last executing test programs:

27.492532694s ago: executing program 3 (id=130):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x20800, 0x0)
ioctl$auto_SNDCTL_SYNTH_INFO(r0, 0xc08c5102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1c1800, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x7000000, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x1, 0x7, &(0x7f00000009c0)='*\'\x00', 0xe388)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
write$auto_configfs_file_operations_configfs_internal(0xffffffffffffffff, &(0x7f0000000140)="8e", 0x1)
setsockopt$auto(0x3, 0x10000000084, 0x76, 0x0, 0x2)
socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
pidfd_open$auto(0x1, 0x80)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff)

21.46296761s ago: executing program 3 (id=136):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x141201, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = socket(0xa, 0x1, 0x100)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x23, 0x6, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x100000001ff, 0x7, 0x3, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x5, 0x62, 0x80000001, 0x5, 0x5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x169000, 0x0)
ioctl$auto(r3, 0x80405600, r3)
sendfile$auto(r3, r1, &(0x7f0000000180), 0x4)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
process_madvise$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x0, 0x5, 0x4, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
readahead$auto(0xffffffffffffffff, 0x4, 0x4)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000)
ioctl$auto(0xffffffffffffffff, 0x4, 0xffffffffffffffff)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
setresgid$auto(0x0, 0x0, 0x0)
madvise$auto(0x0, 0x2000000080000001, 0x3)

17.230151744s ago: executing program 1 (id=141):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x141201, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = socket(0xa, 0x1, 0x100)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x23, 0x6, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x100000001ff, 0x7, 0x3, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x5, 0x62, 0x80000001, 0x5, 0x5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x169000, 0x0)
ioctl$auto(r3, 0x80405600, r3)
sendfile$auto(r3, r1, &(0x7f0000000180), 0x4)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
process_madvise$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x0, 0x5, 0x4, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
readahead$auto(0xffffffffffffffff, 0x4, 0x4)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x4, 0xffffffffffffffff)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)

17.071516782s ago: executing program 2 (id=143):
r0 = syz_clone(0x25342080, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video3\x00', 0x10b000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
fcntl$auto(0xffffffffffffffff, 0x409, 0x40003f)
r2 = prctl$auto_PR_SET_VMA_ANON_NAME(0x4, 0x0, 0x0, 0x7a, 0x7)
openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x200000, 0x0)
socket(0x2, 0x1, 0x0)
getsockopt$auto(r1, 0x8, 0x7f, 0x0, 0x0)
writev$auto(r2, &(0x7f0000000140)={0x0, 0x3}, 0x8)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x104, 0x80000001, 0x7, 0x1, 0x3, 0x15f4da0a, 0x6, 0x3, 0x62, 0x1, 0x7, 0x6d3f, 0x2, 0x2, 0xfffffffffffffffe]}, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x8)
r4 = socket(0x2, 0xa, 0x106)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x06\x01e\x1cJ\x99\x00\x06\x11\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14N\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9', 0xd4f, 0x3)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xd, 0x1, 0x948d, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x8a47]}, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.net/syz1\x00', 0x200002, 0x0)
syz_clone3(&(0x7f0000000440)={0x4000, &(0x7f00000000c0), &(0x7f0000000180), &(0x7f00000001c0), {0x32}, &(0x7f0000000200)=""/9, 0x9, &(0x7f0000000240)=""/69, &(0x7f0000000340)=[r0], 0x1, {r5}}, 0x58)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="c79f25bd7000ffdbdf250700000008000300", @ANYRES32, @ANYBLOB="601ad438fd9464853f9d6f2753ee4580e71eb3"], 0x1c}, 0x1, 0x0, 0x0, 0xc031}, 0x44)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'ip6erspan0\x00', <r6=>0x0})
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(r4, &(0x7f00000009c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000980)={&(0x7f0000000a00)=ANY=[@ANYBLOB="141f57a4f94d40501605185c040000", @ANYRES16=0x0, @ANYBLOB="00012abd7000ffdbdf250800000048000180140002007465616d300000000000000000000000080003000300000008000100", @ANYRES32=0x0, @ANYBLOB="080003000700000008000100", @ANYRES32=0x0, @ANYBLOB="080003000101000008000100", @ANYRES32=r6, @ANYBLOB="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"], 0x414}, 0x1, 0x0, 0x0, 0x8001}, 0x8c0)
unshare$auto(0x40000080)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/sequencer\x00', 0x20000, 0x0)

16.872645388s ago: executing program 3 (id=144):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x141201, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = socket(0xa, 0x1, 0x100)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x23, 0x6, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x100000001ff, 0x7, 0x3, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x5, 0x62, 0x80000001, 0x5, 0x5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x169000, 0x0)
ioctl$auto(r3, 0x80405600, r3)
sendfile$auto(r3, r1, &(0x7f0000000180), 0x4)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
process_madvise$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x0, 0x5, 0x4, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
readahead$auto(0xffffffffffffffff, 0x4, 0x4)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)

16.62377551s ago: executing program 0 (id=145):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x141201, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = socket(0xa, 0x1, 0x100)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x23, 0x6, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x100000001ff, 0x7, 0x3, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x5, 0x62, 0x80000001, 0x5, 0x5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x169000, 0x0)
ioctl$auto(r3, 0x80405600, r3)
sendfile$auto(r3, r1, &(0x7f0000000180), 0x4)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
process_madvise$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x0, 0x5, 0x4, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
readahead$auto(0xffffffffffffffff, 0x4, 0x4)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x4, 0xffffffffffffffff)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
setresgid$auto(0x0, 0x0, 0x0)
madvise$auto(0x0, 0x2000000080000001, 0x3)

13.292197382s ago: executing program 1 (id=146):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
futex$auto(0x0, 0x8c, 0x1, 0x0, 0x0, 0x1)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x20800, 0x0)
ioctl$auto_SNDCTL_SYNTH_INFO(r0, 0xc08c5102, 0x0)
writev$auto(0xca, 0x0, 0x7e)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1c1800, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x7000000, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x1, 0x7, &(0x7f00000009c0)='*\'\x00', 0xe388)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x1, 0x0)
write$auto_configfs_file_operations_configfs_internal(r1, &(0x7f0000000140)="8e", 0x1)
setsockopt$auto(0x3, 0x10000000084, 0x76, 0x0, 0x2)
socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff)

13.208972508s ago: executing program 0 (id=147):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x141201, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = socket(0xa, 0x1, 0x100)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x23, 0x6, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x100000001ff, 0x7, 0x3, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x5, 0x62, 0x80000001, 0x5, 0x5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x169000, 0x0)
ioctl$auto(r3, 0x80405600, r3)
sendfile$auto(r3, r1, &(0x7f0000000180), 0x4)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
process_madvise$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x0, 0x5, 0x4, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
readahead$auto(0xffffffffffffffff, 0x4, 0x4)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)

12.199769909s ago: executing program 2 (id=148):
r0 = syz_clone(0x25342080, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video3\x00', 0x10b000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
fcntl$auto(0xffffffffffffffff, 0x409, 0x40003f)
r2 = prctl$auto_PR_SET_VMA_ANON_NAME(0x4, 0x0, 0x0, 0x7a, 0x7)
openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x200000, 0x0)
socket(0x2, 0x1, 0x0)
getsockopt$auto(r1, 0x8, 0x7f, 0x0, &(0x7f0000000100)=0x2001e)
writev$auto(r2, &(0x7f0000000140)={0x0, 0x3}, 0x8)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x104, 0x80000001, 0x7, 0x1, 0x3, 0x15f4da0a, 0x6, 0x3, 0x62, 0x1, 0x7, 0x6d3f, 0x2, 0x2, 0xfffffffffffffffe]}, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x8)
r4 = socket(0x2, 0xa, 0x106)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x06\x01e\x1cJ\x99\x00\x06\x11\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14N\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9', 0xd4f, 0x3)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xd, 0x1, 0x948d, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x8a47]}, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.net/syz1\x00', 0x200002, 0x0)
syz_clone3(&(0x7f0000000440)={0x4000, &(0x7f00000000c0), &(0x7f0000000180), &(0x7f00000001c0), {0x32}, 0x0, 0x0, &(0x7f0000000240)=""/69, &(0x7f0000000340)=[r0], 0x1, {r5}}, 0x58)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="c79f25bd7000ffdbdf250700000008000300", @ANYRES32, @ANYBLOB="601ad438fd9464853f9d6f2753ee4580e71eb3"], 0x1c}, 0x1, 0x0, 0x0, 0xc031}, 0x44)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'ip6erspan0\x00', <r6=>0x0})
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(r4, &(0x7f00000009c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000980)={&(0x7f0000000a00)=ANY=[@ANYBLOB="141f57a4f94d40501605185c040000", @ANYRES16=0x0, @ANYBLOB="00012abd7000ffdbdf250800000048000180140002007465616d300000000000000000000000080003000300000008000100", @ANYRES32=0x0, @ANYBLOB="080003000700000008000100", @ANYRES32=0x0, @ANYBLOB="080003000101000008000100", @ANYRES32=r6, @ANYBLOB="b5030280040091808537a30995660f47e69d093ec7588280e499b587e6d536f743588f03a0ba513a06fb706e923c20baedc81e2fdce7a1d39e205e9110a8de172f4ed92cfa2e991f6c7de4e320235bf5ed59140c7591818813612c16c0b7a60b23f5a355d4ab626260e83199e24a046c47637be126eba57dd99d1f08e4a37e82a2bc8edd46472e48631f362f78f81f876edf3ac7f665bda89243281037428f78571a26faac8add29c9a28ddc4de8a506cedc99f4ba7e61428a49dbc4a1d31ddf295ee5ec31ba86e5213bb015de2e9c8bb3c13fa9923c07801228412e27008c5ace9407ec5e6e2f2caec5011437d1008700baa47a6cc22d1ca093dd4a812ce06885c19cb7a2307e0b7fdfb81b90c9a84fb034bb086e5444e115cbf7cecc93c9e34d83e9f6071327c7719a4c5d8d8a2733cf41592cb6891b8b0a6b0d013735906adb0e0c6a4fffd7d4c2eb225d638cdf0c7a7b7d066744aa2ce581a92eb0094292f1da96e19e43eebb6b851172047d2deba6efd57bf99b1552c60bf03b0961e2b7cdc88ef2c06332626c9dca8c42319421d67697a31e4c1335c7e0b888170ae57a99a59c4a43f1014a23a5e85118909d8100c3f9b3884454a80fdd2b04781e000000f20177806d8afd77d4d26e5ec8e2bed9aa32faeafb069beb06da9d2b9b31448829874ceaf707d6dd16d1304e51c74c03f055f11f15ced5922888a6e4908f36c0a9040a275cffdaeb767636474eb2677e539e68b8437cdac80e9121239bf3a740737f2df31784b0cadbee3ad1ee97ec11880f5dda21eab77a22ef30b267728638ccc8321687722715579bea9c92706a5a29ee851cd3f1ffb32104004480040009807f25adeb46e98cd7350cb4d40f6be549838b6be8ed83d10b10799ceca3b93d602e4042f47b873e6f6f2bb439cd958c9c6603ad07c86103a99a8ca7ed3cffe361ab2a4c6a8f58155640a6e69e0a80ce3bc6ee86a0b5f5565a9797dfb4d17ef6f61cae044b667e4f519e1471295fa7a499df141711e0bb13885eae2433d7c76af31e18f35895299de40f6f8158581e6eed297a016fb894a59535c4ae4121169c8b5565e4da6628bdfc30a4bfc48f020a3cb921b0f6c13c475fdd9c23443276cbf0254fb8133bbdfc51c7ada8db8e32e7e41d4c52fb50d0baf9a89a9c490fdfb78719f61c722986eaf296d5cc08ad08217654ddbf856b9aebaf47fccc7a5f8f4c8bbfff0c6b2b9dd807c07fd9a2cf0417e2a01ab50b44fc50249197d637ec5aa6cefc9bf94f30994adaaabe485cbf316b54f1d5e3e9d6d71f8d419a8ea60c50bf152c68b99f0ad5d8e3efb9dca5c562bd55640000000000"], 0x414}, 0x1, 0x0, 0x0, 0x8001}, 0x8c0)
unshare$auto(0x40000080)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/sequencer\x00', 0x20000, 0x0)

11.813220197s ago: executing program 3 (id=149):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x141201, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = socket(0xa, 0x1, 0x100)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x23, 0x6, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x100000001ff, 0x7, 0x3, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x5, 0x62, 0x80000001, 0x5, 0x5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x169000, 0x0)
ioctl$auto(r3, 0x80405600, r3)
sendfile$auto(r3, r1, &(0x7f0000000180), 0x4)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
process_madvise$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x0, 0x5, 0x4, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
readahead$auto(0xffffffffffffffff, 0x4, 0x4)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x4, 0xffffffffffffffff)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
setresgid$auto(0x0, 0x0, 0x0)
madvise$auto(0x0, 0x2000000080000001, 0x3)

10.221304797s ago: executing program 0 (id=150):
r0 = syz_clone(0x25342080, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video3\x00', 0x10b000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
fcntl$auto(0xffffffffffffffff, 0x409, 0x40003f)
r2 = prctl$auto_PR_SET_VMA_ANON_NAME(0x4, 0x0, 0x0, 0x7a, 0x7)
openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x200000, 0x0)
socket(0x2, 0x1, 0x0)
getsockopt$auto(r1, 0x8, 0x7f, 0x0, 0x0)
writev$auto(r2, &(0x7f0000000140)={0x0, 0x3}, 0x8)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x104, 0x80000001, 0x7, 0x1, 0x3, 0x15f4da0a, 0x6, 0x3, 0x62, 0x1, 0x7, 0x6d3f, 0x2, 0x2, 0xfffffffffffffffe]}, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x8)
r4 = socket(0x2, 0xa, 0x106)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x06\x01e\x1cJ\x99\x00\x06\x11\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14N\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9', 0xd4f, 0x3)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xd, 0x1, 0x948d, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x8a47]}, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.net/syz1\x00', 0x200002, 0x0)
syz_clone3(&(0x7f0000000440)={0x4000, &(0x7f00000000c0), &(0x7f0000000180), &(0x7f00000001c0), {0x32}, &(0x7f0000000200)=""/9, 0x9, &(0x7f0000000240)=""/69, &(0x7f0000000340)=[r0], 0x1, {r5}}, 0x58)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="c79f25bd7000ffdbdf250700000008000300", @ANYRES32, @ANYBLOB="601ad438fd9464853f9d6f2753ee4580e71eb3"], 0x1c}, 0x1, 0x0, 0x0, 0xc031}, 0x44)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'ip6erspan0\x00', <r6=>0x0})
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(r4, &(0x7f00000009c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000980)={&(0x7f0000000a00)=ANY=[@ANYBLOB="141f57a4f94d40501605185c040000", @ANYRES16=0x0, @ANYBLOB="00012abd7000ffdbdf250800000048000180140002007465616d300000000000000000000000080003000300000008000100", @ANYRES32=0x0, @ANYBLOB="080003000700000008000100", @ANYRES32=0x0, @ANYBLOB="080003000101000008000100", @ANYRES32=r6, @ANYBLOB="b5030280040091808537a30995660f47e69d093ec7588280e499b587e6d536f743588f03a0ba513a06fb706e923c20baedc81e2fdce7a1d39e205e9110a8de172f4ed92cfa2e991f6c7de4e320235bf5ed59140c7591818813612c16c0b7a60b23f5a355d4ab626260e83199e24a046c47637be126eba57dd99d1f08e4a37e82a2bc8edd46472e48631f362f78f81f876edf3ac7f665bda89243281037428f78571a26faac8add29c9a28ddc4de8a506cedc99f4ba7e61428a49dbc4a1d31ddf295ee5ec31ba86e5213bb015de2e9c8bb3c13fa9923c07801228412e27008c5ace9407ec5e6e2f2caec5011437d1008700baa47a6cc22d1ca093dd4a812ce06885c19cb7a2307e0b7fdfb81b90c9a84fb034bb086e5444e115cbf7cecc93c9e34d83e9f6071327c7719a4c5d8d8a2733cf41592cb6891b8b0a6b0d013735906adb0e0c6a4fffd7d4c2eb225d638cdf0c7a7b7d066744aa2ce581a92eb0094292f1da96e19e43eebb6b851172047d2deba6efd57bf99b1552c60bf03b0961e2b7cdc88ef2c06332626c9dca8c42319421d67697a31e4c1335c7e0b888170ae57a99a59c4a43f1014a23a5e85118909d8100c3f9b3884454a80fdd2b04781e000000f20177806d8afd77d4d26e5ec8e2bed9aa32faeafb069beb06da9d2b9b31448829874ceaf707d6dd16d1304e51c74c03f055f11f15ced5922888a6e4908f36c0a9040a275cffdaeb767636474eb2677e539e68b8437cdac80e9121239bf3a740737f2df31784b0cadbee3ad1ee97ec11880f5dda21eab77a22ef30b267728638ccc8321687722715579bea9c92706a5a29ee851cd3f1ffb32104004480040009807f25adeb46e98cd7350cb4d40f6be549838b6be8ed83d10b10799ceca3b93d602e4042f47b873e6f6f2bb439cd958c9c6603ad07c86103a99a8ca7ed3cffe361ab2a4c6a8f58155640a6e69e0a80ce3bc6ee86a0b5f5565a9797dfb4d17ef6f61cae044b667e4f519e1471295fa7a499df141711e0bb13885eae2433d7c76af31e18f35895299de40f6f8158581e6eed297a016fb894a59535c4ae4121169c8b5565e4da6628bdfc30a4bfc48f020a3cb921b0f6c13c475fdd9c23443276cbf0254fb8133bbdfc51c7ada8db8e32e7e41d4c52fb50d0baf9a89a9c490fdfb78719f61c722986eaf296d5cc08ad08217654ddbf856b9aebaf47fccc7a5f8f4c8bbfff0c6b2b9dd807c07fd9a2cf0417e2a01ab50b44fc50249197d637ec5aa6cefc9bf94f30994adaaabe485cbf316b54f1d5e3e9d6d71f8d419a8ea60c50bf152c68b99f0ad5d8e3efb9dca5c562bd55640000000000"], 0x414}, 0x1, 0x0, 0x0, 0x8001}, 0x8c0)
unshare$auto(0x40000080)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/sequencer\x00', 0x20000, 0x0)

9.722859695s ago: executing program 2 (id=151):
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x4, 0xdf, 0x80000000000eb1, 0x3, 0x0)
socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
readv$auto(0x4, &(0x7f0000000100)={0x0, 0x1000}, 0x8)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
modify_ldt$auto(0x1, &(0x7f00000001c0), 0x10)
r0 = gettid()
rt_sigqueueinfo$auto(r0, 0x10, &(0x7f0000000000)={@siginfo_0_0={0x7, 0x7, 0xfffffffa, @_rt={r0, 0x0, @sival_ptr=0x0}}})
clone3$auto(0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
bpf$auto(0x0, 0x0, 0xa3)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0xe8)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
write$auto(0x1, 0x0, 0x80000000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0xfdef)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
ioctl$auto(r3, 0x4b68, 0xffffffffffffffff)
clone$auto(0x1000, 0x9, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x5)
clone$auto(0x3, 0x0, &(0x7f0000000080)=0x100, 0x0, 0x0)

9.689651718s ago: executing program 1 (id=152):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
futex$auto(0x0, 0x8c, 0x1, 0x0, 0x0, 0x1)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x20800, 0x0)
ioctl$auto_SNDCTL_SYNTH_INFO(r0, 0xc08c5102, 0x0)
writev$auto(0xca, 0x0, 0x7e)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1c1800, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x7000000, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x1, 0x7, &(0x7f00000009c0)='*\'\x00', 0xe388)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x1, 0x0)
write$auto_configfs_file_operations_configfs_internal(r1, &(0x7f0000000140)="8e", 0x1)
setsockopt$auto(0x3, 0x10000000084, 0x76, 0x0, 0x2)
socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
pidfd_open$auto(0x1, 0x80)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff)

8.994202382s ago: executing program 3 (id=153):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x141201, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = socket(0xa, 0x1, 0x100)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x23, 0x6, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x100000001ff, 0x7, 0x3, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x5, 0x62, 0x80000001, 0x5, 0x5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x169000, 0x0)
ioctl$auto(r3, 0x80405600, r3)
sendfile$auto(r3, r1, &(0x7f0000000180), 0x4)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
process_madvise$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x0, 0x5, 0x4, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
readahead$auto(0xffffffffffffffff, 0x4, 0x4)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x4, 0xffffffffffffffff)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
setresgid$auto(0x0, 0x0, 0x0)
madvise$auto(0x0, 0x2000000080000001, 0x3)

8.748963507s ago: executing program 1 (id=154):
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x4, 0xdf, 0x80000000000eb1, 0x3, 0x0)
socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
readv$auto(0x4, &(0x7f0000000100)={0x0, 0x1000}, 0x8)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
modify_ldt$auto(0x1, &(0x7f00000001c0), 0x10)
r0 = gettid()
rt_sigqueueinfo$auto(r0, 0x10, &(0x7f0000000000)={@siginfo_0_0={0x7, 0x7, 0xfffffffa, @_rt={r0, 0x0, @sival_ptr=0x0}}})
clone3$auto(0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
bpf$auto(0x0, 0x0, 0xa3)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0xe8)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
write$auto(0x1, 0x0, 0x80000000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0xfdef)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
ioctl$auto(r3, 0x4b68, 0xffffffffffffffff)
clone$auto(0x1000, 0x9, 0xfffffffffffffffc, 0xfffffffffffffffc, 0x5)
clone$auto(0x3, 0x0, &(0x7f0000000080)=0x100, 0x0, 0x0)

8.128143795s ago: executing program 0 (id=155):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x141201, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = socket(0xa, 0x1, 0x100)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x23, 0x6, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x100000001ff, 0x7, 0x3, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x5, 0x62, 0x80000001, 0x5, 0x5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x169000, 0x0)
ioctl$auto(r3, 0x80405600, r3)
sendfile$auto(r3, r1, &(0x7f0000000180), 0x4)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
process_madvise$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x0, 0x5, 0x4, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x4, 0xffffffffffffffff)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
setresgid$auto(0x0, 0x0, 0x0)
madvise$auto(0x0, 0x2000000080000001, 0x3)

7.907235747s ago: executing program 2 (id=156):
r0 = syz_clone(0x25342080, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video3\x00', 0x10b000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
fcntl$auto(0xffffffffffffffff, 0x409, 0x40003f)
r2 = prctl$auto_PR_SET_VMA_ANON_NAME(0x4, 0x0, 0x0, 0x7a, 0x7)
openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x200000, 0x0)
socket(0x2, 0x1, 0x0)
getsockopt$auto(r1, 0x8, 0x7f, 0x0, &(0x7f0000000100)=0x2001e)
writev$auto(r2, 0x0, 0x8)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x104, 0x80000001, 0x7, 0x1, 0x3, 0x15f4da0a, 0x6, 0x3, 0x62, 0x1, 0x7, 0x6d3f, 0x2, 0x2, 0xfffffffffffffffe]}, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x8)
r4 = socket(0x2, 0xa, 0x106)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x06\x01e\x1cJ\x99\x00\x06\x11\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14N\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9', 0xd4f, 0x3)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xd, 0x1, 0x948d, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x8a47]}, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.net/syz1\x00', 0x200002, 0x0)
syz_clone3(&(0x7f0000000440)={0x4000, &(0x7f00000000c0), &(0x7f0000000180), &(0x7f00000001c0), {0x32}, &(0x7f0000000200)=""/9, 0x9, &(0x7f0000000240)=""/69, &(0x7f0000000340)=[r0], 0x1, {r5}}, 0x58)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="c79f25bd7000ffdbdf250700000008000300", @ANYRES32, @ANYBLOB="601ad438fd9464853f9d6f2753ee4580e71eb3"], 0x1c}, 0x1, 0x0, 0x0, 0xc031}, 0x44)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'ip6erspan0\x00', <r6=>0x0})
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(r4, &(0x7f00000009c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000980)={&(0x7f0000000a00)=ANY=[@ANYBLOB="141f57a4f94d40501605185c040000", @ANYRES16=0x0, @ANYBLOB="00012abd7000ffdbdf250800000048000180140002007465616d300000000000000000000000080003000300000008000100", @ANYRES32=0x0, @ANYBLOB="080003000700000008000100", @ANYRES32=0x0, @ANYBLOB="080003000101000008000100", @ANYRES32=r6, @ANYBLOB="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"], 0x414}, 0x1, 0x0, 0x0, 0x8001}, 0x8c0)
unshare$auto(0x40000080)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/sequencer\x00', 0x20000, 0x0)

5.701515936s ago: executing program 1 (id=157):
mmap$auto(0x0, 0x20009, 0x804000000000df, 0xeb1, 0xffffffffffffffff, 0x1000000008000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
read$auto(r0, &(0x7f00000001c0)='\\\x00', 0x8000)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r0)
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)={0x14, r1, 0x0, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x8800}, 0x240008d0)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4001)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x1, 0x9}, 0xfffffff7}, 0x3, 0x4000000)

5.605301993s ago: executing program 2 (id=158):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x141201, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = socket(0xa, 0x1, 0x100)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x23, 0x6, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x100000001ff, 0x7, 0x3, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x5, 0x62, 0x80000001, 0x5, 0x5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x169000, 0x0)
ioctl$auto(r3, 0x80405600, r3)
sendfile$auto(r3, r1, &(0x7f0000000180), 0x4)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
process_madvise$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x0, 0x5, 0x4, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
readahead$auto(0xffffffffffffffff, 0x4, 0x4)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000)
ioctl$auto(0xffffffffffffffff, 0x4, 0xffffffffffffffff)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)

4.908087741s ago: executing program 3 (id=159):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x141201, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = socket(0xa, 0x1, 0x100)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x23, 0x6, 0x10)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x100000001ff, 0x7, 0x3, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x5, 0x62, 0x80000001, 0x5, 0x5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x169000, 0x0)
ioctl$auto(r3, 0x80405600, r3)
sendfile$auto(r3, r1, &(0x7f0000000180), 0x4)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
process_madvise$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x0, 0x5, 0x4, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x4, 0xffffffffffffffff)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
setresgid$auto(0x0, 0x0, 0x0)
madvise$auto(0x0, 0x2000000080000001, 0x3)

4.875016481s ago: executing program 1 (id=160):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
futex$auto(0x0, 0x8c, 0x1, 0x0, 0x0, 0x1)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x20800, 0x0)
ioctl$auto_SNDCTL_SYNTH_INFO(r0, 0xc08c5102, 0x0)
writev$auto(0xca, 0x0, 0x7e)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1c1800, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x7000000, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x1, 0x7, &(0x7f00000009c0)='*\'\x00', 0xe388)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x1, 0x0)
write$auto_configfs_file_operations_configfs_internal(r1, &(0x7f0000000140)="8e", 0x1)
setsockopt$auto(0x3, 0x10000000084, 0x76, 0x0, 0x2)
socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
pidfd_open$auto(0x1, 0x80)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff)

4.408704407s ago: executing program 0 (id=161):
r0 = syz_clone(0x25342080, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video3\x00', 0x10b000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
fcntl$auto(0xffffffffffffffff, 0x409, 0x40003f)
r2 = prctl$auto_PR_SET_VMA_ANON_NAME(0x4, 0x0, 0x0, 0x7a, 0x7)
openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x200000, 0x0)
socket(0x2, 0x1, 0x0)
getsockopt$auto(r1, 0x8, 0x7f, 0x0, &(0x7f0000000100)=0x2001e)
writev$auto(r2, 0x0, 0x8)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x104, 0x80000001, 0x7, 0x1, 0x3, 0x15f4da0a, 0x6, 0x3, 0x62, 0x1, 0x7, 0x6d3f, 0x2, 0x2, 0xfffffffffffffffe]}, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x8)
r4 = socket(0x2, 0xa, 0x106)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x06\x01e\x1cJ\x99\x00\x06\x11\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14N\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9', 0xd4f, 0x3)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xd, 0x1, 0x948d, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x8a47]}, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.net/syz1\x00', 0x200002, 0x0)
syz_clone3(&(0x7f0000000440)={0x4000, &(0x7f00000000c0), &(0x7f0000000180), &(0x7f00000001c0), {0x32}, &(0x7f0000000200)=""/9, 0x9, &(0x7f0000000240)=""/69, &(0x7f0000000340)=[r0], 0x1, {r5}}, 0x58)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="c79f25bd7000ffdbdf250700000008000300", @ANYRES32, @ANYBLOB="601ad438fd9464853f9d6f2753ee4580e71eb3"], 0x1c}, 0x1, 0x0, 0x0, 0xc031}, 0x44)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'ip6erspan0\x00', <r6=>0x0})
sendmsg$auto_ETHTOOL_MSG_DEBUG_SET(r4, &(0x7f00000009c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000980)={&(0x7f0000000a00)=ANY=[@ANYBLOB="141f57a4f94d40501605185c040000", @ANYRES16=0x0, @ANYBLOB="00012abd7000ffdbdf250800000048000180140002007465616d300000000000000000000000080003000300000008000100", @ANYRES32=0x0, @ANYBLOB="080003000700000008000100", @ANYRES32=0x0, @ANYBLOB="080003000101000008000100", @ANYRES32=r6, @ANYBLOB="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"], 0x414}, 0x1, 0x0, 0x0, 0x8001}, 0x8c0)
unshare$auto(0x40000080)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/sequencer\x00', 0x20000, 0x0)

650.575834ms ago: executing program 2 (id=162):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
futex$auto(0x0, 0x8c, 0x1, 0x0, 0x0, 0x1)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x20800, 0x0)
ioctl$auto_SNDCTL_SYNTH_INFO(r0, 0xc08c5102, 0x0)
writev$auto(0xca, 0x0, 0x7e)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1c1800, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x7000000, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x1, 0x7, &(0x7f00000009c0)='*\'\x00', 0xe388)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000)
r1 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x1, 0x0)
write$auto_configfs_file_operations_configfs_internal(r1, &(0x7f0000000140)="8e", 0x1)
setsockopt$auto(0x3, 0x10000000084, 0x76, 0x0, 0x2)
socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
pidfd_open$auto(0x1, 0x80)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff)

0s ago: executing program 0 (id=163):
r0 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000100), 0xffffffffffffffff)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x2, 0x8, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f4)
bpf$auto(0x2, 0x0, 0xc)
bpf$auto(0x1, 0x0, 0x5c8)
sendmsg$auto_SMC_PNETID_DEL(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r0, 0x1, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4004}, 0x8000)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/addr_prefs\x00', 0x102, 0x0)
writev$auto(r1, &(0x7f0000000080)={&(0x7f0000000040), 0x6}, 0x3)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
mmap$auto(0xfffffffffffffff8, 0xef3f, 0x0, 0x17, r2, 0x7)
io_uring_setup$auto(0x6, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r3, 0x4b47, 0x1)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.233' (ED25519) to the list of known hosts.
[   80.931428][ T5817] cgroup: Unknown subsys name 'net'
[   81.079926][ T5817] cgroup: Unknown subsys name 'cpuset'
[   81.088972][ T5817] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   82.596743][ T5817] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   84.873817][ T5834] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   84.882094][ T5834] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   84.888869][ T5842] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   84.897589][ T5842] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   84.898148][ T5834] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   84.905208][ T5842] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   84.912775][ T5834] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   84.927686][ T5834] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   84.935660][ T5834] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   84.946136][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   84.954425][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   84.961477][ T5843] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   84.963102][ T5843] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   84.975749][ T5834] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   84.976760][ T5843] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   84.991746][ T5834] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   84.999432][ T5834] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   85.009615][ T5151] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   85.014994][ T5834] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   85.032856][ T5843] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   85.588861][ T5828] chnl_net:caif_netlink_parms(): no params data found
[   85.661616][ T5826] chnl_net:caif_netlink_parms(): no params data found
[   85.672287][ T5827] chnl_net:caif_netlink_parms(): no params data found
[   85.769478][ T5835] chnl_net:caif_netlink_parms(): no params data found
[   85.797053][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.804631][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.812603][ T5828] bridge_slave_0: entered allmulticast mode
[   85.820629][ T5828] bridge_slave_0: entered promiscuous mode
[   85.866401][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.873532][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.881151][ T5828] bridge_slave_1: entered allmulticast mode
[   85.889641][ T5828] bridge_slave_1: entered promiscuous mode
[   85.953603][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.961750][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.969415][ T5827] bridge_slave_0: entered allmulticast mode
[   85.976890][ T5827] bridge_slave_0: entered promiscuous mode
[   86.027493][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.034684][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.041996][ T5827] bridge_slave_1: entered allmulticast mode
[   86.049823][ T5827] bridge_slave_1: entered promiscuous mode
[   86.073847][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.085955][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.095331][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.104713][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.111996][ T5826] bridge_slave_0: entered allmulticast mode
[   86.121692][ T5826] bridge_slave_0: entered promiscuous mode
[   86.166311][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.173501][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.182441][ T5826] bridge_slave_1: entered allmulticast mode
[   86.190527][ T5826] bridge_slave_1: entered promiscuous mode
[   86.223156][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.260048][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.269725][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.277134][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.284406][ T5835] bridge_slave_0: entered allmulticast mode
[   86.291564][ T5835] bridge_slave_0: entered promiscuous mode
[   86.302007][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.329520][ T5828] team0: Port device team_slave_0 added
[   86.337868][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.347236][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.354728][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.362193][ T5835] bridge_slave_1: entered allmulticast mode
[   86.369684][ T5835] bridge_slave_1: entered promiscuous mode
[   86.423097][ T5828] team0: Port device team_slave_1 added
[   86.455841][ T5827] team0: Port device team_slave_0 added
[   86.465473][ T5826] team0: Port device team_slave_0 added
[   86.489342][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.496409][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.522697][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.536926][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.549754][ T5827] team0: Port device team_slave_1 added
[   86.557236][ T5826] team0: Port device team_slave_1 added
[   86.563656][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.570863][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.596820][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.618095][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.675004][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.682697][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.709033][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.744513][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.751757][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.778532][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.814785][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.831023][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.857818][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.875055][ T5835] team0: Port device team_slave_0 added
[   86.884513][ T5835] team0: Port device team_slave_1 added
[   86.896432][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.903408][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.933483][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.997001][ T5843] Bluetooth: hci2: command tx timeout
[   87.034585][ T5828] hsr_slave_0: entered promiscuous mode
[   87.041389][ T5828] hsr_slave_1: entered promiscuous mode
[   87.076076][ T5843] Bluetooth: hci3: command tx timeout
[   87.081808][ T5843] Bluetooth: hci0: command tx timeout
[   87.087372][ T5839] Bluetooth: hci1: command tx timeout
[   87.111973][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.119340][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.148929][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.201098][ T5827] hsr_slave_0: entered promiscuous mode
[   87.210112][ T5827] hsr_slave_1: entered promiscuous mode
[   87.217624][ T5827] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   87.225313][ T5827] Cannot create hsr debugfs directory
[   87.231580][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.239818][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   87.265836][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.289113][ T5826] hsr_slave_0: entered promiscuous mode
[   87.295309][ T5826] hsr_slave_1: entered promiscuous mode
[   87.301631][ T5826] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   87.309242][ T5826] Cannot create hsr debugfs directory
[   87.440408][ T5835] hsr_slave_0: entered promiscuous mode
[   87.447073][ T5835] hsr_slave_1: entered promiscuous mode
[   87.453118][ T5835] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   87.462696][ T5835] Cannot create hsr debugfs directory
[   87.827461][ T5828] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   87.845507][ T5828] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   87.857049][ T5828] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   87.889188][ T5828] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   87.964847][ T5826] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   87.981723][ T5826] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   88.012492][ T5826] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   88.023468][ T5826] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   88.085835][ T5827] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   88.101335][ T5827] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   88.112135][ T5827] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   88.141281][ T5827] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   88.219795][ T5835] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   88.235209][ T5835] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   88.251447][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.270816][ T5835] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   88.281586][ T5835] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   88.349867][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[   88.383991][  T760] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.391447][  T760] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.427501][ T2973] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.434695][ T2973] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.475547][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.549498][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.560892][ T5826] 8021q: adding VLAN 0 to HW filter on device team0
[   88.595478][ T2973] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.602710][ T2973] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.629986][ T5827] 8021q: adding VLAN 0 to HW filter on device team0
[   88.643061][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.661824][ T2973] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.669006][ T2973] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.702618][ T2973] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.709856][ T2973] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.758709][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.765944][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.822738][ T5835] 8021q: adding VLAN 0 to HW filter on device team0
[   88.872351][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.879573][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.902426][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.909558][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.027978][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.075446][ T5835] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   89.090697][ T5843] Bluetooth: hci2: command tx timeout
[   89.156433][ T5843] Bluetooth: hci0: command tx timeout
[   89.161889][ T5843] Bluetooth: hci3: command tx timeout
[   89.167701][ T5839] Bluetooth: hci1: command tx timeout
[   89.249018][ T5828] veth0_vlan: entered promiscuous mode
[   89.292647][ T5828] veth1_vlan: entered promiscuous mode
[   89.384421][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.427126][ T5828] veth0_macvtap: entered promiscuous mode
[   89.455489][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.465246][ T5828] veth1_macvtap: entered promiscuous mode
[   89.539892][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.568929][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.597808][ T5828] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.607420][ T5828] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.617239][ T5828] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.626056][ T5828] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.647406][ T5826] veth0_vlan: entered promiscuous mode
[   89.673964][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.698847][ T5827] veth0_vlan: entered promiscuous mode
[   89.710391][ T5826] veth1_vlan: entered promiscuous mode
[   89.737948][ T5827] veth1_vlan: entered promiscuous mode
[   89.813178][ T5827] veth0_macvtap: entered promiscuous mode
[   89.825001][ T5827] veth1_macvtap: entered promiscuous mode
[   89.875506][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.888295][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.905191][ T5826] veth0_macvtap: entered promiscuous mode
[   89.920676][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.943671][ T5826] veth1_macvtap: entered promiscuous mode
[   89.979893][ T5835] veth0_vlan: entered promiscuous mode
[   89.995343][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.017437][ T5827] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.027021][ T5827] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.035738][ T5827] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.045671][ T5827] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.060791][ T2973] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.062516][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.082222][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.086036][ T2973] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.093486][ T5835] veth1_vlan: entered promiscuous mode
[   90.137175][ T5826] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.146694][ T5826] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.155376][ T5826] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.164634][ T5826] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.220482][ T5828] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   90.349916][ T5835] veth0_macvtap: entered promiscuous mode
[   90.400192][ T5835] veth1_macvtap: entered promiscuous mode
[   90.433792][ T2973] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.458199][ T2973] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.480989][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.506612][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.523797][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.553045][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.567789][ T3017] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.575647][ T3017] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.610560][ T5835] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.623294][ T5835] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.632758][ T5835] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.643368][ T5835] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.672874][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.714483][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.742233][ T5924] FAULT_INJECTION: forcing a failure.
[   90.742233][ T5924] name failslab, interval 1, probability 0, space 0, times 1
[   90.779579][ T5924] CPU: 0 UID: 0 PID: 5924 Comm: syz.3.4 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[   90.779614][ T5924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   90.779641][ T5924] Call Trace:
[   90.779650][ T5924]  <TASK>
[   90.779663][ T5924]  dump_stack_lvl+0x16c/0x1f0
[   90.779709][ T5924]  should_fail_ex+0x512/0x640
[   90.779742][ T5924]  ? __kmalloc_node_noprof+0xc5/0x500
[   90.779782][ T5924]  should_failslab+0xc2/0x120
[   90.779807][ T5924]  __kmalloc_node_noprof+0xd8/0x500
[   90.779843][ T5924]  ? find_held_lock+0x2b/0x80
[   90.779867][ T5924]  ? alloc_slab_obj_exts+0x41/0xa0
[   90.779902][ T5924]  alloc_slab_obj_exts+0x41/0xa0
[   90.779932][ T5924]  __memcg_slab_post_alloc_hook+0x255/0x960
[   90.779965][ T5924]  ? kasan_save_track+0x14/0x30
[   90.780002][ T5924]  kmem_cache_alloc_lru_noprof+0x30f/0x3b0
[   90.780034][ T5924]  ? find_held_lock+0x2b/0x80
[   90.780056][ T5924]  ? pidfs_alloc_inode+0x25/0x80
[   90.780087][ T5924]  ? __pfx_pidfs_alloc_inode+0x10/0x10
[   90.780112][ T5924]  pidfs_alloc_inode+0x25/0x80
[   90.780139][ T5924]  alloc_inode+0x64/0x240
[   90.780165][ T5924]  path_from_stashed+0x2be/0xb00
[   90.780205][ T5924]  ? __pfx_path_from_stashed+0x10/0x10
[   90.780237][ T5924]  ? find_held_lock+0x2b/0x80
[   90.780261][ T5924]  ? alloc_fd+0x471/0x7d0
[   90.780298][ T5924]  pidfs_alloc_file+0xf8/0x330
[   90.780327][ T5924]  ? __pfx_pidfs_alloc_file+0x10/0x10
[   90.780364][ T5924]  pidfd_prepare+0x10c/0x1b0
[   90.780397][ T5924]  copy_process+0x46ea/0x76a0
[   90.780441][ T5924]  ? __pfx_copy_process+0x10/0x10
[   90.780488][ T5924]  kernel_clone+0xfc/0x960
[   90.780520][ T5924]  ? __pfx_kernel_clone+0x10/0x10
[   90.780566][ T5924]  ? 0xffffffffff600000
[   90.780593][ T5924]  ? 0xffffffffff600000
[   90.780628][ T5924]  __do_sys_clone+0xce/0x120
[   90.780666][ T5924]  ? __pfx___do_sys_clone+0x10/0x10
[   90.780698][ T5924]  ? 0xffffffffff600000
[   90.780716][ T5924]  ? 0xffffffffff600000
[   90.780732][ T5924]  ? 0xffffffffff600000
[   90.780762][ T5924]  ? xfd_validate_state+0x61/0x180
[   90.780792][ T5924]  ? __pfx_ksys_write+0x10/0x10
[   90.780835][ T5924]  do_syscall_64+0xcd/0x490
[   90.780874][ T5924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.780899][ T5924] RIP: 0033:0x7fb59598e929
[   90.780919][ T5924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.780949][ T5924] RSP: 002b:00007fb5967c2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[   90.780971][ T5924] RAX: ffffffffffffffda RBX: 00007fb595bb6080 RCX: 00007fb59598e929
[   90.780986][ T5924] RDX: ffffffffff600000 RSI: 0000000000000009 RDI: 0000000000001000
[   90.781001][ T5924] RBP: 00007fb595a10b39 R08: 0000000000000005 R09: 0000000000000000
[   90.781014][ T5924] R10: ffffffffff600000 R11: 0000000000000246 R12: 0000000000000000
[   90.781026][ T5924] R13: 0000000000000000 R14: 00007fb595bb6080 R15: 00007ffe65089758
[   90.781046][ T5924]  ? 0xffffffffff600000
[   90.781068][ T5924]  ? 0xffffffffff600000
[   90.781092][ T5924]  </TASK>
[   91.177245][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.215004][ T5843] Bluetooth: hci2: command tx timeout
[   91.249643][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   91.316760][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.341155][ T5843] Bluetooth: hci0: command tx timeout
[   91.347467][ T5843] Bluetooth: hci3: command tx timeout
[   91.353509][ T5843] Bluetooth: hci1: command tx timeout
[   91.402708][ T2973] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.411201][ T2973] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.650327][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.691202][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.776807][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.903944][   T43] cfg80211: failed to load regulatory.db
[   91.926406][ T5931] syz.0.1 uses obsolete (PF_INET,SOCK_PACKET)
[   92.226200][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.476115][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   92.703496][ T5940] FAULT_INJECTION: forcing a failure.
[   92.703496][ T5940] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   92.762016][ T5940] CPU: 1 UID: 0 PID: 5940 Comm: syz.2.3 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[   92.762049][ T5940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   92.762063][ T5940] Call Trace:
[   92.762071][ T5940]  <TASK>
[   92.762081][ T5940]  dump_stack_lvl+0x16c/0x1f0
[   92.762120][ T5940]  should_fail_ex+0x512/0x640
[   92.762158][ T5940]  _copy_from_iter+0x29f/0x16f0
[   92.762255][ T5940]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   92.762293][ T5940]  ? __pfx__copy_from_iter+0x10/0x10
[   92.762324][ T5940]  ? alloc_pages_mpol+0x25a/0x550
[   92.762346][ T5940]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   92.762378][ T5940]  copy_page_from_iter+0xde/0x180
[   92.762427][ T5940]  anon_pipe_write+0xbe7/0x1a70
[   92.762484][ T5940]  ? __pfx_anon_pipe_write+0x10/0x10
[   92.762523][ T5940]  ? apparmor_file_permission+0x251/0x400
[   92.762551][ T5940]  ? bpf_lsm_file_permission+0x9/0x10
[   92.762577][ T5940]  ? security_file_permission+0x71/0x210
[   92.762608][ T5940]  ? rw_verify_area+0xcf/0x680
[   92.762641][ T5940]  vfs_write+0x6c4/0x1150
[   92.762673][ T5940]  ? __pfx_anon_pipe_write+0x10/0x10
[   92.762713][ T5940]  ? __pfx_vfs_write+0x10/0x10
[   92.762742][ T5940]  ? find_held_lock+0x2b/0x80
[   92.762791][ T5940]  ksys_write+0x1f8/0x250
[   92.762829][ T5940]  ? __pfx_ksys_write+0x10/0x10
[   92.762874][ T5940]  do_syscall_64+0xcd/0x490
[   92.762918][ T5940]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.762944][ T5940] RIP: 0033:0x7f644f58e929
[   92.762965][ T5940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.762989][ T5940] RSP: 002b:00007f6450483038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   92.763013][ T5940] RAX: ffffffffffffffda RBX: 00007f644f7b5fa0 RCX: 00007f644f58e929
[   92.763031][ T5940] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[   92.763046][ T5940] RBP: 00007f644f610b39 R08: 0000000000000000 R09: 0000000000000000
[   92.763062][ T5940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   92.763076][ T5940] R13: 0000000000000000 R14: 00007f644f7b5fa0 R15: 00007ffd47ad5ba8
[   92.763110][ T5940]  </TASK>
[   93.009471][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   93.018553][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   93.028665][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   93.031679][ T5928] sysfs_service_op_show: Client not running :-5:
[   93.044160][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   93.236204][ T5839] Bluetooth: hci2: command tx timeout
[   93.397163][ T5839] Bluetooth: hci1: command tx timeout
[   93.403527][ T5843] Bluetooth: hci3: command tx timeout
[   93.403928][ T5839] Bluetooth: hci0: command tx timeout
[   94.980028][ T5960] Invalid ELF header magic: != ELF
[   95.208651][ T5964] FAULT_INJECTION: forcing a failure.
[   95.208651][ T5964] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.260083][ T5964] CPU: 0 UID: 0 PID: 5964 Comm: syz.0.9 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[   95.260121][ T5964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   95.260136][ T5964] Call Trace:
[   95.260145][ T5964]  <TASK>
[   95.260155][ T5964]  dump_stack_lvl+0x16c/0x1f0
[   95.260212][ T5964]  should_fail_ex+0x512/0x640
[   95.260251][ T5964]  _copy_from_iter+0x29f/0x16f0
[   95.260293][ T5964]  ? anon_pipe_write+0x6f1/0x1a70
[   95.260328][ T5964]  ? __pfx__copy_from_iter+0x10/0x10
[   95.260362][ T5964]  ? __pfx___mutex_lock+0x10/0x10
[   95.260413][ T5964]  copy_page_from_iter+0xde/0x180
[   95.260454][ T5964]  anon_pipe_write+0xbe7/0x1a70
[   95.260509][ T5964]  ? __pfx_anon_pipe_write+0x10/0x10
[   95.260547][ T5964]  ? __pfx_autoremove_wake_function+0x10/0x10
[   95.260581][ T5964]  ? bpf_lsm_file_permission+0x9/0x10
[   95.260606][ T5964]  ? security_file_permission+0x71/0x210
[   95.260639][ T5964]  ? rw_verify_area+0xcf/0x680
[   95.260673][ T5964]  vfs_write+0x6c4/0x1150
[   95.260708][ T5964]  ? __pfx_anon_pipe_write+0x10/0x10
[   95.260747][ T5964]  ? __pfx_vfs_write+0x10/0x10
[   95.260778][ T5964]  ? find_held_lock+0x2b/0x80
[   95.260826][ T5964]  ksys_write+0x1f8/0x250
[   95.260859][ T5964]  ? __pfx_ksys_write+0x10/0x10
[   95.260903][ T5964]  do_syscall_64+0xcd/0x490
[   95.260940][ T5964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.260966][ T5964] RIP: 0033:0x7fbea458e929
[   95.260986][ T5964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.261011][ T5964] RSP: 002b:00007fbea5438038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   95.261035][ T5964] RAX: ffffffffffffffda RBX: 00007fbea47b5fa0 RCX: 00007fbea458e929
[   95.261052][ T5964] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[   95.261067][ T5964] RBP: 00007fbea4610b39 R08: 0000000000000000 R09: 0000000000000000
[   95.261082][ T5964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   95.261096][ T5964] R13: 0000000000000000 R14: 00007fbea47b5fa0 R15: 00007ffee99f8548
[   95.261131][ T5964]  </TASK>
[   95.919960][ T5971] Invalid ELF header magic: != ELF
[   96.219517][   T30] audit: type=1800 audit(1750926467.552:2): pid=5966 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.10" name="dbroot" dev="configfs" ino=7627 res=0 errno=0
[   97.592201][ T5988] Invalid ELF header magic: != ELF
[   97.758346][ T5992] openvswitch: netlink: Message has 1 unknown bytes.
[   97.795736][ T5981] FAULT_INJECTION: forcing a failure.
[   97.795736][ T5981] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   97.818888][ T5981] CPU: 0 UID: 0 PID: 5981 Comm: syz.3.13 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[   97.818911][ T5981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   97.818920][ T5981] Call Trace:
[   97.818925][ T5981]  <TASK>
[   97.818931][ T5981]  dump_stack_lvl+0x16c/0x1f0
[   97.818958][ T5981]  should_fail_ex+0x512/0x640
[   97.818989][ T5981]  should_fail_alloc_page+0xe7/0x130
[   97.819005][ T5981]  prepare_alloc_pages+0x3c2/0x610
[   97.819023][ T5981]  ? rcu_is_watching+0x12/0xc0
[   97.819039][ T5981]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[   97.819061][ T5981]  ? __lock_acquire+0xb8a/0x1c90
[   97.819087][ T5981]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   97.819108][ T5981]  ? do_raw_spin_lock+0x12c/0x2b0
[   97.819130][ T5981]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   97.819151][ T5981]  ? find_held_lock+0x2b/0x80
[   97.819171][ T5981]  ? __lock_acquire+0xb8a/0x1c90
[   97.819189][ T5981]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   97.819211][ T5981]  ? policy_nodemask+0xea/0x4e0
[   97.819228][ T5981]  alloc_pages_mpol+0x1fb/0x550
[   97.819242][ T5981]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   97.819260][ T5981]  folio_alloc_mpol_noprof+0x36/0x2f0
[   97.819277][ T5981]  shmem_alloc_folio+0x135/0x160
[   97.819296][ T5981]  shmem_alloc_and_add_folio+0x499/0xc20
[   97.819320][ T5981]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[   97.819342][ T5981]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[   97.819365][ T5981]  shmem_get_folio_gfp+0x67f/0x1600
[   97.819389][ T5981]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[   97.819410][ T5981]  ? filemap_map_pages+0xf6f/0x1680
[   97.819433][ T5981]  shmem_fault+0x1fe/0xa30
[   97.819452][ T5981]  ? __lock_acquire+0x622/0x1c90
[   97.819470][ T5981]  ? __pfx_shmem_fault+0x10/0x10
[   97.819493][ T5981]  ? __pfx_filemap_map_pages+0x10/0x10
[   97.819519][ T5981]  __do_fault+0x10a/0x490
[   97.819542][ T5981]  __handle_mm_fault+0x3c2a/0x5490
[   97.819565][ T5981]  ? __pfx___handle_mm_fault+0x10/0x10
[   97.819582][ T5981]  ? __pfx_mt_find+0x10/0x10
[   97.819606][ T5981]  ? find_vma+0xbf/0x140
[   97.819619][ T5981]  ? __pfx_find_vma+0x10/0x10
[   97.819634][ T5981]  handle_mm_fault+0x589/0xd10
[   97.819653][ T5981]  ? __pkru_allows_pkey+0x41/0xb0
[   97.819673][ T5981]  do_user_addr_fault+0x7a6/0x1370
[   97.819694][ T5981]  ? rcu_is_watching+0x12/0xc0
[   97.819710][ T5981]  exc_page_fault+0x5c/0xb0
[   97.819730][ T5981]  asm_exc_page_fault+0x26/0x30
[   97.819744][ T5981] RIP: 0010:rep_movs_alternative+0x4a/0x90
[   97.819761][ T5981] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[   97.819774][ T5981] RSP: 0018:ffffc9000514fa48 EFLAGS: 00050206
[   97.819786][ T5981] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000
[   97.819794][ T5981] RDX: 0000000000000000 RSI: 0000000000020000 RDI: ffff88805a613000
[   97.819803][ T5981] RBP: 0000000000020000 R08: 0000000000000001 R09: ffffed100b4c27ff
[   97.819811][ T5981] R10: ffff88805a613fff R11: 0000000000000000 R12: ffffc9000514fda0
[   97.819819][ T5981] R13: 0000000000021000 R14: ffff88805a613000 R15: 00007ffffffff000
[   97.819838][ T5981]  _copy_from_iter+0x383/0x16f0
[   97.819863][ T5981]  ? anon_pipe_write+0x6f1/0x1a70
[   97.819884][ T5981]  ? __pfx__copy_from_iter+0x10/0x10
[   97.819905][ T5981]  ? __pfx___mutex_lock+0x10/0x10
[   97.819948][ T5981]  copy_page_from_iter+0xde/0x180
[   97.819977][ T5981]  anon_pipe_write+0xbe7/0x1a70
[   97.820006][ T5981]  ? __pfx_anon_pipe_write+0x10/0x10
[   97.820029][ T5981]  ? __pfx_autoremove_wake_function+0x10/0x10
[   97.820048][ T5981]  ? bpf_lsm_file_permission+0x9/0x10
[   97.820063][ T5981]  ? security_file_permission+0x71/0x210
[   97.820082][ T5981]  ? rw_verify_area+0xcf/0x680
[   97.820101][ T5981]  vfs_write+0x6c4/0x1150
[   97.820121][ T5981]  ? __pfx_anon_pipe_write+0x10/0x10
[   97.820143][ T5981]  ? __pfx_vfs_write+0x10/0x10
[   97.820161][ T5981]  ? find_held_lock+0x2b/0x80
[   97.820186][ T5981]  ksys_write+0x1f8/0x250
[   97.820205][ T5981]  ? __pfx_ksys_write+0x10/0x10
[   97.820232][ T5981]  do_syscall_64+0xcd/0x490
[   97.820254][ T5981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.820268][ T5981] RIP: 0033:0x7fb59598e929
[   97.820280][ T5981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.820295][ T5981] RSP: 002b:00007fb5967e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   97.820315][ T5981] RAX: ffffffffffffffda RBX: 00007fb595bb5fa0 RCX: 00007fb59598e929
[   97.820329][ T5981] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[   97.820342][ T5981] RBP: 00007fb595a10b39 R08: 0000000000000000 R09: 0000000000000000
[   97.820355][ T5981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   97.820368][ T5981] R13: 0000000000000000 R14: 00007fb595bb5fa0 R15: 00007ffe65089758
[   97.820401][ T5981]  </TASK>
[   99.109291][ T5986] Invalid ELF header magic: != ELF
[  100.936481][ T5998] ubi0: attaching mtd0
[  100.988213][ T5998] ubi0: scanning is finished
[  100.994194][ T5998] ubi0: empty MTD device detected
[  101.443612][ T6012] Invalid ELF header magic: != ELF
[  101.575155][ T5998] ubi0 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt0d", error -4
[  102.795558][ T6028] Invalid ELF header magic: != ELF
[  103.849872][ T6027] Invalid ELF header magic: != ELF
[  104.024071][ T6033] FAULT_INJECTION: forcing a failure.
[  104.024071][ T6033] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  104.059950][ T6033] CPU: 1 UID: 0 PID: 6033 Comm: syz.1.21 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  104.059989][ T6033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  104.060003][ T6033] Call Trace:
[  104.060013][ T6033]  <TASK>
[  104.060023][ T6033]  dump_stack_lvl+0x16c/0x1f0
[  104.060066][ T6033]  should_fail_ex+0x512/0x640
[  104.060104][ T6033]  _copy_from_iter+0x29f/0x16f0
[  104.060148][ T6033]  ? anon_pipe_write+0x6f1/0x1a70
[  104.060182][ T6033]  ? __pfx__copy_from_iter+0x10/0x10
[  104.060217][ T6033]  ? __pfx___mutex_lock+0x10/0x10
[  104.060267][ T6033]  copy_page_from_iter+0xde/0x180
[  104.060308][ T6033]  anon_pipe_write+0xbe7/0x1a70
[  104.060357][ T6033]  ? __pfx_anon_pipe_write+0x10/0x10
[  104.060393][ T6033]  ? __pfx_autoremove_wake_function+0x10/0x10
[  104.060433][ T6033]  ? bpf_lsm_file_permission+0x9/0x10
[  104.060458][ T6033]  ? security_file_permission+0x71/0x210
[  104.060488][ T6033]  ? rw_verify_area+0xcf/0x680
[  104.060520][ T6033]  vfs_write+0x6c4/0x1150
[  104.060560][ T6033]  ? __pfx_anon_pipe_write+0x10/0x10
[  104.060598][ T6033]  ? __pfx_vfs_write+0x10/0x10
[  104.060628][ T6033]  ? find_held_lock+0x2b/0x80
[  104.060675][ T6033]  ksys_write+0x1f8/0x250
[  104.060707][ T6033]  ? __pfx_ksys_write+0x10/0x10
[  104.060751][ T6033]  do_syscall_64+0xcd/0x490
[  104.060789][ T6033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.060814][ T6033] RIP: 0033:0x7fdd4058e929
[  104.060835][ T6033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.060858][ T6033] RSP: 002b:00007fdd41478038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  104.060882][ T6033] RAX: ffffffffffffffda RBX: 00007fdd407b5fa0 RCX: 00007fdd4058e929
[  104.060898][ T6033] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  104.060914][ T6033] RBP: 00007fdd40610b39 R08: 0000000000000000 R09: 0000000000000000
[  104.060929][ T6033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  104.060944][ T6033] R13: 0000000000000000 R14: 00007fdd407b5fa0 R15: 00007fff46666c38
[  104.060979][ T6033]  </TASK>
[  105.473611][ T6053] Invalid ELF header magic: != ELF
[  105.885154][ T6061] Invalid ELF header magic: != ELF
[  106.083984][ T6060] Invalid ELF header magic: != ELF
[  107.395174][ T6070] can: request_module (can-proto-4) failed.
[  108.833607][   T30] audit: type=1800 audit(1750926480.242:3): pid=6084 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.29" name="file0" dev="tmpfs" ino=56 res=0 errno=0
[  108.910494][ T6079] Invalid ELF header magic: != ELF
[  111.683880][ T6115] Invalid ELF header magic: != ELF
[  113.224753][ T6120] FAULT_INJECTION: forcing a failure.
[  113.224753][ T6120] name fail_futex, interval 1, probability 0, space 0, times 1
[  113.309170][ T6120] CPU: 1 UID: 0 PID: 6120 Comm: syz.3.34 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  113.309192][ T6120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  113.309201][ T6120] Call Trace:
[  113.309206][ T6120]  <TASK>
[  113.309212][ T6120]  dump_stack_lvl+0x16c/0x1f0
[  113.309239][ T6120]  should_fail_ex+0x512/0x640
[  113.309263][ T6120]  get_futex_key+0x293/0x1540
[  113.309281][ T6120]  ? find_held_lock+0x2b/0x80
[  113.309295][ T6120]  ? __pfx_get_futex_key+0x10/0x10
[  113.309312][ T6120]  ? __mutex_trylock_common+0xe9/0x250
[  113.309335][ T6120]  futex_wake+0xea/0x530
[  113.309357][ T6120]  ? __pfx_futex_wake+0x10/0x10
[  113.309375][ T6120]  ? __lock_acquire+0xb8a/0x1c90
[  113.309401][ T6120]  do_futex+0x1e3/0x350
[  113.309418][ T6120]  ? __pfx_do_futex+0x10/0x10
[  113.309443][ T6120]  ? __might_fault+0xe3/0x190
[  113.309470][ T6120]  mm_release+0x24e/0x300
[  113.309486][ T6120]  do_exit+0x68b/0x2bd0
[  113.309508][ T6120]  ? __pfx_do_exit+0x10/0x10
[  113.309526][ T6120]  ? do_raw_spin_lock+0x12c/0x2b0
[  113.309547][ T6120]  ? find_held_lock+0x2b/0x80
[  113.309563][ T6120]  do_group_exit+0xd3/0x2a0
[  113.309586][ T6120]  get_signal+0x2673/0x26d0
[  113.309606][ T6120]  ? __pfx_anon_pipe_write+0x10/0x10
[  113.309630][ T6120]  ? __pfx_get_signal+0x10/0x10
[  113.309644][ T6120]  ? find_held_lock+0x2b/0x80
[  113.309661][ T6120]  arch_do_signal_or_restart+0x8f/0x790
[  113.309681][ T6120]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  113.309701][ T6120]  ? ksys_write+0x1ac/0x250
[  113.309721][ T6120]  ? __pfx_ksys_write+0x10/0x10
[  113.309746][ T6120]  exit_to_user_mode_loop+0x84/0x110
[  113.309770][ T6120]  do_syscall_64+0x3f6/0x490
[  113.309793][ T6120]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.309809][ T6120] RIP: 0033:0x7fb59598e929
[  113.309820][ T6120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.309833][ T6120] RSP: 002b:00007fb5967e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  113.309847][ T6120] RAX: 0000000000020000 RBX: 00007fb595bb5fa0 RCX: 00007fb59598e929
[  113.309856][ T6120] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  113.309864][ T6120] RBP: 00007fb595a10b39 R08: 0000000000000000 R09: 0000000000000000
[  113.309872][ T6120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  113.309880][ T6120] R13: 0000000000000000 R14: 00007fb595bb5fa0 R15: 00007ffe65089758
[  113.309902][ T6120]  </TASK>
[  114.221780][ T6147] Invalid ELF header magic: != ELF
[  114.623349][ T6149] FAULT_INJECTION: forcing a failure.
[  114.623349][ T6149] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  114.651825][ T6149] CPU: 0 UID: 0 PID: 6149 Comm: syz.2.39 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  114.651862][ T6149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  114.651878][ T6149] Call Trace:
[  114.651887][ T6149]  <TASK>
[  114.651897][ T6149]  dump_stack_lvl+0x16c/0x1f0
[  114.651940][ T6149]  should_fail_ex+0x512/0x640
[  114.651982][ T6149]  _copy_from_iter+0x29f/0x16f0
[  114.652026][ T6149]  ? anon_pipe_write+0x6f1/0x1a70
[  114.652062][ T6149]  ? __pfx__copy_from_iter+0x10/0x10
[  114.652097][ T6149]  ? __pfx___mutex_lock+0x10/0x10
[  114.652148][ T6149]  copy_page_from_iter+0xde/0x180
[  114.652190][ T6149]  anon_pipe_write+0xbe7/0x1a70
[  114.652237][ T6149]  ? __pfx_anon_pipe_write+0x10/0x10
[  114.652272][ T6149]  ? __pfx_autoremove_wake_function+0x10/0x10
[  114.652301][ T6149]  ? bpf_lsm_file_permission+0x9/0x10
[  114.652325][ T6149]  ? security_file_permission+0x71/0x210
[  114.652353][ T6149]  ? rw_verify_area+0xcf/0x680
[  114.652382][ T6149]  vfs_write+0x6c4/0x1150
[  114.652411][ T6149]  ? __pfx_anon_pipe_write+0x10/0x10
[  114.652446][ T6149]  ? __pfx_vfs_write+0x10/0x10
[  114.652473][ T6149]  ? find_held_lock+0x2b/0x80
[  114.652515][ T6149]  ksys_write+0x1f8/0x250
[  114.652544][ T6149]  ? __pfx_ksys_write+0x10/0x10
[  114.652702][ T6149]  do_syscall_64+0xcd/0x490
[  114.652749][ T6149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.652775][ T6149] RIP: 0033:0x7f644f58e929
[  114.652795][ T6149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.652816][ T6149] RSP: 002b:00007f6450462038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  114.652838][ T6149] RAX: ffffffffffffffda RBX: 00007f644f7b6080 RCX: 00007f644f58e929
[  114.652854][ T6149] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  114.652867][ T6149] RBP: 00007f644f610b39 R08: 0000000000000000 R09: 0000000000000000
[  114.652880][ T6149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  114.652893][ T6149] R13: 0000000000000000 R14: 00007f644f7b6080 R15: 00007ffd47ad5ba8
[  114.652922][ T6149]  </TASK>
[  115.067916][ T6152] Invalid ELF header magic: != ELF
[  118.576108][ T6167] Invalid ELF header magic: != ELF
[  119.173235][ T6187] Invalid ELF header magic: != ELF
[  119.219449][ T6193] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  122.900921][ T6225] FAULT_INJECTION: forcing a failure.
[  122.900921][ T6225] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  122.937617][ T6225] CPU: 0 UID: 0 PID: 6225 Comm: syz.2.53 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  122.937654][ T6225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  122.937671][ T6225] Call Trace:
[  122.937679][ T6225]  <TASK>
[  122.937689][ T6225]  dump_stack_lvl+0x16c/0x1f0
[  122.937743][ T6225]  should_fail_ex+0x512/0x640
[  122.937789][ T6225]  _copy_from_iter+0x29f/0x16f0
[  122.937828][ T6225]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  122.937868][ T6225]  ? __pfx__copy_from_iter+0x10/0x10
[  122.937903][ T6225]  ? alloc_pages_mpol+0x25a/0x550
[  122.937928][ T6225]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  122.937958][ T6225]  copy_page_from_iter+0xde/0x180
[  122.937997][ T6225]  anon_pipe_write+0xbe7/0x1a70
[  122.938045][ T6225]  ? __pfx_anon_pipe_write+0x10/0x10
[  122.938080][ T6225]  ? __pfx_autoremove_wake_function+0x10/0x10
[  122.938110][ T6225]  ? bpf_lsm_file_permission+0x9/0x10
[  122.938134][ T6225]  ? security_file_permission+0x71/0x210
[  122.938164][ T6225]  ? rw_verify_area+0xcf/0x680
[  122.938196][ T6225]  vfs_write+0x6c4/0x1150
[  122.938228][ T6225]  ? __pfx_anon_pipe_write+0x10/0x10
[  122.938265][ T6225]  ? __pfx_vfs_write+0x10/0x10
[  122.938293][ T6225]  ? find_held_lock+0x2b/0x80
[  122.938339][ T6225]  ksys_write+0x1f8/0x250
[  122.938371][ T6225]  ? __pfx_ksys_write+0x10/0x10
[  122.938415][ T6225]  do_syscall_64+0xcd/0x490
[  122.938454][ T6225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.938479][ T6225] RIP: 0033:0x7f644f58e929
[  122.938515][ T6225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.938539][ T6225] RSP: 002b:00007f6450483038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  122.938566][ T6225] RAX: ffffffffffffffda RBX: 00007f644f7b5fa0 RCX: 00007f644f58e929
[  122.938587][ T6225] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  122.938602][ T6225] RBP: 00007f644f610b39 R08: 0000000000000000 R09: 0000000000000000
[  122.938618][ T6225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  122.938633][ T6225] R13: 0000000000000000 R14: 00007f644f7b5fa0 R15: 00007ffd47ad5ba8
[  122.938667][ T6225]  </TASK>
[  123.815525][ T6244] Invalid ELF header magic: != ELF
[  125.197790][ T6272] Invalid ELF header magic: != ELF
[  127.396820][ T6290] FAULT_INJECTION: forcing a failure.
[  127.396820][ T6290] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  127.396875][ T6290] CPU: 1 UID: 0 PID: 6290 Comm: syz.3.64 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  127.396904][ T6290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  127.396918][ T6290] Call Trace:
[  127.396926][ T6290]  <TASK>
[  127.396935][ T6290]  dump_stack_lvl+0x16c/0x1f0
[  127.396978][ T6290]  should_fail_ex+0x512/0x640
[  127.397015][ T6290]  _copy_from_iter+0x29f/0x16f0
[  127.397068][ T6290]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  127.397108][ T6290]  ? __pfx__copy_from_iter+0x10/0x10
[  127.397144][ T6290]  ? alloc_pages_mpol+0x25a/0x550
[  127.397168][ T6290]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  127.397197][ T6290]  copy_page_from_iter+0xde/0x180
[  127.397236][ T6290]  anon_pipe_write+0xbe7/0x1a70
[  127.397282][ T6290]  ? __pfx_anon_pipe_write+0x10/0x10
[  127.397315][ T6290]  ? __pfx_autoremove_wake_function+0x10/0x10
[  127.397344][ T6290]  ? bpf_lsm_file_permission+0x9/0x10
[  127.397368][ T6290]  ? security_file_permission+0x71/0x210
[  127.397397][ T6290]  ? rw_verify_area+0xcf/0x680
[  127.397427][ T6290]  vfs_write+0x6c4/0x1150
[  127.397458][ T6290]  ? __pfx_anon_pipe_write+0x10/0x10
[  127.397493][ T6290]  ? __pfx_vfs_write+0x10/0x10
[  127.397520][ T6290]  ? find_held_lock+0x2b/0x80
[  127.397564][ T6290]  ksys_write+0x1f8/0x250
[  127.397593][ T6290]  ? __pfx_ksys_write+0x10/0x10
[  127.397633][ T6290]  do_syscall_64+0xcd/0x490
[  127.397667][ T6290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.397690][ T6290] RIP: 0033:0x7fb59598e929
[  127.397709][ T6290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.397730][ T6290] RSP: 002b:00007fb5967e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  127.397752][ T6290] RAX: ffffffffffffffda RBX: 00007fb595bb5fa0 RCX: 00007fb59598e929
[  127.397767][ T6290] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  127.397780][ T6290] RBP: 00007fb595a10b39 R08: 0000000000000000 R09: 0000000000000000
[  127.397794][ T6290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  127.397807][ T6290] R13: 0000000000000000 R14: 00007fb595bb5fa0 R15: 00007ffe65089758
[  127.397838][ T6290]  </TASK>
[  127.481069][ T6295] Invalid ELF header magic: != ELF
[  127.641014][ T6307] Invalid ELF header magic: != ELF
[  128.309589][ T6300] tty tty45: ldisc open failed (-12), clearing slot 44
[  129.212306][ T6324] Invalid ELF header magic: != ELF
[  130.764362][ T6325] Invalid ELF header magic: != ELF
[  132.155699][ T6336] FAULT_INJECTION: forcing a failure.
[  132.155699][ T6336] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  132.266050][ T6336] CPU: 1 UID: 0 PID: 6336 Comm: syz.1.71 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  132.266088][ T6336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  132.266103][ T6336] Call Trace:
[  132.266112][ T6336]  <TASK>
[  132.266121][ T6336]  dump_stack_lvl+0x16c/0x1f0
[  132.266160][ T6336]  should_fail_ex+0x512/0x640
[  132.266183][ T6336]  should_fail_alloc_page+0xe7/0x130
[  132.266199][ T6336]  prepare_alloc_pages+0x3c2/0x610
[  132.266216][ T6336]  ? rcu_is_watching+0x12/0xc0
[  132.266233][ T6336]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  132.266257][ T6336]  ? __lock_acquire+0xb8a/0x1c90
[  132.266282][ T6336]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  132.266304][ T6336]  ? do_raw_spin_lock+0x12c/0x2b0
[  132.266325][ T6336]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  132.266346][ T6336]  ? find_held_lock+0x2b/0x80
[  132.266366][ T6336]  ? __lock_acquire+0xb8a/0x1c90
[  132.266383][ T6336]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  132.266406][ T6336]  ? policy_nodemask+0xea/0x4e0
[  132.266421][ T6336]  alloc_pages_mpol+0x1fb/0x550
[  132.266435][ T6336]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  132.266453][ T6336]  folio_alloc_mpol_noprof+0x36/0x2f0
[  132.266470][ T6336]  shmem_alloc_folio+0x135/0x160
[  132.266488][ T6336]  shmem_alloc_and_add_folio+0x499/0xc20
[  132.266512][ T6336]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  132.266534][ T6336]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  132.266557][ T6336]  shmem_get_folio_gfp+0x67f/0x1600
[  132.266581][ T6336]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  132.266604][ T6336]  ? filemap_map_pages+0xf6f/0x1680
[  132.266629][ T6336]  shmem_fault+0x1fe/0xa30
[  132.266647][ T6336]  ? __lock_acquire+0x622/0x1c90
[  132.266665][ T6336]  ? __pfx_shmem_fault+0x10/0x10
[  132.266687][ T6336]  ? __pfx_filemap_map_pages+0x10/0x10
[  132.266714][ T6336]  __do_fault+0x10a/0x490
[  132.266737][ T6336]  __handle_mm_fault+0x3c2a/0x5490
[  132.266760][ T6336]  ? __pfx___handle_mm_fault+0x10/0x10
[  132.266777][ T6336]  ? __pfx_mt_find+0x10/0x10
[  132.266800][ T6336]  ? find_vma+0xbf/0x140
[  132.266814][ T6336]  ? __pfx_find_vma+0x10/0x10
[  132.266830][ T6336]  handle_mm_fault+0x589/0xd10
[  132.266849][ T6336]  ? __pkru_allows_pkey+0x41/0xb0
[  132.266877][ T6336]  do_user_addr_fault+0x7a6/0x1370
[  132.266898][ T6336]  ? rcu_is_watching+0x12/0xc0
[  132.266916][ T6336]  exc_page_fault+0x5c/0xb0
[  132.266936][ T6336]  asm_exc_page_fault+0x26/0x30
[  132.266950][ T6336] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  132.266967][ T6336] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  132.266980][ T6336] RSP: 0018:ffffc9000f1efa48 EFLAGS: 00050206
[  132.266996][ T6336] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000
[  132.267005][ T6336] RDX: 0000000000000000 RSI: 0000000000020000 RDI: ffff88807c579000
[  132.267013][ T6336] RBP: 0000000000020000 R08: 0000000000000001 R09: ffffed100f8af3ff
[  132.267021][ T6336] R10: ffff88807c579fff R11: 0000000000000000 R12: ffffc9000f1efda0
[  132.267030][ T6336] R13: 0000000000021000 R14: ffff88807c579000 R15: 00007ffffffff000
[  132.267049][ T6336]  _copy_from_iter+0x383/0x16f0
[  132.267075][ T6336]  ? anon_pipe_write+0x6f1/0x1a70
[  132.267095][ T6336]  ? __pfx__copy_from_iter+0x10/0x10
[  132.267116][ T6336]  ? __pfx___mutex_lock+0x10/0x10
[  132.267144][ T6336]  copy_page_from_iter+0xde/0x180
[  132.267167][ T6336]  anon_pipe_write+0xbe7/0x1a70
[  132.267195][ T6336]  ? __pfx_anon_pipe_write+0x10/0x10
[  132.267217][ T6336]  ? __pfx_autoremove_wake_function+0x10/0x10
[  132.267234][ T6336]  ? bpf_lsm_file_permission+0x9/0x10
[  132.267249][ T6336]  ? security_file_permission+0x71/0x210
[  132.267268][ T6336]  ? rw_verify_area+0xcf/0x680
[  132.267287][ T6336]  vfs_write+0x6c4/0x1150
[  132.267307][ T6336]  ? __pfx_anon_pipe_write+0x10/0x10
[  132.267329][ T6336]  ? __pfx_vfs_write+0x10/0x10
[  132.267347][ T6336]  ? find_held_lock+0x2b/0x80
[  132.267372][ T6336]  ksys_write+0x1f8/0x250
[  132.267391][ T6336]  ? __pfx_ksys_write+0x10/0x10
[  132.267416][ T6336]  do_syscall_64+0xcd/0x490
[  132.267439][ T6336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.267452][ T6336] RIP: 0033:0x7fdd4058e929
[  132.267465][ T6336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.267477][ T6336] RSP: 002b:00007fdd41478038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  132.267489][ T6336] RAX: ffffffffffffffda RBX: 00007fdd407b5fa0 RCX: 00007fdd4058e929
[  132.267498][ T6336] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  132.267506][ T6336] RBP: 00007fdd40610b39 R08: 0000000000000000 R09: 0000000000000000
[  132.267514][ T6336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  132.267522][ T6336] R13: 0000000000000000 R14: 00007fdd407b5fa0 R15: 00007fff46666c38
[  132.267541][ T6336]  </TASK>
[  132.951723][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  132.958247][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  133.558868][ T6347] Invalid ELF header magic: != ELF
[  136.739506][ T6383] Invalid ELF header magic: != ELF
[  136.757084][ T6379] FAULT_INJECTION: forcing a failure.
[  136.757084][ T6379] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  136.806284][ T6379] CPU: 0 UID: 0 PID: 6379 Comm: syz.2.80 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  136.806322][ T6379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  136.806337][ T6379] Call Trace:
[  136.806346][ T6379]  <TASK>
[  136.806356][ T6379]  dump_stack_lvl+0x16c/0x1f0
[  136.806397][ T6379]  should_fail_ex+0x512/0x640
[  136.806439][ T6379]  _copy_from_iter+0x29f/0x16f0
[  136.806479][ T6379]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  136.806519][ T6379]  ? __pfx__copy_from_iter+0x10/0x10
[  136.806557][ T6379]  ? alloc_pages_mpol+0x25a/0x550
[  136.806583][ T6379]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  136.806614][ T6379]  copy_page_from_iter+0xde/0x180
[  136.806654][ T6379]  anon_pipe_write+0xbe7/0x1a70
[  136.806705][ T6379]  ? __pfx_anon_pipe_write+0x10/0x10
[  136.806742][ T6379]  ? __pfx_autoremove_wake_function+0x10/0x10
[  136.806774][ T6379]  ? bpf_lsm_file_permission+0x9/0x10
[  136.806799][ T6379]  ? security_file_permission+0x71/0x210
[  136.806831][ T6379]  ? rw_verify_area+0xcf/0x680
[  136.806864][ T6379]  vfs_write+0x6c4/0x1150
[  136.806898][ T6379]  ? __pfx_anon_pipe_write+0x10/0x10
[  136.806936][ T6379]  ? __pfx_vfs_write+0x10/0x10
[  136.806965][ T6379]  ? find_held_lock+0x2b/0x80
[  136.807013][ T6379]  ksys_write+0x1f8/0x250
[  136.807045][ T6379]  ? __pfx_ksys_write+0x10/0x10
[  136.807086][ T6379]  do_syscall_64+0xcd/0x490
[  136.807121][ T6379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.807145][ T6379] RIP: 0033:0x7f644f58e929
[  136.807178][ T6379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.807203][ T6379] RSP: 002b:00007f6450483038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  136.807227][ T6379] RAX: ffffffffffffffda RBX: 00007f644f7b5fa0 RCX: 00007f644f58e929
[  136.807244][ T6379] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  136.807259][ T6379] RBP: 00007f644f610b39 R08: 0000000000000000 R09: 0000000000000000
[  136.807274][ T6379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  136.807288][ T6379] R13: 0000000000000000 R14: 00007f644f7b5fa0 R15: 00007ffd47ad5ba8
[  136.807322][ T6379]  </TASK>
[  137.880934][ T6394] Invalid ELF header magic: != ELF
[  140.776414][ T6416] Zero length message leads to an empty skb
[  140.783733][ T6416] netlink: 'syz.0.89': attribute type 16 has an invalid length.
[  140.791566][ T6416] netlink: 'syz.0.89': attribute type 17 has an invalid length.
[  140.799877][ T6416] netlink: 'syz.0.89': attribute type 19 has an invalid length.
[  140.812271][ T6416] netlink: 'syz.0.89': attribute type 27 has an invalid length.
[  140.859298][ T6416] netlink: 'syz.0.89': attribute type 28 has an invalid length.
[  140.874043][   T13] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.900057][ T6416] netlink: 'syz.0.89': attribute type 29 has an invalid length.
[  140.936111][ T6416] netlink: 'syz.0.89': attribute type 30 has an invalid length.
[  140.967654][ T6416] netlink: 'syz.0.89': attribute type 31 has an invalid length.
[  141.006607][ T6416] netlink: 2 bytes leftover after parsing attributes in process `syz.0.89'.
[  141.031126][   T13] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.278734][   T13] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.373498][   T13] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.661216][   T13] bridge_slave_1: left allmulticast mode
[  141.686470][   T13] bridge_slave_1: left promiscuous mode
[  141.693137][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  141.900639][   T13] bridge_slave_0: left allmulticast mode
[  141.926437][   T13] bridge_slave_0: left promiscuous mode
[  141.945108][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.978378][ T5843] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  142.018933][ T5843] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  142.030117][ T5843] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  142.047006][ T5843] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  142.056485][ T5843] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  142.413819][ T6426] FAULT_INJECTION: forcing a failure.
[  142.413819][ T6426] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  142.427164][ T6426] CPU: 0 UID: 0 PID: 6426 Comm: syz.1.92 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  142.427186][ T6426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  142.427195][ T6426] Call Trace:
[  142.427200][ T6426]  <TASK>
[  142.427206][ T6426]  dump_stack_lvl+0x16c/0x1f0
[  142.427232][ T6426]  should_fail_ex+0x512/0x640
[  142.427256][ T6426]  should_fail_alloc_page+0xe7/0x130
[  142.427271][ T6426]  prepare_alloc_pages+0x3c2/0x610
[  142.427289][ T6426]  ? rcu_is_watching+0x12/0xc0
[  142.427305][ T6426]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  142.427328][ T6426]  ? __lock_acquire+0xb8a/0x1c90
[  142.427354][ T6426]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  142.427375][ T6426]  ? do_raw_spin_lock+0x12c/0x2b0
[  142.427395][ T6426]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  142.427416][ T6426]  ? find_held_lock+0x2b/0x80
[  142.427435][ T6426]  ? __lock_acquire+0xb8a/0x1c90
[  142.427452][ T6426]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  142.427474][ T6426]  ? policy_nodemask+0xea/0x4e0
[  142.427489][ T6426]  alloc_pages_mpol+0x1fb/0x550
[  142.427503][ T6426]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  142.427522][ T6426]  folio_alloc_mpol_noprof+0x36/0x2f0
[  142.427539][ T6426]  shmem_alloc_folio+0x135/0x160
[  142.427557][ T6426]  shmem_alloc_and_add_folio+0x499/0xc20
[  142.427580][ T6426]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  142.427602][ T6426]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  142.427632][ T6426]  shmem_get_folio_gfp+0x67f/0x1600
[  142.427657][ T6426]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  142.427679][ T6426]  ? filemap_map_pages+0xf6f/0x1680
[  142.427704][ T6426]  shmem_fault+0x1fe/0xa30
[  142.427723][ T6426]  ? __lock_acquire+0x622/0x1c90
[  142.427741][ T6426]  ? __pfx_shmem_fault+0x10/0x10
[  142.427764][ T6426]  ? __pfx_filemap_map_pages+0x10/0x10
[  142.427790][ T6426]  __do_fault+0x10a/0x490
[  142.427813][ T6426]  __handle_mm_fault+0x3c2a/0x5490
[  142.427836][ T6426]  ? __pfx___handle_mm_fault+0x10/0x10
[  142.427853][ T6426]  ? __pfx_mt_find+0x10/0x10
[  142.427877][ T6426]  ? find_vma+0xbf/0x140
[  142.427891][ T6426]  ? __pfx_find_vma+0x10/0x10
[  142.427907][ T6426]  handle_mm_fault+0x589/0xd10
[  142.427925][ T6426]  ? __pkru_allows_pkey+0x41/0xb0
[  142.427946][ T6426]  do_user_addr_fault+0x7a6/0x1370
[  142.427966][ T6426]  ? rcu_is_watching+0x12/0xc0
[  142.427982][ T6426]  exc_page_fault+0x5c/0xb0
[  142.428002][ T6426]  asm_exc_page_fault+0x26/0x30
[  142.428016][ T6426] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  142.428033][ T6426] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  142.428046][ T6426] RSP: 0018:ffffc9000be07a48 EFLAGS: 00050206
[  142.428058][ T6426] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000
[  142.428066][ T6426] RDX: 0000000000000000 RSI: 0000000000020000 RDI: ffff88807c579000
[  142.428075][ T6426] RBP: 0000000000020000 R08: 0000000000000001 R09: ffffed100f8af3ff
[  142.428083][ T6426] R10: ffff88807c579fff R11: 0000000000000000 R12: ffffc9000be07da0
[  142.428091][ T6426] R13: 0000000000021000 R14: ffff88807c579000 R15: 00007ffffffff000
[  142.428110][ T6426]  _copy_from_iter+0x383/0x16f0
[  142.428135][ T6426]  ? anon_pipe_write+0x6f1/0x1a70
[  142.428157][ T6426]  ? __pfx__copy_from_iter+0x10/0x10
[  142.428178][ T6426]  ? __pfx___mutex_lock+0x10/0x10
[  142.428208][ T6426]  copy_page_from_iter+0xde/0x180
[  142.428232][ T6426]  anon_pipe_write+0xbe7/0x1a70
[  142.428260][ T6426]  ? __pfx_anon_pipe_write+0x10/0x10
[  142.428282][ T6426]  ? __pfx_autoremove_wake_function+0x10/0x10
[  142.428299][ T6426]  ? bpf_lsm_file_permission+0x9/0x10
[  142.428314][ T6426]  ? security_file_permission+0x71/0x210
[  142.428332][ T6426]  ? rw_verify_area+0xcf/0x680
[  142.428352][ T6426]  vfs_write+0x6c4/0x1150
[  142.428371][ T6426]  ? __pfx_anon_pipe_write+0x10/0x10
[  142.428394][ T6426]  ? __pfx_vfs_write+0x10/0x10
[  142.428412][ T6426]  ? find_held_lock+0x2b/0x80
[  142.428437][ T6426]  ksys_write+0x1f8/0x250
[  142.428456][ T6426]  ? __pfx_ksys_write+0x10/0x10
[  142.428481][ T6426]  do_syscall_64+0xcd/0x490
[  142.428503][ T6426]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.428517][ T6426] RIP: 0033:0x7fdd4058e929
[  142.428529][ T6426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.428541][ T6426] RSP: 002b:00007fdd41478038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  142.428553][ T6426] RAX: ffffffffffffffda RBX: 00007fdd407b5fa0 RCX: 00007fdd4058e929
[  142.428562][ T6426] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  142.428570][ T6426] RBP: 00007fdd40610b39 R08: 0000000000000000 R09: 0000000000000000
[  142.428578][ T6426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  142.428586][ T6426] R13: 0000000000000000 R14: 00007fdd407b5fa0 R15: 00007fff46666c38
[  142.428610][ T6426]  </TASK>
[  143.223107][ T6436] FAULT_INJECTION: forcing a failure.
[  143.223107][ T6436] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  143.236610][ T6436] CPU: 0 UID: 0 PID: 6436 Comm: syz.2.93 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  143.236631][ T6436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  143.236640][ T6436] Call Trace:
[  143.236646][ T6436]  <TASK>
[  143.236651][ T6436]  dump_stack_lvl+0x16c/0x1f0
[  143.236676][ T6436]  should_fail_ex+0x512/0x640
[  143.236700][ T6436]  should_fail_alloc_page+0xe7/0x130
[  143.236716][ T6436]  prepare_alloc_pages+0x3c2/0x610
[  143.236733][ T6436]  ? rcu_is_watching+0x12/0xc0
[  143.236749][ T6436]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  143.236771][ T6436]  ? __lock_acquire+0xb8a/0x1c90
[  143.236808][ T6436]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  143.236830][ T6436]  ? do_raw_spin_lock+0x12c/0x2b0
[  143.236851][ T6436]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  143.236872][ T6436]  ? find_held_lock+0x2b/0x80
[  143.236892][ T6436]  ? __lock_acquire+0xb8a/0x1c90
[  143.236909][ T6436]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  143.236932][ T6436]  ? policy_nodemask+0xea/0x4e0
[  143.236947][ T6436]  alloc_pages_mpol+0x1fb/0x550
[  143.236961][ T6436]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  143.236979][ T6436]  folio_alloc_mpol_noprof+0x36/0x2f0
[  143.236996][ T6436]  shmem_alloc_folio+0x135/0x160
[  143.237015][ T6436]  shmem_alloc_and_add_folio+0x499/0xc20
[  143.237038][ T6436]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  143.237060][ T6436]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  143.237083][ T6436]  shmem_get_folio_gfp+0x67f/0x1600
[  143.237107][ T6436]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  143.237128][ T6436]  ? filemap_map_pages+0xf6f/0x1680
[  143.237152][ T6436]  shmem_fault+0x1fe/0xa30
[  143.237170][ T6436]  ? __lock_acquire+0x622/0x1c90
[  143.237188][ T6436]  ? __pfx_shmem_fault+0x10/0x10
[  143.237211][ T6436]  ? __pfx_filemap_map_pages+0x10/0x10
[  143.237237][ T6436]  __do_fault+0x10a/0x490
[  143.237260][ T6436]  __handle_mm_fault+0x3c2a/0x5490
[  143.237283][ T6436]  ? __pfx___handle_mm_fault+0x10/0x10
[  143.237300][ T6436]  ? __pfx_mt_find+0x10/0x10
[  143.237324][ T6436]  ? find_vma+0xbf/0x140
[  143.237337][ T6436]  ? __pfx_find_vma+0x10/0x10
[  143.237353][ T6436]  handle_mm_fault+0x589/0xd10
[  143.237372][ T6436]  ? __pkru_allows_pkey+0x41/0xb0
[  143.237391][ T6436]  do_user_addr_fault+0x7a6/0x1370
[  143.237412][ T6436]  ? rcu_is_watching+0x12/0xc0
[  143.237428][ T6436]  exc_page_fault+0x5c/0xb0
[  143.237448][ T6436]  asm_exc_page_fault+0x26/0x30
[  143.237462][ T6436] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  143.237479][ T6436] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  143.237492][ T6436] RSP: 0018:ffffc9000bd27a48 EFLAGS: 00050206
[  143.237504][ T6436] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000
[  143.237513][ T6436] RDX: 0000000000000000 RSI: 0000000000020000 RDI: ffff88807c7e7000
[  143.237521][ T6436] RBP: 0000000000020000 R08: 0000000000000001 R09: ffffed100f8fcfff
[  143.237529][ T6436] R10: ffff88807c7e7fff R11: 0000000000000000 R12: ffffc9000bd27da0
[  143.237537][ T6436] R13: 0000000000021000 R14: ffff88807c7e7000 R15: 00007ffffffff000
[  143.237556][ T6436]  _copy_from_iter+0x383/0x16f0
[  143.237581][ T6436]  ? __pfx_pollwake+0x10/0x10
[  143.237598][ T6436]  ? anon_pipe_write+0x6f1/0x1a70
[  143.237618][ T6436]  ? __pfx__copy_from_iter+0x10/0x10
[  143.237638][ T6436]  ? __pfx___mutex_lock+0x10/0x10
[  143.237667][ T6436]  copy_page_from_iter+0xde/0x180
[  143.237690][ T6436]  anon_pipe_write+0xbe7/0x1a70
[  143.237718][ T6436]  ? __pfx_anon_pipe_write+0x10/0x10
[  143.237740][ T6436]  ? __pfx_autoremove_wake_function+0x10/0x10
[  143.237758][ T6436]  ? bpf_lsm_file_permission+0x9/0x10
[  143.237773][ T6436]  ? security_file_permission+0x71/0x210
[  143.237801][ T6436]  ? rw_verify_area+0xcf/0x680
[  143.237822][ T6436]  vfs_write+0x6c4/0x1150
[  143.237842][ T6436]  ? __pfx_anon_pipe_write+0x10/0x10
[  143.237866][ T6436]  ? __pfx_vfs_write+0x10/0x10
[  143.237884][ T6436]  ? find_held_lock+0x2b/0x80
[  143.237910][ T6436]  ksys_write+0x1f8/0x250
[  143.237929][ T6436]  ? __pfx_ksys_write+0x10/0x10
[  143.237954][ T6436]  do_syscall_64+0xcd/0x490
[  143.237976][ T6436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.237990][ T6436] RIP: 0033:0x7f644f58e929
[  143.238001][ T6436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.238014][ T6436] RSP: 002b:00007f6450483038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  143.238026][ T6436] RAX: ffffffffffffffda RBX: 00007f644f7b5fa0 RCX: 00007f644f58e929
[  143.238035][ T6436] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  143.238043][ T6436] RBP: 00007f644f610b39 R08: 0000000000000000 R09: 0000000000000000
[  143.238051][ T6436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  143.238058][ T6436] R13: 0000000000000000 R14: 00007f644f7b5fa0 R15: 00007ffd47ad5ba8
[  143.238076][ T6436]  </TASK>
[  144.116028][ T5839] Bluetooth: hci2: command tx timeout
[  144.894761][ T6454] Invalid ELF header magic: != ELF
[  145.524240][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  145.731707][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  145.879009][   T13] bond0 (unregistering): Released all slaves
[  146.009011][ T6468] Invalid ELF header magic: != ELF
[  146.209444][ T5839] Bluetooth: hci2: command tx timeout
[  148.111587][ T6429] chnl_net:caif_netlink_parms(): no params data found
[  148.276483][ T5839] Bluetooth: hci2: command tx timeout
[  149.046039][ T6489] FAULT_INJECTION: forcing a failure.
[  149.046039][ T6489] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  149.096650][ T6489] CPU: 1 UID: 0 PID: 6489 Comm: syz.2.98 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  149.096686][ T6489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  149.096700][ T6489] Call Trace:
[  149.096710][ T6489]  <TASK>
[  149.096720][ T6489]  dump_stack_lvl+0x16c/0x1f0
[  149.096762][ T6489]  should_fail_ex+0x512/0x640
[  149.096802][ T6489]  should_fail_alloc_page+0xe7/0x130
[  149.096830][ T6489]  prepare_alloc_pages+0x3c2/0x610
[  149.096859][ T6489]  ? rcu_is_watching+0x12/0xc0
[  149.096886][ T6489]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  149.096922][ T6489]  ? __lock_acquire+0xb8a/0x1c90
[  149.096965][ T6489]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  149.097002][ T6489]  ? do_raw_spin_lock+0x12c/0x2b0
[  149.097038][ T6489]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  149.097073][ T6489]  ? find_held_lock+0x2b/0x80
[  149.097108][ T6489]  ? __lock_acquire+0xb8a/0x1c90
[  149.097137][ T6489]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  149.097175][ T6489]  ? policy_nodemask+0xea/0x4e0
[  149.097203][ T6489]  alloc_pages_mpol+0x1fb/0x550
[  149.097230][ T6489]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  149.097275][ T6489]  folio_alloc_mpol_noprof+0x36/0x2f0
[  149.097306][ T6489]  shmem_alloc_folio+0x135/0x160
[  149.097338][ T6489]  shmem_alloc_and_add_folio+0x499/0xc20
[  149.097378][ T6489]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  149.097415][ T6489]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  149.097457][ T6489]  shmem_get_folio_gfp+0x67f/0x1600
[  149.097494][ T6489]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  149.097531][ T6489]  ? filemap_map_pages+0xf6f/0x1680
[  149.097568][ T6489]  shmem_fault+0x1fe/0xa30
[  149.097601][ T6489]  ? __lock_acquire+0x622/0x1c90
[  149.097632][ T6489]  ? __pfx_shmem_fault+0x10/0x10
[  149.097673][ T6489]  ? __pfx_filemap_map_pages+0x10/0x10
[  149.097719][ T6489]  __do_fault+0x10a/0x490
[  149.097756][ T6489]  __handle_mm_fault+0x3c2a/0x5490
[  149.097795][ T6489]  ? __pfx___handle_mm_fault+0x10/0x10
[  149.097823][ T6489]  ? __pfx_mt_find+0x10/0x10
[  149.097864][ T6489]  ? find_vma+0xbf/0x140
[  149.097887][ T6489]  ? __pfx_find_vma+0x10/0x10
[  149.097912][ T6489]  handle_mm_fault+0x589/0xd10
[  149.097941][ T6489]  ? __pkru_allows_pkey+0x41/0xb0
[  149.097973][ T6489]  do_user_addr_fault+0x7a6/0x1370
[  149.098006][ T6489]  ? rcu_is_watching+0x12/0xc0
[  149.098033][ T6489]  exc_page_fault+0x5c/0xb0
[  149.098067][ T6489]  asm_exc_page_fault+0x26/0x30
[  149.098089][ T6489] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  149.098119][ T6489] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  149.098139][ T6489] RSP: 0000:ffffc9000b7d7a48 EFLAGS: 00050206
[  149.098159][ T6489] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000
[  149.098173][ T6489] RDX: 0000000000000000 RSI: 0000000000020000 RDI: ffff88807c7e7000
[  149.098187][ T6489] RBP: 0000000000020000 R08: 0000000000000001 R09: ffffed100f8fcfff
[  149.098200][ T6489] R10: ffff88807c7e7fff R11: 0000000000000000 R12: ffffc9000b7d7da0
[  149.098212][ T6489] R13: 0000000000021000 R14: ffff88807c7e7000 R15: 00007ffffffff000
[  149.098250][ T6489]  _copy_from_iter+0x383/0x16f0
[  149.098294][ T6489]  ? __pfx_pollwake+0x10/0x10
[  149.098325][ T6489]  ? anon_pipe_write+0x6f1/0x1a70
[  149.098358][ T6489]  ? __pfx__copy_from_iter+0x10/0x10
[  149.098391][ T6489]  ? __pfx___mutex_lock+0x10/0x10
[  149.098440][ T6489]  copy_page_from_iter+0xde/0x180
[  149.098477][ T6489]  anon_pipe_write+0xbe7/0x1a70
[  149.098520][ T6489]  ? __pfx_anon_pipe_write+0x10/0x10
[  149.098555][ T6489]  ? apparmor_file_permission+0x251/0x400
[  149.098583][ T6489]  ? bpf_lsm_file_permission+0x9/0x10
[  149.098607][ T6489]  ? security_file_permission+0x71/0x210
[  149.098637][ T6489]  ? rw_verify_area+0xcf/0x680
[  149.098667][ T6489]  vfs_write+0x6c4/0x1150
[  149.098699][ T6489]  ? __pfx_anon_pipe_write+0x10/0x10
[  149.098736][ T6489]  ? __pfx_vfs_write+0x10/0x10
[  149.098762][ T6489]  ? find_held_lock+0x2b/0x80
[  149.098801][ T6489]  ksys_write+0x1f8/0x250
[  149.098833][ T6489]  ? __pfx_ksys_write+0x10/0x10
[  149.098877][ T6489]  do_syscall_64+0xcd/0x490
[  149.098913][ T6489]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.098938][ T6489] RIP: 0033:0x7f644f58e929
[  149.098958][ T6489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.098980][ T6489] RSP: 002b:00007f6450483038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  149.099002][ T6489] RAX: ffffffffffffffda RBX: 00007f644f7b5fa0 RCX: 00007f644f58e929
[  149.099018][ T6489] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  149.099033][ T6489] RBP: 00007f644f610b39 R08: 0000000000000000 R09: 0000000000000000
[  149.099048][ T6489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  149.099063][ T6489] R13: 0000000000000000 R14: 00007f644f7b5fa0 R15: 00007ffd47ad5ba8
[  149.099095][ T6489]  </TASK>
[  149.532034][ T6429] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.532096][ T6429] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.532215][ T6429] bridge_slave_0: entered allmulticast mode
[  149.560951][ T6429] bridge_slave_0: entered promiscuous mode
[  149.902982][ T6429] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.903078][ T6429] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.903219][ T6429] bridge_slave_1: entered allmulticast mode
[  149.904158][ T6429] bridge_slave_1: entered promiscuous mode
[  149.959217][   T13] hsr_slave_0: left promiscuous mode
[  149.962023][   T13] hsr_slave_1: left promiscuous mode
[  149.962767][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  149.962824][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  150.047462][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  150.047493][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  150.238498][   T13] veth1_macvtap: left promiscuous mode
[  150.238586][   T13] veth0_macvtap: left promiscuous mode
[  150.239179][   T13] veth1_vlan: left promiscuous mode
[  150.239294][   T13] veth0_vlan: left promiscuous mode
[  150.361808][ T5839] Bluetooth: hci2: command tx timeout
[  151.279189][   T13] team0 (unregistering): Port device team_slave_1 removed
[  151.422352][   T13] team0 (unregistering): Port device team_slave_0 removed
[  152.075405][ T6518] Invalid ELF header magic: != ELF
[  154.162596][ T6522] Invalid ELF header magic: != ELF
[  154.759737][ T6429] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  154.839416][ T6429] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  155.138665][ T6429] team0: Port device team_slave_0 added
[  155.170184][ T6429] team0: Port device team_slave_1 added
[  156.104354][ T6539] Invalid ELF header magic: != ELF
[  156.475393][ T6429] batman_adv: batadv0: Adding interface: batadv_slave_0
[  156.489753][ T6429] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  156.525007][ T6429] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  156.531886][ T6538] Invalid ELF header magic: != ELF
[  157.181142][ T6429] batman_adv: batadv0: Adding interface: batadv_slave_1
[  157.285543][ T6429] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  157.546250][ T6429] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  157.974619][ T6429] hsr_slave_0: entered promiscuous mode
[  158.002063][ T6429] hsr_slave_1: entered promiscuous mode
[  158.599378][ T6568] FAULT_INJECTION: forcing a failure.
[  158.599378][ T6568] name failslab, interval 1, probability 0, space 0, times 0
[  158.618055][ T6568] CPU: 1 UID: 0 PID: 6568 Comm: syz.1.107 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  158.618092][ T6568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  158.618106][ T6568] Call Trace:
[  158.618114][ T6568]  <TASK>
[  158.618123][ T6568]  dump_stack_lvl+0x16c/0x1f0
[  158.618165][ T6568]  should_fail_ex+0x512/0x640
[  158.618199][ T6568]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  158.618239][ T6568]  should_failslab+0xc2/0x120
[  158.618264][ T6568]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  158.618310][ T6568]  ? dup_fd+0x4e/0xb90
[  158.618347][ T6568]  dup_fd+0x4e/0xb90
[  158.618383][ T6568]  ? apparmor_task_alloc+0x2c2/0x3b0
[  158.618413][ T6568]  copy_process+0x230c/0x76a0
[  158.618442][ T6568]  ? __pfx___futex_wait+0x10/0x10
[  158.618489][ T6568]  ? __pfx_copy_process+0x10/0x10
[  158.618537][ T6568]  kernel_clone+0xfc/0x960
[  158.618568][ T6568]  ? __pfx_kernel_clone+0x10/0x10
[  158.618619][ T6568]  __do_sys_clone+0xce/0x120
[  158.618647][ T6568]  ? __pfx___do_sys_clone+0x10/0x10
[  158.618677][ T6568]  ? __pfx___might_resched+0x10/0x10
[  158.618717][ T6568]  ? xfd_validate_state+0x61/0x180
[  158.618759][ T6568]  do_syscall_64+0xcd/0x490
[  158.618798][ T6568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.618823][ T6568] RIP: 0033:0x7fdd4058e929
[  158.618844][ T6568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.618867][ T6568] RSP: 002b:00007fdd41457038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  158.618891][ T6568] RAX: ffffffffffffffda RBX: 00007fdd407b6080 RCX: 00007fdd4058e929
[  158.618908][ T6568] RDX: 0000200000000080 RSI: 0000000000000000 RDI: 0000000000000003
[  158.618924][ T6568] RBP: 00007fdd40610b39 R08: 0000000000000000 R09: 0000000000000000
[  158.618939][ T6568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  158.618953][ T6568] R13: 0000000000000000 R14: 00007fdd407b6080 R15: 00007fff46666c38
[  158.618987][ T6568]  </TASK>
[  159.171575][ T6571] Invalid ELF header magic: != ELF
[  159.253279][ T6570] Invalid ELF header magic: != ELF
[  160.704818][ T6584] kafs: addr_prefs: Invalid Command
[  160.830786][ T6429] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  160.906556][ T6429] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  160.959815][ T6429] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  161.014517][ T6429] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  161.554200][ T6429] 8021q: adding VLAN 0 to HW filter on device bond0
[  161.956826][ T6429] 8021q: adding VLAN 0 to HW filter on device team0
[  162.033285][ T1322] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.040920][ T1322] bridge0: port 1(bridge_slave_0) entered forwarding state
[  162.078528][ T1322] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.085743][ T1322] bridge0: port 2(bridge_slave_1) entered forwarding state
[  162.277591][ T6627] Invalid ELF header magic: != ELF
[  164.413339][ T6660] bridge0: port 3(hsr0) entered blocking state
[  164.472672][ T6660] bridge0: port 3(hsr0) entered disabled state
[  164.479709][ T6660] hsr0: entered allmulticast mode
[  164.485457][ T6660] hsr_slave_0: entered allmulticast mode
[  164.495365][ T6660] hsr_slave_1: entered allmulticast mode
[  164.543712][ T6660] hsr0: entered promiscuous mode
[  164.575438][ T6660] bridge0: port 3(hsr0) entered blocking state
[  164.582040][ T6660] bridge0: port 3(hsr0) entered forwarding state
[  164.663766][ T6429] 8021q: adding VLAN 0 to HW filter on device batadv0
[  164.908701][ T6429] veth0_vlan: entered promiscuous mode
[  164.945055][ T6429] veth1_vlan: entered promiscuous mode
[  165.065092][ T6429] veth0_macvtap: entered promiscuous mode
[  165.109723][ T6429] veth1_macvtap: entered promiscuous mode
[  165.312637][ T6429] batman_adv: batadv0: Interface activated: batadv_slave_0
[  165.425341][ T6429] batman_adv: batadv0: Interface activated: batadv_slave_1
[  165.465662][ T6429] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  165.486707][ T6429] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  165.518633][ T6429] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  165.531662][ T6429] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  165.803359][  T760] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.812346][ T6681] FAULT_INJECTION: forcing a failure.
[  165.812346][ T6681] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  165.848520][ T6681] CPU: 0 UID: 0 PID: 6681 Comm: syz.2.119 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  165.848561][ T6681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  165.848577][ T6681] Call Trace:
[  165.848586][ T6681]  <TASK>
[  165.848597][ T6681]  dump_stack_lvl+0x16c/0x1f0
[  165.848640][ T6681]  should_fail_ex+0x512/0x640
[  165.848681][ T6681]  should_fail_alloc_page+0xe7/0x130
[  165.848708][ T6681]  prepare_alloc_pages+0x3c2/0x610
[  165.848738][ T6681]  ? rcu_is_watching+0x12/0xc0
[  165.848768][ T6681]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  165.848806][ T6681]  ? __lock_acquire+0xb8a/0x1c90
[  165.848853][ T6681]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  165.848891][ T6681]  ? do_raw_spin_lock+0x12c/0x2b0
[  165.848927][ T6681]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  165.848962][ T6681]  ? find_held_lock+0x2b/0x80
[  165.848998][ T6681]  ? __lock_acquire+0xb8a/0x1c90
[  165.849025][ T6681]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  165.849060][ T6681]  ? policy_nodemask+0xea/0x4e0
[  165.849083][ T6681]  alloc_pages_mpol+0x1fb/0x550
[  165.849106][ T6681]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  165.849137][ T6681]  folio_alloc_mpol_noprof+0x36/0x2f0
[  165.849162][ T6681]  shmem_alloc_folio+0x135/0x160
[  165.849203][ T6681]  shmem_alloc_and_add_folio+0x499/0xc20
[  165.849248][ T6681]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  165.849288][ T6681]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  165.849343][ T6681]  shmem_get_folio_gfp+0x67f/0x1600
[  165.849385][ T6681]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  165.849422][ T6681]  ? filemap_map_pages+0xf6f/0x1680
[  165.849461][ T6681]  shmem_fault+0x1fe/0xa30
[  165.849493][ T6681]  ? __lock_acquire+0x622/0x1c90
[  165.849534][ T6681]  ? __pfx_shmem_fault+0x10/0x10
[  165.849575][ T6681]  ? __pfx_filemap_map_pages+0x10/0x10
[  165.849629][ T6681]  __do_fault+0x10a/0x490
[  165.849671][ T6681]  __handle_mm_fault+0x3c2a/0x5490
[  165.849710][ T6681]  ? __pfx___handle_mm_fault+0x10/0x10
[  165.849738][ T6681]  ? __pfx_mt_find+0x10/0x10
[  165.849783][ T6681]  ? find_vma+0xbf/0x140
[  165.849809][ T6681]  ? __pfx_find_vma+0x10/0x10
[  165.849838][ T6681]  handle_mm_fault+0x589/0xd10
[  165.849881][ T6681]  ? __pkru_allows_pkey+0x41/0xb0
[  165.849917][ T6681]  do_user_addr_fault+0x7a6/0x1370
[  165.849952][ T6681]  ? rcu_is_watching+0x12/0xc0
[  165.849980][ T6681]  exc_page_fault+0x5c/0xb0
[  165.850011][ T6681]  asm_exc_page_fault+0x26/0x30
[  165.850033][ T6681] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  165.850062][ T6681] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  165.850084][ T6681] RSP: 0018:ffffc90004dbfa48 EFLAGS: 00050206
[  165.850104][ T6681] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000
[  165.850119][ T6681] RDX: 0000000000000000 RSI: 0000000000020000 RDI: ffff88807c7e7000
[  165.850132][ T6681] RBP: 0000000000020000 R08: 0000000000000001 R09: ffffed100f8fcfff
[  165.850146][ T6681] R10: ffff88807c7e7fff R11: 0000000000000000 R12: ffffc90004dbfda0
[  165.850161][ T6681] R13: 0000000000021000 R14: ffff88807c7e7000 R15: 00007ffffffff000
[  165.850195][ T6681]  _copy_from_iter+0x383/0x16f0
[  165.850237][ T6681]  ? anon_pipe_write+0x6f1/0x1a70
[  165.850275][ T6681]  ? __pfx__copy_from_iter+0x10/0x10
[  165.850318][ T6681]  ? __pfx___mutex_lock+0x10/0x10
[  165.850369][ T6681]  copy_page_from_iter+0xde/0x180
[  165.850410][ T6681]  anon_pipe_write+0xbe7/0x1a70
[  165.850459][ T6681]  ? __pfx_anon_pipe_write+0x10/0x10
[  165.850502][ T6681]  ? __pfx_autoremove_wake_function+0x10/0x10
[  165.850535][ T6681]  ? bpf_lsm_file_permission+0x9/0x10
[  165.850561][ T6681]  ? security_file_permission+0x71/0x210
[  165.850594][ T6681]  ? rw_verify_area+0xcf/0x680
[  165.850628][ T6681]  vfs_write+0x6c4/0x1150
[  165.850661][ T6681]  ? __pfx_anon_pipe_write+0x10/0x10
[  165.850700][ T6681]  ? __pfx_vfs_write+0x10/0x10
[  165.850730][ T6681]  ? find_held_lock+0x2b/0x80
[  165.850779][ T6681]  ksys_write+0x1f8/0x250
[  165.850812][ T6681]  ? __pfx_ksys_write+0x10/0x10
[  165.850855][ T6681]  do_syscall_64+0xcd/0x490
[  165.850893][ T6681]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.850918][ T6681] RIP: 0033:0x7f644f58e929
[  165.850940][ T6681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.850962][ T6681] RSP: 002b:00007f6450462038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  165.850985][ T6681] RAX: ffffffffffffffda RBX: 00007f644f7b6080 RCX: 00007f644f58e929
[  165.851002][ T6681] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  165.851018][ T6681] RBP: 00007f644f610b39 R08: 0000000000000000 R09: 0000000000000000
[  165.851033][ T6681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  165.851048][ T6681] R13: 0000000000000000 R14: 00007f644f7b6080 R15: 00007ffd47ad5ba8
[  165.851085][ T6681]  </TASK>
[  165.855996][  T760] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  166.860108][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  166.869114][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  167.004196][ T6683] Invalid ELF header magic: != ELF
[  168.067176][ T6716] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  168.497017][ T6698] Invalid ELF header magic: != ELF
[  168.650218][ T6720] FAULT_INJECTION: forcing a failure.
[  168.650218][ T6720] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  168.736202][ T6720] CPU: 0 UID: 0 PID: 6720 Comm: syz.0.123 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  168.736237][ T6720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  168.736250][ T6720] Call Trace:
[  168.736258][ T6720]  <TASK>
[  168.736268][ T6720]  dump_stack_lvl+0x16c/0x1f0
[  168.736314][ T6720]  should_fail_ex+0x512/0x640
[  168.736353][ T6720]  should_fail_alloc_page+0xe7/0x130
[  168.736380][ T6720]  prepare_alloc_pages+0x3c2/0x610
[  168.736408][ T6720]  ? rcu_is_watching+0x12/0xc0
[  168.736427][ T6720]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  168.736449][ T6720]  ? __lock_acquire+0xb8a/0x1c90
[  168.736475][ T6720]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  168.736496][ T6720]  ? do_raw_spin_lock+0x12c/0x2b0
[  168.736517][ T6720]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  168.736538][ T6720]  ? find_held_lock+0x2b/0x80
[  168.736558][ T6720]  ? __lock_acquire+0xb8a/0x1c90
[  168.736575][ T6720]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  168.736597][ T6720]  ? policy_nodemask+0xea/0x4e0
[  168.736612][ T6720]  alloc_pages_mpol+0x1fb/0x550
[  168.736626][ T6720]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  168.736644][ T6720]  folio_alloc_mpol_noprof+0x36/0x2f0
[  168.736661][ T6720]  shmem_alloc_folio+0x135/0x160
[  168.736680][ T6720]  shmem_alloc_and_add_folio+0x499/0xc20
[  168.736704][ T6720]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  168.736726][ T6720]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  168.736749][ T6720]  shmem_get_folio_gfp+0x67f/0x1600
[  168.736773][ T6720]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  168.736795][ T6720]  ? filemap_map_pages+0xf6f/0x1680
[  168.736818][ T6720]  shmem_fault+0x1fe/0xa30
[  168.736837][ T6720]  ? __lock_acquire+0x622/0x1c90
[  168.736855][ T6720]  ? __pfx_shmem_fault+0x10/0x10
[  168.736878][ T6720]  ? __pfx_filemap_map_pages+0x10/0x10
[  168.736903][ T6720]  __do_fault+0x10a/0x490
[  168.736926][ T6720]  __handle_mm_fault+0x3c2a/0x5490
[  168.736950][ T6720]  ? __pfx___handle_mm_fault+0x10/0x10
[  168.736966][ T6720]  ? __pfx_mt_find+0x10/0x10
[  168.736990][ T6720]  ? find_vma+0xbf/0x140
[  168.737004][ T6720]  ? __pfx_find_vma+0x10/0x10
[  168.737019][ T6720]  handle_mm_fault+0x589/0xd10
[  168.737041][ T6720]  ? __pkru_allows_pkey+0x41/0xb0
[  168.737064][ T6720]  do_user_addr_fault+0x7a6/0x1370
[  168.737084][ T6720]  ? rcu_is_watching+0x12/0xc0
[  168.737100][ T6720]  exc_page_fault+0x5c/0xb0
[  168.737120][ T6720]  asm_exc_page_fault+0x26/0x30
[  168.737134][ T6720] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  168.737152][ T6720] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  168.737165][ T6720] RSP: 0018:ffffc90004e9fa48 EFLAGS: 00050206
[  168.737177][ T6720] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000
[  168.737186][ T6720] RDX: 0000000000000000 RSI: 0000000000020000 RDI: ffff888032d7f000
[  168.737195][ T6720] RBP: 0000000000020000 R08: 0000000000000001 R09: ffffed10065affff
[  168.737203][ T6720] R10: ffff888032d7ffff R11: 0000000000000000 R12: ffffc90004e9fda0
[  168.737212][ T6720] R13: 0000000000021000 R14: ffff888032d7f000 R15: 00007ffffffff000
[  168.737232][ T6720]  _copy_from_iter+0x383/0x16f0
[  168.737257][ T6720]  ? anon_pipe_write+0x6f1/0x1a70
[  168.737278][ T6720]  ? __pfx__copy_from_iter+0x10/0x10
[  168.737306][ T6720]  ? __pfx___mutex_lock+0x10/0x10
[  168.737336][ T6720]  copy_page_from_iter+0xde/0x180
[  168.737361][ T6720]  anon_pipe_write+0xbe7/0x1a70
[  168.737389][ T6720]  ? __pfx_anon_pipe_write+0x10/0x10
[  168.737412][ T6720]  ? __pfx_autoremove_wake_function+0x10/0x10
[  168.737429][ T6720]  ? bpf_lsm_file_permission+0x9/0x10
[  168.737444][ T6720]  ? security_file_permission+0x71/0x210
[  168.737463][ T6720]  ? rw_verify_area+0xcf/0x680
[  168.737482][ T6720]  vfs_write+0x6c4/0x1150
[  168.737502][ T6720]  ? __pfx_anon_pipe_write+0x10/0x10
[  168.737525][ T6720]  ? __pfx_vfs_write+0x10/0x10
[  168.737542][ T6720]  ? find_held_lock+0x2b/0x80
[  168.737567][ T6720]  ksys_write+0x1f8/0x250
[  168.737586][ T6720]  ? __pfx_ksys_write+0x10/0x10
[  168.737611][ T6720]  do_syscall_64+0xcd/0x490
[  168.737634][ T6720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.737648][ T6720] RIP: 0033:0x7fbea458e929
[  168.737659][ T6720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.737672][ T6720] RSP: 002b:00007fbea5438038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  168.737684][ T6720] RAX: ffffffffffffffda RBX: 00007fbea47b5fa0 RCX: 00007fbea458e929
[  168.737693][ T6720] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  168.737701][ T6720] RBP: 00007fbea4610b39 R08: 0000000000000000 R09: 0000000000000000
[  168.737709][ T6720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  168.737718][ T6720] R13: 0000000000000000 R14: 00007fbea47b5fa0 R15: 00007ffee99f8548
[  168.737736][ T6720]  </TASK>
[  169.961919][ T6725] FAULT_INJECTION: forcing a failure.
[  169.961919][ T6725] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  170.031377][ T6725] CPU: 1 UID: 0 PID: 6725 Comm: syz.1.124 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  170.031400][ T6725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  170.031409][ T6725] Call Trace:
[  170.031414][ T6725]  <TASK>
[  170.031420][ T6725]  dump_stack_lvl+0x16c/0x1f0
[  170.031447][ T6725]  should_fail_ex+0x512/0x640
[  170.031471][ T6725]  should_fail_alloc_page+0xe7/0x130
[  170.031487][ T6725]  prepare_alloc_pages+0x3c2/0x610
[  170.031504][ T6725]  ? rcu_is_watching+0x12/0xc0
[  170.031520][ T6725]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  170.031542][ T6725]  ? __lock_acquire+0xb8a/0x1c90
[  170.031567][ T6725]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  170.031589][ T6725]  ? do_raw_spin_lock+0x12c/0x2b0
[  170.031610][ T6725]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  170.031631][ T6725]  ? find_held_lock+0x2b/0x80
[  170.031651][ T6725]  ? __lock_acquire+0xb8a/0x1c90
[  170.031668][ T6725]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  170.031691][ T6725]  ? policy_nodemask+0xea/0x4e0
[  170.031706][ T6725]  alloc_pages_mpol+0x1fb/0x550
[  170.031720][ T6725]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  170.031738][ T6725]  folio_alloc_mpol_noprof+0x36/0x2f0
[  170.031755][ T6725]  shmem_alloc_folio+0x135/0x160
[  170.031773][ T6725]  shmem_alloc_and_add_folio+0x499/0xc20
[  170.031797][ T6725]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  170.031818][ T6725]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  170.031842][ T6725]  shmem_get_folio_gfp+0x67f/0x1600
[  170.031866][ T6725]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  170.031887][ T6725]  ? filemap_map_pages+0xf6f/0x1680
[  170.031914][ T6725]  shmem_fault+0x1fe/0xa30
[  170.031935][ T6725]  ? __lock_acquire+0x622/0x1c90
[  170.031953][ T6725]  ? __pfx_shmem_fault+0x10/0x10
[  170.031976][ T6725]  ? __pfx_filemap_map_pages+0x10/0x10
[  170.032003][ T6725]  __do_fault+0x10a/0x490
[  170.032027][ T6725]  __handle_mm_fault+0x3c2a/0x5490
[  170.032051][ T6725]  ? __pfx___handle_mm_fault+0x10/0x10
[  170.032068][ T6725]  ? __pfx_mt_find+0x10/0x10
[  170.032092][ T6725]  ? find_vma+0xbf/0x140
[  170.032105][ T6725]  ? __pfx_find_vma+0x10/0x10
[  170.032121][ T6725]  handle_mm_fault+0x589/0xd10
[  170.032140][ T6725]  ? __pkru_allows_pkey+0x41/0xb0
[  170.032160][ T6725]  do_user_addr_fault+0x7a6/0x1370
[  170.032189][ T6725]  ? rcu_is_watching+0x12/0xc0
[  170.032206][ T6725]  exc_page_fault+0x5c/0xb0
[  170.032227][ T6725]  asm_exc_page_fault+0x26/0x30
[  170.032241][ T6725] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  170.032258][ T6725] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  170.032271][ T6725] RSP: 0018:ffffc9000400fa48 EFLAGS: 00050206
[  170.032284][ T6725] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000
[  170.032292][ T6725] RDX: 0000000000000000 RSI: 0000000000020000 RDI: ffff888035865000
[  170.032301][ T6725] RBP: 0000000000020000 R08: 0000000000000001 R09: ffffed1006b0cbff
[  170.032309][ T6725] R10: ffff888035865fff R11: 0000000000000000 R12: ffffc9000400fda0
[  170.032319][ T6725] R13: 0000000000021000 R14: ffff888035865000 R15: 00007ffffffff000
[  170.032338][ T6725]  _copy_from_iter+0x383/0x16f0
[  170.032363][ T6725]  ? __pfx_pollwake+0x10/0x10
[  170.032380][ T6725]  ? anon_pipe_write+0x6f1/0x1a70
[  170.032401][ T6725]  ? __pfx__copy_from_iter+0x10/0x10
[  170.032422][ T6725]  ? __pfx___mutex_lock+0x10/0x10
[  170.032451][ T6725]  copy_page_from_iter+0xde/0x180
[  170.032474][ T6725]  anon_pipe_write+0xbe7/0x1a70
[  170.032502][ T6725]  ? __pfx_anon_pipe_write+0x10/0x10
[  170.032524][ T6725]  ? apparmor_file_permission+0x251/0x400
[  170.032541][ T6725]  ? bpf_lsm_file_permission+0x9/0x10
[  170.032556][ T6725]  ? security_file_permission+0x71/0x210
[  170.032575][ T6725]  ? rw_verify_area+0xcf/0x680
[  170.032594][ T6725]  vfs_write+0x6c4/0x1150
[  170.032614][ T6725]  ? __pfx_anon_pipe_write+0x10/0x10
[  170.032637][ T6725]  ? __pfx_vfs_write+0x10/0x10
[  170.032655][ T6725]  ? find_held_lock+0x2b/0x80
[  170.032680][ T6725]  ksys_write+0x1f8/0x250
[  170.032699][ T6725]  ? __pfx_ksys_write+0x10/0x10
[  170.032724][ T6725]  do_syscall_64+0xcd/0x490
[  170.032746][ T6725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.032760][ T6725] RIP: 0033:0x7fdd4058e929
[  170.032772][ T6725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.032784][ T6725] RSP: 002b:00007fdd41478038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  170.032796][ T6725] RAX: ffffffffffffffda RBX: 00007fdd407b5fa0 RCX: 00007fdd4058e929
[  170.032805][ T6725] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  170.032813][ T6725] RBP: 00007fdd40610b39 R08: 0000000000000000 R09: 0000000000000000
[  170.032825][ T6725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  170.032833][ T6725] R13: 0000000000000000 R14: 00007fdd407b5fa0 R15: 00007fff46666c38
[  170.032850][ T6725]  </TASK>
[  171.835180][ T6739] Invalid ELF header magic: != ELF
[  173.160386][ T6756] Invalid ELF header magic: != ELF
[  175.064270][ T6802] Invalid ELF header magic: != ELF
[  176.300749][ T6818] netlink: 'syz.2.133': attribute type 16 has an invalid length.
[  176.323599][ T6818] netlink: 'syz.2.133': attribute type 17 has an invalid length.
[  176.372288][ T6818] netlink: 'syz.2.133': attribute type 19 has an invalid length.
[  176.391184][ T6818] netlink: 94 bytes leftover after parsing attributes in process `syz.2.133'.
[  181.212199][ T6848] Invalid ELF header magic: != ELF
[  183.569060][ T6876] Invalid ELF header magic: != ELF
[  185.921873][ T6898] Invalid ELF header magic: != ELF
[  187.206485][ T6893] Invalid ELF header magic: != ELF
[  188.101387][ T6921] Invalid ELF header magic: != ELF
[  189.871214][ T6930] Invalid ELF header magic: != ELF
[  191.194330][ T6946] FAULT_INJECTION: forcing a failure.
[  191.194330][ T6946] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  191.210569][ T6946] CPU: 0 UID: 0 PID: 6946 Comm: syz.2.151 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  191.210607][ T6946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  191.210632][ T6946] Call Trace:
[  191.210641][ T6946]  <TASK>
[  191.210655][ T6946]  dump_stack_lvl+0x16c/0x1f0
[  191.210697][ T6946]  should_fail_ex+0x512/0x640
[  191.210737][ T6946]  should_fail_alloc_page+0xe7/0x130
[  191.210765][ T6946]  prepare_alloc_pages+0x3c2/0x610
[  191.210794][ T6946]  ? rcu_is_watching+0x12/0xc0
[  191.210823][ T6946]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  191.210884][ T6946]  ? __lock_acquire+0xb8a/0x1c90
[  191.210931][ T6946]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  191.210968][ T6946]  ? do_raw_spin_lock+0x12c/0x2b0
[  191.211005][ T6946]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  191.211040][ T6946]  ? find_held_lock+0x2b/0x80
[  191.211076][ T6946]  ? __lock_acquire+0xb8a/0x1c90
[  191.211104][ T6946]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  191.211148][ T6946]  ? policy_nodemask+0xea/0x4e0
[  191.211176][ T6946]  alloc_pages_mpol+0x1fb/0x550
[  191.211201][ T6946]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  191.211237][ T6946]  folio_alloc_mpol_noprof+0x36/0x2f0
[  191.211268][ T6946]  shmem_alloc_folio+0x135/0x160
[  191.211299][ T6946]  shmem_alloc_and_add_folio+0x499/0xc20
[  191.211342][ T6946]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  191.211380][ T6946]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  191.211421][ T6946]  shmem_get_folio_gfp+0x67f/0x1600
[  191.211463][ T6946]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  191.211500][ T6946]  ? filemap_map_pages+0xf6f/0x1680
[  191.211539][ T6946]  shmem_fault+0x1fe/0xa30
[  191.211571][ T6946]  ? __lock_acquire+0x622/0x1c90
[  191.211602][ T6946]  ? __pfx_shmem_fault+0x10/0x10
[  191.211641][ T6946]  ? __pfx_filemap_map_pages+0x10/0x10
[  191.211688][ T6946]  __do_fault+0x10a/0x490
[  191.211727][ T6946]  __handle_mm_fault+0x3c2a/0x5490
[  191.211768][ T6946]  ? __pfx___handle_mm_fault+0x10/0x10
[  191.211797][ T6946]  ? __pfx_mt_find+0x10/0x10
[  191.211843][ T6946]  ? find_vma+0xbf/0x140
[  191.211873][ T6946]  ? __pfx_find_vma+0x10/0x10
[  191.211903][ T6946]  handle_mm_fault+0x589/0xd10
[  191.211936][ T6946]  ? __pkru_allows_pkey+0x41/0xb0
[  191.211972][ T6946]  do_user_addr_fault+0x7a6/0x1370
[  191.212010][ T6946]  ? rcu_is_watching+0x12/0xc0
[  191.212039][ T6946]  exc_page_fault+0x5c/0xb0
[  191.212073][ T6946]  asm_exc_page_fault+0x26/0x30
[  191.212097][ T6946] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  191.212127][ T6946] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  191.212151][ T6946] RSP: 0018:ffffc900039efa48 EFLAGS: 00050206
[  191.212173][ T6946] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000
[  191.212189][ T6946] RDX: 0000000000000000 RSI: 0000000000020000 RDI: ffff88807c7e7000
[  191.212205][ T6946] RBP: 0000000000020000 R08: 0000000000000001 R09: ffffed100f8fcfff
[  191.212221][ T6946] R10: ffff88807c7e7fff R11: 0000000000000000 R12: ffffc900039efda0
[  191.212237][ T6946] R13: 0000000000021000 R14: ffff88807c7e7000 R15: 00007ffffffff000
[  191.212273][ T6946]  _copy_from_iter+0x383/0x16f0
[  191.212322][ T6946]  ? anon_pipe_write+0x6f1/0x1a70
[  191.212358][ T6946]  ? __pfx__copy_from_iter+0x10/0x10
[  191.212391][ T6946]  ? __pfx___mutex_lock+0x10/0x10
[  191.212441][ T6946]  copy_page_from_iter+0xde/0x180
[  191.212482][ T6946]  anon_pipe_write+0xbe7/0x1a70
[  191.212532][ T6946]  ? __pfx_anon_pipe_write+0x10/0x10
[  191.212568][ T6946]  ? __pfx_autoremove_wake_function+0x10/0x10
[  191.212599][ T6946]  ? bpf_lsm_file_permission+0x9/0x10
[  191.212624][ T6946]  ? security_file_permission+0x71/0x210
[  191.212666][ T6946]  ? rw_verify_area+0xcf/0x680
[  191.212701][ T6946]  vfs_write+0x6c4/0x1150
[  191.212736][ T6946]  ? __pfx_anon_pipe_write+0x10/0x10
[  191.212776][ T6946]  ? __pfx_vfs_write+0x10/0x10
[  191.212806][ T6946]  ? find_held_lock+0x2b/0x80
[  191.212860][ T6946]  ksys_write+0x1f8/0x250
[  191.212894][ T6946]  ? __pfx_ksys_write+0x10/0x10
[  191.212940][ T6946]  do_syscall_64+0xcd/0x490
[  191.212980][ T6946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.213006][ T6946] RIP: 0033:0x7f644f58e929
[  191.213026][ T6946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  191.213049][ T6946] RSP: 002b:00007f6450462038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  191.213071][ T6946] RAX: ffffffffffffffda RBX: 00007f644f7b6080 RCX: 00007f644f58e929
[  191.213088][ T6946] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  191.213103][ T6946] RBP: 00007f644f610b39 R08: 0000000000000000 R09: 0000000000000000
[  191.213118][ T6946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  191.213132][ T6946] R13: 0000000000000000 R14: 00007f644f7b6080 R15: 00007ffd47ad5ba8
[  191.213167][ T6946]  </TASK>
[  192.392385][ T6962] Invalid ELF header magic: != ELF
[  192.462193][ T6959] FAULT_INJECTION: forcing a failure.
[  192.462193][ T6959] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  192.495837][ T6959] CPU: 1 UID: 0 PID: 6959 Comm: syz.1.154 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  192.495873][ T6959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  192.495886][ T6959] Call Trace:
[  192.495894][ T6959]  <TASK>
[  192.495904][ T6959]  dump_stack_lvl+0x16c/0x1f0
[  192.495945][ T6959]  should_fail_ex+0x512/0x640
[  192.495982][ T6959]  should_fail_alloc_page+0xe7/0x130
[  192.496013][ T6959]  prepare_alloc_pages+0x3c2/0x610
[  192.496043][ T6959]  ? rcu_is_watching+0x12/0xc0
[  192.496071][ T6959]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  192.496111][ T6959]  ? __lock_acquire+0xb8a/0x1c90
[  192.496158][ T6959]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  192.496195][ T6959]  ? do_raw_spin_lock+0x12c/0x2b0
[  192.496230][ T6959]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  192.496266][ T6959]  ? find_held_lock+0x2b/0x80
[  192.496302][ T6959]  ? __lock_acquire+0xb8a/0x1c90
[  192.496333][ T6959]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  192.496371][ T6959]  ? policy_nodemask+0xea/0x4e0
[  192.496398][ T6959]  alloc_pages_mpol+0x1fb/0x550
[  192.496424][ T6959]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  192.496459][ T6959]  folio_alloc_mpol_noprof+0x36/0x2f0
[  192.496491][ T6959]  shmem_alloc_folio+0x135/0x160
[  192.496523][ T6959]  shmem_alloc_and_add_folio+0x499/0xc20
[  192.496566][ T6959]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  192.496605][ T6959]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  192.496647][ T6959]  shmem_get_folio_gfp+0x67f/0x1600
[  192.496690][ T6959]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  192.496729][ T6959]  ? filemap_map_pages+0xf6f/0x1680
[  192.496768][ T6959]  shmem_fault+0x1fe/0xa30
[  192.496800][ T6959]  ? __lock_acquire+0x622/0x1c90
[  192.496831][ T6959]  ? __pfx_shmem_fault+0x10/0x10
[  192.496871][ T6959]  ? __pfx_filemap_map_pages+0x10/0x10
[  192.496918][ T6959]  __do_fault+0x10a/0x490
[  192.496957][ T6959]  __handle_mm_fault+0x3c2a/0x5490
[  192.497006][ T6959]  ? __pfx___handle_mm_fault+0x10/0x10
[  192.497037][ T6959]  ? __pfx_mt_find+0x10/0x10
[  192.497083][ T6959]  ? find_vma+0xbf/0x140
[  192.497109][ T6959]  ? __pfx_find_vma+0x10/0x10
[  192.497138][ T6959]  handle_mm_fault+0x589/0xd10
[  192.497171][ T6959]  ? __pkru_allows_pkey+0x41/0xb0
[  192.497206][ T6959]  do_user_addr_fault+0x7a6/0x1370
[  192.497243][ T6959]  ? rcu_is_watching+0x12/0xc0
[  192.497273][ T6959]  exc_page_fault+0x5c/0xb0
[  192.497308][ T6959]  asm_exc_page_fault+0x26/0x30
[  192.497332][ T6959] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  192.497362][ T6959] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  192.497385][ T6959] RSP: 0018:ffffc90003c4fa48 EFLAGS: 00050206
[  192.497406][ T6959] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000
[  192.497421][ T6959] RDX: 0000000000000000 RSI: 0000000000020000 RDI: ffff888035865000
[  192.497437][ T6959] RBP: 0000000000020000 R08: 0000000000000001 R09: ffffed1006b0cbff
[  192.497453][ T6959] R10: ffff888035865fff R11: 0000000000000000 R12: ffffc90003c4fda0
[  192.497469][ T6959] R13: 0000000000021000 R14: ffff888035865000 R15: 00007ffffffff000
[  192.497505][ T6959]  _copy_from_iter+0x383/0x16f0
[  192.497549][ T6959]  ? anon_pipe_write+0x6f1/0x1a70
[  192.497584][ T6959]  ? __pfx__copy_from_iter+0x10/0x10
[  192.497619][ T6959]  ? __pfx___mutex_lock+0x10/0x10
[  192.497670][ T6959]  copy_page_from_iter+0xde/0x180
[  192.497711][ T6959]  anon_pipe_write+0xbe7/0x1a70
[  192.497760][ T6959]  ? __pfx_anon_pipe_write+0x10/0x10
[  192.497798][ T6959]  ? __pfx_autoremove_wake_function+0x10/0x10
[  192.497830][ T6959]  ? bpf_lsm_file_permission+0x9/0x10
[  192.497855][ T6959]  ? security_file_permission+0x71/0x210
[  192.497888][ T6959]  ? rw_verify_area+0xcf/0x680
[  192.497923][ T6959]  vfs_write+0x6c4/0x1150
[  192.497957][ T6959]  ? __pfx_anon_pipe_write+0x10/0x10
[  192.498003][ T6959]  ? __pfx_vfs_write+0x10/0x10
[  192.498036][ T6959]  ? find_held_lock+0x2b/0x80
[  192.498085][ T6959]  ksys_write+0x1f8/0x250
[  192.498120][ T6959]  ? __pfx_ksys_write+0x10/0x10
[  192.498166][ T6959]  do_syscall_64+0xcd/0x490
[  192.498206][ T6959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.498232][ T6959] RIP: 0033:0x7fdd4058e929
[  192.498252][ T6959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.498275][ T6959] RSP: 002b:00007fdd41457038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  192.498297][ T6959] RAX: ffffffffffffffda RBX: 00007fdd407b6080 RCX: 00007fdd4058e929
[  192.498314][ T6959] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  192.498329][ T6959] RBP: 00007fdd40610b39 R08: 0000000000000000 R09: 0000000000000000
[  192.498344][ T6959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  192.498358][ T6959] R13: 0000000000000000 R14: 00007fdd407b6080 R15: 00007fff46666c38
[  192.498394][ T6959]  </TASK>
[  193.968106][ T6955] Invalid ELF header magic: != ELF
[  194.289952][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  194.298771][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  196.554679][ T6997] Invalid ELF header magic: != ELF
[  196.576969][ T6995] Invalid ELF header magic: != ELF
[  199.981627][ T7012] ==================================================================
[  199.989742][ T7012] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x13a9/0x15f0
[  199.998444][ T7012] Read of size 1 at addr ffff88802837d0e7 by task syz.0.163/7012
[  200.006151][ T7012] 
[  200.008563][ T7012] CPU: 0 UID: 0 PID: 7012 Comm: syz.0.163 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  200.008583][ T7012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  200.008592][ T7012] Call Trace:
[  200.008597][ T7012]  <TASK>
[  200.008604][ T7012]  dump_stack_lvl+0x116/0x1f0
[  200.008628][ T7012]  print_report+0xcd/0x680
[  200.008641][ T7012]  ? __virt_addr_valid+0x81/0x610
[  200.008656][ T7012]  ? __phys_addr+0xe8/0x180
[  200.008670][ T7012]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  200.008686][ T7012]  kasan_report+0xe0/0x110
[  200.008700][ T7012]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  200.008718][ T7012]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[  200.008733][ T7012]  ? __lock_acquire+0xb8a/0x1c90
[  200.008753][ T7012]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  200.008769][ T7012]  ? find_held_lock+0x2b/0x80
[  200.008781][ T7012]  ? __might_fault+0xe3/0x190
[  200.008801][ T7012]  ? __might_fault+0xe3/0x190
[  200.008819][ T7012]  ? __might_fault+0x13b/0x190
[  200.008842][ T7012]  ? proc_simple_write+0x114/0x1b0
[  200.008856][ T7012]  proc_simple_write+0x114/0x1b0
[  200.008870][ T7012]  ? __pfx_proc_simple_write+0x10/0x10
[  200.008884][ T7012]  proc_reg_write+0x23d/0x330
[  200.008905][ T7012]  ? __pfx_proc_reg_write+0x10/0x10
[  200.008924][ T7012]  vfs_writev+0x5dc/0xde0
[  200.008944][ T7012]  ? __pfx_vfs_writev+0x10/0x10
[  200.008962][ T7012]  ? kmem_cache_free+0x2d1/0x4d0
[  200.008983][ T7012]  ? fd_install+0x225/0x750
[  200.009009][ T7012]  ? do_writev+0x132/0x340
[  200.009026][ T7012]  do_writev+0x132/0x340
[  200.009043][ T7012]  ? __pfx_do_writev+0x10/0x10
[  200.009063][ T7012]  do_syscall_64+0xcd/0x490
[  200.009085][ T7012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.009100][ T7012] RIP: 0033:0x7fbea458e929
[  200.009112][ T7012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.009125][ T7012] RSP: 002b:00007fbea5438038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  200.009138][ T7012] RAX: ffffffffffffffda RBX: 00007fbea47b5fa0 RCX: 00007fbea458e929
[  200.009148][ T7012] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000001
[  200.009156][ T7012] RBP: 00007fbea4610b39 R08: 0000000000000000 R09: 0000000000000000
[  200.009164][ T7012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  200.009173][ T7012] R13: 0000000000000000 R14: 00007fbea47b5fa0 R15: 00007ffee99f8548
[  200.009186][ T7012]  </TASK>
[  200.009191][ T7012] 
[  200.252609][ T7012] Allocated by task 7012:
[  200.256923][ T7012]  kasan_save_stack+0x33/0x60
[  200.261596][ T7012]  kasan_save_track+0x14/0x30
[  200.266265][ T7012]  __kasan_kmalloc+0xaa/0xb0
[  200.270875][ T7012]  __kmalloc_node_track_caller_noprof+0x221/0x510
[  200.277286][ T7012]  memdup_user_nul+0x2b/0x120
[  200.281947][ T7012]  proc_simple_write+0xc7/0x1b0
[  200.286784][ T7012]  proc_reg_write+0x23d/0x330
[  200.291451][ T7012]  vfs_writev+0x5dc/0xde0
[  200.295770][ T7012]  do_writev+0x132/0x340
[  200.300006][ T7012]  do_syscall_64+0xcd/0x490
[  200.304506][ T7012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.310385][ T7012] 
[  200.312692][ T7012] The buggy address belongs to the object at ffff88802837d0e0
[  200.312692][ T7012]  which belongs to the cache kmalloc-8 of size 8
[  200.326380][ T7012] The buggy address is located 0 bytes to the right of
[  200.326380][ T7012]  allocated 7-byte region [ffff88802837d0e0, ffff88802837d0e7)
[  200.340681][ T7012] 
[  200.343030][ T7012] The buggy address belongs to the physical page:
[  200.349423][ T7012] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2837d
[  200.358169][ T7012] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  200.365274][ T7012] page_type: f5(slab)
[  200.369246][ T7012] raw: 00fff00000000000 ffff88801b841500 dead000000000100 dead000000000122
[  200.377900][ T7012] raw: 0000000000000000 0000000080800080 00000000f5000000 0000000000000000
[  200.386462][ T7012] page dumped because: kasan: bad access detected
[  200.392882][ T7012] page_owner tracks the page as allocated
[  200.398580][ T7012] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5992, tgid 5989 (syz.2.14), ts 98983303744, free_ts 98974314928
[  200.417505][ T7012]  post_alloc_hook+0x1c0/0x230
[  200.422262][ T7012]  get_page_from_freelist+0x1321/0x3890
[  200.427892][ T7012]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  200.433782][ T7012]  alloc_pages_mpol+0x1fb/0x550
[  200.438620][ T7012]  new_slab+0x23b/0x330
[  200.442765][ T7012]  ___slab_alloc+0xd9c/0x1940
[  200.447428][ T7012]  __slab_alloc.constprop.0+0x56/0xb0
[  200.452790][ T7012]  __kmalloc_node_track_caller_noprof+0x2ee/0x510
[  200.459202][ T7012]  kvasprintf+0xbc/0x160
[  200.463431][ T7012]  kvasprintf_const+0x66/0x1a0
[  200.468177][ T7012]  kobject_set_name_vargs+0x5a/0x140
[  200.473447][ T7012]  kobject_init_and_add+0xe7/0x190
[  200.478554][ T7012]  netdev_queue_update_kobjects+0x32d/0x720
[  200.484441][ T7012]  netdev_register_kobject+0x28c/0x3a0
[  200.490019][ T7012]  register_netdevice+0x13dc/0x2270
[  200.495216][ T7012]  register_netdev+0x34/0x50
[  200.499799][ T7012] page last free pid 5949 tgid 5949 stack trace:
[  200.506108][ T7012]  __free_frozen_pages+0x7fe/0x1180
[  200.511305][ T7012]  tlb_finish_mmu+0x237/0x7c0
[  200.515980][ T7012]  exit_mmap+0x403/0xb90
[  200.520216][ T7012]  __mmput+0x12a/0x410
[  200.524271][ T7012]  mmput+0x62/0x70
[  200.527980][ T7012]  do_exit+0x7c4/0x2bd0
[  200.532132][ T7012]  do_group_exit+0xd3/0x2a0
[  200.536626][ T7012]  get_signal+0x2673/0x26d0
[  200.541116][ T7012]  arch_do_signal_or_restart+0x8f/0x790
[  200.546650][ T7012]  irqentry_exit_to_user_mode+0x12a/0x270
[  200.552363][ T7012]  asm_exc_page_fault+0x26/0x30
[  200.557201][ T7012] 
[  200.559509][ T7012] Memory state around the buggy address:
[  200.565121][ T7012]  ffff88802837cf80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  200.573166][ T7012]  ffff88802837d000: 05 fc fc fc 05 fc fc fc fa fc fc fc fa fc fc fc
[  200.581210][ T7012] >ffff88802837d080: 00 fc fc fc fa fc fc fc fa fc fc fc 07 fc fc fc
[  200.589250][ T7012]                                                        ^
[  200.596423][ T7012]  ffff88802837d100: fa fc fc fc fa fc fc fc 05 fc fc fc 05 fc fc fc
[  200.604470][ T7012]  ffff88802837d180: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[  200.612519][ T7012] ==================================================================
[  200.753216][ T7012] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  200.760470][ T7012] CPU: 0 UID: 0 PID: 7012 Comm: syz.0.163 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  200.772386][ T7012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  200.782444][ T7012] Call Trace:
[  200.785719][ T7012]  <TASK>
[  200.788647][ T7012]  dump_stack_lvl+0x3d/0x1f0
[  200.793255][ T7012]  panic+0x71c/0x800
[  200.797160][ T7012]  ? __pfx_panic+0x10/0x10
[  200.801581][ T7012]  ? mark_held_locks+0x49/0x80
[  200.806353][ T7012]  ? preempt_schedule_thunk+0x16/0x30
[  200.811732][ T7012]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  200.817717][ T7012]  ? preempt_schedule_common+0x44/0xc0
[  200.823190][ T7012]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  200.829177][ T7012]  check_panic_on_warn+0xab/0xb0
[  200.834123][ T7012]  end_report+0x107/0x170
[  200.838465][ T7012]  kasan_report+0xee/0x110
[  200.842881][ T7012]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  200.848867][ T7012]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[  200.854670][ T7012]  ? __lock_acquire+0xb8a/0x1c90
[  200.859615][ T7012]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  200.865770][ T7012]  ? find_held_lock+0x2b/0x80
[  200.870454][ T7012]  ? __might_fault+0xe3/0x190
[  200.875833][ T7012]  ? __might_fault+0xe3/0x190
[  200.880521][ T7012]  ? __might_fault+0x13b/0x190
[  200.885293][ T7012]  ? proc_simple_write+0x114/0x1b0
[  200.890400][ T7012]  proc_simple_write+0x114/0x1b0
[  200.895335][ T7012]  ? __pfx_proc_simple_write+0x10/0x10
[  200.900790][ T7012]  proc_reg_write+0x23d/0x330
[  200.905480][ T7012]  ? __pfx_proc_reg_write+0x10/0x10
[  200.910682][ T7012]  vfs_writev+0x5dc/0xde0
[  200.915018][ T7012]  ? __pfx_vfs_writev+0x10/0x10
[  200.919874][ T7012]  ? kmem_cache_free+0x2d1/0x4d0
[  200.924817][ T7012]  ? fd_install+0x225/0x750
[  200.929337][ T7012]  ? do_writev+0x132/0x340
[  200.933757][ T7012]  do_writev+0x132/0x340
[  200.938004][ T7012]  ? __pfx_do_writev+0x10/0x10
[  200.942773][ T7012]  do_syscall_64+0xcd/0x490
[  200.947289][ T7012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.953180][ T7012] RIP: 0033:0x7fbea458e929
[  200.957595][ T7012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.977202][ T7012] RSP: 002b:00007fbea5438038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  200.985618][ T7012] RAX: ffffffffffffffda RBX: 00007fbea47b5fa0 RCX: 00007fbea458e929
[  200.993587][ T7012] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000001
[  201.001557][ T7012] RBP: 00007fbea4610b39 R08: 0000000000000000 R09: 0000000000000000
[  201.009520][ T7012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  201.017484][ T7012] R13: 0000000000000000 R14: 00007fbea47b5fa0 R15: 00007ffee99f8548
[  201.025458][ T7012]  </TASK>
[  201.028717][ T7012] Kernel Offset: disabled
[  201.033035][ T7012] Rebooting in 86400 seconds..