last executing test programs:

11.814543399s ago: executing program 2 (id=788):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioprio_set$auto(0x3, 0x0, 0x4b34)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
mmap$auto(0x0, 0x7, 0xdf, 0x9b72, r1, 0x4000807c)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r2 = socket(0x11, 0x80003, 0x300)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r3 = openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_score_adj\x00', 0x142, 0x0)
write$auto(r3, 0x0, 0xffffffffffffdffa)
setsockopt$auto(r2, 0x107, 0x5, 0x0, 0x8004)
mmap$auto(0x0, 0x2, 0xffffffffffffffff, 0x40eb1, 0x602, 0x300000000000)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82, 0x0)
sendfile$auto(r4, r4, 0x0, 0x5)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtd0\x00', 0x28082, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x408440, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/pts/ptmx\x00', 0x8900, 0x0)
write$auto(0x3, 0x0, 0x7)
sendmsg$auto_NL80211_CMD_CHANNEL_SWITCH(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x14}, 0xc, &(0x7f0000000080)={0x0, 0x5f4}, 0x1, 0x0, 0x0, 0x4000000}, 0x8001)
close_range$auto(0x2, 0x8, 0x0)
prctl$auto_PR_MCE_KILL_GET(0x22, 0x0, 0x46b3, 0x2, 0x7)
madvise$auto(0x0, 0xffffffffffff0006, 0x17)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff)
shmctl$auto_IPC_RMID(0x7, 0x0, &(0x7f0000000100)={{0x171a4c29, <r6=>0x0, 0xee01, 0x401, 0x9, 0xb, 0x2}, 0x8, 0x5, 0xffffffffffffffff, 0x1, @inferred, @raw=0x3, 0xe7d, 0x0, &(0x7f0000000180)="15345fcec66378525bfee4916fdfd925c66c8057b2714c193393d7a5b12fcb4bd1f27545086a58eb85242a22119d30e1268509651400168f770ac5e30120a1cac5e37a61c047844214e9729caca90aba0938b4ee13868cf8baf3f0cea005b32424dcbf75575d6c6ce0d0ac5007be1957c48eb71031f8f8c8c3ede57ab5867d0f833476d895e19a8ea14b5c4a53034e68b522ac59d7f653d7fdf708f5f2d8da5136c1bb7a2ddd5ed28a02c5404f649484ea9ceca8673088042cd685f054dc2dca054aa4869cc3162783b93de45fb68ade2300f0246de2cab04f82753b020e191d8f84527f5a92b946993f8fa3791d66c98543580c", &(0x7f0000000040)="1783a8"})
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="ccc1c96f010000", @ANYRES16=r5, @ANYBLOB="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", @ANYRES32=r6, @ANYBLOB="050086000000000020003b8014001a00000000000000000000000000000000010800f4002b262b000c0002000100000000000000"], 0x1cc}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)

10.355273805s ago: executing program 2 (id=791):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0xa00, 0x0)
r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x22c02, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
prctl$auto(0x400, 0x1, 0x0, 0x0, 0x7ff)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r2, 0x1000000009, 0x7fb)
ptrace$auto(0xf, r2, 0x1, 0x4)
prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x2, 0x2, r2, 0x5, 0xd0)
mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x802, 0x0)
r3 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, 0x0, 0x80001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xa, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0xc, 0x2, 0x6]}, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
msync$auto(0xff, 0x800, 0x10)
r4 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
write$auto_proc_mem_operations_base(r4, &(0x7f0000001680)="a7", 0x80000)
madvise$auto(0x0, 0x20200, 0x15)
setsockopt$auto_SO_TIMESTAMP_NEW(r3, 0x80000000, 0x3f, &(0x7f0000000140)='/dev/tty12\x00', 0x200)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)
ioctl$auto_VHOST_VSOCK_SET_GUEST_CID(r1, 0x4008af60, &(0x7f0000000040)=0x6)
r5 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/vm/compact_memory\x00', 0x80801, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r6, 0x0, 0x0)
ioctl$auto_VHOST_VSOCK_SET_GUEST_CID(r5, 0x4008af60, &(0x7f0000000100)=0x643)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto(r0, 0x4b4a, 0xffffffffffffffff)

9.212098772s ago: executing program 2 (id=795):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vhci_hcd.4/usb18/version\x00', 0x1e5842, 0x0)
close_range$auto(r0, r0, 0x3) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
write$auto(0x3, 0x0, 0xfdef)

9.036111938s ago: executing program 2 (id=797):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x17, 0x401, 0x300000000000)
r0 = socket(0xa, 0x800, 0x3b)
connect$auto(r0, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
timerfd_settime$auto(r0, 0x4, &(0x7f0000000040)={{0x2, 0xd0}, {0x10000, 0x18000}}, &(0x7f0000000140)={{0x1, 0x3}, {0x7, 0x6}})
r1 = socket(0xa, 0x2, 0x0)
r2 = socket(0xa, 0x3, 0xff)
connect$auto(r2, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
mmap$auto(0x200, 0x0, 0x200, 0x9b72, r1, 0x6)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
mmap$auto(0x0, 0x20009, 0x4001000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
getdents64$auto(r3, 0x0, 0x400)
clone$auto(0x100000020003b49, 0x80000000002, 0x0, 0x0, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x2, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x2, 0x1, 0x43, 0x76c5, 0x8, 0x100000000}})
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)
landlock_add_rule$auto(r4, 0x1, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)

8.405647346s ago: executing program 2 (id=800):
r0 = open(&(0x7f0000000080)='./file0\x00', 0x43aac0, 0x5d745cb200ae4d7a)
fchown$auto(r0, 0xe5a, 0x5) (async)
mmap$auto(0x80000000000, 0x4000c, 0x20e4, 0x80000018, r0, 0xf)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x181881, 0x0) (async)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
sendfile$auto(r1, r1, 0x0, 0x3) (async)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x43f, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0) (async)
select$auto(0x804, 0x0, &(0x7f0000000100)={[0x9, 0x0, 0x0, 0x80000300, 0x1, 0x0, 0x2, 0x3, 0x81, 0x10000005e58296b, 0x1e, 0x9, 0x7ff, 0x200, 0x20000000008, 0x4000000000006]}, 0x0, 0x0) (async, rerun: 32)
getrandom$auto(0x0, 0xffffffff, 0x1) (async, rerun: 32)
setresuid$auto(0xee01, 0x1000, 0x607) (async)
write$auto(0x3, 0x0, 0xfdef)

7.163021622s ago: executing program 2 (id=804):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
arch_prctl$auto_ARCH_MAP_VDSO_32(0x2002, 0x3)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x200400, 0x0)
readv$auto(0x3, 0x0, 0xfffffffffffffffe)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x21, 0x4, 0x0)
r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
readahead$auto(r1, 0x4, 0x1)
setsockopt$auto(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
madvise$auto(0x0, 0x1, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x7, 0x1, 0x0, 0x1000, 0x8001)
r2 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/0/msr\x00', 0x181f82, 0x0)
mmap$auto(0x0, 0x20009, 0xe0, 0xeb1, 0xffffffffffffffff, 0x4)
write$auto(r0, &(0x7f0000000080)='-/%\'\xef#\x00', 0x8000000000000001)
readv$auto(r2, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000004180), 0xffffffffffffffff)
close_range$auto(0x2, 0x8000, 0x20)
io_uring_setup$auto(0x3, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x7, 0x4, 0x8200, 0x1001, 0x8, 0x1000000f, 0x66b, 0x0, 0x5}, 0x6f4)

6.133116515s ago: executing program 3 (id=808):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f0, 0x15)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x9, 0x9, 0xeb3, 0xfffefffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x25c000, 0x14)
fcntl$auto(r1, 0x409, 0x40003f)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001100)=""/192, 0xc0)
r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x101000, 0x0)
ioctl$auto(r2, 0x9000643a, 0xc35)
write$auto(0x3, 0x0, 0x100082)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0xffffffffffffffff, 0x8, 0xc, 0x0, 0x567)
unshare$auto(0x40000080)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x8080)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008)
acct$auto(0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r3 = openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f0000001680)='/sys/kernel/debug/tracing/uprobe_events\x00', 0x2, 0x0)
write$auto_uprobe_events_ops_trace_uprobe(r3, &(0x7f0000000380)="703a3a82d9e5cc7c2ceda8d50bfc", 0xe)
r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r4, 0xc0045006, &(0x7f00000001c0))
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x807e0, 0x0)

4.477919182s ago: executing program 0 (id=812):
openat$auto_deferred_devs_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x101080, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
epoll_create$auto(0x3e)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2d, 0x2, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x40, 0x190}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = io_uring_setup$auto(0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/net\x00')
r1 = pipe$auto(0x0)
r2 = socketpair$auto(0x1, 0x1, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r1)
sendmsg$auto_NL802154_CMD_ABORT_SCAN(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f00000003c0)={0x11c, r3, 0x8, 0x70bd26, 0x25dfdbfe, {}, [@NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0x6}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x2c, 0x100}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x2}, @NL802154_ATTR_COORDINATOR={0xd1, 0x1e, 0x0, 0x1, [@typed={0x8, 0x119, 0x0, 0x0, @fd=r2}, @typed={0x8, 0xa3, 0x0, 0x0, @ipv4=@broadcast}, @generic="8f17e9849d61f0d59f612a05806226e81635decf22b0981ce48632e0658f9a1b9bb24ccd53b8fd848b13fc09456875d3fac1efeae3fea4cbc4aea2dc55bdf76cd93ffe3f644d6693e49f569fc504e7f2bd56c481af7afcdf1eefeb7ee423f8b60e6dcc9fa956ec66be4fc2e2f56d6457f4cc30a73a835eff2f98181e5a94c7f53dce1bc3bfbb3f3f45204d61d2ed70885eae26af09ff84a6675d6fc8c603c6a71ce0969c29a81d2d09c977ac5234e994b954377ed1", @nested={0x8, 0x25, 0x0, 0x1, [@nested={0x4, 0x2a}]}]}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0xfffffffffffffffd}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0x9}]}, 0x11c}, 0x1, 0x0, 0x0, 0x22048010}, 0xc800)
r4 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0)
write$auto(r4, 0x0, 0xc3)

4.267355409s ago: executing program 1 (id=813):
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000) (async)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/v4l-subdev0\x00', 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) (async)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000500)='/dev/bus/usb/023/001\x00', 0x201, 0x0)
ioctl$auto_USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, 0x0) (async)
r1 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000000), 0x1a9402, 0x0)
ioctl$auto_BCH_IOCTL_DATA(r1, 0x4070bc0a, &(0x7f0000000040)={0x68dd, 0x1, 0xa, 0xf28, {0x8, 0x4, 0x1d}, {0x2, 0x200, 0xf0bf}, @migrate}) (async)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
close_range$auto(r2, r2, 0x0) (async)
read$auto_rfcomm_dlc_debugfs_fops_(r2, &(0x7f0000000100)=""/102, 0x66) (async)
ioctl$auto(0x3, 0x4020565a, 0x38)

4.199208191s ago: executing program 0 (id=814):
mmap$auto(0xfffffffefffffffd, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x5)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x900, 0x0)
mmap$auto(0x0, 0x580f, 0x1, 0x8000000008011, 0x3, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/spi/drivers_autoprobe\x00', 0xca481, 0x0)
write$auto(r0, &(0x7f00000000c0)='\x14\xf4\xb6\xc6\x97\xdb\x18B\f\xef\x1dQZ\xa66\xe7\x06\\\xe0)+\x86\xa7\x9bv\xe1\x18\xf5\x83\b\x11\x19\xdd\x1c', 0x8)
setsockopt$auto(0x3, 0x81, 0x1, 0x0, 0x83)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x1ff, 0x7c9, 0x25, 0x4909b6f5, 0x1ffde, 0x7, 0x3, 0x20000009, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x3, 0x1000, 0xa, 0x22000, 0x200, 0xffffff28, 0x84, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, [0x317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffd, 0x0, 0xffff, 0x10, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0xfffffffffffffffe]}, 0x1fe, 0x9)
socket(0xa, 0x801, 0x84)
setsockopt$auto(0x3, 0x29, 0x43, 0x0, 0x9)
r1 = open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x4)
ioctl$auto_SNAPSHOT_ALLOC_SWAP_PAGE(r1, 0x80083314, &(0x7f0000000040)=0xce)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x20040001)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x1892, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0xb, 0xa505}, 0x800}, 0x7, 0x4008)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/netfilter/nfnetlink_queue\x00', 0x101000, 0x0)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
madvise$auto(0x0, 0xffffffffffff0006, 0x17)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = socket(0x2, 0x1, 0x106)
bind$auto(r3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
bind$auto(0x3, 0x0, 0x6a)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)

3.827958301s ago: executing program 1 (id=815):
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000) (async)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
madvise$auto(0x0, 0xffffffffffff0006, 0x17)
mmap$auto(0x0, 0x8de, 0xdf, 0x591b, 0x2, 0xb) (async)
mmap$auto(0x0, 0x8de, 0xdf, 0x591b, 0x2, 0xb)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0) (async)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r4) (async)
ioctl$auto(0x3, 0xae41, r4)
ioctl$auto_KVM_GET_MSRS(r3, 0x4188aea7, &(0x7f0000000100)={0x2})
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000001c0), r0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0)
sendmsg$auto(0xffffffffffffffff, 0x0, 0xfff)
statmount$auto(&(0x7f0000000140)={0x9, @inferred=r2, 0x2, 0x3ff, 0x7f}, &(0x7f0000000440)={0x6, 0x6, 0x53, 0x4, 0x3, 0x101, 0x2, 0x3, 0x5, 0xffffffff80000001, 0x57d6, 0x8, 0x3, 0x1, 0x8, 0x3, 0x1, 0x8001, 0x400, 0x1ff, 0xfff, 0xd8, 0x4, 0x2, 0x9, 0xbef3, 0x411, 0x7, 0x0, 0x7, 0x7, [0x6, 0x7f, 0xbce7, 0x599, 0x56, 0x7, 0x6, 0x8, 0xffffffffffffffff, 0x0, 0x200000000000, 0x2, 0x1, 0x9, 0x100, 0x40004545, 0x4, 0xa, 0xb, 0xf5fd, 0x7, 0x4, 0x7fffffff, 0xff, 0x2, 0x5, 0x8, 0x4, 0x4, 0x7fffffff, 0x4, 0x0, 0x7, 0x80, 0x6, 0x4, 0x7, 0x4, 0xffc0000000000000, 0x1, 0x9, 0x8, 0x80000001], "73e9b0abe71d1e2aee680f7f0e812f294220578764aaba215588c48129939d0d8c6c8dcb488aeb5a653cee9f3407b9069269771811ce667d8ed9be2acd3e8d086701b3f03b438bda6b30b8ab183e2ad4220f1bc6f555e6bda8a270b5dc2c67dfe0f7795a"}, 0x40, 0x36)
msync$auto(0x2, 0x9, 0x40)
select$auto(0x4, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0x2}) (async)
select$auto(0x4, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, &(0x7f0000000280)={0x6, 0x2})
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd) (async)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)

3.435201664s ago: executing program 3 (id=816):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/security/tomoyo/profile\x00', 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
socket(0x2, 0x1, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0)
read$auto_tomoyo_operations_securityfs_if(r0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
fcntl$auto(0x3, 0x4, 0xa553)
write$auto(0x3, 0x0, 0xfdef)

2.954107514s ago: executing program 1 (id=817):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x6e, 0x0, 0x8)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NFC_CMD_START_POLL(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="df763abade56849a516f2fe11914b12c88a863408992d9bbc925bae244446fdf5aea01be8291a05304d1f108758517727d1a0629b5fc0e919074eb404e34da67faff6ab35f480831c7cd2cdf95e289d5b5fd4f1a7c7e574eb40f87330d348027d3a4ff8539e1934aa8c892a7cdfa751fc29c5fa171486239fafcd1b883f54e2b39a4158904fa58158f8d6f6aead64b540e97bfb63f829b5d171921441be161b9c766b471fb258b2bcc9d13369bf0457559135543e3e112cf5468ea68d33a2aefc3748241267fd4dffb2e11b4df4bf9a1d80443c7a47477cd410265f928f5e6a3ff564274799dfc33", @ANYBLOB="000127bd6339fedbdf250600000008001e00f7ffffff08001d0101000000000000000700000008000400010000000800030006000000"], 0x3c}, 0x1, 0x0, 0x0, 0x24048084}, 0x20000040)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/kvm/remote_tlb_flush\x00', 0x208480, 0x0)
r1 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000240)='/proc/self/cmdline\x00', 0x1, 0x0)
bpf$auto(0x0, &(0x7f0000000100)=@prog_bind_map={r0, r1, 0x81}, 0x6ef)
bpf$auto(0x16, 0xffffffffffffffff, 0x0)
bpf$auto(0x3, 0x0, 0x103)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0xa, 0x80002, 0x73) (async)
socket(0xa, 0x1, 0x84) (async)
setsockopt$auto(0x3, 0x10000000084, 0x6e, 0x0, 0x8) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000080), 0xffffffffffffffff) (async)
sendmsg$auto_NFC_CMD_START_POLL(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="df763abade56849a516f2fe11914b12c88a863408992d9bbc925bae244446fdf5aea01be8291a05304d1f108758517727d1a0629b5fc0e919074eb404e34da67faff6ab35f480831c7cd2cdf95e289d5b5fd4f1a7c7e574eb40f87330d348027d3a4ff8539e1934aa8c892a7cdfa751fc29c5fa171486239fafcd1b883f54e2b39a4158904fa58158f8d6f6aead64b540e97bfb63f829b5d171921441be161b9c766b471fb258b2bcc9d13369bf0457559135543e3e112cf5468ea68d33a2aefc3748241267fd4dffb2e11b4df4bf9a1d80443c7a47477cd410265f928f5e6a3ff564274799dfc33", @ANYBLOB="000127bd6339fedbdf250600000008001e00f7ffffff08001d0101000000000000000700000008000400010000000800030006000000"], 0x3c}, 0x1, 0x0, 0x0, 0x24048084}, 0x20000040) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/kvm/remote_tlb_flush\x00', 0x208480, 0x0) (async)
openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000240)='/proc/self/cmdline\x00', 0x1, 0x0) (async)
bpf$auto(0x0, &(0x7f0000000100)=@prog_bind_map={r0, r1, 0x81}, 0x6ef) (async)
bpf$auto(0x16, 0xffffffffffffffff, 0x0) (async)
bpf$auto(0x3, 0x0, 0x103) (async)

2.835273284s ago: executing program 0 (id=818):
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x80802, 0x0)
mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = io_uring_setup$auto(0x6, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000180), r1)
sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000)
r3 = socket(0x2b, 0x1, 0x0)
sendmsg$auto_NLBL_CIPSOV4_C_REMOVE(r3, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x2404c040)
mmap$auto(0x0, 0x0, 0xdf, 0x9b72, 0x2, 0x3)
connect$auto(0x3, 0x0, 0x55)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x6, 0x19, 0x0, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x8, 0x4000000000df, 0x44eb2, 0x6, 0x300000000000)
madvise$auto(0x0, 0x20000a, 0x4)
prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
select$auto(0x4, 0x0, &(0x7f0000000080)={[0x208c, 0x10000, 0xfffffffffffffffd, 0xd, 0x250, 0x100000001, 0x3, 0x2017d, 0x4, 0x40, 0x10, 0xd59, 0x80009, 0xff, 0x21, 0x100000001]}, 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r4 = getpgid$auto(0xffffffffffffffff)
fcntl$auto(r0, 0x5, r4)
close_range$auto(0x2, 0xa, 0x0)
mknod$auto(&(0x7f0000000b00)='X))\x00', 0x63c1, 0x7ff)
creat$auto(&(0x7f0000000040)='X))\x00', 0x5)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_clone3(&(0x7f0000000300)={0x86000200, 0x0, 0x0, 0x0, {0x28}, 0x0, 0x0, 0x0, &(0x7f0000000100)=[0x0], 0x1}, 0x58)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40602, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)

2.60577837s ago: executing program 1 (id=819):
mmap$auto(0x0, 0x4b6, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async, rerun: 32)
write$auto(0x3, 0x0, 0x7fffffff) (rerun: 32)
write$auto(0x1, 0x0, 0x80000000) (async)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x1, 0x5)
newfstatat$auto(0xffffffffffffffff, 0x0, 0x0, 0x1) (async, rerun: 32)
openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f00000089c0)='/sys/kernel/debug/netdevsim/netdevsim0/max_vfs\x00', 0x101000, 0x0) (rerun: 32)
socket(0x1, 0x800, 0x6)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
r1 = socketpair$auto(0x1, 0x2164, 0x8000000000000000, 0x0) (async, rerun: 64)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async, rerun: 64)
r2 = openat$auto_sync_info_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000480), 0x101100, 0x0)
ioctl$auto_XFS_IOC_ALLOCSP(r1, 0x4030580a, &(0x7f0000000040)={0x40, 0x843, 0x5, 0x0, 0x100, <r3=>0x0})
ioctl$auto_XFS_IOC_FREESP(r1, 0x4030580b, &(0x7f0000000100)={0x568b, 0x1, 0x9, 0x8002, 0x9, r3})
mmap$auto(0x0, 0x3ff, 0xb3, 0x9b72, 0xffffffffffffffff, 0x28000) (async, rerun: 64)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram12\x00', 0x60742, 0x0) (async, rerun: 64)
write$auto(0x3, 0x0, 0x7fffffff) (async)
statmount$auto(0x0, 0x0, 0x10, 0xd) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) (rerun: 64)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
mmap$auto(0x0, 0x4, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
io_uring_setup$auto(0x2, 0x0) (async)
unshare$auto(0x40000080) (async)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0x8208ae63, 0x38)
munmap$auto(0x9000, 0xffffffff)
pread64$auto(r2, 0x0, 0x7, 0x8001)

2.443296598s ago: executing program 3 (id=820):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video15\x00', 0x180, 0x0)
read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f0000000000)=""/188, 0xbc)
mmap$auto(0x0, 0x4, 0x7, 0xeb0, r0, 0x8001)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00211459a600fbdbdf250200000008000300000000001b0004"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[], 0x1ac}}, 0x40400)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

1.942797951s ago: executing program 3 (id=821):
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x3, 0x0)
r0 = openat$auto_ftrace_set_event_pid_fops_trace_events(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/set_event_pid\x00', 0x800, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x88441, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r1, 0x4c03, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sr0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x10000, 0xde, 0x11, r2, 0x28000)
mmap$auto(0x1, 0xab5, 0x8, 0x18, r0, 0x2)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.7/usb8/ep_00/interval\x00', 0x80000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000001680)=""/59, 0x3b)
rename$auto(&(0x7f0000000140)='}[,&*}\x00', &(0x7f0000000180)='}[,&*}\x00')
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nlbl_calipso(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$auto_NLBL_CALIPSO_C_REMOVE(r4, &(0x7f00000002c0)={&(0x7f00000001c0), 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r5, 0x200, 0x1, 0x25dfdbfe, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x344}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8810}, 0x80)

1.289468032s ago: executing program 3 (id=822):
socket(0x10, 0x2, 0xf)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r0 = socket(0x10, 0x2, 0x0) (async, rerun: 32)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=<r1=>0x0, @ANYBLOB="010600bd7000fbdbdf250a000000", @ANYRES32], 0x1c}, 0x1, 0x0, 0x0, 0x20040004}, 0x20008810) (rerun: 32)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYRES16=r1, @ANYRESOCT], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc7}, 0x1, 0x0, 0x0, 0x9}, 0x3}, 0x3, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000) (async)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dsp1\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, 0x0)
r3 = openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0)
ioctl$auto_IOCTL_VM_SOCKETS_GET_LOCAL_CID(r3, 0x7b9, 0x700000000000000) (async)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x101c82, 0x0) (async)
ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
write$auto(r4, &(0x7f0000000080)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x6, 0xa, 0xeb1, 0xfffffffffffffffa, 0x4) (async)
fanotify_init$auto(0x1, 0x3) (async)
inotify_init1$auto(0x3000000000000) (async, rerun: 64)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x1d, 0x3, 0x1)
socket(0xa, 0x801, 0x84) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x648401, 0x0) (async)
socket(0xa, 0x1, 0x100) (async)
pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)

1.193116001s ago: executing program 0 (id=823):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51)
inotify_add_watch$auto(r0, &(0x7f0000000000)='./file0\x00', 0x3)

847.215855ms ago: executing program 0 (id=824):
r0 = openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x24261, 0x0)
fadvise64$auto_POSIX_FADV_DONTNEED(r0, 0xffffffffffffe0d8, 0x8000000000, 0x4)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0xffffffffffffffff, 0x8000)
memfd_create$auto(0x0, 0xe)
rseq$auto(&(0x7f0000000300)={0xe, 0x2, 0x9, 0x6, 0x6, 0x2}, 0x8000, 0x0, 0x9)
sysfs$auto(0x2, 0x4c, 0x0)
r1 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r1, 0x6, 0x0, 0x0, 0x0)
seccomp$auto_SECCOMP_SET_MODE_FILTER(0x1, 0x8, 0x0)
socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x3c, 0x75f, 0x1ffde, 0x7, 0x3, 0x2, 0x9, 0x3, 0x6, 0x0, 0xb4, 0x9, 0x6, 0x10003, 0x80, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x6)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0)
pread64$auto(r2, 0x0, 0x800003, 0x270)
socket(0xf, 0x3, 0x2)
madvise$auto_MADV_PAGEOUT(0xd, 0x8000, 0x15)
r3 = open(&(0x7f0000000000)='./cgroup\x00', 0x400, 0x64)
fchdir$auto(r3)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)
umount2$auto(&(0x7f0000000000)='.\x00', 0x4)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)

598.286911ms ago: executing program 1 (id=825):
write$auto(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0xc95)
getcwd$auto(&(0x7f0000000040)='\x00', 0x3)
r0 = ioctl$auto_TUNSETDEBUG(0xffffffffffffffff, 0x400454c9, &(0x7f0000000080)=0x1000)
ioctl$auto_SNDRV_PCM_IOCTL_REWIND2(r0, 0x40084146, &(0x7f00000000c0)=0x7fffffffffffffff)
io_uring_register$auto_IORING_REGISTER_CLONE_BUFFERS(r0, 0x1e, &(0x7f0000000100)="54b27e8e186eafacff21f0246b4247cb532bc9d1e939b2bac2c396f7c96db318670af655bf626074602abcef92db", 0x0)
r1 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/dri/vkms/Writeback-1/edid_override\x00', 0x480000, 0x0)
r2 = openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/trace_marker_raw\x00', 0x62200, 0x0)
sendfile$auto(r2, r1, &(0x7f00000001c0)=0x4, 0x6)
write$auto(r0, &(0x7f0000000200)='\x00', 0x1)
r3 = socket(0xf, 0x4, 0x0)
r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000240)='/dev/audio1\x00', 0x581800, 0x0)
ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000280)={0x0, 0x0, [{0xfc1a, 0x1, 0x7fff}, {0x2, 0x9, 0x8000}, {0x9, 0x1, 0x7f}, {0xedf9, 0x0, 0x5}, {0x1, 0x2}, {0x3, 0x3, 0x2}, {0x5, 0x1, 0xffffffffffffffff}, {0xae, 0x9, 0xe6e00}, {0x18000000, 0xf1c, 0x2}, {0x3, 0x3, 0x5}]})
semctl$auto_SETALL(0xfffffc58, 0x8, 0x11, 0xfffffffffffffff8)
semctl$auto_SETALL(0x7, 0xfffffff6, 0x11, 0x8)
r5 = accept4$auto(r2, &(0x7f0000000340)=@tipc=@name={0x1e, 0x2, 0x4, {{0x2, 0x3}, 0x3}}, &(0x7f0000000380)=0xdc34, 0x8)
close_range$auto(r5, r3, 0x1)
r6 = ioctl$auto_UDMABUF_CREATE_LIST(0xffffffffffffffff, 0x40087543, &(0x7f00000003c0)={0x8, 0x3, [{<r7=>r1, 0x0, 0x0, 0x6}, {r2, 0x0, 0x2, 0x9}, {r2, 0x0, 0x80, 0x3}, {<r8=>r4, 0x0, 0x3, 0xb8c2}, {<r9=>r5, 0x0, 0x3ff, 0x4}, {r4, 0x0, 0xabd00000000000, 0xffffffffffff4010}]})
mmap$auto(0x2d3, 0x7, 0x2, 0x12, r7, 0x1)
r10 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000004c0), r3)
r11 = fcntl$auto_F_GETOWN(r9, 0x9, 0x737d)
r12 = waitid$auto(0xa, r0, &(0x7f0000000500)={@_si_pad}, 0x4, &(0x7f0000000580)={{0x8001, 0xfffffffffffffffb}, {0x5, 0xfffffffffffffffd}, 0x0, 0x9f, 0x6, 0x4, 0x100, 0x0, 0x3, 0x5c, 0xffffffffffffffff, 0x0, 0x66b, 0xfffffffffffffffb, 0x2, 0x2})
r13 = clone$auto(0x8, 0x5302, &(0x7f0000000640)=0x4, &(0x7f0000000680)=0x10000, 0x0)
msgctl$auto_MSG_STAT(0xe, 0xb, &(0x7f0000000740)={{0x100, <r14=>0x0, 0xee01, 0x0, 0x0, 0x400, 0x1658}, &(0x7f00000006c0)=0xb, &(0x7f0000000700)=0x65, 0xfc01, 0x31f, 0x1, 0x1ff, 0x5f50800000000, 0x7, 0x1e, 0x7, @raw=0x80000000})
ioctl$auto_XFS_IOC_SWAPEXT(r0, 0xc0c0586d, &(0x7f00000007c0)={0xc00000000000000, @inferred=r6, @inferred, 0x6, 0x5, '\x00', {0x1, 0x4e, 0x3, <r15=>0x0, 0x0, 0xffff, 0x0, 0x8, {0x7ff, 0x8}, {0x3, 0x2}, {0x1, 0x7}, 0xd2b4, 0x9, 0x9, 0xfffffff2, 0x5, 0x8, 0xfff5, 0x3, 0xd, 0x3, '\x00', 0x7, 0x7, 0x8001, 0xffff}})
sendmsg$auto_IPVS_CMD_NEW_SERVICE(r8, &(0x7f0000001400)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000013c0)={&(0x7f0000000880)={0xb3c, r10, 0x800, 0x70bd2a, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0x22d, 0x2, 0x0, 0x1, [@generic="b8e62e789357b738de6795fbce0b3c09f7fbe122b4bec394af51ca4d04d8f56e03afe5c62dc891943d2be02106caef6298c24728fb88b4841dd752b2ef39ea27b477bd8434044e02d1bd5bd9c41cd1003a287513e35461512b880966c1fd366775141f8fc4b1d8fcab01ed8d0720d883eda0435b8e5da505f47fa967a0772c636f2a5b801e290d1c439dec5efe5a8aa1cc6134acae93b906830786bbaabc637c918b350bb487ec069e19eafe026f5e5e", @typed={0x62, 0x42, 0x0, 0x0, @binary="b83818f73643fea41d119e8ad3eb33b73a94ebb797396ad283c682d73c4a202943ba37bc68b2e11ce7bf441b933604c72bbc7e83ac6b0b0317ec423a9bdaab066691247fcda2217c990374dd3bca8f84f0ce10471ddf7bdd7e28fa552831"}, @typed={0x8, 0xdf, 0x0, 0x0, @pid=r11}, @nested={0x57, 0x2a, 0x0, 0x1, [@typed={0x8, 0x5d, 0x0, 0x0, @pid=r12}, @nested={0x4, 0x14}, @nested={0x4, 0x140}, @generic="180a85807c69b012e12e215adb650af50424a1061720575df15634b0650dfed510378ae41473f0dece4453", @nested={0x4, 0x6}, @typed={0x14, 0x10b, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}]}, @typed={0x8, 0x63, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @typed={0x14, 0xfa, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @typed={0x14, 0x32, 0x0, 0x0, @ipv6=@private1}, @generic="9d8b3bacb14f5277cb0400ff7da79130db6a8952c8e00f65acf0108ea4956c5c03691ea585daccd5a74abfdc7fa89dd3a69652f3f86e5a46db043f1db52579bfcfe11dc6ebc64b6eca0b83ee21d13debc0e8581088935578ba937c18567b79b4f0e019ad4d4168129afc0428402e1b2ab14b0b9841ce18f8d76cb8e4d6d46d0111079ebcc7"]}, @IPVS_CMD_ATTR_DEST={0x448, 0x2, 0x0, 0x1, [@nested={0x66, 0x1f, 0x0, 0x1, [@typed={0x6, 0x9c, 0x0, 0x0, @str='\\\x00'}, @nested={0x4, 0x73}, @nested={0x4, 0x8d}, @typed={0x8, 0x32, 0x0, 0x0, @pid=r13}, @typed={0x4, 0xb9}, @generic="95a88793ffded158da81eb809b6cec6375", @generic="df2c85dc6663b8ade5f95513d18cc176ecde9581ecbaad06d872d38016328b34a25cc53246be627d506ae4aa81693feb32884e18b6"]}, @nested={0x18, 0xa5, 0x0, 0x1, [@nested={0x4, 0xd5}, @typed={0x8, 0x95, 0x0, 0x0, @str='!\'(\x00'}, @typed={0x8, 0x131, 0x0, 0x0, @fd=r1}]}, @nested={0x13c, 0x28, 0x0, 0x1, [@nested={0x4, 0x147}, @generic="ca14381f88cb8067a709977904aadeca0640488789f0f13642f6377f92485a5c0cf28eddf46872c226210ca261a1a53ecda74d6895f63be42cadd520643bfc1ab805630885f4c2", @generic="3c73ce2bb8cbd1a285290e19e6c730496f86b01c6dfbf11676302923ae5625c28ecf840792c94c593e32a9de85117646cfcbc40ec4d58d18cf57ed207e0927ca99ac4feec39835dfcfe508ff6120e0ea69f194a3003887913bbbe2c4763e8060b9f45814b68c22dce4df30080009a18a1b2f8ffe65535de1516216f2da4620288fa7fe06221ff04eb63e7d8f79cfce5f4725ed6e07e9cdd534b7b7caf8f6c0403679373891e6411f5a835894eb7c5a986dab1606a0edfe1c1c0e1a7b7aa65331404930d3ab4a08b26c48a71c21f9213a85b0d07f2393bbe759f6d4cb5904d13efa5fc0c163840e57fe", @typed={0x4, 0xc3}]}, @nested={0x142, 0xc4, 0x0, 0x1, [@nested={0x4, 0x29}, @generic="9901177b3ae729141a25eefcc4356e072757283e889e3ccf7fb097e49d3a9b0c24ef4358d066a20d054d332fccdba0a6e526d8afa9e238ad6de59afe5947c5888dd936abf32d8120a47836dd1f90d1b74ffa8584c877bb131f5291be106073e0a805eebc3d1f21bbb6380a89ec893df60792044cf4883d0ed73e7c5592f30522e5bad093e396dc2c4cbf694a27d6a7d11aa503a0931e7032f9eafe885a7310aa1b24b9a2d1d273a8a89b0e443448b9602072e3c6f603b382bf96e9d09e35fbb3a0d920e89077f3671cb3103e9030b8835e4b5c498fa9cd194922f5e34f7b6ff68a53d35ced8c9eb724b8", @generic="9928f4bb17a7644aa79803fa37698737203930fe", @nested={0x4, 0xd8}, @typed={0x14, 0x102, 0x0, 0x0, @ipv6=@loopback}, @nested={0x4, 0x11f}, @typed={0x8, 0xfe, 0x0, 0x0, @fd=r9}, @typed={0x15, 0xc5, 0x0, 0x0, @str='$,\'!\':@)--&%:%#%\x00'}]}, @typed={0x8, 0xf9, 0x0, 0x0, @u32=0x2}, @nested={0x7d, 0x3a, 0x0, 0x1, [@typed={0x8, 0xad, 0x0, 0x0, @uid=r14}, @generic="1bf67cb4ccae5cd33693a279533888688df39f9938b6a3d53cd2fabebd3ba10decf77c778fd9e2de20904406c4585ae9a13d482d1d3b6d33cce9a7aacdd01cb923347b7027af90abf11fb2af6e9dd4279d227fdf1332a709691eaaa463a199c48af8a0d93e", @typed={0x8, 0x58, 0x0, 0x0, @uid=0xee00}, @nested={0x4, 0x69}]}, @typed={0x4, 0x84}, @typed={0x8f, 0xfb, 0x0, 0x0, @binary="e33a89a124b56b7bf36bccbe60e52b5415070223f5eaaa5d833ae0d6b60b7af14ef655b5b4c09282736de7648697d770ce9b7560b43acd0de866b68c11b58fbe1efdd71a560d2646ee88ae9716e9833d08465045d51c015c81ba88391ca39ad2b43bfcc168ede6d8acb8f71d6b821c487b4db49765733f1f81b8c0c2315a9d0c8ccb7c261b9354505d081f"}, @nested={0x28, 0x4d, 0x0, 0x1, [@nested={0x4, 0x105}, @typed={0xc, 0x2b, 0x0, 0x0, @u64=0x7}, @nested={0x4, 0x7d}, @typed={0xc, 0x11f, 0x0, 0x0, @u64=0x5}, @nested={0x4, 0xb9}]}]}, @IPVS_CMD_ATTR_DAEMON={0x155, 0x3, 0x0, 0x1, [@generic="ed262290385a517b3bd31dabfd0749f512c79a6a36a91a5331fbfc6cb84ea2d074bd7d8f61448bbfff86a2a9f4b0c23ace0348ff3abcfa2d7081d2cd45d916f4e223119b845fb1a75c7edcec03a33c7841c613d8", @generic="4d265028af950cbeb2ad95d10ba4308eb93dfde82d2a6344648d405a36e4967d3efc451e25ab86eb2c8235ae3836180a78cea858c19367684e8845ff9448eb39465db22cf2ce5cfaf153306267f2444a4ea203043b56cda9546a56af5e68292def9e1608f26b86a7121d2fa7b503ae6fb20e48d3122aa2af85e6e57b7f9a832ba6198ac890ed1e1a3fdeb23d043874936d17676a97a898e5a004fcbf4e22d2f5a274f0ae04fc29a08ff1e96d18a89d7b383bc63e721671b5c7ac480fc4cd81876fb6a807e994a4b216c62f80bd9eb2194203c1a6ed8b6bfd116e49e41bb1e1239ef2a78f0cc89e5526dc67c7d3f7db96385c0446d2", @typed={0x8, 0x10b, 0x0, 0x0, @uid=r15}]}, @IPVS_CMD_ATTR_DAEMON={0x34e, 0x3, 0x0, 0x1, [@nested={0x153, 0xbb, 0x0, 0x1, [@generic="a5a47cb39dd69c322867e74aa3d0d2f8bc30aefdfaefae71779c401b24d964d79c59d73771682f7717771b9f7078bad1beed9b549c860719e7d7a03d7a98af8a72808cad810192095282ba427fa050b0fa56cc429a0d4e1826fd0d70627fdd7e4be4054ab9f5ade3758634e0cbeb67d9ddb2554b9cb53870b6a0d136bd698cbef7c4fa014e3a9233c1100dd45e33b33de6dcd4c2b4a953af5cbc3f4ad31cf080b5201407a267322e70085660bc1544b8931e0ccc10796dbf381ef6fd349a54b24a3d75aef261fe5dac", @generic="9819675096c3b495cd8f572f69647a49cdc4abb8111da94af367ebc1f237e5ec8ad692d476f8032e5dd95bef3066a22e0461fbc365548f7a45882b4c1561958b583ae79ef44754029982521cccab928d63", @typed={0x8, 0x10f, 0x0, 0x0, @uid}, @nested={0x4, 0x10f}, @typed={0x14, 0x9d, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}, @generic="56d7d40a2af928a739449f08e208c98d0c", @nested={0x4, 0x9c}]}, @typed={0x8, 0x128, 0x0, 0x0, @u32=0x3}, @typed={0x4, 0x46}, @nested={0xc8, 0x90, 0x0, 0x1, [@nested={0x4, 0x99}, @nested={0x4, 0xff}, @nested={0x4, 0xbb}, @generic="ecbebb81f45197416adeb7244b3f9656a98d2f899eafb9d812ba28e9fc9fe8df3697d6a4cbab79661146119ee4be0e66117bac1633c38998b6fd47143f4c9dde7b3c40e72de368ee9df7649100b24de7c4bacb6afd2347ee2b069ae73c43ea3b8c9e5934a3cb5dcf1ba40c297159113e7b817634ad1f4e46d3023bccac6f575a28c224cc3663f2d84fb8afe55af4a63511e7b0dd98a7459bcf45ed04097cc71d97d32af6", @nested={0x4, 0x41}, @typed={0x8, 0xbe, 0x0, 0x0, @ipv4=@loopback}, @nested={0x4, 0x136}, @nested={0x4, 0xa5}]}, @generic="434b22dfd5fedbd702d0a83e57cbd37a57132b588d75fd27c47ac0a5b1ea50420863fb6bea791e41e4daf0fb0b729fa68bc5dbf8a1ef8874f3f1aaf26978274843e342049157f7c8c2bd60c0c6ad70eedc27e27cbca2eb412a542868b9b0e463021f99de236eb4e2de44a3cbdff972128ccdd36ba9aa8bb5ada666015eecd191b9434befc396b61bcac8a9334c40c31f0138d2069fd15a2db0630d2fd819e968b7e182", @typed={0x10, 0x145, 0x0, 0x0, @str='/dev/audio1\x00'}, @generic="88869c7fbb67ca9506541aaba9bf4936b05670dc29ad08da27277fd4a3fdc31b1f30557d12c8e5504c81dc9430063eb5e077b0ff69e3f1d7a527c76ed57bf8635929c2a76514dbad6e0a7c724d1223ef69172af74fe0ea35e248f1", @typed={0x14, 0xe0, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x3c}}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x8}]}, 0xb3c}, 0x1, 0x0, 0x0, 0x8041}, 0x40)
timer_create$auto(0x2, &(0x7f00000014c0)={@sival_ptr=&(0x7f0000001440)="59e914a0b3d41fdee816dfd6184ddbd2f7a1557cdcc9128903c94370a4aa5e541b359f9a1e5e11d218775768650caafe3ea86b3ca3f6dcf9daa19950c640ba7a8182450768ad1ca120b23d36a7fff95cdd73401f2b884c76f0e9883534851b247e380d317a72171a3e00e397c96dca622356678c6be51a5df7a70ef07bc1", @raw=0x6, 0x8}, &(0x7f0000001500)=0x40)
ptrace$auto_ARCH_GET_FS(0x7fffffff, r12, 0x7, 0x1003)
setsockopt$auto_SO_KEEPALIVE(r6, 0x9, 0x9, &(0x7f0000001540)='\\\x00', 0xfffffffc)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000001580))
select$auto(0x800, &(0x7f00000015c0)={[0x4, 0x880, 0x2982b80e, 0x8, 0x0, 0x9, 0xffffffffffffffff, 0x5, 0x7ff, 0x3, 0x1, 0x3, 0xffffffff80000001, 0x3, 0xfffffffffffffc69]}, &(0x7f0000001640)={[0xfff, 0xf, 0x6, 0x1, 0x7, 0x1, 0x4, 0x84fc, 0x400, 0x5, 0x6, 0x3, 0x81, 0x100000000, 0x6, 0x1]}, &(0x7f00000016c0)={[0xea, 0xf4, 0x6, 0x3, 0x7, 0xb9c, 0xad9f, 0x6, 0x2, 0xfffffffffffffffb, 0x0, 0x24, 0x7, 0x3, 0x2, 0xe7a]}, &(0x7f0000001740)={0x60, 0x7ff})

595.376936ms ago: executing program 0 (id=826):
r0 = openat$auto_deferred_devs_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x101080, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r1 = epoll_create$auto(0x3e)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000001c0)=""/6, 0x6)
mmap$auto(0xfffffffffffffffe, 0x99, 0xdf, 0x200000000000eb2, r1, 0x8004) (async)
mmap$auto(0xfffffffffffffffe, 0x99, 0xdf, 0x200000000000eb2, r1, 0x8004)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0)
read$auto(r2, 0x0, 0x7)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r4 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, 0x0, 0x12100, 0x0)
read$auto_def_blk_fops_fs(r4, 0x0, 0x0)
fstatfs$auto(r3, &(0x7f0000000240)={0x1, 0x401, 0x72, 0x7fffffff, 0x4, 0x8000, 0x1, {[0x3, 0x3]}, 0xc2, 0xb23, 0x1eda, [0x10, 0x7, 0x100, 0xc]}) (async)
fstatfs$auto(r3, &(0x7f0000000240)={0x1, 0x401, 0x72, 0x7fffffff, 0x4, 0x8000, 0x1, {[0x3, 0x3]}, 0xc2, 0xb23, 0x1eda, [0x10, 0x7, 0x100, 0xc]})
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0) (async)
r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0)
mmap$auto(0x0, 0x2, 0xdb, 0x9b72, 0x6, 0x100000000)
ioctl$auto(0x3, 0x40045612, 0x34)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (async)
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/vhci_hcd.6/usb22/22-0:1.0/usb22-port3/disable\x00', 0x581002, 0x0)
writev$auto(r6, &(0x7f0000000200)={0x0, 0x3}, 0x3)
set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4) (async)
set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4)
fsopen$auto(0x0, 0xfffffffc)
mmap$auto(0x3, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
setsockopt$auto(r5, 0x0, 0x7, &(0x7f0000000140)='#(+\'\x00', 0x7)

388.134617ms ago: executing program 3 (id=827):
unlinkat$auto(0x1ff, 0xfffffffffffffffd, 0x200)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xe2a02, 0x0)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
open(&(0x7f0000000000)='./file0\x00', 0x101800, 0x181)
r1 = creat$auto(&(0x7f0000000040)='./file0\x00', 0x81)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/lacp_rate\x00', 0x80002, 0x0)
read$auto(r2, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/lacp_rate\x00', 0x34e6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="01032dbd7000fec632251f000000"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
splice$auto(r3, 0x0, r1, 0x0, 0xb, 0xf)
mmap$auto(0x0, 0x80000001, 0xdf, 0x12, r2, 0x8000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000)
read$auto(r5, 0x0, 0x20)
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r6, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x8, 0x3, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x10000000000000b, 0x0)
madvise$auto(0x0, 0x5, 0x15)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), r7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="013bbc40a8e71953412f0d"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810)
read$auto(0x3, 0x0, 0x18)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0)

0s ago: executing program 1 (id=828):
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800000008000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x106)
listen$auto(0x3, 0x81)
ioctl$auto(0x3, 0x80000541b, 0x38)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
socket(0xa, 0x1, 0x100)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0)
ioctl$auto_SW_SYNC_GET_DEADLINE(r1, 0xc0105702, &(0x7f0000000000)={0x0, 0x0, r1})
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x2000, 0x0)
ioctl$auto(r4, 0x5410, r4)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_psample(0x0, 0xffffffffffffffff)
sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r3, 0x0, 0x801)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x7, 0x20009, 0x5, 0xffffffff, 0x405, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc850}, 0x8800)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x50b41, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)

kernel console output (not intermixed with test programs):

ld impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.333953][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.347742][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.354737][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.381188][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.396519][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   92.408689][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   92.420241][ T5828] team0: Port device team_slave_1 added
[   92.450602][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.478447][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.514245][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.522075][ T5837] Bluetooth: hci0: command tx timeout
[   92.527782][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.554098][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.595894][ T5837] Bluetooth: hci2: command tx timeout
[   92.599206][ T5833] team0: Port device team_slave_0 added
[   92.608556][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.616804][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.643283][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.657819][ T5839] team0: Port device team_slave_0 added
[   92.675704][ T5837] Bluetooth: hci1: command tx timeout
[   92.688203][ T5833] team0: Port device team_slave_1 added
[   92.696438][ T5839] team0: Port device team_slave_1 added
[   92.755523][ T5837] Bluetooth: hci3: command tx timeout
[   92.766512][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.773516][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.800100][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.818752][ T5832] hsr_slave_0: entered promiscuous mode
[   92.825562][ T5832] hsr_slave_1: entered promiscuous mode
[   92.846601][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.853585][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.879878][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.907575][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.914564][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.942833][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.956335][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.963316][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.989664][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   93.059960][ T5828] hsr_slave_0: entered promiscuous mode
[   93.066826][ T5828] hsr_slave_1: entered promiscuous mode
[   93.072916][ T5828] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   93.080680][ T5828] Cannot create hsr debugfs directory
[   93.160328][ T5833] hsr_slave_0: entered promiscuous mode
[   93.167233][ T5833] hsr_slave_1: entered promiscuous mode
[   93.173373][ T5833] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   93.181568][ T5833] Cannot create hsr debugfs directory
[   93.220832][ T5839] hsr_slave_0: entered promiscuous mode
[   93.227977][ T5839] hsr_slave_1: entered promiscuous mode
[   93.234021][ T5839] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   93.242287][ T5839] Cannot create hsr debugfs directory
[   93.678479][ T5828] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   93.698031][ T5828] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   93.709972][ T5828] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   93.730979][ T5828] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   93.790331][ T5832] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   93.808368][ T5832] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   93.829510][ T5832] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   93.848529][ T5832] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   93.920401][ T5833] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   93.947230][ T5833] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   93.981349][ T5833] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   93.994502][ T5833] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   94.092597][ T5839] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   94.109854][ T5839] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   94.128664][ T5839] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   94.142063][ T5839] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   94.231449][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.291281][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.318666][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[   94.354316][ T3457] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.361602][ T3457] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.378146][ T5832] 8021q: adding VLAN 0 to HW filter on device team0
[   94.419216][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.426483][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.440821][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.448068][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.470143][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.493842][ T3457] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.501114][ T3457] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.527664][ T5833] 8021q: adding VLAN 0 to HW filter on device team0
[   94.570122][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.583135][ T3457] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.590318][ T3457] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.598571][ T5837] Bluetooth: hci0: command tx timeout
[   94.641236][ T5828] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   94.662309][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.669496][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.681328][ T5837] Bluetooth: hci2: command tx timeout
[   94.745919][ T5839] 8021q: adding VLAN 0 to HW filter on device team0
[   94.758139][ T5837] Bluetooth: hci1: command tx timeout
[   94.825005][ T3457] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.832289][ T3457] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.845746][ T5837] Bluetooth: hci3: command tx timeout
[   94.890267][ T3457] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.897599][ T3457] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.181762][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.318722][ T5828] veth0_vlan: entered promiscuous mode
[   95.368749][ T5828] veth1_vlan: entered promiscuous mode
[   95.441796][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.499391][ T5828] veth0_macvtap: entered promiscuous mode
[   95.535158][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.547567][ T5828] veth1_macvtap: entered promiscuous mode
[   95.626329][ T5832] veth0_vlan: entered promiscuous mode
[   95.673113][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.710303][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.741932][ T5828] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.750988][ T5828] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.760323][ T5828] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.772240][ T5828] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.784863][ T5832] veth1_vlan: entered promiscuous mode
[   95.868146][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.888211][ T5833] veth0_vlan: entered promiscuous mode
[   95.948519][ T5833] veth1_vlan: entered promiscuous mode
[   95.973625][ T5832] veth0_macvtap: entered promiscuous mode
[   96.003099][ T5832] veth1_macvtap: entered promiscuous mode
[   96.060420][ T5839] veth0_vlan: entered promiscuous mode
[   96.071794][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.081559][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.097507][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.152634][ T5839] veth1_vlan: entered promiscuous mode
[   96.168569][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.181456][ T5832] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.190646][ T5832] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.200396][ T5832] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.209364][ T5832] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.222589][   T79] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.239924][ T5833] veth0_macvtap: entered promiscuous mode
[   96.245561][   T79] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.280170][ T5833] veth1_macvtap: entered promiscuous mode
[   96.342151][ T5839] veth0_macvtap: entered promiscuous mode
[   96.357924][ T5828] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   96.397762][ T5839] veth1_macvtap: entered promiscuous mode
[   96.423869][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.511658][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.545047][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.555252][ T5833] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.568730][ T5833] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.579201][ T5833] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.579782][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.594013][ T5833] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.653866][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.675895][ T5837] Bluetooth: hci0: command tx timeout
[   96.732338][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.755846][ T5837] Bluetooth: hci2: command tx timeout
[   96.772001][ T5917] sd 0:0:1:0: PR command failed: 1026
[   96.779006][ T5839] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.785802][ T5917] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[   96.790925][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.794461][ T5917] sd 0:0:1:0: Add. Sense: Invalid command operation code
[   96.819314][ T5839] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.825014][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.831641][ T5839] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.835591][ T5837] Bluetooth: hci1: command tx timeout
[   96.851346][ T5839] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.916235][ T5837] Bluetooth: hci3: command tx timeout
[   96.968034][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.989128][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.106978][   T24] cfg80211: failed to load regulatory.db
[   97.220121][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   97.322643][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   97.392919][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.406314][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.483628][   T79] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.494491][   T79] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.525899][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   97.605807][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   97.613509][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   97.614546][ T3434] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.614563][ T3434] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.616176][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   97.619321][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   97.623569][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   98.648432][ T5941] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   98.757870][ T5837] Bluetooth: hci0: command tx timeout
[   98.845528][ T5837] Bluetooth: hci2: command tx timeout
[   98.919892][ T5837] Bluetooth: hci1: command tx timeout
[   99.006547][ T5837] Bluetooth: hci3: command tx timeout
[   99.620519][ T5963] warning: `syz.2.10' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   99.765774][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  100.955780][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  101.560522][ T5977] Zero length message leads to an empty skb
[  102.343151][ T5992] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  102.567669][ T5996] mmap: syz.0.14 (5996) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  102.833090][   T30] audit: type=1800 audit(1751394066.199:2): pid=6004 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.16" name="lu_gp_id" dev="configfs" ino=7362 res=0 errno=0
[  102.853080][    C1] vkms_vblank_simulate: vblank timer overrun
[  103.101182][ T6010] ALUA LU Group already has a valid ID, ignoring request
[  112.188106][ T6086] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  115.830982][ T6109] netlink: 4 bytes leftover after parsing attributes in process `syz.2.34'.
[  117.175820][ T6144] netlink: 326 bytes leftover after parsing attributes in process `syz.3.40'.
[  117.193920][ T6137] svc: failed to register nfsdv3 RPC service (errno 111).
[  117.382735][ T6137] svc: failed to register nfsaclv3 RPC service (errno 111).
[  117.435816][ T6149] syz.0.41(6149): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  122.320788][ T6196] process 'syz.0.51' launched '/dev/fd/4' with NULL argv: empty string added
[  123.467044][ T6196] netlink: 28 bytes leftover after parsing attributes in process `syz.0.51'.
[  123.546809][ T6214] netlink: 8 bytes leftover after parsing attributes in process `syz.3.54'.
[  123.575908][ T6201] nfs4: Unknown parameter '�
'
[  123.600010][ T6214] netlink: 8 bytes leftover after parsing attributes in process `syz.3.54'.

syzkaller
syzkaller login: [  124.660599][ T6223] syz.1.55 (6223) used greatest stack depth: 19800 bytes left
[  124.979480][ T6232] netlink: 326 bytes leftover after parsing attributes in process `syz.3.56'.
[  125.842416][ T6253] vivid-009: =================  START STATUS  =================
[  125.852270][ T6253] vivid-009: Enable Output Cropping: true grabbed
[  125.862209][ T6253] vivid-009: Enable Output Composing: true grabbed
[  125.944358][ T6253] vivid-009: Enable Output Scaler: true grabbed
[  126.035694][ T6253] vivid-009: Tx RGB Quantization Range: Automatic grabbed
[  126.043730][ T6253] vivid-009: Transmit Mode: HDMI grabbed
[  126.049674][ T6253] vivid-009: Hotplug Present: 0x00000000
[  126.059859][ T6253] vivid-009: RxSense Present: 0x00000000
[  126.065745][ T6253] vivid-009: EDID Present: 0x00000000
[  126.071322][ T6253] vivid-009: ==================  END STATUS  ==================
[  130.159194][ T6316] FAULT_INJECTION: forcing a failure.
[  130.159194][ T6316] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  130.159233][ T6316] CPU: 0 UID: 0 PID: 6316 Comm: syz.2.66 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  130.159255][ T6316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  130.159265][ T6316] Call Trace:
[  130.159271][ T6316]  <TASK>
[  130.159277][ T6316]  dump_stack_lvl+0x16c/0x1f0
[  130.159307][ T6316]  should_fail_ex+0x512/0x640
[  130.159335][ T6316]  should_fail_alloc_page+0xe7/0x130
[  130.159361][ T6316]  prepare_alloc_pages+0x3c2/0x610
[  130.159386][ T6316]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  130.159417][ T6316]  ? __lock_acquire+0xb8a/0x1c90
[  130.159447][ T6316]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  130.159477][ T6316]  ? fb_var_to_videomode+0x4c9/0x690
[  130.159517][ T6316]  ? __pfx_fb_match_mode+0x10/0x10
[  130.159537][ T6316]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  130.159565][ T6316]  ? vc_allocate+0x489/0x880
[  130.159588][ T6316]  __alloc_pages_noprof+0xb/0x1b0
[  130.159613][ T6316]  ___kmalloc_large_node+0x84/0x1e0
[  130.159637][ T6316]  ? vc_allocate+0x489/0x880
[  130.159660][ T6316]  __kmalloc_large_node_noprof+0x1c/0x70
[  130.159683][ T6316]  __kmalloc_noprof.cold+0xc/0x61
[  130.159715][ T6316]  vc_allocate+0x489/0x880
[  130.159741][ T6316]  ? __pfx_vc_allocate+0x10/0x10
[  130.159773][ T6316]  con_install+0xa1/0x600
[  130.159800][ T6316]  ? __pfx_con_install+0x10/0x10
[  130.159830][ T6316]  ? __pfx_con_install+0x10/0x10
[  130.159857][ T6316]  tty_init_dev.part.0+0x9c/0x500
[  130.159876][ T6316]  tty_open+0xa50/0xf90
[  130.159896][ T6316]  ? __pfx_tty_open+0x10/0x10
[  130.159912][ T6316]  ? chrdev_open+0x58c/0x6a0
[  130.159941][ T6316]  ? __pfx_tty_open+0x10/0x10
[  130.159957][ T6316]  chrdev_open+0x231/0x6a0
[  130.159984][ T6316]  ? __pfx_chrdev_open+0x10/0x10
[  130.160012][ T6316]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  130.160040][ T6316]  do_dentry_open+0x744/0x1c10
[  130.160065][ T6316]  ? __pfx_chrdev_open+0x10/0x10
[  130.160096][ T6316]  vfs_open+0x82/0x3f0
[  130.160118][ T6316]  path_openat+0x1de4/0x2cb0
[  130.160150][ T6316]  ? __pfx_path_openat+0x10/0x10
[  130.160176][ T6316]  ? __lock_acquire+0xb8a/0x1c90
[  130.160201][ T6316]  do_filp_open+0x20b/0x470
[  130.160226][ T6316]  ? __pfx_do_filp_open+0x10/0x10
[  130.160268][ T6316]  ? alloc_fd+0x471/0x7d0
[  130.160298][ T6316]  do_sys_openat2+0x11b/0x1d0
[  130.160317][ T6316]  ? __pfx_do_sys_openat2+0x10/0x10
[  130.160345][ T6316]  __x64_sys_openat+0x174/0x210
[  130.160364][ T6316]  ? __pfx___x64_sys_openat+0x10/0x10
[  130.160393][ T6316]  do_syscall_64+0xcd/0x490
[  130.160422][ T6316]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.160439][ T6316] RIP: 0033:0x7ffb0278e929
[  130.160454][ T6316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.160471][ T6316] RSP: 002b:00007ffb03566038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  130.160487][ T6316] RAX: ffffffffffffffda RBX: 00007ffb029b6160 RCX: 00007ffb0278e929
[  130.160504][ T6316] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  130.160515][ T6316] RBP: 00007ffb02810b39 R08: 0000000000000000 R09: 0000000000000000
[  130.160525][ T6316] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  130.160535][ T6316] R13: 0000000000000000 R14: 00007ffb029b6160 R15: 00007ffff1ab8998
[  130.160557][ T6316]  </TASK>
[  132.042965][ T6348] FAULT_INJECTION: forcing a failure.
[  132.042965][ T6348] name failslab, interval 1, probability 0, space 0, times 1
[  132.117239][ T6348] CPU: 0 UID: 0 PID: 6348 Comm: syz.2.73 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  132.117284][ T6348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  132.117301][ T6348] Call Trace:
[  132.117311][ T6348]  <TASK>
[  132.117323][ T6348]  dump_stack_lvl+0x16c/0x1f0
[  132.117391][ T6348]  should_fail_ex+0x512/0x640
[  132.117430][ T6348]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  132.117480][ T6348]  should_failslab+0xc2/0x120
[  132.117509][ T6348]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  132.117553][ T6348]  ? __pfx___might_resched+0x10/0x10
[  132.117581][ T6348]  ? __anon_vma_prepare+0xae/0x5e0
[  132.117626][ T6348]  __anon_vma_prepare+0xae/0x5e0
[  132.117670][ T6348]  ? __pfx___pte_alloc+0x10/0x10
[  132.117705][ T6348]  __vmf_anon_prepare+0x11c/0x240
[  132.117741][ T6348]  __handle_mm_fault+0x27f6/0x5490
[  132.117792][ T6348]  ? __pfx___handle_mm_fault+0x10/0x10
[  132.117869][ T6348]  handle_mm_fault+0x589/0xd10
[  132.117918][ T6348]  __get_user_pages+0x589/0x3b80
[  132.117965][ T6348]  ? __pfx_mt_find+0x10/0x10
[  132.117995][ T6348]  ? __pfx___get_user_pages+0x10/0x10
[  132.118046][ T6348]  populate_vma_page_range+0x278/0x3a0
[  132.118085][ T6348]  ? __pfx_populate_vma_page_range+0x10/0x10
[  132.118119][ T6348]  ? __pfx_find_vma_intersection+0x10/0x10
[  132.118155][ T6348]  ? do_mmap+0x69c/0x1210
[  132.118192][ T6348]  __mm_populate+0x1d8/0x380
[  132.118236][ T6348]  ? __pfx___mm_populate+0x10/0x10
[  132.118274][ T6348]  ? up_write+0x1b2/0x520
[  132.118322][ T6348]  vm_mmap_pgoff+0x362/0x450
[  132.118358][ T6348]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  132.118397][ T6348]  ? __x64_sys_futex+0x1e0/0x4c0
[  132.118432][ T6348]  ? __x64_sys_futex+0x1e9/0x4c0
[  132.118473][ T6348]  ksys_mmap_pgoff+0x7d/0x5c0
[  132.118503][ T6348]  ? xfd_validate_state+0x61/0x180
[  132.118538][ T6348]  ? __pfx_do_writev+0x10/0x10
[  132.118582][ T6348]  __x64_sys_mmap+0x125/0x190
[  132.118627][ T6348]  do_syscall_64+0xcd/0x490
[  132.118686][ T6348]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.118714][ T6348] RIP: 0033:0x7ffb0278e929
[  132.118738][ T6348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.118764][ T6348] RSP: 002b:00007ffb03587038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  132.118792][ T6348] RAX: ffffffffffffffda RBX: 00007ffb029b6080 RCX: 00007ffb0278e929
[  132.118811][ T6348] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  132.118828][ T6348] RBP: 00007ffb02810b39 R08: 0000000000000002 R09: 0000000000008000
[  132.118845][ T6348] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  132.118861][ T6348] R13: 0000000000000000 R14: 00007ffb029b6080 R15: 00007ffff1ab8998
[  132.118901][ T6348]  </TASK>
[  133.593317][ T6365] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5
[  136.271150][ T6414] netlink: 4 bytes leftover after parsing attributes in process `syz.3.87'.
[  136.473871][ T6423] 
[  136.485077][ T6425] 
[  136.558992][ T6424] svc: failed to register nfsdv3 RPC service (errno 111).
[  136.586037][ T6424] svc: failed to register nfsaclv3 RPC service (errno 111).
[  137.835990][ T6437] svc: failed to register nfsdv3 RPC service (errno 111).
[  137.881237][ T6437] svc: failed to register nfsaclv3 RPC service (errno 111).
[  138.055121][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  138.063897][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  138.192050][ T6446] svc: failed to register nfsdv3 RPC service (errno 111).
[  138.207532][ T6446] svc: failed to register nfsaclv3 RPC service (errno 111).
[  138.342712][ T6452] netlink: 24 bytes leftover after parsing attributes in process `syz.0.97'.
[  138.840181][ T6461] FAULT_INJECTION: forcing a failure.
[  138.840181][ T6461] name failslab, interval 1, probability 0, space 0, times 0
[  138.903327][ T6461] CPU: 1 UID: 0 PID: 6461 Comm: syz.1.98 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  138.903368][ T6461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  138.903383][ T6461] Call Trace:
[  138.903393][ T6461]  <TASK>
[  138.903403][ T6461]  dump_stack_lvl+0x16c/0x1f0
[  138.903449][ T6461]  should_fail_ex+0x512/0x640
[  138.903487][ T6461]  ? fs_reclaim_acquire+0xae/0x150
[  138.903523][ T6461]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  138.903559][ T6461]  should_failslab+0xc2/0x120
[  138.903595][ T6461]  __kmalloc_noprof+0xd2/0x510
[  138.903647][ T6461]  tomoyo_realpath_from_path+0xc2/0x6e0
[  138.903696][ T6461]  tomoyo_check_open_permission+0x2ab/0x3c0
[  138.903730][ T6461]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  138.903805][ T6461]  ? do_raw_spin_lock+0x12c/0x2b0
[  138.903860][ T6461]  tomoyo_file_open+0x6b/0x90
[  138.903905][ T6461]  security_file_open+0x84/0x1e0
[  138.903943][ T6461]  do_dentry_open+0x596/0x1c10
[  138.903998][ T6461]  vfs_open+0x82/0x3f0
[  138.904035][ T6461]  path_openat+0x1de4/0x2cb0
[  138.904090][ T6461]  ? __pfx_path_openat+0x10/0x10
[  138.904132][ T6461]  ? __lock_acquire+0xb8a/0x1c90
[  138.904173][ T6461]  do_filp_open+0x20b/0x470
[  138.904213][ T6461]  ? __pfx_do_filp_open+0x10/0x10
[  138.904280][ T6461]  ? alloc_fd+0x471/0x7d0
[  138.904327][ T6461]  do_sys_openat2+0x11b/0x1d0
[  138.904364][ T6461]  ? __pfx_do_sys_openat2+0x10/0x10
[  138.904410][ T6461]  __x64_sys_openat+0x174/0x210
[  138.904441][ T6461]  ? __pfx___x64_sys_openat+0x10/0x10
[  138.904491][ T6461]  do_syscall_64+0xcd/0x490
[  138.904539][ T6461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.904578][ T6461] RIP: 0033:0x7f47efd8e929
[  138.904601][ T6461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.904628][ T6461] RSP: 002b:00007f47f0c51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  138.904656][ T6461] RAX: ffffffffffffffda RBX: 00007f47effb5fa0 RCX: 00007f47efd8e929
[  138.904674][ T6461] RDX: 0000000000020342 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  138.904691][ T6461] RBP: 00007f47efe10b39 R08: 0000000000000000 R09: 0000000000000000
[  138.904708][ T6461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  138.904723][ T6461] R13: 0000000000000000 R14: 00007f47effb5fa0 R15: 00007ffd630ac4f8
[  138.904762][ T6461]  </TASK>
[  138.904835][ T6461] ERROR: Out of memory at tomoyo_realpath_from_path.
[  139.659782][ T6477] random: crng reseeded on system resumption
[  139.764073][ T6468] netlink: 4 bytes leftover after parsing attributes in process `syz.2.99'.
	

	

		
		

syzkaller
syzkaller login: [  141.650553][ T6501] svc: failed to register nfsdv3 RPC service (errno 111).
[  141.654750][ T6501] svc: failed to register nfsaclv3 RPC service (errno 111).
[  142.907422][ T6505] svc: failed to register nfsdv3 RPC service (errno 111).
[  142.911982][ T6505] svc: failed to register nfsaclv3 RPC service (errno 111).
[  143.888528][ T6521] netlink: 4 bytes leftover after parsing attributes in process `syz.1.111'.
[  144.243384][ T6534] kAFS: No cell specified
[  144.727394][ T6537] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  144.729633][ T6537] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  144.739383][ T6537] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  144.742441][ T6537] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  144.743628][ T6537] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  144.752008][ T6537] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  144.754736][ T6537] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  144.755903][ T6537] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  144.763507][ T6537] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  144.770186][ T6537] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  144.772014][ T6537] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  144.783372][ T6537] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  146.764206][ T6399] Bluetooth: hci1: command 0x0c1a tx timeout
[  146.765518][ T6399] Bluetooth: hci0: command 0x0c1a tx timeout
[  146.836316][ T6395] Bluetooth: hci3: command 0x0c1a tx timeout
[  146.837480][ T6395] Bluetooth: hci2: command 0x0c1a tx timeout
[  146.938963][ T6586] netlink: 4 bytes leftover after parsing attributes in process `syz.0.123'.
[  147.296554][    C0] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff8163eaa9 (__mcheck_cpu_init_clear_banks+0x109/0x1f0)
[  147.298931][    C0] Call Trace:
[  147.299436][    C0]  <IRQ>
[  147.299871][    C0]  ? __pfx_mce_cpu_restart+0x10/0x10
[  147.300654][    C0]  mce_cpu_restart+0x98/0xb0
[  147.301411][    C0]  __flush_smp_call_function_queue+0x27a/0x8c0
[  147.302364][    C0]  __sysvec_call_function_single+0x87/0x400
[  147.303247][    C0]  sysvec_call_function_single+0x9f/0xc0
[  147.304079][    C0]  </IRQ>
[  147.304556][    C0]  <TASK>
[  147.305001][    C0]  asm_sysvec_call_function_single+0x1a/0x20
[  147.305861][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  147.306700][    C0] Code: 0b 75 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d e3 0e 2d 00 fb f4 <e9> fc fa 02 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  147.309451][    C0] RSP: 0018:ffffffff8e207e08 EFLAGS: 000002c6
[  147.310402][    C0] RAX: 00000000000d5085 RBX: 0000000000000000 RCX: ffffffff8b7cfc39
[  147.311536][    C0] RDX: 0000000000000000 RSI: ffffffff8de13e03 RDI: ffffffff8c1566a0
[  147.312686][    C0] RBP: fffffbfff1c52ef0 R08: 0000000000000001 R09: ffffed1017086645
[  147.313793][    C0] R10: ffff8880b843322b R11: 0000000000000001 R12: 0000000000000000
[  147.314979][    C0] R13: ffffffff8e297780 R14: ffffffff90a82850 R15: 0000000000000000
[  147.316122][    C0]  ? ct_kernel_exit+0x139/0x190
[  147.316875][    C0]  default_idle+0x13/0x20
[  147.317609][    C0]  default_idle_call+0x6d/0xb0
[  147.318372][    C0]  do_idle+0x391/0x510
[  147.318977][    C0]  ? __pfx_do_idle+0x10/0x10
[  147.319706][    C0]  ? trace_sched_exit_tp+0x31/0x130
[  147.320483][    C0]  cpu_startup_entry+0x4f/0x60
[  147.321230][    C0]  rest_init+0x16b/0x2b0
[  147.321896][    C0]  ? acpi_subsystem_init+0x133/0x180
[  147.322821][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  147.323649][    C0]  start_kernel+0x3ee/0x4d0
[  147.324326][    C0]  x86_64_start_reservations+0x18/0x30
[  147.325150][    C0]  x86_64_start_kernel+0x130/0x190
[  147.325936][    C0]  common_startup_64+0x13e/0x148
[  147.326745][    C0]  </TASK>
[  148.835558][ T6399] Bluetooth: hci0: command 0x0c1a tx timeout
[  148.836712][ T6399] Bluetooth: hci1: command 0x0c1a tx timeout
[  148.917502][ T6395] Bluetooth: hci2: command 0x0c1a tx timeout
[  148.918618][ T6395] Bluetooth: hci3: command 0x0c1a tx timeout
[  150.915481][ T6399] Bluetooth: hci1: command 0x0c1a tx timeout
[  150.916621][ T6399] Bluetooth: hci0: command 0x0c1a tx timeout
[  151.005812][ T6395] Bluetooth: hci3: command 0x0c1a tx timeout
[  151.006855][ T6395] Bluetooth: hci2: command 0x0c1a tx timeout

syzkaller
syzkaller login: [  152.681304][ T6639] FAULT_INJECTION: forcing a failure.
[  152.681304][ T6639] name failslab, interval 1, probability 0, space 0, times 0
[  152.683565][ T6639] CPU: 0 UID: 0 PID: 6639 Comm: syz.3.133 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  152.683605][ T6639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  152.683623][ T6639] Call Trace:
[  152.683633][ T6639]  <TASK>
[  152.683645][ T6639]  dump_stack_lvl+0x16c/0x1f0
[  152.683697][ T6639]  should_fail_ex+0x512/0x640
[  152.683740][ T6639]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  152.683793][ T6639]  should_failslab+0xc2/0x120
[  152.683824][ T6639]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  152.683869][ T6639]  ? _raw_spin_unlock+0x28/0x50
[  152.683910][ T6639]  ? alloc_inode+0xc3/0x240
[  152.683948][ T6639]  alloc_inode+0xc3/0x240
[  152.683980][ T6639]  new_inode+0x22/0x1c0
[  152.684017][ T6639]  simple_fill_super+0x306/0x720
[  152.684065][ T6639]  ? __pfx_nfsd_fill_super+0x10/0x10
[  152.684100][ T6639]  nfsd_fill_super+0x90/0x530
[  152.684132][ T6639]  ? __pfx_set_anon_super_fc+0x10/0x10
[  152.684180][ T6639]  ? __pfx_nfsd_fill_super+0x10/0x10
[  152.684212][ T6639]  get_tree_keyed+0x10b/0x1d0
[  152.684258][ T6639]  vfs_get_tree+0x8e/0x340
[  152.684302][ T6639]  path_mount+0x1414/0x2020
[  152.684352][ T6639]  ? kmem_cache_free+0x2d1/0x4d0
[  152.684394][ T6639]  ? __pfx_path_mount+0x10/0x10
[  152.684448][ T6639]  ? putname+0x154/0x1a0
[  152.684484][ T6639]  __x64_sys_mount+0x28d/0x310
[  152.684532][ T6639]  ? __pfx___x64_sys_mount+0x10/0x10
[  152.684592][ T6639]  do_syscall_64+0xcd/0x490
[  152.684644][ T6639]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.684674][ T6639] RIP: 0033:0x7f148d78e929
[  152.684701][ T6639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.684729][ T6639] RSP: 002b:00007f148e596038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  152.684757][ T6639] RAX: ffffffffffffffda RBX: 00007f148d9b5fa0 RCX: 00007f148d78e929
[  152.684777][ T6639] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[  152.684795][ T6639] RBP: 00007f148d810b39 R08: 0000000000000000 R09: 0000000000000000
[  152.684812][ T6639] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[  152.684829][ T6639] R13: 0000000000000000 R14: 00007f148d9b5fa0 R15: 00007fff0a3155c8
[  152.684868][ T6639]  </TASK>
[  153.467309][ T6645] netlink: 4 bytes leftover after parsing attributes in process `syz.3.135'.
[  153.690683][   T30] audit: type=1806 audit(1751394117.059:3): xattr="." res=0

syzkaller
syzkaller login: [  159.529828][ T6704] kAFS: No cell specified
[  164.152420][ T6741] svc: failed to register nfsdv3 RPC service (errno 111).
[  164.226634][ T6741] svc: failed to register nfsaclv3 RPC service (errno 111).
[  165.187048][ T6747] FAULT_INJECTION: forcing a failure.
[  165.187048][ T6747] name failslab, interval 1, probability 0, space 0, times 0
[  165.256784][ T6747] CPU: 1 UID: 0 PID: 6747 Comm: syz.2.161 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  165.256825][ T6747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  165.256842][ T6747] Call Trace:
[  165.256852][ T6747]  <TASK>
[  165.256862][ T6747]  dump_stack_lvl+0x16c/0x1f0
[  165.256919][ T6747]  should_fail_ex+0x512/0x640
[  165.256959][ T6747]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  165.257002][ T6747]  should_failslab+0xc2/0x120
[  165.257029][ T6747]  __kmalloc_cache_noprof+0x6a/0x3e0
[  165.257067][ T6747]  ? alloc_tty_struct+0x96/0x8c0
[  165.257103][ T6747]  alloc_tty_struct+0x96/0x8c0
[  165.257133][ T6747]  ? __pfx_alloc_tty_struct+0x10/0x10
[  165.257174][ T6747]  pty_common_install+0x1c7/0xb30
[  165.257220][ T6747]  ? __pfx_pty_install+0x10/0x10
[  165.257256][ T6747]  tty_init_dev.part.0+0x9c/0x500
[  165.257286][ T6747]  tty_open+0xa50/0xf90
[  165.257322][ T6747]  ? __pfx_tty_open+0x10/0x10
[  165.257349][ T6747]  ? chrdev_open+0x58c/0x6a0
[  165.257397][ T6747]  ? __pfx_tty_open+0x10/0x10
[  165.257423][ T6747]  chrdev_open+0x231/0x6a0
[  165.257467][ T6747]  ? __pfx_chrdev_open+0x10/0x10
[  165.257512][ T6747]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  165.257559][ T6747]  do_dentry_open+0x744/0x1c10
[  165.257602][ T6747]  ? __pfx_chrdev_open+0x10/0x10
[  165.257656][ T6747]  vfs_open+0x82/0x3f0
[  165.257694][ T6747]  path_openat+0x1de4/0x2cb0
[  165.257752][ T6747]  ? __pfx_path_openat+0x10/0x10
[  165.257796][ T6747]  ? __lock_acquire+0xb8a/0x1c90
[  165.257840][ T6747]  do_filp_open+0x20b/0x470
[  165.257883][ T6747]  ? __pfx_do_filp_open+0x10/0x10
[  165.257970][ T6747]  ? alloc_fd+0x471/0x7d0
[  165.258024][ T6747]  do_sys_openat2+0x11b/0x1d0
[  165.258056][ T6747]  ? __pfx_do_sys_openat2+0x10/0x10
[  165.258109][ T6747]  __x64_sys_openat+0x174/0x210
[  165.258142][ T6747]  ? __pfx___x64_sys_openat+0x10/0x10
[  165.258196][ T6747]  do_syscall_64+0xcd/0x490
[  165.258245][ T6747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.258274][ T6747] RIP: 0033:0x7ffb0278e929
[  165.258298][ T6747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.258323][ T6747] RSP: 002b:00007ffb03587038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  165.258350][ T6747] RAX: ffffffffffffffda RBX: 00007ffb029b6080 RCX: 00007ffb0278e929
[  165.258368][ T6747] RDX: 0000000000000002 RSI: 0000200000000400 RDI: ffffffffffffff9c
[  165.258385][ T6747] RBP: 00007ffb02810b39 R08: 0000000000000000 R09: 0000000000000000
[  165.258402][ T6747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  165.258417][ T6747] R13: 0000000000000000 R14: 00007ffb029b6080 R15: 00007ffff1ab8998
[  165.258460][ T6747]  </TASK>
[  167.725996][ T6771] netlink: 4 bytes leftover after parsing attributes in process `syz.0.166'.
[  168.604383][ T6798] netlink: 504 bytes leftover after parsing attributes in process `syz.0.172'.

syzkaller
syzkaller login: [  171.516294][ T6847] netlink: 330 bytes leftover after parsing attributes in process `syz.2.181'.
[  171.535691][ T6847] mac80211_hwsim hwsim8 �: renamed from wlan0 (while UP)
[  172.411065][ T6850] svc: failed to register nfsdv3 RPC service (errno 512).
[  172.447431][ T6850] svc: failed to register nfsaclv3 RPC service (errno 512).
[  173.044967][ T6867] svc: failed to register nfsdv3 RPC service (errno 111).
[  173.108753][ T6867] svc: failed to register nfsaclv3 RPC service (errno 111).
[  174.915930][ T6906] svc: failed to register nfsdv3 RPC service (errno 111).
[  174.927579][ T6906] svc: failed to register nfsaclv3 RPC service (errno 111).
[  180.942283][ T6958] kAFS: No cell specified
[  182.725666][ T6969] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.

syzkaller
syzkaller login: [  182.867533][ T6968] FAULT_INJECTION: forcing a failure.
[  182.867533][ T6968] name failslab, interval 1, probability 0, space 0, times 0
[  182.894245][ T6968] CPU: 1 UID: 0 PID: 6968 Comm: syz.1.203 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  182.894273][ T6968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  182.894283][ T6968] Call Trace:
[  182.894290][ T6968]  <TASK>
[  182.894297][ T6968]  dump_stack_lvl+0x16c/0x1f0
[  182.894329][ T6968]  should_fail_ex+0x512/0x640
[  182.894354][ T6968]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  182.894383][ T6968]  should_failslab+0xc2/0x120
[  182.894399][ T6968]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  182.894425][ T6968]  ? __kernfs_new_node+0xd2/0x8e0
[  182.894453][ T6968]  __kernfs_new_node+0xd2/0x8e0
[  182.894479][ T6968]  ? __pfx___kernfs_new_node+0x10/0x10
[  182.894508][ T6968]  ? find_held_lock+0x2b/0x80
[  182.894527][ T6968]  ? kernfs_root+0xee/0x2a0
[  182.894555][ T6968]  kernfs_new_node+0x13c/0x1e0
[  182.894592][ T6968]  __kernfs_create_file+0x53/0x350
[  182.894614][ T6968]  sysfs_add_file_mode_ns+0x207/0x3c0
[  182.894643][ T6968]  internal_create_group+0x578/0xf30
[  182.894674][ T6968]  ? __pfx_internal_create_group+0x10/0x10
[  182.894702][ T6968]  ? kernfs_create_link+0x1bd/0x240
[  182.894725][ T6968]  internal_create_groups+0x9d/0x150
[  182.894752][ T6968]  device_add+0xf30/0x1a70
[  182.894772][ T6968]  ? __pfx_device_add+0x10/0x10
[  182.894790][ T6968]  ? lockdep_init_map_type+0x5c/0x280
[  182.894814][ T6968]  ? __init_waitqueue_head+0xca/0x150
[  182.894847][ T6968]  netdev_register_kobject+0x182/0x3a0
[  182.894869][ T6968]  register_netdevice+0x13dc/0x2270
[  182.894891][ T6968]  ? __pfx_register_netdevice+0x10/0x10
[  182.894915][ T6968]  __ip_tunnel_create+0x540/0x6e0
[  182.894938][ T6968]  ? __pfx___ip_tunnel_create+0x10/0x10
[  182.894965][ T6968]  ip_tunnel_init_net+0x22f/0x7d0
[  182.894988][ T6968]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[  182.895014][ T6968]  ? trace_kmalloc+0x2b/0xd0
[  182.895029][ T6968]  ? __kmalloc_noprof+0x242/0x510
[  182.895053][ T6968]  ? lockdep_init_map_type+0x5c/0x280
[  182.895079][ T6968]  ? __pfx_ipgre_tap_init_net+0x10/0x10
[  182.895108][ T6968]  ops_init+0x1df/0x5f0
[  182.895132][ T6968]  setup_net+0x1ff/0x510
[  182.895148][ T6968]  ? lockdep_init_map_type+0x5c/0x280
[  182.895171][ T6968]  ? __pfx_setup_net+0x10/0x10
[  182.895189][ T6968]  ? debug_mutex_init+0x37/0x70
[  182.895207][ T6968]  copy_net_ns+0x2a6/0x5f0
[  182.895228][ T6968]  create_new_namespaces+0x3ea/0xa90
[  182.895257][ T6968]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  182.895279][ T6968]  ksys_unshare+0x45b/0xa40
[  182.895306][ T6968]  ? __pfx_ksys_unshare+0x10/0x10
[  182.895341][ T6968]  ? xfd_validate_state+0x61/0x180
[  182.895388][ T6968]  __x64_sys_unshare+0x31/0x40
[  182.895413][ T6968]  do_syscall_64+0xcd/0x490
[  182.895442][ T6968]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.895460][ T6968] RIP: 0033:0x7f47efd8e929
[  182.895475][ T6968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.895491][ T6968] RSP: 002b:00007f47f0c51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  182.895508][ T6968] RAX: ffffffffffffffda RBX: 00007f47effb5fa0 RCX: 00007f47efd8e929
[  182.895519][ T6968] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  182.895529][ T6968] RBP: 00007f47efe10b39 R08: 0000000000000000 R09: 0000000000000000
[  182.895539][ T6968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  182.895549][ T6968] R13: 0000000000000000 R14: 00007f47effb5fa0 R15: 00007ffd630ac4f8
[  182.895571][ T6968]  </TASK>
[  182.906394][ T6969] CIFS mount error: No usable UNC path provided in device string!
[  182.906394][ T6969] 
[  183.256615][ T6969] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  183.848788][ T6980] kAFS: No cell specified
[  185.924197][ T6971] kexec: Could not allocate control_code_buffer
[  187.587249][ T6399] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  189.426916][ T7018] netlink: 4 bytes leftover after parsing attributes in process `syz.0.212'.
[  190.355696][ T7034] netlink: 16 bytes leftover after parsing attributes in process `syz.2.216'.
[  193.550675][ T7064] syz.2.220 uses obsolete (PF_INET,SOCK_PACKET)
[  193.890544][ T7065] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input7
[  197.261195][ T7101] svc: failed to register nfsdv3 RPC service (errno 111).
[  197.279863][ T7101] svc: failed to register nfsaclv3 RPC service (errno 111).
[  199.480637][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  199.489108][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  200.423032][ T7130] kAFS: No cell specified
[  202.243634][ T7149] kAFS: No cell specified
[  202.406350][ T7142] FAULT_INJECTION: forcing a failure.
[  202.406350][ T7142] name failslab, interval 1, probability 0, space 0, times 0
[  202.454580][ T7142] CPU: 0 UID: 0 PID: 7142 Comm: syz.3.239 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  202.454620][ T7142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  202.454632][ T7142] Call Trace:
[  202.454638][ T7142]  <TASK>
[  202.454645][ T7142]  dump_stack_lvl+0x16c/0x1f0
[  202.454677][ T7142]  should_fail_ex+0x512/0x640
[  202.454702][ T7142]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  202.454731][ T7142]  should_failslab+0xc2/0x120
[  202.454748][ T7142]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  202.454773][ T7142]  ? mark_held_locks+0x49/0x80
[  202.454795][ T7142]  ? key_alloc+0x3e0/0x1330
[  202.454820][ T7142]  key_alloc+0x3e0/0x1330
[  202.454849][ T7142]  ? __pfx_key_alloc+0x10/0x10
[  202.454871][ T7142]  ? __pfx_key_default_cmp+0x10/0x10
[  202.454895][ T7142]  ? __pfx_keyring_search_iterator+0x10/0x10
[  202.454923][ T7142]  keyring_alloc+0x44/0xc0
[  202.454949][ T7142]  look_up_user_keyrings+0x46d/0x760
[  202.454973][ T7142]  ? __pfx_look_up_user_keyrings+0x10/0x10
[  202.455001][ T7142]  lookup_user_key+0x1a3/0x1300
[  202.455023][ T7142]  ? __pfx_lookup_user_key+0x10/0x10
[  202.455041][ T7142]  ? do_futex+0x122/0x350
[  202.455068][ T7142]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  202.455092][ T7142]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  202.455118][ T7142]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x230
[  202.455142][ T7142]  keyctl_keyring_clear+0x24/0x1a0
[  202.455167][ T7142]  __do_sys_keyctl+0x355/0x590
[  202.455186][ T7142]  do_syscall_64+0xcd/0x490
[  202.455214][ T7142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.455234][ T7142] RIP: 0033:0x7f148d78e929
[  202.455253][ T7142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.455272][ T7142] RSP: 002b:00007f148e596038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  202.455299][ T7142] RAX: ffffffffffffffda RBX: 00007f148d9b5fa0 RCX: 00007f148d78e929
[  202.455316][ T7142] RDX: 0000000000000002 RSI: 00000000fffffffb RDI: 0000000000000007
[  202.455331][ T7142] RBP: 00007f148d810b39 R08: 0000000000000008 R09: 0000000000000000
[  202.455347][ T7142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  202.455362][ T7142] R13: 0000000000000000 R14: 00007f148d9b5fa0 R15: 00007fff0a3155c8
[  202.455399][ T7142]  </TASK>
[  202.723798][ T7146] netlink: 4 bytes leftover after parsing attributes in process `syz.2.240'.
[  203.598515][ T7163] netlink: 28 bytes leftover after parsing attributes in process `syz.3.246'.
[  203.976553][ T7164] random: crng reseeded on system resumption
[  206.256915][   T30] audit: type=1804 audit(6046361465.626:4): pid=7187 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.251" name="/newroot/60/file0" dev="tmpfs" ino=323 res=1 errno=0
[  206.278642][   T30] audit: type=1800 audit(6046361465.626:5): pid=7187 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.251" name="file0" dev="tmpfs" ino=323 res=0 errno=0
[  208.609264][ T7214] svc: failed to register nfsdv3 RPC service (errno 512).
[  208.618251][ T7214] svc: failed to register nfsaclv3 RPC service (errno 512).
[  209.615911][ T7238] FAULT_INJECTION: forcing a failure.
[  209.615911][ T7238] name failslab, interval 1, probability 0, space 0, times 0
[  209.644955][ T7238] CPU: 1 UID: 0 PID: 7238 Comm: syz.3.263 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  209.645007][ T7238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  209.645025][ T7238] Call Trace:
[  209.645036][ T7238]  <TASK>
[  209.645048][ T7238]  dump_stack_lvl+0x16c/0x1f0
[  209.645111][ T7238]  should_fail_ex+0x512/0x640
[  209.645154][ T7238]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  209.645206][ T7238]  should_failslab+0xc2/0x120
[  209.645236][ T7238]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  209.645280][ T7238]  ? trace_cap_capable+0x18d/0x200
[  209.645304][ T7238]  ? create_new_namespaces+0x30/0xa90
[  209.645342][ T7238]  create_new_namespaces+0x30/0xa90
[  209.645372][ T7238]  ? bpf_lsm_capable+0x9/0x10
[  209.645408][ T7238]  ? security_capable+0x7e/0x260
[  209.645464][ T7238]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  209.645502][ T7238]  ksys_unshare+0x45b/0xa40
[  209.645545][ T7238]  ? __pfx_ksys_unshare+0x10/0x10
[  209.645586][ T7238]  ? xfd_validate_state+0x61/0x180
[  209.645636][ T7238]  __x64_sys_unshare+0x31/0x40
[  209.645674][ T7238]  do_syscall_64+0xcd/0x490
[  209.645723][ T7238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.645753][ T7238] RIP: 0033:0x7f148d78e929
[  209.645778][ T7238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.645807][ T7238] RSP: 002b:00007f148e596038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  209.645837][ T7238] RAX: ffffffffffffffda RBX: 00007f148d9b5fa0 RCX: 00007f148d78e929
[  209.645857][ T7238] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000000
[  209.645875][ T7238] RBP: 00007f148d810b39 R08: 0000000000000000 R09: 0000000000000000
[  209.645892][ T7238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  209.645909][ T7238] R13: 0000000000000000 R14: 00007f148d9b5fa0 R15: 00007fff0a3155c8
[  209.645948][ T7238]  </TASK>
[  210.080232][ T7236] kvm: kvm [7234]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0x2
[  211.472089][ T7260] FAULT_INJECTION: forcing a failure.
[  211.472089][ T7260] name failslab, interval 1, probability 0, space 0, times 0
[  211.565510][ T7260] CPU: 1 UID: 0 PID: 7260 Comm: syz.2.267 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  211.565555][ T7260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  211.565572][ T7260] Call Trace:
[  211.565582][ T7260]  <TASK>
[  211.565594][ T7260]  dump_stack_lvl+0x16c/0x1f0
[  211.565646][ T7260]  should_fail_ex+0x512/0x640
[  211.565688][ T7260]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  211.565734][ T7260]  should_failslab+0xc2/0x120
[  211.565763][ T7260]  __kmalloc_cache_noprof+0x6a/0x3e0
[  211.565803][ T7260]  ? cuse_channel_open+0x1de/0x7f0
[  211.565851][ T7260]  cuse_channel_open+0x1de/0x7f0
[  211.565891][ T7260]  ? __pfx_cuse_channel_open+0x10/0x10
[  211.565932][ T7260]  misc_open+0x35a/0x420
[  211.565970][ T7260]  ? __pfx_misc_open+0x10/0x10
[  211.566005][ T7260]  chrdev_open+0x231/0x6a0
[  211.566048][ T7260]  ? __pfx_apparmor_file_open+0x10/0x10
[  211.566087][ T7260]  ? __pfx_chrdev_open+0x10/0x10
[  211.566136][ T7260]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  211.566184][ T7260]  do_dentry_open+0x744/0x1c10
[  211.566229][ T7260]  ? __pfx_chrdev_open+0x10/0x10
[  211.566285][ T7260]  vfs_open+0x82/0x3f0
[  211.566335][ T7260]  path_openat+0x1de4/0x2cb0
[  211.566397][ T7260]  ? __pfx_path_openat+0x10/0x10
[  211.566444][ T7260]  ? __lock_acquire+0xb8a/0x1c90
[  211.566490][ T7260]  do_filp_open+0x20b/0x470
[  211.566530][ T7260]  ? __pfx_do_filp_open+0x10/0x10
[  211.566611][ T7260]  ? alloc_fd+0x471/0x7d0
[  211.566667][ T7260]  do_sys_openat2+0x11b/0x1d0
[  211.566700][ T7260]  ? __pfx_do_sys_openat2+0x10/0x10
[  211.566755][ T7260]  __x64_sys_openat+0x174/0x210
[  211.566789][ T7260]  ? __pfx___x64_sys_openat+0x10/0x10
[  211.566845][ T7260]  do_syscall_64+0xcd/0x490
[  211.566897][ T7260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.566927][ T7260] RIP: 0033:0x7ffb0278e929
[  211.566952][ T7260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.566980][ T7260] RSP: 002b:00007ffb03587038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  211.567009][ T7260] RAX: ffffffffffffffda RBX: 00007ffb029b6080 RCX: 00007ffb0278e929
[  211.567028][ T7260] RDX: 00000000001c5041 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  211.567046][ T7260] RBP: 00007ffb02810b39 R08: 0000000000000000 R09: 0000000000000000
[  211.567063][ T7260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  211.567080][ T7260] R13: 0000000000000000 R14: 00007ffb029b6080 R15: 00007ffff1ab8998
[  211.567125][ T7260]  </TASK>
[  213.287524][ T7273] svc: failed to register nfsdv3 RPC service (errno 111).
[  213.310935][ T7273] svc: failed to register nfsaclv3 RPC service (errno 111).
[  214.719531][ T7308] Invalid ELF header magic: != ELF
[  215.532872][ T7308] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  215.977178][ T7320] cougar: G6 mapped to space
[  216.838363][ T7335] kAFS: No cell specified
[  218.204187][ T7358] netlink: 4 bytes leftover after parsing attributes in process `syz.0.293'.
[  221.998484][ T7407] svc: failed to register nfsdv3 RPC service (errno 111).
[  222.059055][ T7407] svc: failed to register nfsaclv3 RPC service (errno 111).
[  222.181339][ T7418] netlink: 334 bytes leftover after parsing attributes in process `syz.0.306'.
[  222.194988][ T7418] netlink: 334 bytes leftover after parsing attributes in process `syz.0.306'.
[  222.539536][ T7427] kAFS: No cell specified
[  224.716483][ T7453] tipc: Started in network mode
[  224.721553][ T7453] tipc: Node identity ee00, cluster identity 4711
[  224.754791][ T7453] tipc: Node number set to 60928
[  225.713762][ T7460] netlink: 342 bytes leftover after parsing attributes in process `syz.3.314'.
[  226.570684][ T7468] svc: failed to register nfsdv3 RPC service (errno 111).
[  226.648972][ T7468] svc: failed to register nfsaclv3 RPC service (errno 111).
[  227.497525][ T7502] kAFS: Invalid Command on /proc/fs/afs/cells file
[  227.670025][ T7504] capability: warning: `syz.3.324' uses 32-bit capabilities (legacy support in use)
[  228.994102][ T7533] syz.0.330 (7533): attempted to duplicate a private mapping with mremap.  This is not supported.
[  229.603457][ T7541] FAULT_INJECTION: forcing a failure.
[  229.603457][ T7541] name failslab, interval 1, probability 0, space 0, times 0
[  229.639978][ T7541] CPU: 0 UID: 0 PID: 7541 Comm: syz.3.332 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  229.640024][ T7541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  229.640041][ T7541] Call Trace:
[  229.640050][ T7541]  <TASK>
[  229.640060][ T7541]  dump_stack_lvl+0x16c/0x1f0
[  229.640106][ T7541]  should_fail_ex+0x512/0x640
[  229.640142][ T7541]  ? __kmalloc_noprof+0xbf/0x510
[  229.640189][ T7541]  ? get_modalias+0xbb/0x380
[  229.640215][ T7541]  should_failslab+0xc2/0x120
[  229.640242][ T7541]  __kmalloc_noprof+0xd2/0x510
[  229.640283][ T7541]  ? get_modalias+0x20f/0x380
[  229.640320][ T7541]  get_modalias+0xbb/0x380
[  229.640356][ T7541]  ? __pfx_sys_dmi_modalias_show+0x10/0x10
[  229.640387][ T7541]  sys_dmi_modalias_show+0x1f/0xb0
[  229.640419][ T7541]  dev_attr_show+0x56/0xe0
[  229.640448][ T7541]  ? __pfx_dev_attr_show+0x10/0x10
[  229.640473][ T7541]  sysfs_kf_seq_show+0x216/0x3e0
[  229.640516][ T7541]  seq_read_iter+0x506/0x12c0
[  229.640573][ T7541]  kernfs_fop_read_iter+0x40f/0x5a0
[  229.640601][ T7541]  ? rw_verify_area+0xcf/0x680
[  229.640642][ T7541]  vfs_read+0x8bc/0xc60
[  229.640687][ T7541]  ? __pfx___mutex_lock+0x10/0x10
[  229.640732][ T7541]  ? __pfx_vfs_read+0x10/0x10
[  229.640829][ T7541]  ksys_read+0x12a/0x250
[  229.640869][ T7541]  ? __pfx_ksys_read+0x10/0x10
[  229.640923][ T7541]  do_syscall_64+0xcd/0x490
[  229.640971][ T7541]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  229.640999][ T7541] RIP: 0033:0x7f148d78e929
[  229.641021][ T7541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  229.641048][ T7541] RSP: 002b:00007f148e596038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  229.641075][ T7541] RAX: ffffffffffffffda RBX: 00007f148d9b5fa0 RCX: 00007f148d78e929
[  229.641094][ T7541] RDX: 0000000000001016 RSI: 0000200000000000 RDI: 0000000000000005
[  229.641111][ T7541] RBP: 00007f148d810b39 R08: 0000000000000000 R09: 0000000000000000
[  229.641127][ T7541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  229.641143][ T7541] R13: 0000000000000000 R14: 00007f148d9b5fa0 R15: 00007fff0a3155c8
[  229.641181][ T7541]  </TASK>
[  230.517417][ T7551] binder: 7550:7551 ioctl c018620b 0 returned -14
[  230.775718][ T7559] binder: 7550:7559 ioctl 400c620e 0 returned -22
[  234.082283][ T7600] zswap: compressor  not available
[  234.828115][ T7599] page: refcount:3 mapcount:2 mapping:0000000000000000 index:0x7f8b22baa pfn:0x78000
[  234.871165][ T7599] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  234.905539][ T7599] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  234.927185][ T7599] raw: 00000007f8b22baa 0000000000000000 0000000300000001 0000000000000000
[  234.953643][ T7599] page dumped because: unmovable page
[  234.962688][ T7599] page_owner tracks the page as allocated
[  234.973158][ T7599] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5827, tgid 5827 (syz-executor), ts 89874327715, free_ts 89601670127
[  234.995533][ T7599]  post_alloc_hook+0x1c0/0x230
[  235.000445][ T7599]  get_page_from_freelist+0x1321/0x3890
[  235.031324][ T7599]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  235.048770][ T7599]  alloc_pages_mpol+0x1fb/0x550
[  235.068709][ T7599]  alloc_pages_noprof+0x131/0x390
[  235.085535][ T7599]  __vmalloc_node_range_noprof+0x72f/0x14b0
[  235.105487][ T7599]  vmalloc_user_noprof+0x9e/0xe0
[  235.125362][ T7599]  kcov_ioctl+0x4c/0x730
[  235.141211][ T7599]  __x64_sys_ioctl+0x18b/0x210
[  235.154094][ T7599]  do_syscall_64+0xcd/0x490
[  235.175433][ T7599]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.187141][ T7599] page last free pid 5819 tgid 5819 stack trace:
[  235.203871][ T7599]  free_unref_folios+0xa65/0x1800
[  235.224448][ T7599]  folios_put_refs+0x56f/0x740
[  235.229478][ T7599]  free_pages_and_swap_cache+0x245/0x4a0
[  235.245507][ T7599]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  235.258322][ T7599]  tlb_finish_mmu+0x168/0x7c0
[  235.268411][ T7599]  vms_clear_ptes+0x55e/0x770
[  235.306820][ T7599]  vms_complete_munmap_vmas+0x1ca/0x970
[  235.313757][ T7599]  do_vmi_align_munmap+0x43b/0x7d0
[  235.350716][ T7599]  do_vmi_munmap+0x204/0x3e0
[  235.368349][ T7599]  __vm_munmap+0x19a/0x390
[  235.372927][ T7599]  __x64_sys_munmap+0x59/0x80
[  235.380428][ T7599]  do_syscall_64+0xcd/0x490
[  235.385071][ T7599]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.443182][ T7622] kAFS: No cell specified
[  236.440043][ T7641] netlink: 'syz.2.354': attribute type 1 has an invalid length.
[  237.802574][ T7661] phram: parameter too long
[  238.603097][ T7668] netlink: 4 bytes leftover after parsing attributes in process `syz.2.361'.
[  239.741818][   T30] audit: type=1800 audit(6046361499.096:6): pid=7684 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.364" name="discovery_nqn" dev="configfs" ino=15447 res=0 errno=0
[  241.990304][ T7685] size and base must be multiples of 4 kiB
[  242.015500][ T7685] CPU: 0 UID: 0 PID: 7685 Comm: syz.3.359 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  242.015552][ T7685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  242.015570][ T7685] Call Trace:
[  242.015580][ T7685]  <TASK>
[  242.015591][ T7685]  dump_stack_lvl+0x16c/0x1f0
[  242.015643][ T7685]  mtrr_del+0xd1/0x110
[  242.015681][ T7685]  mtrr_ioctl+0x922/0xcf0
[  242.015719][ T7685]  ? __pfx_mtrr_ioctl+0x10/0x10
[  242.015761][ T7685]  ? find_held_lock+0x2b/0x80
[  242.015802][ T7685]  ? __fget_files+0x20e/0x3c0
[  242.015842][ T7685]  ? __pfx_mtrr_ioctl+0x10/0x10
[  242.015879][ T7685]  proc_reg_unlocked_ioctl+0x229/0x320
[  242.015923][ T7685]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  242.015972][ T7685]  __x64_sys_ioctl+0x18b/0x210
[  242.016011][ T7685]  do_syscall_64+0xcd/0x490
[  242.016060][ T7685]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.016089][ T7685] RIP: 0033:0x7f148d78e929
[  242.016113][ T7685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  242.016141][ T7685] RSP: 002b:00007f148e554038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  242.016169][ T7685] RAX: ffffffffffffffda RBX: 00007f148d9b6160 RCX: 00007f148d78e929
[  242.016188][ T7685] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000006
[  242.016205][ T7685] RBP: 00007f148d810b39 R08: 0000000000000000 R09: 0000000000000000
[  242.016223][ T7685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  242.016239][ T7685] R13: 0000000000000000 R14: 00007f148d9b6160 R15: 00007fff0a3155c8
[  242.016278][ T7685]  </TASK>
[  243.213722][ T7723] netlink: 8 bytes leftover after parsing attributes in process `syz.3.370'.
[  243.713297][ T7733] FAULT_INJECTION: forcing a failure.
[  243.713297][ T7733] name failslab, interval 1, probability 0, space 0, times 0
[  243.726281][ T7733] CPU: 1 UID: 0 PID: 7733 Comm: syz.3.371 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  243.726318][ T7733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  243.726334][ T7733] Call Trace:
[  243.726343][ T7733]  <TASK>
[  243.726353][ T7733]  dump_stack_lvl+0x16c/0x1f0
[  243.726457][ T7733]  should_fail_ex+0x512/0x640
[  243.726497][ T7733]  ? __kvmalloc_node_noprof+0x124/0x620
[  243.726541][ T7733]  should_failslab+0xc2/0x120
[  243.726566][ T7733]  __kvmalloc_node_noprof+0x137/0x620
[  243.726606][ T7733]  ? io_alloc_cache_init+0x33/0x170
[  243.726651][ T7733]  ? io_alloc_cache_init+0x33/0x170
[  243.726686][ T7733]  io_alloc_cache_init+0x33/0x170
[  243.726728][ T7733]  io_uring_setup+0x63b/0x2080
[  243.726768][ T7733]  ? __pfx_io_uring_setup+0x10/0x10
[  243.726801][ T7733]  ? do_futex+0x122/0x350
[  243.726835][ T7733]  ? __pfx_do_futex+0x10/0x10
[  243.726864][ T7733]  ? __pfx_do_sys_openat2+0x10/0x10
[  243.726916][ T7733]  ? xfd_validate_state+0x61/0x180
[  243.726962][ T7733]  __x64_sys_io_uring_setup+0xc2/0x170
[  243.727001][ T7733]  do_syscall_64+0xcd/0x490
[  243.727059][ T7733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.727088][ T7733] RIP: 0033:0x7f148d78e929
[  243.727110][ T7733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  243.727136][ T7733] RSP: 002b:00007f148e596038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  243.727161][ T7733] RAX: ffffffffffffffda RBX: 00007f148d9b5fa0 RCX: 00007f148d78e929
[  243.727180][ T7733] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  243.727196][ T7733] RBP: 00007f148d810b39 R08: 0000000000000000 R09: 0000000000000000
[  243.727212][ T7733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  243.727229][ T7733] R13: 0000000000000000 R14: 00007f148d9b5fa0 R15: 00007fff0a3155c8
[  243.727265][ T7733]  </TASK>
[  246.542949][ T7770] random: crng reseeded on system resumption
[  246.974918][ T7782] bdi 43:96: the stable_pages_required attribute has been removed. Use the stable_writes queue attribute instead.
[  246.984756][ T7781] HfR: entered promiscuous mode
[  247.000261][ T7777] openvswitch: HfR: Dropping previously announced user features
[  247.027419][ T7777] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  251.882788][ T7824] =======================================================
[  251.882788][ T7824] WARNING: The mand mount option has been deprecated and
[  251.882788][ T7824]          and is ignored by this kernel. Remove the mand
[  251.882788][ T7824]          option from the mount to silence this warning.
[  251.882788][ T7824] =======================================================
[  252.889475][ T7840] can: request_module (can-proto-0) failed.
[  253.470016][ T7859] kAFS: No cell specified
[  257.583856][ T7899] FAULT_INJECTION: forcing a failure.
[  257.583856][ T7899] name failslab, interval 1, probability 0, space 0, times 0
[  257.642185][ T7899] CPU: 1 UID: 0 PID: 7899 Comm: syz.2.405 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  257.642221][ T7899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  257.642237][ T7899] Call Trace:
[  257.642246][ T7899]  <TASK>
[  257.642256][ T7899]  dump_stack_lvl+0x16c/0x1f0
[  257.642308][ T7899]  should_fail_ex+0x512/0x640
[  257.642345][ T7899]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  257.642390][ T7899]  should_failslab+0xc2/0x120
[  257.642418][ T7899]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  257.642460][ T7899]  ? __kernfs_new_node+0xd2/0x8e0
[  257.642504][ T7899]  __kernfs_new_node+0xd2/0x8e0
[  257.642547][ T7899]  ? __pfx___kernfs_new_node+0x10/0x10
[  257.642597][ T7899]  ? find_held_lock+0x2b/0x80
[  257.642627][ T7899]  ? kernfs_root+0xee/0x2a0
[  257.642673][ T7899]  kernfs_new_node+0x13c/0x1e0
[  257.642722][ T7899]  __kernfs_create_file+0x53/0x350
[  257.642755][ T7899]  sysfs_add_file_mode_ns+0x207/0x3c0
[  257.642802][ T7899]  internal_create_group+0x578/0xf30
[  257.642851][ T7899]  ? __pfx_internal_create_group+0x10/0x10
[  257.642893][ T7899]  ? kernfs_create_link+0x1bd/0x240
[  257.642930][ T7899]  internal_create_groups+0x9d/0x150
[  257.642972][ T7899]  device_add+0x6d1/0x1a70
[  257.643007][ T7899]  ? __pfx_device_add+0x10/0x10
[  257.643037][ T7899]  ? lockdep_init_map_type+0x5c/0x280
[  257.643077][ T7899]  ? __init_waitqueue_head+0xca/0x150
[  257.643130][ T7899]  netdev_register_kobject+0x182/0x3a0
[  257.643166][ T7899]  register_netdevice+0x13dc/0x2270
[  257.643200][ T7899]  ? __pfx_register_netdevice+0x10/0x10
[  257.643238][ T7899]  ? __pfx_loopback_net_init+0x10/0x10
[  257.643279][ T7899]  register_netdev+0x34/0x50
[  257.643304][ T7899]  loopback_net_init+0x7a/0x170
[  257.643335][ T7899]  ? __pfx_loopback_net_init+0x10/0x10
[  257.643361][ T7899]  ops_init+0x1df/0x5f0
[  257.643390][ T7899]  setup_net+0x1ff/0x510
[  257.643413][ T7899]  ? lockdep_init_map_type+0x5c/0x280
[  257.643449][ T7899]  ? __pfx_setup_net+0x10/0x10
[  257.643476][ T7899]  ? debug_mutex_init+0x37/0x70
[  257.643502][ T7899]  copy_net_ns+0x2a6/0x5f0
[  257.643533][ T7899]  create_new_namespaces+0x3ea/0xa90
[  257.643571][ T7899]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  257.643605][ T7899]  ksys_unshare+0x45b/0xa40
[  257.643641][ T7899]  ? __pfx_ksys_unshare+0x10/0x10
[  257.643677][ T7899]  ? xfd_validate_state+0x61/0x180
[  257.643722][ T7899]  __x64_sys_unshare+0x31/0x40
[  257.643756][ T7899]  do_syscall_64+0xcd/0x490
[  257.643798][ T7899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.643826][ T7899] RIP: 0033:0x7ffb0278e929
[  257.643847][ T7899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  257.643870][ T7899] RSP: 002b:00007ffb035a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  257.643896][ T7899] RAX: ffffffffffffffda RBX: 00007ffb029b5fa0 RCX: 00007ffb0278e929
[  257.643914][ T7899] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  257.643930][ T7899] RBP: 00007ffb02810b39 R08: 0000000000000000 R09: 0000000000000000
[  257.643947][ T7899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  257.643963][ T7899] R13: 0000000000000000 R14: 00007ffb029b5fa0 R15: 00007ffff1ab8998
[  257.643999][ T7899]  </TASK>
[  260.575761][ T7944] random: crng reseeded on system resumption
[  260.711618][ T7931] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma?
[  260.923045][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  260.929673][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  263.565582][   T30] audit: type=1800 audit(6046361522.926:7): pid=7987 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.420" name="lu_gp_id" dev="configfs" ino=15223 res=0 errno=0
[  263.600185][ T7987] kstrtoul() returned -22 for lu_gp_id
[  263.641009][ T7987] syz.3.420 (7987) used obsolete PPPIOCDETACH ioctl
[  265.957724][ T8018] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  266.301945][ T8045] kAFS: No cell specified
[  267.439474][ T8050] can: request_module (can-proto-0) failed.
[  268.063322][ T8060] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  268.168161][ T8062] nbd: illegal input index 2147483647
[  268.716290][ T8077] FAULT_INJECTION: forcing a failure.
[  268.716290][ T8077] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  268.741785][ T8077] CPU: 0 UID: 0 PID: 8077 Comm: syz.3.436 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  268.741826][ T8077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  268.741842][ T8077] Call Trace:
[  268.741851][ T8077]  <TASK>
[  268.741862][ T8077]  dump_stack_lvl+0x16c/0x1f0
[  268.741911][ T8077]  should_fail_ex+0x512/0x640
[  268.741958][ T8077]  _copy_from_user+0x2e/0xd0
[  268.742004][ T8077]  core_sys_select+0x35b/0xc10
[  268.742064][ T8077]  ? __pfx_core_sys_select+0x10/0x10
[  268.742113][ T8077]  ? proc_fail_nth_write+0x9f/0x250
[  268.742191][ T8077]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  268.742248][ T8077]  kern_select+0x15d/0x1e0
[  268.742285][ T8077]  ? __pfx_kern_select+0x10/0x10
[  268.742329][ T8077]  ? __pfx_ksys_write+0x10/0x10
[  268.742377][ T8077]  __x64_sys_select+0xbd/0x160
[  268.742412][ T8077]  ? do_syscall_64+0x91/0x490
[  268.742454][ T8077]  ? lockdep_hardirqs_on+0x7c/0x110
[  268.742494][ T8077]  do_syscall_64+0xcd/0x490
[  268.742540][ T8077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.742570][ T8077] RIP: 0033:0x7f148d78e929
[  268.742592][ T8077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.742619][ T8077] RSP: 002b:00007f148e554038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  268.742646][ T8077] RAX: ffffffffffffffda RBX: 00007f148d9b6160 RCX: 00007f148d78e929
[  268.742664][ T8077] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[  268.742680][ T8077] RBP: 00007f148e554090 R08: 0000000000000000 R09: 0000000000000000
[  268.742696][ T8077] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  268.742712][ T8077] R13: 0000000000000000 R14: 00007f148d9b6160 R15: 00007fff0a3155c8
[  268.742749][ T8077]  </TASK>
[  271.554255][ T8101] page: refcount:5 mapcount:4 mapping:0000000000000000 index:0x7f8b22baa pfn:0x78000
[  271.584851][ T8101] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  271.612649][ T8101] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  271.619796][ T8103] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  271.634692][ T8101] raw: 00000007f8b22baa 0000000000000000 0000000500000003 0000000000000000
[  271.677279][ T8103] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  271.683430][ T8101] page dumped because: unmovable page
[  271.695217][ T8103] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  271.715101][ T8101] page_owner tracks the page as allocated
[  271.734030][ T8101] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5827, tgid 5827 (syz-executor), ts 89874327715, free_ts 89601670127
[  271.994327][ T8101]  post_alloc_hook+0x1c0/0x230
[  271.999318][ T8101]  get_page_from_freelist+0x1321/0x3890
[  272.005030][ T8101]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  272.011102][ T8101]  alloc_pages_mpol+0x1fb/0x550
[  272.025721][ T8101]  alloc_pages_noprof+0x131/0x390
[  272.030846][ T8101]  __vmalloc_node_range_noprof+0x72f/0x14b0
[  272.185383][ T8101]  vmalloc_user_noprof+0x9e/0xe0
[  272.226943][ T8101]  kcov_ioctl+0x4c/0x730
[  272.231595][ T8101]  __x64_sys_ioctl+0x18b/0x210
[  272.275415][ T8101]  do_syscall_64+0xcd/0x490
[  272.280055][ T8101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.339553][ T8101] page last free pid 5819 tgid 5819 stack trace:
[  272.348407][ T8101]  free_unref_folios+0xa65/0x1800
[  272.353657][ T8101]  folios_put_refs+0x56f/0x740
[  272.363842][ T8101]  free_pages_and_swap_cache+0x245/0x4a0
[  272.377287][ T8101]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  272.383374][ T8101]  tlb_finish_mmu+0x168/0x7c0
[  272.394167][ T8101]  vms_clear_ptes+0x55e/0x770
[  272.443105][ T8101]  vms_complete_munmap_vmas+0x1ca/0x970
[  272.545433][ T8101]  do_vmi_align_munmap+0x43b/0x7d0
[  272.555638][ T8101]  do_vmi_munmap+0x204/0x3e0
[  272.560325][ T8101]  __vm_munmap+0x19a/0x390
[  272.707237][ T8101]  __x64_sys_munmap+0x59/0x80
[  272.712148][ T8101]  do_syscall_64+0xcd/0x490
[  272.718720][ T8101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.838724][ T8103] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  272.844913][ T8103] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  273.666285][ T6399] Bluetooth: hci0: command 0x0c1a tx timeout
[  273.735307][ T8123] Bluetooth: hci1: command 0x0c1a tx timeout
[  274.059840][ T8126] netlink: 'syz.0.444': attribute type 2 has an invalid length.
[  274.294468][ T8126] netlink: 20 bytes leftover after parsing attributes in process `syz.0.444'.
[  274.744098][ T8108] size and base must be multiples of 4 kiB
[  274.884978][ T8108] CPU: 0 UID: 0 PID: 8108 Comm: syz.2.440 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  274.885019][ T8108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  274.885035][ T8108] Call Trace:
[  274.885045][ T8108]  <TASK>
[  274.885056][ T8108]  dump_stack_lvl+0x16c/0x1f0
[  274.885105][ T8108]  mtrr_del+0xd1/0x110
[  274.885141][ T8108]  mtrr_ioctl+0x922/0xcf0
[  274.885174][ T8108]  ? __pfx_mtrr_ioctl+0x10/0x10
[  274.885215][ T8108]  ? find_held_lock+0x2b/0x80
[  274.885260][ T8108]  ? __fget_files+0x20e/0x3c0
[  274.885298][ T8108]  ? __pfx_mtrr_ioctl+0x10/0x10
[  274.885331][ T8108]  proc_reg_unlocked_ioctl+0x229/0x320
[  274.885368][ T8108]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  274.885412][ T8108]  __x64_sys_ioctl+0x18b/0x210
[  274.885449][ T8108]  do_syscall_64+0xcd/0x490
[  274.885497][ T8108]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.885527][ T8108] RIP: 0033:0x7ffb0278e929
[  274.885552][ T8108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.885580][ T8108] RSP: 002b:00007ffb03566038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  274.885610][ T8108] RAX: ffffffffffffffda RBX: 00007ffb029b6160 RCX: 00007ffb0278e929
[  274.885630][ T8108] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000007
[  274.885648][ T8108] RBP: 00007ffb02810b39 R08: 0000000000000000 R09: 0000000000000000
[  274.885666][ T8108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  274.885684][ T8108] R13: 0000000000000000 R14: 00007ffb029b6160 R15: 00007ffff1ab8998
[  274.885727][ T8108]  </TASK>
[  275.050749][ T8123] Bluetooth: hci3: command 0x0c1a tx timeout
[  275.056812][ T8123] Bluetooth: hci2: command 0x0c1a tx timeout
[  275.800546][ T6395] Bluetooth: hci1: command 0x0c1a tx timeout
[  276.255640][ T8143] FAULT_INJECTION: forcing a failure.
[  276.255640][ T8143] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  276.309321][ T8143] CPU: 1 UID: 0 PID: 8143 Comm: syz.2.447 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  276.309360][ T8143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  276.309375][ T8143] Call Trace:
[  276.309383][ T8143]  <TASK>
[  276.309393][ T8143]  dump_stack_lvl+0x16c/0x1f0
[  276.309435][ T8143]  should_fail_ex+0x512/0x640
[  276.309475][ T8143]  core_sys_select+0x4c5/0xc10
[  276.309512][ T8143]  ? __pfx_core_sys_select+0x10/0x10
[  276.309539][ T8143]  ? proc_fail_nth_write+0x9f/0x250
[  276.309578][ T8143]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  276.309611][ T8143]  kern_select+0x15d/0x1e0
[  276.309634][ T8143]  ? __pfx_kern_select+0x10/0x10
[  276.309659][ T8143]  ? __pfx_ksys_write+0x10/0x10
[  276.309688][ T8143]  __x64_sys_select+0xbd/0x160
[  276.309709][ T8143]  ? do_syscall_64+0x91/0x490
[  276.309734][ T8143]  ? lockdep_hardirqs_on+0x7c/0x110
[  276.309759][ T8143]  do_syscall_64+0xcd/0x490
[  276.309787][ T8143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.309804][ T8143] RIP: 0033:0x7ffb0278e929
[  276.309819][ T8143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  276.309836][ T8143] RSP: 002b:00007ffb03566038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  276.309852][ T8143] RAX: ffffffffffffffda RBX: 00007ffb029b6160 RCX: 00007ffb0278e929
[  276.309863][ T8143] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[  276.309872][ T8143] RBP: 00007ffb03566090 R08: 0000000000000000 R09: 0000000000000000
[  276.309882][ T8143] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  276.309892][ T8143] R13: 0000000000000000 R14: 00007ffb029b6160 R15: 00007ffff1ab8998
[  276.309913][ T8143]  </TASK>
[  277.423973][ T8155] netlink: 28 bytes leftover after parsing attributes in process `syz.2.450'.
[  277.434027][ T8155] geneve1: entered promiscuous mode
[  277.473531][ T8155] geneve1: entered allmulticast mode
[  277.500944][ T8156] netlink: 28 bytes leftover after parsing attributes in process `syz.2.450'.
[  278.963756][ T8169] netlink: 4 bytes leftover after parsing attributes in process `syz.0.451'.
[  278.975088][ T8158] netlink: 25 bytes leftover after parsing attributes in process `syz.0.451'.
[  279.903248][ T8173] random: crng reseeded on system resumption
[  285.545334][   T30] audit: type=1800 audit(6046361544.906:8): pid=8190 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.457" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  286.163558][ T8210] usb usb6: usbfs: process 8210 (syz.1.459) did not claim interface 0 before use
[  290.063049][ T8246] XFS: irix_symlink_mode sysctl option is deprecated.
[  293.501410][ T8268] netlink: 28 bytes leftover after parsing attributes in process `syz.3.470'.
[  295.078697][ T8268] bond0: (slave bond_slave_1): Releasing backup interface
[  299.231732][ T8310] WARNING! power/level is deprecated; use power/control instead
[  299.366739][ T8310] FAULT_INJECTION: forcing a failure.
[  299.366739][ T8310] name failslab, interval 1, probability 0, space 0, times 0
[  299.419256][ T8310] CPU: 0 UID: 0 PID: 8310 Comm: syz.2.477 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  299.419300][ T8310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  299.419318][ T8310] Call Trace:
[  299.419328][ T8310]  <TASK>
[  299.419340][ T8310]  dump_stack_lvl+0x16c/0x1f0
[  299.419394][ T8310]  should_fail_ex+0x512/0x640
[  299.419435][ T8310]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  299.419493][ T8310]  should_failslab+0xc2/0x120
[  299.419521][ T8310]  __kmalloc_cache_noprof+0x6a/0x3e0
[  299.419562][ T8310]  ? lockdep_init_map_type+0x5c/0x280
[  299.419602][ T8310]  ? qrtr_endpoint_register+0x85/0x500
[  299.419641][ T8310]  qrtr_endpoint_register+0x85/0x500
[  299.419676][ T8310]  qrtr_tun_open+0x151/0x220
[  299.419712][ T8310]  ? __pfx_qrtr_tun_open+0x10/0x10
[  299.419750][ T8310]  misc_open+0x35a/0x420
[  299.419790][ T8310]  ? __pfx_misc_open+0x10/0x10
[  299.419826][ T8310]  chrdev_open+0x231/0x6a0
[  299.419871][ T8310]  ? __pfx_apparmor_file_open+0x10/0x10
[  299.419910][ T8310]  ? __pfx_chrdev_open+0x10/0x10
[  299.419962][ T8310]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  299.420013][ T8310]  do_dentry_open+0x744/0x1c10
[  299.420060][ T8310]  ? __pfx_chrdev_open+0x10/0x10
[  299.420118][ T8310]  vfs_open+0x82/0x3f0
[  299.420159][ T8310]  path_openat+0x1de4/0x2cb0
[  299.420226][ T8310]  ? __pfx_path_openat+0x10/0x10
[  299.420274][ T8310]  ? __lock_acquire+0xb8a/0x1c90
[  299.420314][ T8310]  do_filp_open+0x20b/0x470
[  299.420354][ T8310]  ? __pfx_do_filp_open+0x10/0x10
[  299.420435][ T8310]  ? alloc_fd+0x471/0x7d0
[  299.420501][ T8310]  do_sys_openat2+0x11b/0x1d0
[  299.420535][ T8310]  ? __pfx_do_sys_openat2+0x10/0x10
[  299.420590][ T8310]  __x64_sys_openat+0x174/0x210
[  299.420626][ T8310]  ? __pfx___x64_sys_openat+0x10/0x10
[  299.420683][ T8310]  do_syscall_64+0xcd/0x490
[  299.420734][ T8310]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  299.420765][ T8310] RIP: 0033:0x7ffb0278e929
[  299.420791][ T8310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  299.420820][ T8310] RSP: 002b:00007ffb03587038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  299.420850][ T8310] RAX: ffffffffffffffda RBX: 00007ffb029b6080 RCX: 00007ffb0278e929
[  299.420870][ T8310] RDX: 0000000000000101 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  299.420889][ T8310] RBP: 00007ffb02810b39 R08: 0000000000000000 R09: 0000000000000000
[  299.420907][ T8310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  299.420924][ T8310] R13: 0000000000000000 R14: 00007ffb029b6080 R15: 00007ffff1ab8998
[  299.420968][ T8310]  </TASK>
[  299.822233][ T8316] blktrace: Concurrent blktraces are not allowed on loop2
[  300.230589][ T8316] tipc: Started in network mode
[  300.230620][ T8316] tipc: Node identity ee00, cluster identity 4711
[  300.230638][ T8316] tipc: Node number set to 60928
[  303.396402][ T8356] kAFS: No cell specified
[  303.816560][ T8364] binder: 8360:8364 unknown command 0
[  303.822461][ T8364] binder: 8360:8364 ioctl c0306201 2000000000c0 returned -22
[  304.563117][ T6395] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  304.563160][ T6395] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  304.578695][ T6395] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  304.578757][ T6395] Bluetooth: hci0: adv larger than maximum supported
[  304.587749][ T6395] Bluetooth: hci0: adv larger than maximum supported
[  304.594499][ T6395] Bluetooth: hci0: adv larger than maximum supported
[  304.605902][ T6395] Bluetooth: hci0: Malformed LE Event: 0x0d
[  304.749648][ T8382] FAULT_INJECTION: forcing a failure.
[  304.749648][ T8382] name failslab, interval 1, probability 0, space 0, times 0
[  304.795134][ T8382] CPU: 0 UID: 0 PID: 8382 Comm: syz.2.493 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  304.795164][ T8382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  304.795174][ T8382] Call Trace:
[  304.795181][ T8382]  <TASK>
[  304.795188][ T8382]  dump_stack_lvl+0x16c/0x1f0
[  304.795221][ T8382]  should_fail_ex+0x512/0x640
[  304.795256][ T8382]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  304.795296][ T8382]  should_failslab+0xc2/0x120
[  304.795323][ T8382]  __kmalloc_cache_noprof+0x6a/0x3e0
[  304.795360][ T8382]  ? ktime_get_coarse_real_ts64_mg+0x240/0x300
[  304.795406][ T8382]  ? hugetlb_vma_lock_alloc+0xbc/0x1f0
[  304.795457][ T8382]  hugetlb_vma_lock_alloc+0xbc/0x1f0
[  304.795500][ T8382]  hugetlb_reserve_pages+0x149/0xe10
[  304.795544][ T8382]  ? __pfx_hugetlb_reserve_pages+0x10/0x10
[  304.795581][ T8382]  ? atime_needs_update+0x8b/0x710
[  304.795630][ T8382]  hugetlbfs_file_mmap+0x4a1/0x730
[  304.795691][ T8382]  __mmap_region+0x128e/0x25e0
[  304.795744][ T8382]  ? __pfx___mmap_region+0x10/0x10
[  304.795798][ T8382]  ? is_bpf_text_address+0x94/0x1a0
[  304.795840][ T8382]  ? kernel_text_address+0x8d/0x100
[  304.795884][ T8382]  ? __kernel_text_address+0xd/0x40
[  304.795927][ T8382]  ? unwind_get_return_address+0x59/0xa0
[  304.795972][ T8382]  ? arch_stack_walk+0xa6/0x100
[  304.796043][ T8382]  ? __pfx_stack_trace_save+0x10/0x10
[  304.796075][ T8382]  ? stack_depot_save_flags+0x28/0xa40
[  304.796169][ T8382]  ? mm_get_unmapped_area_vmflags+0x97/0xe0
[  304.796218][ T8382]  mmap_region+0x32b/0x3f0
[  304.796270][ T8382]  do_mmap+0xa3e/0x1210
[  304.796312][ T8382]  ? __pfx_do_mmap+0x10/0x10
[  304.796346][ T8382]  ? __pfx_down_write_killable+0x10/0x10
[  304.796396][ T8382]  vm_mmap_pgoff+0x281/0x450
[  304.796437][ T8382]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  304.796464][ T8382]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  304.796500][ T8382]  ? hugetlbfs_get_inode+0x31f/0x730
[  304.796546][ T8382]  ksys_mmap_pgoff+0x1c8/0x5c0
[  304.796587][ T8382]  __x64_sys_mmap+0x125/0x190
[  304.796630][ T8382]  do_syscall_64+0xcd/0x490
[  304.796680][ T8382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.796708][ T8382] RIP: 0033:0x7ffb0278e929
[  304.796732][ T8382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.796760][ T8382] RSP: 002b:00007ffb035a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  304.796788][ T8382] RAX: ffffffffffffffda RBX: 00007ffb029b5fa0 RCX: 00007ffb0278e929
[  304.796807][ T8382] RDX: 0000000000000401 RSI: 0000000000a00006 RDI: 0000000000c00000
[  304.796826][ T8382] RBP: 00007ffb02810b39 R08: 0000000000000602 R09: 0000300000000000
[  304.796844][ T8382] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000
[  304.796862][ T8382] R13: 0000000000000000 R14: 00007ffb029b5fa0 R15: 00007ffff1ab8998
[  304.796903][ T8382]  </TASK>
[  305.099785][ T8382] HugeTLB: unable to allocate vma specific lock
[  305.446024][ T8390] QAT: Invalid ioctl -2145626081
[  305.929829][ T8399] netlink: 98 bytes leftover after parsing attributes in process `syz.3.497'.
[  305.991280][ T8404] netlink: 2 bytes leftover after parsing attributes in process `syz.3.497'.
[  306.530484][ T8422] netlink: 28 bytes leftover after parsing attributes in process `syz.0.501'.
[  306.561128][ T8423] FAULT_INJECTION: forcing a failure.
[  306.561128][ T8423] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  306.561172][ T8423] CPU: 0 UID: 0 PID: 8423 Comm: syz.2.500 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  306.561208][ T8423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  306.561224][ T8423] Call Trace:
[  306.561233][ T8423]  <TASK>
[  306.561243][ T8423]  dump_stack_lvl+0x16c/0x1f0
[  306.561290][ T8423]  should_fail_ex+0x512/0x640
[  306.561334][ T8423]  _copy_from_user+0x2e/0xd0
[  306.561378][ T8423]  copy_msghdr_from_user+0x98/0x160
[  306.561421][ T8423]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  306.561470][ T8423]  ? __lock_acquire+0x622/0x1c90
[  306.561512][ T8423]  ___sys_recvmsg+0xdb/0x1a0
[  306.561552][ T8423]  ? __pfx____sys_recvmsg+0x10/0x10
[  306.561607][ T8423]  ? find_held_lock+0x2b/0x80
[  306.561660][ T8423]  do_recvmmsg+0x2fe/0x750
[  306.561707][ T8423]  ? __pfx_do_recvmmsg+0x10/0x10
[  306.561759][ T8423]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  306.561815][ T8423]  ? __fget_files+0x20e/0x3c0
[  306.561860][ T8423]  __x64_sys_recvmmsg+0x22a/0x280
[  306.561906][ T8423]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  306.561963][ T8423]  do_syscall_64+0xcd/0x490
[  306.562009][ T8423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  306.562038][ T8423] RIP: 0033:0x7ffb0278e929
[  306.562061][ T8423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  306.562087][ T8423] RSP: 002b:00007ffb03566038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  306.562113][ T8423] RAX: ffffffffffffffda RBX: 00007ffb029b6160 RCX: 00007ffb0278e929
[  306.562131][ T8423] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  306.562148][ T8423] RBP: 00007ffb03566090 R08: 0000000000000000 R09: 0000000000000000
[  306.562164][ T8423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  306.562180][ T8423] R13: 0000000000000000 R14: 00007ffb029b6160 R15: 00007ffff1ab8998
[  306.562216][ T8423]  </TASK>
[  308.666812][ T8441] kAFS: No cell specified
[  316.883329][ T8492] kAFS: No cell specified
[  318.132373][ T8509] kAFS: No cell specified
[  319.508643][ T8506] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[8506]
[  322.363126][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  322.375420][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  325.028212][ T8566] netlink: 28 bytes leftover after parsing attributes in process `syz.3.527'.
[  325.081227][ T8566] bond0: entered promiscuous mode
[  325.097017][ T8566] bond_slave_0: entered promiscuous mode
[  325.183392][ T8569] <
[  328.978336][ T8594] zswap: compressor  not available
[  332.761334][ T8646] can: request_module (can-proto-0) failed.
[  334.845673][ T8650] size and base must be multiples of 4 kiB
[  334.938849][ T8650] CPU: 1 UID: 0 PID: 8650 Comm: syz.0.540 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  334.938889][ T8650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  334.938906][ T8650] Call Trace:
[  334.938915][ T8650]  <TASK>
[  334.938927][ T8650]  dump_stack_lvl+0x16c/0x1f0
[  334.938981][ T8650]  mtrr_del+0xd1/0x110
[  334.939015][ T8650]  mtrr_ioctl+0x922/0xcf0
[  334.939054][ T8650]  ? __pfx_mtrr_ioctl+0x10/0x10
[  334.939106][ T8650]  ? find_held_lock+0x2b/0x80
[  334.939145][ T8650]  ? __fget_files+0x20e/0x3c0
[  334.939184][ T8650]  ? __pfx_mtrr_ioctl+0x10/0x10
[  334.939214][ T8650]  proc_reg_unlocked_ioctl+0x229/0x320
[  334.939254][ T8650]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  334.939296][ T8650]  __x64_sys_ioctl+0x18b/0x210
[  334.939331][ T8650]  do_syscall_64+0xcd/0x490
[  334.939372][ T8650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.939398][ T8650] RIP: 0033:0x7feba718e929
[  334.939421][ T8650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.939448][ T8650] RSP: 002b:00007feba7f79038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  334.939477][ T8650] RAX: ffffffffffffffda RBX: 00007feba73b6160 RCX: 00007feba718e929
[  334.939495][ T8650] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000006
[  334.939510][ T8650] RBP: 00007feba7210b39 R08: 0000000000000000 R09: 0000000000000000
[  334.939527][ T8650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  334.939544][ T8650] R13: 0000000000000000 R14: 00007feba73b6160 R15: 00007ffc33ee65b8
[  334.939580][ T8650]  </TASK>
[  335.108180][    C1] vkms_vblank_simulate: vblank timer overrun
[  335.819250][ T8675] netlink: 'syz.0.547': attribute type 1 has an invalid length.
[  338.224210][ T8704] sctp: [Deprecated]: syz.2.552 (pid 8704) Use of int in max_burst socket option.
[  338.224210][ T8704] Use struct sctp_assoc_value instead
[  343.251262][ T8740] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE�r��҄y�*�"�l-���y–��
[  346.460596][ T8780] kAFS: No cell specified
[  346.736372][ T8777] syz.2.563 (8777): drop_caches: 0
[  348.742364][ T8798] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  350.275958][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  350.282401][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  350.400782][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  350.407833][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  350.417971][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  350.425635][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  350.441326][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  350.448774][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  350.471438][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  350.477955][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  351.343989][ T8834] zswap: compressor  not available
[  351.557886][ T8839] kAFS: No cell specified
[  354.935374][ T6395] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  354.935418][ T6395] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  354.975300][ T6395] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  354.975373][ T6395] Bluetooth: hci0: Malformed LE Event: 0x0d
[  356.764999][ T8891] svc: failed to register nfsdv3 RPC service (errno 512).
[  356.855664][ T8891] svc: failed to register nfsaclv3 RPC service (errno 512).
[  358.806498][ T8919] openvswitch: netlink: Message has 1126 unknown bytes.
[  358.843233][ T8919] netlink: zone id is out of range
[  358.897178][ T8919] netlink: zone id is out of range
[  358.902362][ T8919] netlink: zone id is out of range
[  358.917144][ T8919] netlink: zone id is out of range
[  358.925298][ T8919] netlink: zone id is out of range
[  358.938439][ T8919] netlink: zone id is out of range
[  358.945735][ T8919] netlink: zone id is out of range
[  358.985517][ T8919] netlink: zone id is out of range
[  358.990732][ T8919] netlink: zone id is out of range
[  363.256290][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  363.265636][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  363.301836][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  363.308485][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  363.325509][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  363.331960][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  363.361514][ T8967] netlink: 4 bytes leftover after parsing attributes in process `syz.2.604'.
[  363.374112][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  363.381293][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  363.396669][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  363.403031][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  363.545151][ T6395] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  363.545192][ T6395] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  363.563072][ T6395] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  363.563137][ T6395] Bluetooth: hci1: adv larger than maximum supported
[  363.570928][ T6395] Bluetooth: hci1: adv larger than maximum supported
[  363.578568][ T6395] Bluetooth: hci1: Malformed LE Event: 0x0d
[  363.746980][ T8974] 
[  363.865792][ T8970] zswap: compressor  not available
[  364.576003][ T8992] syz.3.610: vmalloc error: size 12288, failed to allocate pages, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  364.620218][ T8992] CPU: 1 UID: 0 PID: 8992 Comm: syz.3.610 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  364.620262][ T8992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  364.620278][ T8992] Call Trace:
[  364.620288][ T8992]  <TASK>
[  364.620300][ T8992]  dump_stack_lvl+0x16c/0x1f0
[  364.620353][ T8992]  warn_alloc+0x248/0x3a0
[  364.620396][ T8992]  ? __pfx_warn_alloc+0x10/0x10
[  364.620437][ T8992]  ? css_rstat_updated+0x9d/0xd30
[  364.620474][ T8992]  ? find_held_lock+0x2b/0x80
[  364.620506][ T8992]  ? mod_memcg_page_state.part.0.constprop.0+0x1a5/0x580
[  364.620554][ T8992]  __vmalloc_node_range_noprof+0x11d4/0x14b0
[  364.620612][ T8992]  ? kvm_dev_ioctl+0x153/0x1ad0
[  364.620671][ T8992]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  364.620712][ T8992]  ? snprintf+0xc7/0x100
[  364.620760][ T8992]  ? _raw_spin_unlock+0x28/0x50
[  364.620803][ T8992]  ? kvm_dev_ioctl+0x153/0x1ad0
[  364.620848][ T8992]  __vmalloc_node_noprof+0xad/0xf0
[  364.620886][ T8992]  ? kvm_dev_ioctl+0x153/0x1ad0
[  364.620938][ T8992]  kvm_dev_ioctl+0x153/0x1ad0
[  364.620986][ T8992]  ? rcu_is_watching+0x12/0xc0
[  364.621014][ T8992]  ? irqentry_exit+0x3b/0x90
[  364.621057][ T8992]  ? lockdep_hardirqs_on+0x7c/0x110
[  364.621108][ T8992]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  364.621165][ T8992]  ? __pfx___sanitizer_cov_trace_pc+0x10/0x10
[  364.621215][ T8992]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  364.621266][ T8992]  __x64_sys_ioctl+0x18b/0x210
[  364.621305][ T8992]  do_syscall_64+0xcd/0x490
[  364.621354][ T8992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.621384][ T8992] RIP: 0033:0x7f148d78e929
[  364.621409][ T8992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  364.621438][ T8992] RSP: 002b:00007f148e575038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  364.621467][ T8992] RAX: ffffffffffffffda RBX: 00007f148d9b6080 RCX: 00007f148d78e929
[  364.621486][ T8992] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008
[  364.621503][ T8992] RBP: 00007f148d810b39 R08: 0000000000000000 R09: 0000000000000000
[  364.621520][ T8992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  364.621537][ T8992] R13: 0000000000000000 R14: 00007f148d9b6080 R15: 00007fff0a3155c8
[  364.621577][ T8992]  </TASK>
[  364.621588][ T8992] Mem-Info:
[  365.001351][ T8992] active_anon:10234 inactive_anon:9036 isolated_anon:0
[  365.001351][ T8992]  active_file:22070 inactive_file:38673 isolated_file:0
[  365.001351][ T8992]  unevictable:768 dirty:10 writeback:4
[  365.001351][ T8992]  slab_reclaimable:10686 slab_unreclaimable:94218
[  365.001351][ T8992]  mapped:29807 shmem:8065 pagetables:1175
[  365.001351][ T8992]  sec_pagetables:0 bounce:0
[  365.001351][ T8992]  kernel_misc_reclaimable:0
[  365.001351][ T8992]  free:1296103 free_pcp:27562 free_cma:0
[  365.214376][ T8992] Node 0 active_anon:44936kB inactive_anon:13020kB active_file:87876kB inactive_file:154496kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:119200kB dirty:140kB writeback:16kB shmem:11724kB shmem_thp:2048kB shmem_pmdmapped:2048kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12320kB pagetables:4556kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  365.625584][ T8992] Node 1 active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:196kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  366.229985][ T8992] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  366.230078][ T8992] lowmem_reserve[]: 0 2481 2482 2482 2482
[  366.230141][ T8992] Node 0 DMA32 free:1335792kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:40892kB inactive_anon:11284kB active_file:86156kB inactive_file:154740kB unevictable:1536kB writepending:512kB present:3129332kB managed:2540848kB mlocked:0kB bounce:0kB free_pcp:47656kB local_pcp:21576kB free_cma:0kB
[  366.230227][ T8992] lowmem_reserve[]: 0 0 1 1 1
[  366.230295][ T8992] Node 0 Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:980kB inactive_file:340kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  366.230376][ T8992] lowmem_reserve[]: 0 0 0 0 0
[  366.230434][ T8992] Node 1 Normal free:3857804kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:132kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:63180kB local_pcp:33832kB free_cma:0kB
[  366.230515][ T8992] lowmem_reserve[]: 0 0 0 0 0
[  366.230572][ T8992] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  366.230764][ T8992] Node 0 DMA32: 2589*4kB (UME) 2031*8kB (UME) 1278*16kB (UME) 880*32kB (UME) 680*64kB (UME) 330*128kB (UME) 223*256kB (UME) 119*512kB (UME) 62*1024kB (UM) 23*2048kB (UME) 231*4096kB (UM) = 1335756kB
[  366.231029][ T8992] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB
[  366.231200][ T8992] Node 1 Normal: 977*4kB (UME) 41*8kB (UME) 24*16kB (UME) 210*32kB (UME) 115*64kB (UME) 49*128kB (UME) 14*256kB (UME) 9*512kB (UME) 9*1024kB (UME) 7*2048kB (UME) 928*4096kB (M) = 3857804kB
[  366.231475][ T8992] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  366.231499][ T8992] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=2 hugepages_size=2048kB
[  366.231521][ T8992] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  366.231544][ T8992] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  366.231567][ T8992] 62976 total pagecache pages
[  366.231578][ T8992] 4 pages in swap cache
[  366.231588][ T8992] Free swap  = 123060kB
[  366.231600][ T8992] Total swap = 124996kB
[  366.231611][ T8992] 2097051 pages RAM
[  366.231622][ T8992] 0 pages HighMem/MovableOnly
[  366.231632][ T8992] 429861 pages reserved
[  366.231643][ T8992] 0 pages cma reserved
[  366.796676][ T9003] RDS: rds_bind could not find a transport for ::ffff:172.30.0.4, load rds_tcp or rds_rdma?
[  371.777632][ T9053] zswap: compressor  not available
[  372.494117][ T9057] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f8b22baa pfn:0x78000
[  372.535020][ T9057] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  372.591555][ T9057] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  372.645368][ T9057] raw: 00000007f8b22baa 0000000000000000 0000000400000002 0000000000000000
[  372.654039][ T9057] page dumped because: unmovable page
[  372.701703][ T9057] page_owner tracks the page as allocated
[  372.719684][ T9057] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5827, tgid 5827 (syz-executor), ts 89874327715, free_ts 89601670127
[  372.757404][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  372.763810][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  372.781838][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  372.788289][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  372.806691][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  372.814468][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  372.858161][ T9057]  post_alloc_hook+0x1c0/0x230
[  372.864324][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  372.870764][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  372.884726][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  372.891210][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  372.935592][ T9057]  get_page_from_freelist+0x1321/0x3890
[  372.941267][ T9057]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  372.966030][ T9057]  alloc_pages_mpol+0x1fb/0x550
[  373.045361][ T9057]  alloc_pages_noprof+0x131/0x390
[  373.245489][ T9057]  __vmalloc_node_range_noprof+0x72f/0x14b0
[  373.251499][ T9057]  vmalloc_user_noprof+0x9e/0xe0
[  373.305718][ T9057]  kcov_ioctl+0x4c/0x730
[  373.310074][ T9057]  __x64_sys_ioctl+0x18b/0x210
[  373.314899][ T9057]  do_syscall_64+0xcd/0x490
[  373.385539][ T9057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.391546][ T9057] page last free pid 5819 tgid 5819 stack trace:
[  373.485347][ T9057]  free_unref_folios+0xa65/0x1800
[  373.545402][ T9057]  folios_put_refs+0x56f/0x740
[  373.550277][ T9057]  free_pages_and_swap_cache+0x245/0x4a0
[  373.617362][ T9057]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  373.623461][ T9057]  tlb_finish_mmu+0x168/0x7c0
[  373.732470][ T9057]  vms_clear_ptes+0x55e/0x770
[  373.755407][ T9057]  vms_complete_munmap_vmas+0x1ca/0x970
[  373.761076][ T9057]  do_vmi_align_munmap+0x43b/0x7d0
[  373.795469][ T9057]  do_vmi_munmap+0x204/0x3e0
[  373.805105][ T9057]  __vm_munmap+0x19a/0x390
[  373.965368][ T9057]  __x64_sys_munmap+0x59/0x80
[  373.970413][ T9057]  do_syscall_64+0xcd/0x490
[  373.975001][ T9057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.215766][ T9081] netlink: 4 bytes leftover after parsing attributes in process `syz.3.627'.
[  375.762692][ T9080] MTRR 1 not used
[  377.584614][ T9103] netlink: 28 bytes leftover after parsing attributes in process `syz.0.632'.
[  380.732098][ T9134] netlink: 28 bytes leftover after parsing attributes in process `syz.3.637'.
[  383.145988][ T9143] random: crng reseeded on system resumption
[  383.801112][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  383.807644][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  385.985589][ T9175] random: crng reseeded on system resumption
[  390.503731][ T9211] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.0.649: bg 3: bad block bitmap checksum
[  390.525857][ T9211] EXT4-fs error (device sda1): ext4_discard_preallocations:5601: comm syz.0.649: Error -74 reading block bitmap for 3
[  390.995448][ T9211] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.0.649: bg 1: bad block bitmap checksum
[  391.011742][ T9211] EXT4-fs error (device sda1) in ext4_mb_clear_bb:6548: Filesystem failed CRC
[  391.646026][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  391.655620][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  391.671874][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  391.678345][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  391.688624][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  391.694969][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  391.801423][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  391.809758][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  391.886050][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  391.894556][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  393.557889][ T9227] zswap: compressor  not available
[  393.605876][ T9236] zswap: compressor  not available
[  394.245476][ T9227] zswap: compressor  not available
[  395.194196][ T8413] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u10:28: bg 4: bad block bitmap checksum
[  395.225379][ T8413] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 3518 with max blocks 66 with error 74
[  395.339704][ T8413] EXT4-fs (sda1): This should not happen!! Data will be lost
[  395.339704][ T8413] 
[  395.460964][ T8413] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u10:28: bg 5: bad block bitmap checksum
[  395.487534][ T8413] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 1646 with max blocks 1 with error 74
[  395.502361][ T8413] EXT4-fs (sda1): This should not happen!! Data will be lost
[  395.502361][ T8413] 
[  397.053873][ T9266] FAULT_INJECTION: forcing a failure.
[  397.053873][ T9266] name failslab, interval 1, probability 0, space 0, times 0
[  397.095369][ T9266] CPU: 0 UID: 0 PID: 9266 Comm: syz.0.659 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  397.095397][ T9266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  397.095408][ T9266] Call Trace:
[  397.095414][ T9266]  <TASK>
[  397.095421][ T9266]  dump_stack_lvl+0x16c/0x1f0
[  397.095453][ T9266]  should_fail_ex+0x512/0x640
[  397.095478][ T9266]  ? fs_reclaim_acquire+0xae/0x150
[  397.095500][ T9266]  ? security_inode_init_security+0x13f/0x390
[  397.095527][ T9266]  should_failslab+0xc2/0x120
[  397.095543][ T9266]  __kmalloc_noprof+0xd2/0x510
[  397.095574][ T9266]  security_inode_init_security+0x13f/0x390
[  397.095602][ T9266]  ? __pfx_shmem_initxattrs+0x10/0x10
[  397.095620][ T9266]  ? __pfx_security_inode_init_security+0x10/0x10
[  397.095655][ T9266]  shmem_mknod+0x22e/0x450
[  397.095678][ T9266]  vfs_create+0x4e0/0x7a0
[  397.095702][ T9266]  do_mknodat+0x3d3/0x5d0
[  397.095739][ T9266]  ? __pfx_do_mknodat+0x10/0x10
[  397.095774][ T9266]  ? getname_flags.part.0+0x1c5/0x550
[  397.095815][ T9266]  __x64_sys_mknod+0x87/0xb0
[  397.095858][ T9266]  do_syscall_64+0xcd/0x490
[  397.095907][ T9266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  397.095938][ T9266] RIP: 0033:0x7feba718e929
[  397.095961][ T9266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  397.095989][ T9266] RSP: 002b:00007feba7fbb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  397.096017][ T9266] RAX: ffffffffffffffda RBX: 00007feba73b5fa0 RCX: 00007feba718e929
[  397.096036][ T9266] RDX: 0000000000008103 RSI: 00000000000080e9 RDI: 00002000000003c0
[  397.096053][ T9266] RBP: 00007feba7210b39 R08: 0000000000000000 R09: 0000000000000000
[  397.096070][ T9266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  397.096087][ T9266] R13: 0000000000000000 R14: 00007feba73b5fa0 R15: 00007ffc33ee65b8
[  397.096128][ T9266]  </TASK>
[  397.427072][ T9269] kAFS: No cell specified
[  400.589849][ T9299] hub 8-0:1.0: USB hub found
[  400.606794][ T8413] EXT4-fs (sda1): Delayed block allocation failed for inode 2033 at logical offset 5 with max blocks 8 with error 117
[  400.717791][ T9299] hub 8-0:1.0: 1 port detected
[  401.135250][ T8413] EXT4-fs (sda1): This should not happen!! Data will be lost
[  401.135250][ T8413] 
[  403.864968][ T9311] zswap: compressor  not available
[  407.404195][ T9379] ubi0: attaching mtd0
[  407.442354][ T9379] ubi0: scanning is finished
[  407.464504][ T9379] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  407.731617][ T9386] netlink: 'syz.1.685': attribute type 11 has an invalid length.
[  407.739924][ T9386] netlink: 'syz.1.685': attribute type 11 has an invalid length.
[  407.747869][ T9386] netlink: 'syz.1.685': attribute type 11 has an invalid length.
[  407.793776][ T9385] netlink: 146 bytes leftover after parsing attributes in process `syz.1.685'.
[  407.826682][ T9388] netlink: 'syz.1.685': attribute type 11 has an invalid length.
[  407.957119][ T9388] netlink: 'syz.1.685': attribute type 11 has an invalid length.
[  408.015330][ T9388] netlink: 'syz.1.685': attribute type 11 has an invalid length.
[  408.090443][ T9379] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  408.098751][ T6395] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  408.740230][ T9393] net_ratelimit: 17 callbacks suppressed
[  408.740254][ T9393] netlink: zone id is out of range
[  408.756918][ T9393] netlink: zone id is out of range
[  408.762221][ T9393] netlink: zone id is out of range
[  408.782421][ T9393] netlink: zone id is out of range
[  408.829985][ T9393] netlink: zone id is out of range
[  408.871437][ T9393] netlink: zone id is out of range
[  409.030201][ T9409] serio: Serial port pty238
[  409.109257][ T9393] netlink: set zone limit has 8 unknown bytes
[  409.921617][ T9431] FAULT_INJECTION: forcing a failure.
[  409.921617][ T9431] name failslab, interval 1, probability 0, space 0, times 0
[  409.939178][ T9431] CPU: 0 UID: 0 PID: 9431 Comm: syz.1.695 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  409.939220][ T9431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  409.939237][ T9431] Call Trace:
[  409.939247][ T9431]  <TASK>
[  409.939258][ T9431]  dump_stack_lvl+0x16c/0x1f0
[  409.939308][ T9431]  should_fail_ex+0x512/0x640
[  409.939345][ T9431]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  409.939390][ T9431]  should_failslab+0xc2/0x120
[  409.939416][ T9431]  __kmalloc_cache_noprof+0x6a/0x3e0
[  409.939452][ T9431]  ? __asan_memset+0x23/0x50
[  409.939483][ T9431]  ? alloc_netdev_mqs+0xece/0x1570
[  409.939523][ T9431]  ? __xdp_rxq_info_reg+0x14e/0x2d0
[  409.939556][ T9431]  alloc_netdev_mqs+0xece/0x1570
[  409.939610][ T9431]  internal_dev_create+0x8a/0x520
[  409.939641][ T9431]  ovs_vport_add+0x144/0x4d0
[  409.939671][ T9431]  new_vport+0x16/0x1d0
[  409.939712][ T9431]  ovs_dp_cmd_new+0x6ba/0xe60
[  409.939779][ T9431]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  409.939833][ T9431]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  409.939871][ T9431]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  409.939924][ T9431]  genl_family_rcv_msg_doit+0x206/0x2f0
[  409.939968][ T9431]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  409.940007][ T9431]  ? trace_cap_capable+0x18d/0x200
[  409.940050][ T9431]  ? bpf_lsm_capable+0x9/0x10
[  409.940086][ T9431]  ? security_capable+0x7e/0x260
[  409.940144][ T9431]  ? ns_capable+0xd7/0x110
[  409.940179][ T9431]  genl_rcv_msg+0x55c/0x800
[  409.940224][ T9431]  ? __pfx_genl_rcv_msg+0x10/0x10
[  409.940264][ T9431]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  409.940327][ T9431]  netlink_rcv_skb+0x155/0x420
[  409.940360][ T9431]  ? __pfx_genl_rcv_msg+0x10/0x10
[  409.940401][ T9431]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  409.940457][ T9431]  ? netlink_deliver_tap+0x1ae/0xd30
[  409.940495][ T9431]  genl_rcv+0x28/0x40
[  409.940528][ T9431]  netlink_unicast+0x53d/0x7f0
[  409.940567][ T9431]  ? __pfx_netlink_unicast+0x10/0x10
[  409.940616][ T9431]  netlink_sendmsg+0x8d1/0xdd0
[  409.940659][ T9431]  ? __pfx_netlink_sendmsg+0x10/0x10
[  409.940714][ T9431]  ____sys_sendmsg+0xa98/0xc70
[  409.940760][ T9431]  ? copy_msghdr_from_user+0x10a/0x160
[  409.940805][ T9431]  ? __pfx_____sys_sendmsg+0x10/0x10
[  409.940838][ T9431]  ? preempt_schedule_thunk+0x16/0x30
[  409.940886][ T9431]  ? try_to_wake_up+0xa2f/0x1680
[  409.940927][ T9431]  ___sys_sendmsg+0x134/0x1d0
[  409.940977][ T9431]  ? __pfx____sys_sendmsg+0x10/0x10
[  409.941020][ T9431]  ? __lock_acquire+0x622/0x1c90
[  409.941127][ T9431]  __sys_sendmsg+0x16d/0x220
[  409.941175][ T9431]  ? __pfx___sys_sendmsg+0x10/0x10
[  409.941218][ T9431]  ? __x64_sys_futex+0x1e0/0x4c0
[  409.941284][ T9431]  do_syscall_64+0xcd/0x490
[  409.941336][ T9431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  409.941366][ T9431] RIP: 0033:0x7f47efd8e929
[  409.941391][ T9431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  409.941419][ T9431] RSP: 002b:00007f47f0c51038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  409.941448][ T9431] RAX: ffffffffffffffda RBX: 00007f47effb5fa0 RCX: 00007f47efd8e929
[  409.941467][ T9431] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000007
[  409.941483][ T9431] RBP: 00007f47efe10b39 R08: 0000000000000000 R09: 0000000000000000
[  409.941501][ T9431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  409.941517][ T9431] R13: 0000000000000000 R14: 00007f47effb5fa0 R15: 00007ffd630ac4f8
[  409.941558][ T9431]  </TASK>
[  410.522078][ T9437] netlink: 'syz.0.698': attribute type 2 has an invalid length.
[  412.392040][ T9460] zswap: compressor  not available
[  412.766135][ T9478] __vm_enough_memory: pid: 9478, comm: syz.3.705, bytes: 4398046511104 not enough memory for the allocation
[  413.335741][ T9488] can: request_module (can-proto-3) failed.
[  414.645297][ T9508] netlink: 16 bytes leftover after parsing attributes in process `syz.3.713'.
[  414.727672][ T9508] netlink: 93 bytes leftover after parsing attributes in process `syz.3.713'.
[  414.820037][ T6395] Bluetooth: hci3: unexpected event 0x3e length: 0 < 1
[  414.926815][ T9504] zram0: detected capacity change from 0 to 8
[  418.103180][ T9529] EXT4-fs (sda1): Delayed block allocation failed for inode 2021 at logical offset 0 with max blocks 1 with error 117
[  418.141776][ T9529] EXT4-fs (sda1): This should not happen!! Data will be lost
[  418.141776][ T9529] 
[  420.678223][ T9570] netlink: 28 bytes leftover after parsing attributes in process `syz.1.725'.
[  423.794948][ T9620] EXT4-fs error (device sda1): ext4_discard_preallocations:5601: comm syz.0.733: Error -117 reading block bitmap for 5
[  425.529539][ T9652] : renamed from gre0 (while UP)
[  426.072742][ T9655] can: request_module (can-proto-5) failed.
[  427.085956][ T9668] kAFS: No cell specified
[  428.191358][ T9683] could not allocate digest TFM handle 
[  428.356450][ T9695] Unable to find swap-space signature
[  432.393035][ T9736] FAULT_INJECTION: forcing a failure.
[  432.393035][ T9736] name failslab, interval 1, probability 0, space 0, times 0
[  432.449500][ T9736] CPU: 1 UID: 0 PID: 9736 Comm: syz.2.759 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  432.449549][ T9736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  432.449568][ T9736] Call Trace:
[  432.449578][ T9736]  <TASK>
[  432.449591][ T9736]  dump_stack_lvl+0x16c/0x1f0
[  432.449645][ T9736]  should_fail_ex+0x512/0x640
[  432.449687][ T9736]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  432.449742][ T9736]  should_failslab+0xc2/0x120
[  432.449771][ T9736]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  432.449818][ T9736]  ? __pfx_proc_create_data+0x10/0x10
[  432.449848][ T9736]  ? cache_create_net+0x2b/0x220
[  432.449902][ T9736]  kmemdup_noprof+0x29/0x60
[  432.449948][ T9736]  cache_create_net+0x2b/0x220
[  432.450000][ T9736]  nfsd_idmap_init+0x11f/0x250
[  432.450041][ T9736]  ? __pfx_nfsd_net_init+0x10/0x10
[  432.450071][ T9736]  nfsd_net_init+0x69/0x3d0
[  432.450112][ T9736]  ? __pfx_nfsd_net_init+0x10/0x10
[  432.450144][ T9736]  ops_init+0x1df/0x5f0
[  432.450179][ T9736]  setup_net+0x1ff/0x510
[  432.450205][ T9736]  ? lockdep_init_map_type+0x5c/0x280
[  432.450248][ T9736]  ? __pfx_setup_net+0x10/0x10
[  432.450281][ T9736]  ? debug_mutex_init+0x37/0x70
[  432.450317][ T9736]  copy_net_ns+0x2a6/0x5f0
[  432.450354][ T9736]  create_new_namespaces+0x3ea/0xa90
[  432.450400][ T9736]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  432.450438][ T9736]  ksys_unshare+0x45b/0xa40
[  432.450478][ T9736]  ? __pfx_ksys_unshare+0x10/0x10
[  432.450519][ T9736]  ? xfd_validate_state+0x61/0x180
[  432.450574][ T9736]  __x64_sys_unshare+0x31/0x40
[  432.450612][ T9736]  do_syscall_64+0xcd/0x490
[  432.450663][ T9736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.450694][ T9736] RIP: 0033:0x7ffb0278e929
[  432.450719][ T9736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  432.450748][ T9736] RSP: 002b:00007ffb035a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  432.450777][ T9736] RAX: ffffffffffffffda RBX: 00007ffb029b5fa0 RCX: 00007ffb0278e929
[  432.450797][ T9736] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  432.450814][ T9736] RBP: 00007ffb02810b39 R08: 0000000000000000 R09: 0000000000000000
[  432.450832][ T9736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  432.450848][ T9736] R13: 0000000000000000 R14: 00007ffb029b5fa0 R15: 00007ffff1ab8998
[  432.450889][ T9736]  </TASK>
[  440.141784][   T30] audit: type=1800 audit(4294967344.463:9): pid=9887 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.782" name="lu_gp_id" dev="configfs" ino=23815 res=0 errno=0
[  440.200161][ T9887] input: jJǸ���;9�%v����l��Q�	J86�� as /devices/virtual/input/input10
[  440.248061][ T9890] FAULT_INJECTION: forcing a failure.
[  440.248061][ T9890] name failslab, interval 1, probability 0, space 0, times 0
[  440.248107][ T9890] CPU: 1 UID: 0 PID: 9890 Comm: syz.1.784 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  440.248143][ T9890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  440.248160][ T9890] Call Trace:
[  440.248170][ T9890]  <TASK>
[  440.248182][ T9890]  dump_stack_lvl+0x16c/0x1f0
[  440.248233][ T9890]  should_fail_ex+0x512/0x640
[  440.248282][ T9890]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  440.248329][ T9890]  should_failslab+0xc2/0x120
[  440.248358][ T9890]  __kmalloc_cache_noprof+0x6a/0x3e0
[  440.248400][ T9890]  ? device_create_groups_vargs+0x8a/0x270
[  440.248443][ T9890]  device_create_groups_vargs+0x8a/0x270
[  440.248484][ T9890]  device_create+0xed/0x130
[  440.248520][ T9890]  ? __pfx_device_create+0x10/0x10
[  440.248550][ T9890]  ? do_raw_spin_lock+0x12c/0x2b0
[  440.248600][ T9890]  ? is_console_locked+0x9/0x20
[  440.248634][ T9890]  ? con_is_visible+0x65/0x150
[  440.248671][ T9890]  ? csi_J+0x54a/0xad0
[  440.248725][ T9890]  vcs_make_sysfs+0x32/0x80
[  440.248766][ T9890]  vc_allocate+0x501/0x880
[  440.248812][ T9890]  ? __pfx_vc_allocate+0x10/0x10
[  440.248875][ T9890]  con_install+0xa1/0x600
[  440.248924][ T9890]  ? __pfx_con_install+0x10/0x10
[  440.248979][ T9890]  ? __pfx_con_install+0x10/0x10
[  440.249024][ T9890]  tty_init_dev.part.0+0x9c/0x500
[  440.249057][ T9890]  tty_open+0xa50/0xf90
[  440.249096][ T9890]  ? __pfx_tty_open+0x10/0x10
[  440.249125][ T9890]  ? chrdev_open+0x10b/0x6a0
[  440.249179][ T9890]  ? __pfx_tty_open+0x10/0x10
[  440.249207][ T9890]  chrdev_open+0x231/0x6a0
[  440.249257][ T9890]  ? __pfx_apparmor_file_open+0x10/0x10
[  440.249296][ T9890]  ? __pfx_chrdev_open+0x10/0x10
[  440.249347][ T9890]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  440.249396][ T9890]  do_dentry_open+0x744/0x1c10
[  440.249442][ T9890]  ? __pfx_chrdev_open+0x10/0x10
[  440.249500][ T9890]  vfs_open+0x82/0x3f0
[  440.249541][ T9890]  path_openat+0x1de4/0x2cb0
[  440.249603][ T9890]  ? __pfx_path_openat+0x10/0x10
[  440.249652][ T9890]  ? __lock_acquire+0xb8a/0x1c90
[  440.249698][ T9890]  do_filp_open+0x20b/0x470
[  440.249743][ T9890]  ? __pfx_do_filp_open+0x10/0x10
[  440.249826][ T9890]  ? alloc_fd+0x471/0x7d0
[  440.249883][ T9890]  do_sys_openat2+0x11b/0x1d0
[  440.249917][ T9890]  ? __pfx_do_sys_openat2+0x10/0x10
[  440.249972][ T9890]  __x64_sys_openat+0x174/0x210
[  440.250005][ T9890]  ? __pfx___x64_sys_openat+0x10/0x10
[  440.250061][ T9890]  do_syscall_64+0xcd/0x490
[  440.250113][ T9890]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  440.250144][ T9890] RIP: 0033:0x7f47efd8e929
[  440.250168][ T9890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  440.250198][ T9890] RSP: 002b:00007f47f0c51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  440.250229][ T9890] RAX: ffffffffffffffda RBX: 00007f47effb5fa0 RCX: 00007f47efd8e929
[  440.250257][ T9890] RDX: 0000000000040002 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  440.250276][ T9890] RBP: 00007f47efe10b39 R08: 0000000000000000 R09: 0000000000000000
[  440.250294][ T9890] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  440.250313][ T9890] R13: 0000000000000000 R14: 00007f47effb5fa0 R15: 00007ffd630ac4f8
[  440.250356][ T9890]  </TASK>
[  441.778975][ T9890] tty tty26: ldisc open failed (-12), clearing slot 25
[  443.750904][ T9923] zram0: detected capacity change from 8 to 0
[  445.242945][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  445.250039][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  445.649129][ T9973] random: crng reseeded on system resumption
[  446.820946][ T9979] netlink: 28 bytes leftover after parsing attributes in process `syz.1.802'.
[  447.605341][   T30] audit: type=1800 audit(4294967355.924:10): pid=10008 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.809" name="lu_gp_id" dev="configfs" ino=24633 res=0 errno=0
[  448.372048][T10019] netlink: 'syz.0.810': attribute type 1 has an invalid length.
[  449.406948][T10033] netlink: 28 bytes leftover after parsing attributes in process `syz.0.814'.
[  449.796296][T10033] team0: Port device team_slave_0 removed
[  452.881441][T10084] FAULT_INJECTION: forcing a failure.
[  452.881441][T10084] name failslab, interval 1, probability 0, space 0, times 0
[  452.939216][T10084] CPU: 0 UID: 0 PID: 10084 Comm: syz.0.826 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  452.939258][T10084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  452.939274][T10084] Call Trace:
[  452.939283][T10084]  <TASK>
[  452.939294][T10084]  dump_stack_lvl+0x16c/0x1f0
[  452.939343][T10084]  should_fail_ex+0x512/0x640
[  452.939382][T10084]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  452.939431][T10084]  should_failslab+0xc2/0x120
[  452.939459][T10084]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  452.939501][T10084]  ? __proc_create+0xc3/0x8c0
[  452.939544][T10084]  ? __proc_create+0x2ce/0x8c0
[  452.939595][T10084]  __proc_create+0x2ce/0x8c0
[  452.939642][T10084]  ? __pfx___proc_create+0x10/0x10
[  452.939708][T10084]  _proc_mkdir+0xb9/0x200
[  452.939754][T10084]  ? __pfx__proc_mkdir+0x10/0x10
[  452.939824][T10084]  nfs_fs_proc_net_init+0x9b/0x1e0
[  452.939867][T10084]  nfs_net_init+0x130/0x300
[  452.939905][T10084]  ? __pfx_nfs_net_init+0x10/0x10
[  452.939938][T10084]  ops_init+0x1df/0x5f0
[  452.939972][T10084]  setup_net+0x1ff/0x510
[  452.939998][T10084]  ? lockdep_init_map_type+0x5c/0x280
[  452.940039][T10084]  ? __pfx_setup_net+0x10/0x10
[  452.940070][T10084]  ? debug_mutex_init+0x37/0x70
[  452.940111][T10084]  copy_net_ns+0x2a6/0x5f0
[  452.940148][T10084]  create_new_namespaces+0x3ea/0xa90
[  452.940194][T10084]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  452.940232][T10084]  ksys_unshare+0x45b/0xa40
[  452.940272][T10084]  ? __pfx_ksys_unshare+0x10/0x10
[  452.940312][T10084]  ? syscall_user_dispatch+0x78/0x140
[  452.940369][T10084]  __x64_sys_unshare+0x31/0x40
[  452.940407][T10084]  do_syscall_64+0xcd/0x490
[  452.940455][T10084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.940486][T10084] RIP: 0033:0x7feba718e929
[  452.940510][T10084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  452.940538][T10084] RSP: 002b:00007feba7f9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  452.940567][T10084] RAX: ffffffffffffffda RBX: 00007feba73b6080 RCX: 00007feba718e929
[  452.940587][T10084] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  452.940605][T10084] RBP: 00007feba7210b39 R08: 0000000000000000 R09: 0000000000000000
[  452.940622][T10084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  452.940640][T10084] R13: 0000000000000000 R14: 00007feba73b6080 R15: 00007ffc33ee65b8
[  452.940680][T10084]  </TASK>
[  453.325616][T10084] ------------[ cut here ]------------
[  453.331223][T10084] remove_proc_entry: removing non-empty directory 'net/rpc', leaking at least 'nfs'
[  453.408995][T10084] WARNING: CPU: 1 PID: 10084 at fs/proc/generic.c:727 remove_proc_entry+0x45e/0x530
[  453.418581][T10084] Modules linked in:
[  453.422756][T10084] CPU: 1 UID: 0 PID: 10084 Comm: syz.0.826 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  453.435480][T10084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  453.446239][T10084] RIP: 0010:remove_proc_entry+0x45e/0x530
[  453.452006][T10084] Code: 3c 02 00 0f 85 85 00 00 00 48 8b 93 d8 00 00 00 4d 89 f0 4c 89 e9 48 c7 c6 00 bc c2 8b 48 c7 c7 20 bb c2 8b e8 a3 69 1d ff 90 <0f> 0b 90 90 e9 5f fe ff ff e8 54 56 5e ff 90 48 b8 00 00 00 00 00
[  453.472410][T10084] RSP: 0018:ffffc900030d7b08 EFLAGS: 00010282
[  453.480793][T10084] RAX: 0000000000000000 RBX: ffff8880323eedc0 RCX: ffffffff817aa1f8
[  453.489311][T10084] RDX: ffff88803171da00 RSI: ffffffff817aa205 RDI: 0000000000000001
[  453.498037][T10084] RBP: ffff88802f0e7200 R08: 0000000000000001 R09: 0000000000000000
[  453.506560][T10084] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88802f0e7140
[  453.515112][T10084] R13: ffff88802f0e7224 R14: ffff88807947e364 R15: dffffc0000000000
[  453.523954][T10084] FS:  00007feba7f9a6c0(0000) GS:ffff88812485f000(0000) knlGS:0000000000000000
[  453.534646][T10084] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  453.541674][T10084] CR2: 00007f47f0ae56c0 CR3: 0000000035b4e000 CR4: 00000000003526f0
[  453.550358][T10084] Call Trace:
[  453.553680][T10084]  <TASK>
[  453.557333][T10084]  ? __pfx_remove_proc_entry+0x10/0x10
[  453.563261][T10084]  ? cache_destroy_net+0x31/0x50
[  453.568798][T10084]  ? sunrpc_exit_net+0x37/0x90
[  453.574716][T10084]  sunrpc_exit_net+0x46/0x90
[  453.579936][T10084]  ? __pfx_sunrpc_exit_net+0x10/0x10
[  453.585350][T10084]  ops_undo_list+0x2eb/0xab0
[  453.590000][T10084]  ? __pfx_ops_undo_list+0x10/0x10
[  453.595148][T10084]  ? ops_init+0x2fa/0x5f0
[  453.599574][T10084]  setup_net+0x2e1/0x510
[  453.603858][T10084]  ? __pfx_setup_net+0x10/0x10
[  453.608684][T10084]  ? debug_mutex_init+0x37/0x70
[  453.613583][T10084]  copy_net_ns+0x2a6/0x5f0
[  453.618056][T10084]  create_new_namespaces+0x3ea/0xa90
[  453.623358][T10084]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  453.629047][T10084]  ksys_unshare+0x45b/0xa40
[  453.633565][T10084]  ? __pfx_ksys_unshare+0x10/0x10
[  453.638701][T10084]  ? syscall_user_dispatch+0x78/0x140
[  453.644175][T10084]  __x64_sys_unshare+0x31/0x40
[  453.649038][T10084]  do_syscall_64+0xcd/0x490
[  453.653616][T10084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.659638][T10084] RIP: 0033:0x7feba718e929
[  453.664136][T10084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  453.684094][T10084] RSP: 002b:00007feba7f9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  453.692909][T10084] RAX: ffffffffffffffda RBX: 00007feba73b6080 RCX: 00007feba718e929
[  453.700972][T10084] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  453.708982][T10084] RBP: 00007feba7210b39 R08: 0000000000000000 R09: 0000000000000000
[  453.717103][T10084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  453.725096][T10084] R13: 0000000000000000 R14: 00007feba73b6080 R15: 00007ffc33ee65b8
[  453.733147][T10084]  </TASK>
[  453.736224][T10084] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  453.743514][T10084] CPU: 1 UID: 0 PID: 10084 Comm: syz.0.826 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(full) 
[  453.755515][T10084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  453.765573][T10084] Call Trace:
[  453.768855][T10084]  <TASK>
[  453.771816][T10084]  dump_stack_lvl+0x3d/0x1f0
[  453.776445][T10084]  panic+0x71c/0x800
[  453.780391][T10084]  ? __pfx_panic+0x10/0x10
[  453.784850][T10084]  ? show_trace_log_lvl+0x29b/0x3e0
[  453.790128][T10084]  ? check_panic_on_warn+0x1f/0xb0
[  453.795304][T10084]  ? remove_proc_entry+0x45e/0x530
[  453.800447][T10084]  check_panic_on_warn+0xab/0xb0
[  453.805414][T10084]  __warn+0xf6/0x3c0
[  453.809367][T10084]  ? remove_proc_entry+0x45e/0x530
[  453.814571][T10084]  report_bug+0x3c3/0x580
[  453.818933][T10084]  ? remove_proc_entry+0x45e/0x530
[  453.824057][T10084]  handle_bug+0x184/0x210
[  453.828481][T10084]  exc_invalid_op+0x17/0x50
[  453.833067][T10084]  asm_exc_invalid_op+0x1a/0x20
[  453.837932][T10084] RIP: 0010:remove_proc_entry+0x45e/0x530
[  453.843677][T10084] Code: 3c 02 00 0f 85 85 00 00 00 48 8b 93 d8 00 00 00 4d 89 f0 4c 89 e9 48 c7 c6 00 bc c2 8b 48 c7 c7 20 bb c2 8b e8 a3 69 1d ff 90 <0f> 0b 90 90 e9 5f fe ff ff e8 54 56 5e ff 90 48 b8 00 00 00 00 00
[  453.863311][T10084] RSP: 0018:ffffc900030d7b08 EFLAGS: 00010282
[  453.869391][T10084] RAX: 0000000000000000 RBX: ffff8880323eedc0 RCX: ffffffff817aa1f8
[  453.877367][T10084] RDX: ffff88803171da00 RSI: ffffffff817aa205 RDI: 0000000000000001
[  453.885344][T10084] RBP: ffff88802f0e7200 R08: 0000000000000001 R09: 0000000000000000
[  453.893319][T10084] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88802f0e7140
[  453.901296][T10084] R13: ffff88802f0e7224 R14: ffff88807947e364 R15: dffffc0000000000
[  453.909286][T10084]  ? __warn_printk+0x198/0x350
[  453.914067][T10084]  ? __warn_printk+0x1a5/0x350
[  453.918848][T10084]  ? remove_proc_entry+0x45d/0x530
[  453.924010][T10084]  ? __pfx_remove_proc_entry+0x10/0x10
[  453.929481][T10084]  ? cache_destroy_net+0x31/0x50
[  453.934435][T10084]  ? sunrpc_exit_net+0x37/0x90
[  453.939234][T10084]  sunrpc_exit_net+0x46/0x90
[  453.943839][T10084]  ? __pfx_sunrpc_exit_net+0x10/0x10
[  453.949186][T10084]  ops_undo_list+0x2eb/0xab0
[  453.953817][T10084]  ? __pfx_ops_undo_list+0x10/0x10
[  453.958940][T10084]  ? ops_init+0x2fa/0x5f0
[  453.963277][T10084]  setup_net+0x2e1/0x510
[  453.967538][T10084]  ? __pfx_setup_net+0x10/0x10
[  453.972321][T10084]  ? debug_mutex_init+0x37/0x70
[  453.977189][T10084]  copy_net_ns+0x2a6/0x5f0
[  453.981648][T10084]  create_new_namespaces+0x3ea/0xa90
[  453.986992][T10084]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  453.992651][T10084]  ksys_unshare+0x45b/0xa40
[  453.997170][T10084]  ? __pfx_ksys_unshare+0x10/0x10
[  454.002212][T10084]  ? syscall_user_dispatch+0x78/0x140
[  454.007636][T10084]  __x64_sys_unshare+0x31/0x40
[  454.012444][T10084]  do_syscall_64+0xcd/0x490
[  454.016969][T10084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  454.022893][T10084] RIP: 0033:0x7feba718e929
[  454.027316][T10084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  454.047052][T10084] RSP: 002b:00007feba7f9a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  454.055488][T10084] RAX: ffffffffffffffda RBX: 00007feba73b6080 RCX: 00007feba718e929
[  454.063469][T10084] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  454.071443][T10084] RBP: 00007feba7210b39 R08: 0000000000000000 R09: 0000000000000000
[  454.079421][T10084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  454.087400][T10084] R13: 0000000000000000 R14: 00007feba73b6080 R15: 00007ffc33ee65b8
[  454.095391][T10084]  </TASK>
[  454.098704][T10084] Kernel Offset: disabled
[  454.103052][T10084] Rebooting in 86400 seconds..