last executing test programs:

23m41.473693876s ago: executing program 1 (id=947):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r1 = openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim0/psample/enable\x00', 0x2, 0x0)
write$auto_nsim_psample_enable_fops_psample(r1, &(0x7f0000000380)='F', 0x1)
ioctl$auto(r0, 0x5608, 0x7)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x8000, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804) (async)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram10/queue/max_sectors_kb\x00', 0xe3102, 0x0)
r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000340), 0xc, &(0x7f00000005c0)={&(0x7f0000000400)={0x19c, r4, 0x14, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_PUBL={0x175, 0x3, 0x0, 0x1, [@typed={0xf5, 0x117, 0x0, 0x0, @binary="bc9101d793ba4a0b71e5b537745717e1f4c489afdbe621e9e084e96a5543058942179b7da70179b35b4cdb7b1e3953706dcb5cc04a4e7d679a6f507169016746edbd8bf68f7ffb12b699964b3e9a8d702059ec5b92fed130f379cb0b90fa803803b2a054c2057a0058d4afd891924902eb47a3219c38b5a53415659d82a19a79b4405c9680d9dd984cd66bddd573a4f1d4191adc674aabf2755a1126f870858991d618141ddae35f6f2d1ddfb0356a32008f9f7f29b9933a21d4462bbb41bd1a06f14ca355357f6146b508a08eaf9eb0b6cb51266919ca4a41035745c13eb1cea56c81aeacee439b4d12ea142bcd73003c"}, @generic="3f6b34fa7bf0b7c435b1ca56f8e3d4a7d2872e0fe587c714cf3e1b85e7989ae2a9ba0cf674fb518f1b121c574919c9942cb800a0606058587f285a3f4f03131b50dd98b7cec4f74dd5290522cbd930f9b052ee7f02d6afc773315e1801e31409f81ecd7fa8ade02899d9f195aaa298f7dc0f736a74fbd4edf4"]}, @TIPC_NLA_MEDIA={0x10, 0x5, 0x0, 0x1, [@typed={0xc, 0xb6, 0x0, 0x0, @u64=0x4}]}]}, 0x19c}, 0x1, 0x0, 0x0, 0x24000840}, 0x5f74baad8b0ab017)
sendfile$auto(r3, r3, 0x0, 0x3)
lstat$auto(0x0, &(0x7f0000000180)={0x11, 0x2, 0x0, 0x1000, 0x0, 0x0, 0x0, 0xfa98, 0xfffffffffffffffb, 0x7fffffffffffffff, 0x4, 0x100000007ffffffe, 0x7fffffffffff7ffb, 0x5f3, 0x7, 0x4, 0x6})
socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0) (async)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0)
sendfile$auto(r6, r6, 0x0, 0x1) (async)
sendfile$auto(r6, r6, 0x0, 0x1)
r7 = openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000640)='/proc/thread-self/gid_map\x00', 0x40080, 0x0)
write$auto_proc_gid_map_operations_base(r7, &(0x7f0000000680)="211e418b59f229db69ef561bdc0f78677e0a2f149ac27acfbae57a501ab11e196e34ffb8987dd987f14030621ee58792e245694e80de68dcd16b0ff2168c982440c5f9b86cd704876a3abf0cbb8833891648d970309708d4bf2f038ff6b20a21f9b5f130aa66eb239a4ccb6f58dec513acac40e708b37cd53a4dd25e2242e8f0fbcefd0143f7d025fd8004484eba1e3c158c8f5ee1103edf602a1e444fd9d97a169526789b57c6a083043335acbc2e207addd305f400c5c11d5d62a07191c381d761f8debfb8015e2f0c", 0xca) (async)
write$auto_proc_gid_map_operations_base(r7, &(0x7f0000000680)="211e418b59f229db69ef561bdc0f78677e0a2f149ac27acfbae57a501ab11e196e34ffb8987dd987f14030621ee58792e245694e80de68dcd16b0ff2168c982440c5f9b86cd704876a3abf0cbb8833891648d970309708d4bf2f038ff6b20a21f9b5f130aa66eb239a4ccb6f58dec513acac40e708b37cd53a4dd25e2242e8f0fbcefd0143f7d025fd8004484eba1e3c158c8f5ee1103edf602a1e444fd9d97a169526789b57c6a083043335acbc2e207addd305f400c5c11d5d62a07191c381d761f8debfb8015e2f0c", 0xca)
ioctl$sock_SIOCGIFINDEX(r5, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
read$auto(r2, 0x0, 0x9) (async)
read$auto(r2, 0x0, 0x9)
sendmmsg$auto(r2, &(0x7f0000000300)={{&(0x7f0000000040)="91783f880c9eb781a5b8102df1716f64afc89c3ef3df116b71a2a4d73f007fbba6722d8e1a37386339b99675e0861f7aca90873ed7e8b695bee0658789bf4e310dfed33da6d79ee76573b2e9350ba48aabf585166638455e86e7e8a81f8e45b54065b820de9f28dbe3e77a0ae9649a164550a3b03132ba19b6911f7eac1a60d5d858d2664bb32be53be41e9f31f90c68722c89aa6311eb142befca6ad2647cb5dd8a52f7c34ce9c4e8d7cd8581cfa6a39107231c0d48219fc96896f007335636894647e6ca10fc25558629958f424d03ba26439022220bcfcf69e89824d3e3c6a6fbc58963d07eedd4fc4216fe", 0xfff, &(0x7f00000001c0)={&(0x7f0000000140)="0573392ff3330ab3a758469864fc611a32db00373cbe800aa002e8f651519196c53afa6326368c131c4d5b44d59a1646d31dc83954c0e62c724e22c24fee6a234acd25ab", 0x3efd628a}, 0x3d8, &(0x7f0000000200)="2a8c82bac9b70102a4a799d23c102911feabbee04d5ff4e5c107275eae9b11bfc4dd3704302793c06aedad0acf201c77f50314799e1727b4856b1ad62a3c6af348d91481b898566e18e5aa32ea5310b16545c60beb715b75ec8589fc0c17e51262a18e0b68d13bbe4605f80ade80f0a9ef44f274eb4c754660fcc92d5dce03d87d9814f8f5749723972cb650b13f70f4ffd4c134e1937e94e7e6c7cf2b79d91ed8939507f59745140d471cac468ac054dda6fc8f84477ae4db36f03dbfd15d3c1379a5ffbd568c3c", 0x6, 0xbeb}, 0x2}, 0x2, 0x6)

23m40.45860847s ago: executing program 1 (id=953):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/workqueue/parameters/default_affinity_scope\x00', 0x80000, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0xc800)
r0 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/inject\x00', 0x40482, 0x0)
writev$auto(r0, &(0x7f0000000000)={&(0x7f0000000000), 0x4}, 0x2)

23m40.198816133s ago: executing program 1 (id=954):
mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x8, 0x3, 0x9b72, 0x2, 0x8000)
gettid()
sysfs$auto(0x2, 0x10000000000000b, 0x0)
madvise$auto(0x0, 0x5, 0x15)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
fcntl$auto(r4, 0x400, 0x1)
r5 = syz_genetlink_get_family_id$auto_net_dm(&(0x7f0000000040), r4)
sendmsg$auto_NET_DM_CMD_STOP(r3, &(0x7f0000000200)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000100)={0x18, r5, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@NET_DM_ATTR_SW_DROPS={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40800}, 0x8000)
sendmsg$auto_NET_DM_CMD_CONFIG(r2, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f00000000c0)={0x114, r5, 0x20, 0x70bd28, 0x25dfdbfb, {}, [@NET_DM_ATTR_TRUNC_LEN={0x8, 0x9, 0x8001}, @NET_DM_ATTR_QUEUE_LEN={0x8, 0xb, 0xbb38}, @NET_DM_ATTR_SW_DROPS={0x4}, @NET_DM_ATTR_QUEUE_LEN={0x8, 0xb, 0x6}, @NET_DM_ATTR_SW_DROPS={0x4}, @NET_DM_ATTR_UNSPEC={0xd5, 0x0, "bc441b33499c7ecaca46af681a1ac35b87cd19398b34d2b99640e889a3557d75d0d620fcc2acb9160945d084941d0889d7d22bb65ae172dc333f5df5e483f6d048a45ea8bcbbf8dab2dcef0397abfcee0c5cf0bc3cb7a7a5ad2246d81d76d94f524b8838b0005a3e9d3f24284c5245b87be92b27fb8f4798dba5eae178a6861d418b8db5f40a621f2e96ecc6676e41039527d9dc421e3b38bb8e8d29481ca1cbe166a22c93af020a5edcde41298229231bef43179ff65887164204bb087bd20814f28f2fa762c473d516c66ee6cd49578b"}, @NET_DM_ATTR_TRUNC_LEN={0x8, 0x9, 0x4}]}, 0x114}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)

23m39.685834177s ago: executing program 1 (id=956):
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) (async)
r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto_TIOCMGET2(0xffffffffffffffff, 0x5415, 0x0) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, 0x0, 0x4000080) (async)
r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_DATAGRAM_SEND(r1, 0x7ab, 0x0)
mknod$auto(&(0x7f0000000140)='X))\x00', 0xcd, 0x9) (async)
execve$auto(&(0x7f0000000180)=':,\x00', 0x0, 0x0) (async)
mknod$auto(&(0x7f0000000000)='\xe1\x9eHU\x00', 0x63c1, 0x7bf) (async)
mknod$auto(&(0x7f0000000340)='\xe1\x9eHU\x00', 0x63c1, 0x7fc) (async)
sendmmsg$auto(0x4, 0x0, 0x100003, 0x6)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001280)='/sys/devices/virtual/net/bond0/bonding/arp_validate\x00', 0x20042, 0x0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r2, 0x0, 0x4000048) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x66ab80, 0x0) (async)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000400), 0x101000, 0x0) (async)
ioctl$auto_UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, &(0x7f0000000080)=0x203) (async)
unshare$auto(0x40000080) (async)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.5/usb6/idVendor\x00', 0x80000, 0x0)
read$auto(r3, &(0x7f0000000100)='\xcb%)\x00', 0x7) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
bpf$auto(0x2, 0x0, 0x8) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0)
sendfile$auto(r4, r4, 0x0, 0x200) (async)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0) (async)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dri/renderD128\x00', 0x0, 0x0) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000b80)='/proc/sys/kernel/kptr_restrict\x00', 0x202, 0x0)

23m37.570629077s ago: executing program 1 (id=960):
r0 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa1\x00', 0x101041, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(r0, 0x0, 0x5)
getsockopt$auto_SO_NETNS_COOKIE(0xffffffffffffffff, 0x4, 0x47, &(0x7f00000000c0)='/proc/asound/card1/pcm1p/sub1/xrun_injection\x00', &(0x7f0000000140)=0x10)
sendmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
listen$auto(r1, 0x21ff)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/pcm1p/sub1/xrun_injection\x00', 0x0, 0x0)
r2 = fcntl$auto_F_GETOWN(r1, 0x9, 0x6)
prctl$auto_PR_SET_MM_END_DATA(0x81d, 0x4, r2, 0x9, 0x7)
socket(0x2c, 0x6, 0x6)
ioprio_set$auto(0xffffff81, 0x0, 0x5)

23m37.29485126s ago: executing program 1 (id=961):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x7f, 0x7, 0x15)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0xc)
r2 = socket(0x6, 0x80001, 0x9)
pipe2$auto(&(0x7f00000003c0)=<r3=>r2, 0x80000001)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x1d, &(0x7f00000003c0), 0x0)
r4 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000900)='/sys/kernel/debug/block/nbd0/hctx0/sched_tags\x00', 0x60100, 0x0)
read$auto(r4, &(0x7f0000000040)='\x00', 0x3)
readv$auto(r1, 0x0, 0x3)
ioctl$auto_TIOCVHANGUP2(r3, 0x5437, 0x0)
r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x9, 0x9, 0xeb3, 0xfffefffffffffffa, 0x8000)
r6 = open(&(0x7f0000000000)='./file0\x00', 0x25c000, 0x14)
r7 = fcntl$auto(r6, 0x3, 0x0)
ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001100)=""/192, 0xc0)
write$auto(0x3, 0x0, 0x100082)
mmap$auto(0x0, 0x6d3, 0x7, 0xeb1, r0, 0x1)
ioctl$auto_FIGETBSZ(r7, 0x2, 0x6)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x7, 0x13)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
mmap$auto(0x1, 0xb7, 0xe1, 0x7ffffffffffffffe, r5, 0x8000)
connect$auto(0x4, 0x0, 0x10)

23m21.98321168s ago: executing program 32 (id=961):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x7f, 0x7, 0x15)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x10, 0x2, 0xc)
r2 = socket(0x6, 0x80001, 0x9)
pipe2$auto(&(0x7f00000003c0)=<r3=>r2, 0x80000001)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x1d, &(0x7f00000003c0), 0x0)
r4 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000900)='/sys/kernel/debug/block/nbd0/hctx0/sched_tags\x00', 0x60100, 0x0)
read$auto(r4, &(0x7f0000000040)='\x00', 0x3)
readv$auto(r1, 0x0, 0x3)
ioctl$auto_TIOCVHANGUP2(r3, 0x5437, 0x0)
r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x9, 0x9, 0xeb3, 0xfffefffffffffffa, 0x8000)
r6 = open(&(0x7f0000000000)='./file0\x00', 0x25c000, 0x14)
r7 = fcntl$auto(r6, 0x3, 0x0)
ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001100)=""/192, 0xc0)
write$auto(0x3, 0x0, 0x100082)
mmap$auto(0x0, 0x6d3, 0x7, 0xeb1, r0, 0x1)
ioctl$auto_FIGETBSZ(r7, 0x2, 0x6)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x7, 0x13)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
mmap$auto(0x1, 0xb7, 0xe1, 0x7ffffffffffffffe, r5, 0x8000)
connect$auto(0x4, 0x0, 0x10)

14m46.331129485s ago: executing program 0 (id=4406):
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
select$auto(0x7, 0x0, &(0x7f0000000080)={[0x8, 0xc0b, 0x3, 0x16, 0x1001, 0xffffffffffffffff, 0xf, 0x9, 0xb, 0x1, 0x7ff, 0x2e3, 0x5, 0x0, 0x1, 0x7fffffff]}, 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/perf_event_max_sample_rate\x00', 0x1181, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000580)='/proc/asound/card0/pcm0c/sub2/sw_params\x00', 0xa02c0, 0x0)
r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000140), 0xffffffffffffffff)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x100000000, 0xd77, 0x5, 0x7181, 0x81, 0x7, 0x3, 0x9a89, 0x5, 0x8, 0x800, 0x1fffffffffff, 0xb4, 0x3, 0x2, 0x10007, 0x80, 0x0, 0x0, 0xa, 0x22004, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x1, [0x0, 0x0, 0xea4, 0x4, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x5, 0x0, 0x0, 0x100000000, 0x0, 0x3, 0x4, 0x5, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x100000000]}, 0x1fe, 0xd)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="010025bd7000fbdbdf0002"], 0x1c}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xda5c}, 0x800}, 0x7, 0x4008)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x1a, 0x5, 0xfffffffd)
r4 = socket(0x15, 0x5, 0x0)
setsockopt$auto(r4, 0x114, 0x6, 0x0, 0x8000002)
r5 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20c01, 0x0)
kexec_load$auto(0xb2e6, 0x7fffffffffffffff, &(0x7f00000001c0)={@kbuf=&(0x7f0000000100)="8ab2a5bb9b1c17549744f57f6ea098050a303431560e56dd5bf49ed0ec98d7b39fe97bf6df31a434d0041d8340df2cabe0ea7a6f4b222a99afb3e4d9cea3872bb80cd37a29d805d184c14646ad51f77da54ee6208e54125f7b116663104716c72113d51583d4d54a1a15016ee5fb88591d2fd88e1242508d1397558a780aa1607b1902b283f8f3bdd18f866a01b9f62d6414a46a81181df3d9ea09f8e0385835a6b920c281efb6d200db74d3ef1ead03", 0x4, 0x1, 0xc}, 0x3)
bind$auto(r5, 0x0, 0x67)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
ioctl$auto_posix_clock_file_operations_posix_clock(0xffffffffffffffff, 0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948f, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0xb, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
select$auto(0x1, &(0x7f0000000200)={[0x0, 0x7, 0x8, 0x400, 0x2, 0x9, 0x5, 0x1, 0xd3a7, 0x35, 0x53, 0x49, 0x0, 0xffff, 0x0, 0x401]}, &(0x7f0000000340)={[0x4, 0x100, 0xa85, 0x3612, 0x1, 0x4, 0x7, 0x1, 0x0, 0x8, 0x4, 0x5d2d33fb, 0x6, 0x4, 0x6, 0x6000000000]}, &(0x7f0000000440)={[0x6, 0x851, 0x40000, 0x3, 0x5, 0x2, 0x7fffffff, 0x8000000000000000, 0x1, 0x4000, 0x7, 0x6c, 0x3ff, 0x3, 0x1ff, 0x3]}, &(0x7f0000000280)={0x0, 0x80000001})
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x90, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000001f, 0x2, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0)

14m44.683818221s ago: executing program 0 (id=4407):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/dev\x00', 0x40100, 0x0)
pread64$auto(r1, 0x0, 0x10001, 0x830)
write$auto(r0, 0x0, 0x3100)

14m43.92384394s ago: executing program 0 (id=4410):
close_range$auto(0x2, 0x8, 0x0)
read$auto_transaction_log_fops_(0xffffffffffffffff, &(0x7f0000000300)=""/237, 0xed)
r0 = openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, &(0x7f0000000200), 0xc0400, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000)
socket(0x10, 0x2, 0x0)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x802, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7400fddbdf250300000004000800100003800c000980"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="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", @ANYRESHEX=r0, @ANYBLOB="00211459a600fbdbdf25020000000800030000"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x2, 0x0)
socket(0xa, 0x3, 0x3a)
socket(0x29, 0x2, 0x0)
r2 = socket(0x11, 0x3, 0x9)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = io_uring_setup$auto(0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r5=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
socket(0xa, 0x3, 0x6)
clone$auto(0x21003b46, 0x2, 0x0, 0x0, 0x6)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r5, r4, 0x99, 0x8, 0x1, @relative_id=0x4, 0x9}, 0x8a4)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x6)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r2, 0x0, 0x3}, 0xc)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000200bd7000fedbdf250200000800130001"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket$nl_generic(0x10, 0x3, 0x10)

14m43.43201842s ago: executing program 0 (id=4413):
r0 = socket(0x10, 0x2, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000180)=""/136, 0x88)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x8000, 0x1ff)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
ioctl$auto(0x3, 0xc040564a, 0x38)
syz_genetlink_get_family_id$auto_smbd_genl(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0xffffffffffffffff, 0x10000000084, 0x9, 0x0, 0x98)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x8, 0x8000)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r1, 0x0, 0x1f40)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
pwrite64$auto(0xc8, 0x0, 0x4e, 0x1)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC0D0p\x00', 0x40140, 0x0)
openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/trace_options\x00', 0x8501, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x80002, 0x0)

14m42.415900049s ago: executing program 0 (id=4415):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/zram0/disksize\x00', 0x2202, 0x0)
read$auto_cachefiles_daemon_fops_internal(r0, &(0x7f0000000080)=""/232, 0xe8)
prctl$auto_PR_SME_SET_VL(0x3f, 0x6, 0x200, 0xfffffffffffff001, 0x400)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/bpq3/statistics/rx_packets\x00', 0xa0140, 0x0)
socketpair$auto(0x1e, 0x1, 0xffffffff, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyzf\x00', 0x400, 0x0)
ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0)
ioctl$auto_TIOCSTI2(r1, 0x5412, 0x0)

14m41.748569228s ago: executing program 0 (id=4419):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000100), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0xfffffffffffffffe, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0xa)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
clock_nanosleep$auto(0x1, 0x200, &(0x7f0000000140)={0x0, 0x2800000a}, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
setsockopt$auto(0x3, 0x0, 0x33, 0x0, 0x4)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
sendmsg$auto_TCP_METRICS_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x28, r1, 0x1, 0x70bd26, 0x25dfdbff, {}, [@TCP_METRICS_ATTR_ADDR_IPV6={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x3a}}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000080}, 0x400d0)

14m26.585592192s ago: executing program 33 (id=4419):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000100), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0xfffffffffffffffe, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0xa)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
clock_nanosleep$auto(0x1, 0x200, &(0x7f0000000140)={0x0, 0x2800000a}, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
setsockopt$auto(0x3, 0x0, 0x33, 0x0, 0x4)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
sendmsg$auto_TCP_METRICS_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x28, r1, 0x1, 0x70bd26, 0x25dfdbff, {}, [@TCP_METRICS_ATTR_ADDR_IPV6={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x3a}}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000080}, 0x400d0)

10.864817269s ago: executing program 5 (id=6926):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x1c, r1, 0x1, 0x70bd2b, 0x25dfdbfa, {}, [@HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x2}]}, 0x1c}, 0x1, 0x300}, 0x4044820)

9.572258085s ago: executing program 5 (id=6931):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x1c, r1, 0x1, 0x70bd2b, 0x25dfdbfa, {}, [@HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x2}]}, 0x1c}, 0x1, 0x0, 0xfffff000}, 0x4044820)

8.844067493s ago: executing program 5 (id=6934):
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r1, 0x400, 0x0)
flock$auto(r1, 0x8)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0)
ioctl$auto_I2C_TIMEOUT(r2, 0x702, &(0x7f0000000940))
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/renderD128\x00', 0x20300, 0x0)
r3 = socket(0xa, 0x5, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x1)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'ip6_vti0\x00'})
bpf$auto(0x18, &(0x7f0000000040)=@raw_tracepoint={0x0, 0xffffffffffffffff, 0x0, 0x800}, 0x92)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x54)
r4 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
getsockopt$auto(r3, 0x84, 0x1d, 0x0, 0x0)
r5 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/dri/vgem/clients\x00', 0x60000, 0x0)
read$auto_drm_debugfs_entry_fops_drm_debugfs(r5, &(0x7f0000000100)=""/153, 0x99)
getpid()
process_madvise$auto_MADV_COLLAPSE(r4, &(0x7f0000000280)={&(0x7f0000000200)="636794c7b053dd7cc1764bf88dcd24f245908ba12f62f03447ea3600eae0426a4c452c40a00ca5a33964c2269553c4acaa4192636d27cb62894c55920cc2d15068942bf91157538d1ccf2435f326446a858032bc1491b4846a645b1bd52dc668be352d0cb8462e08a1311cdd8a4fd7a31782b090c6108ac9e07b80145b", 0x7}, 0xfff, 0x19, 0xd)
mincore$auto(0x1000, 0x8001, 0x0)
r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r6, 0x0, 0xb4d3)
write$auto(r4, 0x0, 0x2400)
semget$auto(0x0, 0x13c, 0x1ff)

8.70162111s ago: executing program 4 (id=6935):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) (async, rerun: 32)
openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (rerun: 32)
nanosleep$auto(&(0x7f0000000180)={0x0, 0x44d4}, 0x0) (async, rerun: 32)
getpid() (async, rerun: 32)
clock_nanosleep$auto(0x9, 0x0, 0x0, 0x0) (async)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) (async)
socket(0x1d, 0x3, 0x1) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
socket(0x2, 0x2, 0x0) (async)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040))
fcntl$auto(r0, 0x402, 0x2)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000040))
fcntl$auto(r1, 0x402, 0x2) (async, rerun: 64)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) (async, rerun: 64)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x24102, 0x0)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sys/kernel/kexec_load_limit_panic\x00', 0xa0202, 0x0)
read$auto(r2, &(0x7f0000000000)='/proc/sys/kernel/kexec_load_limit_panic\x00', 0x81) (async, rerun: 64)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async, rerun: 64)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) (async, rerun: 64)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
socketpair$auto(0x1, 0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x2a)
socket(0x2a, 0x2, 0x1)

7.670601739s ago: executing program 3 (id=6937):
keyctl$auto(0x5, 0xffffeffffffffffe, 0x107, 0x803, 0x800000000000c)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dsp1\x00', 0x2, 0x0)
ioctl$auto_OSS_ALSAEMULVER2(r0, 0x80044df9, &(0x7f0000000200))
r1 = setfsuid$auto(0xee00)
r2 = setfsuid$auto(0xee01)
setresuid$auto(r1, r2, r1)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000001280)={{&(0x7f0000000140)="f3c21f02f0c8ba998ecc491713fbb0ef9dc64bd62222c825e009d335249966e1d918d802a7f127f772f456", 0x200, &(0x7f0000000240)={&(0x7f0000000180)="eb80dc19b004f724956c2068ecbd8ba98a9300e2529b05454ec1cdc78c9ef1b6befd225666bf17829c7beb9f044c91d5e8c86fa1e7577fcb4479580b704686a23c374cb37ca24bef39d8c2b8f8ba7aca1ee13ff46445381da2a738d76fabd31dd1c1357ed5cba67e468f1e8ce99850267a4db1a6c30305488eac8faa01ab308bf18c547ccff47e13dcc0b1902241d9a8757a", 0x8}, 0x5, &(0x7f0000000280)="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", 0xa2, 0x6}}, 0x800080, 0x7)
poll$auto(&(0x7f00000012c0)={<r3=>r0, 0x7, 0x100}, 0x7, 0x2)
ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, &(0x7f0000000000)={0x9, @raw=0x100, @inferred=r3, 0x2, 0x400, '\x00', {0xffffffffffffffff, 0x42, 0x8, <r4=>r1, <r5=>0xee01, 0x0, 0x8, 0x1, {0x77c7, 0xf}, {0x3, 0x5}, {0x4}, 0x0, 0xc, 0x5, 0x0, 0x2, 0x9, 0xfff9, 0x6, 0x7, 0x1, '\x00', 0x8, 0x7, 0x0, 0x6}})
keyctl$auto(0x9, r1, r4, r5, 0xfff)
r6 = clone3$auto(&(0x7f00000000c0)={0x3, 0x0, 0x100000000, 0x3, 0x3, 0xfffffffffffffff7, 0x3, 0x2, 0x9, 0x9554, 0xfffffffffffffff8}, 0x10001)
prctl$auto_SECCOMP_MODE_STRICT(0x100, 0x1, r6, 0x5, 0x5)
keyctl$auto(0x5, 0xffffeffffffffffe, 0x107, 0x803, 0x800000000000c) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dsp1\x00', 0x2, 0x0) (async)
ioctl$auto_OSS_ALSAEMULVER2(r0, 0x80044df9, &(0x7f0000000200)) (async)
setfsuid$auto(0xee00) (async)
setfsuid$auto(0xee01) (async)
setresuid$auto(r1, r2, r1) (async)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000001280)={{&(0x7f0000000140)="f3c21f02f0c8ba998ecc491713fbb0ef9dc64bd62222c825e009d335249966e1d918d802a7f127f772f456", 0x200, &(0x7f0000000240)={&(0x7f0000000180)="eb80dc19b004f724956c2068ecbd8ba98a9300e2529b05454ec1cdc78c9ef1b6befd225666bf17829c7beb9f044c91d5e8c86fa1e7577fcb4479580b704686a23c374cb37ca24bef39d8c2b8f8ba7aca1ee13ff46445381da2a738d76fabd31dd1c1357ed5cba67e468f1e8ce99850267a4db1a6c30305488eac8faa01ab308bf18c547ccff47e13dcc0b1902241d9a8757a", 0x8}, 0x5, &(0x7f0000000280)="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", 0xa2, 0x6}}, 0x800080, 0x7) (async)
poll$auto(&(0x7f00000012c0)={r0, 0x7, 0x100}, 0x7, 0x2) (async)
ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, &(0x7f0000000000)={0x9, @raw=0x100, @inferred=r3, 0x2, 0x400, '\x00', {0xffffffffffffffff, 0x42, 0x8, r1, 0xee01, 0x0, 0x8, 0x1, {0x77c7, 0xf}, {0x3, 0x5}, {0x4}, 0x0, 0xc, 0x5, 0x0, 0x2, 0x9, 0xfff9, 0x6, 0x7, 0x1, '\x00', 0x8, 0x7, 0x0, 0x6}}) (async)
keyctl$auto(0x9, r1, r4, r5, 0xfff) (async)
clone3$auto(&(0x7f00000000c0)={0x3, 0x0, 0x100000000, 0x3, 0x3, 0xfffffffffffffff7, 0x3, 0x2, 0x9, 0x9554, 0xfffffffffffffff8}, 0x10001) (async)
prctl$auto_SECCOMP_MODE_STRICT(0x100, 0x1, r6, 0x5, 0x5) (async)

6.512272382s ago: executing program 3 (id=6938):
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
r0 = clone3$auto(&(0x7f00000002c0)={0x4, 0x9, 0x1, 0x2, 0x8000, 0xffffffffffffffff, 0x7, 0x3, 0xffffffffffffffea, 0x8, 0x200}, 0x7)
ptrace$auto_PTRACE_GETSIGMASK(0x420a, r0, 0x6e3, 0x1)
ioctl$auto_IOCTL_VMCI_DATAGRAM_SEND(0xffffffffffffffff, 0x7ab, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2200, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
io_setup$auto(0x7ffe, 0x0)
io_setup$auto(0x7ffe, &(0x7f0000000000))
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0xf0ffffff}, 0x40000)
recvmmsg$auto(r3, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000000)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x5}, 0x9}, 0x16d, 0x6, 0x0)
r4 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="720100", @ANYRES16=r4], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x0, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x6}, 0x3, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x7000000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/bus/pci/rescan\x00', 0x20681, 0x0)
syz_genetlink_get_family_id$auto_smc_gen_netlink(0x0, r2)
write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000200)='5', 0x1)
capset$auto(&(0x7f0000000340)={0x19980330}, 0x0)
select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, &(0x7f0000000200)={[0x8, 0x4, 0x2, 0xb, 0x1, 0x9, 0x0, 0x7fff, 0xa, 0x193, 0xfffffffffffffff9, 0x3, 0x5e4, 0x1000, 0x1, 0x1]}, &(0x7f0000000380)={[0x8000000000000001, 0x5, 0x1, 0x10001, 0xe, 0xf, 0x5, 0x3, 0x59fc8000, 0x200006, 0x8000000000000000, 0x3, 0x800, 0x7, 0x1ff, 0x5]}, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x40841, 0x8)
io_uring_register$auto_IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, 0x2f)
openat$auto_tracing_saved_cmdlines_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/saved_cmdlines\x00', 0x88000, 0x0)

5.11197689s ago: executing program 3 (id=6941):
madvise$auto(0x1, 0x9, 0xa) (async)
r0 = socket(0x21, 0x2, 0x2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x40008000) (async)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socketpair$auto(0x9, 0x6, 0x1, 0x0) (async)
setsockopt$auto(0x3, 0x1, 0x10, 0x0, 0x9) (async)
io_uring_setup$auto(0x1, 0x0) (async)
connect$auto(0x3, 0x0, 0x55)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9) (async)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
shutdown$auto(0x200000003, 0x2) (async)
mmap$auto(0x8000000000000001, 0x20009, 0xe3, 0x100000eb1, r0, 0x100000000008000)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/008/001\x00', 0x2101, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
clone$auto(0x6db, 0x1, 0x0, 0x0, 0x7) (async)
mmap$auto(0x0, 0x402007, 0xdf, 0x9b72, r0, 0x8000000000) (async)
keyctl$auto_KEYCTL_INSTANTIATE_IOV(0x14, 0x6, 0x20, 0x400, 0x6)

4.802404877s ago: executing program 2 (id=6942):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_trace_time_stamp_mode_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/timestamp_mode\x00', 0x200, 0x0)
read$auto_trace_time_stamp_mode_fops_trace(r0, &(0x7f00000000c0)=""/45, 0x2d)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0x240007, 0x19)
migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r3 = io_uring_setup$auto(0x6, &(0x7f0000000240)={0x9, 0x7, 0x10, 0x14b0e90d, 0x8001, 0x80, r1, [0x7, 0x9, 0x9], {0x98a6686, 0x0, 0x8, 0x6, 0x1, 0x2, 0x6, 0x101, 0x2}, {0x7, 0xa, 0x676, 0x9, 0x5, 0x1000, 0x1, 0x3, 0x2}})
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r3)
openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x302, 0x0)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
msgctl$auto_IPC_INFO(0x80000001, 0x3, &(0x7f00000005c0)={{0x10, 0x0, 0x0, 0x2, 0xa, 0x600, 0x2}, &(0x7f0000000440)=0x5, &(0x7f0000000480)=0x2, 0x83e, 0x8, 0x4, 0x4, 0x80, 0x1, 0x4, 0x3b, @raw=0xf29, @raw=0x7ff})
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r5, &(0x7f0000000580)={0x0, 0x2120, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r4, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x4000021}, 0x0)

4.219550303s ago: executing program 5 (id=6943):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x30, r1, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x4}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)

3.97469821s ago: executing program 2 (id=6944):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x840, 0x0)
bpf$auto(0x9, &(0x7f00000000c0)=@batch={0xc, 0x37, 0x2, 0x5, 0x7, 0x1, 0x6, 0x584e}, 0x9)
ioctl$auto(r0, 0x4b65, 0x7)

3.723149894s ago: executing program 3 (id=6945):
symlink$auto(&(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)='./file0\x00')
openat$auto_fops_x64_ro_(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/ieee80211/phy3/netdev:wlan0/stations/08:02:11:00:00:01/driver_buffered_tids\x00', 0xa02, 0x0)
readlink$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0xa05)

3.480421059s ago: executing program 2 (id=6946):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000005380)={0x0, 0xfffffffffffffef5, &(0x7f0000005340)={&(0x7f0000000000)={0x14, r1, 0x20, 0x870bd2b, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004000}, 0x20000000)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) (async)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000005380)={0x0, 0xfffffffffffffef5, &(0x7f0000005340)={&(0x7f0000000000)={0x14, r1, 0x20, 0x870bd2b, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004000}, 0x20000000) (async)

3.469572353s ago: executing program 5 (id=6947):
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/perf_event_max_sample_rate\x00', 0x1181, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000580)='/proc/asound/card0/pcm0c/sub2/sw_params\x00', 0xa02c0, 0x0)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000140), 0xffffffffffffffff)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x100000000, 0xd77, 0x5, 0x7181, 0x81, 0x7, 0x3, 0x9a89, 0x5, 0x8, 0x800, 0x1fffffffffff, 0xb4, 0x3, 0x2, 0x10007, 0x80, 0x0, 0x0, 0xa, 0x22004, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x1, [0x0, 0x0, 0xea4, 0x4, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x5, 0x0, 0x0, 0x100000000, 0x0, 0x3, 0x4, 0x5, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x100000000]}, 0x1fe, 0xd)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000)
r1 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xda5c}, 0x800}, 0x7, 0x4008)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = socket(0x15, 0x5, 0x0)
setsockopt$auto(r3, 0x114, 0x6, 0x0, 0x8000002)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, 0x0, 0x20c01, 0x0)
kexec_load$auto(0xb2e6, 0x7fffffffffffffff, &(0x7f00000001c0)={@kbuf=&(0x7f0000000100)="8ab2a5bb9b1c17549744f57f6ea098050a303431560e56dd5bf49ed0ec98d7b39fe97bf6df31a434d0041d8340df2cabe0ea7a6f4b222a99afb3e4d9cea3872bb80cd37a29d805d184c14646ad51f77da54ee6208e54125f7b116663104716c72113d51583d4d54a1a15016ee5fb88591d2fd88e1242508d1397558a780aa1607b1902b283f8f3bdd18f866a01b9f62d6414a46a81181df3d9ea09f8e0385835a6b920c281efb6d200db74d3ef1ead03", 0x4, 0x1, 0xc}, 0x3)
ioctl$auto_posix_clock_file_operations_posix_clock(0xffffffffffffffff, 0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948f, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0xb, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
select$auto(0x1, &(0x7f0000000200)={[0x0, 0x7, 0x8, 0x400, 0x2, 0x9, 0x5, 0x1, 0xd3a7, 0x35, 0x53, 0x49, 0x0, 0xffff, 0x0, 0x401]}, 0x0, &(0x7f0000000440)={[0x6, 0x851, 0x40000, 0x3, 0x5, 0x2, 0x7fffffff, 0x8000000000000000, 0x1, 0x4000, 0x7, 0x6c, 0x3ff, 0x3, 0x1ff, 0x3]}, &(0x7f0000000280)={0x0, 0x80000001})
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x90, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000001f, 0x2, 0x6d3c, 0x9, 0x2, 0x6]}, 0x0)
kexec_load$auto(0x3ff, 0xa46, &(0x7f00000003c0)={@buf=&(0x7f00000004c0)="fbd442639bee2c9f8926fa40d701b1ec65f845203d7062fb6ed57c758d3a755834d4a2761b53d3136376158ca3b8c93ccd4202bb514bb5303e7c76ef3038b31f4de1a9727bce1701cc0015b3806c8d57dcbe2362c5b9ce6839dbfc94055eadc93a8f31938399fbede0c668fe614c61cc1cadde6b9369f58e220fbc19902a890763bc0a2d39f1a04f5daf18cef03ad45cd49a56b8f1ea3a5897c5962cdec9816eb19431697a286592c8f98cbe8d5a42a192a964e7cf6dedfc57", 0xd, 0xff, 0xa1}, 0x7fffffffffffffff)

3.196467921s ago: executing program 3 (id=6948):
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/003/001\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
mmap$auto(0x0, 0x5, 0x4000000000e2, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2000000000000021, 0x2, 0x10000000000002)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000003fc0), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETFAMILY2(r0, &(0x7f00000040c0)={0x0, 0x0, &(0x7f0000004080)={&(0x7f0000004000)={0x24, r1, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@CTRL_ATTR_FAMILY_NAME={0xf, 0x2, 'veth0_vlan\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4000050)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)={0x14, r3, 0x1, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
socket(0xf, 0x3, 0x2)
shmctl$auto_IPC_RMID(0x0, 0x0, &(0x7f00000000c0)={{0x3, 0x0, 0x0, 0xdec, 0x5, 0xa5, 0x7}, 0x5, 0x5b, 0xfffffffffffffffc, 0x682, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff, 0x63f, 0x0, &(0x7f00000001c0)="029fb61e8bf880faf81027e520b3adf48399973e055347f4030b39b57fb334db07a4e318ff4cee953d8a6fbb06562f05e3d21a98d583886f5bd191686fe750fb841c2ad3bc5d0563e8ba264b5f72133bb785edf7a827d0fc1e17f7ffc9944120f0e23b84d430d8ef4bf218eda0bddbcf8142813a76e32bf9feb08d3b2da03604757efab39be26480528bc0e7500e32542ac7fdab5315efdd4fe5502f0347faa7809a952f0a1b8a17abea4a4b4a31489541616765ec5f2ae5bd2bb358b167baea3bdb966ae73fc3067fbe225b2c7a", &(0x7f0000000380)="799e926014af5f06f0a25425ba9f4c71d658b1e59c9476e8a2ba22ab9f44f4e83e217feefafe5d44d72cb9e978e6310e621698cd35eec4872652a53f9c7198bc7ab411cc52ae463eed01592f60ab9c874185fddb4cc1c419e7a97b2681be55f679d15e698465ea676f62e5722f5827774650694e5247d5e7e7fc56f2b392a01f3ca44699e78c6b457d30712cd67ae6a5458776ccdc81d262fbf074af47305887f250c061e5f071c5c186eb0cfa13088b88f2601c2c0de534f9ca70c9cd3b92f69284f11a92e7711b35080ee6cd7639eb1fe7f3f621038e"})
ioctl$auto(0xffffffffffffffff, 0xc0045401, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x100, 0x0)
r4 = epoll_create$auto(0x8)
epoll_ctl$auto(r4, 0x1, 0x8000000000000000, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x401, 0xfffffffffffffffd, 0xd4, 0x4, 0x28c, 0x0, 0x3, 0x368e, 0x9, {0xfffffffe, 0x10000}, 0x5, 0x6, 0xfffffffffff7fffd, 0x1007ffd, 0x0, 0xfe, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x20282, 0x0)
r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r6, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x84280, 0x0)
io_uring_setup$auto(0x3, &(0x7f00000000c0)={0x5, 0xd2cf6a, 0x7fff0, 0x5, 0x3, 0x7, r5, [0x10, 0x9, 0xfffffc00], {0x901, 0x3, 0x9, 0xc, 0x600, 0x3, 0x48a9, 0x5, 0x1}, {0x9, 0x7, 0x0, 0x6, 0x5, 0x9, 0x5, 0x7, 0xfc}})
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fffe000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x48a22, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)

3.146632198s ago: executing program 2 (id=6949):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
write$auto(0x3, 0x0, 0x100082)
io_uring_setup$auto(0x6, 0x0)
r0 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r0, 0x29, 0x49, &(0x7f0000000040)='!\x00', 0x1ff)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
socket(0x1e, 0x6, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9)
syz_clone3(&(0x7f0000000280)={0x38004800, 0x0, 0x0, 0x0, {0x4}, 0x0, 0x0, &(0x7f0000000200)=""/25, 0x0}, 0x58)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/dynamic_debug/control\x00', 0x482, 0x0)
writev$auto(r3, &(0x7f0000000240)={&(0x7f0000000180), 0x9}, 0xb)
setsockopt$auto(0xffffffffffffffff, 0x9, 0x69ce, &(0x7f0000000040)='(%}[\x00', 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400108, 0xdf, 0x210, r1, 0x8002)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0)
r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/security/tomoyo/profile\x00', 0x48802, 0x0)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x22081, 0x0)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$auto(r4, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0x70)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0x2, 0x8000)

3.146446621s ago: executing program 4 (id=6950):
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec2\x00', 0x101000, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f00000000c0)={"58f99464", 0x8, 0x6, 0x1, 0x3, 0x5, "4bb69ec4b3f4c14539898e4c5682f5", "347f00", "a630df9d", "a0ed9959", ["cd9196b8fe1a8a7eb90401a9", "2f9c30017721de33c560b95a", "d3fe6c55a78d6932211c9b69", "ea334f1f1e5e27a1320d6edb"]})
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x848000000015, 0x805, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@can, 0x18)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000048c0)='/dev/dsp1\x00', 0x20000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
ioctl$auto_SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000180)="6da6b940dfe114cacac8b7cca871a393aaf922f69708e077a3ff54d760f973198c7f36202c9afdaf7bc2eb57e0")
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = socket(0xa, 0x801, 0x100)
getsockopt$auto(r2, 0x40000000029, 0x5, 0xfffffffffffffffe, 0x0)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x300, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4c894}, 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), r3)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r6=>0x0})
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r3, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000000)={0x28, r4, 0x1, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_TX={0x8, 0x9, 0x10}, @ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}]}, 0x28}}, 0x80000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000)
ioctl$auto(0xc8, 0x400454d4, 0xe)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x9}, 0x3, 0x0)
select$auto(0x4, 0x0, &(0x7f0000000100)={[0x9, 0x7, 0xfffffffffffffff9, 0x9, 0x7ff, 0x3, 0x6, 0x2, 0x9, 0xffff, 0x1ff, 0xd, 0x3, 0x200000201, 0x7, 0x6]}, 0x0, 0x0)

2.264839905s ago: executing program 4 (id=6951):
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/003/001\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x100, 0x0)
r0 = epoll_create$auto(0x8)
epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x401, 0xfffffffffffffffd, 0xd4, 0x4, 0x28c, 0x0, 0x3, 0x368e, 0x9, {0xfffffffe, 0x10000}, 0x5, 0x6, 0xfffffffffff7fffd, 0x1007ffd, 0x0, 0xfe, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x20282, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x84280, 0x0)
io_uring_setup$auto(0x3, &(0x7f00000000c0)={0x5, 0xd2cf6a, 0x7fff0, 0x5, 0x3, 0x7, r1, [0x10, 0x9, 0xfffffc00], {0x901, 0x3, 0x9, 0xc, 0x600, 0x3, 0x48a9, 0x5, 0x1}, {0x9, 0x7, 0x0, 0x6, 0x5, 0x9, 0x5, 0x7, 0xfc}})
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fffe000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x48a22, 0x0)
write$auto(r3, 0x0, 0x3)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r4, 0x4c03, 0xfffffffffffffffd)
bind$auto(0x3, 0x0, 0x6a)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4, @multicast2}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
close_range$auto(0x2, 0x8, 0x0)

1.381509319s ago: executing program 4 (id=6952):
socket(0x28, 0x801, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000980), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'dummy0\x00', <r2=>0x0})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000500)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000ffdbdf251a0000000c00018008000100", @ANYRES32=r2], 0x20}}, 0x40000)

1.288116382s ago: executing program 5 (id=6953):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = ioctl$auto_SIOCGIFHWADDR2(0xffffffffffffffff, 0x8927, &(0x7f0000000280)="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")
ioctl$auto_SNDCTL_TMR_START(r2, 0x5402, &(0x7f0000000080)="832b076b4f13d47b927e3142")
writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x80201, 0x0)

1.105455095s ago: executing program 2 (id=6954):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000003c0), r0)
sendmsg$auto_ETHTOOL_MSG_PLCA_GET_CFG(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000000)={0x2c, r1, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@ETHTOOL_A_PLCA_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}]}]}, 0x2c}, 0x1, 0xf00000000000000, 0x0, 0x885}, 0x40)

1.049003947s ago: executing program 4 (id=6955):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x30, r1, 0x1b, 0x70bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x4}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)

761.975188ms ago: executing program 2 (id=6956):
mmap$auto(0x0, 0x2020005, 0x6, 0xeb2, 0xfffffffffffffffb, 0x8000)
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
pidfd_open$auto(0x1, 0x0)
socket(0x2, 0x3, 0x100)
bpf$auto(0x2, &(0x7f00000001c0)=@batch={0x8000000000009, 0x80000001, 0x10008, 0x8250, 0xa6d5, 0xffffffffffffffff, 0x2d5c, 0x6}, 0x103)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy1/netdev:wlan1/rc_rateidx_mcs_mask_2ghz\x00', 0x88000, 0x0)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x8000)
r0 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000011c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

744.343531ms ago: executing program 4 (id=6957):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto_SO_ATTACH_REUSEPORT_CBPF(r0, 0x1, 0x33, &(0x7f0000000000)='o\x00\xfb\x00\x00\x00\xe4(\xe5\xb9Y\xacS\xbe\xcc4\xf9!\xd0\x92<\x9bf\x01j\x83\xb3\xd7a.\x92\xf5\xb0j\xd3\x01\xfe:\x93\xed\xe4\x16\a\xcemS\xeb\x13D\b\xdb\x0f\x9f\x903\xad?\x17\xddF2\x7f\x15~\x94\x1d\x1c\x83\x03\xb9K\x04\xd3\x99\xe6[\xf8\xddn`\xdb\x19\xa9R\xc2\x00\x8a\xc7>\xfbC\x9e\xcfY\xaa\xc9\x98_\x84\xc14o\xd9\x97\xf9\xb6\x80\xc0Tf\xea\x82\x8f\x82^\xf7\x01\x894?\xf7\xb8\"\x9dd/\x15\xf5\x013\x84\xe8\xdev\x8eW\xfaym\x8a_\x0e\xc5\xde\x90\xc4$\xbb\xaa\x839]\x14m{R,i\x80\xecM.\xa9\'<\xd6\xc8\xd6\xc4\x1b\xd2\xd6\x193<\".\x85\xea\xb7\x9d\xa3r\xca\xeeP\xdeu4\xf2s\x9b\x03\xbex.\x17\xf2\xa4\xba\x9a$\x1f.e\v3.\xd1{}\x94\xd9\xc4\xf1\xa9\x9aK\xbc?0x\xa1G\xf5\xd3K\xf7\xa25=\x9f+\x1d\xe7\x00', 0x3)

0s ago: executing program 3 (id=6958):
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x83}, 0xc3d, 0x10000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0xa, 0x1, 0x100)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_GETISPACE(r2, 0x8010500d, &(0x7f0000000040))
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f00000003c0))
syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x6, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000002)
openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r3 = getpgid(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
rt_tgsigqueueinfo$auto(0xffffffffffffffff, r3, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xe, 0x5, @_sigchld={r3, 0x0, 0x401, 0x5, 0x3}}})
mmap$auto(0x4, 0x2000d, 0x4080000200df, 0xeb1, 0x404, 0x8000)
r4 = socket(0x25, 0xa, 0x2)
getsockopt$auto(r4, 0x107, 0xc, 0x0, 0x0)
syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r0)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', &(0x7f0000000000)=&(0x7f0000000200)=' ')
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x604000, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x1000)

kernel console output (not intermixed with test programs):







	
		

	


	
	

		
	
		
	
	

	



			








	





	





	






	



	

	
	





	


	




	






	






	







		









	

	

	
		

	


	
	

		
	
		
	
	

	



			








	





	





	






	



	

	
	







	






	






	






	







		








	

	
		

	
		

	


		

		
	
	

	
		
	

	
		
		
	
	

	



			








	







	
	


	












	




	






		













	

		
	

	
		
			
	

	
		






	

	
		

	


	
	

		
	
		
	
	

	



			








	

	



























	


	



	


	




	
		

	
	
			

	
			

	
		

	




	

	




	

		











	

	
	
















	




	





		







	

	
	

	
		

	


		

		
	
		
	
	

	



			








	







	

















	






	




	





		










		

		

	
		

	


	
	

		
	
		
	
	

	



			








	





	






















	
	

	










	
	







	






	
	


























	




	





		







	




	
				
	

	
		




	

	
		

		

		
		
	

	
	

	
	

	
	

	
	
	
	

	
		
	
	
	
	
	

	
		
	

	
	

	
		

[ 1651.292966][T26836] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1651.589294][T26836] netlink: zone id is out of range
[ 1651.657749][T26836] netlink: zone id is out of range
[ 1651.801571][T26836] netlink: set zone limit has 8 unknown bytes
[ 1651.854052][T26843] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22

syzkaller
syzkaller login: [ 1653.178941][T26857] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input71
[ 1653.665643][T26863] FAULT_INJECTION: forcing a failure.
[ 1653.665643][T26863] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1653.814078][T26863] CPU: 0 UID: 0 PID: 26863 Comm: syz.2.6430 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1653.814136][T26863] Tainted: [U]=USER
[ 1653.814148][T26863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1653.814166][T26863] Call Trace:
[ 1653.814178][T26863]  <TASK>
[ 1653.814191][T26863]  dump_stack_lvl+0x16c/0x1f0
[ 1653.814246][T26863]  should_fail_ex+0x512/0x640
[ 1653.814298][T26863]  _copy_from_user+0x2e/0xd0
[ 1653.814353][T26863]  copy_msghdr_from_user+0x98/0x160
[ 1653.814405][T26863]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1653.814464][T26863]  ? __pfx__kstrtoull+0x10/0x10
[ 1653.814510][T26863]  ___sys_sendmsg+0xfe/0x1d0
[ 1653.814564][T26863]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1653.814632][T26863]  ? find_held_lock+0x2b/0x80
[ 1653.814692][T26863]  __sys_sendmmsg+0x200/0x420
[ 1653.814749][T26863]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1653.814815][T26863]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1653.814884][T26863]  ? fput+0x70/0xf0
[ 1653.814915][T26863]  ? ksys_write+0x1ac/0x250
[ 1653.814962][T26863]  ? __pfx_ksys_write+0x10/0x10
[ 1653.815024][T26863]  __x64_sys_sendmmsg+0x9c/0x100
[ 1653.815075][T26863]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1653.815127][T26863]  do_syscall_64+0xcd/0x490
[ 1653.815182][T26863]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1653.815216][T26863] RIP: 0033:0x7fbf8dd8e929
[ 1653.815242][T26863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1653.815275][T26863] RSP: 002b:00007fbf8ec3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1653.815305][T26863] RAX: ffffffffffffffda RBX: 00007fbf8dfb6080 RCX: 00007fbf8dd8e929
[ 1653.815327][T26863] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[ 1653.815358][T26863] RBP: 00007fbf8ec3e090 R08: 0000000000000000 R09: 0000000000000000
[ 1653.815388][T26863] R10: 0000000007fffffe R11: 0000000000000246 R12: 0000000000000001
[ 1653.815406][T26863] R13: 0000000000000000 R14: 00007fbf8dfb6080 R15: 00007ffd77881ce8
[ 1653.815444][T26863]  </TASK>
[ 1655.739552][T26882] FAULT_INJECTION: forcing a failure.
[ 1655.739552][T26882] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1655.753069][T26882] CPU: 1 UID: 0 PID: 26882 Comm: syz.4.6434 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1655.753120][T26882] Tainted: [U]=USER
[ 1655.753131][T26882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1655.753149][T26882] Call Trace:
[ 1655.753161][T26882]  <TASK>
[ 1655.753173][T26882]  dump_stack_lvl+0x16c/0x1f0
[ 1655.753227][T26882]  should_fail_ex+0x512/0x640
[ 1655.753280][T26882]  _copy_from_user+0x2e/0xd0
[ 1655.753332][T26882]  copy_msghdr_from_user+0x98/0x160
[ 1655.753382][T26882]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1655.753441][T26882]  ? kfree+0x24f/0x4d0
[ 1655.753479][T26882]  ? __lock_acquire+0x622/0x1c90
[ 1655.753529][T26882]  ___sys_recvmsg+0xdb/0x1a0
[ 1655.753580][T26882]  ? __pfx____sys_recvmsg+0x10/0x10
[ 1655.753654][T26882]  ? __pfx___might_resched+0x10/0x10
[ 1655.753697][T26882]  do_recvmmsg+0x2fe/0x750
[ 1655.753761][T26882]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1655.753822][T26882]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1655.753888][T26882]  ? __fget_files+0x20e/0x3c0
[ 1655.753943][T26882]  __x64_sys_recvmmsg+0x22a/0x280
[ 1655.753995][T26882]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1655.754061][T26882]  do_syscall_64+0xcd/0x490
[ 1655.754116][T26882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1655.754154][T26882] RIP: 0033:0x7f4a3058e929
[ 1655.754180][T26882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1655.754213][T26882] RSP: 002b:00007f4a31383038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1655.754242][T26882] RAX: ffffffffffffffda RBX: 00007f4a307b5fa0 RCX: 00007f4a3058e929
[ 1655.754264][T26882] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1655.754282][T26882] RBP: 00007f4a31383090 R08: 0000000000000000 R09: 0000000000000000
[ 1655.754302][T26882] R10: 000000000000071f R11: 0000000000000246 R12: 0000000000000002
[ 1655.754321][T26882] R13: 0000000000000000 R14: 00007f4a307b5fa0 R15: 00007fff95f12688
[ 1655.754362][T26882]  </TASK>
[ 1655.961344][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1657.239722][T26888] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1657.461733][T26894] HfR: entered promiscuous mode
[ 1657.515451][T26898] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6438'.
[ 1657.595003][T26888] netlink: zone id is out of range
[ 1657.641467][T26888] netlink: zone id is out of range
[ 1657.653930][T26898] HfR: left promiscuous mode
[ 1657.707800][T26894] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6438'.
[ 1658.114914][T26888] netlink: set zone limit has 8 unknown bytes
[ 1659.432300][T26912] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6445'.
[ 1662.367111][T26951] HfR: entered promiscuous mode
[ 1662.425871][T26951] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6451'.
[ 1662.502265][T26951] HfR: left promiscuous mode
[ 1662.614335][T26955] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6451'.
[ 1666.024489][T26968] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1667.087032][T26977] dyndbg: bad flag-op , at start of T�{9hb�
[ 1667.260545][T26977] dyndbg: flags parse failed
[ 1669.040050][T27001] FAULT_INJECTION: forcing a failure.
[ 1669.040050][T27001] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1669.081920][T27001] CPU: 1 UID: 0 PID: 27001 Comm: syz.4.6463 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1669.081975][T27001] Tainted: [U]=USER
[ 1669.081987][T27001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1669.082007][T27001] Call Trace:
[ 1669.082018][T27001]  <TASK>
[ 1669.082031][T27001]  dump_stack_lvl+0x16c/0x1f0
[ 1669.082086][T27001]  should_fail_ex+0x512/0x640
[ 1669.082138][T27001]  _copy_from_user+0x2e/0xd0
[ 1669.082192][T27001]  snd_rawmidi_kernel_write1+0x50a/0x8a0
[ 1669.082251][T27001]  snd_rawmidi_write+0x26e/0xc10
[ 1669.082312][T27001]  ? __pfx_snd_rawmidi_write+0x10/0x10
[ 1669.082357][T27001]  ? __pfx_default_wake_function+0x10/0x10
[ 1669.082399][T27001]  ? bpf_lsm_file_permission+0x9/0x10
[ 1669.082434][T27001]  ? security_file_permission+0x71/0x210
[ 1669.082478][T27001]  ? rw_verify_area+0xcf/0x680
[ 1669.082521][T27001]  ? __pfx_snd_rawmidi_write+0x10/0x10
[ 1669.082560][T27001]  vfs_write+0x29d/0x1150
[ 1669.082615][T27001]  ? __pfx_vfs_write+0x10/0x10
[ 1669.082658][T27001]  ? find_held_lock+0x2b/0x80
[ 1669.082691][T27001]  ? __fget_files+0x204/0x3c0
[ 1669.082740][T27001]  ? __fget_files+0x20e/0x3c0
[ 1669.082794][T27001]  ksys_write+0x1f8/0x250
[ 1669.082840][T27001]  ? __pfx_ksys_write+0x10/0x10
[ 1669.082898][T27001]  do_syscall_64+0xcd/0x490
[ 1669.082953][T27001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1669.082987][T27001] RIP: 0033:0x7f4a3058e929
[ 1669.083015][T27001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1669.083050][T27001] RSP: 002b:00007f4a31383038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1669.083089][T27001] RAX: ffffffffffffffda RBX: 00007f4a307b5fa0 RCX: 00007f4a3058e929
[ 1669.083111][T27001] RDX: 000000100000a3d9 RSI: 0000200000000400 RDI: 0000000000000006
[ 1669.083133][T27001] RBP: 00007f4a30610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1669.083153][T27001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1669.083173][T27001] R13: 0000000000000000 R14: 00007f4a307b5fa0 R15: 00007fff95f12688
[ 1669.083213][T27001]  </TASK>
[ 1669.300971][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1673.908185][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1673.914691][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1674.789488][T27038] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1680.464877][T27112] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1681.823305][T27121] random: crng reseeded on system resumption
[ 1683.903356][T27141] FAULT_INJECTION: forcing a failure.
[ 1683.903356][T27141] name failslab, interval 1, probability 0, space 0, times 0
[ 1683.995311][T27141] CPU: 0 UID: 0 PID: 27141 Comm: syz.4.6501 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1683.995395][T27141] Tainted: [U]=USER
[ 1683.995406][T27141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1683.995425][T27141] Call Trace:
[ 1683.995436][T27141]  <TASK>
[ 1683.995449][T27141]  dump_stack_lvl+0x16c/0x1f0
[ 1683.995503][T27141]  should_fail_ex+0x512/0x640
[ 1683.995549][T27141]  ? __kmalloc_noprof+0xbf/0x510
[ 1683.995597][T27141]  ? lsm_blob_alloc+0x68/0x90
[ 1683.995641][T27141]  should_failslab+0xc2/0x120
[ 1683.995671][T27141]  __kmalloc_noprof+0xd2/0x510
[ 1683.995726][T27141]  lsm_blob_alloc+0x68/0x90
[ 1683.995773][T27141]  security_sk_alloc+0x30/0x270
[ 1683.995806][T27141]  sk_prot_alloc+0xfb/0x2a0
[ 1683.995844][T27141]  sk_alloc+0x36/0xc20
[ 1683.995889][T27141]  inet_create+0x3a1/0x1090
[ 1683.995939][T27141]  ? inet_create+0x93/0x1090
[ 1683.995989][T27141]  __sock_create+0x338/0x8d0
[ 1683.996034][T27141]  inet_ctl_sock_create+0x94/0x230
[ 1683.996077][T27141]  ? __pfx_inet_ctl_sock_create+0x10/0x10
[ 1683.996120][T27141]  ? lockdep_init_map_type+0x5c/0x280
[ 1683.996164][T27141]  ? lockdep_init_map_type+0x5c/0x280
[ 1683.996209][T27141]  ? __pfx_igmp_net_init+0x10/0x10
[ 1683.996254][T27141]  igmp_net_init+0xd0/0x1a0
[ 1683.996298][T27141]  ops_init+0x1df/0x5f0
[ 1683.996336][T27141]  setup_net+0x1ff/0x510
[ 1683.996362][T27141]  ? lockdep_init_map_type+0x5c/0x280
[ 1683.996410][T27141]  ? __pfx_setup_net+0x10/0x10
[ 1683.996443][T27141]  ? debug_mutex_init+0x37/0x70
[ 1683.996477][T27141]  copy_net_ns+0x2a6/0x5f0
[ 1683.996513][T27141]  create_new_namespaces+0x3ea/0xa90
[ 1683.996557][T27141]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1683.996596][T27141]  ksys_unshare+0x45b/0xa40
[ 1683.996635][T27141]  ? __pfx_ksys_unshare+0x10/0x10
[ 1683.996675][T27141]  ? xfd_validate_state+0x61/0x180
[ 1683.996727][T27141]  __x64_sys_unshare+0x31/0x40
[ 1683.996764][T27141]  do_syscall_64+0xcd/0x490
[ 1683.996816][T27141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1683.996847][T27141] RIP: 0033:0x7f4a3058e929
[ 1683.996873][T27141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1683.996913][T27141] RSP: 002b:00007f4a31383038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1683.996945][T27141] RAX: ffffffffffffffda RBX: 00007f4a307b5fa0 RCX: 00007f4a3058e929
[ 1683.996966][T27141] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1683.996985][T27141] RBP: 00007f4a30610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1683.997004][T27141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1683.997022][T27141] R13: 0000000000000000 R14: 00007f4a307b5fa0 R15: 00007fff95f12688
[ 1683.997062][T27141]  </TASK>
[ 1683.998955][T27141] Failed to initialize the IGMP autojoin socket (err -12)
[ 1687.462612][T27178] zswap: compressor 4 not available
[ 1687.571467][T27179] zswap: compressor not required not available
[ 1687.793931][T27194] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6516'.
[ 1688.477926][T27202] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input72
[ 1689.168497][T27211] ptrace attach of ""[27213] was attempted by "./syz-executor exec"[27211]
[ 1689.454301][T27217] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1689.706594][T27219] FAULT_INJECTION: forcing a failure.
[ 1689.706594][T27219] name failslab, interval 1, probability 0, space 0, times 0
[ 1689.762068][T27219] CPU: 1 UID: 0 PID: 27219 Comm: syz.5.6524 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1689.762127][T27219] Tainted: [U]=USER
[ 1689.762139][T27219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1689.762159][T27219] Call Trace:
[ 1689.762172][T27219]  <TASK>
[ 1689.762186][T27219]  dump_stack_lvl+0x16c/0x1f0
[ 1689.762245][T27219]  should_fail_ex+0x512/0x640
[ 1689.762294][T27219]  ? fs_reclaim_acquire+0xae/0x150
[ 1689.762339][T27219]  should_failslab+0xc2/0x120
[ 1689.762373][T27219]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1689.762438][T27219]  ? security_inode_alloc+0x3b/0x2b0
[ 1689.762481][T27219]  security_inode_alloc+0x3b/0x2b0
[ 1689.762520][T27219]  inode_init_always_gfp+0xce4/0x1030
[ 1689.762587][T27219]  alloc_inode+0x86/0x240
[ 1689.762620][T27219]  sock_alloc+0x40/0x280
[ 1689.762653][T27219]  __sock_create+0xc1/0x8d0
[ 1689.762711][T27219]  ? proc_create_reg+0xe3/0x180
[ 1689.762746][T27219]  inet_ctl_sock_create+0x94/0x230
[ 1689.762794][T27219]  ? __pfx_inet_ctl_sock_create+0x10/0x10
[ 1689.762840][T27219]  ? lockdep_init_map_type+0x5c/0x280
[ 1689.762891][T27219]  ? lockdep_init_map_type+0x5c/0x280
[ 1689.762940][T27219]  ? __pfx_igmp_net_init+0x10/0x10
[ 1689.762991][T27219]  igmp_net_init+0xd0/0x1a0
[ 1689.763043][T27219]  ops_init+0x1df/0x5f0
[ 1689.763083][T27219]  setup_net+0x1ff/0x510
[ 1689.763112][T27219]  ? lockdep_init_map_type+0x5c/0x280
[ 1689.763160][T27219]  ? __pfx_setup_net+0x10/0x10
[ 1689.763195][T27219]  ? debug_mutex_init+0x37/0x70
[ 1689.763233][T27219]  copy_net_ns+0x2a6/0x5f0
[ 1689.763273][T27219]  create_new_namespaces+0x3ea/0xa90
[ 1689.763322][T27219]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1689.763363][T27219]  ksys_unshare+0x45b/0xa40
[ 1689.763416][T27219]  ? __pfx_ksys_unshare+0x10/0x10
[ 1689.763462][T27219]  ? xfd_validate_state+0x61/0x180
[ 1689.763519][T27219]  __x64_sys_unshare+0x31/0x40
[ 1689.763564][T27219]  do_syscall_64+0xcd/0x490
[ 1689.763621][T27219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1689.763657][T27219] RIP: 0033:0x7f8a9178e929
[ 1689.763685][T27219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1689.763720][T27219] RSP: 002b:00007f8a925e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1689.763753][T27219] RAX: ffffffffffffffda RBX: 00007f8a919b5fa0 RCX: 00007f8a9178e929
[ 1689.763776][T27219] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1689.763796][T27219] RBP: 00007f8a91810b39 R08: 0000000000000000 R09: 0000000000000000
[ 1689.763818][T27219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1689.763839][T27219] R13: 0000000000000000 R14: 00007f8a919b5fa0 R15: 00007ffd43669b08
[ 1689.763896][T27219]  </TASK>
[ 1689.770658][T27219] socket: no more sockets
[ 1690.099791][T27219] Failed to initialize the IGMP autojoin socket (err -23)
[ 1693.458329][T27265] FAULT_INJECTION: forcing a failure.
[ 1693.458329][T27265] name failslab, interval 1, probability 0, space 0, times 0
[ 1693.520621][T27265] CPU: 1 UID: 0 PID: 27265 Comm: syz.2.6535 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1693.520675][T27265] Tainted: [U]=USER
[ 1693.520687][T27265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1693.520707][T27265] Call Trace:
[ 1693.520719][T27265]  <TASK>
[ 1693.520732][T27265]  dump_stack_lvl+0x16c/0x1f0
[ 1693.520798][T27265]  should_fail_ex+0x512/0x640
[ 1693.520843][T27265]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1693.520895][T27265]  should_failslab+0xc2/0x120
[ 1693.520925][T27265]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1693.520972][T27265]  ? __proc_create+0xc3/0x8c0
[ 1693.521023][T27265]  ? __proc_create+0x2ce/0x8c0
[ 1693.521097][T27265]  __proc_create+0x2ce/0x8c0
[ 1693.521149][T27265]  ? __pfx___proc_create+0x10/0x10
[ 1693.521217][T27265]  ? _raw_write_unlock+0x28/0x50
[ 1693.521262][T27265]  ? proc_register+0x314/0x5f0
[ 1693.521315][T27265]  proc_create_reg+0x7d/0x180
[ 1693.521348][T27265]  proc_create_net_data+0x8e/0x1b0
[ 1693.521406][T27265]  ? __pfx_proc_create_net_data+0x10/0x10
[ 1693.521458][T27265]  ? lockdep_init_map_type+0x5c/0x280
[ 1693.521505][T27265]  ? lockdep_init_map_type+0x5c/0x280
[ 1693.521551][T27265]  ? __pfx_igmp_net_init+0x10/0x10
[ 1693.521599][T27265]  igmp_net_init+0xab/0x1a0
[ 1693.521646][T27265]  ops_init+0x1df/0x5f0
[ 1693.521680][T27265]  setup_net+0x1ff/0x510
[ 1693.521708][T27265]  ? lockdep_init_map_type+0x5c/0x280
[ 1693.521750][T27265]  ? __pfx_setup_net+0x10/0x10
[ 1693.521783][T27265]  ? debug_mutex_init+0x37/0x70
[ 1693.521818][T27265]  copy_net_ns+0x2a6/0x5f0
[ 1693.521854][T27265]  create_new_namespaces+0x3ea/0xa90
[ 1693.521899][T27265]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1693.521938][T27265]  ksys_unshare+0x45b/0xa40
[ 1693.521980][T27265]  ? __pfx_ksys_unshare+0x10/0x10
[ 1693.522021][T27265]  ? xfd_validate_state+0x61/0x180
[ 1693.522073][T27265]  __x64_sys_unshare+0x31/0x40
[ 1693.522114][T27265]  do_syscall_64+0xcd/0x490
[ 1693.522166][T27265]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1693.522200][T27265] RIP: 0033:0x7fbf8dd8e929
[ 1693.522226][T27265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1693.522258][T27265] RSP: 002b:00007fbf8ec5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1693.522288][T27265] RAX: ffffffffffffffda RBX: 00007fbf8dfb5fa0 RCX: 00007fbf8dd8e929
[ 1693.522309][T27265] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1693.522328][T27265] RBP: 00007fbf8de10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1693.522346][T27265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1693.522378][T27265] R13: 0000000000000000 R14: 00007fbf8dfb5fa0 R15: 00007ffd77881ce8
[ 1693.522421][T27265]  </TASK>
[ 1694.465730][T27268] ptrace attach of ""[27269] was attempted by "./syz-executor exec"[27268]
[ 1694.621376][T27270] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1696.873514][T27296] openvswitch: netlink: Duplicate key (type 15).
[ 1702.095495][T27367] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1702.304483][T27367] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1707.322444][T27424] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6576'.
[ 1707.724596][T27431] snd_aloop snd_aloop.0: control 16781581:65533:6:�'x?F���/��zF˷fC���:0 is already present
[ 1713.302764][T24109] Bluetooth: hci0: Malformed HCI Event
[ 1717.206645][T27526] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6600'.
[ 1718.026656][T27533] FAULT_INJECTION: forcing a failure.
[ 1718.026656][T27533] name failslab, interval 1, probability 0, space 0, times 0
[ 1718.107192][T27533] CPU: 1 UID: 0 PID: 27533 Comm: syz.3.6601 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1718.107245][T27533] Tainted: [U]=USER
[ 1718.107255][T27533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1718.107273][T27533] Call Trace:
[ 1718.107285][T27533]  <TASK>
[ 1718.107298][T27533]  dump_stack_lvl+0x16c/0x1f0
[ 1718.107354][T27533]  should_fail_ex+0x512/0x640
[ 1718.107401][T27533]  ? __kmalloc_noprof+0xbf/0x510
[ 1718.107453][T27533]  ? lsm_blob_alloc+0x68/0x90
[ 1718.107500][T27533]  should_failslab+0xc2/0x120
[ 1718.107531][T27533]  __kmalloc_noprof+0xd2/0x510
[ 1718.107588][T27533]  lsm_blob_alloc+0x68/0x90
[ 1718.107639][T27533]  security_sk_alloc+0x30/0x270
[ 1718.107674][T27533]  sk_prot_alloc+0x1c7/0x2a0
[ 1718.107713][T27533]  sk_alloc+0x36/0xc20
[ 1718.107760][T27533]  __netlink_create+0x5e/0x2c0
[ 1718.107808][T27533]  ? __wake_up+0x3f/0x60
[ 1718.107845][T27533]  netlink_create+0x39e/0x620
[ 1718.107896][T27533]  ? __pfx_genl_bind+0x10/0x10
[ 1718.107931][T27533]  ? __pfx_genl_unbind+0x10/0x10
[ 1718.107965][T27533]  ? __pfx_genl_release+0x10/0x10
[ 1718.108009][T27533]  __sock_create+0x338/0x8d0
[ 1718.108055][T27533]  __sys_socket+0x14d/0x260
[ 1718.108095][T27533]  ? __pfx___sys_socket+0x10/0x10
[ 1718.108154][T27533]  ? xfd_validate_state+0x61/0x180
[ 1718.108194][T27533]  ? __pfx___do_sys_close_range+0x10/0x10
[ 1718.108260][T27533]  __x64_sys_socket+0x72/0xb0
[ 1718.108296][T27533]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1718.108362][T27533]  do_syscall_64+0xcd/0x490
[ 1718.108427][T27533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1718.108459][T27533] RIP: 0033:0x7fe8dff8e929
[ 1718.108484][T27533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1718.108515][T27533] RSP: 002b:00007fe8dddf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1718.108545][T27533] RAX: ffffffffffffffda RBX: 00007fe8e01b5fa0 RCX: 00007fe8dff8e929
[ 1718.108565][T27533] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[ 1718.108585][T27533] RBP: 00007fe8e0010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1718.108604][T27533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1718.108622][T27533] R13: 0000000000000000 R14: 00007fe8e01b5fa0 R15: 00007ffcdcf461a8
[ 1718.108660][T27533]  </TASK>
[ 1720.919587][T27566] FAULT_INJECTION: forcing a failure.
[ 1720.919587][T27566] name failslab, interval 1, probability 0, space 0, times 0
[ 1720.972103][T27566] CPU: 0 UID: 0 PID: 27566 Comm: syz.5.6613 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1720.972154][T27566] Tainted: [U]=USER
[ 1720.972165][T27566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1720.972184][T27566] Call Trace:
[ 1720.972194][T27566]  <TASK>
[ 1720.972207][T27566]  dump_stack_lvl+0x16c/0x1f0
[ 1720.972260][T27566]  should_fail_ex+0x512/0x640
[ 1720.972304][T27566]  ? fs_reclaim_acquire+0xae/0x150
[ 1720.972343][T27566]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1720.972387][T27566]  should_failslab+0xc2/0x120
[ 1720.972418][T27566]  __kmalloc_noprof+0xd2/0x510
[ 1720.972471][T27566]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1720.972530][T27566]  ? tomoyo_profile+0x47/0x60
[ 1720.972580][T27566]  tomoyo_path_number_perm+0x245/0x580
[ 1720.972612][T27566]  ? tomoyo_path_number_perm+0x237/0x580
[ 1720.972660][T27566]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1720.972697][T27566]  ? find_held_lock+0x2b/0x80
[ 1720.972759][T27566]  ? find_held_lock+0x2b/0x80
[ 1720.972787][T27566]  ? hook_file_ioctl_common+0x145/0x410
[ 1720.972828][T27566]  ? __fget_files+0x20e/0x3c0
[ 1720.972875][T27566]  security_file_ioctl+0x9b/0x240
[ 1720.972913][T27566]  __x64_sys_ioctl+0xb7/0x210
[ 1720.972952][T27566]  do_syscall_64+0xcd/0x490
[ 1720.973002][T27566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1720.973033][T27566] RIP: 0033:0x7f8a9178e929
[ 1720.973056][T27566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1720.973083][T27566] RSP: 002b:00007f8a925e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1720.973111][T27566] RAX: ffffffffffffffda RBX: 00007f8a919b5fa0 RCX: 00007f8a9178e929
[ 1720.973131][T27566] RDX: 0000000000000007 RSI: 0000000000004b65 RDI: 0000000000000003
[ 1720.973150][T27566] RBP: 00007f8a925e4090 R08: 0000000000000000 R09: 0000000000000000
[ 1720.973168][T27566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1720.973187][T27566] R13: 0000000000000000 R14: 00007f8a919b5fa0 R15: 00007ffd43669b08
[ 1720.973225][T27566]  </TASK>
[ 1720.974759][T27566] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1726.616741][T27632] FAULT_INJECTION: forcing a failure.
[ 1726.616741][T27632] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1726.668751][T27632] CPU: 0 UID: 0 PID: 27632 Comm: syz.4.6631 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1726.668805][T27632] Tainted: [U]=USER
[ 1726.668815][T27632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1726.668834][T27632] Call Trace:
[ 1726.668845][T27632]  <TASK>
[ 1726.668858][T27632]  dump_stack_lvl+0x16c/0x1f0
[ 1726.668912][T27632]  should_fail_ex+0x512/0x640
[ 1726.668961][T27632]  _copy_from_user+0x2e/0xd0
[ 1726.669010][T27632]  move_addr_to_kernel+0x65/0x170
[ 1726.669058][T27632]  __sys_connect+0xb1/0x160
[ 1726.669100][T27632]  ? __pfx___sys_connect+0x10/0x10
[ 1726.669156][T27632]  ? xfd_validate_state+0x61/0x180
[ 1726.669208][T27632]  __x64_sys_connect+0x72/0xb0
[ 1726.669249][T27632]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1726.669300][T27632]  do_syscall_64+0xcd/0x490
[ 1726.669356][T27632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1726.669390][T27632] RIP: 0033:0x7f4a3058e929
[ 1726.669419][T27632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1726.669452][T27632] RSP: 002b:00007f4a31383038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1726.669484][T27632] RAX: ffffffffffffffda RBX: 00007f4a307b5fa0 RCX: 00007f4a3058e929
[ 1726.669506][T27632] RDX: 000000000000000a RSI: 0000000000000000 RDI: 0000000000000004
[ 1726.669527][T27632] RBP: 00007f4a30610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1726.669547][T27632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1726.669567][T27632] R13: 0000000000000000 R14: 00007f4a307b5fa0 R15: 00007fff95f12688
[ 1726.669609][T27632]  </TASK>
[ 1727.047898][T27639] FAULT_INJECTION: forcing a failure.
[ 1727.047898][T27639] name failslab, interval 1, probability 0, space 0, times 0
[ 1727.088102][T27639] CPU: 1 UID: 0 PID: 27639 Comm: syz.2.6632 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1727.088157][T27639] Tainted: [U]=USER
[ 1727.088167][T27639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1727.088186][T27639] Call Trace:
[ 1727.088197][T27639]  <TASK>
[ 1727.088210][T27639]  dump_stack_lvl+0x16c/0x1f0
[ 1727.088269][T27639]  should_fail_ex+0x512/0x640
[ 1727.088323][T27639]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1727.088372][T27639]  should_failslab+0xc2/0x120
[ 1727.088399][T27639]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1727.088443][T27639]  ? getname_flags.part.0+0x4c/0x550
[ 1727.088480][T27639]  getname_flags.part.0+0x4c/0x550
[ 1727.088517][T27639]  getname_flags+0x93/0xf0
[ 1727.088555][T27639]  do_sys_openat2+0xb8/0x1d0
[ 1727.088586][T27639]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1727.088621][T27639]  ? find_held_lock+0x2b/0x80
[ 1727.088657][T27639]  __x64_sys_openat+0x174/0x210
[ 1727.088708][T27639]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1727.088759][T27639]  do_syscall_64+0xcd/0x490
[ 1727.088811][T27639]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1727.088841][T27639] RIP: 0033:0x7fbf8dd8e929
[ 1727.088867][T27639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1727.088899][T27639] RSP: 002b:00007fbf8ec5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1727.088929][T27639] RAX: ffffffffffffffda RBX: 00007fbf8dfb5fa0 RCX: 00007fbf8dd8e929
[ 1727.088950][T27639] RDX: 0000000000000802 RSI: 0000000000000000 RDI: ffffffffffffff9c
[ 1727.088969][T27639] RBP: 00007fbf8de10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1727.088987][T27639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1727.089006][T27639] R13: 0000000000000000 R14: 00007fbf8dfb5fa0 R15: 00007ffd77881ce8
[ 1727.089045][T27639]  </TASK>
[ 1727.530844][T27632] could not allocate digest TFM handle binfmt_misc
[ 1728.494907][T27650] netlink: 334 bytes leftover after parsing attributes in process `syz.2.6636'.
[ 1729.008299][T27655] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input73
[ 1730.168462][T27690] netlink: 334 bytes leftover after parsing attributes in process `syz.3.6647'.
[ 1732.629541][T27720] FAULT_INJECTION: forcing a failure.
[ 1732.629541][T27720] name failslab, interval 1, probability 0, space 0, times 0
[ 1732.679355][T27720] CPU: 0 UID: 0 PID: 27720 Comm: syz.2.6653 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1732.679403][T27720] Tainted: [U]=USER
[ 1732.679412][T27720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1732.679427][T27720] Call Trace:
[ 1732.679437][T27720]  <TASK>
[ 1732.679460][T27720]  dump_stack_lvl+0x16c/0x1f0
[ 1732.679511][T27720]  should_fail_ex+0x512/0x640
[ 1732.679551][T27720]  ? __kvmalloc_node_noprof+0x124/0x620
[ 1732.679595][T27720]  should_failslab+0xc2/0x120
[ 1732.679622][T27720]  __kvmalloc_node_noprof+0x137/0x620
[ 1732.679664][T27720]  ? seq_read_iter+0x826/0x12c0
[ 1732.679704][T27720]  ? seq_read_iter+0x826/0x12c0
[ 1732.679755][T27720]  seq_read_iter+0x826/0x12c0
[ 1732.679796][T27720]  ? aa_file_perm+0x4d6/0xfb0
[ 1732.679849][T27720]  seq_read+0x39e/0x4e0
[ 1732.679887][T27720]  ? __pfx_seq_read+0x10/0x10
[ 1732.679921][T27720]  ? __lock_acquire+0xb8a/0x1c90
[ 1732.679970][T27720]  ? get_pid_task+0xfc/0x250
[ 1732.680031][T27720]  full_proxy_read+0x13c/0x200
[ 1732.680060][T27720]  ? __pfx_full_proxy_read+0x10/0x10
[ 1732.680093][T27720]  vfs_read+0x1e4/0xc60
[ 1732.680141][T27720]  ? __pfx___mutex_lock+0x10/0x10
[ 1732.680189][T27720]  ? __pfx_vfs_read+0x10/0x10
[ 1732.680244][T27720]  ? __fget_files+0x20e/0x3c0
[ 1732.680298][T27720]  ksys_read+0x12a/0x250
[ 1732.680340][T27720]  ? __pfx_ksys_read+0x10/0x10
[ 1732.680395][T27720]  do_syscall_64+0xcd/0x490
[ 1732.680445][T27720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1732.680491][T27720] RIP: 0033:0x7fbf8dd8e929
[ 1732.680515][T27720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1732.680545][T27720] RSP: 002b:00007fbf8ec5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1732.680571][T27720] RAX: ffffffffffffffda RBX: 00007fbf8dfb5fa0 RCX: 00007fbf8dd8e929
[ 1732.680591][T27720] RDX: 0000000000001000 RSI: 0000200000000080 RDI: 0000000000000003
[ 1732.680609][T27720] RBP: 00007fbf8ec5f090 R08: 0000000000000000 R09: 0000000000000000
[ 1732.680626][T27720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1732.680641][T27720] R13: 0000000000000000 R14: 00007fbf8dfb5fa0 R15: 00007ffd77881ce8
[ 1732.680679][T27720]  </TASK>
[ 1735.006408][T27748] netlink: 334 bytes leftover after parsing attributes in process `syz.5.6659'.
[ 1735.134953][T27745] FAULT_INJECTION: forcing a failure.
[ 1735.134953][T27745] name failslab, interval 1, probability 0, space 0, times 0
[ 1735.201985][T27745] CPU: 1 UID: 0 PID: 27745 Comm: syz.2.6660 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1735.202036][T27745] Tainted: [U]=USER
[ 1735.202046][T27745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1735.202064][T27745] Call Trace:
[ 1735.202074][T27745]  <TASK>
[ 1735.202085][T27745]  dump_stack_lvl+0x16c/0x1f0
[ 1735.202138][T27745]  should_fail_ex+0x512/0x640
[ 1735.202178][T27745]  ? __kmalloc_noprof+0xbf/0x510
[ 1735.202222][T27745]  ? rsassa_pkcs1_verify+0x27e/0xb60
[ 1735.202257][T27745]  should_failslab+0xc2/0x120
[ 1735.202283][T27745]  __kmalloc_noprof+0xd2/0x510
[ 1735.202328][T27745]  ? mpi_alloc+0x17f/0x230
[ 1735.202365][T27745]  rsassa_pkcs1_verify+0x27e/0xb60
[ 1735.202401][T27745]  ? rsa_set_pub_key+0xb4/0x270
[ 1735.202447][T27745]  ? __pfx_rsa_set_pub_key+0x10/0x10
[ 1735.202496][T27745]  ? __pfx_rsassa_pkcs1_verify+0x10/0x10
[ 1735.202550][T27745]  ? rsa_max_size+0xd/0x70
[ 1735.202593][T27745]  ? rsassa_pkcs1_set_pub_key+0x17d/0x1f0
[ 1735.202631][T27745]  public_key_verify_signature+0x672/0x970
[ 1735.202675][T27745]  ? __pfx_public_key_verify_signature+0x10/0x10
[ 1735.202746][T27745]  x509_check_for_self_signed+0x31a/0x500
[ 1735.202794][T27745]  x509_cert_parse+0x5f8/0x900
[ 1735.202829][T27745]  ? kasan_save_stack+0x42/0x60
[ 1735.202872][T27745]  ? kasan_save_stack+0x33/0x60
[ 1735.202913][T27745]  ? kasan_save_track+0x14/0x30
[ 1735.202961][T27745]  pkcs7_extract_cert+0xa4/0x320
[ 1735.203009][T27745]  asn1_ber_decoder+0xc5f/0x1df0
[ 1735.203075][T27745]  ? __pfx_asn1_ber_decoder+0x10/0x10
[ 1735.203151][T27745]  pkcs7_parse_message+0x288/0x720
[ 1735.203200][T27745]  verify_pkcs7_signature+0x30/0xa0
[ 1735.203238][T27745]  valid_regdb+0x215/0x590
[ 1735.203280][T27745]  ? __pfx___mutex_lock+0x10/0x10
[ 1735.203330][T27745]  ? __pfx_valid_regdb+0x10/0x10
[ 1735.203372][T27745]  reg_reload_regdb+0x11e/0x460
[ 1735.203410][T27745]  ? __pfx_reg_reload_regdb+0x10/0x10
[ 1735.203450][T27745]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1735.203495][T27745]  ? nl80211_pre_doit+0x1b0/0xb10
[ 1735.203547][T27745]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1735.203591][T27745]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1735.203629][T27745]  ? rcu_is_watching+0x12/0xc0
[ 1735.203673][T27745]  ? bpf_lsm_capable+0x9/0x10
[ 1735.203709][T27745]  ? security_capable+0x7e/0x260
[ 1735.203767][T27745]  genl_rcv_msg+0x55c/0x800
[ 1735.203811][T27745]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1735.203850][T27745]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1735.203895][T27745]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[ 1735.203929][T27745]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1735.203989][T27745]  netlink_rcv_skb+0x158/0x420
[ 1735.204023][T27745]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1735.204064][T27745]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1735.204152][T27745]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1735.204211][T27745]  genl_rcv+0x28/0x40
[ 1735.204253][T27745]  netlink_unicast+0x53d/0x7f0
[ 1735.204296][T27745]  ? __pfx_netlink_unicast+0x10/0x10
[ 1735.204346][T27745]  netlink_sendmsg+0x8d1/0xdd0
[ 1735.204391][T27745]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1735.204446][T27745]  ____sys_sendmsg+0xa98/0xc70
[ 1735.204486][T27745]  ? copy_msghdr_from_user+0x10a/0x160
[ 1735.204539][T27745]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1735.204590][T27745]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1735.204644][T27745]  ___sys_sendmsg+0x134/0x1d0
[ 1735.204697][T27745]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1735.204747][T27745]  ? __lock_acquire+0x622/0x1c90
[ 1735.204844][T27745]  __sys_sendmsg+0x16d/0x220
[ 1735.204898][T27745]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1735.204950][T27745]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1735.205019][T27745]  do_syscall_64+0xcd/0x490
[ 1735.205076][T27745]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1735.205111][T27745] RIP: 0033:0x7fbf8dd8e929
[ 1735.205139][T27745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1735.205173][T27745] RSP: 002b:00007fbf8ec5f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1735.205206][T27745] RAX: ffffffffffffffda RBX: 00007fbf8dfb5fa0 RCX: 00007fbf8dd8e929
[ 1735.205230][T27745] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000006
[ 1735.205261][T27745] RBP: 00007fbf8de10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1735.205283][T27745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1735.205304][T27745] R13: 0000000000000000 R14: 00007fbf8dfb5fa0 R15: 00007ffd77881ce8
[ 1735.205361][T27745]  </TASK>
[ 1735.641629][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1735.705304][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1735.711746][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1736.722289][T27765] netlink: 342 bytes leftover after parsing attributes in process `syz.4.6664'.
[ 1736.872482][T27762] netlink: 342 bytes leftover after parsing attributes in process `syz.4.6664'.
[ 1738.278062][T27789] openvswitch: netlink: Key type 29 is not supported
[ 1738.325816][T27785] FAULT_INJECTION: forcing a failure.
[ 1738.325816][T27785] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1738.382155][T27785] CPU: 1 UID: 0 PID: 27785 Comm: syz.2.6669 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1738.382215][T27785] Tainted: [U]=USER
[ 1738.382226][T27785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1738.382245][T27785] Call Trace:
[ 1738.382256][T27785]  <TASK>
[ 1738.382269][T27785]  dump_stack_lvl+0x16c/0x1f0
[ 1738.382325][T27785]  should_fail_ex+0x512/0x640
[ 1738.382388][T27785]  get_futex_key+0x1d0/0x1540
[ 1738.382433][T27785]  ? __pfx_get_futex_key+0x10/0x10
[ 1738.382464][T27785]  ? rcu_is_watching+0x12/0xc0
[ 1738.382496][T27785]  ? kfree+0x24f/0x4d0
[ 1738.382545][T27785]  futex_wake+0xea/0x530
[ 1738.382592][T27785]  ? __pfx_futex_wake+0x10/0x10
[ 1738.382635][T27785]  ? __pfx_vfs_writev+0x10/0x10
[ 1738.382669][T27785]  ? do_writev+0x218/0x340
[ 1738.382702][T27785]  do_futex+0x1e3/0x350
[ 1738.382728][T27785]  ? __pfx_do_futex+0x10/0x10
[ 1738.382753][T27785]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1738.382796][T27785]  __x64_sys_futex+0x1e0/0x4c0
[ 1738.382824][T27785]  ? fput+0x70/0xf0
[ 1738.382843][T27785]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1738.382870][T27785]  ? __pfx_do_writev+0x10/0x10
[ 1738.382906][T27785]  do_syscall_64+0xcd/0x490
[ 1738.382943][T27785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1738.382966][T27785] RIP: 0033:0x7fbf8dd8e929
[ 1738.382984][T27785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1738.383006][T27785] RSP: 002b:00007fbf8ec5f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1738.383027][T27785] RAX: ffffffffffffffda RBX: 00007fbf8dfb5fa8 RCX: 00007fbf8dd8e929
[ 1738.383041][T27785] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbf8dfb5fac
[ 1738.383055][T27785] RBP: 00007fbf8dfb5fa0 R08: 00007fbf8ec60000 R09: 0000000000000000
[ 1738.383069][T27785] R10: 0000000000000007 R11: 0000000000000246 R12: 00007fbf8dfb5fac
[ 1738.383082][T27785] R13: 0000000000000000 R14: 00007ffd77881c00 R15: 00007ffd77881ce8
[ 1738.383109][T27785]  </TASK>
[ 1738.591387][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1738.828281][T27798] netlink: 334 bytes leftover after parsing attributes in process `syz.4.6671'.
[ 1739.475624][T27805] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1740.589264][T27815] kexec: Could not allocate control_code_buffer
[ 1740.781871][T27832] FAULT_INJECTION: forcing a failure.
[ 1740.781871][T27832] name failslab, interval 1, probability 0, space 0, times 0
[ 1740.842331][T27832] CPU: 1 UID: 0 PID: 27832 Comm: syz.4.6681 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1740.842381][T27832] Tainted: [U]=USER
[ 1740.842392][T27832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1740.842410][T27832] Call Trace:
[ 1740.842421][T27832]  <TASK>
[ 1740.842434][T27832]  dump_stack_lvl+0x16c/0x1f0
[ 1740.842489][T27832]  should_fail_ex+0x512/0x640
[ 1740.842534][T27832]  ? fs_reclaim_acquire+0xae/0x150
[ 1740.842574][T27832]  ? tomoyo_encode2+0x100/0x3e0
[ 1740.842616][T27832]  should_failslab+0xc2/0x120
[ 1740.842646][T27832]  __kmalloc_noprof+0xd2/0x510
[ 1740.842692][T27832]  ? d_absolute_path+0x136/0x1a0
[ 1740.842740][T27832]  tomoyo_encode2+0x100/0x3e0
[ 1740.842790][T27832]  tomoyo_encode+0x29/0x50
[ 1740.842831][T27832]  tomoyo_realpath_from_path+0x18f/0x6e0
[ 1740.842887][T27832]  tomoyo_path_number_perm+0x245/0x580
[ 1740.842922][T27832]  ? tomoyo_path_number_perm+0x237/0x580
[ 1740.842964][T27832]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1740.843006][T27832]  ? find_held_lock+0x2b/0x80
[ 1740.843076][T27832]  ? find_held_lock+0x2b/0x80
[ 1740.843106][T27832]  ? hook_file_ioctl_common+0x145/0x410
[ 1740.843151][T27832]  ? __fget_files+0x20e/0x3c0
[ 1740.843201][T27832]  security_file_ioctl+0x9b/0x240
[ 1740.843242][T27832]  __x64_sys_ioctl+0xb7/0x210
[ 1740.843283][T27832]  do_syscall_64+0xcd/0x490
[ 1740.843336][T27832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1740.843374][T27832] RIP: 0033:0x7f4a3058e929
[ 1740.843400][T27832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1740.843431][T27832] RSP: 002b:00007f4a31383038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1740.843460][T27832] RAX: ffffffffffffffda RBX: 00007f4a307b5fa0 RCX: 00007f4a3058e929
[ 1740.843480][T27832] RDX: 0000000000000007 RSI: 0000000000004b65 RDI: 0000000000000003
[ 1740.843499][T27832] RBP: 00007f4a31383090 R08: 0000000000000000 R09: 0000000000000000
[ 1740.843517][T27832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1740.843535][T27832] R13: 0000000000000000 R14: 00007f4a307b5fa0 R15: 00007fff95f12688
[ 1740.843602][T27832]  </TASK>
[ 1740.843695][T27832] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1741.637698][T27843] netlink: 342 bytes leftover after parsing attributes in process `syz.5.6691'.
[ 1741.785145][T27838] FAULT_INJECTION: forcing a failure.
[ 1741.785145][T27838] name failslab, interval 1, probability 0, space 0, times 0
[ 1741.853351][T27838] CPU: 1 UID: 0 PID: 27838 Comm: syz.4.6683 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1741.853409][T27838] Tainted: [U]=USER
[ 1741.853422][T27838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1741.853442][T27838] Call Trace:
[ 1741.853454][T27838]  <TASK>
[ 1741.853468][T27838]  dump_stack_lvl+0x16c/0x1f0
[ 1741.853526][T27838]  should_fail_ex+0x512/0x640
[ 1741.853575][T27838]  ? __kmalloc_noprof+0xbf/0x510
[ 1741.853628][T27838]  ? mpi_resize+0x188/0x230
[ 1741.853678][T27838]  should_failslab+0xc2/0x120
[ 1741.853710][T27838]  __kmalloc_noprof+0xd2/0x510
[ 1741.853770][T27838]  mpi_resize+0x188/0x230
[ 1741.853812][T27838]  mpi_sub_ui+0x173/0x8d0
[ 1741.853847][T27838]  ? __kasan_kmalloc+0xaa/0xb0
[ 1741.853902][T27838]  rsa_check_payload+0x58/0xc0
[ 1741.853956][T27838]  rsa_enc+0x198/0x3b0
[ 1741.854009][T27838]  ? __pfx_rsa_enc+0x10/0x10
[ 1741.854060][T27838]  ? __virt_addr_valid+0x81/0x610
[ 1741.854094][T27838]  ? __phys_addr+0xe8/0x180
[ 1741.854128][T27838]  ? sg_init_one+0xf5/0x1b0
[ 1741.854181][T27838]  rsassa_pkcs1_verify+0x4ff/0xb60
[ 1741.854231][T27838]  ? __pfx_rsassa_pkcs1_verify+0x10/0x10
[ 1741.854291][T27838]  ? rsa_max_size+0xd/0x70
[ 1741.854339][T27838]  ? rsassa_pkcs1_set_pub_key+0x17d/0x1f0
[ 1741.854381][T27838]  public_key_verify_signature+0x672/0x970
[ 1741.854432][T27838]  ? __pfx_public_key_verify_signature+0x10/0x10
[ 1741.854510][T27838]  x509_check_for_self_signed+0x31a/0x500
[ 1741.854564][T27838]  x509_cert_parse+0x5f8/0x900
[ 1741.854604][T27838]  ? kasan_save_stack+0x42/0x60
[ 1741.854657][T27838]  ? kasan_save_stack+0x33/0x60
[ 1741.854702][T27838]  ? kasan_save_track+0x14/0x30
[ 1741.854756][T27838]  pkcs7_extract_cert+0xa4/0x320
[ 1741.854812][T27838]  asn1_ber_decoder+0xc5f/0x1df0
[ 1741.854885][T27838]  ? __pfx_asn1_ber_decoder+0x10/0x10
[ 1741.854971][T27838]  pkcs7_parse_message+0x288/0x720
[ 1741.855026][T27838]  verify_pkcs7_signature+0x30/0xa0
[ 1741.855067][T27838]  valid_regdb+0x215/0x590
[ 1741.855104][T27838]  ? __pfx___mutex_lock+0x10/0x10
[ 1741.855160][T27838]  ? __pfx_valid_regdb+0x10/0x10
[ 1741.855205][T27838]  reg_reload_regdb+0x11e/0x460
[ 1741.855247][T27838]  ? __pfx_reg_reload_regdb+0x10/0x10
[ 1741.855292][T27838]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1741.855342][T27838]  ? nl80211_pre_doit+0x1b0/0xb10
[ 1741.855412][T27838]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1741.855459][T27838]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1741.855500][T27838]  ? rcu_is_watching+0x12/0xc0
[ 1741.855547][T27838]  ? bpf_lsm_capable+0x9/0x10
[ 1741.855586][T27838]  ? security_capable+0x7e/0x260
[ 1741.855655][T27838]  genl_rcv_msg+0x55c/0x800
[ 1741.855703][T27838]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1741.855745][T27838]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1741.855794][T27838]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[ 1741.855831][T27838]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1741.855886][T27838]  ? __lock_acquire+0x622/0x1c90
[ 1741.855936][T27838]  netlink_rcv_skb+0x158/0x420
[ 1741.855971][T27838]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1741.856015][T27838]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1741.856064][T27838]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1741.856094][T27838]  ? is_vmalloc_addr+0x86/0xa0
[ 1741.856144][T27838]  genl_rcv+0x28/0x40
[ 1741.856180][T27838]  netlink_unicast+0x53d/0x7f0
[ 1741.856220][T27838]  ? __pfx_netlink_unicast+0x10/0x10
[ 1741.856267][T27838]  netlink_sendmsg+0x8d1/0xdd0
[ 1741.856311][T27838]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1741.856365][T27838]  ____sys_sendmsg+0xa98/0xc70
[ 1741.856403][T27838]  ? copy_msghdr_from_user+0x10a/0x160
[ 1741.856452][T27838]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1741.856502][T27838]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1741.856555][T27838]  ___sys_sendmsg+0x134/0x1d0
[ 1741.856606][T27838]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1741.856661][T27838]  ? __lock_acquire+0x622/0x1c90
[ 1741.856749][T27838]  __sys_sendmsg+0x16d/0x220
[ 1741.856799][T27838]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1741.856850][T27838]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1741.856915][T27838]  do_syscall_64+0xcd/0x490
[ 1741.856970][T27838]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1741.857002][T27838] RIP: 0033:0x7f4a3058e929
[ 1741.857027][T27838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1741.857058][T27838] RSP: 002b:00007f4a31383038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1741.857080][T27838] RAX: ffffffffffffffda RBX: 00007f4a307b5fa0 RCX: 00007f4a3058e929
[ 1741.857097][T27838] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000006
[ 1741.857115][T27838] RBP: 00007f4a30610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1741.857136][T27838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1741.857156][T27838] R13: 0000000000000000 R14: 00007f4a307b5fa0 R15: 00007fff95f12688
[ 1741.857198][T27838]  </TASK>
[ 1742.326976][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1746.419260][T27902] FAULT_INJECTION: forcing a failure.
[ 1746.419260][T27902] name failslab, interval 1, probability 0, space 0, times 0
[ 1746.685433][T27902] CPU: 0 UID: 0 PID: 27902 Comm: syz.5.6697 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1746.685505][T27902] Tainted: [U]=USER
[ 1746.685516][T27902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1746.685533][T27902] Call Trace:
[ 1746.685544][T27902]  <TASK>
[ 1746.685556][T27902]  dump_stack_lvl+0x16c/0x1f0
[ 1746.685628][T27902]  should_fail_ex+0x512/0x640
[ 1746.685674][T27902]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1746.685720][T27902]  should_failslab+0xc2/0x120
[ 1746.685750][T27902]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1746.685792][T27902]  ? find_held_lock+0x2b/0x80
[ 1746.685821][T27902]  ? posix_clock_open+0xc8/0x290
[ 1746.685861][T27902]  posix_clock_open+0xc8/0x290
[ 1746.685896][T27902]  ? __pfx_posix_clock_open+0x10/0x10
[ 1746.685931][T27902]  chrdev_open+0x231/0x6a0
[ 1746.685980][T27902]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1746.686020][T27902]  ? __pfx_chrdev_open+0x10/0x10
[ 1746.686079][T27902]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1746.686129][T27902]  do_dentry_open+0x744/0x1c10
[ 1746.686177][T27902]  ? __pfx_chrdev_open+0x10/0x10
[ 1746.686236][T27902]  vfs_open+0x82/0x3f0
[ 1746.686276][T27902]  path_openat+0x1de4/0x2cb0
[ 1746.686336][T27902]  ? __pfx_path_openat+0x10/0x10
[ 1746.686387][T27902]  ? __lock_acquire+0xb8a/0x1c90
[ 1746.686434][T27902]  do_filp_open+0x20b/0x470
[ 1746.686507][T27902]  ? __pfx_do_filp_open+0x10/0x10
[ 1746.686581][T27902]  ? alloc_fd+0x471/0x7d0
[ 1746.686653][T27902]  do_sys_openat2+0x11b/0x1d0
[ 1746.686688][T27902]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1746.686723][T27902]  ? find_held_lock+0x2b/0x80
[ 1746.686756][T27902]  ? handle_mm_fault+0x2ab/0xd10
[ 1746.686809][T27902]  __x64_sys_openat+0x174/0x210
[ 1746.686848][T27902]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1746.686889][T27902]  ? do_user_addr_fault+0x843/0x1370
[ 1746.686956][T27902]  do_syscall_64+0xcd/0x490
[ 1746.687008][T27902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1746.687040][T27902] RIP: 0033:0x7f8a9178e929
[ 1746.687065][T27902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1746.687094][T27902] RSP: 002b:00007f8a925c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1746.687122][T27902] RAX: ffffffffffffffda RBX: 00007f8a919b6080 RCX: 00007f8a9178e929
[ 1746.687143][T27902] RDX: 0000000000000440 RSI: 0000200000000280 RDI: ffffffffffffff9c
[ 1746.687163][T27902] RBP: 00007f8a91810b39 R08: 0000000000000000 R09: 0000000000000000
[ 1746.687181][T27902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1746.687199][T27902] R13: 0000000000000000 R14: 00007f8a919b6080 R15: 00007ffd43669b08
[ 1746.687240][T27902]  </TASK>
[ 1747.409338][T27890] kexec: Could not allocate control_code_buffer
[ 1747.885901][T27913] netlink: 342 bytes leftover after parsing attributes in process `syz.2.6698'.
[ 1750.498947][T27949] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x12c pfn:0x78000
[ 1750.582488][T27949] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1750.617288][T27949] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[ 1750.777455][T27949] raw: 000000000000012c 0000000000000000 00000001ffffffff 0000000000000000
[ 1750.786146][T27949] page dumped because: unmovable page
[ 1750.959950][T27949] page_owner tracks the page as allocated
[ 1751.050016][T27949] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO), pid 6355, tgid 6354 (syz.1.99), ts 145902835117, free_ts 145861251331
[ 1751.249319][T27949]  post_alloc_hook+0x1c0/0x230
[ 1751.255057][T27949]  get_page_from_freelist+0x1321/0x3890
[ 1751.287839][T27949]  __alloc_frozen_pages_noprof+0x261/0x23f0
[ 1751.327552][T27949]  alloc_pages_mpol+0x1fb/0x550
[ 1751.384000][T27949]  alloc_pages_noprof+0x131/0x390
[ 1751.407726][T27949]  brd_submit_bio+0x951/0x10a0
[ 1751.590499][T27949]  __submit_bio+0x304/0x690
[ 1751.595116][T27949]  submit_bio_noacct_nocheck+0x852/0xd30
[ 1751.648484][T27949]  submit_bio_noacct+0x50d/0x1eb0
[ 1751.707918][T27949]  __block_write_full_folio+0x735/0xe00
[ 1751.763209][T27949]  block_write_full_folio+0x341/0x400
[ 1751.777953][T27949]  blkdev_writepages+0xb8/0x140
[ 1751.816165][T27964] openvswitch: netlink: Key type 29 is not supported
[ 1751.827723][T27949]  do_writepages+0x27a/0x600
[ 1751.832414][T27949]  filemap_fdatawrite_wbc+0x104/0x160
[ 1751.887869][T27949]  __filemap_fdatawrite_range+0xb2/0xf0
[ 1751.893550][T27949]  filemap_write_and_wait_range+0xa3/0x130
[ 1751.927769][T27949] page last free pid 6362 tgid 6360 stack trace:
[ 1751.934186][T27949]  __free_frozen_pages+0x7fe/0x1180
[ 1751.957891][T27949]  mon_bin_release+0x15a/0x240
[ 1751.997857][T27949]  __fput+0x402/0xb70
[ 1752.027862][T27949]  task_work_run+0x14d/0x240
[ 1752.032587][T27949]  exit_to_user_mode_loop+0xeb/0x110
[ 1752.077889][T27949]  do_syscall_64+0x3f6/0x490
[ 1752.088121][T27949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1752.677404][T27960] kexec: Could not allocate control_code_buffer
[ 1754.068627][T27993] snd_aloop snd_aloop.0: control 16781581:65533:6:�'x?F���/��zF˷fC���:0 is already present
[ 1754.572532][T28005] FAULT_INJECTION: forcing a failure.
[ 1754.572532][T28005] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1754.636884][T28005] CPU: 1 UID: 0 PID: 28005 Comm: syz.2.6724 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1754.636933][T28005] Tainted: [U]=USER
[ 1754.636943][T28005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1754.636959][T28005] Call Trace:
[ 1754.636968][T28005]  <TASK>
[ 1754.636980][T28005]  dump_stack_lvl+0x16c/0x1f0
[ 1754.637027][T28005]  should_fail_ex+0x512/0x640
[ 1754.637075][T28005]  _copy_to_user+0x32/0xd0
[ 1754.637124][T28005]  simple_read_from_buffer+0xcb/0x170
[ 1754.637164][T28005]  proc_fail_nth_read+0x197/0x270
[ 1754.637202][T28005]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1754.637240][T28005]  ? rw_verify_area+0xcf/0x680
[ 1754.637277][T28005]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1754.637313][T28005]  vfs_read+0x1e4/0xc60
[ 1754.637358][T28005]  ? __pfx___mutex_lock+0x10/0x10
[ 1754.637403][T28005]  ? __pfx_vfs_read+0x10/0x10
[ 1754.637453][T28005]  ? __fget_files+0x20e/0x3c0
[ 1754.637505][T28005]  ksys_read+0x12a/0x250
[ 1754.637544][T28005]  ? __pfx_ksys_read+0x10/0x10
[ 1754.637596][T28005]  do_syscall_64+0xcd/0x490
[ 1754.637646][T28005]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1754.637677][T28005] RIP: 0033:0x7fbf8dd8d33c
[ 1754.637702][T28005] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1754.637739][T28005] RSP: 002b:00007fbf8ec5f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1754.637766][T28005] RAX: ffffffffffffffda RBX: 00007fbf8dfb5fa0 RCX: 00007fbf8dd8d33c
[ 1754.637785][T28005] RDX: 000000000000000f RSI: 00007fbf8ec5f0a0 RDI: 0000000000000004
[ 1754.637801][T28005] RBP: 00007fbf8ec5f090 R08: 0000000000000000 R09: 0000000000000000
[ 1754.637818][T28005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1754.637835][T28005] R13: 0000000000000000 R14: 00007fbf8dfb5fa0 R15: 00007ffd77881ce8
[ 1754.637871][T28005]  </TASK>
[ 1758.957386][T28060] random: crng reseeded on system resumption
[ 1759.690487][T28070] netlink: 342 bytes leftover after parsing attributes in process `syz.3.6741'.
[ 1762.404637][T28104] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6749'.
[ 1763.492836][T28122] FAULT_INJECTION: forcing a failure.
[ 1763.492836][T28122] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1763.539391][T28120] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1763.549811][T24109] Bluetooth: hci1: unexpected event 0x1d length: 10 > 5
[ 1763.552972][T28122] CPU: 1 UID: 0 PID: 28122 Comm: syz.4.6754 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1763.553017][T28122] Tainted: [U]=USER
[ 1763.553025][T28122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1763.553040][T28122] Call Trace:
[ 1763.553052][T28122]  <TASK>
[ 1763.553062][T28122]  dump_stack_lvl+0x16c/0x1f0
[ 1763.553106][T28122]  should_fail_ex+0x512/0x640
[ 1763.553148][T28122]  _copy_to_user+0x32/0xd0
[ 1763.553192][T28122]  simple_read_from_buffer+0xcb/0x170
[ 1763.553232][T28122]  proc_fail_nth_read+0x197/0x270
[ 1763.553266][T28122]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1763.553300][T28122]  ? rw_verify_area+0xcf/0x680
[ 1763.553334][T28122]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1763.553368][T28122]  vfs_read+0x1e4/0xc60
[ 1763.553408][T28122]  ? __pfx___mutex_lock+0x10/0x10
[ 1763.553449][T28122]  ? __pfx_vfs_read+0x10/0x10
[ 1763.553501][T28122]  ? __fget_files+0x20e/0x3c0
[ 1763.553546][T28122]  ksys_read+0x12a/0x250
[ 1763.553582][T28122]  ? __pfx_ksys_read+0x10/0x10
[ 1763.553620][T28122]  ? fput+0x70/0xf0
[ 1763.553653][T28122]  do_syscall_64+0xcd/0x490
[ 1763.553701][T28122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1763.553732][T28122] RIP: 0033:0x7f4a3058d33c
[ 1763.553757][T28122] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1763.553788][T28122] RSP: 002b:00007f4a31383030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1763.553817][T28122] RAX: ffffffffffffffda RBX: 00007f4a307b5fa0 RCX: 00007f4a3058d33c
[ 1763.553837][T28122] RDX: 000000000000000f RSI: 00007f4a313830a0 RDI: 0000000000000004
[ 1763.553854][T28122] RBP: 00007f4a31383090 R08: 0000000000000000 R09: 0000000000000000
[ 1763.553871][T28122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1763.553898][T28122] R13: 0000000000000000 R14: 00007f4a307b5fa0 R15: 00007fff95f12688
[ 1763.553936][T28122]  </TASK>
[ 1766.844287][T28165] netlink: 342 bytes leftover after parsing attributes in process `syz.4.6765'.
[ 1769.054300][T28209] dyndbg: expected <4096 bytes into control
[ 1770.512260][T28226] netlink: 342 bytes leftover after parsing attributes in process `syz.5.6781'.
[ 1771.329445][T28233] FAULT_INJECTION: forcing a failure.
[ 1771.329445][T28233] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1771.404665][T28233] CPU: 1 UID: 0 PID: 28233 Comm: syz.4.6784 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1771.404724][T28233] Tainted: [U]=USER
[ 1771.404735][T28233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1771.404755][T28233] Call Trace:
[ 1771.404768][T28233]  <TASK>
[ 1771.404781][T28233]  dump_stack_lvl+0x16c/0x1f0
[ 1771.404840][T28233]  should_fail_ex+0x512/0x640
[ 1771.404897][T28233]  should_fail_alloc_page+0xe7/0x130
[ 1771.404933][T28233]  prepare_alloc_pages+0x3c2/0x610
[ 1771.404990][T28233]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1771.405044][T28233]  ? kasan_save_stack+0x42/0x60
[ 1771.405093][T28233]  ? kasan_save_stack+0x33/0x60
[ 1771.405140][T28233]  ? kasan_save_track+0x14/0x30
[ 1771.405187][T28233]  ? __kasan_slab_alloc+0x89/0x90
[ 1771.405238][T28233]  ? kmem_cache_alloc_noprof+0x1cb/0x3b0
[ 1771.405287][T28233]  ? __pmd_alloc+0xbf/0x930
[ 1771.405320][T28233]  ? __handle_mm_fault+0xaac/0x5490
[ 1771.405361][T28233]  ? handle_mm_fault+0x589/0xd10
[ 1771.405413][T28233]  ? do_user_addr_fault+0x7a6/0x1370
[ 1771.405468][T28233]  ? exc_page_fault+0x5c/0xb0
[ 1771.405509][T28233]  ? asm_exc_page_fault+0x26/0x30
[ 1771.405540][T28233]  ? strncpy_from_user+0x147/0x2e0
[ 1771.405577][T28233]  ? getname_flags.part.0+0x8f/0x550
[ 1771.405610][T28233]  ? getname_flags+0x93/0xf0
[ 1771.405659][T28233]  ? do_sys_openat2+0xb8/0x1d0
[ 1771.405688][T28233]  ? __x64_sys_openat+0x174/0x210
[ 1771.405719][T28233]  ? do_syscall_64+0xcd/0x490
[ 1771.405762][T28233]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1771.405812][T28233]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1771.405881][T28233]  ? __lock_acquire+0xb8a/0x1c90
[ 1771.405921][T28233]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1771.405982][T28233]  ? policy_nodemask+0xea/0x4e0
[ 1771.406035][T28233]  alloc_pages_mpol+0x1fb/0x550
[ 1771.406067][T28233]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1771.406101][T28233]  ? __thp_vma_allowable_orders+0x1c5/0xb10
[ 1771.406142][T28233]  alloc_pages_noprof+0x131/0x390
[ 1771.406173][T28233]  pte_alloc_one+0x1c/0x3a0
[ 1771.406220][T28233]  __handle_mm_fault+0x3a68/0x5490
[ 1771.406272][T28233]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1771.406312][T28233]  ? __pfx_mt_find+0x10/0x10
[ 1771.406364][T28233]  ? find_vma+0xbf/0x140
[ 1771.406392][T28233]  ? __pfx_find_vma+0x10/0x10
[ 1771.406427][T28233]  handle_mm_fault+0x589/0xd10
[ 1771.406469][T28233]  ? __pkru_allows_pkey+0x41/0xb0
[ 1771.406511][T28233]  do_user_addr_fault+0x7a6/0x1370
[ 1771.406557][T28233]  ? rcu_is_watching+0x12/0xc0
[ 1771.406591][T28233]  exc_page_fault+0x5c/0xb0
[ 1771.406637][T28233]  asm_exc_page_fault+0x26/0x30
[ 1771.406666][T28233] RIP: 0010:strncpy_from_user+0x147/0x2e0
[ 1771.406708][T28233] Code: 00 00 4d 89 74 1d 00 48 83 ed 08 bf 07 00 00 00 48 83 c3 08 48 89 ee e8 57 f1 b0 fc 48 83 fd 07 76 22 e8 dc f5 b0 fc 45 31 ff <49> 8b 04 1c 31 ff 44 89 fe 49 89 c6 e8 08 f1 b0 fc 45 85 ff 0f 84
[ 1771.406739][T28233] RSP: 0018:ffffc9000bd57d10 EFLAGS: 00050246
[ 1771.406764][T28233] RAX: 000000000000003b RBX: 0000000000000000 RCX: ffffc9000be2a000
[ 1771.406783][T28233] RDX: 0000000000080000 RSI: ffffffff850a9744 RDI: 0000000000000007
[ 1771.406803][T28233] RBP: 0000000000000fe0 R08: 0000000000000007 R09: 0000000000000007
[ 1771.406820][T28233] R10: 0000000000000fe0 R11: 0000000000000000 R12: 0000000000000000
[ 1771.406838][T28233] R13: ffff88805bc25520 R14: 0000000000000fe0 R15: 0000000000000000
[ 1771.406889][T28233]  ? strncpy_from_user+0x144/0x2e0
[ 1771.406955][T28233]  getname_flags.part.0+0x8f/0x550
[ 1771.406998][T28233]  getname_flags+0x93/0xf0
[ 1771.407044][T28233]  do_sys_openat2+0xb8/0x1d0
[ 1771.407080][T28233]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1771.407134][T28233]  __x64_sys_openat+0x174/0x210
[ 1771.407172][T28233]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1771.407227][T28233]  do_syscall_64+0xcd/0x490
[ 1771.407282][T28233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1771.407315][T28233] RIP: 0033:0x7f4a3058e929
[ 1771.407341][T28233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1771.407373][T28233] RSP: 002b:00007f4a31383038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1771.407407][T28233] RAX: ffffffffffffffda RBX: 00007f4a307b5fa0 RCX: 00007f4a3058e929
[ 1771.407428][T28233] RDX: 0000000000020342 RSI: 0000000000000000 RDI: ffffffffffffff9c
[ 1771.407450][T28233] RBP: 00007f4a30610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1771.407470][T28233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1771.407490][T28233] R13: 0000000000000000 R14: 00007f4a307b5fa0 R15: 00007fff95f12688
[ 1771.407533][T28233]  </TASK>
[ 1771.849716][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1773.891332][T28250] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input75
[ 1776.221464][T28281] snd_aloop snd_aloop.0: control 16781581:65533:6:�'x?F���/��zF˷fC���:0 is already present
[ 1776.578805][T28288] overlayfs: missing 'lowerdir'
[ 1779.151707][T28308] netlink: 342 bytes leftover after parsing attributes in process `syz.2.6797'.
[ 1779.916734][T28315] FAULT_INJECTION: forcing a failure.
[ 1779.916734][T28315] name failslab, interval 1, probability 0, space 0, times 0
[ 1779.953761][T28315] CPU: 1 UID: 0 PID: 28315 Comm: syz.4.6803 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1779.953812][T28315] Tainted: [U]=USER
[ 1779.953824][T28315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1779.953844][T28315] Call Trace:
[ 1779.953855][T28315]  <TASK>
[ 1779.953868][T28315]  dump_stack_lvl+0x16c/0x1f0
[ 1779.953923][T28315]  should_fail_ex+0x512/0x640
[ 1779.953968][T28315]  ? __kmalloc_noprof+0xbf/0x510
[ 1779.954016][T28315]  ? fib_default_rule_add+0x4f/0x420
[ 1779.954067][T28315]  should_failslab+0xc2/0x120
[ 1779.954099][T28315]  __kmalloc_noprof+0xd2/0x510
[ 1779.954197][T28315]  fib_default_rule_add+0x4f/0x420
[ 1779.954254][T28315]  fib4_rules_init+0x7c/0x1c0
[ 1779.954305][T28315]  fib_net_init+0x1dc/0x3f0
[ 1779.954341][T28315]  ? __pfx___register_sysctl_table+0x10/0x10
[ 1779.954392][T28315]  ? __pfx_fib_net_init+0x10/0x10
[ 1779.954428][T28315]  ? lockdep_init_map_type+0x5c/0x280
[ 1779.954473][T28315]  ? do_init_timer+0xc9/0x110
[ 1779.954513][T28315]  ? devinet_init_net+0x5c2/0x910
[ 1779.954559][T28315]  ? __pfx_fib_net_init+0x10/0x10
[ 1779.954593][T28315]  ops_init+0x1df/0x5f0
[ 1779.954628][T28315]  setup_net+0x1ff/0x510
[ 1779.954657][T28315]  ? lockdep_init_map_type+0x5c/0x280
[ 1779.954713][T28315]  ? __pfx_setup_net+0x10/0x10
[ 1779.954747][T28315]  ? debug_mutex_init+0x37/0x70
[ 1779.954784][T28315]  copy_net_ns+0x2a6/0x5f0
[ 1779.954823][T28315]  create_new_namespaces+0x3ea/0xa90
[ 1779.954869][T28315]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1779.954908][T28315]  ksys_unshare+0x45b/0xa40
[ 1779.954954][T28315]  ? __pfx_ksys_unshare+0x10/0x10
[ 1779.954999][T28315]  ? xfd_validate_state+0x61/0x180
[ 1779.955055][T28315]  __x64_sys_unshare+0x31/0x40
[ 1779.955099][T28315]  do_syscall_64+0xcd/0x490
[ 1779.955161][T28315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1779.955196][T28315] RIP: 0033:0x7f4a3058e929
[ 1779.955221][T28315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1779.955255][T28315] RSP: 002b:00007f4a31383038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1779.955285][T28315] RAX: ffffffffffffffda RBX: 00007f4a307b5fa0 RCX: 00007f4a3058e929
[ 1779.955307][T28315] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1779.955327][T28315] RBP: 00007f4a30610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1779.955346][T28315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1779.955366][T28315] R13: 0000000000000000 R14: 00007f4a307b5fa0 R15: 00007fff95f12688
[ 1779.955408][T28315]  </TASK>
[ 1780.213911][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1780.845426][T28327] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1781.906942][T28337] could not allocate digest TFM handle 
[ 1782.133274][T28337] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6809'.
[ 1782.888074][T28359] netlink: 342 bytes leftover after parsing attributes in process `syz.5.6811'.
[ 1786.827519][T28397] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6820'.
[ 1788.680583][T28424] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6826'.
[ 1791.225016][T28461] netlink: 342 bytes leftover after parsing attributes in process `syz.4.6834'.
[ 1791.625593][T28471] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input76
[ 1792.910109][T28493] dyndbg: expected <4096 bytes into control
[ 1794.528037][T28510] FAULT_INJECTION: forcing a failure.
[ 1794.528037][T28510] name failslab, interval 1, probability 0, space 0, times 0
[ 1794.674490][T28510] CPU: 1 UID: 0 PID: 28510 Comm: syz.2.6854 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1794.674548][T28510] Tainted: [U]=USER
[ 1794.674560][T28510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1794.674579][T28510] Call Trace:
[ 1794.674590][T28510]  <TASK>
[ 1794.674604][T28510]  dump_stack_lvl+0x16c/0x1f0
[ 1794.674665][T28510]  should_fail_ex+0x512/0x640
[ 1794.674714][T28510]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1794.674769][T28510]  should_failslab+0xc2/0x120
[ 1794.674801][T28510]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1794.674853][T28510]  ? getname_flags.part.0+0x4c/0x550
[ 1794.674897][T28510]  getname_flags.part.0+0x4c/0x550
[ 1794.674940][T28510]  getname_flags+0x93/0xf0
[ 1794.674986][T28510]  do_sys_openat2+0xb8/0x1d0
[ 1794.675024][T28510]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1794.675072][T28510]  ? find_held_lock+0x2b/0x80
[ 1794.675115][T28510]  __x64_sys_openat+0x174/0x210
[ 1794.675154][T28510]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1794.675207][T28510]  do_syscall_64+0xcd/0x490
[ 1794.675263][T28510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1794.675296][T28510] RIP: 0033:0x7fbf8dd8e929
[ 1794.675323][T28510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1794.675357][T28510] RSP: 002b:00007fbf8ec5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1794.675389][T28510] RAX: ffffffffffffffda RBX: 00007fbf8dfb5fa0 RCX: 00007fbf8dd8e929
[ 1794.675410][T28510] RDX: 0000000000000802 RSI: 0000000000000000 RDI: ffffffffffffff9c
[ 1794.675431][T28510] RBP: 00007fbf8de10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1794.675461][T28510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1794.675480][T28510] R13: 0000000000000000 R14: 00007fbf8dfb5fa0 R15: 00007ffd77881ce8
[ 1794.675519][T28510]  </TASK>
[ 1794.863292][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1796.804031][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1796.810523][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1797.510879][T28535] netlink: 342 bytes leftover after parsing attributes in process `syz.3.6850'.
[ 1797.807057][T28539] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1798.073374][T28544] FAULT_INJECTION: forcing a failure.
[ 1798.073374][T28544] name failslab, interval 1, probability 0, space 0, times 0
[ 1798.201063][T28544] CPU: 0 UID: 0 PID: 28544 Comm: syz.2.6851 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1798.201124][T28544] Tainted: [U]=USER
[ 1798.201137][T28544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1798.201159][T28544] Call Trace:
[ 1798.201171][T28544]  <TASK>
[ 1798.201185][T28544]  dump_stack_lvl+0x16c/0x1f0
[ 1798.201246][T28544]  should_fail_ex+0x512/0x640
[ 1798.201296][T28544]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1798.201348][T28544]  should_failslab+0xc2/0x120
[ 1798.201382][T28544]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1798.201430][T28544]  ? sctp_endpoint_new+0x7c/0xcd0
[ 1798.201473][T28544]  sctp_endpoint_new+0x7c/0xcd0
[ 1798.201527][T28544]  sctp_init_sock+0xe2d/0x1330
[ 1798.201560][T28544]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[ 1798.201595][T28544]  sctp_v6_init_sock+0x16/0x70
[ 1798.201625][T28544]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[ 1798.201658][T28544]  inet6_create+0xb2d/0x1300
[ 1798.201693][T28544]  ? inet6_create+0x7f/0x1300
[ 1798.201730][T28544]  __sock_create+0x338/0x8d0
[ 1798.201788][T28544]  __sys_socket+0x14d/0x260
[ 1798.201827][T28544]  ? fput+0x70/0xf0
[ 1798.201858][T28544]  ? __pfx___sys_socket+0x10/0x10
[ 1798.201899][T28544]  ? xfd_validate_state+0x61/0x180
[ 1798.201940][T28544]  ? __pfx_ksys_write+0x10/0x10
[ 1798.202008][T28544]  __x64_sys_socket+0x72/0xb0
[ 1798.202044][T28544]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1798.202091][T28544]  do_syscall_64+0xcd/0x490
[ 1798.202142][T28544]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1798.202174][T28544] RIP: 0033:0x7fbf8dd8e929
[ 1798.202199][T28544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1798.202230][T28544] RSP: 002b:00007fbf8ec5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1798.202259][T28544] RAX: ffffffffffffffda RBX: 00007fbf8dfb5fa0 RCX: 00007fbf8dd8e929
[ 1798.202280][T28544] RDX: 0000000000000084 RSI: 0000000000000005 RDI: 000000000000000a
[ 1798.202298][T28544] RBP: 00007fbf8de10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1798.202317][T28544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1798.202335][T28544] R13: 0000000000000000 R14: 00007fbf8dfb5fa0 R15: 00007ffd77881ce8
[ 1798.202373][T28544]  </TASK>
[ 1798.559782][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1798.566367][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1798.576352][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1798.582826][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1798.604977][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1798.620217][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1798.641411][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1798.648299][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1801.358075][T28567] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input77
[ 1801.646329][T28571] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input78
[ 1802.723477][T28589] snd_aloop snd_aloop.0: control 16781581:65533:6:�'x?F���/��zF˷fC���:0 is already present
[ 1803.477312][T28594] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1803.546412][T28593] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1803.861001][T28610] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1805.570048][T28631] FAULT_INJECTION: forcing a failure.
[ 1805.570048][T28631] name failslab, interval 1, probability 0, space 0, times 0
[ 1805.664736][T28631] CPU: 1 UID: 0 PID: 28631 Comm: syz.4.6878 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1805.664794][T28631] Tainted: [U]=USER
[ 1805.664806][T28631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1805.664827][T28631] Call Trace:
[ 1805.664838][T28631]  <TASK>
[ 1805.664853][T28631]  dump_stack_lvl+0x16c/0x1f0
[ 1805.664912][T28631]  should_fail_ex+0x512/0x640
[ 1805.664960][T28631]  ? __kmalloc_noprof+0xbf/0x510
[ 1805.665013][T28631]  ? mpi_alloc_limb_space+0x31/0x60
[ 1805.665053][T28631]  should_failslab+0xc2/0x120
[ 1805.665092][T28631]  __kmalloc_noprof+0xd2/0x510
[ 1805.665152][T28631]  mpi_alloc_limb_space+0x31/0x60
[ 1805.665194][T28631]  mpi_alloc+0x199/0x230
[ 1805.665234][T28631]  mpi_read_raw_from_sgl+0x222/0x5b0
[ 1805.665276][T28631]  ? __pfx_mpi_read_raw_from_sgl+0x10/0x10
[ 1805.665327][T28631]  ? kasan_save_track+0x14/0x30
[ 1805.665391][T28631]  ? __kasan_kmalloc+0xaa/0xb0
[ 1805.665443][T28631]  rsa_enc+0x15d/0x3b0
[ 1805.665514][T28631]  ? __pfx_rsa_enc+0x10/0x10
[ 1805.665557][T28631]  ? __virt_addr_valid+0x81/0x610
[ 1805.665585][T28631]  ? __phys_addr+0xe8/0x180
[ 1805.665614][T28631]  ? sg_init_one+0xf5/0x1b0
[ 1805.665655][T28631]  rsassa_pkcs1_verify+0x4ff/0xb60
[ 1805.665698][T28631]  ? __pfx_rsassa_pkcs1_verify+0x10/0x10
[ 1805.665748][T28631]  ? rsa_max_size+0xd/0x70
[ 1805.665789][T28631]  ? rsassa_pkcs1_set_pub_key+0x17d/0x1f0
[ 1805.665824][T28631]  public_key_verify_signature+0x672/0x970
[ 1805.665866][T28631]  ? __pfx_public_key_verify_signature+0x10/0x10
[ 1805.665933][T28631]  x509_check_for_self_signed+0x31a/0x500
[ 1805.665978][T28631]  x509_cert_parse+0x5f8/0x900
[ 1805.666012][T28631]  ? kasan_save_stack+0x42/0x60
[ 1805.666051][T28631]  ? kasan_save_stack+0x33/0x60
[ 1805.666101][T28631]  ? kasan_save_track+0x14/0x30
[ 1805.666146][T28631]  pkcs7_extract_cert+0xa4/0x320
[ 1805.666193][T28631]  asn1_ber_decoder+0xc5f/0x1df0
[ 1805.666254][T28631]  ? __pfx_asn1_ber_decoder+0x10/0x10
[ 1805.666327][T28631]  pkcs7_parse_message+0x288/0x720
[ 1805.666373][T28631]  verify_pkcs7_signature+0x30/0xa0
[ 1805.666409][T28631]  valid_regdb+0x215/0x590
[ 1805.666441][T28631]  ? __pfx___mutex_lock+0x10/0x10
[ 1805.666488][T28631]  ? __pfx_valid_regdb+0x10/0x10
[ 1805.666527][T28631]  reg_reload_regdb+0x11e/0x460
[ 1805.666563][T28631]  ? __pfx_reg_reload_regdb+0x10/0x10
[ 1805.666600][T28631]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1805.666641][T28631]  ? nl80211_pre_doit+0x1b0/0xb10
[ 1805.666689][T28631]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1805.666730][T28631]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1805.666766][T28631]  ? rcu_is_watching+0x12/0xc0
[ 1805.666807][T28631]  ? bpf_lsm_capable+0x9/0x10
[ 1805.666842][T28631]  ? security_capable+0x7e/0x260
[ 1805.666896][T28631]  genl_rcv_msg+0x55c/0x800
[ 1805.666938][T28631]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1805.666975][T28631]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1805.667016][T28631]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[ 1805.667048][T28631]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1805.667102][T28631]  ? __lock_acquire+0x622/0x1c90
[ 1805.667145][T28631]  netlink_rcv_skb+0x158/0x420
[ 1805.667177][T28631]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1805.667215][T28631]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1805.667263][T28631]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1805.667291][T28631]  ? is_vmalloc_addr+0x86/0xa0
[ 1805.667336][T28631]  genl_rcv+0x28/0x40
[ 1805.667385][T28631]  netlink_unicast+0x53d/0x7f0
[ 1805.667423][T28631]  ? __pfx_netlink_unicast+0x10/0x10
[ 1805.667468][T28631]  netlink_sendmsg+0x8d1/0xdd0
[ 1805.667519][T28631]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1805.667565][T28631]  ____sys_sendmsg+0xa98/0xc70
[ 1805.667599][T28631]  ? copy_msghdr_from_user+0x10a/0x160
[ 1805.667641][T28631]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1805.667681][T28631]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1805.667726][T28631]  ___sys_sendmsg+0x134/0x1d0
[ 1805.667791][T28631]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1805.667832][T28631]  ? __lock_acquire+0x622/0x1c90
[ 1805.667913][T28631]  __sys_sendmsg+0x16d/0x220
[ 1805.667957][T28631]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1805.668002][T28631]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1805.668067][T28631]  do_syscall_64+0xcd/0x490
[ 1805.668120][T28631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1805.668152][T28631] RIP: 0033:0x7f4a3058e929
[ 1805.668177][T28631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1805.668209][T28631] RSP: 002b:00007f4a31383038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1805.668237][T28631] RAX: ffffffffffffffda RBX: 00007f4a307b5fa0 RCX: 00007f4a3058e929
[ 1805.668255][T28631] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000006
[ 1805.668273][T28631] RBP: 00007f4a30610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1805.668290][T28631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1805.668308][T28631] R13: 0000000000000000 R14: 00007f4a307b5fa0 R15: 00007fff95f12688
[ 1805.668346][T28631]  </TASK>
[ 1807.209072][T28649] FAULT_INJECTION: forcing a failure.
[ 1807.209072][T28649] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1807.358985][T28654] netlink: 342 bytes leftover after parsing attributes in process `syz.4.6883'.
[ 1807.435557][T28649] CPU: 1 UID: 0 PID: 28649 Comm: syz.2.6882 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1807.435609][T28649] Tainted: [U]=USER
[ 1807.435620][T28649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1807.435639][T28649] Call Trace:
[ 1807.435650][T28649]  <TASK>
[ 1807.435662][T28649]  dump_stack_lvl+0x16c/0x1f0
[ 1807.435714][T28649]  should_fail_ex+0x512/0x640
[ 1807.435766][T28649]  _copy_from_iter+0x29f/0x16f0
[ 1807.435828][T28649]  ? __pfx__copy_from_iter+0x10/0x10
[ 1807.435874][T28649]  ? rcu_is_watching+0x12/0xc0
[ 1807.435919][T28649]  ? rcu_is_watching+0x12/0xc0
[ 1807.435950][T28649]  ? kfree+0x24f/0x4d0
[ 1807.435987][T28649]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[ 1807.436049][T28649]  file_tty_write.constprop.0+0x488/0x9b0
[ 1807.436112][T28649]  redirected_tty_write+0xd4/0x150
[ 1807.436163][T28649]  vfs_write+0x6c4/0x1150
[ 1807.436209][T28649]  ? __pfx_redirected_tty_write+0x10/0x10
[ 1807.436291][T28649]  ? __pfx_vfs_write+0x10/0x10
[ 1807.436335][T28649]  ? find_held_lock+0x2b/0x80
[ 1807.436406][T28649]  ksys_write+0x12a/0x250
[ 1807.436450][T28649]  ? __pfx_ksys_write+0x10/0x10
[ 1807.436508][T28649]  do_syscall_64+0xcd/0x490
[ 1807.436562][T28649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1807.436595][T28649] RIP: 0033:0x7fbf8dd8e929
[ 1807.436620][T28649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1807.436652][T28649] RSP: 002b:00007fbf8ec5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1807.436681][T28649] RAX: ffffffffffffffda RBX: 00007fbf8dfb5fa0 RCX: 00007fbf8dd8e929
[ 1807.436701][T28649] RDX: 000000000000003a RSI: 00002000000000c0 RDI: 0000000000000003
[ 1807.436720][T28649] RBP: 00007fbf8ec5f090 R08: 0000000000000000 R09: 0000000000000000
[ 1807.436740][T28649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1807.436757][T28649] R13: 0000000000000000 R14: 00007fbf8dfb5fa0 R15: 00007ffd77881ce8
[ 1807.436799][T28649]  </TASK>
[ 1809.706273][T28670] netlink: 342 bytes leftover after parsing attributes in process `syz.5.6887'.
[ 1810.217609][T28676] FAULT_INJECTION: forcing a failure.
[ 1810.217609][T28676] name failslab, interval 1, probability 0, space 0, times 0
[ 1810.352404][T28676] CPU: 0 UID: 0 PID: 28676 Comm: syz.2.6889 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1810.352460][T28676] Tainted: [U]=USER
[ 1810.352472][T28676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1810.352493][T28676] Call Trace:
[ 1810.352505][T28676]  <TASK>
[ 1810.352518][T28676]  dump_stack_lvl+0x16c/0x1f0
[ 1810.352575][T28676]  should_fail_ex+0x512/0x640
[ 1810.352623][T28676]  ? fs_reclaim_acquire+0xae/0x150
[ 1810.352667][T28676]  should_failslab+0xc2/0x120
[ 1810.352700][T28676]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1810.352750][T28676]  ? security_inode_alloc+0x3b/0x2b0
[ 1810.352791][T28676]  security_inode_alloc+0x3b/0x2b0
[ 1810.352830][T28676]  inode_init_always_gfp+0xce4/0x1030
[ 1810.352883][T28676]  alloc_inode+0x86/0x240
[ 1810.352917][T28676]  sock_alloc+0x40/0x280
[ 1810.352952][T28676]  __sock_create+0xc1/0x8d0
[ 1810.352999][T28676]  __sys_socket+0x14d/0x260
[ 1810.353039][T28676]  ? __pfx___sys_socket+0x10/0x10
[ 1810.353079][T28676]  ? xfd_validate_state+0x61/0x180
[ 1810.353121][T28676]  ? __pfx___do_sys_close_range+0x10/0x10
[ 1810.353179][T28676]  __x64_sys_socket+0x72/0xb0
[ 1810.353218][T28676]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1810.353267][T28676]  do_syscall_64+0xcd/0x490
[ 1810.353322][T28676]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1810.353357][T28676] RIP: 0033:0x7fbf8dd8e929
[ 1810.353384][T28676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1810.353425][T28676] RSP: 002b:00007fbf8ec5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1810.353458][T28676] RAX: ffffffffffffffda RBX: 00007fbf8dfb5fa0 RCX: 00007fbf8dd8e929
[ 1810.353485][T28676] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[ 1810.353505][T28676] RBP: 00007fbf8de10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1810.353526][T28676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1810.353546][T28676] R13: 0000000000000000 R14: 00007fbf8dfb5fa0 R15: 00007ffd77881ce8
[ 1810.353598][T28676]  </TASK>
[ 1810.353634][T28676] socket: no more sockets
[ 1810.600792][T28678] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6891'.
[ 1810.746383][T28683] FAULT_INJECTION: forcing a failure.
[ 1810.746383][T28683] name failslab, interval 1, probability 0, space 0, times 0
[ 1810.759716][T28683] CPU: 1 UID: 0 PID: 28683 Comm: syz.3.6892 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1810.759768][T28683] Tainted: [U]=USER
[ 1810.759780][T28683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1810.759801][T28683] Call Trace:
[ 1810.759813][T28683]  <TASK>
[ 1810.759826][T28683]  dump_stack_lvl+0x16c/0x1f0
[ 1810.759884][T28683]  should_fail_ex+0x512/0x640
[ 1810.759931][T28683]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1810.759979][T28683]  should_failslab+0xc2/0x120
[ 1810.760012][T28683]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1810.760058][T28683]  ? pkcs7_parse_message+0x52/0x720
[ 1810.760106][T28683]  ? __pfx__request_firmware+0x10/0x10
[ 1810.760153][T28683]  pkcs7_parse_message+0x52/0x720
[ 1810.760206][T28683]  verify_pkcs7_signature+0x30/0xa0
[ 1810.760244][T28683]  valid_regdb+0x215/0x590
[ 1810.760280][T28683]  ? __pfx___mutex_lock+0x10/0x10
[ 1810.760334][T28683]  ? __pfx_valid_regdb+0x10/0x10
[ 1810.760378][T28683]  reg_reload_regdb+0x11e/0x460
[ 1810.760419][T28683]  ? __pfx_reg_reload_regdb+0x10/0x10
[ 1810.760461][T28683]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1810.760509][T28683]  ? nl80211_pre_doit+0x1b0/0xb10
[ 1810.760564][T28683]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1810.760612][T28683]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1810.760662][T28683]  ? rcu_is_watching+0x12/0xc0
[ 1810.760709][T28683]  ? bpf_lsm_capable+0x9/0x10
[ 1810.760749][T28683]  ? security_capable+0x7e/0x260
[ 1810.760811][T28683]  genl_rcv_msg+0x55c/0x800
[ 1810.760873][T28683]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1810.760914][T28683]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1810.760963][T28683]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[ 1810.760999][T28683]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1810.761065][T28683]  netlink_rcv_skb+0x158/0x420
[ 1810.761102][T28683]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1810.761147][T28683]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1810.761201][T28683]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1810.761240][T28683]  genl_rcv+0x28/0x40
[ 1810.761275][T28683]  netlink_unicast+0x53d/0x7f0
[ 1810.761316][T28683]  ? __pfx_netlink_unicast+0x10/0x10
[ 1810.761364][T28683]  netlink_sendmsg+0x8d1/0xdd0
[ 1810.761406][T28683]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1810.761457][T28683]  ____sys_sendmsg+0xa98/0xc70
[ 1810.761507][T28683]  ? copy_msghdr_from_user+0x10a/0x160
[ 1810.761554][T28683]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1810.761588][T28683]  ? preempt_schedule_thunk+0x16/0x30
[ 1810.761643][T28683]  ? try_to_wake_up+0xa2f/0x1680
[ 1810.761682][T28683]  ___sys_sendmsg+0x134/0x1d0
[ 1810.761733][T28683]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1810.761777][T28683]  ? __lock_acquire+0x622/0x1c90
[ 1810.761865][T28683]  __sys_sendmsg+0x16d/0x220
[ 1810.761915][T28683]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1810.761961][T28683]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1810.762023][T28683]  do_syscall_64+0xcd/0x490
[ 1810.762077][T28683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1810.762109][T28683] RIP: 0033:0x7fe8dff8e929
[ 1810.762133][T28683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1810.762165][T28683] RSP: 002b:00007fe8dddf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1810.762194][T28683] RAX: ffffffffffffffda RBX: 00007fe8e01b5fa0 RCX: 00007fe8dff8e929
[ 1810.762214][T28683] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000007
[ 1810.762233][T28683] RBP: 00007fe8e0010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1810.762253][T28683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1810.762271][T28683] R13: 0000000000000000 R14: 00007fe8e01b5fa0 R15: 00007ffcdcf461a8
[ 1810.762311][T28683]  </TASK>
[ 1811.119225][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1813.229117][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1813.236246][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1813.246420][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1813.269705][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1813.282161][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1813.288633][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1813.298249][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1813.310830][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1813.471233][T28716] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6901'.
[ 1813.965087][T28719] FAULT_INJECTION: forcing a failure.
[ 1813.965087][T28719] name failslab, interval 1, probability 0, space 0, times 0
[ 1814.043035][T28719] CPU: 0 UID: 0 PID: 28719 Comm: syz.3.6900 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1814.043095][T28719] Tainted: [U]=USER
[ 1814.043105][T28719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1814.043124][T28719] Call Trace:
[ 1814.043135][T28719]  <TASK>
[ 1814.043146][T28719]  dump_stack_lvl+0x16c/0x1f0
[ 1814.043200][T28719]  should_fail_ex+0x512/0x640
[ 1814.043242][T28719]  ? __kmalloc_noprof+0xbf/0x510
[ 1814.043290][T28719]  ? rsassa_pkcs1_verify+0x27e/0xb60
[ 1814.043321][T28719]  should_failslab+0xc2/0x120
[ 1814.043350][T28719]  __kmalloc_noprof+0xd2/0x510
[ 1814.043398][T28719]  ? mpi_alloc+0x17f/0x230
[ 1814.043435][T28719]  rsassa_pkcs1_verify+0x27e/0xb60
[ 1814.043470][T28719]  ? rsa_set_pub_key+0xb4/0x270
[ 1814.043516][T28719]  ? __pfx_rsa_set_pub_key+0x10/0x10
[ 1814.043560][T28719]  ? __pfx_rsassa_pkcs1_verify+0x10/0x10
[ 1814.043608][T28719]  ? rsa_max_size+0xd/0x70
[ 1814.043647][T28719]  ? rsassa_pkcs1_set_pub_key+0x17d/0x1f0
[ 1814.043681][T28719]  public_key_verify_signature+0x672/0x970
[ 1814.043725][T28719]  ? __pfx_public_key_verify_signature+0x10/0x10
[ 1814.043794][T28719]  x509_check_for_self_signed+0x31a/0x500
[ 1814.043842][T28719]  x509_cert_parse+0x5f8/0x900
[ 1814.043876][T28719]  ? kasan_save_stack+0x42/0x60
[ 1814.043918][T28719]  ? kasan_save_stack+0x33/0x60
[ 1814.043957][T28719]  ? kasan_save_track+0x14/0x30
[ 1814.044001][T28719]  pkcs7_extract_cert+0xa4/0x320
[ 1814.044061][T28719]  asn1_ber_decoder+0xc5f/0x1df0
[ 1814.044128][T28719]  ? __pfx_asn1_ber_decoder+0x10/0x10
[ 1814.044206][T28719]  pkcs7_parse_message+0x288/0x720
[ 1814.044253][T28719]  verify_pkcs7_signature+0x30/0xa0
[ 1814.044308][T28719]  valid_regdb+0x215/0x590
[ 1814.044345][T28719]  ? __pfx___mutex_lock+0x10/0x10
[ 1814.044397][T28719]  ? __pfx_valid_regdb+0x10/0x10
[ 1814.044439][T28719]  reg_reload_regdb+0x11e/0x460
[ 1814.044477][T28719]  ? __pfx_reg_reload_regdb+0x10/0x10
[ 1814.044517][T28719]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1814.044563][T28719]  ? nl80211_pre_doit+0x1b0/0xb10
[ 1814.044613][T28719]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1814.044656][T28719]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1814.044694][T28719]  ? rcu_is_watching+0x12/0xc0
[ 1814.044741][T28719]  ? bpf_lsm_capable+0x9/0x10
[ 1814.044779][T28719]  ? security_capable+0x7e/0x260
[ 1814.044836][T28719]  genl_rcv_msg+0x55c/0x800
[ 1814.044880][T28719]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1814.044920][T28719]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1814.044967][T28719]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[ 1814.045002][T28719]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1814.045072][T28719]  netlink_rcv_skb+0x158/0x420
[ 1814.045108][T28719]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1814.045149][T28719]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1814.045200][T28719]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1814.045239][T28719]  genl_rcv+0x28/0x40
[ 1814.045272][T28719]  netlink_unicast+0x53d/0x7f0
[ 1814.045313][T28719]  ? __pfx_netlink_unicast+0x10/0x10
[ 1814.045360][T28719]  netlink_sendmsg+0x8d1/0xdd0
[ 1814.045401][T28719]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1814.045450][T28719]  ____sys_sendmsg+0xa98/0xc70
[ 1814.045499][T28719]  ? copy_msghdr_from_user+0x10a/0x160
[ 1814.045546][T28719]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1814.045588][T28719]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1814.045636][T28719]  ___sys_sendmsg+0x134/0x1d0
[ 1814.045686][T28719]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1814.045730][T28719]  ? __lock_acquire+0x622/0x1c90
[ 1814.045819][T28719]  __sys_sendmsg+0x16d/0x220
[ 1814.045898][T28719]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1814.045943][T28719]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1814.046001][T28719]  do_syscall_64+0xcd/0x490
[ 1814.046060][T28719]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1814.046093][T28719] RIP: 0033:0x7fe8dff8e929
[ 1814.046119][T28719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1814.046150][T28719] RSP: 002b:00007fe8dddf6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1814.046180][T28719] RAX: ffffffffffffffda RBX: 00007fe8e01b5fa0 RCX: 00007fe8dff8e929
[ 1814.046201][T28719] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000006
[ 1814.046221][T28719] RBP: 00007fe8e0010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1814.046241][T28719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1814.046259][T28719] R13: 0000000000000000 R14: 00007fe8e01b5fa0 R15: 00007ffcdcf461a8
[ 1814.046299][T28719]  </TASK>
[ 1814.633256][T28723] random: crng reseeded on system resumption
[ 1814.672878][T28723] FAULT_INJECTION: forcing a failure.
[ 1814.672878][T28723] name failslab, interval 1, probability 0, space 0, times 0
[ 1814.685567][T28723] CPU: 1 UID: 0 PID: 28723 Comm: syz.5.6902 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1814.685616][T28723] Tainted: [U]=USER
[ 1814.685626][T28723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1814.685644][T28723] Call Trace:
[ 1814.685655][T28723]  <TASK>
[ 1814.685667][T28723]  dump_stack_lvl+0x116/0x1f0
[ 1814.685718][T28723]  should_fail_ex+0x512/0x640
[ 1814.685767][T28723]  should_failslab+0xc2/0x120
[ 1814.685795][T28723]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1814.685836][T28723]  ? alloc_fw_cache_entry+0x3f/0xd0
[ 1814.685876][T28723]  ? __pfx_fw_name_devm_release+0x10/0x10
[ 1814.685914][T28723]  alloc_fw_cache_entry+0x3f/0xd0
[ 1814.685950][T28723]  dev_create_fw_entry+0x3d/0x150
[ 1814.685991][T28723]  ? __pfx_fw_name_devm_release+0x10/0x10
[ 1814.686024][T28723]  devres_for_each_res+0x170/0x1d0
[ 1814.686052][T28723]  ? __pfx_devm_name_match+0x10/0x10
[ 1814.686084][T28723]  ? __pfx_dev_create_fw_entry+0x10/0x10
[ 1814.686123][T28723]  ? __pfx_dev_cache_fw_image+0x10/0x10
[ 1814.686162][T28723]  dev_cache_fw_image+0xa2/0x490
[ 1814.686202][T28723]  ? __pfx_dev_cache_fw_image+0x10/0x10
[ 1814.686254][T28723]  ? __pfx_dev_cache_fw_image+0x10/0x10
[ 1814.686293][T28723]  dpm_for_each_dev+0x5a/0xb0
[ 1814.686330][T28723]  fw_pm_notify+0x81/0x150
[ 1814.686364][T28723]  notifier_call_chain+0xbc/0x410
[ 1814.686398][T28723]  ? __pfx_fw_pm_notify+0x10/0x10
[ 1814.686440][T28723]  blocking_notifier_call_chain_robust+0xc8/0x160
[ 1814.686480][T28723]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[ 1814.686531][T28723]  pm_notifier_call_chain_robust+0x27/0x60
[ 1814.686573][T28723]  snapshot_open+0x218/0x2b0
[ 1814.686607][T28723]  ? __pfx_snapshot_open+0x10/0x10
[ 1814.686644][T28723]  misc_open+0x35a/0x420
[ 1814.686682][T28723]  ? __pfx_misc_open+0x10/0x10
[ 1814.686717][T28723]  chrdev_open+0x231/0x6a0
[ 1814.686762][T28723]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1814.686799][T28723]  ? __pfx_chrdev_open+0x10/0x10
[ 1814.686849][T28723]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1814.686895][T28723]  do_dentry_open+0x744/0x1c10
[ 1814.686938][T28723]  ? __pfx_chrdev_open+0x10/0x10
[ 1814.686991][T28723]  vfs_open+0x82/0x3f0
[ 1814.687027][T28723]  path_openat+0x1de4/0x2cb0
[ 1814.687082][T28723]  ? __pfx_path_openat+0x10/0x10
[ 1814.687127][T28723]  ? __lock_acquire+0xb8a/0x1c90
[ 1814.687170][T28723]  do_filp_open+0x20b/0x470
[ 1814.687212][T28723]  ? __pfx_do_filp_open+0x10/0x10
[ 1814.687292][T28723]  ? alloc_fd+0x471/0x7d0
[ 1814.687342][T28723]  do_sys_openat2+0x11b/0x1d0
[ 1814.687374][T28723]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1814.687422][T28723]  __x64_sys_openat+0x174/0x210
[ 1814.687456][T28723]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1814.687506][T28723]  do_syscall_64+0xcd/0x490
[ 1814.687556][T28723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1814.687587][T28723] RIP: 0033:0x7f8a9178e929
[ 1814.687612][T28723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1814.687643][T28723] RSP: 002b:00007f8a925e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1814.687671][T28723] RAX: ffffffffffffffda RBX: 00007f8a919b5fa0 RCX: 00007f8a9178e929
[ 1814.687690][T28723] RDX: 0000000000080201 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1814.687710][T28723] RBP: 00007f8a91810b39 R08: 0000000000000000 R09: 0000000000000000
[ 1814.687727][T28723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1814.687745][T28723] R13: 0000000000000000 R14: 00007f8a919b5fa0 R15: 00007ffd43669b08
[ 1814.687783][T28723]  </TASK>
[ 1815.033041][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1817.930955][T28768] snd_aloop snd_aloop.0: control 16781581:65533:6:�'x?F���/��zF˷fC���:0 is already present
[ 1818.360279][T28774] FAULT_INJECTION: forcing a failure.
[ 1818.360279][T28774] name failslab, interval 1, probability 0, space 0, times 0
[ 1818.446090][T28774] CPU: 1 UID: 0 PID: 28774 Comm: syz.5.6918 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1818.446147][T28774] Tainted: [U]=USER
[ 1818.446159][T28774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1818.446179][T28774] Call Trace:
[ 1818.446191][T28774]  <TASK>
[ 1818.446204][T28774]  dump_stack_lvl+0x16c/0x1f0
[ 1818.446262][T28774]  should_fail_ex+0x512/0x640
[ 1818.446310][T28774]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1818.446360][T28774]  should_failslab+0xc2/0x120
[ 1818.446393][T28774]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1818.446435][T28774]  ? netlink_sendmsg+0x8d1/0xdd0
[ 1818.446470][T28774]  ? ____sys_sendmsg+0xa98/0xc70
[ 1818.446505][T28774]  ? ___sys_sendmsg+0x134/0x1d0
[ 1818.446552][T28774]  ? mpi_alloc+0x46/0x230
[ 1818.446597][T28774]  mpi_alloc+0x46/0x230
[ 1818.446632][T28774]  ? mpi_free+0x14/0x160
[ 1818.446669][T28774]  mpi_read_raw_data+0x133/0x4a0
[ 1818.446703][T28774]  ? rsa_free_mpi_key+0x15a/0x3a0
[ 1818.446760][T28774]  rsa_set_pub_key+0x110/0x270
[ 1818.446812][T28774]  ? __pfx_rsa_set_pub_key+0x10/0x10
[ 1818.446883][T28774]  ? __asan_memcpy+0x3c/0x60
[ 1818.446940][T28774]  rsassa_pkcs1_set_pub_key+0xce/0x1f0
[ 1818.446983][T28774]  public_key_verify_signature+0x779/0x970
[ 1818.447035][T28774]  ? __pfx_public_key_verify_signature+0x10/0x10
[ 1818.447080][T28774]  ? crypto_destroy_tfm+0x14d/0x2b0
[ 1818.447145][T28774]  pkcs7_verify+0x32f/0x1b20
[ 1818.447211][T28774]  verify_pkcs7_message_sig+0xdd/0x250
[ 1818.447249][T28774]  ? __pfx_verify_pkcs7_message_sig+0x10/0x10
[ 1818.447285][T28774]  ? kfree+0x2b4/0x4d0
[ 1818.447322][T28774]  ? public_key_signature_free+0xda/0x110
[ 1818.447362][T28774]  ? pkcs7_parse_message+0x531/0x720
[ 1818.447417][T28774]  ? pkcs7_parse_message+0x536/0x720
[ 1818.447469][T28774]  verify_pkcs7_signature+0x6d/0xa0
[ 1818.447511][T28774]  valid_regdb+0x215/0x590
[ 1818.447548][T28774]  ? __pfx___mutex_lock+0x10/0x10
[ 1818.447601][T28774]  ? __pfx_valid_regdb+0x10/0x10
[ 1818.447646][T28774]  reg_reload_regdb+0x11e/0x460
[ 1818.447689][T28774]  ? __pfx_reg_reload_regdb+0x10/0x10
[ 1818.447751][T28774]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1818.447802][T28774]  ? nl80211_pre_doit+0x1b0/0xb10
[ 1818.447858][T28774]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1818.447912][T28774]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1818.447970][T28774]  ? rcu_is_watching+0x12/0xc0
[ 1818.448053][T28774]  ? bpf_lsm_capable+0x9/0x10
[ 1818.448096][T28774]  ? security_capable+0x7e/0x260
[ 1818.448195][T28774]  genl_rcv_msg+0x55c/0x800
[ 1818.448252][T28774]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1818.448307][T28774]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1818.448357][T28774]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[ 1818.448397][T28774]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1818.448454][T28774]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1818.448504][T28774]  ? try_to_wake_up+0x157/0x1680
[ 1818.448541][T28774]  netlink_rcv_skb+0x158/0x420
[ 1818.448579][T28774]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1818.448630][T28774]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1818.448710][T28774]  genl_rcv+0x28/0x40
[ 1818.448748][T28774]  netlink_unicast+0x53d/0x7f0
[ 1818.448791][T28774]  ? __pfx_netlink_unicast+0x10/0x10
[ 1818.448832][T28774]  ? __build_skb_around+0x278/0x3b0
[ 1818.448877][T28774]  ? is_vmalloc_addr+0x86/0xa0
[ 1818.448945][T28774]  netlink_sendmsg+0x8d1/0xdd0
[ 1818.448990][T28774]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1818.449046][T28774]  ____sys_sendmsg+0xa98/0xc70
[ 1818.449088][T28774]  ? copy_msghdr_from_user+0x10a/0x160
[ 1818.449141][T28774]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1818.449192][T28774]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1818.449249][T28774]  ___sys_sendmsg+0x134/0x1d0
[ 1818.449306][T28774]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1818.449356][T28774]  ? __lock_acquire+0x622/0x1c90
[ 1818.449455][T28774]  __sys_sendmsg+0x16d/0x220
[ 1818.449509][T28774]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1818.449562][T28774]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1818.449631][T28774]  do_syscall_64+0xcd/0x490
[ 1818.449690][T28774]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1818.449726][T28774] RIP: 0033:0x7f8a9178e929
[ 1818.449755][T28774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1818.449790][T28774] RSP: 002b:00007f8a925e4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1818.449823][T28774] RAX: ffffffffffffffda RBX: 00007f8a919b5fa0 RCX: 00007f8a9178e929
[ 1818.449847][T28774] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000006
[ 1818.449868][T28774] RBP: 00007f8a91810b39 R08: 0000000000000000 R09: 0000000000000000
[ 1818.449910][T28774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1818.449931][T28774] R13: 0000000000000000 R14: 00007f8a919b5fa0 R15: 00007ffd43669b08
[ 1818.449974][T28774]  </TASK>
[ 1818.908936][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1823.650250][T28838] Invalid ELF header magic: != ELF
[ 1824.519746][T28858] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1824.686242][T28863] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1826.172566][T28896] netlink: 342 bytes leftover after parsing attributes in process `syz.3.6938'.
[ 1827.383301][T24103] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[ 1827.390274][T24109] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1827.396742][T28868] Bluetooth: hci7: Opcode 0x0c03 failed: -110
[ 1827.403430][T28867] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[ 1827.410102][T28869] Bluetooth: hci8: Opcode 0x0c03 failed: -110
[ 1827.423351][T28870] Bluetooth: hci9: Opcode 0x0c03 failed: -110
[ 1827.455930][T28872] Bluetooth: hci10: Opcode 0x0c03 failed: -110
[ 1827.463388][T28871] Bluetooth: hci11: Opcode 0x0c03 failed: -110
[ 1827.538669][T28874] Bluetooth: hci12: Opcode 0x0c03 failed: -110
[ 1827.615918][T28875] Bluetooth: hci13: Opcode 0x0c03 failed: -110
[ 1827.703577][T28873] Bluetooth: hci14: Opcode 0x0c03 failed: -110
[ 1827.711365][T28876] Bluetooth: hci15: Opcode 0x0c03 failed: -110
[ 1827.775919][T28877] Bluetooth: hci16: Opcode 0x0c03 failed: -110
[ 1827.783989][T28878] Bluetooth: hci17: Opcode 0x0c03 failed: -110
[ 1827.790916][T28879] Bluetooth: hci18: Opcode 0x0c03 failed: -110
[ 1827.800864][T28881] Bluetooth: hci19: Opcode 0x0c03 failed: -110
[ 1827.855924][T28882] Bluetooth: hci22: Opcode 0x0c03 failed: -110
[ 1827.936247][T28883] Bluetooth: hci23: Opcode 0x0c03 failed: -110
[ 1827.943513][T28887] Bluetooth: hci24: Opcode 0x0c03 failed: -110
[ 1827.950628][T28886] Bluetooth: hci21: Opcode 0x0c03 failed: -110
[ 1827.965113][T28888] Bluetooth: hci20: Opcode 0x0c03 failed: -110
[ 1827.972036][T28889] Bluetooth: hci25: Opcode 0x0c03 failed: -110
[ 1827.982346][T28890] Bluetooth: hci26: Opcode 0x0c03 failed: -110
[ 1828.096006][T28892] Bluetooth: hci27: Opcode 0x0c03 failed: -110
[ 1828.103295][T28894] Bluetooth: hci28: Opcode 0x0c03 failed: -110
[ 1828.176048][T28891] Bluetooth: hci29: Opcode 0x0c03 failed: -110
[ 1828.183359][T28897] Bluetooth: hci31: Opcode 0x0c03 failed: -110
[ 1828.190299][T28895] Bluetooth: hci30: Opcode 0x0c03 failed: -110
[ 1828.257412][T28899] Bluetooth: hci33: Opcode 0x0c03 failed: -110
[ 1828.267553][T28900] Bluetooth: hci34: Opcode 0x0c03 failed: -110
[ 1828.274766][T28898] Bluetooth: hci32: Opcode 0x0c03 failed: -110
[ 1828.281710][T28902] Bluetooth: hci35: Opcode 0x0c03 failed: -110
[ 1828.336269][T28903] Bluetooth: hci36: Opcode 0x0c03 failed: -110
[ 1829.038826][T28937] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1829.152598][T28934] dyndbg: expected <4096 bytes into control
[ 1829.190864][T28937] netlink: 342 bytes leftover after parsing attributes in process `syz.4.6950'.
[ 1831.115068][T28960] random: crng reseeded on system resumption
[ 1831.197659][T28960] FAULT_INJECTION: forcing a failure.
[ 1831.197659][T28960] name failslab, interval 1, probability 0, space 0, times 0
[ 1831.319836][T28960] CPU: 1 UID: 0 PID: 28960 Comm: syz.5.6953 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1831.319893][T28960] Tainted: [U]=USER
[ 1831.319905][T28960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1831.319924][T28960] Call Trace:
[ 1831.319935][T28960]  <TASK>
[ 1831.319949][T28960]  dump_stack_lvl+0x16c/0x1f0
[ 1831.320007][T28960]  should_fail_ex+0x512/0x640
[ 1831.320063][T28960]  should_failslab+0xc2/0x120
[ 1831.320096][T28960]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1831.320140][T28960]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1831.320190][T28960]  ? find_held_lock+0x2b/0x80
[ 1831.320220][T28960]  ? async_schedule_node_domain+0x54/0x120
[ 1831.320271][T28960]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[ 1831.320315][T28960]  async_schedule_node_domain+0x54/0x120
[ 1831.320354][T28960]  dev_cache_fw_image+0x38e/0x490
[ 1831.320396][T28960]  ? __pfx_dev_cache_fw_image+0x10/0x10
[ 1831.320441][T28960]  ? __pfx_dev_cache_fw_image+0x10/0x10
[ 1831.320482][T28960]  dpm_for_each_dev+0x5a/0xb0
[ 1831.320528][T28960]  fw_pm_notify+0x81/0x150
[ 1831.320563][T28960]  notifier_call_chain+0xbc/0x410
[ 1831.320597][T28960]  ? __pfx_fw_pm_notify+0x10/0x10
[ 1831.320643][T28960]  blocking_notifier_call_chain_robust+0xc8/0x160
[ 1831.320683][T28960]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[ 1831.320735][T28960]  pm_notifier_call_chain_robust+0x27/0x60
[ 1831.320780][T28960]  snapshot_open+0x218/0x2b0
[ 1831.320816][T28960]  ? __pfx_snapshot_open+0x10/0x10
[ 1831.320858][T28960]  misc_open+0x35a/0x420
[ 1831.320895][T28960]  ? __pfx_misc_open+0x10/0x10
[ 1831.320951][T28960]  chrdev_open+0x231/0x6a0
[ 1831.321001][T28960]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1831.321043][T28960]  ? __pfx_chrdev_open+0x10/0x10
[ 1831.321096][T28960]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1831.321147][T28960]  do_dentry_open+0x744/0x1c10
[ 1831.321196][T28960]  ? __pfx_chrdev_open+0x10/0x10
[ 1831.321256][T28960]  vfs_open+0x82/0x3f0
[ 1831.321297][T28960]  path_openat+0x1de4/0x2cb0
[ 1831.321360][T28960]  ? __pfx_path_openat+0x10/0x10
[ 1831.321411][T28960]  ? __lock_acquire+0xb8a/0x1c90
[ 1831.321460][T28960]  do_filp_open+0x20b/0x470
[ 1831.321509][T28960]  ? __pfx_do_filp_open+0x10/0x10
[ 1831.321596][T28960]  ? alloc_fd+0x471/0x7d0
[ 1831.321653][T28960]  do_sys_openat2+0x11b/0x1d0
[ 1831.321688][T28960]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1831.321742][T28960]  __x64_sys_openat+0x174/0x210
[ 1831.321782][T28960]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1831.321839][T28960]  do_syscall_64+0xcd/0x490
[ 1831.321893][T28960]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1831.321926][T28960] RIP: 0033:0x7f8a9178e929
[ 1831.321954][T28960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1831.321987][T28960] RSP: 002b:00007f8a925e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1831.322020][T28960] RAX: ffffffffffffffda RBX: 00007f8a919b5fa0 RCX: 00007f8a9178e929
[ 1831.322043][T28960] RDX: 0000000000080201 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1831.322064][T28960] RBP: 00007f8a91810b39 R08: 0000000000000000 R09: 0000000000000000
[ 1831.322084][T28960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1831.322101][T28960] R13: 0000000000000000 R14: 00007f8a919b5fa0 R15: 00007ffd43669b08
[ 1831.322142][T28960]  </TASK>
[ 1831.656401][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1832.066061][T28960] 
[ 1832.068551][T28960] ======================================================
[ 1832.075602][T28960] WARNING: possible circular locking dependency detected
[ 1832.082642][T28960] 6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 Tainted: G     U             
[ 1832.091328][T28960] ------------------------------------------------------
[ 1832.098354][T28960] syz.5.6953/28960 is trying to acquire lock:
[ 1832.104441][T28960] ffff88807645b6c8 (&ima_iint_mutex_key[depth]){+.+.}-{4:4}, at: process_measurement+0x7e0/0x23e0
[ 1832.115125][T28960] 
[ 1832.115125][T28960] but task is already holding lock:
[ 1832.122510][T28960] ffffffff8f50ffe8 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2d/0xb0
[ 1832.131436][T28960] 
[ 1832.131436][T28960] which lock already depends on the new lock.
[ 1832.131436][T28960] 
[ 1832.141854][T28960] 
[ 1832.141854][T28960] the existing dependency chain (in reverse order) is:
[ 1832.150888][T28960] 
[ 1832.150888][T28960] -> #4 (dpm_list_mtx){+.+.}-{4:4}:
[ 1832.158309][T28960]        __mutex_lock+0x199/0xb90
[ 1832.163388][T28960]        device_pm_add+0x87/0x3e0
[ 1832.168448][T28960]        device_add+0x9cd/0x1a70
[ 1832.173417][T28960]        device_create_groups_vargs+0x1f8/0x270
[ 1832.179684][T28960]        device_create+0xed/0x130
[ 1832.184730][T28960]        msr_device_create+0x31/0x70
[ 1832.190041][T28960]        cpuhp_invoke_callback+0x3d5/0xa10
[ 1832.195873][T28960]        cpuhp_thread_fun+0x47e/0x6f0
[ 1832.201286][T28960]        smpboot_thread_fn+0x3f7/0xae0
[ 1832.206782][T28960]        kthread+0x3c5/0x780
[ 1832.211411][T28960]        ret_from_fork+0x5d4/0x6f0
[ 1832.216556][T28960]        ret_from_fork_asm+0x1a/0x30
[ 1832.221867][T28960] 
[ 1832.221867][T28960] -> #3 (cpuhp_state-up){+.+.}-{0:0}:
[ 1832.229458][T28960]        cpuhp_thread_fun+0x193/0x6f0
[ 1832.234852][T28960]        smpboot_thread_fn+0x3f7/0xae0
[ 1832.240340][T28960]        kthread+0x3c5/0x780
[ 1832.244991][T28960]        ret_from_fork+0x5d4/0x6f0
[ 1832.250139][T28960]        ret_from_fork_asm+0x1a/0x30
[ 1832.255453][T28960] 
[ 1832.255453][T28960] -> #2 (cpu_hotplug_lock){++++}-{0:0}:
[ 1832.263235][T28960]        cpus_read_lock+0x42/0x160
[ 1832.268377][T28960]        ring_buffer_resize+0x105/0x15c0
[ 1832.274040][T28960]        __tracing_resize_ring_buffer.part.0+0x52/0x1f0
[ 1832.281027][T28960]        tracing_update_buffers+0x102/0x130
[ 1832.286956][T28960]        event_pid_write.isra.0+0xf8/0x7c0
[ 1832.292796][T28960]        vfs_write+0x29d/0x1150
[ 1832.297703][T28960]        ksys_write+0x12a/0x250
[ 1832.302597][T28960]        do_syscall_64+0xcd/0x490
[ 1832.307684][T28960]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1832.314126][T28960] 
[ 1832.314126][T28960] -> #1 (trace_types_lock){+.+.}-{4:4}:
[ 1832.321894][T28960]        __mutex_lock+0x199/0xb90
[ 1832.326959][T28960]        tracing_check_open_get_tr.part.0+0x45/0x130
[ 1832.333674][T28960]        tracing_check_open_get_tr+0x34/0x50
[ 1832.339717][T28960]        ftrace_event_set_open+0x50/0x380
[ 1832.345483][T28960]        do_dentry_open+0x744/0x1c10
[ 1832.350808][T28960]        vfs_open+0x82/0x3f0
[ 1832.355425][T28960]        dentry_open+0x71/0xd0
[ 1832.360213][T28960]        ima_calc_file_hash+0x2b6/0x490
[ 1832.365803][T28960]        ima_collect_measurement+0x897/0xa40
[ 1832.371805][T28960]        process_measurement+0x11fa/0x23e0
[ 1832.377655][T28960]        ima_file_check+0xc5/0x110
[ 1832.382804][T28960]        security_file_post_open+0x8e/0x210
[ 1832.388723][T28960]        path_openat+0x1404/0x2cb0
[ 1832.393869][T28960]        do_filp_open+0x20b/0x470
[ 1832.398933][T28960]        do_sys_openat2+0x11b/0x1d0
[ 1832.404156][T28960]        __x64_sys_openat+0x174/0x210
[ 1832.409555][T28960]        do_syscall_64+0xcd/0x490
[ 1832.414627][T28960]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1832.421073][T28960] 
[ 1832.421073][T28960] -> #0 (&ima_iint_mutex_key[depth]){+.+.}-{4:4}:
[ 1832.429711][T28960]        __lock_acquire+0x126f/0x1c90
[ 1832.435112][T28960]        lock_acquire+0x179/0x350
[ 1832.440171][T28960]        __mutex_lock+0x199/0xb90
[ 1832.445241][T28960]        process_measurement+0x7e0/0x23e0
[ 1832.450999][T28960]        ima_file_check+0xc5/0x110
[ 1832.456153][T28960]        security_file_post_open+0x8e/0x210
[ 1832.462079][T28960]        path_openat+0x1404/0x2cb0
[ 1832.467219][T28960]        do_file_open_root+0x322/0x610
[ 1832.472713][T28960]        file_open_root+0x2a7/0x450
[ 1832.477947][T28960]        kernel_read_file_from_path_initns+0x189/0x260
[ 1832.484837][T28960]        _request_firmware+0x744/0x1470
[ 1832.490428][T28960]        __async_dev_cache_fw_image+0xb1/0x340
[ 1832.496641][T28960]        async_schedule_node_domain+0xd4/0x120
[ 1832.502836][T28960]        dev_cache_fw_image+0x38e/0x490
[ 1832.508409][T28960]        dpm_for_each_dev+0x5a/0xb0
[ 1832.513653][T28960]        fw_pm_notify+0x81/0x150
[ 1832.518618][T28960]        notifier_call_chain+0xbc/0x410
[ 1832.524195][T28960]        blocking_notifier_call_chain_robust+0xc8/0x160
[ 1832.531178][T28960]        pm_notifier_call_chain_robust+0x27/0x60
[ 1832.537643][T28960]        snapshot_open+0x218/0x2b0
[ 1832.542804][T28960]        misc_open+0x35a/0x420
[ 1832.547607][T28960]        chrdev_open+0x231/0x6a0
[ 1832.552678][T28960]        do_dentry_open+0x744/0x1c10
[ 1832.558005][T28960]        vfs_open+0x82/0x3f0
[ 1832.562621][T28960]        path_openat+0x1de4/0x2cb0
[ 1832.567763][T28960]        do_filp_open+0x20b/0x470
[ 1832.572828][T28960]        do_sys_openat2+0x11b/0x1d0
[ 1832.578045][T28960]        __x64_sys_openat+0x174/0x210
[ 1832.583442][T28960]        do_syscall_64+0xcd/0x490
[ 1832.588494][T28960]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1832.594928][T28960] 
[ 1832.594928][T28960] other info that might help us debug this:
[ 1832.594928][T28960] 
[ 1832.605178][T28960] Chain exists of:
[ 1832.605178][T28960]   &ima_iint_mutex_key[depth] --> cpuhp_state-up --> dpm_list_mtx
[ 1832.605178][T28960] 
[ 1832.618868][T28960]  Possible unsafe locking scenario:
[ 1832.618868][T28960] 
[ 1832.626323][T28960]        CPU0                    CPU1
[ 1832.631699][T28960]        ----                    ----
[ 1832.637164][T28960]   lock(dpm_list_mtx);
[ 1832.641349][T28960]                                lock(cpuhp_state-up);
[ 1832.648228][T28960]                                lock(dpm_list_mtx);
[ 1832.655027][T28960]   lock(&ima_iint_mutex_key[depth]);
[ 1832.660488][T28960] 
[ 1832.660488][T28960]  *** DEADLOCK ***
[ 1832.660488][T28960] 
[ 1832.668647][T28960] 5 locks held by syz.5.6953/28960:
[ 1832.673856][T28960]  #0: ffffffff8f303568 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[ 1832.682356][T28960]  #1: ffffffff8e487cc8 (system_transition_mutex){+.+.}-{4:4}, at: lock_system_sleep+0x87/0xa0
[ 1832.692760][T28960]  #2: ffffffff8e4c8470 ((pm_chain_head).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain_robust+0xa8/0x160
[ 1832.704648][T28960]  #3: ffffffff8f5155e8 (fw_lock){+.+.}-{4:4}, at: fw_pm_notify+0x69/0x150
[ 1832.713326][T28960]  #4: ffffffff8f50ffe8 (dpm_list_mtx){+.+.}-{4:4}, at: dpm_for_each_dev+0x2d/0xb0
[ 1832.722689][T28960] 
[ 1832.722689][T28960] stack backtrace:
[ 1832.728594][T28960] CPU: 0 UID: 0 PID: 28960 Comm: syz.5.6953 Tainted: G     U              6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1832.728634][T28960] Tainted: [U]=USER
[ 1832.728643][T28960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1832.728659][T28960] Call Trace:
[ 1832.728669][T28960]  <TASK>
[ 1832.728678][T28960]  dump_stack_lvl+0x116/0x1f0
[ 1832.728718][T28960]  print_circular_bug+0x275/0x350
[ 1832.728753][T28960]  check_noncircular+0x14c/0x170
[ 1832.728788][T28960]  __lock_acquire+0x126f/0x1c90
[ 1832.728825][T28960]  lock_acquire+0x179/0x350
[ 1832.728856][T28960]  ? process_measurement+0x7e0/0x23e0
[ 1832.728895][T28960]  ? __pfx___might_resched+0x10/0x10
[ 1832.728924][T28960]  __mutex_lock+0x199/0xb90
[ 1832.728962][T28960]  ? process_measurement+0x7e0/0x23e0
[ 1832.728999][T28960]  ? process_measurement+0x7e0/0x23e0
[ 1832.729036][T28960]  ? __pfx___mutex_lock+0x10/0x10
[ 1832.729074][T28960]  ? __pfx___might_resched+0x10/0x10
[ 1832.729099][T28960]  ? find_held_lock+0x2b/0x80
[ 1832.729122][T28960]  ? down_write+0x14d/0x200
[ 1832.729149][T28960]  ? process_measurement+0x7e0/0x23e0
[ 1832.729184][T28960]  process_measurement+0x7e0/0x23e0
[ 1832.729225][T28960]  ? __pfx_process_measurement+0x10/0x10
[ 1832.729264][T28960]  ? find_held_lock+0x2b/0x80
[ 1832.729287][T28960]  ? fscrypt_file_open+0x47c/0x590
[ 1832.729336][T28960]  ? __pfx___fsnotify_parent+0x10/0x10
[ 1832.729369][T28960]  ima_file_check+0xc5/0x110
[ 1832.729410][T28960]  ? __pfx_ima_file_check+0x10/0x10
[ 1832.729448][T28960]  ? vfs_open+0x2e3/0x3f0
[ 1832.729474][T28960]  security_file_post_open+0x8e/0x210
[ 1832.729506][T28960]  path_openat+0x1404/0x2cb0
[ 1832.729544][T28960]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1832.729569][T28960]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[ 1832.729607][T28960]  ? __pfx_path_openat+0x10/0x10
[ 1832.729642][T28960]  ? __asan_memcpy+0x3c/0x60
[ 1832.729678][T28960]  do_file_open_root+0x322/0x610
[ 1832.729715][T28960]  ? __pfx_do_file_open_root+0x10/0x10
[ 1832.729764][T28960]  ? vsnprintf+0x318/0x1160
[ 1832.729800][T28960]  file_open_root+0x2a7/0x450
[ 1832.729838][T28960]  ? __pfx_file_open_root+0x10/0x10
[ 1832.729873][T28960]  ? find_held_lock+0x2b/0x80
[ 1832.729896][T28960]  ? kernel_read_file_from_path_initns+0x17a/0x260
[ 1832.729926][T28960]  kernel_read_file_from_path_initns+0x189/0x260
[ 1832.729954][T28960]  ? __pfx_kernel_read_file_from_path_initns+0x10/0x10
[ 1832.729981][T28960]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1832.730008][T28960]  ? _request_firmware+0x503/0x1470
[ 1832.730041][T28960]  _request_firmware+0x744/0x1470
[ 1832.730078][T28960]  ? __pfx__request_firmware+0x10/0x10
[ 1832.730111][T28960]  ? dump_stack_lvl+0x1a3/0x1f0
[ 1832.730150][T28960]  __async_dev_cache_fw_image+0xb1/0x340
[ 1832.730184][T28960]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[ 1832.730220][T28960]  ? mark_held_locks+0x49/0x80
[ 1832.730251][T28960]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1832.730286][T28960]  ? __pfx___async_dev_cache_fw_image+0x10/0x10
[ 1832.730321][T28960]  async_schedule_node_domain+0xd4/0x120
[ 1832.730350][T28960]  dev_cache_fw_image+0x38e/0x490
[ 1832.730381][T28960]  ? __pfx_dev_cache_fw_image+0x10/0x10
[ 1832.730418][T28960]  ? __pfx_dev_cache_fw_image+0x10/0x10
[ 1832.730450][T28960]  dpm_for_each_dev+0x5a/0xb0
[ 1832.730478][T28960]  fw_pm_notify+0x81/0x150
[ 1832.730505][T28960]  notifier_call_chain+0xbc/0x410
[ 1832.730533][T28960]  ? __pfx_fw_pm_notify+0x10/0x10
[ 1832.730564][T28960]  blocking_notifier_call_chain_robust+0xc8/0x160
[ 1832.730596][T28960]  ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10
[ 1832.730632][T28960]  pm_notifier_call_chain_robust+0x27/0x60
[ 1832.730668][T28960]  snapshot_open+0x218/0x2b0
[ 1832.730697][T28960]  ? __pfx_snapshot_open+0x10/0x10
[ 1832.730726][T28960]  misc_open+0x35a/0x420
[ 1832.730756][T28960]  ? __pfx_misc_open+0x10/0x10
[ 1832.730785][T28960]  chrdev_open+0x231/0x6a0
[ 1832.730823][T28960]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1832.730853][T28960]  ? __pfx_chrdev_open+0x10/0x10
[ 1832.730892][T28960]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1832.730928][T28960]  do_dentry_open+0x744/0x1c10
[ 1832.730964][T28960]  ? __pfx_chrdev_open+0x10/0x10
[ 1832.731003][T28960]  vfs_open+0x82/0x3f0
[ 1832.731030][T28960]  path_openat+0x1de4/0x2cb0
[ 1832.731069][T28960]  ? __pfx_path_openat+0x10/0x10
[ 1832.731104][T28960]  ? __lock_acquire+0xb8a/0x1c90
[ 1832.731137][T28960]  do_filp_open+0x20b/0x470
[ 1832.731172][T28960]  ? __pfx_do_filp_open+0x10/0x10
[ 1832.731217][T28960]  ? alloc_fd+0x471/0x7d0
[ 1832.731253][T28960]  do_sys_openat2+0x11b/0x1d0
[ 1832.731278][T28960]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1832.731311][T28960]  __x64_sys_openat+0x174/0x210
[ 1832.731339][T28960]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1832.731372][T28960]  do_syscall_64+0xcd/0x490
[ 1832.731415][T28960]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1832.731441][T28960] RIP: 0033:0x7f8a9178e929
[ 1832.731461][T28960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1832.731485][T28960] RSP: 002b:00007f8a925e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1832.731508][T28960] RAX: ffffffffffffffda RBX: 00007f8a919b5fa0 RCX: 00007f8a9178e929
[ 1832.731525][T28960] RDX: 0000000000080201 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1832.731542][T28960] RBP: 00007f8a91810b39 R08: 0000000000000000 R09: 0000000000000000
[ 1832.731557][T28960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1832.731572][T28960] R13: 0000000000000000 R14: 00007f8a919b5fa0 R15: 00007ffd43669b08
[ 1832.731596][T28960]  </TASK>
[ 1833.549063][T28960] (NULL device *): loading /lib/firmware/regulatory.db failed with error -12
[ 1833.595599][T28960] (NULL device *): Direct firmware load for regulatory.db failed with error -12
[ 1833.636147][T28960] (NULL device *): Falling back to sysfs fallback for: regulatory.db
[ 1833.751262][T28972] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22