __do_sys_init_module+0x158/0x250
[  336.050593][ T8985]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  336.050610][ T8985]  ? rcu_is_watching+0x12/0xc0
[  336.050624][ T8985]  ? trace_cap_capable+0x18d/0x200
[  336.050640][ T8985]  ? __do_sys_init_module+0x158/0x250
[  336.050656][ T8985]  __vmalloc_node_noprof+0xad/0xf0
[  336.050673][ T8985]  ? __do_sys_init_module+0x158/0x250
[  336.050692][ T8985]  __do_sys_init_module+0x158/0x250
[  336.050710][ T8985]  ? __pfx___do_sys_init_module+0x10/0x10
[  336.050736][ T8985]  ? xfd_validate_state+0x61/0x180
[  336.050759][ T8985]  do_syscall_64+0xcd/0x490
[  336.050780][ T8985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.050794][ T8985] RIP: 0033:0x7f986bf8e929
[  336.050807][ T8985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  336.050820][ T8985] RSP: 002b:00007f986ce72038 EFLAGS: 00000246 ORIG_RAX: 00000000000000af
[  336.050833][ T8985] RAX: ffffffffffffffda RBX: 00007f986c1b5fa0 RCX: 00007f986bf8e929
[  336.050843][ T8985] RDX: 0000000000000000 RSI: 00000000000fffff RDI: 0000000000000000
[  336.050851][ T8985] RBP: 00007f986c010b39 R08: 0000000000000000 R09: 0000000000000000
[  336.050859][ T8985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  336.050867][ T8985] R13: 0000000000000000 R14: 00007f986c1b5fa0 R15: 00007fffe8367cc8
[  336.050884][ T8985]  </TASK>
[  337.902518][ T9012] rnbd_client L202: map_device: Unknown parameter or missing value '('
[  338.451351][ T9031] net_ratelimit: 83 callbacks suppressed
[  338.451367][ T9031] netlink: zone id is out of range
[  338.529609][ T9031] netlink: zone id is out of range
[  338.542412][ T9031] netlink: zone id is out of range
[  338.574181][ T9032] netlink: 'syz.0.679': attribute type 1 has an invalid length.
[  338.626573][ T9031] netlink: zone id is out of range
[  338.692309][ T9031] netlink: zone id is out of range
[  338.697441][ T9031] netlink: zone id is out of range
[  338.830848][ T9031] netlink: zone id is out of range
[  338.984734][ T9031] netlink: zone id is out of range
[  339.077489][ T9031] netlink: zone id is out of range
[  339.126921][ T9031] netlink: zone id is out of range
[  339.680701][ T6764] Bluetooth: hci4: command 0x0406 tx timeout
[  341.535213][ T9061] FAULT_INJECTION: forcing a failure.
[  341.535213][ T9061] name failslab, interval 1, probability 0, space 0, times 0
[  341.688698][ T9061] CPU: 0 UID: 0 PID: 9061 Comm: syz.2.685 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  341.688722][ T9061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  341.688732][ T9061] Call Trace:
[  341.688737][ T9061]  <TASK>
[  341.688742][ T9061]  dump_stack_lvl+0x16c/0x1f0
[  341.688768][ T9061]  should_fail_ex+0x512/0x640
[  341.688788][ T9061]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  341.688809][ T9061]  should_failslab+0xc2/0x120
[  341.688823][ T9061]  __kmalloc_cache_noprof+0x6a/0x3e0
[  341.688841][ T9061]  ? snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  341.688860][ T9061]  snd_pcm_hw_param_near.constprop.0+0xbc/0x8e0
[  341.688878][ T9061]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  341.688900][ T9061]  snd_pcm_oss_change_params_locked+0x92b/0x3a30
[  341.688924][ T9061]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  341.688941][ T9061]  ? __pfx___mutex_lock+0x10/0x10
[  341.688973][ T9061]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  341.688992][ T9061]  snd_pcm_oss_ioctl+0x21e9/0x37a0
[  341.689009][ T9061]  ? hook_file_ioctl_common+0x145/0x410
[  341.689025][ T9061]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  341.689043][ T9061]  ? __fget_files+0x20e/0x3c0
[  341.689063][ T9061]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  341.689079][ T9061]  __x64_sys_ioctl+0x18b/0x210
[  341.689097][ T9061]  do_syscall_64+0xcd/0x490
[  341.689118][ T9061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.689133][ T9061] RIP: 0033:0x7f0287d8e929
[  341.689144][ T9061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.689158][ T9061] RSP: 002b:00007f0288c45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  341.689171][ T9061] RAX: ffffffffffffffda RBX: 00007f0287fb6080 RCX: 00007f0287d8e929
[  341.689180][ T9061] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000008
[  341.689188][ T9061] RBP: 00007f0287e10b39 R08: 0000000000000000 R09: 0000000000000000
[  341.689196][ T9061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  341.689204][ T9061] R13: 0000000000000000 R14: 00007f0287fb6080 R15: 00007ffc865cc768
[  341.689222][ T9061]  </TASK>
[  342.076255][ T9055] kexec: Could not allocate control_code_buffer
[  343.400759][ T9073] netlink: 'syz.2.687': attribute type 1 has an invalid length.
[  344.405213][ T9096] net_ratelimit: 21 callbacks suppressed
[  344.405246][ T9096] netlink: zone id is out of range
[  344.498743][ T9096] netlink: zone id is out of range
[  344.531363][ T9096] netlink: zone id is out of range
[  344.566392][ T9096] netlink: zone id is out of range
[  344.612252][ T9100] netlink: 'syz.2.693': attribute type 1 has an invalid length.
[  344.654156][ T9096] netlink: zone id is out of range
[  344.711492][ T9096] netlink: zone id is out of range
[  344.811290][ T9096] netlink: zone id is out of range
[  344.816431][ T9096] netlink: zone id is out of range
[  344.951576][ T9096] netlink: zone id is out of range
[  345.015697][ T9096] netlink: zone id is out of range
[  346.502970][ T9137] ERROR: Out of memory at tomoyo_memory_ok.
[  346.558985][   T31] INFO: task kworker/u10:2:6771 blocked for more than 163 seconds.
[  346.568061][   T31]       Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  346.608003][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  346.648852][ T9137] FAULT_INJECTION: forcing a failure.
[  346.648852][ T9137] name failslab, interval 1, probability 0, space 0, times 0
[  346.672630][   T31] task:kworker/u10:2   state:D stack:26952 pid:6771  tgid:6771  ppid:2      task_flags:0x4208060 flags:0x00004000
[  346.705688][ T9137] CPU: 0 UID: 0 PID: 9137 Comm: syz.0.701 Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  346.705712][ T9137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  346.705721][ T9137] Call Trace:
[  346.705726][ T9137]  <TASK>
[  346.705733][ T9137]  dump_stack_lvl+0x16c/0x1f0
[  346.705759][ T9137]  should_fail_ex+0x512/0x640
[  346.705778][ T9137]  ? fs_reclaim_acquire+0xae/0x150
[  346.705796][ T9137]  should_failslab+0xc2/0x120
[  346.705810][ T9137]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  346.705830][ T9137]  ? __kernfs_new_node+0xd2/0x8e0
[  346.705851][ T9137]  __kernfs_new_node+0xd2/0x8e0
[  346.705870][ T9137]  ? kernfs_add_one+0x14e/0x840
[  346.705889][ T9137]  ? __pfx___kernfs_new_node+0x10/0x10
[  346.705911][ T9137]  ? find_held_lock+0x2b/0x80
[  346.705925][ T9137]  ? kernfs_root+0xee/0x2a0
[  346.705946][ T9137]  kernfs_new_node+0x13c/0x1e0
[  346.705970][ T9137]  kernfs_create_link+0xcc/0x240
[  346.705986][ T9137]  sysfs_do_create_link_sd+0x90/0x140
[  346.706012][ T9137]  sysfs_create_link+0x61/0xc0
[  346.706029][ T9137]  device_add+0x50a/0x1a70
[  346.706046][ T9137]  ? __pfx_device_add+0x10/0x10
[  346.706059][ T9137]  ? __pfx___might_resched+0x10/0x10
[  346.706072][ T9137]  ? lockdep_hardirqs_on+0x7c/0x110
[  346.706098][ T9137]  __add_disk+0x457/0xf00
[  346.706121][ T9137]  add_disk_fwnode+0x13f/0x5d0
[  346.706141][ T9137]  loop_add+0x911/0xb70
[  346.706155][ T9137]  ? do_vfs_ioctl+0x523/0x1a60
[  346.706171][ T9137]  ? __pfx_loop_add+0x10/0x10
[  346.706184][ T9137]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  346.706212][ T9137]  ? find_held_lock+0x2b/0x80
[  346.706227][ T9137]  loop_control_ioctl+0x13e/0x630
[  346.706243][ T9137]  ? __pfx_loop_control_ioctl+0x10/0x10
[  346.706262][ T9137]  ? __pfx_loop_control_ioctl+0x10/0x10
[  346.706278][ T9137]  __x64_sys_ioctl+0x18b/0x210
[  346.706295][ T9137]  do_syscall_64+0xcd/0x490
[  346.706316][ T9137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.706330][ T9137] RIP: 0033:0x7f986bf8e929
[  346.706342][ T9137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  346.706355][ T9137] RSP: 002b:00007f986ce72038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  346.706369][ T9137] RAX: ffffffffffffffda RBX: 00007f986c1b5fa0 RCX: 00007f986bf8e929
[  346.706378][ T9137] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000005
[  346.706386][ T9137] RBP: 00007f986c010b39 R08: 0000000000000000 R09: 0000000000000000
[  346.706394][ T9137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  346.706402][ T9137] R13: 0000000000000000 R14: 00007f986c1b5fa0 R15: 00007fffe8367cc8
[  346.706421][ T9137]  </TASK>
[  346.706917][   T31] Workqueue: netns cleanup_net
[  347.313803][   T31] Call Trace:
[  347.317085][   T31]  <TASK>
[  347.322164][   T31]  __schedule+0x116a/0x5de0
[  347.326680][   T31]  ? __lock_acquire+0x622/0x1c90
[  347.332338][   T31]  ? __pfx___schedule+0x10/0x10
[  347.337196][   T31]  ? find_held_lock+0x2b/0x80
[  347.345714][   T31]  ? schedule+0x2d7/0x3a0
[  347.350673][   T31]  schedule+0xe7/0x3a0
[  347.354743][   T31]  schedule_timeout+0x257/0x290
[  347.361861][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  347.367259][   T31]  ? mark_held_locks+0x49/0x80
[  347.372762][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  347.377978][   T31]  __wait_for_common+0x2ff/0x4e0
[  347.385126][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  347.391144][   T31]  ? __pfx___wait_for_common+0x10/0x10
[  347.398404][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  347.410663][   T31]  ? flush_workqueue_prep_pwqs+0x2e9/0x510
[  347.416489][   T31]  __flush_workqueue+0x3e2/0x1230
[  347.422572][   T31]  ? __pfx___flush_workqueue+0x10/0x10
[  347.428035][   T31]  ? reacquire_held_locks+0xcd/0x1f0
[  347.435178][   T31]  ? __pfx_sock_def_readable+0x10/0x10
[  347.445222][   T31]  ? __pfx_sock_def_readable+0x10/0x10
[  347.454106][   T31]  rds_tcp_listen_stop+0x104/0x150
[  347.460201][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  347.465577][   T31]  rds_tcp_exit_net+0xcb/0x810
[  347.472137][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  347.477514][   T31]  ? __pfx___might_resched+0x10/0x10
[  347.483827][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  347.490895][   T31]  ops_undo_list+0x2eb/0xab0
[  347.496996][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[  347.503132][   T31]  ? __local_bh_enable_ip+0xa4/0x120
[  347.508428][   T31]  cleanup_net+0x408/0x890
[  347.520697][   T31]  ? __pfx_cleanup_net+0x10/0x10
[  347.525650][   T31]  ? rcu_is_watching+0x12/0xc0
[  347.532592][   T31]  process_one_work+0x9cc/0x1b70
[  347.537552][   T31]  ? __pfx_cfg80211_wiphy_work+0x10/0x10
[  347.544257][   T31]  ? __pfx_process_one_work+0x10/0x10
[  347.552906][   T31]  ? assign_work+0x1a0/0x250
[  347.557521][   T31]  worker_thread+0x6c8/0xf10
[  347.563284][   T31]  ? __pfx_worker_thread+0x10/0x10
[  347.568400][   T31]  kthread+0x3c5/0x780
[  347.574282][   T31]  ? __pfx_kthread+0x10/0x10
[  347.579833][   T31]  ? rcu_is_watching+0x12/0xc0
[  347.584727][   T31]  ? __pfx_kthread+0x10/0x10
[  347.591297][   T31]  ret_from_fork+0x5d4/0x6f0
[  347.595891][   T31]  ? __pfx_kthread+0x10/0x10
[  347.603145][   T31]  ret_from_fork_asm+0x1a/0x30
[  347.607938][   T31]  </TASK>
[  347.798631][   T31] INFO: task syz.1.191:6971 blocked for more than 144 seconds.
[  347.834764][   T31]       Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0
[  347.893429][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  347.918778][   T31] task:syz.1.191       state:D stack:27080 pid:6971  tgid:6969  ppid:5836   task_flags:0x400140 flags:0x00004006
[  347.950909][   T31] Call Trace:
[  347.954221][   T31]  <TASK>
[  347.957145][   T31]  __schedule+0x116a/0x5de0
[  347.970914][   T31]  ? __lock_acquire+0x622/0x1c90
[  347.975887][   T31]  ? __pfx___schedule+0x10/0x10
[  348.010992][   T31]  ? find_held_lock+0x2b/0x80
[  348.015703][   T31]  ? schedule+0x2d7/0x3a0
[  348.038726][   T31]  schedule+0xe7/0x3a0
[  348.042835][   T31]  schedule_timeout+0x257/0x290
[  348.047679][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  348.066821][   T31]  ? mark_held_locks+0x49/0x80
[  348.074150][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  348.081239][   T31]  __wait_for_common+0x2ff/0x4e0
[  348.086238][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  348.094306][   T31]  ? __pfx___wait_for_common+0x10/0x10
[  348.103833][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  348.113732][   T31]  ? flush_workqueue_prep_pwqs+0x2e9/0x510
[  348.119810][   T31]  __flush_workqueue+0x3e2/0x1230
[  348.124856][   T31]  ? __pfx___flush_workqueue+0x10/0x10
[  348.133684][   T31]  ? reacquire_held_locks+0xcd/0x1f0
[  348.139381][   T31]  ? release_sock+0x21/0x220
[  348.143992][   T31]  ? __pfx_sock_def_readable+0x10/0x10
[  348.152008][   T31]  ? __local_bh_enable_ip+0xa4/0x120
[  348.157300][   T31]  ? __pfx_sock_def_readable+0x10/0x10
[  348.164640][   T31]  rds_tcp_listen_stop+0x104/0x150
[  348.172276][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  348.177663][   T31]  rds_tcp_exit_net+0xcb/0x810
[  348.182735][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  348.188111][   T31]  ? __pfx___might_resched+0x10/0x10
[  348.195984][   T31]  ? __pfx_rds_tcp_exit_net+0x10/0x10
[  348.201566][   T31]  ops_undo_list+0x2eb/0xab0
[  348.206155][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[  348.218784][   T31]  ? ops_init+0x2fa/0x5f0
[  348.223139][   T31]  setup_net+0x2e1/0x510
[  348.227372][   T31]  ? __pfx_setup_net+0x10/0x10
[  348.235268][   T31]  ? debug_mutex_init+0x37/0x70
[  348.240454][   T31]  copy_net_ns+0x2a6/0x5f0
[  348.244883][   T31]  create_new_namespaces+0x3ea/0xa90
[  348.252861][   T31]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  348.258508][   T31]  ksys_unshare+0x45b/0xa40
[  348.263373][   T31]  ? __pfx_ksys_unshare+0x10/0x10
[  348.272337][   T31]  ? xfd_validate_state+0x61/0x180
[  348.277475][   T31]  __x64_sys_unshare+0x31/0x40
[  348.282577][   T31]  do_syscall_64+0xcd/0x490
[  348.287093][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.295549][   T31] RIP: 0033:0x7f0a1c38e929
[  348.300158][   T31] RSP: 002b:00007f0a1d2e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  348.311105][   T31] RAX: ffffffffffffffda RBX: 00007f0a1c5b5fa0 RCX: 00007f0a1c38e929
[  348.333242][   T31] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  348.341799][   T31] RBP: 00007f0a1c410b39 R08: 0000000000000000 R09: 0000000000000000
[  348.352288][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  348.360613][   T31] R13: 0000000000000000 R14: 00007f0a1c5b5fa0 R15: 00007ffcbcb1d2d8
[  348.372478][   T31]  </TASK>
[  348.422492][   T31] 
[  348.422492][   T31] Showing all locks held in the system:
[  348.472212][   T31] 1 lock held by khungtaskd/31:
[  348.477091][   T31]  #0: ffffffff8e5c47c0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  348.522042][   T31] 1 lock held by syz-executor/5829:
[  348.527258][   T31]  #0: ffffffff9034e628 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x230
[  348.548621][   T31] 2 locks held by getty/6557:
[  348.553313][   T31]  #0: ffff88803216b0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  348.589028][   T31]  #1: ffffc9000367b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[  348.622905][   T31] 3 locks held by kworker/u10:2/6771:
[  348.628294][   T31]  #0: ffff88801c6fe148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  348.660947][   T31]  #1: ffffc90004c5fd10 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  348.688891][   T31]  #2: ffffffff903385d0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xad/0x890
[  348.698236][   T31] 2 locks held by kworker/u10:5/6801:
[  348.713137][   T31]  #0: ffff8880b843a418 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130
[  348.727056][   T31]  #1: ffff88807f3f0018 (&pid_list->lock){-.-.}-{2:2}, at: trace_pid_list_is_set+0x4c/0x150
[  348.737409][   T31] 1 lock held by syz.1.191/6971:
[  348.744894][   T31]  #0: ffffffff903385d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x286/0x5f0
[  348.754517][   T31] 1 lock held by syz.4.241/7292:
[  348.762007][   T31]  #0: ffffffff903385d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x286/0x5f0
[  348.771630][   T31] 3 locks held by kworker/u10:7/7493:
[  348.776989][   T31]  #0: ffff88801b889148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  348.795648][   T31]  #1: ffffc900036c7d10 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  348.806911][   T31]  #2: ffffffff9034e628 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0x51/0xc0
[  348.818764][   T31] 1 lock held by syz.5.469/8313:
[  348.823791][   T31]  #0: ffffffff903385d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x286/0x5f0
[  348.837165][   T31] 2 locks held by syz-executor/8557:
[  348.842651][   T31]  #0: ffffffff9034e628 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x230
[  348.854059][   T31]  #1: ffffffff8e5cfdb8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x284/0x3c0
[  348.864261][   T31] 1 lock held by syz.3.699/9118:
[  348.871627][   T31]  #0: ffffffff9034e628 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x230
[  348.882768][   T31] 1 lock held by syz.2.700/9127:
[  348.887711][   T31]  #0: ffffffff903385d0 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x286/0x5f0
[  348.917587][   T31] 
[  348.922978][   T31] =============================================
[  348.922978][   T31] 
[  348.954534][   T31] NMI backtrace for cpu 0
[  348.954549][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  348.954567][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  348.954575][   T31] Call Trace:
[  348.954579][   T31]  <TASK>
[  348.954585][   T31]  dump_stack_lvl+0x116/0x1f0
[  348.954609][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  348.954626][   T31]  ? _raw_spin_unlock_irqrestore+0x61/0x80
[  348.954645][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  348.954664][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  348.954682][   T31]  watchdog+0xf70/0x12c0
[  348.954705][   T31]  ? __pfx_watchdog+0x10/0x10
[  348.954723][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  348.954743][   T31]  ? __kthread_parkme+0x19e/0x250
[  348.954761][   T31]  ? __pfx_watchdog+0x10/0x10
[  348.954785][   T31]  kthread+0x3c5/0x780
[  348.954803][   T31]  ? __pfx_kthread+0x10/0x10
[  348.954823][   T31]  ? rcu_is_watching+0x12/0xc0
[  348.954836][   T31]  ? __pfx_kthread+0x10/0x10
[  348.954855][   T31]  ret_from_fork+0x5d4/0x6f0
[  348.954872][   T31]  ? __pfx_kthread+0x10/0x10
[  348.954890][   T31]  ret_from_fork_asm+0x1a/0x30
[  348.954913][   T31]  </TASK>
[  348.954923][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  349.079652][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc3-syzkaller-00190-g67a993863163 #0 PREEMPT(full) 
[  349.091456][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  349.101503][   T31] Call Trace:
[  349.104774][   T31]  <TASK>
[  349.107693][   T31]  dump_stack_lvl+0x3d/0x1f0
[  349.112288][   T31]  panic+0x71c/0x800
[  349.116179][   T31]  ? __pfx_panic+0x10/0x10
[  349.120584][   T31]  ? ret_from_fork_asm+0x1a/0x30
[  349.125507][   T31]  ? nmi_backtrace_stall_check+0x6e/0x540
[  349.131221][   T31]  ? irq_work_queue+0xce/0x100
[  349.135976][   T31]  ? watchdog+0xdda/0x12c0
[  349.140383][   T31]  ? watchdog+0xdcd/0x12c0
[  349.144792][   T31]  watchdog+0xdeb/0x12c0
[  349.149033][   T31]  ? __pfx_watchdog+0x10/0x10
[  349.153698][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  349.158893][   T31]  ? __kthread_parkme+0x19e/0x250
[  349.163905][   T31]  ? __pfx_watchdog+0x10/0x10
[  349.168569][   T31]  kthread+0x3c5/0x780
[  349.172627][   T31]  ? __pfx_kthread+0x10/0x10
[  349.177206][   T31]  ? rcu_is_watching+0x12/0xc0
[  349.181965][   T31]  ? __pfx_kthread+0x10/0x10
[  349.186562][   T31]  ret_from_fork+0x5d4/0x6f0
[  349.191143][   T31]  ? __pfx_kthread+0x10/0x10
[  349.195725][   T31]  ret_from_fork_asm+0x1a/0x30
[  349.200513][   T31]  </TASK>
[  349.203579][   T31] Kernel Offset: disabled
[  349.207887][   T31] Rebooting in 86400 seconds..