last executing test programs:

5m9.802027831s ago: executing program 1 (id=1098):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x10, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x80000000, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x1, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x7, 0x6]}, 0x1fe, 0x81)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
close_range$auto(0x0, 0xfffff004, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r1 = socket(0xa, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/jbd2/sda1-8/info\x00', 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bond0\x00', <r4=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x4, 0xf, r2, @relative_fd, 0xe600}, 0xf)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0xc)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
poll$auto(&(0x7f0000000180)={<r6=>r5, 0xa0b, 0x9816}, 0x7f, 0x0)
ioctl$auto_VHOST_SET_OWNER(r6, 0xaf01, 0x0)
ioctl$auto(0x3, 0x4008af03, 0x0)
capset$auto(0x0, 0x0)
fchdir$auto(r5)
ioctl$auto_VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r7 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r7, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

5m7.132304969s ago: executing program 1 (id=1102):
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c72da808bf8d5feacf8510"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c001)
write$auto(r1, &(0x7f0000000000)='\x13\x00', 0x2fe)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xfffffeff, 0x2, 0x6, 0x7, 0x8, <r2=>0xffffffffffffffff, [0x1], {0x6, 0x6, 0xf, 0x29f, 0x8, 0x83, 0x101, 0x17f, 0x2}, {0xff, 0x1, 0x52, 0x5, 0x1, 0x40, 0x4, 0x8, 0x100000004}})
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/fs/lockd/nlm_end_grace\x00', 0x8282, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/pcm0c/sub6/sw_params\x00', 0x292202, 0x0)
r4 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000200), r2)
sendmsg$auto_NFC_CMD_ENABLE_SE(r2, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x44, r4, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x8}, @NFC_ATTR_VENDOR_SUBCMD={0x8, 0x1e, 0xb94c}, @NFC_ATTR_RF_MODE={0x5, 0xb, 0x7}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0x4}, @NFC_ATTR_SE_INDEX={0x8}, @NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x7}]}, 0x44}, 0x1, 0x0, 0x0, 0x400c084}, 0x20000040)
read$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000100)=""/203, 0xcb)
write$auto(0x3, 0x0, 0x7)

5m5.259878681s ago: executing program 1 (id=1105):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0xa, 0x1, 0x84)
r1 = clone3$auto(&(0x7f0000000100)={0x2, 0x2, 0x6, 0x6, 0x5, 0x9, 0x401, 0x5, 0x8, 0x0, 0x5}, 0x7)
mq_notify$auto(r0, &(0x7f0000000180)={@sival_ptr=&(0x7f00000000c0)="d31c", @raw, 0xf5a4, @_tid=r1})
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100cda4429629bd7100f9db5f2502"], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80)
r4 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x3, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x8, 0x4008)

4m56.404447384s ago: executing program 1 (id=1123):
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
r0 = getpid()
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x2, 0x1, 0x106)
bind$auto(r1, &(0x7f0000000000)=@in={0x2, 0x3, @multicast1}, 0x6a)
connect$auto(r1, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x23}}, 0x54)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto(0x3, 0x0, 0xfffffdf2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/lockd/parameters/nlm_tcpport\x00', 0xc2481, 0x0)
setresuid$auto(0x2, 0x7, 0x0)
ioctl$auto(0x3, 0x400454ca, 0x38)

4m52.902999154s ago: executing program 1 (id=1132):
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
socket(0xa, 0x1, 0x100)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b)
setsockopt$auto(0x400000000000003, 0x29, 0x30, 0x0, 0x56b)

4m51.008760819s ago: executing program 1 (id=1135):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
setfsgid$auto(0x9)
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4)
lstat$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0xffffff6c, 0x4, 0x8000000, 0x0)
r0 = socket(0x11, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8955, 0x0)
close_range$auto(0x2, 0x8, 0x0)
bpf$auto(0x0, 0x0, 0xa3)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(0xffffffffffffffff, 0x1, r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000000), r2)
sendmsg$auto_NL802154_CMD_GET_INTERFACE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000840)={0x14, r3, 0x305, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004010}, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a1842, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x1008000)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)

4m35.284052914s ago: executing program 32 (id=1135):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
setfsgid$auto(0x9)
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4)
lstat$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0xffffff6c, 0x4, 0x8000000, 0x0)
r0 = socket(0x11, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8955, 0x0)
close_range$auto(0x2, 0x8, 0x0)
bpf$auto(0x0, 0x0, 0xa3)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(0xffffffffffffffff, 0x1, r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000000), r2)
sendmsg$auto_NL802154_CMD_GET_INTERFACE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000840)={0x14, r3, 0x305, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004010}, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a1842, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x1008000)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)

40.51122839s ago: executing program 3 (id=1957):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x400)
ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000080))
ioctl$auto(0x3, 0x4602, 0xfffffffffffff4e0)

39.77984027s ago: executing program 3 (id=1960):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
write$auto(0x3, 0x0, 0xfdef)
unshare$auto(0x9)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_TIOCVHANGUP2(0xffffffffffffffff, 0x5437, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x8081, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0)
mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
pread64$auto(0xffffffffffffffff, 0x0, 0xf469, 0xbc3ab41)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
fcntl$auto(0x8000000000000001, 0x7, 0x8)
rt_sigaction$auto(0x1, 0x0, 0x0, 0x8)
sendmmsg$auto(r0, 0x0, 0x7, 0x4008)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
socket(0x1e, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)

38.277786533s ago: executing program 3 (id=1965):
timer_create$auto(0x9, 0x0, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/lockd/parameters/nlm_timeout\x00', 0x101042, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000640)={'wlan1\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_DEL_PMK(r1, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)={&(0x7f0000000c40)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010026bd73004edbdf258e00000008000300", @ANYRES32=r3], 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
sendmsg$auto_NL80211_CMD_TDLS_MGMT(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)={0x1c, r2, 0x800, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x40040)
write$auto(r0, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4)
timer_settime$auto(0x0, 0x9, &(0x7f00000000c0)={{0x400000000f, 0x10007}, {0x9}}, 0x0)
timer_gettime$auto(0x0, 0x0)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r4, 0x10f, 0x86, 0x0, 0x0)
r5 = socket(0x2b, 0x1, 0x1)
setsockopt$auto(r5, 0x29, 0x20, 0x0, 0x8002)

37.73402917s ago: executing program 3 (id=1966):
mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000)
close_range$auto(0x2, 0x8, 0x0)
sysfs$auto(0x2, 0x100000000000027, 0x0)
fsopen$auto(0x0, 0x1)
socket(0x10, 0x80000, 0x8)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x8, 0x3, 0x8, 0xd, 0xe13, 0x81, 0x4, 0x2000000000000002, 0x0, 0x9, 0x1, 0x2, 0x80000001, 0x8627, 0x9, 0x20000800001, 0x3, 0x5, 0x7, 0x6, 0x7, 0x0, 0xffffffee, 0x2a17, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, [0x18, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x27, 0x0, 0x0, 0xf6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x9, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/kernel/watchdog_cpumask\x00', 0x141241, 0x0)
write$auto(0x3, 0x0, 0xfdef)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0xc090)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/sound/ctl-led/speaker/mode\x00', 0x32001, 0x0)
clone$auto(0x8000000000000001, 0x5, &(0x7f0000000100)=0x3, &(0x7f00000003c0)=0x5, 0x5)
openat$auto_clk_summary_fops_(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/clk/clk_summary\x00', 0x202002, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x403c6f2b, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x140146f2c, 0x0)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000827bd7000fedbdf250300000008000200", @ANYRES32=0x0, @ANYBLOB="0600070040800000080002003445c0453be1fe959df0960229691919a794b1ac2e6abf4e1a848345056219a6f280a8e87decdba11803791dc5c9cb2c4ca715792c09bc9681d2a28b5dec086250d8bc40d7ce470f567894a2363bfd", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a0001000180c200000100000a000500aaaaaaaaaabb00000600060044000000060007000600000008000400ff010000"], 0x68}, 0x1, 0x0, 0x0, 0x4040080}, 0x2000c010)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0xb6081, 0x0)
getdents$auto(0xffffffffffffffff, 0x0, 0xa2b0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

36.210301261s ago: executing program 3 (id=1973):
r0 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$auto_virtual_ncidev_fops_virtual_ncidev(0xffffffffffffff9c, &(0x7f0000000080), 0x8000, 0x0)
ioctl$auto_XFS_IOC_ALLOCSP64(0xffffffffffffffff, 0x40305824, &(0x7f00000000c0)={0xa, 0x5, 0x800, 0x3ff, 0x5db, <r2=>0x0})
r3 = clone$auto(0x3, 0x800000000000, &(0x7f0000000100)=0x83, &(0x7f0000000140)=0x6, 0x800)
statx$auto(0xffffffffffffff9c, &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x37, 0x1514, &(0x7f0000001080)={0x9, 0x7fffffff, 0x101, 0x4, <r4=>0xee00, 0xee00, 0x7, 0x401, 0xfffffffffffffff7, 0x3, 0x267, 0xffffffffffffffff, {0x4f2, 0x40}, {0x9, 0x7fffffff}, {0x0, 0x5}, {0x3, 0x1}, 0x4, 0x8, 0x4, 0x7, 0x7, 0x0, 0x2, 0x7fffffff, 0x80000000, 0x7, 0x0, 0x8, [0x0, 0x8, 0x6, 0x2, 0x6, 0x6, 0x8001, 0xa4da, 0x40]})
sendmsg$auto_TIPC_NL_NET_GET(0xffffffffffffffff, &(0x7f0000001600)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000015c0)={&(0x7f0000001180)={0x430, r0, 0x722, 0x70bd29, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x180, 0x2, 0x0, 0x1, [@generic="c603353fbe5f64aafcc56997554ca283def7c5ee26343e5159483f4a186c47a851e1c903041b486caca5ff3f860448c3eb145d2ee896b2728b5bd9b7645dbbcf8e6d0eec8bf193c2144894cca1838a48f123df7b4a73ac1039841626ca763590eb88751117bc57022cd8048233cd27e8a4", @generic="6ab3a2ed5700d73cb4288d5159ee3a4cc1290ed77e559c2679eee6386f7a260d03c60a4cd9a1d499f84d01ab248de3fc1e42e06c24889fd689308b4e5b14ec89e1dd354aae6de8b0745cc834b37ec965a9d57d96d3b73da3233f6e9e467d15ffd849f7b03c7aee43ce97c4f3e1e2ff9e9bee39687bf8c147b60f36a72315f5d3675b07e1f372c4362f4061c924faa5d111d07b2e388d14e21d5898b083433cfbd289d8a485cb34a9d29a26ef616faa8560b85c748b", @typed={0x14, 0x10c, 0x0, 0x0, @ipv6=@private0}, @typed={0x8, 0x6, 0x0, 0x0, @fd=r1}, @generic="82ef650e30602093ba57b5d301bfe5b817c66a193a9f42231bcbe482831f90a1e45780c8973d8ff5d5ad6d34fe1776638e6b70813da7502da9c5"]}, @TIPC_NLA_LINK={0x29b, 0x4, 0x0, 0x1, [@generic="80f02fca6466e74571cddad0a3407c189aa3b64b0558fb464f50036a6c6ddde7678e8c96ae5d67023e13c61f0ae144dce8ada02d62746710257567476256e8db121abbe093d168b326b1e2e4db1c72ef08043567ca6221cf79e0da7bfa243f63cc602262d302ee6dd640e9c42cfe6e6334f3ace7de1d5e1f1801c9aa125d974c62369762cb24b5c4", @generic="afaeef83bf271b42ca0ac0dc70cd5586dddc78d78c3f0ed22c913f983661a68f86f07a4ae5524f0c4cc8ede8d2397eccdfa2da4598372379ff3c24cd4662b1e46bf5d0d2d83c07910e58e581", @typed={0x8, 0x39, 0x0, 0x0, @pid=r2}, @typed={0x8, 0x4d, 0x0, 0x0, @pid=r3}, @typed={0x4, 0xd2}, @generic="fe7d61caf9522b5ab9df6c7a31fdbb86afb66b3d09af59f5ae5e40115a4cfe0399fbc89358ae7e77c08ccf4a0b8b973115afe3bffc276065a78308f596989d615000ba8bd1d4dedfe1238e0e553d882a9d325156eb0f23ad0a5e775f06be01d69ec08d9c75b5f64186130091698783f9b5b17925b31930466ebefaa2b5ad056cb7bd63f0cfd4fc4378209fcf3b5669372a7aa47262f7f37e026ae199", @generic="ea7550d8fb5aabf91e3a2374e915b1f64796c67530a1e4ca71092bbbf5de8030f6cf9bedfa02653f599d61686e26b4b2d8d4944eca3c6a59b4a89c9805bbddc3cc6b80d261c96e76c5ee464e9585c6e3d127c971d94dcc052641d98005b4f87681ae4d8e7a421d4e28c462b1b0c33e5e03b886fd51fac4b79242ff51395401a1fc03c8500ef454b5b1f0f4ae9014c4b96ce081625620ee5ddbdec2cae3112b957876f1979060298ad4ccb8a87d5cdefaf3", @nested={0x55, 0x23, 0x0, 0x1, [@nested={0x4, 0x79}, @generic="82b82615018cedbed889f82ff4e9407a2db4816818e56dd29bf74da58dd7fc6c5fc06204031f998832a020f93c7d2c1cea0558baeaa1bfb42d", @nested={0x4, 0x14a}, @typed={0xc, 0x48, 0x0, 0x0, @u64=0xde6}, @nested={0x4, 0xfc}]}, @generic="a164", @typed={0x8, 0x91, 0x0, 0x0, @uid=r4}]}]}, 0x430}, 0x1, 0x0, 0x0, 0x4010}, 0x50)
sendfile$auto(r1, r1, &(0x7f0000001640), 0xfffffffffffffc00)
r5 = bpf$auto_BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000001680)=@raw_tracepoint={0xfffffffffffffffd, <r6=>r1, 0x0, 0x2}, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001780), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000002b80)={&(0x7f0000001740), 0xc, &(0x7f0000002b40)={&(0x7f00000017c0)={0x1344, r7, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NL80211_ATTR_MNTR_FLAGS={0x1004, 0x17, "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"}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x7f}, @NL80211_ATTR_COLOR_CHANGE_COUNT={0x5}, @NL80211_ATTR_VIF_RADIO_MASK={0x8, 0x14d, 0x5}, @NL80211_ATTR_SCAN_SUPP_RATES={0x312, 0x7d, 0x0, 0x1, [@generic="eabc0aa3c344fd06d3aba52a9a55d9991f9203839931dc28b54918cd798279af7961d72a70b7c94e867a49416e9131a08eecdf92765109a03fd67400f4560673b334f7f368d27b1338ec788cd87d080d60e6db5df6a5101cb6e60d5c9533a7654afaf30873e5aeec76045e74cadca1ea3ab1d6371f524715aa8d", @typed={0x8, 0x15, 0x0, 0x0, @ipv4=@local}, @nested={0x28c, 0x7b, 0x0, 0x1, [@nested={0x4, 0x1f}, @generic="8220724b403035ef3eb212b3263ccd14dd38196a27b85ab0a158dae11a8d9a4e171cc0230e73a3f2b1bf5677fa68547a965228ee8b42e585dcd5baa45e9395a8bde2e189eca549489289796d9298f64a4b49a9bc7fdbfbcb7ce758fb69bff249706dc8d37eecf97a65c235e15cb5731505293064d045f75e7cf0b30cd03a19070e7643f6a36aa6959159c9df984c83c21f147b536f3f6d73ecffc1b423a0aee89e8dc73515a668a3d2b305e29dc5e25496cd817cd15226da41e0f8ef4edb9a7edefa12c83567106938aa5a44061800324a10bd6e9b59e9de7524752a5027ae148566353ccfe906c2ad70888262", @typed={0x8, 0xa6, 0x0, 0x0, @pid=r2}, @generic="7dfe7422fdcc58d66e46571c2c2278f138c42d6490fe6ddf8b841333ba478eeb206a6ae2c8d6f0a93835da749a1d614edb102d6d7a44d19a3c7acfc357e02b6aaa5cd729ae4318f6163b9e6c5b5e799d", @nested={0x4, 0x8d}, @typed={0x4, 0xab}, @generic="56dea8490ff94697b0d4309e5b55561f52f29f29cc582b4d4217cd31a8321878ea6c7cd284ab23809694bb80a5a1556a1e9fd6a8aa935da4e2214b7ee54277", @generic="ff77201fe9517280cc5acf8618daca874f7df8507496ba920ee0df1d170fd73b7e7f7fdde2ba2309be68ef2ba302d90bf515a22b4c065516b83c06418ad770d57ca55d06b60377fb35972c43a69e50cb9cf470090b4553274e64ba2065f68d1a2b090b28ee0a16aba2171f2becd6e6b0a468ef7238bb2d6e4de5907fae3e677f147058c14221e9cae9a5b6aeba9dc76b2cd6f9363e86e9caf77385ebc21221bf2a5d963aed7d12b8afee49e19a10f84ea801406b6ad3adeee49f17268c51aa2b1f29f1a7f38a959e8b25a69d70056265514c3cc1b99d0eaa3c8519f2a87f0edd3585afa82ee6f2a1aa63d96515f901d712c61a17359ded29"]}]}]}, 0x1344}, 0x1, 0x0, 0x0, 0x4042}, 0x24000000)
getsockopt$auto_SO_SNDTIMEO_OLD(r6, 0xc56a, 0x15, &(0x7f0000002bc0)='/dev/virtual_nci\x00', &(0x7f0000002c00)=0x3)
r8 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000002c80), r6)
sendmsg$auto_BATADV_CMD_TP_METER(r5, &(0x7f0000002d40)={&(0x7f0000002c40)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000002d00)={&(0x7f0000002cc0)={0x38, r8, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8}, @BATADV_ATTR_ROUTER={0xa}, @BATADV_ATTR_THROUGHPUT={0x8, 0x1a, 0xf}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x5}]}, 0x38}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)
r9 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000002dc0), r5)
sendmsg$auto_NCSI_CMD_SET_CHANNEL_MASK(r5, &(0x7f0000005240)={&(0x7f0000002d80)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000005200)={&(0x7f0000002e00)={0x23cc, r9, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@NCSI_ATTR_PACKAGE_ID={0x8, 0x3, 0x10001}, @NCSI_ATTR_PACKAGE_LIST={0x50, 0x2, 0x0, 0x1, [@typed={0x8, 0x108, 0x0, 0x0, @ipv4=@private=0xa010100}, @nested={0x22, 0x99, 0x0, 0x1, [@typed={0x14, 0x118, 0x0, 0x0, @ipv6=@empty}, @generic="0331ee65f5df", @nested={0x4, 0xb3}]}, @nested={0xc, 0x144, 0x0, 0x1, [@typed={0x8, 0x38, 0x0, 0x0, @fd=r1}]}, @typed={0x14, 0x9f, 0x0, 0x0, @ipv6=@mcast2}]}, @NCSI_ATTR_PACKAGE_LIST={0x2044, 0x2, 0x0, 0x1, [@nested={0x1024, 0x45, 0x0, 0x1, [@nested={0x4, 0x133}, @nested={0x4, 0x146}, @typed={0x8, 0x5, 0x0, 0x0, @pid=r3}, @nested={0x4, 0x5d}, @typed={0xa, 0x57, 0x0, 0x0, @str='!\xf7[}}\x00'}, @generic="d3b21406d480c4cc63da48cbf6dbb24dc81fa476bedf774504fd5312000fe2c4cf19a7dc245d33c539abdd41ad76d0fe4cb75cbcc9f34eafef57419241ed5fa5d9cb5c5ee6fe644588087396bec4819522b28a23d022334d46eb77880a7219ce68aae8afbeeb2960439a9354dc19851fd0285fae6f9c3e504a040311f86a6f2a91b5acd62c3d2fe886833d4503e071647441ceecb424ead395db6ffa6656da49674204d57ff76c0807edce7ea0fc39fd661b709bd25a1043bef359dc3d662e05ef23e651b4fc72f2df674e4ddc767cb07b8a546cea2e646a6bcf9c56af6c59615813500198b3a84fb0c20d0cc25d009c203ae3a125647c06df420bd5fadb35dc25f6dca5f0be88f1d0ee8db33bf6595f93859c193a7783aeaffcf5c08ab95dedc00cf2ecc5dba31a8f6f38fc578218700b34b056c2a2f42ebf4f90c1bce4dfeb3152e8276015f2879371dbb293115008af9a4cb5d34ea71f285e70351d0381784b8f5bbdf8ff0705b48205d5c66652bf3d89a1d6959e93558e46e18a106a0d7b386b07881379d4e7d83f7d8444c74b044869b3e043fe3f4c990a1f429c3a6ce9011a0037711321f4b00ded936b337e19c74353011a3f23e10f0a1fbce496dbb96a8bf66f4efdfe76d5cb895efb1bbb22f827417844176a0388a65c5189bb3b1550814dd7ac5beadac46c341b1f32b9843190a41e42eff0a532313c6bcaee4ff592066df1d12a5b18b07c4a661f06d8d2e0587809e2a32d1990d48b6862a5966f72d7cd40b07dfa65b5aaa4e774c8fc5e07150bea3fd36056e87cdc4db29219c4299f9f9c1b615d916b423de57ab4c0a60d1a5b92ee3af91d041e93afef30d524bbc4a02135981a0bf9702a6610cf514a97ef061a9d6f440b02079406e4a82b21d9e565c634c864cd006c888f00e06859329528d07b6128c43f19d1be71a36d24d0a5c79adea843c8540da0de061ed08e9c8c3dd15aa56168df2895f7068502e7c4aff211ec449f667ca25ffcd66ab5ace1c939650b8d4e487bd8dc81c96a454dd7a4fe6db67300f187c6ec5f31fb1fb0571e6e01fc972f7fb634679b71f97b21c636662315aff7f89301b0dc6703ecb61003a1404be16d1a0c095987cd4e0cc7f5c7aa2c0655960c81df2268dfde5611f9c744b86e15e7653552015453ce2954715816a49de8221119f5899fabb22f39ff0c41c40197673dd4761837c0b091e69deac04c50762cc90c91d1cea6488f69aa58ddda98b946ca07ef31b51f6dbd11578adccbf5408ad47b3b03eb89fd183655893b276928f7231d912d4573e0cc99ab1bbc89e66de9bc351bcc64cfc2ac1dbe1d5a9ae886c76b26c543bee188961b1ef84a36d061aa15eae5fd5c5e58453f70658688af809a2ead5d2d7066e3e5ee17e9514ddfe0742687f85c2049156f8db68a84426bf6c09afba708899a9ee421ca5756df151d8ce08da3c8d3cff01343651937816338900702b2be957243bd57410772ef3d495843e5956854a2887004ef3640ee4471581eb3dd30ac231bf4a792469ef11359efacd2696d20860d525ae4167759938e8d55425561548efba7c1406dfe12ef5db018b91edd383e9982713f15f3a2ef7d90bd9e97f934743cb8024177998d57931efc74acd6a57d1bccc42662741b9e569772515789b67ea3c242d6f5265789c6b963665a77a8f93486d9b407adaac3df8beddac8cabc94a5e768e15f3e90320391c1dc512b538d32d32e0b2412e7a5156dad1c7eece204897a1e25d62bbb51144e9b9b35ec2d50cf3d178340b9cdae07a4b44059b7cec4b7393f327d2562eaafbe14a89c850fa76a2d81ad0729b18476856b08229bce58d1d7d7f3582b24c6039f0daa62af94ff28ef9f207b6d7e7c8b92d31bc21732bfe8d548a8eda3f6624462dfe59f3c62a743cb4bc501489b8942d9a5e13905df1a022f19914b3a8c088b862056f232c9587bb1b8c5e1ad49f45c78bd2113a6aa874a607738e941faf7858a119cc1ffd813ca4db1c9862f08a33ff8544e76002974a76f3e1d3d071203c168b067daf73568adddc24f17b928eff0048eda7f9237588b1a23c37453fd21f0a9977eac977104230f91c0be3ad74979cd99b00d064bc14b432ab8e7f008272feae8e9206a75e01dc0d0a861fe94e349376b2cc87a600d1d69e93340c99f3a97c3dacf0cbd879070d4f85c8d180de8b21ae5d9eb5a67973d854b79f83dfa122f8c7051057ef9279d11483d7ae0daa560314c6ad7d21678e416078872c84c5ff1b11acc78e360472e768cd32d300fec22df5e86ee29d6008c6495a31ce15eb815226649a90dd5cf2d459433c8cd9dc5999288d31587a40c15d2f3bf38d0ea934c9f5e528a674933f74f4fae78d7866b50a43deecc6e23f30771e0f86878436192eccbbebb968737c702545494969aa09116aa06c92e85300f6e1d2f4d2aa8859f08bdacb7b8d1d0dafc5938b717437ab1ad482f77e10badbd265108594c926a6875424686b383678d0f6a8d2d038f5fbfa23b4073d6e818a36096c5cfb8875b9dac9dc6a371749494f61ef1e0eb8d7fc6849ea39ac9512c78d8b5589b1d4b117a73f736053fe8996a6c906f8cdfe30f80dda8ee3de88383a1bc361e683532eef3fccc81570523e6b6fc9a474240775303a6f2738346a718816ea909f8901abfab3787fb0cfdd0412d0e129dccce66d53e812b89e57765a7a60538ec5eed93a065a63ceb82a987ccfcb5f36e2cb64d762520bb206abc2631093ff83d526f39cacd3089dd2b2e1667be5337e1410301863a38cd05c39ab08966e093a08f209f2526b16d9d38928701e2c734fedc961e05fe5c2ad053623f1c315235437ab20fc805c24a092e50f4d6fa6ef0d73861efd163bcc3b847b0282ad6cc2ca7943f0750c770091537a83e95f665afae7ef7a778602b861d59dbc9ffafb7ba9245dd0d7d285e034b3b0bcd753c099974927367c4de1423053d500033dd9524785f940713f968c7c859b2c9a1437164971cfd187b265f2895fbb712404f9f2fdb10e27b0f17de76ff300ad718ec7acb36210679ccd99111735573950ec778880adac7e09661aed23108df9f03b8ee42b2cd3992f4d2b11113bd99226ce3043d663679153e283fec3303ca0455a89512256d615b5caa2cb77806022fa3cb54f754c39fbc17a9a18276129969decffb145c6e2ce639b7af858225dd9f9cd3d5876ccfc7296ba55cafb4389c95366b8100ae1b001d606d42b117785244fc48db6758507bc382bd2f7a7f4ecee7ef2c2b20c03e2edf98677276d344bdd84e041394fcd8277d47811dd83ed52aaca4fb09f072aa8858be2b708d7a2c47b98a9c8d12f3c024ddd039205aaab9c1b78e434822517ceff4c6b535a93a9e42cb6c02d9373450a359b527c326cc06704ca7376e9110c79d624194b68211c882374ff1a2d266546d17f340d1c816b23e0d007a57e814eabed66173099d0f198c6240c0ef0dabe7ff2886f19f336818e17fd8697e4b80a6adcd19e51ab36f79abe385c3519e0bb5882007933227c476d7435cb1def1c4222975fb98d42a67ee784010e307e7734901cd4bdff39a072cacaa9c52c743b4221c3e4f8b607d19715fce9e7663bf521d54cbeb90f720dc468eb902507fbca85c5101fdbb8a343e19ff584ecfc0ccafe1dd54054ad50faf65cbbebb1639117192f72c7ba3abee2ba01446ddf6314c6b24b9515d81767abccb211db4f98c654a55b0f5418dfdd9a15ae1eb8e5a70efb791833fbb37bf4ae0e2ddd7c1d1b187b52bf71cb9e1aee17fa8d06ffb5ff201d6eed41b8aa09701bd1d96f873598a1664d9bc31f50764d60567b371eb969fd048a9f1d2d0ca3bd2f6c1e32ea6b2258729a9007a4ee61a352f202b21cf7799595c6321bde4f85b19e37a51c3cfff8f87c0112e55fa98a5a57d370ce50ad539e9cc8b03bfd6aa6a0532478d7bf9ff26bab5addcf6a0fdf10758a14e198da0902e7a2d385b668f779481e476b4763389882cb479b17617486f26de7531855747d480481968aa9e3d0146d783de2749e41c3adcc8160bb4cf57358c056892909da5e139bc62d2d8536027c8364bb15ef7df676c4219bea0328df20f0f1d668f61e5b5c61832b371087c287041d018ba7a312de6701ba72dae928f9ebb2bdcd466ad60dda83f9dd7b9edb6a954756b044f64ab5e469247fb2d122e04d62194016b7dd788b78c6b16620e8fc61f41b533b9f14c379db88805737571388c4f3080e959d7cd03b6a2120ce63c9f6cd2593d09a920fac563519a7a6ce265b1a1b472d2f5dc2e282295cb60bb58bb450d6062be4ed38a616433e047791ebea9cd3be80cd1a2b5d563e73f31591f392026820bec10d428fa52408142e70e2cc7fb78c8d2943eb5d58144a83f0ce5fe21d2e364480bf6a9bd14017ec9a5efbe1894c22e3157653caa14f6ff4fd784e236a1ba5ad452c8fd770cee33566cd28697d5c1151d49fdbc372daab5c00ed381c8126de64c094107c716ed3ea5479627c8909fd8872a130a3a76667c3d5df85b5c774216e6d840570a24e248c6e48ecaf0326b9c51bb8865b0a414bd76eadd4f228a1a2066b6d3877ef91a69ef046870b2ae9b25237082d07758ef475054584e104e21e1079f84cfe9bd9751f38b8e0c0f68314b3edf97f4164f03e89c3889785e24fa3f8936cf98601e2afaa266230b2d30a3ff3206f7c55c322f6eb33e3b01ed50806070367ba23024490174617a4a5bef9e1b654873f6e5df4a9c9b26615ff097fb075093a56c0bcf19e94ebc43f1e32ba71d4d1496fa6994bf6b83fbec7c3a1193e8e9e60542334a12e706a778d2fbc4414b884f800159de9c65c7d751483b0e094b9d4afe766dad45f225e7ec48b24e69b4bacc525a7072b42a3fec1e1906f0d984f4c107db21462b35d472eafec4ef08dfbbc711fdbadcfd36a9edadc415a290627cb927ca7f6e44464a68f9ed6d89197c051c7cebb9326a22e51775aa40cb6816575056f3eb1e869ddae0f2147aed22888e687c2d0e8695503faa35e3817a6d81afe93edd875d4b30faca3d6099f22666bd60bf8725cb348c08312c424ce2645cf17f3d957de438a2e32477c8511dd069ba48037e59d33755e8b001e71db42ca7c485433859367ac5087d8c1200a40acdfd2cc1ce8ea19b7aa5a77889fe438e656b219ef85f9c7506e5a2ba964a76fa9fba8b9cdaa51b89444126e198f97dd02e5b5d787b539a60de4dd5041944b3d6dbdfdb00d3f7b25685fe0be50e1b96b2b1c0b1750f6f71f17ed02fab36aec81f0adc5afeb1f017457a0d5854219f7f49dd3284c5880aa80f53a27b744499d7b7aeac79755ff8292405551eeac1ffda6f658547234401a77010697b3f3e3ae0a4f0406a5b9169529ac3fbd23b4f8bbc040960cfbf8652f1cf5b35cd742515ed16bf3c384fee829c1ac11bd81960eab4138c1c90e73d814034249170a2def1e70887cd744fb5ed6d2c88f63c72881672fed7083e18ed3cf0242ae177bd104f4eff6a865c7a59885d1e16fe92f6ea37fae39304cdc521ecb89b3ee0c9b2a6baa243c16c63e6fb2a8e0b284520a4a7e6cbd76ad5352eccffee1cfea5bb713d8897993577cf535d5a9e36fb04ae34f5b040bb266f85480ba3119ca44142fdc93ac2b3ffc656abdfa42edc7579bcace54841b008f1e19c31fc02ff4c22852a50e5e1cad22cb2851f67a60ed62bf4c4af52a22255f9aaf0e30d3e1c49ec42669c10698f2931d8a293b7b6d2b0fc8895462e136599b148457dd795876e35e5d0ff3e939cbfd072"]}, @nested={0x101c, 0x97, 0x0, 0x1, [@typed={0x14, 0x140, 0x0, 0x0, @ipv6=@loopback}, @generic="e9043018a8997ba16fec621a3c061be2a959fd5fd823673bd3740b0669e950ed7639fb8d40856c2773d14164d4175a3f8abdcfae54c53a02b7d48e19e03bf28fdc5d60a0f3c355eaed2045a36f0d0cff891eff3540aaf864e06331ef4cbce8f6c5b63491b2d9b4879f364405afa6a38ef1b43f5dbaba08ad94d4643e7991c0359aba0eb9523053d7ac3f8c424cbacbfc0dc8281e20654e0b7c1935c1173452f75c42e16a948dbc424c86464172041e23cdb50f252fa42dd8b9c7855cac300d0863287e0231f97ee89563c31a55d2508133c21b4fdba7e71204a835a2dfa7bf430e4d1e41f3b0fa36951d1094c78a06707e8870ce4396fbd62372a3caf5be272b627f54fd0cedc3fbf881cb388314d6c4615869b660ccde7d48e0fccc967c4455c34d493ec933b4d18d6d3706d9a438dca97a425b5c000bbe18432c7731493d6f2ca17c0ce7a4b3bc9ed296a9f1fa9bdc43f0ea7d31da01d62a2245d61411ebfde791a6cca98f5fe6d10deb282bbf45ff69c38e3dd0cac6f078c460267c6cb7f2ddf11fc6ba3514910ab3eb62d06f7bf82f7d4e128617523f90477d6d0bfe60859e518994810761799987417ae2bcdc38c234acb6a0c259bb316985ecfce441a6bb67eb86f583028877efc38a0ae025be481f4fed87790521fa3108055c529b8a44e6c2e1a687878c40e11dae5e8c8d0785be550f2390e1f6389469331af1daec51485a9d81c8b5627d3249cfbfb96d7acd84d44ea7fcd0d03914cbb87aeab1e62ef1829b8e025f95341a90f8552bc2726928e7fb870fb08c6615dc6cebaaa4776f463912cd297a6e0e40bc765ac3d405157c33f470ea7210828137c1bdb68184e073099317ac7b71c28d3c82dc2ff49557e5f17ef010cb325adc1455117cacbb386451cec23cf13ac1b928353dd6ac41b0ada0748bf438cb6599cccc9dc2fe5855901e41d6db023f60d5ebed7a17feeaa49d86ca3f796b42dccb768e37cbb2a1eff7c55f90554af8f1756e34939f72335bfac4a641fd30975cdb2e3c1bcb15bf7856d8a11eda51b160867354bf284ea8536d05e246f59203a576a335e3b083ea496629e99cdfd22e7d7fd5dc373915a8a2616e8a42aea16f29028ef5ffccc2d1a24b86054825e46634fc2e208aca6ce4a849415d437614643e69bc70a0146fd0bf876adaab814545a977aaa3f7f21b2300e0157da9c8009ee1b20bb23482ee36846a7a40e233e66a914eb9bbd5937be3dd4a29695ff52ac451be5ad2fe2185b8e3a024bbb2a5e258a091e3eefa4a5856357abfaececefb0a7eee31597f7b46d8e22cb987183eb0d69efb42bec6399f4248400e4f1cd7b22d62a6acfffe6615e57b4a692f5a9e5f3d4fc8f3a24d7cca1b657d34962a5645c2bd529ceba14a924f247ac07edb558e3b4a483dffac96c3453dc7695fb9701ae1f9ddf37f5320aeecf9dc0286eaa76e2c8be7f185f1c0e9461ef61dcaacf69a0398026bd2c079dfd10f8de8640d4536185fed8c98d6258a0af0f2390e7f4d47de983c018b722555b1cb6a2ae8e5ca0255455b181afd2e1cf48f15968d6b8d787eda13aac495d2df6d6c5b7e96465f2b7dd02a81ca6ba2fcbbbb59b8213cb304207e5d0633a5877aa9d45fe6b76cbf8a5fdee2b7affec093eee0ca9cabcb6231496d7cfecf999ec1c79c6e8d8dd7493d0a4a3b648c1c53805b55162129718b4f3358d6bc007448be80b651d325fc984874bb9e28892ef3fc6cca6dc9594025d0ba1a631d041efa37027fb64bf7d31c91077ce588d9c24d8b43fcc4ef4b731321f4d41714dbc2abee19d65c083f3abcb07ab7e4ca6e97510a528a7fa6410055e94bf702752850a461d83de456ad1ff6ef8b790736fe7233ac3acbd43329613edc93f38d2aa764ebe50361c89457e8d0ffa7650c91c1b4c0cda81ed04d70dd77cea8cbe891fccb8118665ab9ff336c3ebcf5fdb0efe1fdab7b81cedbe5c145e7ce55805f1f80962e739f07415e01472119381cad7d90fd126c22f316bd292d8023c8c89a5357c46d9153764aa5482d11a8dac01720f5c1b4c2c2a8b2ec3656d8e71ebc55ed990f0a8905c5cf56035d58f6e08111919294f02b9bcadfba331a275c9a33157126aab4abe00def297bfe227e714bfd52174f76506d7c3f641ac6ce270ff5ae3e075508266e70b54b088a23eabfef17d5db1461ed3759e5ac2417ecea122064e3c9d4ac37869df3af00df60933813eaa4c3a51bbfc755717a800465b8acdd15f2d8490582d0b58c530f7ff07a27dc318dd63e273123caca274ec803b2f885598be4e162adc785205737184ca45990bc6e83bcb5c7365d7783ab29064254f86982b05add7c8a0fb73ff3067c002d420cf8f5a6213963914150de4e8e00b1751e38f0b553c3378d1dfea2f430d66824e1b55085e16220690dd810d6a59083ee6adcb5c8a0212f1d274832968156b8493d20593b0bc6455e7ef193b66178743e874437190e9a00fab09726f2a5863a7ceac56fe73ea28caaa99af4de306bebee4accebb6113eeddb09cd3c6403d9714a5a3a5b5ad5647b8591dfbd93d9564295ac174a23d2e2a4882d0aa9bd6061a5b149ed12bdd01802f3664def26b01aad9c31efc3bddd1d3f7da1694d9c966c359165efb525d5487f94a5d8c623a1e44f3ef00d4f822d400880d30a620a787e69dc50c72236ecb537472b61578d01979b5c06e5bf271e8d041ab325a3a11892bb5b2e68f5e30718485f43e0a032e310f4bb6cb45ce18c249a2c259939ae4e3666bd06e0edb183fbe108da8edc1ac3d8a151b6dd81d19e47bdd96840444f929b8e33dd4bda614322f00a03e88e1a64d6d61868beb687aeabce86bd7f39b4d09a9522bb17424986308d17b8dac5a7166e4fd5d0428add789218d750f2c706870b2b030e408e9f79d3e7a0c84023154c2295c738f44966e4db2a4bdb953d1589bad754273fab3b4f6eac83436125d019fa94ba226f98c669b025f11de24c12a42166abef493f390e4a9a7ee2bc2f1cc4a562e3d06d44bd4c43b835e0ad63ea0e61d36614cb21b170649aed2cf8214ff48b9ecdc0199bcf6d72522bf62c41b8203aab8600c98bdae7e5e37694332a085ac470d14e07b1fa66d7ced5b3526090ac0aec254843f28413afef655373613c6146bbbf49eac14f5e4b80025f12a628be1d685ebf399a3699d4a4355d136a4b91e793f7b68ea6b7ddce31a849f6ef0a1a9219e3105e65d7c0123d10d79bcec7b5810fb35baccd960dbdbdaa155acff67d7e93318b20c86b3f99fb26af61c96d960af996e0c4082ec1a8f00ee8fad6a56b046bd3e7912f552d2a39a93c6f4c9f8dfef85f985e59b9d54f695d1b6a54ca5754777e809256d769f55bcf8b11c07c7e900fb077da005078fc26a44c1f2033f535f0bc1d2bc81a22c7c949149d413c4151f7807e5feff49314ecc8f7d5b581b0993ce7bbd3d76be86f66b978e653f1d2ced7dc76c38769f7266285e0e2d0c0758f56d6c1032d8642e56c73ad79760174fc49dc3298c51fc41b2fc26fb67edabaca230c866b21ae049592ac64b6a0a8bf5a796f447e60b8c49eef585a00b582de4d43c260ab71aed0262d7488ea28d21a0e4e85976d3ff1fc5b3e63a9104a1cfe1b3f1593485d5091efc59839f17492ce1fd0490e0df266b3fc736366f4b05c09243dd7e2ba254b51b2b3f4f676153b7c421dd4929e19de01fbb1f62975241c392221b476dba8dfea62662137e1126a39a72a47c10a6fcf6982cdabc253184788aa941ef0057a7a245f9ceee46f346c568bfd29b06792adf54c13a4df52b3cbf718a51ec02a9a3e6240982f291da6ce7c45545e575499401c0d61839bc5f8f7133879c626b5fd95b392a545410fff9465d772264305c179cafb1a4c211064846248635ea8544935835f085cba900573655998e425213b8e2057c088d9a56ec1e26be07938cf59479da714848b840910474e1e91c911a5d7859ffbe0c7e97bd5dd063496c88af152a0ebc092d70b4cab63bada88005597bb9b12f125abdf1a33af377e8f83a9438b3a5831d077d03f42439d1cf46589720319825afdeae5802fce95262e32f776daf03e0c8892f73dd99e49d67c604371b69da80d7c7b06d790e9ccd8b5688976af6865a87c0d8bc1ae52814074e2f8343c22156d85e9bb15a071c25fe5bbe0bdbfd72ef54f142bf240caef783e7d19e46f8ecc9db39a7de7fd22f3c4d5f1ae2b023577ddec955c42768723e9f1a126067592da36f1646243f5ca569490520c20e44193452fea634da5d65ac9e1bd9749dd49702700326f12b60da24154b7fd8d23fe8710396e2c97418fba48573dbf38516e002cf4665c447e9f9e25e095f698e8bcf212a95a3deaf0d127e3662f8da9b66ed0ae2f4855e5077687c661f422039c512ebe56db4b87da8d28a6c20ee36107292ab08cd12d531d8f865f7c9fd737432947f6e3e713b89b3e1c1abd9b72e872352fa2b598dd143bf5dd5e6ac4bd9403a56341466ef098a6afb916e6c25aef2aacdbc90e70bee7cad29058222e084485eed50964fbfef791e38e96f184d4bebebb88251ec538482b63eba4ee1926f8ced2f5edd495ace721a44c3b85e0607d958403239f40ada4ca201c41d9f71ba02ad52ec91b6199ce9980c87f44f8e5b91530543824819d2e44be7b78890c57d6ac1de1a0511ed83e8efb620198a8503daa31600bacfe6724ab7a09806e0c3b55ece313466e0466f1aa5512c469e5567063e3d73e34b9bec24d3935858bbb78c32d15772c68c04dc94b600f6beb832fb024f312b698fb4a0d6a456ea2df92672bffaf3eae3c11da3d9b6cae18298d45aebce22527becc63e995a272b3e3488dc5895ef5c179c1e58977f5d0665fc05c7930159788ec25892348de2e49999006e62a83deac41dfb0002a67ef84beaba10b5d0849d3f34a7c2ec52609bdc9e8faaeaffdc710b8160212e6743a6705328bdc9677df7269db6c3cd0ed7c02a40e5710e6fa2d7f312b015cf64b619024d12b57c33f42b4b2d77639405be0ae3a25b5a4904426a34c4f73def83436b9f6a2f0c76478ba953ace05d66082c037f247d45373210e4da00840deacce63fa219512b0e8c71905aad0475bbb01e9a31775063ab1f728062897076498a70317422304560c9d3d785ed8d204d6eea26322e91053afac034b25c4938b9d248dc5e09fcbb89900db3315985559dd39918ead20262d6baff5ce82fcb753bbbc85d9e271f14333590c2509cfa7ecffffbc315a81c4f8cb5ed4ed6438ad63b17184f0577df10d1054346a7e6e33ce8fb1c76b2495e2e435a4ff2cbb0702186ce141c7593bd16ce4dea07da9952b3e07c4d3a42cc3c78e81f9b825e0597412ec8a0463c5fffe81bcc1c43bf0ef12cc2f87a483bf2c15b1459948a7b0b1ce081dcff2d1330fe4735f196a456885989f41e3d925d31c9bbf9959658f2ae6b6277badbe451753c469d87645ae8d4ead0affc8103cf13c363c8517903566449fe1dc84802e9bfc2f1b6b052f4d87c5c54c2214208c239af9b173ed3d8e963716600038ef3b0c7326bb840fb7b04a8de93f05a6a5fcd21bf5b89cad464a387b8a00aef0fefb730490891142ed298840bf058df04111945a341f59ab8675e55799f24d0f6aa8b48a32e8ebdd156ce9ae4518a91f136483bfa8f1bc4e03707b59accf3a3dc9f1f869439fc65accbdf91ef098badf94250fe6015acbdaa0193e8e1ea334d82a3365883cf8a41982a44b6a7dbcf01ad39df4cbe528059b6e051ba1ef3d341e0b622f603773ba8f6c3c", @nested={0x4, 0xc0}]}]}, @NCSI_ATTR_DATA={0x31c, 0x5, "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"}]}, 0x23cc}, 0x1, 0x0, 0x0, 0x1020}, 0x41)
sendmsg$auto_NL80211_CMD_SET_CQM(r5, &(0x7f0000005400)={&(0x7f0000005280)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000053c0)={&(0x7f00000052c0)={0xfc, r7, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@NL80211_ATTR_CNTDWN_OFFS_PRESP={0xe8, 0xbb, "d52e2b3f48cdd5a6bb2739f6978363d9f5eca929f811308608ed90abf1dc4a64ade7b85ed6e5edff09d52d36e8afcfb5d7807256628a3c47d2dc4e47cefd64085346b439c015012f5a6766e7b69dd91a18127c4303105fd19619b3029d229fe7f4a966618037394bc0949f0ee84dbdac8ebd2ecb95b5bb5eb79b1da456c03d30d94f652bda6b0b302d1efb3d30adcd3ab332a73cd641bd3c00b6b89a8ae42199e1054ebcf2fd817130270d8f30e0ea45d6e478f60011812c47255a232f3fc6aba14bdadd3dada4c2a91ab87b76903153f81e7a0ed48a61bd97a1a524d9673f01b7c1eecb"}]}, 0xfc}, 0x1, 0x0, 0x0, 0x4000050}, 0x20000000)
r10 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000005480), r6)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_GOV(r6, &(0x7f0000005540)={&(0x7f0000005440)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000005500)={&(0x7f00000054c0)={0x24, r10, 0x0, 0x70bd28, 0x25dfdbfc, {}, [@THERMAL_GENL_ATTR_TZ_TEMP={0x8}, @THERMAL_GENL_ATTR_TZ_TRIP_HYST={0x8, 0x8, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x4008810}, 0x20000000)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000005580)={'dvmrp1\x00', <r11=>0x0})
r12 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000005600), r6)
sendmsg$auto_L2TP_CMD_SESSION_DELETE(r5, &(0x7f0000005780)={&(0x7f00000055c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000005740)={&(0x7f0000005640)={0xd4, r12, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@L2TP_ATTR_IP_DADDR={0x8, 0x19, 0x2}, @L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x28}, @L2TP_ATTR_L2SPEC_TYPE={0x5, 0x5, 0xb}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x6}, @L2TP_ATTR_SEND_SEQ={0x5, 0x13, 0x3}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x1}, @L2TP_ATTR_USING_IPSEC={0x5, 0x15, 0x81}, @L2TP_ATTR_NONE={0x6b, 0x0, "4bd98504f6f79942085542c7a15e9ad5dd48108d96086bf318170277a8327dd993c1c6e93e2757c02c317148aae20b55d1230e897a1374b3d4315583b9e59d7c88d86cfcdd2b006e99eea07962a4e8200d3502a6ef6c274cf0abd59de907551d4c007fa63fd23c"}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @empty}, @L2TP_ATTR_OFFSET={0x6, 0x3, 0xffff}]}, 0xd4}}, 0x20000011)
r13 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000005800), r5)
sendmsg$auto_NFC_CMD_SE_IO(r6, &(0x7f00000058c0)={&(0x7f00000057c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000005880)={&(0x7f0000005840)={0x24, r13, 0x2, 0x70bd28, 0x25dfdbfd, {}, [@NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x6}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0xc}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x4080)
read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000005900)=""/201, 0xc9)
r14 = prctl$auto_PR_SET_MM_START_CODE(0xa3c1, 0x1, r3, 0x8, 0x7)
r15 = syz_genetlink_get_family_id$auto_handshake(&(0x7f0000005a40), r14)
sendmsg$auto_HANDSHAKE_CMD_ACCEPT(r6, &(0x7f0000005b00)={&(0x7f0000005a00)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000005ac0)={&(0x7f0000005a80)={0x3c, r15, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x2}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x5}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x1}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8}, @HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8, 0x2, 0x9}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8}, 0x4000000)
r16 = socket$nl_generic(0x10, 0x3, 0x10)
r17 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000005b80), r6)
sendmsg$auto_ETHTOOL_MSG_RSS_GET(r16, &(0x7f0000005d80)={&(0x7f0000005b40)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000005d40)={&(0x7f0000005c00)={0x124, r17, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_RSS_CONTEXT={0x8, 0x2, 0x7}, @ETHTOOL_A_RSS_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x55}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}]}, @ETHTOOL_A_RSS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x100}]}, @ETHTOOL_A_RSS_START_CONTEXT={0x8, 0x7, 0x1398}, @ETHTOOL_A_RSS_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_RSS_START_CONTEXT={0x8, 0x7, 0x2}, @ETHTOOL_A_RSS_HEADER={0x74, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_RSS_CONTEXT={0x8, 0x2, 0x9}]}, 0x124}, 0x1, 0x0, 0x0, 0x4400}, 0x800)

35.260733911s ago: executing program 3 (id=1979):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/netfs/caches\x00', 0x102, 0x0)
pread64$auto(r0, 0x0, 0x100000001, 0x100)
write$auto(0x1, 0x0, 0x80000000)
r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
r2 = socket(0x2b, 0x1, 0x1)
r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSPASS(r3, 0x40107447, &(0x7f00000000c0)={0x6, &(0x7f0000000040)={0x5, 0x6, 0x10, @inferred=r1}})
ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
munmap$auto(0x8000, 0xffffffff)
getrandom$auto(0x0, 0x6000000, 0x3)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4)

19.84224328s ago: executing program 33 (id=1979):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/netfs/caches\x00', 0x102, 0x0)
pread64$auto(r0, 0x0, 0x100000001, 0x100)
write$auto(0x1, 0x0, 0x80000000)
r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
r2 = socket(0x2b, 0x1, 0x1)
r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSPASS(r3, 0x40107447, &(0x7f00000000c0)={0x6, &(0x7f0000000040)={0x5, 0x6, 0x10, @inferred=r1}})
ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
munmap$auto(0x8000, 0xffffffff)
getrandom$auto(0x0, 0x6000000, 0x3)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4)

8.152088163s ago: executing program 2 (id=2030):
r0 = socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
capset$auto(0x0, 0x0)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000062c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'bond_slave_0\x00', <r1=>0x0})
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, &(0x7f00000000c0)={0xfffffffffffffffd, 0x0, &(0x7f0000006340)={&(0x7f0000000400)=ANY=[@ANYBLOB='(\x00\x00', @ANYRES16=r0, @ANYRES8=r1, @ANYRESHEX=r1, @ANYBLOB="08000300010000002eb92f837c1c5cd86bc856f18d821bab694817b55e39e0750e704eeb309f5a4597813fd26b36c15b0f2ddd81b63ac5274cab167d43481c9615c0ad304590a6493d7e50307d1e019b65008dad40548ac00760141a1cf61e2e042d6ef09c5424ee4680bf78617aa61a055cac18756c6e47eebe2141386c95b1809c63d81244a4aec6356446d582db80031ea1b6e23cdf91b17383796492a25c6bffe8792f3ab4b270ff58"], 0x28}, 0x1, 0x0, 0x0, 0x4044040}, 0x4000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'ip_vti0\x00'})
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}, 0x0)
setsockopt$auto(0x3, 0x0, 0x17, 0x0, 0x28)
sendmsg$auto_NFC_CMD_LLC_GET_PARAMS(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="00419e5a0c1fec2776b7fa991c7b9e041c723a100f92de051aba8d5e98f2340a9c013badaea498f9ba68d5f578625483d70984f966651e33c2e0ad620b5a13"], 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000)
rt_sigqueueinfo$auto(0x0, 0x1, &(0x7f00000000c0)={@siginfo_0_0={0x2, 0x5, 0xbb, @_sigsys={0x0, 0x50000000, 0x6}}})
writev$auto(0x3, 0x0, 0x8)
r2 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x4800, 0x0)
ioctl$auto_RNDADDENTROPY2(r2, 0x40085203, &(0x7f0000000040)=[0x874a, 0x7fffffff])
r3 = socket(0x23, 0x80805, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'macsec0\x00'})
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/tty/ptyd0/dev\x00', 0x1fb3e0, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000300)="01a5370488cecd8284e45f1d68e7f7725b2a562646a7dd299adf9fb8d8ac438a641af96ed82f4c87e4dc52c34e2e3c71febbbe7aef6def9468432bc12cb0ec820badb38205348947c9effa42ceedc9442373b064926f7b64ea294ee8ba929b8aa59e6d22abab", 0x66)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r4, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), r6)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r8=>0x0})
sendmsg$auto_BATADV_CMD_GET_HARDIF(r5, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="f38327b97000fedbdf250500000008000300", @ANYRES32=r8], 0x1c}}, 0x4008000)
read$auto(0x3, 0x0, 0x7)

4.559902384s ago: executing program 2 (id=2036):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f000001f300), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r2], 0x1ac}}, 0x40000)
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x30, 0xff, 0x0, @raw=0xfffff004}})

4.286736561s ago: executing program 0 (id=2037):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
io_uring_setup$auto(0x2008, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x403c6f2b, 0x0)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x0, 0x5, 0x8)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x101142, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0)
sendmsg$auto_NL80211_CMD_VENDOR(0xffffffffffffffff, 0x0, 0x4000000)
set_tid_address$auto(0x0)
sendmsg$auto_TASKSTATS_CMD_GET(0xffffffffffffffff, 0x0, 0x4010)

3.723728864s ago: executing program 4 (id=2039):
unshare$auto(0x40000080) (async)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x1a1000, 0x0) (async)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x8004)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
msgrcv$auto(0x0, 0x0, 0x2, 0x3, 0xb3)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0)
ioctl$auto_KVM_CHECK_EXTENSION(r0, 0xae03, 0xb9) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r1 = socket(0xa, 0x1, 0x84)
openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cpu/0/msr\x00', 0xf82, 0x0)
ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0) (async, rerun: 32)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_3={0x7, 0x101, 0x3ff, 0xffffffffffffff80, 0xc1e, 0xb5ad, 0xffffffff, 0x8, 0x8, "e1fd3ac6e88c17d559e8b53bdd94ba79", 0x0, 0x4, 0xffffffffffffffff, 0x8, 0x7, 0x1, 0x0, 0x10, 0x9d4, 0x7, @attach_prog_fd, 0x8, 0x0, 0x80000000, 0x6, 0x4, r1}, 0xc) (rerun: 32)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) (async, rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (rerun: 64)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
socket(0x26, 0x80805, 0x0) (rerun: 32)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0) (async)
ioctl$auto(0x3, 0xff02, 0x0) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r2, 0x0, 0xd) (async)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc4400, 0x0)

3.610653433s ago: executing program 2 (id=2040):
r0 = socket(0x26, 0x3, 0x0)
bpf$auto(0xff, &(0x7f00000004c0)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x5, 0xffffffffffffffff, @relative_id=0x4, 0x5}, 0x3fc)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='f\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x803}, 0x4, 0x8)

3.417700771s ago: executing program 0 (id=2041):
r0 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$auto_nvram_misc_fops_nvram(r0, &(0x7f0000000080)=""/202, 0xca)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, 0x0, 0x800)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)={0x14, 0x0, 0x10, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4040885}, 0x40090)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x4045}, 0x50)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, 0x0, 0x20008810)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x200009, 0x2, 0x40eb1, 0x602, 0x300000000000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
madvise$auto(0x0, 0x20499d, 0x9)
r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x4000, 0x0)
io_uring_register$auto(r3, 0x8, &(0x7f00000003c0)="35983e2b2c5153a4024a251599c0d9880ce9c60289b892fd6442caa96e604065d4fefa8ec06401214ae4e260b8bb92a7edcc24f7b3839e095f10a8b3ece1c294c783c1ff659d66d42a89d86cc144a95bb3216e71540bd717f5a8c61ab0dbed7a21cd5c2ce35829aa14636dc1c04382ce75f0ae082265fbcce4a5acf33640165ef3a3466bbb5c06a3b2621d057cac09eb40d120a30cc09571834fac29edfabe81574364abd1913741c2acc98caa3982ca3d57cac45ad02f0a06954f75a81d", 0x3)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xfffffffd, 0x401bf, 0x7, 0x3c, 0x65f, 0x1ffde, 0x5, 0x7, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb2, 0x80000000009, 0x9, 0xdec3, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x9, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x3, 0x0, 0x0, 0x185c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x1fe, 0xd)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001d40), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r6=>0x0})
sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_GLOBAL(r4, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="c79f25bd7000ffdbdf250700000008000300", @ANYRES32=r6], 0x1c}, 0x1, 0x0, 0x0, 0xc031}, 0x44)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf25030000000600070008000000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060006004000000006000600070000000a0010"], 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x0)

3.365232994s ago: executing program 2 (id=2042):
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
r0 = socket(0xa, 0x1, 0x100)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0xe8)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f682, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc000, 0x0)
r3 = socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x24, 0x0, 0x200, 0x70bd2e, 0x25dfdc01, {}, [@BATADV_ATTR_LOG_LEVEL={0x8, 0x36, 0x3}, @BATADV_ATTR_TPMETER_COOKIE={0x8, 0xd, 0x80000000}]}, 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
syz_genetlink_get_family_id$auto_batadv(0x0, r0)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r4, 0x0, 0x4014)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
setsockopt$auto(r3, 0x6, 0xd, &(0x7f0000000040)='nsKcg>', 0x2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r5 = openat$auto_stats_fops_2(0xffffffffffffff9c, &(0x7f000000b000), 0x80000, 0x0)
pread64$auto(r5, &(0x7f000000b040)='\x00', 0x7, 0x6)
connect$auto(0xffffffffffffffff, &(0x7f0000000200)=@generic={0x2, "a7d7363b4fd495c01bdb1a0f9518"}, 0x7ff)
close_range$auto(0x2, 0xa, 0x0)
r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/security/tomoyo/stat\x00', 0x40802, 0x0)
read$auto(r6, 0x0, 0xb4d3)

2.517210545s ago: executing program 0 (id=2043):
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
r0 = socket(0xa, 0x1, 0x100)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0xe8)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14f682, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc000, 0x0)
r3 = socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x24, 0x0, 0x200, 0x70bd2e, 0x25dfdc01, {}, [@BATADV_ATTR_LOG_LEVEL={0x8, 0x36, 0x3}, @BATADV_ATTR_TPMETER_COOKIE={0x8, 0xd, 0x80000000}]}, 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r5 = syz_genetlink_get_family_id$auto_batadv(0x0, r0)
sendmsg$auto_BATADV_CMD_GET_NEIGHBORS(r4, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x28, r5, 0x10, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x80000001}, @BATADV_ATTR_ALGO_NAME={0x9, 0x2, '&)(\\{'}]}, 0x28}}, 0x4014)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
setsockopt$auto(r3, 0x6, 0xd, &(0x7f0000000040)='nsKcg>', 0x2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r6 = openat$auto_stats_fops_2(0xffffffffffffff9c, &(0x7f000000b000), 0x80000, 0x0)
pread64$auto(r6, &(0x7f000000b040)='\x00', 0x7, 0x6)
connect$auto(0xffffffffffffffff, &(0x7f0000000200)=@generic={0x2, "a7d7363b4fd495c01bdb1a0f9518"}, 0x7ff)
close_range$auto(0x2, 0xa, 0x0)
r7 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/security/tomoyo/stat\x00', 0x40802, 0x0)
read$auto(r7, 0x0, 0xb4d3)

1.878059864s ago: executing program 4 (id=2044):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/bdi/1:5/min_bytes\x00', 0x88282, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x640, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x7, 0xfffffffffffffffd, 0xd4, 0x4, 0x28c, 0x0, 0xbf32, 0x368e, 0x9, {0x200fffffffe, 0x10000}, 0x10008, 0x6, 0xfffffffffff7fffd, 0x1007ffd, 0x0, 0xfe, 0x81, 0xffffffffffff6292, 0x4c, 0xdeb1, 0x803})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer2\x00', 0x28102, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/020/001\x00', 0x40, 0x0)
unshare$auto(0x40000080)
prctl$auto(0x23, 0xc, 0x2008, 0x9, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vkms/graphics/fb0/state\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/131, 0x83)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x1, 0x100)
unshare$auto(0x7ffe)
unshare$auto(0x2)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/aqm\x00', 0x80, 0x0)
pread64$auto(r2, 0x0, 0xe5, 0x40)
r3 = socket(0x10, 0x2, 0xc)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_FLUSH(r4, &(0x7f00000024c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="01002bbd6800fddbdf2511000000"], 0x14}}, 0x4000000)
sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='q', @ANYRES16, @ANYBLOB], 0xf8}}, 0x10004010)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x129e01, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r6, 0x4b52, 0x1)

1.557284527s ago: executing program 2 (id=2045):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtdblock0\x00', 0x4ea06, 0x0)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x147602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x802, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_LIST(r0, 0xc0505510, &(0x7f0000000780)={0x3, 0x2a2ac88b, 0x7f6, @raw=0x7, 0x0, "e7a6b861dcbde9deb2c11f7e019b498d171b0cd6555901db83a25536fc1f5662819ab1220e23b007fe795ca45f29f0c2a7f7"})
r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f000000c380)={0x60, 0x1, 0x85, 0x7fffffffefff, 0x0, 0x1, 0x6, 0xfffffffffffffffb, 0x0, 0x8, 0x0, 0x9})
r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000240), 0xb0682, 0x0)
ioctl$auto_UI_DEV_SETUP(r2, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x9, 0x80}, "6a034a07c7b8edb8fc3b39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0x6})
ioctl$auto_UI_DEV_CREATE(r2, 0x5501, 0x0)
dup$auto(0xffffffffffffffff)
unshare$auto(0x40000080)
r3 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x0, 0x0)
msync$auto(0x7, 0x4, 0x4)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r3, 0x0)
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0)
r5 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000002c0), 0x50b602, 0x0)
ioctl$auto_VHOST_SET_OWNER(r5, 0xaf01, 0x0)
ioctl$auto_VHOST_SET_VRING_CALL(r5, 0x4008af21, &(0x7f0000002600))
read$auto(r4, 0x0, 0x20)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vbi21\x00', 0x149800, 0x0)
openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x2, 0x0)
write$auto(0x3, 0x0, 0xfdef)

1.011913359s ago: executing program 4 (id=2046):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x741, 0x8000)
r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) (async)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
fstat$auto(0x2, 0x0) (async)
ioctl$auto(r1, 0x5393, r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
r3 = openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
pread64$auto(r3, &(0x7f0000000000)='\xfd@]${@\x00', 0x3, 0x9) (async)
vmsplice$auto(0x4, &(0x7f0000000040)={0x0, 0x80000000002}, 0x3, 0x4) (async)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0x4)
futex$auto(0x0, 0x6, 0x1, &(0x7f0000000040)={0xfffffffffffffff9, 0x5}, 0x0, 0x7)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0) (async)
landlock_add_rule$auto(r2, 0x0, 0x0, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) (async)
r4 = socket(0xa, 0x5, 0x84) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
bpf$auto(0xfffffffd, &(0x7f0000000000)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0x4, 0x6, 0xffffffffffffffff, @relative_fd=r4, 0x9}, 0xa3) (async)
mmap$auto(0x0, 0x8000, 0xdf, 0xeb1, 0x401, 0x8000) (async)
sendto$auto(r4, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)

940.408121ms ago: executing program 0 (id=2047):
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0) (async, rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000) (async)
r0 = socket(0x2, 0x3, 0x6) (async)
r1 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f00000001c0), 0x4100, 0x0)
epoll_ctl$auto(r1, 0x5, r0, &(0x7f0000000300)={0x5, 0x8000000000000000}) (async, rerun: 32)
r2 = socket(0x2, 0x1, 0x0) (async, rerun: 32)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) (async)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ttydb\x00', 0x48400, 0x0)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) (async)
openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, 0x0, 0x40, 0x0) (async)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socketpair$auto(0x1e, 0x3, 0xfffffffe, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x3}, 0x7}, 0x3, 0xcad7) (async)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) (async)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async, rerun: 32)
r3 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000180), r0) (rerun: 32)
sendmsg$auto_L2TP_CMD_TUNNEL_DELETE(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="007acf65ca43d7d6f439000000", @ANYRES16=r3, @ANYBLOB="00032abd7000fedbdf250200000005001400cc000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4010}, 0x4000801) (async)
write$auto(0x3, 0x0, 0x100085)

630.20017ms ago: executing program 4 (id=2048):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000)
arch_prctl$auto(0x5002, 0x2)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x6)
r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='(\x00\x00', @ANYRES16=r1, @ANYBLOB="010028bd701dfcdbdf251100000014001e8010002a0400f7800100f8800000000000"], 0x28}, 0x1, 0x0, 0x0, 0x20008000}, 0x8044)

625.043826ms ago: executing program 0 (id=2049):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0xa, 0x1, 0x84)
r1 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0x3e, 0xfffffffffffffffa, 0x1ffde, 0x0, 0xa, 0x2, 0x9, 0x3, 0x9, 0x4, 0xb4, 0x9, 0x2, 0x10000, 0x80, 0x7, 0x0, 0x7, 0x2000, 0x200, 0x0, 0x84}, 0x1fe, 0x200d)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
recvmmsg$auto(r1, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES16=r2], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x2000000000000, 0x9}, 0x7}, 0x3, 0x0)

364.290222ms ago: executing program 4 (id=2050):
r0 = socket(0x28, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000000000000000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x4)
getsockopt$auto(r0, 0x4, 0x9, 0x0, 0x0)
close_range$auto(0xffffffffffffffff, 0xfffffffffffff000, 0x2)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/sound/ctl-led/speaker/mode\x00', 0x182, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x40090)
mmap$auto(0x0, 0x7187, 0x1, 0xeb1, 0x401, 0x8000)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, 0x0, 0xc800)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/afs/sysname\x00', 0x80002, 0x0)
writev$auto(r2, &(0x7f0000000240)={0x0, 0x9}, 0xb)
pread64$auto(r1, &(0x7f0000000080)='*{\x00', 0x488, 0x7)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400000000000400, 0x9}, 0x9, 0x0)
landlock_restrict_self$auto(0xffffffffffffffff, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
unshare$auto(0x200)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
setns(r3, 0x0)
umount2$auto(&(0x7f0000000080)='.\x00', 0x3)

164.655871ms ago: executing program 0 (id=2051):
r0 = open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2)
open_by_handle_at$auto(r0, &(0x7f0000000000)={0x8, 0x4, "7500009018900000"}, 0x6)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r1, &(0x7f0000000440)="671d264add69b6440843b6e6688a2b5ad9df2669e6f9cd236532b20ed763ac8caf4bde4c30b530ac6ebbff950e1a647d6a08a1b55dde5a409b4d", 0x3a)

107.583555ms ago: executing program 2 (id=2052):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x126, 0xf8, 0xffffffffffffffff, 0x8000)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x800, 0xdf, 0xeb1, 0x401, 0x1)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
close_range$auto(0x0, 0x5, 0x0)
r2 = pipe$auto(0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0x4048aec9, r1)
close_range$auto(r0, r2, 0x3ff)
r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xb, 0xb5, 0x10, 0x4, 0x53000000, 0xffffffffffffffff, 0x9, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x4f4, 0x7}, 0x10)
r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/028/001\x00', 0xa901, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB32(r5, 0x802c550a, &(0x7f00000001c0)=ANY=[@ANYBLOB="020000000000000005"])
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
socket(0x2, 0x800, 0x206)
syz_clone(0x811, 0x0, 0x0, 0x0, 0x0, 0x0)
clock_nanosleep$auto(0xfffffff2, 0x5, &(0x7f0000000000)={0x4, 0x4203195}, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000080)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x4004891}, 0x0)
ioctl$auto_PPPIOCSPASS(r4, 0x40107447, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 4 (id=2053):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'xfrm0\x00'})
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f000001f300), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r2], 0x1ac}}, 0x40000)
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x30, 0xff, 0x0, @raw=0xfffff004}})

kernel console output (not intermixed with test programs):

: [U]=USER
[  550.788790][T11654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  550.788803][T11654] Call Trace:
[  550.788810][T11654]  <TASK>
[  550.788818][T11654]  dump_stack_lvl+0x16c/0x1f0
[  550.788854][T11654]  should_fail_ex+0x512/0x640
[  550.788885][T11654]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  550.788924][T11654]  should_failslab+0xc2/0x120
[  550.788944][T11654]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  550.788989][T11654]  ? apply_subsystem_event_filter+0x46d/0x17a0
[  550.789022][T11654]  kstrdup+0x53/0x100
[  550.789055][T11654]  apply_subsystem_event_filter+0x46d/0x17a0
[  550.789091][T11654]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[  550.789124][T11654]  ? _copy_from_user+0x59/0xd0
[  550.789159][T11654]  subsystem_filter_write+0x95/0x120
[  550.789188][T11654]  ? __pfx_subsystem_filter_write+0x10/0x10
[  550.789213][T11654]  vfs_write+0x29d/0x1150
[  550.789267][T11654]  ? __pfx___mutex_lock+0x10/0x10
[  550.789303][T11654]  ? __pfx_vfs_write+0x10/0x10
[  550.789355][T11654]  ? __fget_files+0x20e/0x3c0
[  550.789392][T11654]  ksys_write+0x12a/0x250
[  550.789422][T11654]  ? __pfx_ksys_write+0x10/0x10
[  550.789460][T11654]  do_syscall_64+0xcd/0x490
[  550.789494][T11654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.789516][T11654] RIP: 0033:0x7fb04618e929
[  550.789533][T11654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  550.789553][T11654] RSP: 002b:00007fb046ffc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  550.789573][T11654] RAX: ffffffffffffffda RBX: 00007fb0463b5fa0 RCX: 00007fb04618e929
[  550.789587][T11654] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000006
[  550.789600][T11654] RBP: 00007fb046210b39 R08: 0000000000000000 R09: 0000000000000000
[  550.789613][T11654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  550.789627][T11654] R13: 0000000000000000 R14: 00007fb0463b5fa0 R15: 00007ffc6af503c8
[  550.789654][T11654]  </TASK>
[  551.006339][    C1] vkms_vblank_simulate: vblank timer overrun
[  551.298560][T11658] FAULT_INJECTION: forcing a failure.
[  551.298560][T11658] name failslab, interval 1, probability 0, space 0, times 0
[  551.354474][T11658] CPU: 1 UID: 0 PID: 11658 Comm: syz.0.1405 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  551.354510][T11658] Tainted: [U]=USER
[  551.354518][T11658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  551.354531][T11658] Call Trace:
[  551.354538][T11658]  <TASK>
[  551.354546][T11658]  dump_stack_lvl+0x16c/0x1f0
[  551.354592][T11658]  should_fail_ex+0x512/0x640
[  551.354621][T11658]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  551.354668][T11658]  should_failslab+0xc2/0x120
[  551.354689][T11658]  __kmalloc_cache_noprof+0x6a/0x3e0
[  551.354717][T11658]  ? alloc_netdev_mqs+0xf3a/0x1570
[  551.354755][T11658]  alloc_netdev_mqs+0xf3a/0x1570
[  551.354794][T11658]  ppp_ioctl+0x1761/0x2660
[  551.354821][T11658]  ? find_held_lock+0x2b/0x80
[  551.354842][T11658]  ? __pfx_ppp_ioctl+0x10/0x10
[  551.354871][T11658]  ? __fget_files+0x20e/0x3c0
[  551.354904][T11658]  ? __pfx_ppp_ioctl+0x10/0x10
[  551.354936][T11658]  __x64_sys_ioctl+0x18b/0x210
[  551.354963][T11658]  do_syscall_64+0xcd/0x490
[  551.354997][T11658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  551.355019][T11658] RIP: 0033:0x7fb04618e929
[  551.355053][T11658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  551.355076][T11658] RSP: 002b:00007fb046fdb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  551.355097][T11658] RAX: ffffffffffffffda RBX: 00007fb0463b6080 RCX: 00007fb04618e929
[  551.355111][T11658] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000009
[  551.355125][T11658] RBP: 00007fb046210b39 R08: 0000000000000000 R09: 0000000000000000
[  551.355139][T11658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  551.355153][T11658] R13: 0000000000000000 R14: 00007fb0463b6080 R15: 00007ffc6af503c8
[  551.355181][T11658]  </TASK>
[  551.546210][    C1] vkms_vblank_simulate: vblank timer overrun
[  552.876937][T11680] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1411'.
[  553.657231][T11692] usb usb28: usbfs: process 11692 (syz.3.1415) did not claim interface 0 before use
[  555.196356][T11708] FAULT_INJECTION: forcing a failure.
[  555.196356][T11708] name failslab, interval 1, probability 0, space 0, times 0
[  555.281179][T11708] CPU: 1 UID: 0 PID: 11708 Comm: syz.4.1419 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  555.281215][T11708] Tainted: [U]=USER
[  555.281222][T11708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  555.281235][T11708] Call Trace:
[  555.281241][T11708]  <TASK>
[  555.281249][T11708]  dump_stack_lvl+0x16c/0x1f0
[  555.281286][T11708]  should_fail_ex+0x512/0x640
[  555.281317][T11708]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  555.281352][T11708]  should_failslab+0xc2/0x120
[  555.281373][T11708]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  555.281406][T11708]  ? __d_alloc+0x31/0xaa0
[  555.281442][T11708]  __d_alloc+0x31/0xaa0
[  555.281472][T11708]  ? stack_trace_save+0x8e/0xc0
[  555.281498][T11708]  d_alloc+0x4a/0x1e0
[  555.281532][T11708]  d_alloc_parallel+0xe3/0x12e0
[  555.281557][T11708]  ? kasan_save_stack+0x33/0x60
[  555.281592][T11708]  ? kasan_save_track+0x14/0x30
[  555.281622][T11708]  ? __kmalloc_node_track_caller_noprof+0x221/0x510
[  555.281655][T11708]  ? kmemdup_noprof+0x29/0x60
[  555.281685][T11708]  ? binderfs_binder_device_create.isra.0+0x41d/0xc30
[  555.281716][T11708]  ? get_tree_nodev+0xdd/0x190
[  555.281743][T11708]  ? vfs_get_tree+0x8e/0x340
[  555.281765][T11708]  ? vfs_cmd_create+0xd7/0x2a0
[  555.281782][T11708]  ? __do_sys_fsconfig+0x7b8/0xbe0
[  555.281799][T11708]  ? do_syscall_64+0xcd/0x490
[  555.281829][T11708]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.281853][T11708]  ? __pfx_d_alloc_parallel+0x10/0x10
[  555.281880][T11708]  ? lockdep_init_map_type+0x5c/0x280
[  555.281910][T11708]  ? lockdep_init_map_type+0x5c/0x280
[  555.281944][T11708]  __lookup_slow+0x193/0x460
[  555.281968][T11708]  ? __pfx___lookup_slow+0x10/0x10
[  555.281995][T11708]  ? pcpu_populate_chunk+0x3b0/0xb00
[  555.282030][T11708]  ? pcpu_populate_chunk+0x3b0/0xb00
[  555.282058][T11708]  ? d_lookup+0xe7/0x190
[  555.282086][T11708]  lookup_noperm+0xe1/0x110
[  555.282110][T11708]  binderfs_binder_device_create.isra.0+0x70e/0xc30
[  555.282148][T11708]  binderfs_fill_super+0x8d4/0x1360
[  555.282181][T11708]  ? __pfx_binderfs_fill_super+0x10/0x10
[  555.282230][T11708]  ? shrinker_register+0x1a8/0x260
[  555.282264][T11708]  ? sget_fc+0x808/0xc20
[  555.282291][T11708]  ? apparmor_capable+0x114/0x1d0
[  555.282311][T11708]  ? __pfx_set_anon_super_fc+0x10/0x10
[  555.282340][T11708]  ? __pfx_binderfs_fill_super+0x10/0x10
[  555.282367][T11708]  get_tree_nodev+0xdd/0x190
[  555.282397][T11708]  vfs_get_tree+0x8e/0x340
[  555.282421][T11708]  vfs_cmd_create+0xd7/0x2a0
[  555.282441][T11708]  __do_sys_fsconfig+0x7b8/0xbe0
[  555.282463][T11708]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  555.282481][T11708]  ? fput+0x70/0xf0
[  555.282511][T11708]  do_syscall_64+0xcd/0x490
[  555.282546][T11708]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.282566][T11708] RIP: 0033:0x7f062f58e929
[  555.282587][T11708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  555.282608][T11708] RSP: 002b:00007f06304e1038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  555.282631][T11708] RAX: ffffffffffffffda RBX: 00007f062f7b5fa0 RCX: 00007f062f58e929
[  555.282644][T11708] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[  555.282656][T11708] RBP: 00007f06304e1090 R08: 0000000000000000 R09: 0000000000000000
[  555.282669][T11708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  555.282681][T11708] R13: 0000000000000000 R14: 00007f062f7b5fa0 R15: 00007ffc21996758
[  555.282708][T11708]  </TASK>
[  555.624531][    C1] vkms_vblank_simulate: vblank timer overrun
[  555.687771][T11705] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(2147483649.0.2), cmd(6)
[  557.531256][T11728] FAULT_INJECTION: forcing a failure.
[  557.531256][T11728] name fail_futex, interval 1, probability 0, space 0, times 0
[  557.595527][T11728] CPU: 1 UID: 0 PID: 11728 Comm: syz.2.1425 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  557.595585][T11728] Tainted: [U]=USER
[  557.595592][T11728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  557.595606][T11728] Call Trace:
[  557.595613][T11728]  <TASK>
[  557.595621][T11728]  dump_stack_lvl+0x16c/0x1f0
[  557.595661][T11728]  should_fail_ex+0x512/0x640
[  557.595693][T11728]  ? unwind_get_return_address+0x59/0xa0
[  557.595733][T11728]  get_futex_key+0x1d0/0x1540
[  557.595762][T11728]  ? __pfx_get_futex_key+0x10/0x10
[  557.595789][T11728]  ? stack_trace_save+0x8e/0xc0
[  557.595813][T11728]  ? __pfx_stack_trace_save+0x10/0x10
[  557.595837][T11728]  ? stack_depot_save_flags+0x28/0xa40
[  557.595875][T11728]  futex_wait_setup+0x9d/0x550
[  557.595916][T11728]  __futex_wait+0x194/0x2f0
[  557.595949][T11728]  ? __pfx___futex_wait+0x10/0x10
[  557.595986][T11728]  ? __pfx_futex_wake_mark+0x10/0x10
[  557.596054][T11728]  futex_wait+0xe8/0x380
[  557.596087][T11728]  ? __pfx_futex_wait+0x10/0x10
[  557.596127][T11728]  ? kmem_cache_free+0x2d1/0x4d0
[  557.596160][T11728]  ? fd_install+0x225/0x750
[  557.596196][T11728]  ? putname+0x154/0x1a0
[  557.596222][T11728]  do_futex+0x229/0x350
[  557.596251][T11728]  ? __pfx_do_futex+0x10/0x10
[  557.596288][T11728]  __x64_sys_futex+0x1e0/0x4c0
[  557.596319][T11728]  ? __x64_sys_openat+0x174/0x210
[  557.596345][T11728]  ? __pfx___x64_sys_futex+0x10/0x10
[  557.596394][T11728]  do_syscall_64+0xcd/0x490
[  557.596434][T11728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  557.596459][T11728] RIP: 0033:0x7f62f0b8e929
[  557.596477][T11728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  557.596500][T11728] RSP: 002b:00007f62f19c60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  557.596522][T11728] RAX: ffffffffffffffda RBX: 00007f62f0db5fa8 RCX: 00007f62f0b8e929
[  557.596538][T11728] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62f0db5fa8
[  557.596552][T11728] RBP: 00007f62f0db5fa0 R08: 0000000000000000 R09: 0000000000000000
[  557.596566][T11728] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62f0db5fac
[  557.596580][T11728] R13: 0000000000000000 R14: 00007ffcf3237d50 R15: 00007ffcf3237e38
[  557.596609][T11728]  </TASK>
[  557.829943][    C1] vkms_vblank_simulate: vblank timer overrun
[  558.372035][T11740] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1428'.
[  559.813609][T11756] FAULT_INJECTION: forcing a failure.
[  559.813609][T11756] name failslab, interval 1, probability 0, space 0, times 0
[  559.897348][T11756] CPU: 1 UID: 0 PID: 11756 Comm: syz.4.1432 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  559.897386][T11756] Tainted: [U]=USER
[  559.897393][T11756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  559.897407][T11756] Call Trace:
[  559.897413][T11756]  <TASK>
[  559.897422][T11756]  dump_stack_lvl+0x16c/0x1f0
[  559.897458][T11756]  should_fail_ex+0x512/0x640
[  559.897490][T11756]  ? fs_reclaim_acquire+0xae/0x150
[  559.897517][T11756]  ? tomoyo_encode2+0x100/0x3e0
[  559.897546][T11756]  should_failslab+0xc2/0x120
[  559.897567][T11756]  __kmalloc_noprof+0xd2/0x510
[  559.897598][T11756]  ? d_absolute_path+0x136/0x1a0
[  559.897625][T11756]  tomoyo_encode2+0x100/0x3e0
[  559.897668][T11756]  tomoyo_encode+0x29/0x50
[  559.897695][T11756]  tomoyo_realpath_from_path+0x18f/0x6e0
[  559.897731][T11756]  tomoyo_check_open_permission+0x2ab/0x3c0
[  559.897757][T11756]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  559.897806][T11756]  ? do_raw_spin_lock+0x12c/0x2b0
[  559.897845][T11756]  tomoyo_file_open+0x6b/0x90
[  559.897878][T11756]  security_file_open+0x84/0x1e0
[  559.897906][T11756]  do_dentry_open+0x596/0x1c10
[  559.897944][T11756]  vfs_open+0x82/0x3f0
[  559.897969][T11756]  path_openat+0x1de4/0x2cb0
[  559.898007][T11756]  ? __pfx_path_openat+0x10/0x10
[  559.898038][T11756]  ? __lock_acquire+0xb8a/0x1c90
[  559.898086][T11756]  do_filp_open+0x20b/0x470
[  559.898119][T11756]  ? __pfx_do_filp_open+0x10/0x10
[  559.898169][T11756]  ? alloc_fd+0x471/0x7d0
[  559.898227][T11756]  do_sys_openat2+0x11b/0x1d0
[  559.898252][T11756]  ? __pfx_do_sys_openat2+0x10/0x10
[  559.898286][T11756]  __x64_sys_openat+0x174/0x210
[  559.898311][T11756]  ? __pfx___x64_sys_openat+0x10/0x10
[  559.898346][T11756]  do_syscall_64+0xcd/0x490
[  559.898382][T11756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  559.898404][T11756] RIP: 0033:0x7f062f58e929
[  559.898421][T11756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  559.898442][T11756] RSP: 002b:00007f06304e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  559.898462][T11756] RAX: ffffffffffffffda RBX: 00007f062f7b5fa0 RCX: 00007f062f58e929
[  559.898476][T11756] RDX: 0000000000101901 RSI: 0000200000002c00 RDI: ffffffffffffff9c
[  559.898501][T11756] RBP: 00007f062f610b39 R08: 0000000000000000 R09: 0000000000000000
[  559.898513][T11756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  559.898525][T11756] R13: 0000000000000000 R14: 00007f062f7b5fa0 R15: 00007ffc21996758
[  559.898550][T11756]  </TASK>
[  559.898570][T11756] ERROR: Out of memory at tomoyo_realpath_from_path.
[  561.149394][T11769] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1437'.
[  561.546266][T11778] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1439'.
[  563.567619][T11797] usb usb28: usbfs: process 11797 (syz.4.1443) did not claim interface 0 before use
[  563.951189][T11806] FAULT_INJECTION: forcing a failure.
[  563.951189][T11806] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  564.057948][T11806] CPU: 1 UID: 60928 PID: 11806 Comm: syz.2.1445 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  564.057988][T11806] Tainted: [U]=USER
[  564.057995][T11806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  564.058008][T11806] Call Trace:
[  564.058016][T11806]  <TASK>
[  564.058024][T11806]  dump_stack_lvl+0x16c/0x1f0
[  564.058062][T11806]  should_fail_ex+0x512/0x640
[  564.058100][T11806]  strncpy_from_user+0x3b/0x2e0
[  564.058134][T11806]  getname_flags.part.0+0x8f/0x550
[  564.058163][T11806]  getname_flags+0x93/0xf0
[  564.058194][T11806]  do_sys_openat2+0xb8/0x1d0
[  564.058219][T11806]  ? __pfx_do_sys_openat2+0x10/0x10
[  564.058256][T11806]  __x64_sys_openat+0x174/0x210
[  564.058282][T11806]  ? __pfx___x64_sys_openat+0x10/0x10
[  564.058340][T11806]  do_syscall_64+0xcd/0x490
[  564.058393][T11806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  564.058416][T11806] RIP: 0033:0x7f62f0b8e929
[  564.058434][T11806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  564.058456][T11806] RSP: 002b:00007f62f19a5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  564.058477][T11806] RAX: ffffffffffffffda RBX: 00007f62f0db6080 RCX: 00007f62f0b8e929
[  564.058493][T11806] RDX: 0000000000080001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  564.058508][T11806] RBP: 00007f62f0c10b39 R08: 0000000000000000 R09: 0000000000000000
[  564.058522][T11806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  564.058535][T11806] R13: 0000000000000000 R14: 00007f62f0db6080 R15: 00007ffcf3237e38
[  564.058563][T11806]  </TASK>
[  564.772426][T11810] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1447'.
[  564.906190][T11813] ima: policy update failed
[  564.947399][   T30] audit: type=1802 audit(6045865759.834:14): pid=11813 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1448" res=0 errno=0
[  565.518458][T11821] FAULT_INJECTION: forcing a failure.
[  565.518458][T11821] name failslab, interval 1, probability 0, space 0, times 0
[  565.703685][T11821] CPU: 1 UID: 0 PID: 11821 Comm: syz.3.1451 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  565.703722][T11821] Tainted: [U]=USER
[  565.703729][T11821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  565.703741][T11821] Call Trace:
[  565.703748][T11821]  <TASK>
[  565.703756][T11821]  dump_stack_lvl+0x16c/0x1f0
[  565.703798][T11821]  should_fail_ex+0x512/0x640
[  565.703848][T11821]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  565.703886][T11821]  should_failslab+0xc2/0x120
[  565.703908][T11821]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  565.703954][T11821]  ? alloc_empty_file+0x55/0x1e0
[  565.703980][T11821]  alloc_empty_file+0x55/0x1e0
[  565.704002][T11821]  path_openat+0xda/0x2cb0
[  565.704036][T11821]  ? rcu_is_watching+0x12/0xc0
[  565.704056][T11821]  ? trace_kmem_cache_alloc+0x28/0xc0
[  565.704078][T11821]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  565.704112][T11821]  ? __pfx_path_openat+0x10/0x10
[  565.704144][T11821]  ? __asan_memcpy+0x3c/0x60
[  565.704176][T11821]  do_file_open_root+0x322/0x610
[  565.704206][T11821]  ? stack_trace_save+0x8e/0xc0
[  565.704231][T11821]  ? __pfx_do_file_open_root+0x10/0x10
[  565.704288][T11821]  ? vsnprintf+0x318/0x1160
[  565.704321][T11821]  file_open_root+0x2a7/0x450
[  565.704354][T11821]  ? __pfx_file_open_root+0x10/0x10
[  565.704384][T11821]  ? find_held_lock+0x2b/0x80
[  565.704407][T11821]  ? kernel_read_file_from_path_initns+0x17a/0x260
[  565.704437][T11821]  kernel_read_file_from_path_initns+0x189/0x260
[  565.704463][T11821]  ? __pfx_kernel_read_file_from_path_initns+0x10/0x10
[  565.704487][T11821]  ? trace_kmem_cache_alloc+0x28/0xc0
[  565.704511][T11821]  ? _request_firmware+0x503/0x1470
[  565.704542][T11821]  _request_firmware+0x744/0x1470
[  565.704579][T11821]  ? __pfx__request_firmware+0x10/0x10
[  565.704616][T11821]  request_firmware+0x35/0x50
[  565.704663][T11821]  valid_regdb+0x188/0x590
[  565.704695][T11821]  ? __pfx___mutex_lock+0x10/0x10
[  565.704732][T11821]  ? __pfx_valid_regdb+0x10/0x10
[  565.704761][T11821]  reg_reload_regdb+0x11e/0x460
[  565.704793][T11821]  ? __pfx_reg_reload_regdb+0x10/0x10
[  565.704822][T11821]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  565.704855][T11821]  ? nl80211_pre_doit+0x1b0/0xb10
[  565.704894][T11821]  genl_family_rcv_msg_doit+0x209/0x2f0
[  565.704926][T11821]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  565.704954][T11821]  ? rcu_is_watching+0x12/0xc0
[  565.704985][T11821]  ? bpf_lsm_capable+0x9/0x10
[  565.705013][T11821]  ? security_capable+0x7e/0x260
[  565.705068][T11821]  genl_rcv_msg+0x55c/0x800
[  565.705097][T11821]  ? __pfx_genl_rcv_msg+0x10/0x10
[  565.705123][T11821]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  565.705154][T11821]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[  565.705177][T11821]  ? __pfx_nl80211_post_doit+0x10/0x10
[  565.705219][T11821]  netlink_rcv_skb+0x158/0x420
[  565.705241][T11821]  ? __pfx_genl_rcv_msg+0x10/0x10
[  565.705269][T11821]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  565.705303][T11821]  ? netlink_deliver_tap+0x1ae/0xd30
[  565.705328][T11821]  genl_rcv+0x28/0x40
[  565.705351][T11821]  netlink_unicast+0x53a/0x7f0
[  565.705376][T11821]  ? __pfx_netlink_unicast+0x10/0x10
[  565.705407][T11821]  netlink_sendmsg+0x8d1/0xdd0
[  565.705434][T11821]  ? __pfx_netlink_sendmsg+0x10/0x10
[  565.705467][T11821]  ____sys_sendmsg+0xa98/0xc70
[  565.705493][T11821]  ? copy_msghdr_from_user+0x10a/0x160
[  565.705525][T11821]  ? __pfx_____sys_sendmsg+0x10/0x10
[  565.705557][T11821]  ? __pfx_futex_wake_mark+0x10/0x10
[  565.705592][T11821]  ___sys_sendmsg+0x134/0x1d0
[  565.705627][T11821]  ? __pfx____sys_sendmsg+0x10/0x10
[  565.705658][T11821]  ? __lock_acquire+0x622/0x1c90
[  565.705730][T11821]  __sys_sendmsg+0x16d/0x220
[  565.705761][T11821]  ? __pfx___sys_sendmsg+0x10/0x10
[  565.705798][T11821]  ? __x64_sys_futex+0x1e0/0x4c0
[  565.705857][T11821]  do_syscall_64+0xcd/0x490
[  565.705893][T11821]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  565.705915][T11821] RIP: 0033:0x7f78a3f8e929
[  565.705943][T11821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  565.705964][T11821] RSP: 002b:00007f78a4d76038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  565.705983][T11821] RAX: ffffffffffffffda RBX: 00007f78a41b5fa0 RCX: 00007f78a3f8e929
[  565.705998][T11821] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000006
[  565.706011][T11821] RBP: 00007f78a4010b39 R08: 0000000000000000 R09: 0000000000000000
[  565.706023][T11821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  565.706036][T11821] R13: 0000000000000000 R14: 00007f78a41b5fa0 R15: 00007ffe5e0e3418
[  565.706062][T11821]  </TASK>
[  568.064621][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  568.072567][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  569.122086][T11865] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1467'.
[  569.619571][T11821] platform regulatory.0: loading /lib/firmware/updates/regulatory.db.p7s failed with error -12
[  569.681815][T11821] platform regulatory.0: loading /lib/firmware/regulatory.db.p7s failed with error -4
[  569.753675][T11821] platform regulatory.0: Direct firmware load for regulatory.db.p7s failed with error -4
[  569.810616][T11872] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1468'.
[  569.827055][T11821] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db.p7s
[  570.090920][T11875] usb usb28: usbfs: process 11875 (syz.2.1469) did not claim interface 0 before use
[  571.416161][T11892] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  571.434743][T11892] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  571.482856][T11892] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  571.532528][T11892] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  571.540432][ T5836] Bluetooth: hci2: SCO packet for unknown connection handle 0
[  571.569003][T11892] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  571.732454][T11892] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  571.754274][T11892] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  571.863987][T11892] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  571.982363][T11892] CPU0 is offline.
[  572.463073][T11903] FAULT_INJECTION: forcing a failure.
[  572.463073][T11903] name fail_futex, interval 1, probability 0, space 0, times 0
[  572.539784][T11903] CPU: 1 UID: 0 PID: 11903 Comm: syz.2.1476 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  572.539818][T11903] Tainted: [U]=USER
[  572.539825][T11903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  572.539838][T11903] Call Trace:
[  572.539844][T11903]  <TASK>
[  572.539852][T11903]  dump_stack_lvl+0x16c/0x1f0
[  572.539888][T11903]  should_fail_ex+0x512/0x640
[  572.539918][T11903]  ? unwind_get_return_address+0x59/0xa0
[  572.539952][T11903]  get_futex_key+0x1d0/0x1540
[  572.539980][T11903]  ? __pfx_get_futex_key+0x10/0x10
[  572.540004][T11903]  ? stack_trace_save+0x8e/0xc0
[  572.540026][T11903]  ? __pfx_stack_trace_save+0x10/0x10
[  572.540047][T11903]  ? stack_depot_save_flags+0x28/0xa40
[  572.540081][T11903]  futex_wait_setup+0x9d/0x550
[  572.540118][T11903]  __futex_wait+0x194/0x2f0
[  572.540148][T11903]  ? __pfx___futex_wait+0x10/0x10
[  572.540182][T11903]  ? __pfx_futex_wake_mark+0x10/0x10
[  572.540225][T11903]  futex_wait+0xe8/0x380
[  572.540254][T11903]  ? __pfx_futex_wait+0x10/0x10
[  572.540288][T11903]  ? kmem_cache_free+0x2d1/0x4d0
[  572.540317][T11903]  ? fd_install+0x225/0x750
[  572.540343][T11903]  ? putname+0x154/0x1a0
[  572.540374][T11903]  do_futex+0x229/0x350
[  572.540399][T11903]  ? __pfx_do_futex+0x10/0x10
[  572.540431][T11903]  __x64_sys_futex+0x1e0/0x4c0
[  572.540458][T11903]  ? __x64_sys_openat+0x174/0x210
[  572.540482][T11903]  ? __pfx___x64_sys_futex+0x10/0x10
[  572.540517][T11903]  do_syscall_64+0xcd/0x490
[  572.540551][T11903]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.540572][T11903] RIP: 0033:0x7f62f0b8e929
[  572.540588][T11903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  572.540608][T11903] RSP: 002b:00007f62f19c60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  572.540627][T11903] RAX: ffffffffffffffda RBX: 00007f62f0db5fa8 RCX: 00007f62f0b8e929
[  572.540640][T11903] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62f0db5fa8
[  572.540652][T11903] RBP: 00007f62f0db5fa0 R08: 0000000000000000 R09: 0000000000000000
[  572.540665][T11903] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62f0db5fac
[  572.540678][T11903] R13: 0000000000000000 R14: 00007ffcf3237d50 R15: 00007ffcf3237e38
[  572.540702][T11903]  </TASK>
[  573.068463][T11907] FAULT_INJECTION: forcing a failure.
[  573.068463][T11907] name failslab, interval 1, probability 0, space 0, times 0
[  573.106306][T11907] CPU: 1 UID: 0 PID: 11907 Comm: syz.4.1478 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  573.106343][T11907] Tainted: [U]=USER
[  573.106351][T11907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  573.106364][T11907] Call Trace:
[  573.106371][T11907]  <TASK>
[  573.106380][T11907]  dump_stack_lvl+0x16c/0x1f0
[  573.106417][T11907]  should_fail_ex+0x512/0x640
[  573.106448][T11907]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  573.106485][T11907]  should_failslab+0xc2/0x120
[  573.106506][T11907]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  573.106538][T11907]  ? security_file_alloc+0x34/0x2b0
[  573.106570][T11907]  security_file_alloc+0x34/0x2b0
[  573.106598][T11907]  init_file+0x93/0x4c0
[  573.106619][T11907]  alloc_empty_file+0x73/0x1e0
[  573.106642][T11907]  path_openat+0xda/0x2cb0
[  573.106671][T11907]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  573.106703][T11907]  ? __pfx_path_openat+0x10/0x10
[  573.106735][T11907]  ? __lock_acquire+0xb8a/0x1c90
[  573.106766][T11907]  do_filp_open+0x20b/0x470
[  573.106797][T11907]  ? __pfx_do_filp_open+0x10/0x10
[  573.106847][T11907]  ? alloc_fd+0x471/0x7d0
[  573.106882][T11907]  do_sys_openat2+0x11b/0x1d0
[  573.106906][T11907]  ? __pfx_do_sys_openat2+0x10/0x10
[  573.106940][T11907]  __x64_sys_openat+0x174/0x210
[  573.106965][T11907]  ? __pfx___x64_sys_openat+0x10/0x10
[  573.107000][T11907]  do_syscall_64+0xcd/0x490
[  573.107035][T11907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  573.107057][T11907] RIP: 0033:0x7f062f58e929
[  573.107073][T11907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  573.107094][T11907] RSP: 002b:00007f06304e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  573.107115][T11907] RAX: ffffffffffffffda RBX: 00007f062f7b5fa0 RCX: 00007f062f58e929
[  573.107130][T11907] RDX: 0000000000000001 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  573.107144][T11907] RBP: 00007f062f610b39 R08: 0000000000000000 R09: 0000000000000000
[  573.107158][T11907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  573.107172][T11907] R13: 0000000000000000 R14: 00007f062f7b5fa0 R15: 00007ffc21996758
[  573.107198][T11907]  </TASK>
[  573.583992][T10526] Bluetooth: hci0: command 0x0c1a tx timeout
[  573.590241][T10526] Bluetooth: hci2: command 0x0c1a tx timeout
[  573.596301][T10526] Bluetooth: hci3: command 0x0c1a tx timeout
[  573.811527][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout
[  574.716553][T11929] FAULT_INJECTION: forcing a failure.
[  574.716553][T11929] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  574.795345][T11930] usb usb28: usbfs: process 11930 (syz.2.1485) did not claim interface 0 before use
[  574.813587][T11929] CPU: 1 UID: 0 PID: 11929 Comm: syz.3.1486 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  574.813622][T11929] Tainted: [U]=USER
[  574.813629][T11929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  574.813642][T11929] Call Trace:
[  574.813649][T11929]  <TASK>
[  574.813657][T11929]  dump_stack_lvl+0x16c/0x1f0
[  574.813694][T11929]  should_fail_ex+0x512/0x640
[  574.813729][T11929]  should_fail_alloc_page+0xe7/0x130
[  574.813751][T11929]  prepare_alloc_pages+0x3c2/0x610
[  574.813781][T11929]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  574.813814][T11929]  ? ima_match_policy+0x7f9/0x22e0
[  574.813839][T11929]  ? __lock_acquire+0xb8a/0x1c90
[  574.813874][T11929]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  574.813905][T11929]  ? __lock_acquire+0x622/0x1c90
[  574.813947][T11929]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  574.813981][T11929]  ? policy_nodemask+0xea/0x4e0
[  574.814003][T11929]  alloc_pages_mpol+0x1fb/0x550
[  574.814024][T11929]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  574.814052][T11929]  alloc_pages_noprof+0x131/0x390
[  574.814076][T11929]  __pmd_alloc+0x3b/0x930
[  574.814098][T11929]  ? find_held_lock+0x2b/0x80
[  574.814128][T11929]  __handle_mm_fault+0xaac/0x5490
[  574.814164][T11929]  ? __pfx___handle_mm_fault+0x10/0x10
[  574.814191][T11929]  ? __pfx_mt_find+0x10/0x10
[  574.814225][T11929]  ? find_vma+0xbf/0x140
[  574.814246][T11929]  ? __pfx_find_vma+0x10/0x10
[  574.814271][T11929]  handle_mm_fault+0x589/0xd10
[  574.814300][T11929]  ? __pkru_allows_pkey+0x41/0xb0
[  574.814330][T11929]  do_user_addr_fault+0x7a6/0x1370
[  574.814364][T11929]  ? rcu_is_watching+0x12/0xc0
[  574.814388][T11929]  exc_page_fault+0x5c/0xb0
[  574.814420][T11929]  asm_exc_page_fault+0x26/0x30
[  574.814441][T11929] RIP: 0010:rep_movs_alternative+0xf/0x90
[  574.814468][T11929] Code: c4 10 c3 cc cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 10 04 00 66 66
[  574.814490][T11929] RSP: 0018:ffffc900026b7bd8 EFLAGS: 00050202
[  574.814507][T11929] RAX: 0000000000000001 RBX: 000000000000ffff RCX: 0000000000000004
[  574.814520][T11929] RDX: ffffed10044ddcf4 RSI: 000000000000ffff RDI: ffff8880226ee7a0
[  574.814534][T11929] RBP: 0000000000000004 R08: 0000000000000001 R09: ffffed10044ddcf4
[  574.814547][T11929] R10: 0000000000000003 R11: 0000000000000001 R12: 0000000000000000
[  574.814560][T11929] R13: ffff8880226ee7a0 R14: ffff8880126cfdc0 R15: 1ffff920004d6f86
[  574.814588][T11929]  _copy_from_user+0x98/0xd0
[  574.814623][T11929]  map_delete_elem+0x70f/0xa10
[  574.814653][T11929]  ? __might_fault+0xb0/0x190
[  574.814684][T11929]  ? __pfx_map_delete_elem+0x10/0x10
[  574.814721][T11929]  __sys_bpf+0x631/0x4d80
[  574.814757][T11929]  ? __pfx___sys_bpf+0x10/0x10
[  574.814791][T11929]  ? ksys_write+0x190/0x250
[  574.814825][T11929]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  574.814875][T11929]  ? fput+0x70/0xf0
[  574.814894][T11929]  ? ksys_write+0x1ac/0x250
[  574.814923][T11929]  ? __pfx_ksys_write+0x10/0x10
[  574.814958][T11929]  __x64_sys_bpf+0x78/0xc0
[  574.814977][T11929]  ? lockdep_hardirqs_on+0x7c/0x110
[  574.815008][T11929]  do_syscall_64+0xcd/0x490
[  574.815042][T11929]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  574.815063][T11929] RIP: 0033:0x7f78a3f8e929
[  574.815079][T11929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  574.815100][T11929] RSP: 002b:00007f78a4d76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  574.815124][T11929] RAX: ffffffffffffffda RBX: 00007f78a41b5fa0 RCX: 00007f78a3f8e929
[  574.815138][T11929] RDX: 000000000000000c RSI: 00002000000001c0 RDI: 0000000000000003
[  574.815151][T11929] RBP: 00007f78a4d76090 R08: 0000000000000000 R09: 0000000000000000
[  574.815165][T11929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  574.815177][T11929] R13: 0000000000000000 R14: 00007f78a41b5fa0 R15: 00007ffe5e0e3418
[  574.815204][T11929]  </TASK>
[  575.875132][T10526] Bluetooth: hci3: command 0x0c1a tx timeout
[  575.881737][T10526] Bluetooth: hci2: command 0x0c1a tx timeout
[  575.891676][T10526] Bluetooth: hci4: command 0x0c1a tx timeout
[  576.730812][T11945] FAULT_INJECTION: forcing a failure.
[  576.730812][T11945] name failslab, interval 1, probability 0, space 0, times 0
[  576.797830][T11945] CPU: 1 UID: 0 PID: 11945 Comm: syz.2.1491 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  576.797870][T11945] Tainted: [U]=USER
[  576.797878][T11945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  576.797892][T11945] Call Trace:
[  576.797899][T11945]  <TASK>
[  576.797909][T11945]  dump_stack_lvl+0x16c/0x1f0
[  576.797956][T11945]  should_fail_ex+0x512/0x640
[  576.798010][T11945]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  576.798047][T11945]  should_failslab+0xc2/0x120
[  576.798070][T11945]  __kmalloc_cache_noprof+0x6a/0x3e0
[  576.798102][T11945]  ? do_epoll_create+0x62/0x470
[  576.798136][T11945]  do_epoll_create+0x62/0x470
[  576.798165][T11945]  __x64_sys_epoll_create+0x45/0x70
[  576.798196][T11945]  do_syscall_64+0xcd/0x490
[  576.798246][T11945]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.798270][T11945] RIP: 0033:0x7f62f0b8e929
[  576.798288][T11945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  576.798310][T11945] RSP: 002b:00007f62f19c6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d5
[  576.798331][T11945] RAX: ffffffffffffffda RBX: 00007f62f0db5fa0 RCX: 00007f62f0b8e929
[  576.798346][T11945] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  576.798360][T11945] RBP: 00007f62f0c10b39 R08: 0000000000000000 R09: 0000000000000000
[  576.798374][T11945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  576.798388][T11945] R13: 0000000000000000 R14: 00007f62f0db5fa0 R15: 00007ffcf3237e38
[  576.798415][T11945]  </TASK>
[  577.764331][ T5836] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  577.764364][ T5836] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  577.779556][ T5836] Bluetooth: hci3: Dropping invalid advertising data
[  577.786694][ T5836] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  577.786721][ T5836] Bluetooth: hci3: Dropping invalid advertising data
[  577.800821][ T5836] Bluetooth: hci3: Malformed LE Event: 0x02
[  577.956590][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout
[  581.042627][T11989] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  581.079663][T11989] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  581.102062][T11989] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  581.153018][T11989] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  581.204400][T11989] CPU0 is offline.

syzkaller
syzkaller login: [  582.355782][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout
[  583.154290][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout
[  583.160462][T10526] Bluetooth: hci2: command 0x0c1a tx timeout
[  583.234409][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout
[  585.984398][T12054] FAULT_INJECTION: forcing a failure.
[  585.984398][T12054] name failslab, interval 1, probability 0, space 0, times 0
[  586.186829][T12054] CPU: 1 UID: 0 PID: 12054 Comm: syz.0.1521 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  586.186864][T12054] Tainted: [U]=USER
[  586.186871][T12054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  586.186883][T12054] Call Trace:
[  586.186890][T12054]  <TASK>
[  586.186898][T12054]  dump_stack_lvl+0x16c/0x1f0
[  586.186935][T12054]  should_fail_ex+0x512/0x640
[  586.186964][T12054]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  586.186999][T12054]  should_failslab+0xc2/0x120
[  586.187019][T12054]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  586.187050][T12054]  ? security_file_alloc+0x34/0x2b0
[  586.187079][T12054]  security_file_alloc+0x34/0x2b0
[  586.187106][T12054]  init_file+0x93/0x4c0
[  586.187127][T12054]  alloc_empty_file+0x73/0x1e0
[  586.187149][T12054]  path_openat+0xda/0x2cb0
[  586.187175][T12054]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  586.187205][T12054]  ? __pfx_path_openat+0x10/0x10
[  586.187234][T12054]  ? __lock_acquire+0xb8a/0x1c90
[  586.187271][T12054]  do_filp_open+0x20b/0x470
[  586.187301][T12054]  ? __pfx_do_filp_open+0x10/0x10
[  586.187348][T12054]  ? alloc_fd+0x471/0x7d0
[  586.187383][T12054]  do_sys_openat2+0x11b/0x1d0
[  586.187406][T12054]  ? __pfx_do_sys_openat2+0x10/0x10
[  586.187430][T12054]  ? __pfx___might_resched+0x10/0x10
[  586.187457][T12054]  __x64_sys_openat+0x174/0x210
[  586.187480][T12054]  ? __pfx___x64_sys_openat+0x10/0x10
[  586.187513][T12054]  do_syscall_64+0xcd/0x490
[  586.187546][T12054]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  586.187566][T12054] RIP: 0033:0x7fb04618e929
[  586.187582][T12054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  586.187603][T12054] RSP: 002b:00007fb046ffc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  586.187622][T12054] RAX: ffffffffffffffda RBX: 00007fb0463b5fa0 RCX: 00007fb04618e929
[  586.187636][T12054] RDX: 0000000000040802 RSI: 0000200000000300 RDI: ffffffffffffff9c
[  586.187650][T12054] RBP: 00007fb046210b39 R08: 0000000000000000 R09: 0000000000000000
[  586.187662][T12054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  586.187675][T12054] R13: 0000000000000000 R14: 00007fb0463b5fa0 R15: 00007ffc6af503c8
[  586.187700][T12054]  </TASK>
[  586.416884][    C1] vkms_vblank_simulate: vblank timer overrun
[  586.904710][T12060] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1525'.
[  587.053876][T12062] FAULT_INJECTION: forcing a failure.
[  587.053876][T12062] name failslab, interval 1, probability 0, space 0, times 0
[  587.196292][T12062] CPU: 1 UID: 0 PID: 12062 Comm: syz.3.1522 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  587.196332][T12062] Tainted: [U]=USER
[  587.196340][T12062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  587.196372][T12062] Call Trace:
[  587.196380][T12062]  <TASK>
[  587.196388][T12062]  dump_stack_lvl+0x16c/0x1f0
[  587.196429][T12062]  should_fail_ex+0x512/0x640
[  587.196462][T12062]  ? __kmalloc_noprof+0xbf/0x510
[  587.196499][T12062]  ? lsm_blob_alloc+0x68/0x90
[  587.196533][T12062]  should_failslab+0xc2/0x120
[  587.196556][T12062]  __kmalloc_noprof+0xd2/0x510
[  587.196597][T12062]  lsm_blob_alloc+0x68/0x90
[  587.196633][T12062]  security_prepare_creds+0x30/0x270
[  587.196668][T12062]  prepare_creds+0x56f/0x7d0
[  587.196704][T12062]  join_session_keyring+0x17/0x340
[  587.196732][T12062]  lookup_user_key+0x576/0x1300
[  587.196763][T12062]  ? __pfx_lookup_user_key+0x10/0x10
[  587.196792][T12062]  ? __pfx_do_futex+0x10/0x10
[  587.196825][T12062]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  587.196866][T12062]  keyctl_keyring_move+0xb4/0x150
[  587.196890][T12062]  __do_sys_keyctl+0x171/0x590
[  587.196916][T12062]  do_syscall_64+0xcd/0x490
[  587.196954][T12062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.196978][T12062] RIP: 0033:0x7f78a3f8e929
[  587.196996][T12062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  587.197019][T12062] RSP: 002b:00007f78a4d55038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  587.197042][T12062] RAX: ffffffffffffffda RBX: 00007f78a41b6080 RCX: 00007f78a3f8e929
[  587.197058][T12062] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 000000000000001e
[  587.197074][T12062] RBP: 00007f78a4010b39 R08: 0000000000000001 R09: 0000000000000000
[  587.197089][T12062] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000
[  587.197104][T12062] R13: 0000000000000000 R14: 00007f78a41b6080 R15: 00007ffe5e0e3418
[  587.197133][T12062]  </TASK>
[  587.401813][    C1] vkms_vblank_simulate: vblank timer overrun
[  587.409660][T12068] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1527'.
[  589.636830][T12104] usb usb28: usbfs: process 12104 (syz.2.1532) did not claim interface 0 before use
[  590.702877][T12125] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1540'.
[  592.601013][T12152] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1547'.
[  593.164910][T12166] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1554'.
[  593.216634][T12168] FAULT_INJECTION: forcing a failure.
[  593.216634][T12168] name failslab, interval 1, probability 0, space 0, times 0
[  593.311916][T12168] CPU: 1 UID: 0 PID: 12168 Comm: syz.3.1555 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  593.311957][T12168] Tainted: [U]=USER
[  593.311966][T12168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  593.311980][T12168] Call Trace:
[  593.311988][T12168]  <TASK>
[  593.311998][T12168]  dump_stack_lvl+0x16c/0x1f0
[  593.312043][T12168]  should_fail_ex+0x512/0x640
[  593.312078][T12168]  ? __kvmalloc_node_noprof+0x124/0x620
[  593.312118][T12168]  should_failslab+0xc2/0x120
[  593.312141][T12168]  __kvmalloc_node_noprof+0x137/0x620
[  593.312178][T12168]  ? pidlist_array_load+0x129/0x9c0
[  593.312213][T12168]  ? pidlist_array_load+0x129/0x9c0
[  593.312240][T12168]  pidlist_array_load+0x129/0x9c0
[  593.312272][T12168]  ? __pfx_pidlist_array_load+0x10/0x10
[  593.312301][T12168]  ? __pfx___mutex_lock+0x10/0x10
[  593.312349][T12168]  ? kernfs_root+0xf8/0x2a0
[  593.312389][T12168]  cgroup_pidlist_start+0x3a3/0x4f0
[  593.312421][T12168]  ? __pfx_cgroup_seqfile_start+0x10/0x10
[  593.312453][T12168]  kernfs_seq_start+0xd8/0x240
[  593.312480][T12168]  seq_read_iter+0x2c1/0x12c0
[  593.312510][T12168]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  593.312559][T12168]  kernfs_fop_read_iter+0x40f/0x5a0
[  593.312590][T12168]  copy_splice_read+0x618/0xba0
[  593.312624][T12168]  ? __mutex_lock+0x1ca/0xb90
[  593.312662][T12168]  ? __pfx_copy_splice_read+0x10/0x10
[  593.312696][T12168]  ? __pfx___mutex_lock+0x10/0x10
[  593.312740][T12168]  ? __fget_files+0x204/0x3c0
[  593.312775][T12168]  ? __pfx_copy_splice_read+0x10/0x10
[  593.312805][T12168]  do_splice_read+0x282/0x370
[  593.312845][T12168]  splice_file_to_pipe+0x109/0x120
[  593.312881][T12168]  do_sendfile+0x400/0xe50
[  593.312920][T12168]  ? __pfx_do_sendfile+0x10/0x10
[  593.312958][T12168]  ? __x64_sys_futex+0x1e0/0x4c0
[  593.312986][T12168]  ? __x64_sys_futex+0x1e9/0x4c0
[  593.313019][T12168]  __x64_sys_sendfile64+0x1d8/0x220
[  593.313044][T12168]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  593.313076][T12168]  do_syscall_64+0xcd/0x490
[  593.313116][T12168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  593.313141][T12168] RIP: 0033:0x7f78a3f8e929
[  593.313160][T12168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  593.313184][T12168] RSP: 002b:00007f78a4d76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  593.313207][T12168] RAX: ffffffffffffffda RBX: 00007f78a41b5fa0 RCX: 00007f78a3f8e929
[  593.313223][T12168] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001
[  593.313238][T12168] RBP: 00007f78a4010b39 R08: 0000000000000000 R09: 0000000000000000
[  593.313252][T12168] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000000
[  593.313268][T12168] R13: 0000000000000000 R14: 00007f78a41b5fa0 R15: 00007ffe5e0e3418
[  593.313299][T12168]  </TASK>
[  595.430341][T12201] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1566'.
[  595.590036][T12205] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1566'.
[  595.882811][T12214] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1567'.
[  595.998962][T12217] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1568'.
[  596.582757][T12224] usb usb28: usbfs: process 12224 (syz.2.1570) did not claim interface 0 before use
[  600.056206][T12280] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1584'.
[  601.364949][T12313] netlink: 146 bytes leftover after parsing attributes in process `syz.2.1590'.
[  601.763107][T12316] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1592'.
[  604.688153][T12370] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1608'.
[  605.031347][ T5836] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  605.376326][T12382] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1611'.
[  606.154914][T12391] random: crng reseeded on system resumption
[  606.270600][T12395] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1614'.
[  606.325165][T12395] netlink: 354 bytes leftover after parsing attributes in process `syz.4.1614'.
[  608.304536][T12428] usb usb28: usbfs: process 12428 (syz.0.1620) did not claim interface 0 before use
[  608.546928][T12437] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1623'.
[  609.020541][T12443] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1625'.
[  609.472111][T12450] sg_write: process 1470 (syz.0.1626) changed security contexts after opening file descriptor, this is not allowed.
[  610.734796][T12491] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1634'.
[  611.695915][T12508] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  611.734415][T12508] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  611.796508][T12508] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  611.806707][ T5836] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  611.867200][T12508] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  611.969666][T12508] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  611.987593][T12508] CPU0 is offline.
[  613.149892][T12527] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1643'.
[  613.350238][T12530] 0x000200000001-0xa29656a63616329 : ""
[  613.384413][T12530] mtd: partition "" is out of reach -- disabled
[  613.464602][T12530] ftl_cs: FTL header not found.
[  613.714805][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout
[  613.800616][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  613.875041][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout
[  614.036007][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout
[  614.707039][T12549] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1650'.
[  615.955985][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout
[  616.681764][T12580] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1660'.
[  619.661707][T12616] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1671'.
[  620.049920][T12623] binder: 12621:12623 ioctl c018620b 0 returned -14
[  620.422464][T12630] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1677'.
[  620.529784][T12631] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1676'.
[  620.542365][T12634] vivid-007: =================  START STATUS  =================
[  620.586709][T12634] vivid-007: Generate PTS: true
[  620.625708][T12634] vivid-007: Generate SCR: true
[  620.658152][T12634] tpg source WxH: 320x240 (Y'CbCr)
[  620.663328][T12634] tpg field: 1
[  620.725384][T12634] tpg crop: (0,0)/320x240
[  620.729955][T12634] tpg compose: (0,0)/320x240
[  620.771691][T12634] tpg colorspace: 8
[  620.797225][T12634] tpg transfer function: 0/0
[  620.836578][T12634] tpg Y'CbCr encoding: 0/0
[  620.861693][T12634] tpg quantization: 0/0
[  620.896033][T12634] tpg RGB range: 0/2
[  620.907001][T12634] vivid-007: ==================  END STATUS  ==================
[  623.016425][T12666] FAULT_INJECTION: forcing a failure.
[  623.016425][T12666] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  623.145203][T12666] CPU: 1 UID: 0 PID: 12666 Comm: syz.2.1687 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  623.145240][T12666] Tainted: [U]=USER
[  623.145247][T12666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  623.145261][T12666] Call Trace:
[  623.145268][T12666]  <TASK>
[  623.145276][T12666]  dump_stack_lvl+0x16c/0x1f0
[  623.145313][T12666]  should_fail_ex+0x512/0x640
[  623.145348][T12666]  _copy_to_user+0x32/0xd0
[  623.145384][T12666]  simple_read_from_buffer+0xcb/0x170
[  623.145414][T12666]  proc_fail_nth_read+0x197/0x270
[  623.145440][T12666]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  623.145467][T12666]  ? rw_verify_area+0xcf/0x680
[  623.145494][T12666]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  623.145520][T12666]  vfs_read+0x1e4/0xc60
[  623.145560][T12666]  ? __pfx___mutex_lock+0x10/0x10
[  623.145596][T12666]  ? __pfx_vfs_read+0x10/0x10
[  623.145633][T12666]  ? __fget_files+0x20e/0x3c0
[  623.145670][T12666]  ksys_read+0x12a/0x250
[  623.145699][T12666]  ? __pfx_ksys_read+0x10/0x10
[  623.145737][T12666]  do_syscall_64+0xcd/0x490
[  623.145772][T12666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  623.145794][T12666] RIP: 0033:0x7f62f0b8d33c
[  623.145812][T12666] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  623.145832][T12666] RSP: 002b:00007f62f19c6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  623.145852][T12666] RAX: ffffffffffffffda RBX: 00007f62f0db5fa0 RCX: 00007f62f0b8d33c
[  623.145866][T12666] RDX: 000000000000000f RSI: 00007f62f19c60a0 RDI: 0000000000000004
[  623.145879][T12666] RBP: 00007f62f19c6090 R08: 0000000000000000 R09: 0000000000000000
[  623.145892][T12666] R10: 000000000000000a R11: 0000000000000246 R12: 0000000000000001
[  623.145905][T12666] R13: 0000000000000000 R14: 00007f62f0db5fa0 R15: 00007ffcf3237e38
[  623.145931][T12666]  </TASK>
[  623.337419][    C1] vkms_vblank_simulate: vblank timer overrun
[  623.777168][T12664] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  623.815826][T12664] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  623.821932][T12664] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  623.946518][T12664] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  623.952611][T12664] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  624.004339][T12664] CPU0 is offline.
[  624.406278][T12674] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1688'.
[  625.154385][T10526] Bluetooth: hci0: command 0x0c1a tx timeout
[  625.253940][T12689] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1691'.
[  625.858220][T12698] blktrace: Concurrent blktraces are not allowed on ram7
[  625.874570][T10526] Bluetooth: hci2: command 0x0c1a tx timeout
[  625.895030][T12697] FAULT_INJECTION: forcing a failure.
[  625.895030][T12697] name fail_futex, interval 1, probability 0, space 0, times 0
[  625.969909][T12697] CPU: 1 UID: 0 PID: 12697 Comm: syz.2.1694 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  625.969944][T12697] Tainted: [U]=USER
[  625.969951][T12697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  625.969964][T12697] Call Trace:
[  625.969970][T12697]  <TASK>
[  625.969978][T12697]  dump_stack_lvl+0x16c/0x1f0
[  625.970014][T12697]  should_fail_ex+0x512/0x640
[  625.970047][T12697]  get_futex_key+0x1d0/0x1540
[  625.970074][T12697]  ? __pfx_get_futex_key+0x10/0x10
[  625.970100][T12697]  ? __pfx____sys_sendmsg+0x10/0x10
[  625.970130][T12697]  ? __lock_acquire+0x622/0x1c90
[  625.970161][T12697]  futex_wake+0xea/0x530
[  625.970192][T12697]  ? __pfx_futex_wake+0x10/0x10
[  625.970231][T12697]  do_futex+0x1e3/0x350
[  625.970256][T12697]  ? __pfx_do_futex+0x10/0x10
[  625.970281][T12697]  ? fput+0x70/0xf0
[  625.970301][T12697]  ? __sys_sendmsg+0x18c/0x220
[  625.970333][T12697]  __x64_sys_futex+0x1e0/0x4c0
[  625.970369][T12697]  ? __pfx___x64_sys_futex+0x10/0x10
[  625.970405][T12697]  do_syscall_64+0xcd/0x490
[  625.970439][T12697]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  625.970464][T12697] RIP: 0033:0x7f62f0b8e929
[  625.970480][T12697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  625.970501][T12697] RSP: 002b:00007f62f19c60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  625.970520][T12697] RAX: ffffffffffffffda RBX: 00007f62f0db5fa8 RCX: 00007f62f0b8e929
[  625.970534][T12697] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f62f0db5fac
[  625.970547][T12697] RBP: 00007f62f0db5fa0 R08: 00007f62f19c7000 R09: 0000000000000000
[  625.970559][T12697] R10: 0000000000000028 R11: 0000000000000246 R12: 00007f62f0db5fac
[  625.970572][T12697] R13: 0000000000000000 R14: 00007ffcf3237d50 R15: 00007ffcf3237e38
[  625.970596][T12697]  </TASK>
[  626.159124][    C1] vkms_vblank_simulate: vblank timer overrun
[  626.445581][T10526] Bluetooth: hci4: command 0x0c1a tx timeout
[  626.451755][T10526] Bluetooth: hci3: command 0x0c1a tx timeout
[  627.272498][T12717] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1699'.
[  627.955385][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  629.480904][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  629.487317][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  629.990700][T12754] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1709'.
[  630.122122][T12757] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1710'.
[  630.286812][T12763] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1711'.
[  630.418874][T12763] openvswitch: HfR: Dropping previously announced user features
[  630.726086][T12772] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1713'.
[  631.055498][T12779] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1716'.
[  631.855115][T12796] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1719'.
[  632.155379][T12798] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1720'.
[  633.942019][T12836] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1729'.
[  640.072025][T12904] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1748'.
[  641.919267][T12928] usb usb28: usbfs: process 12928 (syz.2.1754) did not claim interface 0 before use
[  642.953371][T12946] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1757'.
[  648.591601][T13002] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1769'.
[  649.672173][T13013] Invalid ELF header magic: != ELF
[  651.563685][T13034] FAULT_INJECTION: forcing a failure.
[  651.563685][T13034] name failslab, interval 1, probability 0, space 0, times 0
[  651.826807][T13034] CPU: 1 UID: 0 PID: 13034 Comm: syz.4.1778 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  651.826841][T13034] Tainted: [U]=USER
[  651.826847][T13034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  651.826859][T13034] Call Trace:
[  651.826866][T13034]  <TASK>
[  651.826874][T13034]  dump_stack_lvl+0x16c/0x1f0
[  651.826909][T13034]  should_fail_ex+0x512/0x640
[  651.826937][T13034]  ? __kmalloc_noprof+0xbf/0x510
[  651.826969][T13034]  ? __register_sysctl_table+0xb3/0x1900
[  651.827000][T13034]  should_failslab+0xc2/0x120
[  651.827019][T13034]  __kmalloc_noprof+0xd2/0x510
[  651.827054][T13034]  __register_sysctl_table+0xb3/0x1900
[  651.827104][T13034]  ? is_module_address+0x5f/0xf0
[  651.827139][T13034]  ? __pfx___register_sysctl_table+0x10/0x10
[  651.827172][T13034]  ? is_module_address+0x69/0xf0
[  651.827201][T13034]  ? register_net_sysctl_sz+0x228/0x3e0
[  651.827224][T13034]  ? __asan_memcpy+0x3c/0x60
[  651.827254][T13034]  sctp_sysctl_net_register+0x15d/0x200
[  651.827278][T13034]  ? __pfx_sctp_defaults_init+0x10/0x10
[  651.827299][T13034]  sctp_defaults_init+0x6c4/0xd80
[  651.827321][T13034]  ? __pfx_sctp_defaults_init+0x10/0x10
[  651.827341][T13034]  ops_init+0x1df/0x5f0
[  651.827379][T13034]  setup_net+0x1ff/0x510
[  651.827412][T13034]  ? lockdep_init_map_type+0x5c/0x280
[  651.827442][T13034]  ? __pfx_setup_net+0x10/0x10
[  651.827463][T13034]  ? debug_mutex_init+0x37/0x70
[  651.827486][T13034]  copy_net_ns+0x2a6/0x5f0
[  651.827511][T13034]  create_new_namespaces+0x3ea/0xa90
[  651.827540][T13034]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  651.827566][T13034]  ksys_unshare+0x45b/0xa40
[  651.827600][T13034]  ? __pfx_ksys_unshare+0x10/0x10
[  651.827629][T13034]  ? xfd_validate_state+0x61/0x180
[  651.827664][T13034]  __x64_sys_unshare+0x31/0x40
[  651.827692][T13034]  do_syscall_64+0xcd/0x490
[  651.827726][T13034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  651.827749][T13034] RIP: 0033:0x7f062f58e929
[  651.827766][T13034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  651.827786][T13034] RSP: 002b:00007f06304c0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  651.827806][T13034] RAX: ffffffffffffffda RBX: 00007f062f7b6080 RCX: 00007f062f58e929
[  651.827821][T13034] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  651.827838][T13034] RBP: 00007f062f610b39 R08: 0000000000000000 R09: 0000000000000000
[  651.827851][T13034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  651.827863][T13034] R13: 0000000000000000 R14: 00007f062f7b6080 R15: 00007ffc21996758
[  651.827889][T13034]  </TASK>
[  652.094180][    C1] vkms_vblank_simulate: vblank timer overrun
[  654.527809][T13054] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1782'.
[  654.859252][T13059] FAULT_INJECTION: forcing a failure.
[  654.859252][T13059] name failslab, interval 1, probability 0, space 0, times 0
[  654.984265][T13059] CPU: 1 UID: 0 PID: 13059 Comm: syz.0.1784 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  654.984304][T13059] Tainted: [U]=USER
[  654.984313][T13059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  654.984326][T13059] Call Trace:
[  654.984334][T13059]  <TASK>
[  654.984343][T13059]  dump_stack_lvl+0x16c/0x1f0
[  654.984384][T13059]  should_fail_ex+0x512/0x640
[  654.984416][T13059]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  654.984453][T13059]  should_failslab+0xc2/0x120
[  654.984475][T13059]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  654.984509][T13059]  ? getname_flags.part.0+0x4c/0x550
[  654.984539][T13059]  getname_flags.part.0+0x4c/0x550
[  654.984568][T13059]  getname_flags+0x93/0xf0
[  654.984598][T13059]  do_sys_openat2+0xb8/0x1d0
[  654.984623][T13059]  ? __pfx_do_sys_openat2+0x10/0x10
[  654.984659][T13059]  __x64_sys_openat+0x174/0x210
[  654.984684][T13059]  ? __pfx___x64_sys_openat+0x10/0x10
[  654.984721][T13059]  do_syscall_64+0xcd/0x490
[  654.984758][T13059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  654.984781][T13059] RIP: 0033:0x7fb04618d290
[  654.984799][T13059] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  654.984823][T13059] RSP: 002b:00007fb046ffbf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  654.984845][T13059] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fb04618d290
[  654.984860][T13059] RDX: 0000000000000002 RSI: 00007fb046ffbfa0 RDI: 00000000ffffff9c
[  654.984876][T13059] RBP: 00007fb046ffbfa0 R08: 0000000000000000 R09: 00007fb046ffbcd4
[  654.984891][T13059] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  654.984905][T13059] R13: 0000000000000000 R14: 00007fb0463b5fa0 R15: 00007ffc6af503c8
[  654.984934][T13059]  </TASK>
[  656.105978][T13059] tty tty12: ldisc open failed (-12), clearing slot 11
[  656.133465][T13065] tty tty12: ldisc open failed (-12), clearing slot 11
[  659.047856][T13104] FAULT_INJECTION: forcing a failure.
[  659.047856][T13104] name failslab, interval 1, probability 0, space 0, times 0
[  659.164202][T13104] CPU: 1 UID: 0 PID: 13104 Comm: syz.0.1796 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  659.164247][T13104] Tainted: [U]=USER
[  659.164254][T13104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  659.164268][T13104] Call Trace:
[  659.164277][T13104]  <TASK>
[  659.164286][T13104]  dump_stack_lvl+0x16c/0x1f0
[  659.164325][T13104]  should_fail_ex+0x512/0x640
[  659.164359][T13104]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  659.164397][T13104]  should_failslab+0xc2/0x120
[  659.164420][T13104]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  659.164456][T13104]  ? getname_flags.part.0+0x4c/0x550
[  659.164486][T13104]  getname_flags.part.0+0x4c/0x550
[  659.164515][T13104]  getname_flags+0x93/0xf0
[  659.164547][T13104]  do_sys_openat2+0xb8/0x1d0
[  659.164572][T13104]  ? __pfx_do_sys_openat2+0x10/0x10
[  659.164609][T13104]  __x64_sys_openat+0x174/0x210
[  659.164636][T13104]  ? __pfx___x64_sys_openat+0x10/0x10
[  659.164674][T13104]  do_syscall_64+0xcd/0x490
[  659.164712][T13104]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  659.164737][T13104] RIP: 0033:0x7fb04618d290
[  659.164755][T13104] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  659.164778][T13104] RSP: 002b:00007fb046ffbf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  659.164801][T13104] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fb04618d290
[  659.164816][T13104] RDX: 0000000000000002 RSI: 00007fb046ffbfa0 RDI: 00000000ffffff9c
[  659.164830][T13104] RBP: 00007fb046ffbfa0 R08: 0000000000000000 R09: 00007fb046ffbcd4
[  659.164845][T13104] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  659.164864][T13104] R13: 0000000000000000 R14: 00007fb0463b5fa0 R15: 00007ffc6af503c8
[  659.164892][T13104]  </TASK>
[  659.574806][T13112] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1797'.
[  661.129671][T13136] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  662.331738][T13158] Invalid ELF header magic: != ELF
[  662.716407][T13165] FAULT_INJECTION: forcing a failure.
[  662.716407][T13165] name failslab, interval 1, probability 0, space 0, times 0
[  662.835275][T13165] CPU: 1 UID: 0 PID: 13165 Comm: syz.4.1812 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  662.835314][T13165] Tainted: [U]=USER
[  662.835322][T13165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  662.835337][T13165] Call Trace:
[  662.835344][T13165]  <TASK>
[  662.835353][T13165]  dump_stack_lvl+0x16c/0x1f0
[  662.835392][T13165]  should_fail_ex+0x512/0x640
[  662.835426][T13165]  ? __kvmalloc_node_noprof+0x124/0x620
[  662.835463][T13165]  should_failslab+0xc2/0x120
[  662.835485][T13165]  __kvmalloc_node_noprof+0x137/0x620
[  662.835519][T13165]  ? alloc_pages_bulk_noprof+0xa67/0x1410
[  662.835553][T13165]  ? seq_read_iter+0x826/0x12c0
[  662.835586][T13165]  ? seq_read_iter+0x826/0x12c0
[  662.835620][T13165]  seq_read_iter+0x826/0x12c0
[  662.835648][T13165]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  662.835694][T13165]  kernfs_fop_read_iter+0x40f/0x5a0
[  662.835724][T13165]  copy_splice_read+0x618/0xba0
[  662.835756][T13165]  ? __mutex_lock+0x1ca/0xb90
[  662.835793][T13165]  ? __pfx_copy_splice_read+0x10/0x10
[  662.835824][T13165]  ? __pfx___mutex_lock+0x10/0x10
[  662.835867][T13165]  ? __fget_files+0x204/0x3c0
[  662.835900][T13165]  ? __pfx_copy_splice_read+0x10/0x10
[  662.835928][T13165]  do_splice_read+0x282/0x370
[  662.835960][T13165]  splice_file_to_pipe+0x109/0x120
[  662.835994][T13165]  do_sendfile+0x400/0xe50
[  662.836030][T13165]  ? __pfx_do_sendfile+0x10/0x10
[  662.836066][T13165]  ? __x64_sys_futex+0x1e0/0x4c0
[  662.836094][T13165]  ? __x64_sys_futex+0x1e9/0x4c0
[  662.836125][T13165]  __x64_sys_sendfile64+0x1d8/0x220
[  662.836148][T13165]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  662.836180][T13165]  do_syscall_64+0xcd/0x490
[  662.836217][T13165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  662.836241][T13165] RIP: 0033:0x7f062f58e929
[  662.836259][T13165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  662.836282][T13165] RSP: 002b:00007f06304e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  662.836304][T13165] RAX: ffffffffffffffda RBX: 00007f062f7b5fa0 RCX: 00007f062f58e929
[  662.836319][T13165] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000001
[  662.836332][T13165] RBP: 00007f062f610b39 R08: 0000000000000000 R09: 0000000000000000
[  662.836346][T13165] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000000
[  662.836360][T13165] R13: 0000000000000000 R14: 00007f062f7b5fa0 R15: 00007ffc21996758
[  662.836388][T13165]  </TASK>
[  663.089290][    C1] vkms_vblank_simulate: vblank timer overrun
[  663.423781][T13165] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1812'.
[  663.508680][T13165] HfR: entered promiscuous mode
[  667.334492][T13232] FAULT_INJECTION: forcing a failure.
[  667.334492][T13232] name failslab, interval 1, probability 0, space 0, times 0
[  667.426106][T13232] CPU: 1 UID: 0 PID: 13232 Comm: syz.2.1822 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  667.426148][T13232] Tainted: [U]=USER
[  667.426156][T13232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  667.426169][T13232] Call Trace:
[  667.426177][T13232]  <TASK>
[  667.426186][T13232]  dump_stack_lvl+0x16c/0x1f0
[  667.426226][T13232]  should_fail_ex+0x512/0x640
[  667.426266][T13232]  ? __kmalloc_noprof+0xbf/0x510
[  667.426304][T13232]  ? constrain_params_by_rules+0x175/0xca0
[  667.426331][T13232]  should_failslab+0xc2/0x120
[  667.426354][T13232]  __kmalloc_noprof+0xd2/0x510
[  667.426387][T13232]  ? unwind_get_return_address+0x59/0xa0
[  667.426424][T13232]  ? arch_stack_walk+0xa6/0x100
[  667.426465][T13232]  constrain_params_by_rules+0x175/0xca0
[  667.426497][T13232]  ? stack_trace_save+0x8e/0xc0
[  667.426524][T13232]  ? stack_depot_save_flags+0x28/0xa40
[  667.426560][T13232]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  667.426594][T13232]  ? __kasan_kmalloc+0xaa/0xb0
[  667.426637][T13232]  ? snd_pcm_oss_change_params_locked+0x247/0x3a30
[  667.426662][T13232]  ? snd_pcm_oss_get_active_substream+0x168/0x1d0
[  667.426686][T13232]  ? snd_pcm_oss_ioctl+0x31aa/0x37a0
[  667.426718][T13232]  ? rcu_is_watching+0x12/0xc0
[  667.426739][T13232]  ? snd_interval_refine+0x2fa/0x580
[  667.426773][T13232]  snd_pcm_hw_refine+0x7de/0xad0
[  667.426802][T13232]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  667.426836][T13232]  ? __asan_memset+0x23/0x50
[  667.426864][T13232]  ? _snd_pcm_hw_param_min+0x259/0x630
[  667.426890][T13232]  snd_pcm_oss_change_params_locked+0x65e/0x3a30
[  667.426915][T13232]  ? preempt_count_sub+0x90/0x160
[  667.426944][T13232]  ? __mutex_lock+0x1ca/0xb90
[  667.426980][T13232]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  667.427008][T13232]  ? __pfx___mutex_lock+0x10/0x10
[  667.427051][T13232]  ? find_held_lock+0x2b/0x80
[  667.427077][T13232]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  667.427107][T13232]  snd_pcm_oss_ioctl+0x31aa/0x37a0
[  667.427132][T13232]  ? find_held_lock+0x2b/0x80
[  667.427159][T13232]  ? hook_file_ioctl_common+0x145/0x410
[  667.427185][T13232]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  667.427213][T13232]  ? __fget_files+0x20e/0x3c0
[  667.427253][T13232]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  667.427281][T13232]  __x64_sys_ioctl+0x18b/0x210
[  667.427310][T13232]  do_syscall_64+0xcd/0x490
[  667.427346][T13232]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.427368][T13232] RIP: 0033:0x7f62f0b8e929
[  667.427385][T13232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  667.427407][T13232] RSP: 002b:00007f62f19c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  667.427428][T13232] RAX: ffffffffffffffda RBX: 00007f62f0db5fa0 RCX: 00007f62f0b8e929
[  667.427442][T13232] RDX: 0000000000000000 RSI: 00000000c0045005 RDI: 0000000000000008
[  667.427456][T13232] RBP: 00007f62f0c10b39 R08: 0000000000000000 R09: 0000000000000000
[  667.427469][T13232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  667.427482][T13232] R13: 0000000000000000 R14: 00007f62f0db5fa0 R15: 00007ffcf3237e38
[  667.427509][T13232]  </TASK>
[  667.743212][    C1] vkms_vblank_simulate: vblank timer overrun
[  668.404359][   T30] audit: type=1800 audit(6045865879.270:15): pid=13240 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1824" name="lu_gp_id" dev="configfs" ino=39461 res=0 errno=0
[  668.571624][T13239] tipc: Started in network mode
[  668.606643][T13239] tipc: Node identity ee00, cluster identity 4711
[  668.613135][T13239] tipc: Node number set to 60928
[  668.700218][T13237] Process accounting resumed
[  668.932702][T13265] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1830'.
[  670.097676][   T30] audit: type=1800 audit(6045865881.030:16): pid=13283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1837" name="lu_gp_id" dev="configfs" ino=39601 res=0 errno=0
[  670.344265][T13294] ALUA LU Group already has a valid ID, ignoring request
[  671.905485][T13319] cougar: G6 mapped to space
[  679.819499][T13420] FAULT_INJECTION: forcing a failure.
[  679.819499][T13420] name failslab, interval 1, probability 0, space 0, times 0
[  679.908437][T13420] CPU: 1 UID: 0 PID: 13420 Comm: syz.3.1866 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  679.908477][T13420] Tainted: [U]=USER
[  679.908485][T13420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  679.908499][T13420] Call Trace:
[  679.908507][T13420]  <TASK>
[  679.908515][T13420]  dump_stack_lvl+0x16c/0x1f0
[  679.908555][T13420]  should_fail_ex+0x512/0x640
[  679.908589][T13420]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  679.908637][T13420]  should_failslab+0xc2/0x120
[  679.908660][T13420]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  679.908698][T13420]  ? getname_flags.part.0+0x4c/0x550
[  679.908728][T13420]  getname_flags.part.0+0x4c/0x550
[  679.908758][T13420]  getname_flags+0x93/0xf0
[  679.908788][T13420]  do_sys_openat2+0xb8/0x1d0
[  679.908814][T13420]  ? __pfx_do_sys_openat2+0x10/0x10
[  679.908850][T13420]  __x64_sys_openat+0x174/0x210
[  679.908877][T13420]  ? __pfx___x64_sys_openat+0x10/0x10
[  679.908914][T13420]  do_syscall_64+0xcd/0x490
[  679.908952][T13420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  679.908976][T13420] RIP: 0033:0x7f78a3f8d290
[  679.908994][T13420] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  679.909017][T13420] RSP: 002b:00007f78a4d75f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  679.909038][T13420] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f78a3f8d290
[  679.909053][T13420] RDX: 0000000000000002 RSI: 00007f78a4d75fa0 RDI: 00000000ffffff9c
[  679.909068][T13420] RBP: 00007f78a4d75fa0 R08: 0000000000000000 R09: 00007f78a4d75cd4
[  679.909082][T13420] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  679.909096][T13420] R13: 0000000000000000 R14: 00007f78a41b5fa0 R15: 00007ffe5e0e3418
[  679.909124][T13420]  </TASK>
[  680.093124][    C1] vkms_vblank_simulate: vblank timer overrun
[  680.694802][T13429] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1868'.
[  685.384277][T13483] random: crng reseeded on system resumption
[  685.618988][T13486] netlink: zone id is out of range
[  685.709838][T13486] netlink: zone id is out of range
[  685.789574][T13486] netlink: zone id is out of range
[  685.868249][T13486] netlink: zone id is out of range
[  685.939969][T13486] netlink: zone id is out of range
[  686.095436][T13486] netlink: zone id is out of range
[  686.100598][T13486] netlink: zone id is out of range
[  686.158351][T13486] netlink: zone id is out of range
[  686.163682][T13486] netlink: zone id is out of range
[  686.225707][T13486] netlink: zone id is out of range
[  686.703417][T13498] FAULT_INJECTION: forcing a failure.
[  686.703417][T13498] name failslab, interval 1, probability 0, space 0, times 0
[  686.917950][T13498] CPU: 1 UID: 0 PID: 13498 Comm: syz.2.1882 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  686.917988][T13498] Tainted: [U]=USER
[  686.917995][T13498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  686.918009][T13498] Call Trace:
[  686.918016][T13498]  <TASK>
[  686.918024][T13498]  dump_stack_lvl+0x16c/0x1f0
[  686.918063][T13498]  should_fail_ex+0x512/0x640
[  686.918094][T13498]  ? __kvmalloc_node_noprof+0x124/0x620
[  686.918128][T13498]  should_failslab+0xc2/0x120
[  686.918149][T13498]  __kvmalloc_node_noprof+0x137/0x620
[  686.918180][T13498]  ? __pfx___mutex_lock+0x10/0x10
[  686.918213][T13498]  ? traverse.part.0.constprop.0+0x392/0x640
[  686.918247][T13498]  ? traverse.part.0.constprop.0+0x392/0x640
[  686.918274][T13498]  traverse.part.0.constprop.0+0x392/0x640
[  686.918310][T13498]  seq_read_iter+0x932/0x12c0
[  686.918339][T13498]  ? aa_file_perm+0x4d6/0xfb0
[  686.918369][T13498]  ? preempt_schedule_thunk+0x16/0x30
[  686.918400][T13498]  seq_read+0x39e/0x4e0
[  686.918426][T13498]  ? __pfx_seq_read+0x10/0x10
[  686.918472][T13498]  full_proxy_read+0x13c/0x200
[  686.918493][T13498]  ? __pfx_full_proxy_read+0x10/0x10
[  686.918515][T13498]  vfs_read+0x1e4/0xc60
[  686.918552][T13498]  ? __pfx_vfs_read+0x10/0x10
[  686.918580][T13498]  ? find_held_lock+0x2b/0x80
[  686.918603][T13498]  ? __fget_files+0x204/0x3c0
[  686.918636][T13498]  ? __fget_files+0x20e/0x3c0
[  686.918673][T13498]  __x64_sys_pread64+0x1eb/0x250
[  686.918706][T13498]  ? __pfx___x64_sys_pread64+0x10/0x10
[  686.918747][T13498]  do_syscall_64+0xcd/0x490
[  686.918786][T13498]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  686.918808][T13498] RIP: 0033:0x7f62f0b8e929
[  686.918826][T13498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  686.918848][T13498] RSP: 002b:00007f62f19c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  686.918868][T13498] RAX: ffffffffffffffda RBX: 00007f62f0db5fa0 RCX: 00007f62f0b8e929
[  686.918883][T13498] RDX: 0000000000000007 RSI: 000020000000b040 RDI: 0000000000000008
[  686.918902][T13498] RBP: 00007f62f0c10b39 R08: 0000000000000000 R09: 0000000000000000
[  686.918916][T13498] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000
[  686.918929][T13498] R13: 0000000000000000 R14: 00007f62f0db5fa0 R15: 00007ffcf3237e38
[  686.918957][T13498]  </TASK>
[  687.157489][    C1] vkms_vblank_simulate: vblank timer overrun
[  687.584459][T13508] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1885'.
[  688.019574][T13513] usb usb28: usbfs: process 13513 (syz.2.1886) did not claim interface 0 before use
[  688.925722][T13510] netlink: 206 bytes leftover after parsing attributes in process `syz.0.1887'.
[  689.249987][T13510] bridge0: entered allmulticast mode
[  690.920687][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  690.927102][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  690.984625][T13544] FAULT_INJECTION: forcing a failure.
[  690.984625][T13544] name fail_futex, interval 1, probability 0, space 0, times 0
[  691.041389][T13544] CPU: 1 UID: 0 PID: 13544 Comm: syz.3.1894 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  691.041429][T13544] Tainted: [U]=USER
[  691.041437][T13544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  691.041451][T13544] Call Trace:
[  691.041459][T13544]  <TASK>
[  691.041468][T13544]  dump_stack_lvl+0x16c/0x1f0
[  691.041514][T13544]  should_fail_ex+0x512/0x640
[  691.041552][T13544]  get_futex_key+0x1d0/0x1540
[  691.041583][T13544]  ? __pfx_get_futex_key+0x10/0x10
[  691.041619][T13544]  futex_wake+0xea/0x530
[  691.041649][T13544]  ? __pfx___might_resched+0x10/0x10
[  691.041672][T13544]  ? rcu_is_watching+0x12/0xc0
[  691.041696][T13544]  ? lockdep_init_map_type+0x5c/0x280
[  691.041728][T13544]  ? __pfx_futex_wake+0x10/0x10
[  691.041773][T13544]  do_futex+0x1e3/0x350
[  691.041801][T13544]  ? __pfx_do_futex+0x10/0x10
[  691.041837][T13544]  __x64_sys_futex+0x1e0/0x4c0
[  691.041869][T13544]  ? __pfx___x64_sys_futex+0x10/0x10
[  691.041898][T13544]  ? fd_install+0x244/0x750
[  691.041936][T13544]  do_syscall_64+0xcd/0x490
[  691.041973][T13544]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  691.041997][T13544] RIP: 0033:0x7f78a3f8e929
[  691.042015][T13544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  691.042038][T13544] RSP: 002b:00007f78a4d760e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  691.042059][T13544] RAX: ffffffffffffffda RBX: 00007f78a41b5fa8 RCX: 00007f78a3f8e929
[  691.042075][T13544] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f78a41b5fac
[  691.042090][T13544] RBP: 00007f78a41b5fa0 R08: 00007f78a4d77000 R09: 0000000000000000
[  691.042104][T13544] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f78a41b5fac
[  691.042119][T13544] R13: 0000000000000000 R14: 00007ffe5e0e3330 R15: 00007ffe5e0e3418
[  691.042147][T13544]  </TASK>
[  691.230208][    C1] vkms_vblank_simulate: vblank timer overrun
[  691.911191][T13550] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1897'.
[  694.347791][T13572] Invalid ELF header magic: != ELF
[  695.226178][T13604] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1907'.
[  696.141402][T13623] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1911'.
[  696.528864][T13632] netlink: 'syz.0.1914': attribute type 1 has an invalid length.
[  697.018055][T13637] Invalid ELF header magic: != ELF
[  698.135311][T13643] netlink: 206 bytes leftover after parsing attributes in process `syz.0.1917'.
[  698.156513][T13656] netlink: 504 bytes leftover after parsing attributes in process `syz.4.1921'.
[  699.030938][T13674] Invalid ELF header magic: != ELF
[  699.272242][T13666] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  699.309766][T13666] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  699.345793][T13666] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  699.377517][T13666] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  699.416716][T13666] CPU0 is offline.
[  699.513837][T13666] Process accounting paused
[  700.725651][T13703] FAULT_INJECTION: forcing a failure.
[  700.725651][T13703] name failslab, interval 1, probability 0, space 0, times 0
[  700.827099][T13703] CPU: 1 UID: 0 PID: 13703 Comm: syz.2.1932 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  700.827137][T13703] Tainted: [U]=USER
[  700.827144][T13703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  700.827157][T13703] Call Trace:
[  700.827165][T13703]  <TASK>
[  700.827174][T13703]  dump_stack_lvl+0x16c/0x1f0
[  700.827218][T13703]  should_fail_ex+0x512/0x640
[  700.827254][T13703]  ? fs_reclaim_acquire+0xae/0x150
[  700.827286][T13703]  should_failslab+0xc2/0x120
[  700.827309][T13703]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  700.827347][T13703]  ? inode_set_ctime_current+0x2a1/0x8f0
[  700.827387][T13703]  ? jbd2__journal_start+0x193/0x6a0
[  700.827428][T13703]  jbd2__journal_start+0x193/0x6a0
[  700.827469][T13703]  __ext4_journal_start_sb+0x195/0x690
[  700.827503][T13703]  ? ext4_dirty_inode+0xa1/0x130
[  700.827538][T13703]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  700.827576][T13703]  ext4_dirty_inode+0xa1/0x130
[  700.827609][T13703]  ? rcu_is_watching+0x12/0xc0
[  700.827633][T13703]  __mark_inode_dirty+0x1ee/0xe50
[  700.827661][T13703]  generic_update_time+0xcf/0xf0
[  700.827698][T13703]  file_modified+0x207/0x240
[  700.827737][T13703]  ext4_fallocate+0x176/0x3720
[  700.827805][T13703]  ? __pfx_ext4_fallocate+0x10/0x10
[  700.827846][T13703]  vfs_fallocate+0x608/0x10c0
[  700.827884][T13703]  ? __pfx_vfs_fallocate+0x10/0x10
[  700.827919][T13703]  ? madvise_vma_behavior+0x222c/0x2420
[  700.827944][T13703]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  700.827989][T13703]  madvise_vma_behavior+0x21ca/0x2420
[  700.828030][T13703]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  700.828054][T13703]  ? __pfx_mas_prev+0x10/0x10
[  700.828093][T13703]  ? find_vma_prev+0xda/0x160
[  700.828118][T13703]  ? __pfx_find_vma_prev+0x10/0x10
[  700.828156][T13703]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  700.828179][T13703]  madvise_walk_vmas+0x1d1/0x2c0
[  700.828201][T13703]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  700.828230][T13703]  madvise_do_behavior+0x15d/0x3f0
[  700.828256][T13703]  ? __pfx_madvise_do_behavior+0x10/0x10
[  700.828294][T13703]  do_madvise+0x161/0x230
[  700.828317][T13703]  ? __pfx_do_madvise+0x10/0x10
[  700.828354][T13703]  ? ksys_write+0x1ac/0x250
[  700.828384][T13703]  ? __pfx_ksys_write+0x10/0x10
[  700.828419][T13703]  __x64_sys_madvise+0xa9/0x110
[  700.828441][T13703]  ? lockdep_hardirqs_on+0x7c/0x110
[  700.828472][T13703]  do_syscall_64+0xcd/0x490
[  700.828510][T13703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  700.828536][T13703] RIP: 0033:0x7f62f0b8e929
[  700.828553][T13703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  700.828574][T13703] RSP: 002b:00007f62f19a5038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  700.828594][T13703] RAX: ffffffffffffffda RBX: 00007f62f0db6080 RCX: 00007f62f0b8e929
[  700.828608][T13703] RDX: 0000000000000009 RSI: 0000000000000001 RDI: 000000110c234000
[  700.828621][T13703] RBP: 00007f62f19a5090 R08: 0000000000000000 R09: 0000000000000000
[  700.828634][T13703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  700.828646][T13703] R13: 0000000000000001 R14: 00007f62f0db6080 R15: 00007ffcf3237e38
[  700.828673][T13703]  </TASK>
[  701.145866][    C1] vkms_vblank_simulate: vblank timer overrun
[  701.673832][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout
[  701.679990][ T5836] Bluetooth: hci4: command 0x0c1a tx timeout
[  701.687805][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout
[  701.693883][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout
[  702.070636][T13714] Invalid ELF header magic: != ELF
[  704.607061][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  704.613522][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  704.624417][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  704.630750][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  704.639682][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  704.660343][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  704.699329][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  704.710428][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  704.807809][T13748] netlink: 'syz.2.1945': attribute type 64 has an invalid length.
[  704.929026][T13748] netlink: 74 bytes leftover after parsing attributes in process `syz.2.1945'.
[  706.122181][T13779] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1951'.
[  706.636572][T13785] FAULT_INJECTION: forcing a failure.
[  706.636572][T13785] name failslab, interval 1, probability 0, space 0, times 0
[  706.704184][T13785] CPU: 1 UID: 0 PID: 13785 Comm: syz.2.1952 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  706.704221][T13785] Tainted: [U]=USER
[  706.704228][T13785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  706.704240][T13785] Call Trace:
[  706.704248][T13785]  <TASK>
[  706.704256][T13785]  dump_stack_lvl+0x16c/0x1f0
[  706.704293][T13785]  should_fail_ex+0x512/0x640
[  706.704324][T13785]  ? __kvmalloc_node_noprof+0x124/0x620
[  706.704359][T13785]  should_failslab+0xc2/0x120
[  706.704380][T13785]  __kvmalloc_node_noprof+0x137/0x620
[  706.704410][T13785]  ? __pfx_down_write+0x10/0x10
[  706.704435][T13785]  ? cache_write_procfs+0xd2/0x160
[  706.704472][T13785]  ? __pfx_cache_write_procfs+0x10/0x10
[  706.704507][T13785]  ? cache_write_procfs+0xd2/0x160
[  706.704539][T13785]  cache_write_procfs+0xd2/0x160
[  706.704573][T13785]  ? __pfx_cache_write_procfs+0x10/0x10
[  706.704607][T13785]  proc_reg_write+0x23d/0x330
[  706.704641][T13785]  ? __pfx_proc_reg_write+0x10/0x10
[  706.704672][T13785]  vfs_write+0x29d/0x1150
[  706.704706][T13785]  ? __pfx___mutex_lock+0x10/0x10
[  706.704740][T13785]  ? __pfx_vfs_write+0x10/0x10
[  706.704777][T13785]  ? __fget_files+0x20e/0x3c0
[  706.704814][T13785]  ksys_write+0x12a/0x250
[  706.704844][T13785]  ? __pfx_ksys_write+0x10/0x10
[  706.704882][T13785]  do_syscall_64+0xcd/0x490
[  706.704917][T13785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  706.704940][T13785] RIP: 0033:0x7f62f0b8e929
[  706.704956][T13785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  706.704977][T13785] RSP: 002b:00007f62f19c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  706.704997][T13785] RAX: ffffffffffffffda RBX: 00007f62f0db5fa0 RCX: 00007f62f0b8e929
[  706.705012][T13785] RDX: 0000000000000019 RSI: 0000200000000040 RDI: 0000000000000003
[  706.705025][T13785] RBP: 00007f62f19c6090 R08: 0000000000000000 R09: 0000000000000000
[  706.705039][T13785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  706.705052][T13785] R13: 0000000000000000 R14: 00007f62f0db5fa0 R15: 00007ffcf3237e38
[  706.705079][T13785]  </TASK>
[  706.927576][    C1] vkms_vblank_simulate: vblank timer overrun
[  708.414362][T13800] random: crng reseeded on system resumption
[  710.224439][T13832] FAULT_INJECTION: forcing a failure.
[  710.224439][T13832] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  710.312387][T13832] CPU: 1 UID: 0 PID: 13832 Comm: syz.2.1962 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  710.312422][T13832] Tainted: [U]=USER
[  710.312429][T13832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  710.312441][T13832] Call Trace:
[  710.312447][T13832]  <TASK>
[  710.312455][T13832]  dump_stack_lvl+0x16c/0x1f0
[  710.312491][T13832]  should_fail_ex+0x512/0x640
[  710.312523][T13832]  _copy_from_user+0x2e/0xd0
[  710.312555][T13832]  core_sys_select+0x35b/0xc10
[  710.312589][T13832]  ? __pfx_core_sys_select+0x10/0x10
[  710.312621][T13832]  ? proc_fail_nth_write+0x9f/0x250
[  710.312665][T13832]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  710.312703][T13832]  kern_select+0x15d/0x1e0
[  710.312730][T13832]  ? __pfx_kern_select+0x10/0x10
[  710.312760][T13832]  ? __pfx_ksys_write+0x10/0x10
[  710.312811][T13832]  __x64_sys_select+0xbd/0x160
[  710.312838][T13832]  ? do_syscall_64+0x91/0x490
[  710.312870][T13832]  ? lockdep_hardirqs_on+0x7c/0x110
[  710.312901][T13832]  do_syscall_64+0xcd/0x490
[  710.312934][T13832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  710.312956][T13832] RIP: 0033:0x7f62f0b8e929
[  710.312973][T13832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  710.312993][T13832] RSP: 002b:00007f62f1984038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  710.313013][T13832] RAX: ffffffffffffffda RBX: 00007f62f0db6160 RCX: 00007f62f0b8e929
[  710.313028][T13832] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  710.313041][T13832] RBP: 00007f62f1984090 R08: 0000000000000000 R09: 0000000000000000
[  710.313054][T13832] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000001
[  710.313074][T13832] R13: 0000000000000001 R14: 00007f62f0db6160 R15: 00007ffcf3237e38
[  710.313101][T13832]  </TASK>
[  710.497507][    C1] vkms_vblank_simulate: vblank timer overrun
[  710.567379][T13835] FAULT_INJECTION: forcing a failure.
[  710.567379][T13835] name failslab, interval 1, probability 0, space 0, times 0
[  710.580447][T13835] CPU: 1 UID: 0 PID: 13835 Comm: syz.0.1963 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  710.580482][T13835] Tainted: [U]=USER
[  710.580489][T13835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  710.580503][T13835] Call Trace:
[  710.580510][T13835]  <TASK>
[  710.580518][T13835]  dump_stack_lvl+0x16c/0x1f0
[  710.580557][T13835]  should_fail_ex+0x512/0x640
[  710.580592][T13835]  should_failslab+0xc2/0x120
[  710.580613][T13835]  __kmalloc_cache_noprof+0x6a/0x3e0
[  710.580643][T13835]  ? nfc_genl_rcv_nl_event+0xc1/0x2e0
[  710.580673][T13835]  nfc_genl_rcv_nl_event+0xc1/0x2e0
[  710.580698][T13835]  notifier_call_chain+0xb9/0x410
[  710.580722][T13835]  ? __pfx_nfc_genl_rcv_nl_event+0x10/0x10
[  710.580753][T13835]  blocking_notifier_call_chain+0x69/0xa0
[  710.580782][T13835]  netlink_release+0x186b/0x2020
[  710.580809][T13835]  ? netlink_release+0x1de/0x2020
[  710.580833][T13835]  ? __pfx_netlink_release+0x10/0x10
[  710.580858][T13835]  ? __pfx_locks_remove_file+0x10/0x10
[  710.580885][T13835]  __sock_release+0xb0/0x270
[  710.580921][T13835]  ? __pfx_sock_close+0x10/0x10
[  710.580938][T13835]  sock_close+0x1c/0x30
[  710.580955][T13835]  __fput+0x402/0xb70
[  710.580977][T13835]  ? _raw_spin_unlock_irq+0x23/0x50
[  710.581008][T13835]  task_work_run+0x14d/0x240
[  710.581041][T13835]  ? __pfx_task_work_run+0x10/0x10
[  710.581081][T13835]  ? __pfx___do_sys_close_range+0x10/0x10
[  710.581119][T13835]  exit_to_user_mode_loop+0xeb/0x110
[  710.581154][T13835]  do_syscall_64+0x3f6/0x490
[  710.581190][T13835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  710.581213][T13835] RIP: 0033:0x7fb04618e929
[  710.581231][T13835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  710.581252][T13835] RSP: 002b:00007fb046fdb038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  710.581272][T13835] RAX: 0000000000000000 RBX: 00007fb0463b6080 RCX: 00007fb04618e929
[  710.581286][T13835] RDX: 0000000000000000 RSI: fffffffffffff000 RDI: 0000000000000000
[  710.581299][T13835] RBP: 00007fb046210b39 R08: 0000000000000000 R09: 0000000000000000
[  710.581313][T13835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  710.581326][T13835] R13: 0000000000000000 R14: 00007fb0463b6080 R15: 00007ffc6af503c8
[  710.581352][T13835]  </TASK>
[  710.813939][    C1] vkms_vblank_simulate: vblank timer overrun
[  710.910080][T13818] Invalid ELF header magic: != ELF
[  711.018066][T13839] random: crng reseeded on system resumption
[  711.351870][T13845] Unrecognized hibernate image header format!
[  711.372510][T13845] PM: hibernation: Image mismatch: architecture specific data
[  711.767413][T13850] Invalid ELF header magic: != ELF
[  712.141882][T13855] delete_channel: no stack
[  712.425246][T13863] FAULT_INJECTION: forcing a failure.
[  712.425246][T13863] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  712.524502][T13863] CPU: 1 UID: 0 PID: 13863 Comm: syz.4.1971 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  712.524538][T13863] Tainted: [U]=USER
[  712.524546][T13863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  712.524558][T13863] Call Trace:
[  712.524566][T13863]  <TASK>
[  712.524574][T13863]  dump_stack_lvl+0x16c/0x1f0
[  712.524611][T13863]  should_fail_ex+0x512/0x640
[  712.524647][T13863]  _copy_to_iter+0x463/0x16f0
[  712.524687][T13863]  ? __pfx__copy_to_iter+0x10/0x10
[  712.524723][T13863]  ? single_next+0xd/0x40
[  712.524744][T13863]  ? traverse.part.0.constprop.0+0x2c5/0x640
[  712.524780][T13863]  seq_read_iter+0x719/0x12c0
[  712.524809][T13863]  ? aa_file_perm+0x4d6/0xfb0
[  712.524846][T13863]  seq_read+0x39e/0x4e0
[  712.524873][T13863]  ? __pfx_seq_read+0x10/0x10
[  712.524918][T13863]  full_proxy_read+0x13c/0x200
[  712.524940][T13863]  ? __pfx_full_proxy_read+0x10/0x10
[  712.524969][T13863]  vfs_read+0x1e4/0xc60
[  712.525005][T13863]  ? __pfx_vfs_read+0x10/0x10
[  712.525034][T13863]  ? find_held_lock+0x2b/0x80
[  712.525056][T13863]  ? __fget_files+0x204/0x3c0
[  712.525089][T13863]  ? __fget_files+0x20e/0x3c0
[  712.525126][T13863]  __x64_sys_pread64+0x1eb/0x250
[  712.525158][T13863]  ? __pfx___x64_sys_pread64+0x10/0x10
[  712.525198][T13863]  do_syscall_64+0xcd/0x490
[  712.525234][T13863]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  712.525256][T13863] RIP: 0033:0x7f062f58e929
[  712.525273][T13863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  712.525295][T13863] RSP: 002b:00007f06304e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  712.525315][T13863] RAX: ffffffffffffffda RBX: 00007f062f7b5fa0 RCX: 00007f062f58e929
[  712.525330][T13863] RDX: 0000000000000007 RSI: 000020000000b040 RDI: 0000000000000008
[  712.525343][T13863] RBP: 00007f062f610b39 R08: 0000000000000000 R09: 0000000000000000
[  712.525357][T13863] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000
[  712.525370][T13863] R13: 0000000000000000 R14: 00007f062f7b5fa0 R15: 00007ffc21996758
[  712.525397][T13863]  </TASK>
[  712.744401][    C1] vkms_vblank_simulate: vblank timer overrun
[  714.870981][T13907] ima: policy update failed
[  715.025297][   T30] audit: type=1802 audit(6045865925.950:17): pid=13907 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1980" res=0 errno=0
[  715.412991][T13914] FAULT_INJECTION: forcing a failure.
[  715.412991][T13914] name failslab, interval 1, probability 0, space 0, times 0
[  715.510790][T13914] CPU: 1 UID: 0 PID: 13914 Comm: syz.4.1982 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  715.510830][T13914] Tainted: [U]=USER
[  715.510838][T13914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  715.510851][T13914] Call Trace:
[  715.510859][T13914]  <TASK>
[  715.510868][T13914]  dump_stack_lvl+0x16c/0x1f0
[  715.510907][T13914]  should_fail_ex+0x512/0x640
[  715.510942][T13914]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  715.510980][T13914]  should_failslab+0xc2/0x120
[  715.511003][T13914]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  715.511039][T13914]  ? getname_flags.part.0+0x4c/0x550
[  715.511069][T13914]  getname_flags.part.0+0x4c/0x550
[  715.511098][T13914]  getname_flags+0x93/0xf0
[  715.511130][T13914]  do_sys_openat2+0xb8/0x1d0
[  715.511156][T13914]  ? __pfx_do_sys_openat2+0x10/0x10
[  715.511192][T13914]  __x64_sys_openat+0x174/0x210
[  715.511219][T13914]  ? __pfx___x64_sys_openat+0x10/0x10
[  715.511258][T13914]  do_syscall_64+0xcd/0x490
[  715.511297][T13914]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  715.511321][T13914] RIP: 0033:0x7f062f58e929
[  715.511338][T13914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  715.511362][T13914] RSP: 002b:00007f06304e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  715.511386][T13914] RAX: ffffffffffffffda RBX: 00007f062f7b5fa0 RCX: 00007f062f58e929
[  715.511402][T13914] RDX: 0000000000080000 RSI: 000020000000b000 RDI: ffffffffffffff9c
[  715.511417][T13914] RBP: 00007f062f610b39 R08: 0000000000000000 R09: 0000000000000000
[  715.511432][T13914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  715.511446][T13914] R13: 0000000000000000 R14: 00007f062f7b5fa0 R15: 00007ffc21996758
[  715.511475][T13914]  </TASK>
[  718.079391][T13938] FAULT_INJECTION: forcing a failure.
[  718.079391][T13938] name failslab, interval 1, probability 0, space 0, times 0
[  718.135760][T13938] CPU: 1 UID: 0 PID: 13938 Comm: syz.0.1986 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  718.135796][T13938] Tainted: [U]=USER
[  718.135803][T13938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  718.135821][T13938] Call Trace:
[  718.135828][T13938]  <TASK>
[  718.135837][T13938]  dump_stack_lvl+0x16c/0x1f0
[  718.135874][T13938]  should_fail_ex+0x512/0x640
[  718.135905][T13938]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  718.135944][T13938]  should_failslab+0xc2/0x120
[  718.135964][T13938]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  718.135999][T13938]  ? __request_module+0x2cb/0x690
[  718.136035][T13938]  kstrdup+0x53/0x100
[  718.136078][T13938]  __request_module+0x2cb/0x690
[  718.136108][T13938]  ? __pfx___request_module+0x10/0x10
[  718.136136][T13938]  ? aa_get_newest_label+0x375/0x680
[  718.136157][T13938]  ? __pfx_aa_get_newest_label+0x10/0x10
[  718.136185][T13938]  ? apparmor_capable+0x114/0x1d0
[  718.136205][T13938]  ? dev_load+0x1de/0x240
[  718.136235][T13938]  dev_load+0x1ff/0x240
[  718.136261][T13938]  dev_ioctl+0x19c/0x1060
[  718.136291][T13938]  sock_ioctl+0x5b3/0x6b0
[  718.136315][T13938]  ? __pfx_sock_ioctl+0x10/0x10
[  718.136336][T13938]  ? hook_file_ioctl_common+0x145/0x410
[  718.136363][T13938]  ? __fget_files+0x20e/0x3c0
[  718.136393][T13938]  ? __pfx_sock_ioctl+0x10/0x10
[  718.136417][T13938]  __x64_sys_ioctl+0x18b/0x210
[  718.136443][T13938]  do_syscall_64+0xcd/0x490
[  718.136475][T13938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  718.136495][T13938] RIP: 0033:0x7fb04618e929
[  718.136510][T13938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  718.136544][T13938] RSP: 002b:00007fb046fba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  718.136564][T13938] RAX: ffffffffffffffda RBX: 00007fb0463b6160 RCX: 00007fb04618e929
[  718.136578][T13938] RDX: 0000000000000024 RSI: 00000000000089f1 RDI: 0000000000000003
[  718.136591][T13938] RBP: 00007fb046fba090 R08: 0000000000000000 R09: 0000000000000000
[  718.136603][T13938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  718.136615][T13938] R13: 0000000000000001 R14: 00007fb0463b6160 R15: 00007ffc6af503c8
[  718.136640][T13938]  </TASK>
[  719.307007][T13948] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1989'.
[  721.494158][T13961] FAULT_INJECTION: forcing a failure.
[  721.494158][T13961] name failslab, interval 1, probability 0, space 0, times 0
[  721.699938][T13961] CPU: 1 UID: 0 PID: 13961 Comm: syz.0.1992 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  721.699973][T13961] Tainted: [U]=USER
[  721.699980][T13961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  721.699992][T13961] Call Trace:
[  721.699999][T13961]  <TASK>
[  721.700007][T13961]  dump_stack_lvl+0x16c/0x1f0
[  721.700042][T13961]  should_fail_ex+0x512/0x640
[  721.700072][T13961]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  721.700125][T13961]  should_failslab+0xc2/0x120
[  721.700146][T13961]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  721.700179][T13961]  ? security_file_alloc+0x34/0x2b0
[  721.700211][T13961]  security_file_alloc+0x34/0x2b0
[  721.700246][T13961]  init_file+0x93/0x4c0
[  721.700268][T13961]  alloc_empty_file+0x73/0x1e0
[  721.700292][T13961]  path_openat+0xda/0x2cb0
[  721.700322][T13961]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  721.700353][T13961]  ? __pfx_path_openat+0x10/0x10
[  721.700385][T13961]  ? __lock_acquire+0xb8a/0x1c90
[  721.700417][T13961]  do_filp_open+0x20b/0x470
[  721.700449][T13961]  ? __pfx_do_filp_open+0x10/0x10
[  721.700498][T13961]  ? alloc_fd+0x471/0x7d0
[  721.700534][T13961]  do_sys_openat2+0x11b/0x1d0
[  721.700558][T13961]  ? __pfx_do_sys_openat2+0x10/0x10
[  721.700592][T13961]  __x64_sys_openat+0x174/0x210
[  721.700617][T13961]  ? __pfx___x64_sys_openat+0x10/0x10
[  721.700652][T13961]  do_syscall_64+0xcd/0x490
[  721.700687][T13961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  721.700710][T13961] RIP: 0033:0x7fb04618d290
[  721.700726][T13961] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  721.700747][T13961] RSP: 002b:00007fb046ffbf10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  721.700767][T13961] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fb04618d290
[  721.700781][T13961] RDX: 0000000000000002 RSI: 00007fb046ffbfa0 RDI: 00000000ffffff9c
[  721.700795][T13961] RBP: 00007fb046ffbfa0 R08: 0000000000000000 R09: 00007fb046ffbcd4
[  721.700808][T13961] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  721.700822][T13961] R13: 0000000000000000 R14: 00007fb0463b5fa0 R15: 00007ffc6af503c8
[  721.700848][T13961]  </TASK>
[  722.435033][T13964] FAULT_INJECTION: forcing a failure.
[  722.435033][T13964] name failslab, interval 1, probability 0, space 0, times 0
[  722.505080][T13964] CPU: 1 UID: 0 PID: 13964 Comm: syz.0.1993 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  722.505120][T13964] Tainted: [U]=USER
[  722.505128][T13964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  722.505142][T13964] Call Trace:
[  722.505149][T13964]  <TASK>
[  722.505158][T13964]  dump_stack_lvl+0x16c/0x1f0
[  722.505207][T13964]  should_fail_ex+0x512/0x640
[  722.505241][T13964]  ? fs_reclaim_acquire+0xae/0x150
[  722.505270][T13964]  ? tomoyo_encode2+0x100/0x3e0
[  722.505301][T13964]  should_failslab+0xc2/0x120
[  722.505323][T13964]  __kmalloc_noprof+0xd2/0x510
[  722.505364][T13964]  tomoyo_encode2+0x100/0x3e0
[  722.505399][T13964]  tomoyo_encode+0x29/0x50
[  722.505430][T13964]  tomoyo_realpath_from_path+0x18f/0x6e0
[  722.505471][T13964]  tomoyo_check_open_permission+0x2ab/0x3c0
[  722.505500][T13964]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  722.505556][T13964]  ? do_raw_spin_lock+0x12c/0x2b0
[  722.505600][T13964]  tomoyo_file_open+0x6b/0x90
[  722.505638][T13964]  security_file_open+0x84/0x1e0
[  722.505669][T13964]  do_dentry_open+0x596/0x1c10
[  722.505712][T13964]  vfs_open+0x82/0x3f0
[  722.505740][T13964]  path_openat+0x1de4/0x2cb0
[  722.505783][T13964]  ? __pfx_path_openat+0x10/0x10
[  722.505819][T13964]  ? __lock_acquire+0xb8a/0x1c90
[  722.505853][T13964]  do_filp_open+0x20b/0x470
[  722.505887][T13964]  ? __pfx_do_filp_open+0x10/0x10
[  722.505942][T13964]  ? alloc_fd+0x471/0x7d0
[  722.505981][T13964]  do_sys_openat2+0x11b/0x1d0
[  722.506007][T13964]  ? __pfx_do_sys_openat2+0x10/0x10
[  722.506044][T13964]  __x64_sys_openat+0x174/0x210
[  722.506071][T13964]  ? __pfx___x64_sys_openat+0x10/0x10
[  722.506109][T13964]  do_syscall_64+0xcd/0x490
[  722.506163][T13964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  722.506193][T13964] RIP: 0033:0x7fb04618e929
[  722.506212][T13964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  722.506235][T13964] RSP: 002b:00007fb046ffc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  722.506257][T13964] RAX: ffffffffffffffda RBX: 00007fb0463b5fa0 RCX: 00007fb04618e929
[  722.506273][T13964] RDX: 0000000000080000 RSI: 000020000000b000 RDI: ffffffffffffff9c
[  722.506288][T13964] RBP: 00007fb046210b39 R08: 0000000000000000 R09: 0000000000000000
[  722.506302][T13964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  722.506316][T13964] R13: 0000000000000000 R14: 00007fb0463b5fa0 R15: 00007ffc6af503c8
[  722.506344][T13964]  </TASK>
[  722.506366][T13964] ERROR: Out of memory at tomoyo_realpath_from_path.
[  728.407881][T13995] FAULT_INJECTION: forcing a failure.
[  728.407881][T13995] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  728.504282][T13995] CPU: 1 UID: 0 PID: 13995 Comm: syz.4.2002 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  728.504318][T13995] Tainted: [U]=USER
[  728.504325][T13995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  728.504338][T13995] Call Trace:
[  728.504345][T13995]  <TASK>
[  728.504354][T13995]  dump_stack_lvl+0x16c/0x1f0
[  728.504391][T13995]  should_fail_ex+0x512/0x640
[  728.504426][T13995]  _copy_from_user+0x2e/0xd0
[  728.504460][T13995]  copy_msghdr_from_user+0x98/0x160
[  728.504494][T13995]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  728.504531][T13995]  ? __pfx__kstrtoull+0x10/0x10
[  728.504561][T13995]  ___sys_sendmsg+0xfe/0x1d0
[  728.504594][T13995]  ? __pfx____sys_sendmsg+0x10/0x10
[  728.504639][T13995]  ? find_held_lock+0x2b/0x80
[  728.504676][T13995]  __sys_sendmmsg+0x200/0x420
[  728.504712][T13995]  ? __pfx___sys_sendmmsg+0x10/0x10
[  728.504753][T13995]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  728.504798][T13995]  ? fput+0x70/0xf0
[  728.504824][T13995]  ? ksys_write+0x1ac/0x250
[  728.504854][T13995]  ? __pfx_ksys_write+0x10/0x10
[  728.504889][T13995]  __x64_sys_sendmmsg+0x9c/0x100
[  728.504922][T13995]  ? lockdep_hardirqs_on+0x7c/0x110
[  728.504953][T13995]  do_syscall_64+0xcd/0x490
[  728.505006][T13995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  728.505030][T13995] RIP: 0033:0x7f062f58e929
[  728.505048][T13995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  728.505071][T13995] RSP: 002b:00007f06304e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  728.505093][T13995] RAX: ffffffffffffffda RBX: 00007f062f7b5fa0 RCX: 00007f062f58e929
[  728.505108][T13995] RDX: 0000000000000008 RSI: 0000200000000200 RDI: 0000000000000004
[  728.505123][T13995] RBP: 00007f06304e1090 R08: 0000000000000000 R09: 0000000000000000
[  728.505136][T13995] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001
[  728.505150][T13995] R13: 0000000000000000 R14: 00007f062f7b5fa0 R15: 00007ffc21996758
[  728.505178][T13995]  </TASK>
[  728.717248][    C1] vkms_vblank_simulate: vblank timer overrun
[  730.020373][T13995] Process accounting resumed
[  730.815372][ T5836] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  730.831265][ T5836] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  730.839880][ T5836] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  730.856539][ T5836] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  730.864324][ T5836] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  731.100517][T14018] FAULT_INJECTION: forcing a failure.
[  731.100517][T14018] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  731.176297][T14018] CPU: 1 UID: 0 PID: 14018 Comm: syz.4.2007 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  731.176338][T14018] Tainted: [U]=USER
[  731.176345][T14018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  731.176360][T14018] Call Trace:
[  731.176368][T14018]  <TASK>
[  731.176377][T14018]  dump_stack_lvl+0x16c/0x1f0
[  731.176417][T14018]  should_fail_ex+0x512/0x640
[  731.176455][T14018]  _copy_to_iter+0x463/0x16f0
[  731.176498][T14018]  ? __pfx__copy_to_iter+0x10/0x10
[  731.176536][T14018]  ? single_next+0xd/0x40
[  731.176557][T14018]  ? traverse.part.0.constprop.0+0x2c5/0x640
[  731.176596][T14018]  seq_read_iter+0x719/0x12c0
[  731.176633][T14018]  ? aa_file_perm+0x4d6/0xfb0
[  731.176667][T14018]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  731.176703][T14018]  seq_read+0x39e/0x4e0
[  731.176743][T14018]  ? __pfx_seq_read+0x10/0x10
[  731.176789][T14018]  full_proxy_read+0x13c/0x200
[  731.176810][T14018]  ? __pfx_full_proxy_read+0x10/0x10
[  731.176831][T14018]  vfs_read+0x1e4/0xc60
[  731.176867][T14018]  ? __pfx_vfs_read+0x10/0x10
[  731.176895][T14018]  ? find_held_lock+0x2b/0x80
[  731.176917][T14018]  ? __fget_files+0x204/0x3c0
[  731.176950][T14018]  ? __fget_files+0x20e/0x3c0
[  731.176987][T14018]  __x64_sys_pread64+0x1eb/0x250
[  731.177019][T14018]  ? __pfx___x64_sys_pread64+0x10/0x10
[  731.177060][T14018]  do_syscall_64+0xcd/0x490
[  731.177095][T14018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  731.177117][T14018] RIP: 0033:0x7f062f58e929
[  731.177134][T14018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  731.177155][T14018] RSP: 002b:00007f06304e1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  731.177175][T14018] RAX: ffffffffffffffda RBX: 00007f062f7b5fa0 RCX: 00007f062f58e929
[  731.177190][T14018] RDX: 0000000000000007 RSI: 000020000000b040 RDI: 0000000000000008
[  731.177203][T14018] RBP: 00007f062f610b39 R08: 0000000000000000 R09: 0000000000000000
[  731.177216][T14018] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000
[  731.177229][T14018] R13: 0000000000000000 R14: 00007f062f7b5fa0 R15: 00007ffc21996758
[  731.177256][T14018]  </TASK>
[  731.672298][T14015] net_ratelimit: 867 callbacks suppressed
[  731.672317][T14015] netlink: set zone limit has 8 unknown bytes
[  732.914898][ T5836] Bluetooth: hci1: command tx timeout
[  733.053735][T14012] chnl_net:caif_netlink_parms(): no params data found
[  733.210373][T14022] nfs4: Unknown parameter 'À'
[  734.412037][T11513] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  734.605786][T14012] bridge0: port 1(bridge_slave_0) entered blocking state
[  734.613048][T14012] bridge0: port 1(bridge_slave_0) entered disabled state
[  734.727901][T14012] bridge_slave_0: entered allmulticast mode
[  734.785803][T14012] bridge_slave_0: entered promiscuous mode
[  734.994144][ T5836] Bluetooth: hci1: command tx timeout
[  735.027966][T11513] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  735.217205][T14012] bridge0: port 2(bridge_slave_1) entered blocking state
[  735.289307][T14012] bridge0: port 2(bridge_slave_1) entered disabled state
[  735.364262][T14012] bridge_slave_1: entered allmulticast mode
[  735.418794][T14012] bridge_slave_1: entered promiscuous mode
[  735.865574][T11513] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  736.147363][T14012] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  736.426609][T11513] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  736.540129][T14012] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  736.884916][T14012] team0: Port device team_slave_0 added
[  736.926314][T14012] team0: Port device team_slave_1 added
[  737.075836][ T5836] Bluetooth: hci1: command tx timeout
[  737.274803][T14012] batman_adv: batadv0: Adding interface: batadv_slave_0
[  737.281909][T14012] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  737.307896][    C1] vkms_vblank_simulate: vblank timer overrun
[  737.457366][T14012] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  737.517615][T14012] batman_adv: batadv0: Adding interface: batadv_slave_1
[  737.549346][T14012] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  737.575294][    C1] vkms_vblank_simulate: vblank timer overrun
[  737.683696][T14012] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  738.111535][T14012] hsr_slave_0: entered promiscuous mode
[  738.146921][T14012] hsr_slave_1: entered promiscuous mode
[  738.280159][T14082] dyndbg: bad flag-op , at start of 
[  738.319427][T14082] dyndbg: flags parse failed
[  738.379321][T14079] FAULT_INJECTION: forcing a failure.
[  738.379321][T14079] name failslab, interval 1, probability 0, space 0, times 0
[  738.396274][T11513] bridge_slave_1: left allmulticast mode
[  738.402047][T11513] bridge_slave_1: left promiscuous mode
[  738.450356][T11513] bridge0: port 2(bridge_slave_1) entered disabled state
[  738.467650][T14079] CPU: 1 UID: 0 PID: 14079 Comm: syz.2.2020 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  738.467687][T14079] Tainted: [U]=USER
[  738.467695][T14079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  738.467708][T14079] Call Trace:
[  738.467716][T14079]  <TASK>
[  738.467725][T14079]  dump_stack_lvl+0x16c/0x1f0
[  738.467764][T14079]  should_fail_ex+0x512/0x640
[  738.467798][T14079]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  738.467837][T14079]  should_failslab+0xc2/0x120
[  738.467860][T14079]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  738.467897][T14079]  ? __d_alloc+0x31/0xaa0
[  738.467937][T14079]  __d_alloc+0x31/0xaa0
[  738.467976][T14079]  d_alloc+0x4a/0x1e0
[  738.468022][T14079]  d_alloc_parallel+0xe3/0x12e0
[  738.468057][T14079]  ? find_held_lock+0x2b/0x80
[  738.468082][T14079]  ? __pfx_d_alloc_parallel+0x10/0x10
[  738.468113][T14079]  ? __d_lookup+0x266/0x4a0
[  738.468146][T14079]  lookup_open.isra.0+0x665/0x1580
[  738.468182][T14079]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  738.468229][T14079]  ? lookup_fast+0x156/0x610
[  738.468263][T14079]  path_openat+0x893/0x2cb0
[  738.468326][T14079]  ? __pfx_path_openat+0x10/0x10
[  738.468363][T14079]  ? __lock_acquire+0xb8a/0x1c90
[  738.468398][T14079]  do_filp_open+0x20b/0x470
[  738.468433][T14079]  ? __pfx_do_filp_open+0x10/0x10
[  738.468489][T14079]  ? alloc_fd+0x471/0x7d0
[  738.468530][T14079]  do_sys_openat2+0x11b/0x1d0
[  738.468557][T14079]  ? __pfx_do_sys_openat2+0x10/0x10
[  738.468595][T14079]  __x64_sys_openat+0x174/0x210
[  738.468623][T14079]  ? __pfx___x64_sys_openat+0x10/0x10
[  738.468663][T14079]  do_syscall_64+0xcd/0x490
[  738.468703][T14079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  738.468728][T14079] RIP: 0033:0x7f62f0b8e929
[  738.468747][T14079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  738.468771][T14079] RSP: 002b:00007f62f19c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  738.468794][T14079] RAX: ffffffffffffffda RBX: 00007f62f0db5fa0 RCX: 00007f62f0b8e929
[  738.468810][T14079] RDX: 0000000000008000 RSI: 0000200000000240 RDI: ffffffffffffff9c
[  738.468826][T14079] RBP: 00007f62f0c10b39 R08: 0000000000000000 R09: 0000000000000000
[  738.468841][T14079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  738.468855][T14079] R13: 0000000000000000 R14: 00007f62f0db5fa0 R15: 00007ffcf3237e38
[  738.468885][T14079]  </TASK>
[  738.714257][    C1] vkms_vblank_simulate: vblank timer overrun
[  739.154291][ T5836] Bluetooth: hci1: command tx timeout
[  739.227581][T11513] bridge_slave_0: left allmulticast mode
[  739.233410][T11513] bridge_slave_0: left promiscuous mode
[  739.279544][T11513] bridge0: port 1(bridge_slave_0) entered disabled state
[  740.143544][T11513] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  740.172223][T11513] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  740.198667][T11513] bond0 (unregistering): Released all slaves
[  740.338240][T11513] HfR: left promiscuous mode
[  740.761871][T14114] FAULT_INJECTION: forcing a failure.
[  740.761871][T14114] name failslab, interval 1, probability 0, space 0, times 0
[  740.832397][T14114] CPU: 1 UID: 0 PID: 14114 Comm: syz.0.2029 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  740.832433][T14114] Tainted: [U]=USER
[  740.832441][T14114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  740.832454][T14114] Call Trace:
[  740.832461][T14114]  <TASK>
[  740.832488][T14114]  dump_stack_lvl+0x16c/0x1f0
[  740.832527][T14114]  should_fail_ex+0x512/0x640
[  740.832560][T14114]  ? __kvmalloc_node_noprof+0x124/0x620
[  740.832595][T14114]  should_failslab+0xc2/0x120
[  740.832617][T14114]  __kvmalloc_node_noprof+0x137/0x620
[  740.832649][T14114]  ? __pfx___mutex_lock+0x10/0x10
[  740.832696][T14114]  ? traverse.part.0.constprop.0+0x392/0x640
[  740.832734][T14114]  ? traverse.part.0.constprop.0+0x392/0x640
[  740.832780][T14114]  traverse.part.0.constprop.0+0x392/0x640
[  740.832828][T14114]  seq_read_iter+0x932/0x12c0
[  740.832859][T14114]  ? aa_file_perm+0x4d6/0xfb0
[  740.832898][T14114]  seq_read+0x39e/0x4e0
[  740.832926][T14114]  ? __pfx_seq_read+0x10/0x10
[  740.832975][T14114]  full_proxy_read+0x13c/0x200
[  740.832997][T14114]  ? __pfx_full_proxy_read+0x10/0x10
[  740.833021][T14114]  vfs_read+0x1e4/0xc60
[  740.833059][T14114]  ? __pfx_vfs_read+0x10/0x10
[  740.833089][T14114]  ? find_held_lock+0x2b/0x80
[  740.833112][T14114]  ? __fget_files+0x204/0x3c0
[  740.833148][T14114]  ? __fget_files+0x20e/0x3c0
[  740.833187][T14114]  __x64_sys_pread64+0x1eb/0x250
[  740.833223][T14114]  ? __pfx___x64_sys_pread64+0x10/0x10
[  740.833265][T14114]  do_syscall_64+0xcd/0x490
[  740.833302][T14114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  740.833325][T14114] RIP: 0033:0x7fb04618e929
[  740.833343][T14114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  740.833365][T14114] RSP: 002b:00007fb046ffc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  740.833388][T14114] RAX: ffffffffffffffda RBX: 00007fb0463b5fa0 RCX: 00007fb04618e929
[  740.833403][T14114] RDX: 0000000000000007 RSI: 000020000000b040 RDI: 0000000000000008
[  740.833418][T14114] RBP: 00007fb046210b39 R08: 0000000000000000 R09: 0000000000000000
[  740.833432][T14114] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000000
[  740.833446][T14114] R13: 0000000000000000 R14: 00007fb0463b5fa0 R15: 00007ffc6af503c8
[  740.833475][T14114]  </TASK>
[  741.725835][T11513] hsr_slave_0: left promiscuous mode
[  741.767538][T11513] hsr_slave_1: left promiscuous mode
[  741.789051][T11513] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  741.830405][T11513] batman_adv: batadv0: Removing interface: batadv_slave_0
[  741.877056][T11513] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  741.916018][T11513] batman_adv: batadv0: Removing interface: batadv_slave_1
[  742.033920][T11513] veth1_macvtap: left promiscuous mode
[  742.053607][T11513] veth0_macvtap: left promiscuous mode
[  742.929237][T11513] team0 (unregistering): Port device team_slave_1 removed
[  743.016925][T11513] team0 (unregistering): Port device team_slave_0 removed
[  744.359020][T14012] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  744.423430][T14012] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  744.486481][T14012] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  744.531408][T14012] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  744.795942][T14154] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2035'.
[  744.917699][T14012] 8021q: adding VLAN 0 to HW filter on device bond0
[  745.012205][T14012] 8021q: adding VLAN 0 to HW filter on device team0
[  745.098715][T11513] bridge0: port 1(bridge_slave_0) entered blocking state
[  745.105913][T11513] bridge0: port 1(bridge_slave_0) entered forwarding state
[  745.176022][T14161] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  745.230968][   T30] audit: type=1804 audit(6045865956.150:18): pid=14164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2038" name="/newroot/sys/kernel/debug/tracing/dynamic_events" dev="tracefs" ino=1074 res=1 errno=0
[  745.272591][T14161] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  745.322997][T11521] bridge0: port 2(bridge_slave_1) entered blocking state
[  745.330222][T11521] bridge0: port 2(bridge_slave_1) entered forwarding state
[  745.362668][   T30] audit: type=1804 audit(6045865956.200:19): pid=14164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2038" name="/newroot/sys/kernel/tracing/dynamic_events" dev="tracefs" ino=1074 res=1 errno=0
[  745.599651][T14012] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  746.097591][T14181] FAULT_INJECTION: forcing a failure.
[  746.097591][T14181] name fail_futex, interval 1, probability 0, space 0, times 0
[  746.163854][T14181] CPU: 1 UID: 0 PID: 14181 Comm: syz.2.2042 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  746.163891][T14181] Tainted: [U]=USER
[  746.163899][T14181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  746.163912][T14181] Call Trace:
[  746.163919][T14181]  <TASK>
[  746.163927][T14181]  dump_stack_lvl+0x16c/0x1f0
[  746.163964][T14181]  should_fail_ex+0x512/0x640
[  746.164004][T14181]  get_futex_key+0x1d0/0x1540
[  746.164033][T14181]  ? __pfx_get_futex_key+0x10/0x10
[  746.164057][T14181]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  746.164095][T14181]  ? single_next+0xd/0x40
[  746.164115][T14181]  ? traverse.part.0.constprop.0+0x2c5/0x640
[  746.164147][T14181]  futex_wait_setup+0x9d/0x550
[  746.164186][T14181]  __futex_wait+0x194/0x2f0
[  746.164218][T14181]  ? __pfx___futex_wait+0x10/0x10
[  746.164248][T14181]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  746.164283][T14181]  ? __pfx_futex_wake_mark+0x10/0x10
[  746.164329][T14181]  futex_wait+0xe8/0x380
[  746.164360][T14181]  ? __pfx_futex_wait+0x10/0x10
[  746.164390][T14181]  ? debugfs_file_put+0x72/0xc0
[  746.164455][T14181]  ? vfs_read+0x23b/0xc60
[  746.164494][T14181]  do_futex+0x229/0x350
[  746.164522][T14181]  ? __pfx_do_futex+0x10/0x10
[  746.164558][T14181]  __x64_sys_futex+0x1e0/0x4c0
[  746.164599][T14181]  ? fput+0x70/0xf0
[  746.164618][T14181]  ? __pfx___x64_sys_futex+0x10/0x10
[  746.164646][T14181]  ? __pfx___x64_sys_pread64+0x10/0x10
[  746.164686][T14181]  do_syscall_64+0xcd/0x490
[  746.164722][T14181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  746.164745][T14181] RIP: 0033:0x7f62f0b8e929
[  746.164762][T14181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  746.164783][T14181] RSP: 002b:00007f62f19c60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  746.164803][T14181] RAX: ffffffffffffffda RBX: 00007f62f0db5fa8 RCX: 00007f62f0b8e929
[  746.164818][T14181] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62f0db5fa8
[  746.164831][T14181] RBP: 00007f62f0db5fa0 R08: 0000000000000000 R09: 0000000000000000
[  746.164844][T14181] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62f0db5fac
[  746.164857][T14181] R13: 0000000000000000 R14: 00007ffcf3237d50 R15: 00007ffcf3237e38
[  746.164883][T14181]  </TASK>
[  746.832318][T14186] FAULT_INJECTION: forcing a failure.
[  746.832318][T14186] name failslab, interval 1, probability 0, space 0, times 0
[  746.934566][T14186] CPU: 1 UID: 0 PID: 14186 Comm: syz.0.2043 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  746.934603][T14186] Tainted: [U]=USER
[  746.934611][T14186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  746.934624][T14186] Call Trace:
[  746.934631][T14186]  <TASK>
[  746.934640][T14186]  dump_stack_lvl+0x16c/0x1f0
[  746.934679][T14186]  should_fail_ex+0x512/0x640
[  746.934711][T14186]  ? fs_reclaim_acquire+0xae/0x150
[  746.934739][T14186]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  746.934770][T14186]  should_failslab+0xc2/0x120
[  746.934791][T14186]  __kmalloc_noprof+0xd2/0x510
[  746.934830][T14186]  tomoyo_realpath_from_path+0xc2/0x6e0
[  746.934868][T14186]  tomoyo_check_open_permission+0x2ab/0x3c0
[  746.934895][T14186]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  746.934948][T14186]  ? do_raw_spin_lock+0x12c/0x2b0
[  746.934989][T14186]  tomoyo_file_open+0x6b/0x90
[  746.935024][T14186]  security_file_open+0x84/0x1e0
[  746.935053][T14186]  do_dentry_open+0x596/0x1c10
[  746.935094][T14186]  vfs_open+0x82/0x3f0
[  746.935120][T14186]  path_openat+0x1de4/0x2cb0
[  746.935161][T14186]  ? __pfx_path_openat+0x10/0x10
[  746.935194][T14186]  ? __lock_acquire+0xb8a/0x1c90
[  746.935226][T14186]  do_filp_open+0x20b/0x470
[  746.935258][T14186]  ? __pfx_do_filp_open+0x10/0x10
[  746.935309][T14186]  ? alloc_fd+0x471/0x7d0
[  746.935345][T14186]  do_sys_openat2+0x11b/0x1d0
[  746.935384][T14186]  ? __pfx_do_sys_openat2+0x10/0x10
[  746.935420][T14186]  __x64_sys_openat+0x174/0x210
[  746.935446][T14186]  ? __pfx___x64_sys_openat+0x10/0x10
[  746.935482][T14186]  do_syscall_64+0xcd/0x490
[  746.935518][T14186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  746.935541][T14186] RIP: 0033:0x7fb04618e929
[  746.935558][T14186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  746.935579][T14186] RSP: 002b:00007fb046ffc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  746.935598][T14186] RAX: ffffffffffffffda RBX: 00007fb0463b5fa0 RCX: 00007fb04618e929
[  746.935613][T14186] RDX: 0000000000080000 RSI: 000020000000b000 RDI: ffffffffffffff9c
[  746.935627][T14186] RBP: 00007fb046210b39 R08: 0000000000000000 R09: 0000000000000000
[  746.935640][T14186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  746.935653][T14186] R13: 0000000000000000 R14: 00007fb0463b5fa0 R15: 00007ffc6af503c8
[  746.935679][T14186]  </TASK>
[  746.935687][T14186] ERROR: Out of memory at tomoyo_realpath_from_path.
[  747.750871][T14012] 8021q: adding VLAN 0 to HW filter on device batadv0
[  748.831369][T14220] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2049'.
[  748.915107][T14223] netlink: 338 bytes leftover after parsing attributes in process `syz.0.2049'.
[  749.293015][T14227] ==================================================================
[  749.293030][T14227] BUG: KASAN: vmalloc-out-of-bounds in sys_fillrect+0x15d4/0x17b0
[  749.293065][T14227] Write of size 8 at addr ffffc90003879000 by task syz.0.2051/14227
[  749.293085][T14227] 
[  749.293098][T14227] CPU: 1 UID: 0 PID: 14227 Comm: syz.0.2051 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  749.293133][T14227] Tainted: [U]=USER
[  749.293141][T14227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  749.293154][T14227] Call Trace:
[  749.293162][T14227]  <TASK>
[  749.293171][T14227]  dump_stack_lvl+0x116/0x1f0
[  749.293214][T14227]  print_report+0xcd/0x680
[  749.293235][T14227]  ? __virt_addr_valid+0x81/0x610
[  749.293261][T14227]  ? sys_fillrect+0x15d4/0x17b0
[  749.293286][T14227]  kasan_report+0xe0/0x110
[  749.293307][T14227]  ? sys_fillrect+0x15d4/0x17b0
[  749.293337][T14227]  sys_fillrect+0x15d4/0x17b0
[  749.293367][T14227]  ? __pfx_sys_fillrect+0x10/0x10
[  749.293395][T14227]  ? __pfx_bit_putcs+0x10/0x10
[  749.293430][T14227]  ? bit_cursor+0xeca/0x17e0
[  749.293468][T14227]  drm_fbdev_shmem_defio_fillrect+0x22/0x140
[  749.293499][T14227]  bit_clear+0x17a/0x220
[  749.293534][T14227]  ? __pfx_bit_clear+0x10/0x10
[  749.293569][T14227]  ? __pfx___might_resched+0x10/0x10
[  749.293593][T14227]  ? fb_get_color_depth+0x120/0x250
[  749.293639][T14227]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  749.293673][T14227]  ? __pfx_bit_clear+0x10/0x10
[  749.293705][T14227]  __fbcon_clear+0x600/0x780
[  749.293738][T14227]  fbcon_scroll+0x48b/0x690
[  749.293770][T14227]  con_scroll+0x45f/0x690
[  749.293802][T14227]  do_con_write+0x5560/0x8280
[  749.293844][T14227]  ? __pfx_do_con_write+0x10/0x10
[  749.293884][T14227]  con_write+0x23/0xb0
[  749.293916][T14227]  n_tty_write+0x40f/0x1160
[  749.293944][T14227]  ? __pfx_n_tty_write+0x10/0x10
[  749.293967][T14227]  ? rcu_is_watching+0x12/0xc0
[  749.293988][T14227]  ? __pfx_woken_wake_function+0x10/0x10
[  749.294028][T14227]  ? kfree+0x24f/0x4d0
[  749.294053][T14227]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[  749.294088][T14227]  ? __pfx_n_tty_write+0x10/0x10
[  749.294113][T14227]  file_tty_write.constprop.0+0x504/0x9b0
[  749.294150][T14227]  redirected_tty_write+0xd4/0x150
[  749.294183][T14227]  vfs_write+0x6c4/0x1150
[  749.294219][T14227]  ? __pfx_redirected_tty_write+0x10/0x10
[  749.294254][T14227]  ? __pfx_vfs_write+0x10/0x10
[  749.294282][T14227]  ? find_held_lock+0x2b/0x80
[  749.294311][T14227]  ksys_write+0x12a/0x250
[  749.294341][T14227]  ? __pfx_ksys_write+0x10/0x10
[  749.294374][T14227]  do_syscall_64+0xcd/0x490
[  749.294408][T14227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  749.294430][T14227] RIP: 0033:0x7fb04618e929
[  749.294446][T14227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  749.294467][T14227] RSP: 002b:00007fb046ffc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  749.294487][T14227] RAX: ffffffffffffffda RBX: 00007fb0463b5fa0 RCX: 00007fb04618e929
[  749.294501][T14227] RDX: 000000000000003a RSI: 0000200000000440 RDI: 0000000000000004
[  749.294515][T14227] RBP: 00007fb046210b39 R08: 0000000000000000 R09: 0000000000000000
[  749.294529][T14227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  749.294542][T14227] R13: 0000000000000000 R14: 00007fb0463b5fa0 R15: 00007ffc6af503c8
[  749.294562][T14227]  </TASK>
[  749.294570][T14227] 
[  749.294581][T14227] The buggy address ffffc90003879000 belongs to a vmalloc virtual mapping
[  749.294592][T14227] Memory state around the buggy address:
[  749.294603][T14227]  ffffc90003878f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  749.294619][T14227]  ffffc90003878f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  749.294634][T14227] >ffffc90003879000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  749.294646][T14227]                    ^
[  749.294656][T14227]  ffffc90003879080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  749.294672][T14227]  ffffc90003879100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  749.294684][T14227] ==================================================================
[  749.304032][T14012] veth0_vlan: entered promiscuous mode
[  749.309234][T14227] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  749.309256][T14227] CPU: 1 UID: 0 PID: 14227 Comm: syz.0.2051 Tainted: G     U              6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(full) 
[  749.309293][T14227] Tainted: [U]=USER
[  749.309302][T14227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  749.309317][T14227] Call Trace:
[  749.309326][T14227]  <TASK>
[  749.309335][T14227]  dump_stack_lvl+0x3d/0x1f0
[  749.309375][T14227]  panic+0x71c/0x800
[  749.309408][T14227]  ? __pfx_panic+0x10/0x10
[  749.309440][T14227]  ? mark_held_locks+0x49/0x80
[  749.309472][T14227]  ? preempt_schedule_thunk+0x16/0x30
[  749.309503][T14227]  ? sys_fillrect+0x15d4/0x17b0
[  749.309530][T14227]  ? preempt_schedule_common+0x44/0xc0
[  749.309568][T14227]  ? sys_fillrect+0x15d4/0x17b0
[  749.309594][T14227]  check_panic_on_warn+0xab/0xb0
[  749.309628][T14227]  end_report+0x107/0x170
[  749.309666][T14227]  kasan_report+0xee/0x110
[  749.309688][T14227]  ? sys_fillrect+0x15d4/0x17b0
[  749.309719][T14227]  sys_fillrect+0x15d4/0x17b0
[  749.309750][T14227]  ? __pfx_sys_fillrect+0x10/0x10
[  749.309780][T14227]  ? __pfx_bit_putcs+0x10/0x10
[  749.309816][T14227]  ? bit_cursor+0xeca/0x17e0
[  749.309855][T14227]  drm_fbdev_shmem_defio_fillrect+0x22/0x140
[  749.309887][T14227]  bit_clear+0x17a/0x220
[  749.309924][T14227]  ? __pfx_bit_clear+0x10/0x10
[  749.309962][T14227]  ? __pfx___might_resched+0x10/0x10
[  749.309987][T14227]  ? fb_get_color_depth+0x120/0x250
[  749.310021][T14227]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  749.310060][T14227]  ? __pfx_bit_clear+0x10/0x10
[  749.310108][T14227]  __fbcon_clear+0x600/0x780
[  749.310145][T14227]  fbcon_scroll+0x48b/0x690
[  749.310180][T14227]  con_scroll+0x45f/0x690
[  749.310224][T14227]  do_con_write+0x5560/0x8280
[  749.310270][T14227]  ? __pfx_do_con_write+0x10/0x10
[  749.310313][T14227]  con_write+0x23/0xb0
[  749.310349][T14227]  n_tty_write+0x40f/0x1160
[  749.310380][T14227]  ? __pfx_n_tty_write+0x10/0x10
[  749.310405][T14227]  ? rcu_is_watching+0x12/0xc0
[  749.310429][T14227]  ? __pfx_woken_wake_function+0x10/0x10
[  749.310467][T14227]  ? kfree+0x24f/0x4d0
[  749.310494][T14227]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[  749.310532][T14227]  ? __pfx_n_tty_write+0x10/0x10
[  749.310558][T14227]  file_tty_write.constprop.0+0x504/0x9b0
[  749.310599][T14227]  redirected_tty_write+0xd4/0x150
[  749.310636][T14227]  vfs_write+0x6c4/0x1150
[  749.310669][T14227]  ? __pfx_redirected_tty_write+0x10/0x10
[  749.310707][T14227]  ? __pfx_vfs_write+0x10/0x10
[  749.310738][T14227]  ? find_held_lock+0x2b/0x80
[  749.310769][T14227]  ksys_write+0x12a/0x250
[  749.310802][T14227]  ? __pfx_ksys_write+0x10/0x10
[  749.310839][T14227]  do_syscall_64+0xcd/0x490
[  749.310875][T14227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  749.310899][T14227] RIP: 0033:0x7fb04618e929
[  749.310918][T14227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  749.310942][T14227] RSP: 002b:00007fb046ffc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  749.310965][T14227] RAX: ffffffffffffffda RBX: 00007fb0463b5fa0 RCX: 00007fb04618e929
[  749.310981][T14227] RDX: 000000000000003a RSI: 0000200000000440 RDI: 0000000000000004
[  749.310997][T14227] RBP: 00007fb046210b39 R08: 0000000000000000 R09: 0000000000000000
[  749.311013][T14227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  749.311028][T14227] R13: 0000000000000000 R14: 00007fb0463b5fa0 R15: 00007ffc6af503c8
[  749.311051][T14227]  </TASK>
[  749.311125][T14227] Kernel Offset: disabled