last executing test programs:

13.058257063s ago: executing program 0 (id=2799):
ioperm$auto(0x7, 0xc, 0x6)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_MON_GET(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS0\x00', 0x1, 0x0)
ioctl$auto(r1, 0x5408, r1)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x48041, 0x0)
unshare$auto(0x40000080)
r2 = socket(0xa, 0x1, 0x84)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8081, 0x0)
close_range$auto(r2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x90, 0x2, 0x8000)
open(&(0x7f0000000140)='./file0\x00', 0x40, 0xa2)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x9, 0x2)
fadvise64$auto_POSIX_FADV_SEQUENTIAL(r2, 0xca, 0x7, 0x2)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40102, 0x0)
pread64$auto(r3, 0x0, 0x40000000f42c, 0x585)
write$auto(0x3, 0x0, 0xfffffdef)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000)
r4 = clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
r5 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
read$auto(r5, 0x0, 0x80000000006)
tkill$auto(r4, 0x9)
unshare$auto(0x50000080)
syz_clone3(&(0x7f00000004c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r6 = openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
read$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(r6, 0x0, 0x0)

11.203956763s ago: executing program 0 (id=2803):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_expire_count\x00', 0x40a00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/76, 0x4c)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x8000, 0x0)
statmount$auto(&(0x7f0000000000)={0x7b, @raw=0x8, 0x2000000080000024, 0x8000000000007fff, 0x4}, 0x0, 0x7ffffffff001, 0x1)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sr0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x10000, 0xde, 0x11, r1, 0x28000)
io_uring_register$auto_IORING_UNREGISTER_EVENTFD(r1, 0x5, &(0x7f00000000c0)="1f1e4a61416ffbdb4356c6060b883a36ed24ade5e0a9e1b8d223cd38030237c1d90306c4111b0b01a019b5e370cab0c855695826da8203f717fae6146835da0bf891e5c553221ff331c92b4984cfe4009d3bdc46cf607ec123a743428ade092f77cf0be020139ae976262be655db77d91a2df7c3bdab0b2e15594c39c0dccf2cb537d56ff097136ea4573314ec617316a7f200a8513b24c00a236db841706f96d038e20f020ffd717f1eabf8f3336cb8966f3de972ae", 0x6)
syz_genetlink_get_family_id$auto_thermal(&(0x7f00000001c0), 0xffffffffffffffff)
ioctl$auto_XFS_IOC_FREESP64(0xffffffffffffffff, 0x40305825, &(0x7f0000000200)={0x400, 0x9, 0x7, 0x67, 0xc2})
r2 = getpid()
prctl$auto(0x3e, 0x1, r2, 0x1, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x119040, 0x0)
socket(0xa, 0x1, 0x100)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
read$auto_dvb_dvr_fops_dmxdev(r3, &(0x7f0000000240)=""/138, 0x8a)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8018)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyz6\x00', 0x40001, 0x0)
ioctl$auto_TCFLSH2(r4, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)
socket(0x25, 0x1, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x800, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

9.944082358s ago: executing program 0 (id=2806):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80402, 0x0)
clock_nanosleep$auto(0x9, 0x0, &(0x7f0000000000)={0x0, 0x200}, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
socket(0x2b, 0x1, 0x1)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x1004, 0xe983, 0xdf, 0xeb1, 0x401, 0x9)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/kcore\x00', 0x10b402, 0x0)
pread64$auto(r2, 0x0, 0x800003, 0x270)
syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000100), r1)
ioctl$auto_TIOCEXCL2(r1, 0x540c, 0x0)
r3 = mq_open$auto(&(0x7f00000000c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\xbb\x192\x1c4\x86\xc0\xc1-\xd5\x10\xc3\xfc*[8\x89h\xc5\xba\xff\xc8u5<y\xa5\x97\x13\xef\xc4g\xc3\xa4&\x81I6\v\xcc\x00\x00', 0x62, 0xfffc, 0x0)
move_mount$auto(r3, 0x0, r3, 0x0, 0x176)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
socket(0x29, 0x5, 0x0)
socket(0x29, 0x5, 0x0)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/kcm\x00', 0x480, 0x0)
read$auto(r4, &(0x7f0000000300)='2\x06J Nwe0\xbd\"\x8f\xe5h_b\xde\x19\xa5\x0e\xfa\xe0\xcb\xb7\xaceW\x1a\x1f\xae\xd8\xfe\x01Y\xd6\xba\xde3\xc7\xf8\x91\xda\xf6_%\xf30\xdc\x97<\xf3A\xa7\xb4\x8dj\xbd\x02\xb1}{e\xf64\xec4\x83,\xecp7j\xf8<\xc8x\xd4\xb0\x1d\b\xb0\x18\x01\x9e\x9et\x8aa\xe1\re\xcf\x8e\x02\xeeW\xf0z\vk#_\xdb\x15f8>;zM\xa95\x16\xe9l\xf5\xaa\xaa\x03\x18p\x0e\xde$\xc3\xa9\xac\xc7\x98\x05<\xef\xcd@z\fx}F\x93\xe1\xbd\xb3s\x80\xc1w\x1eP\xd0\xea\xab\x8f\xc7\a\xe6\xad\ni\n~-u)\x88\x97\xed\xa7\x9b\x0f\xef\x99\x13\xdc<\xd1{\br\xd6[\xd3\xa9-(KH\b\xdfJ\xdek\xef\xc9\xd7\n\x83m\x86\xf2\a\x8d\x19\xe0\\\xf0lg?\x98\xc8\x8e\xbd2?C\xa5\x8a\xe3\xc6\xd7\x00\x14n\xb8<\xab\x96\x8d\xa1\xf4\x87\xe5\a:z\xea\xcc\xa1\x8d\xae8\x12\xa6\xb9\xd99\xaa\xc5\x10\xad\xdd\x89\xdd\xbb\xf5\xd2Q\x92\xcd\xcc\x9f\x1a\xdbR\xeeL:\x87\xb3#\x00\x1bR\xf2\xe2/\xa3\x0e\x90\x98\x8c\xc0\xa4\xda', 0x805644)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
unshare$auto(0x40000080)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0x1c1041, 0x0)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r5, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
memfd_secret$auto(0x0)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f0000000040))
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
socket(0xa, 0x3, 0x2c)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/dev/audio\x00\x9a', 0x24)

9.790859293s ago: executing program 3 (id=2807):
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=<r0=>0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x9)
unshare$auto(0x40000080)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
socket(0x12, 0x4, 0x440a)
statmount$auto(&(0x7f0000000000)={0x7e, @raw, 0x80000020, 0xd97, 0x2}, 0x0, 0x7ffffffff002, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYBLOB='j\x00Q'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0)
write$auto(r2, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff)
ioctl$auto_SNDCTL_DSP_SETFMT(r2, 0xc0045005, &(0x7f0000000040))
sendfile$auto(0x6, 0x3, 0x0, 0xfdef)
mmap$auto(0x2000000000000, 0xfffffffffffffffe, 0x8, 0x810, r0, 0x5d63)
io_uring_register$auto_IORING_REGISTER_RING_FDS(0xffffffffffffffff, 0x14, &(0x7f0000000240)="42c6cf65c0f3", 0x10)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x29, 0x38, 0x0, 0x3)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/36u\x00', 0x26040, 0x0)
r3 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f00000000c0), r0)
unshare$auto(0x800000000)
sendmsg$auto_IEEE802154_LLSEC_DEL_DEVKEY(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="00082cbd7000fcdbdf252e00000005002600070000000500200007000000000004000500000005002000070000000500210009000000"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24000081)
close_range$auto(0x2, 0x8, 0x0)

7.782698439s ago: executing program 1 (id=2811):
mmap$auto(0x9, 0x400008, 0xdf, 0x9b72, 0x2, 0x800000008000)
r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
sigaltstack$auto(&(0x7f0000000180)={0x0, 0x0, 0x2}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
syslog$auto(0x3, 0x0, 0x5)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x0, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r1, 0x80081270, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dsp\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_GETIPTR(r2, 0x800c5011, &(0x7f0000000240))
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x400401, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000280)='}[,&*}\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\x83\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\x8ev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)\x17\xbby\xe5\xc4w\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0Z>\xe1=\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x00'/192, 0xda, 0x0)
statfs$auto(&(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000400)={0x1, 0xfffffffffffffff8, 0x3, 0x4, 0x4, 0x100000001, 0x9, {[0x9, 0x3]}, 0x9a, 0x7, 0x8, [0xe6a, 0x9, 0x6269, 0x3]})
socketpair$auto(0x8, 0x5, 0x40, 0x0)
r3 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_GPARAMS(r3, 0x40485404, 0x0)
semctl$auto(0x7, 0x3, 0x13, 0x1)
r4 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/snd/pcmC0D0p\x00', 0x40, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE_OLD(r4, 0xc1004110, 0x0)
r5 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x80001, 0x0)
ioctl$auto_TUNSETVNETBE(r5, 0x400454de, &(0x7f0000000040)=0xcad)
write$auto(r3, &(0x7f00000002c0)='\xb3\xe9\xf3\xb3\x80\xd3\x95p\b~\xc2\x85c\v\x8eK\x8d\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\xf8\xb7EG\x05\xcc\n\x8b\x1c\x95\x9f\xa9R\xb6\f\x7f\xbeG\x03\x16k\xf4\xc5\xd6\xf2A\xae\xf9$0\\q7N|\xf3a#[1/\'\xa4{\xb0\x96\xc0\r\x9f\xa8\x10V\x83Z\x8e\x16\x875\xf6\xa8i\xb3\x1ekq\xfd|\xb8Ui\x17T\xf9\x18:\x0e\x91\tE \x02\xa0\x1b\x1eGe~\xcd\xbc3\xca:@\x02\x12\x03\xa0\xcf\xa1\xac\xc8\xde\xc1\xa5\f\x18\x89-4U\xbdy\xb4^\xd5\xf4[\xea\x8eHt\x1eV\xb0R\xcc\v\x9b\x9c\xb3\xa0\xa3\x18Y\x88\xf6\x96]\xae\x8a\t%\xcbG\xc4\x9b\x9b\xaf\xd8\xdd\xd7\xd327>\x13S\x8d\x83\xdb2\x91#\xa8\xc5\x82\bn\x93\x81z\xacoU\xd7Om\xf2\x16\xe9,\xf2\xeb\x7f\xbd\x84\xf6\xa2\x92\x87\x8f\x1a\xe8a\xce\xf7\t{\xf0\xc2\xb9_S\xaaq@\x89\x93\xfcT<\xf4\x84\xf1\xb4\xb1Iu\xd6[\xcao\x9a\xaa &\x94!(\x9e\x85I', 0x58c)
socket(0x2, 0x1, 0x106)
listen$auto(0x3, 0x81)
openat2$auto(r0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)={0x3a8c, 0x8000000000000001, 0xfffffffdffffd701}, 0x3)
ioctl$auto(0x3, 0x890c, 0x38)

7.72952211s ago: executing program 3 (id=2812):
madvise$auto(0x0, 0x2000040080000004, 0xe)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80001f00)
r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) (async, rerun: 64)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/pci/devices\x00', 0x10b402, 0x0) (rerun: 64)
pread64$auto(r2, 0x0, 0x8100000041, 0x413e) (async)
ioctl$auto_PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f000000c380)={0x60, 0xa0, 0xffff, 0x7fffffffefff, 0x400, 0x0, 0x8000, 0x50b301a, 0x10002c, 0x8000000000002c, 0x0, 0x2})

7.609418727s ago: executing program 0 (id=2813):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
r1 = socket(0x25, 0x3, 0x101)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008000}, 0x8000)
mmap$auto(0x4, 0x2020009, 0x507d, 0x11, 0xfffffffffffffffa, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x3)
signalfd4$auto(0xffffffff, 0x0, 0x5, 0x5)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
getdents$auto(r3, 0x0, 0xfff)
msync$auto(0x7f, 0x6, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop15/queue/discard_granularity\x00', 0x8000, 0x0)
clock_nanosleep$auto(0x8001, 0x100, &(0x7f00000001c0)={0xf5d, 0x7f}, &(0x7f0000000240)={0x0, 0x2})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'})
r5 = socket(0x1f, 0x80000, 0x6)
sendmsg$auto_NFSD_CMD_THREADS_SET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x400c010)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/conf/default/drop_gratuitous_arp\x00', 0x141241, 0x0)
select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0xe9e, 0x4, 0x5, 0x1000, 0x100000001, 0xc, 0xf, 0x0, 0x40, 0xe, 0xd59, 0x101, 0xff, 0x2, 0x80080001]}, 0x0, 0x0)
write$auto(r5, &(0x7f0000000000)='-\x00', 0x2fb)
unshare$auto(0x40000080)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)

7.421885461s ago: executing program 1 (id=2815):
r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000d80), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_PLCA_SET_CFG(r1, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000001040)=ANY=[@ANYBLOB="2c0000b0", @ANYRES16=r0, @ANYBLOB="01002cbd7000fddbdf2528000000180001801400020064756d6d793000"/38], 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x20008800)
r2 = socket(0x2, 0x80002, 0x73)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'bridge_slave_1\x00'})
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram6\x00', 0x4040, 0x0)
write$auto_tty_fops_tty_io(r3, &(0x7f0000000280)="352c8efa618c0bcf", 0x8)
mmap$auto(0x0, 0x6, 0x2, 0x40eb4, r4, 0x9)
ioctl$auto(0xffffffffffffffff, 0x8912, 0x38)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x200000, 0x0)
ustat$auto(0x801, 0x0)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x3, 0xfffffffffffffffe)
writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x40}, 0x8)
write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000003040), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_SET(r6, 0x0, 0x8080)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0xff1, 0x8000)
io_uring_setup$auto(0x1, 0x0)
bpf$auto(0x9, 0x0, 0x102)
getpid()
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40802, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs1\x00', 0x58080, 0x0)
fcntl$auto(0x3, 0x4, 0xa553)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000164c0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_SCAN(r7, &(0x7f00000165c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004000}, 0x0)

7.390738729s ago: executing program 3 (id=2816):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x141201, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = socket(0xa, 0x1, 0x100)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x100000001ff, 0x7, 0x3, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x5, 0x62, 0x80000001, 0x5, 0x5, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev6\x00', 0x169000, 0x0)
ioctl$auto(r3, 0x80405600, r3)
sendfile$auto(r3, r1, &(0x7f0000000180), 0x4)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
process_madvise$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, 0x0, 0x5, 0x4, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x4, 0xffffffffffffffff)
fsetxattr$auto(0xffffffffffffffff, &(0x7f0000002200)='*){\x85,\x00', &(0x7f0000002240), 0x8, 0x0)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0xffff1000, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)

6.45461868s ago: executing program 1 (id=2817):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x321d00, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
io_uring_setup$auto(0x6, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0)
mmap$auto(0x0, 0x2020009, 0x2000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_UPDATE_FT_IES(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB="957038030000c3e2828863a5fe6bb3e7c8248562dcc5996d88da6a8a1832ce5d589315d5e85f7e28ed1182a4edc2a559ee1f3d09b23c0bde0c9cf35eaf14e07d15925aebf785bc6413d499699f2ac995aef57945b17032f764c85edef59c7dd111d7f093a33c60d381eeb7b8746dbdeb7fa850bfb00ee8369b5f9d820b0f2d7c0a1f9c56d840b423a94171b8f306e3ec0d4e429b66a923a913a7f80b8294de5c630545eb866d84c35dcc23544ad401fb4b92e56321824a71b851ce8fa78dc9c6d288b9e2ec09e5d4eb", @ANYRES16=0x0, @ANYBLOB="08002abd7000fcdbdf2560000000cc000201c84f6f4add8976768ad5f100635b554e24512ca0a4288345d8f8da782fce812a595390a60357194ab0e26d7c4ee92a0397c0ce0aed42e34880cefcc40512ac7c9387bb75d23ce8bb1bff3a03e2bb0378a72b387bd55604c55a632544affa45d8e1d4fa07d1d6fdefbfd6783e7a07ef9b9a41d2883ce0035496e209b15a6b94c922a032538ccd5c66dfd6e78add7a910932e885aa3845e198919b9c7c7d9d29faaab9350aefe030c67a4e53260d756ae7f37c21fe0240e7e6e19978f38eccf921bf662ebbd8d7d60b08005200", @ANYRES32=0x0, @ANYBLOB="e0002d8055005980040029801afb84d4e45bd0345035a76ee43b2aee61c7d23b4be11110735b5728f0c2b1aa31c5dd32bdab6ddb68b495d783521c50721099ec5e490df56226ec6707c5feed20057ece11149885f4163179060000000800eb002e2625007a003080040024800400828008007a00", @ANYRES32=0x0, @ANYBLOB="e8347a7a1c3ab974838cb1d51cc22bc7fbd0270ea7fd65f1b163e870a38ece3e674c112ad5afd9338a99cb45c70862c270d38cb46217d411a5a7f2071c6214e21c567baa960347ca51d813009e00726cba6744573e1e8b123e13a0ec48000400818004008e8000000500e400030000003c0081800500020002000000050002000a0000000500010000000000050002000b0000000500020004000000050002000000000005000100090000003100ba000e3c4ae286ffd2979a04bc3d48b6305b8dc5d7a8638ac519975767536cf00294d65e6c90806ace0e8a905f62ff0000000600b30001000000"], 0x248}, 0x1, 0x0, 0x0, 0x20004014}, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0x1010001, 0x100000003)
mmap$auto(0xff0f200000000000, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
shmctl$auto_IPC_STAT(0x4, 0x2, 0x0)
madvise$auto(0x5, 0xffffffffffff0005, 0x17)
mknod$auto(&(0x7f00000000c0)='./file0\x00', 0x1001, 0x804)
open(&(0x7f0000000000)='./file0\x00', 0x28400, 0x82)
open(&(0x7f00000002c0)='./file0\x00', 0x40841, 0x118)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/hugetlb.1GB.limit_in_bytes\x00', 0xa001, 0x0)
write$auto(r1, &(0x7f00000002c0)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k>\xc8\x1f\xad\xf6\xf0\xef\xe4s\x95\xf2\x00\x97S\xb9O\xac\xbe\xd6\\J<\x02YK\xd6M\xe6\xe7\xa0\xb8\xc3[\x01\xc5\xe8|\xb0\xb0\x80\xbf\xa5?=i\x88UB\x1d\x8e\xd3\xc2\x949\xb6\xfb\x006\x02\x9c\x83\x14\x13\x99\xc7\xb4)M\xed\tN $\xd4\x90^?J\x92\x9a?\xf8b\x03\xd8\xdd\x84\xdf\x92\xf0\xcd\xd8\xba\xab\x15\x80\x9eo,\xc8\xf2\x82\xd2\x88\xbeL\xa0\x1a\xd3\xd5Of\x95\xee\x13e\xeb}o\x9b\x86_\xf0?\f<\xf3t7\xb6\x0f\x93\xc79@\xd8x\x9e\xef!\x006\b\xdbWB\x84\xdd\xac\xdau\x86g\x8f\x02@O7\x0f\xf8\x8d(\x9c\xf2NyD\x7f3\x14\x9eg\x86%)\xd6\b\xcd\x1f\x03\x00:\xa6\x83\'\xf4\xf2\x9dd\xf4z\x89\xc5D\xc4\x02\\\x81\xcf\x02Ep\xf6`\xde*\x1dV', 0x81)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4004)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001580), 0xffffffffffffffff)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r0, 0xc0305710, &(0x7f0000000040)={0x2, 0xf8, 0xfffffffffffffffa, 0x1, 0x20041b, "01000f00fc0300000c525596"})

4.062465405s ago: executing program 3 (id=2818):
unshare$auto(0x40000080)
socket(0xa, 0x1, 0x84)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000500)='/proc/asound/card1/pcm0p/sub1/sw_params\x00', 0x10240, 0x0)
close_range$auto(0x2, 0xa, 0x0)
unshare$auto(0x40000080)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, 0x0, 0x105240, 0x0)
r0 = socket(0x11, 0x80003, 0x300)
sendfile$auto(0x1, r0, 0x0, 0x8fb5)
sysfs$auto(0x1000006, 0x1, 0x0)
ioctl$auto(0x3, 0x541b, 0x10000000000402)
r1 = open(0x0, 0x2002, 0x1)
socket(0xa, 0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x3, 0x6)
setsockopt$auto(0x3, 0x0, 0x31, 0x0, 0x28)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
fcntl$auto(r0, 0x6, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES16=0x0], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x4611, 0x0)
fadvise64$auto(r1, 0x7ff, 0xe00000000000, 0xffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mlock$auto(0xfbe8, 0x1000000000000004)

3.907403077s ago: executing program 2 (id=2819):
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="20ec8afd57c8d07155cad189d5d47223c722b67bc66cd72e64871a74ad8f814cc6705ae7dc680d95e627c4a390ff97426d7c4519336e72e23afc71886aaa65e8322440ae2653a8952ae9fadae9d5d76263ef987d695b76ea2da183e9ccaa", @ANYRES16=0x0, @ANYBLOB="02002cbd7000fddbdf250a000000040003000400018004000280"], 0x20}, 0x1, 0x0, 0x0, 0x4008044}, 0x40)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
io_uring_setup$auto(0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'dummy0\x00', <r1=>0x0})
r2 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/syscall\x00', 0x80002, 0x0)
read$auto_proc_single_file_operations_base(r2, &(0x7f0000000040)=""/228, 0xe4)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002dbd7000fddbdf250c000000040003800c00018008000100", @ANYRES32=r1, @ANYBLOB="cb950d5c49b22d686393544074bd0a33f46e30e230fe05007026b21f410e88f95c8ec376a311a429a5d19e5fff3403d3b3051acc30cbebdf06a751e86d46d4790e66f5b63735a52b66b8020066cdd794686cceb29e9c62d8862f0a761b0878e1d39eeaedb15d15710a6ae2619f1b2e06832ba975bf14858c9271981d070973299fecedac227eec6cb7154837e70fe0d17b088726447fdddc3a17803260cf7c4598fe5abc3603f992f73f767fee4c1968fa257b90d42b2bc73a0bb18de3846a3424fadf8a0ef3d17fc650a2047db6627da2fc5712663c67cb0ba95137b6815a6981cdc1206cc918ae0c5875d5ff10bb9fce3f"], 0x24}, 0x1, 0x0, 0x0, 0x24004840}, 0x0)

2.774411664s ago: executing program 0 (id=2820):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
pread64$auto(r0, 0x0, 0x7ff, 0x400)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
shutdown$auto(0x200000003, 0x2)
write$auto(0x3, 0x0, 0x7fffffff)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/console\x00', 0x48600, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000380)='/dev/psaux\x00', 0x48100, 0x0)
socket(0x1a, 0x1, 0x0)
ioctl$auto(0xffffffffffffffff, 0x2, r0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x5, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x101b80, 0x0)
pread64$auto(r2, 0x0, 0xf469, 0xbc3ab41)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xc, 0x5, 0xd, 0x1, 0xc5e1, 0x3, 0x87, 0x2000000000000002, 0x0, 0x62, 0x8, 0x10, 0x6d3e, 0xc, 0x4, 0x6]}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x200000000000404, 0x0)
madvise$auto(0x0, 0x2003f0, 0x17)
ioctl$auto_SNDRV_PCM_IOCTL_REWIND2(0xffffffffffffffff, 0x40084146, &(0x7f0000000040)=0x80000001)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000600)='/dev/audio1\x00', 0x8000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_START_OLD(r3, 0x5420, &(0x7f0000000740)="b43c54b9a5e55b3ccb6a7770f186c168c4daa71515b41f973d968b0afb70ac8737efe30137e6091f061a74910148b06cb22736200461e1d40c8f3ba08946272b02daa2765e33dc92379f1dc1ed74ca8621b7")

2.766741504s ago: executing program 1 (id=2821):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000140)='/dev/audio1\x00', 0x100100a3d8)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
set_mempolicy$auto(0x4006, &(0x7f0000000000)=0xa, 0x7)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, 0xffffffffffffffff)
ioctl$auto_KVM_GET_MSRS(r1, 0x4090ae82, 0x0)
msgsnd$auto(0x5, 0x0, 0x3, 0x7)
close_range$auto(0x2, r2, 0x5)
setresuid$auto(0xffffffffffffffff, 0x0, 0x8000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2382, 0x0)
ioctl$auto_KVM_GET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x2, 0x0, [{0x17a, 0xfffffe01, 0x35}]})
write$auto(0xca, &(0x7f0000000140)='\x04\x0e\x06\xd5\x89|d\v\x00\x00@\x00\x81\x00\x12\x00\xf6\xf5\x00\xdf\xff\x00', 0x13)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mlock$auto(0xfbe8, 0x4)
newfstatat$auto(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x4795, 0x40, 0x54dd, 0x2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xfffffffffffffff9, 0x5, 0xffffffffffffff2d, 0x1, 0x10001, 0x54e, 0xfffffffffffffffc, 0x1, 0xc, 0x1}, 0x8)
shmctl$auto_IPC_STAT(0x7, 0x2, &(0x7f0000000380)={{0x1000, 0x0, 0x0, 0x7, 0xfffffffd, 0x80000003, 0x401}, 0x7, 0x4, 0x2, 0x400, @raw=0x7, @inferred, 0x8, 0x0, &(0x7f0000000200)="59a20fbf3ac3fb20cbbb906330063422846b09aee9fd03b6a96ccfb2c821f6158c5ac05f2e931be2a29734256b44fa6deee5412d0b8962478a64f97b422d74d7b0dee9212a1323c5e9cc6b1a498074db936645191ffce40bac5518dfb9eefe1ee28dfa90b0ad77d4fe3ebe352b4705557ad77e4ef1bca1cfe2e30d3c8852e502f816ef0c6f72c8e37ce7b0fb6acf9e99665ebb5a2ac75acb11458b1e02ab80fa1dc6135ee345b4c63c9c20e301e3", &(0x7f00000002c0)="66e0c39b6bdc185c4e74a38e930000000000000000"})
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x2aa7, 0x6c0000c01f, 0xc000}, 0x4)

2.030290691s ago: executing program 2 (id=2822):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), r0) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'wg2\x00', <r2=>0x0}) (async)
acct$auto(&(0x7f0000000200)='wg2\x00') (async)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0)
ioctl$auto_KVM_CHECK_EXTENSION(r3, 0xae03, 0x0) (async)
r4 = ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd11\x00', 0x80, 0x0)
clone$auto(0x100000000021, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/memory15/online\x00', 0xa001, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r4, 0xc0045002, &(0x7f00000000c0)="9c8df685abb4c11a52c82df83b81061fab3673554ea00e0fc35f67f835355efe2e694cb464b4b3043373c5f8b1d15d90c1581f448575e63e")
r6 = socket(0x1d, 0x3, 0x1) (async, rerun: 32)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x7, 0x3, 0xe, 0x940, 0x1ffde, 0x3, 0x2000000000000006, 0x2, 0x9, 0x9, 0x2, 0x7, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x6, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x49af]}, 0x1fe, 0x81) (async, rerun: 32)
r7 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40400c4) (async, rerun: 64)
sendmmsg$auto(r7, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (rerun: 64)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000003c0), r6)
sendmsg$auto_NL80211_CMD_LEAVE_OCB(r6, &(0x7f0000001480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001440)={&(0x7f0000000400)={0x1018, r8, 0x200, 0x70bd29, 0x2, {}, [@NL80211_ATTR_EHT_CAPABILITY={0x1004, 0x136, "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"}]}, 0x1018}, 0x1, 0x0, 0x0, 0x44000}, 0x8014) (async)
write$auto(r5, &(0x7f0000000140)='0[.[\x00', 0xcd04) (async)
sendmsg$auto_WG_CMD_GET_DEVICE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="030727bd7000fcd9df250000000008000100", @ANYRES32=r2], 0x1c}, 0x1, 0xa6, 0x0, 0x880}, 0x0) (async)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000001c0), r4)

1.773162215s ago: executing program 2 (id=2823):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec31\x00', 0x900, 0x0)
ioctl$auto_CEC_S_MODE(r1, 0x40046109, 0x0)
ioctl$auto_CEC_DQEVENT(r1, 0xc0506107, 0x0)
ioctl$auto_CEC_DQEVENT(r1, 0xc0506107, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x200007, 0x19)
shutdown$auto(r2, 0xfffffff7)
write$auto(0xffffffffffffffff, 0x0, 0x7)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x20400, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r3, 0xc4c85512, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000140), 0x1a3780, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x6, 0x1, 0x948b, 0x3, 0x3f, 0x3, 0x80000000, 0x5f, 0x80000001, 0x7, 0x6d3f, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x814)
sendmsg$auto_ETHTOOL_MSG_RSS_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x40044010)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, 0x0, 0x44821)

1.75404305s ago: executing program 3 (id=2824):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/hung_task_check_interval_secs\x00', 0x88542, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
getdents$auto(r1, 0x0, 0x7fd)
syslog$auto(0x9, &(0x7f0000000000)='+,\xcc)[-\x00', 0x200)
write$auto(r0, 0x0, 0x0)

1.657917763s ago: executing program 1 (id=2825):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2a, 0xa, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), r0)
sendmsg$auto_OVS_FLOW_CMD_DEL(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r1, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@OVS_FLOW_ATTR_UFID_FLAGS={0x8, 0xa, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000880}, 0x44010)
setsockopt$auto(0x3, 0x1, 0x2a, 0x0, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = memfd_create$auto(&(0x7f00000002c0)='\'}!\x00', 0x3)
fanotify_mark$auto(r0, 0x61247c42, 0xfffffffffff8fffd, r2, &(0x7f0000000300)='./file0\x00')
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r4, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000dc0)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="cb5b2cbd7000ffdb9f251f000000050006000900000005000400000000000800030006000000080002007f"], 0x34}}, 0x82)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, <r5=>0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0xfffff000}})
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop7\x00', 0x404040, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0)
pwritev$auto(r6, &(0x7f0000000100)={&(0x7f0000000000), 0x2}, 0x3, 0x11, 0x3)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
bind$auto(0xffffffffffffffff, &(0x7f0000000080)=@ethernet={0x1, @multicast}, 0x6a)
ioctl$auto_PPPIOCGNPMODE(r5, 0xc008744c, &(0x7f0000000280)={0x7, 0x3})
listen$auto(0x3, 0x0)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1, 0xb}, 0x800009}, 0x5, 0x20000000)
ioperm$auto(0x7, 0x6, 0x2)
add_key$auto(0x0, 0x0, 0x0, 0x6, 0x100)
recvmmsg$auto(0x3, 0x0, 0xfffe, 0x52, 0x0)
pread64$auto(0xffffffffffffffff, 0x0, 0xf42f, 0x7f)

710.180303ms ago: executing program 0 (id=2826):
madvise$auto(0x0, 0x2000040080000004, 0xe)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000001c00), r0)
sendmsg$auto_IOAM6_CMD_ADD_NAMESPACE(r0, &(0x7f0000001d00)={0x0, 0x0, &(0x7f0000001cc0)={&(0x7f0000000000)={0x28, r1, 0xa2d601c1e7b11e31, 0x70bd27, 0x25dfdbfd, {}, [@IOAM6_ATTR_NS_ID={0x6}, @IOAM6_ATTR_NS_DATA_WIDE={0xc, 0x3, 0x72c}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r2, &(0x7f0000000040)='//\xf2\x00', 0x80000000)
getsockopt$auto_SO_RCVPRIORITY(0xffffffffffffffff, 0x2, 0x52, 0x0, &(0x7f0000000240)=0x7)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
readv$auto(0x3, 0x0, 0x1)
mmap$auto(0xf728, 0x0, 0xfffffffffffffffe, 0x11, 0xffffffffffffffff, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0xfffffffffffffffd, 0x2000c, 0x4000000000cf, 0xeb0, 0x401, 0xffff)
socket(0x28, 0x1, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0x1e, 0x4, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
socket(0xa, 0x801, 0x106)
setsockopt$auto(0x3, 0x1, 0xd, 0x0, 0x8)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x82082, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
stat$auto(0x0, &(0x7f0000000380)={0x3, 0x3, 0x6, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0xa, 0xff, 0x100, 0x401, 0x5f57, 0x80000000, 0xaa})
r4 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0)
writev$auto(r4, &(0x7f00000003c0)={0x0, 0x8}, 0x3)
close_range$auto(0x2, 0x8, 0x0)

682.148454ms ago: executing program 2 (id=2827):
r0 = socket(0x9, 0x4f3a98731a5ce931, 0xffffffff)
bind$auto(r0, &(0x7f0000000000)=@ax25={0x3, @null, 0x1ff}, 0x80000000)
connect$auto(r0, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0xfffffffe}, 0x55)
r1 = socket(0x1d, 0x2, 0x6)
r2 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r3=>0x0})
bind$auto(r1, &(0x7f0000000040)=@can={0x1d, r3, 0xfd}, 0x6a)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x6c}, 0x1, 0x0, 0x0, 0x40084}, 0x40)
sendmsg$auto_L2TP_CMD_SESSION_GET(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x24000004)
socket(0x15, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
socket(0x11, 0x2, 0x73)
io_uring_setup$auto(0x7e1b, 0x0)
socket(0x2, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x2, 0x14)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptya7\x00', 0x101e81, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyde\x00', 0xa0102, 0x0)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)
ioctl$auto(0x3, 0x5411, 0x38)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'ip6tnl0\x00', <r5=>0x0})
sendmsg$auto_OVS_VPORT_CMD_GET(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00', @ANYRES16=0x0, @ANYBLOB="25052abd7000fddbdf2503000000080001000c00000008000800", @ANYRES32=r5, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x4000050}, 0x20000090)
statmount$auto(0x0, &(0x7f0000000180)={0x770, 0x1, 0x201, 0x1, 0x5, 0x3, 0x3ffde, 0x400, 0x3, 0x9, 0x6, 0x80004, 0x4, 0x11ffffffffffd, 0xb2, 0x2, 0x9, 0x10, 0x80, 0x80000002a0, 0x0, 0x1, 0x1, 0x202, 0x9, 0xbca7, 0x4, 0x0, 0x0, 0x0, 0x0, [0x0, 0x6, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x0, 0x0, 0x0, 0x7fffffff, 0xffffffffffffffff, 0x0, 0x9, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x200, 0x0, 0x10000, 0x0, 0x9, 0x4, 0xe17, 0x0, 0x6]}, 0x1fe, 0x1)
r6 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r6, 0xfffffffffffffd03, &(0x7f00000001c0))

546.584425ms ago: executing program 1 (id=2828):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000140)='/dev/audio1\x00', 0x100100a3d8)
r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0)
ioctl$auto(r1, 0x921064a3, 0x1000000000000003)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
set_mempolicy$auto(0x4006, &(0x7f0000000000)=0xa, 0x7)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, 0xffffffffffffffff)
ioctl$auto_KVM_GET_MSRS(r2, 0x4090ae82, 0x0)
msgsnd$auto(0x5, 0x0, 0x3, 0x7)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/nfsfs/servers\x00', 0x400, 0x0)
setreuid$auto(0x0, 0x20000000004)
fchown$auto(r4, 0x0, 0x0)
close_range$auto(0x2, r3, 0x5)
setresuid$auto(0xffffffffffffffff, 0x0, 0x8000)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2382, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x40000000000000, 0x20009, 0xdf, 0xe32, 0xffffffffffffffff, 0x7)
socket(0x10, 0x2, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/dummy_hcd.2/usb3/authorized\x00', 0x601, 0x0)
write$auto(r5, &(0x7f00000002c0)='1\x81=\"\xad\xff\x8d\xf9P\x18\xa4\xb0\xb4\xd9\x82=\xe1P\x05\x00\xfb&\xe8\xbf\x901\a2\xa2X`\a\xf1y\xb3\"=', 0xd4d0)
r6 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x88243, 0x0)
ioctl$auto_TUNSETPERSIST(r6, 0x400454cb, &(0x7f0000000080)=0x9)
mmap$auto(0x0, 0x2000000002020009, 0x4, 0x10000015, r1, 0x8000)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x8002, 0x2)
sysfs$auto(0xffffffff, 0x44, 0x0)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0x8002, 0x2)

502.945885ms ago: executing program 3 (id=2829):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x321d00, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
io_uring_setup$auto(0x6, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0)
mmap$auto(0x0, 0x2020009, 0x2000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_UPDATE_FT_IES(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB="957038030000c3e2828863a5fe6bb3e7c8248562dcc5996d88da6a8a1832ce5d589315d5e85f7e28ed1182a4edc2a559ee1f3d09b23c0bde0c9cf35eaf14e07d15925aebf785bc6413d499699f2ac995aef57945b17032f764c85edef59c7dd111d7f093a33c60d381eeb7b8746dbdeb7fa850bfb00ee8369b5f9d820b0f2d7c0a1f9c56d840b423a94171b8f306e3ec0d4e429b66a923a913a7f80b8294de5c630545eb866d84c35dcc23544ad401fb4b92e56321824a71b851ce8fa78dc9c6d288b9e2ec09e5d4eb", @ANYRES16=0x0, @ANYBLOB="08002abd7000fcdbdf2560000000cc000201c84f6f4add8976768ad5f100635b554e24512ca0a4288345d8f8da782fce812a595390a60357194ab0e26d7c4ee92a0397c0ce0aed42e34880cefcc40512ac7c9387bb75d23ce8bb1bff3a03e2bb0378a72b387bd55604c55a632544affa45d8e1d4fa07d1d6fdefbfd6783e7a07ef9b9a41d2883ce0035496e209b15a6b94c922a032538ccd5c66dfd6e78add7a910932e885aa3845e198919b9c7c7d9d29faaab9350aefe030c67a4e53260d756ae7f37c21fe0240e7e6e19978f38eccf921bf662ebbd8d7d60b08005200", @ANYRES32=0x0, @ANYBLOB="e0002d8055005980040029801afb84d4e45bd0345035a76ee43b2aee61c7d23b4be11110735b5728f0c2b1aa31c5dd32bdab6ddb68b495d783521c50721099ec5e490df56226ec6707c5feed20057ece11149885f4163179060000000800eb002e2625007a003080040024800400828008007a00", @ANYRES32=0x0, @ANYBLOB="e8347a7a1c3ab974838cb1d51cc22bc7fbd0270ea7fd65f1b163e870a38ece3e674c112ad5afd9338a99cb45c70862c270d38cb46217d411a5a7f2071c6214e21c567baa960347ca51d813009e00726cba6744573e1e8b123e13a0ec48000400818004008e8000000500e400030000003c0081800500020002000000050002000a0000000500010000000000050002000b0000000500020004000000050002000000000005000100090000003100ba000e3c4ae286ffd2979a04bc3d48b6305b8dc5d7a8638ac519975767536cf00294d65e6c90806ace0e8a905f62ff0000000600b30001000000"], 0x248}, 0x1, 0x0, 0x0, 0x20004014}, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0x1010001, 0x100000003)
mmap$auto(0xff0f200000000000, 0x400008, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
shmctl$auto_IPC_STAT(0x4, 0x2, 0x0)
madvise$auto(0x5, 0xffffffffffff0005, 0x17)
mknod$auto(&(0x7f00000000c0)='./file0\x00', 0x1001, 0x804)
open(&(0x7f0000000000)='./file0\x00', 0x28400, 0x82)
open(&(0x7f00000002c0)='./file0\x00', 0x40841, 0x118)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/hugetlb.1GB.limit_in_bytes\x00', 0xa001, 0x0)
write$auto(r1, &(0x7f00000002c0)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k>\xc8\x1f\xad\xf6\xf0\xef\xe4s\x95\xf2\x00\x97S\xb9O\xac\xbe\xd6\\J<\x02YK\xd6M\xe6\xe7\xa0\xb8\xc3[\x01\xc5\xe8|\xb0\xb0\x80\xbf\xa5?=i\x88UB\x1d\x8e\xd3\xc2\x949\xb6\xfb\x006\x02\x9c\x83\x14\x13\x99\xc7\xb4)M\xed\tN $\xd4\x90^?J\x92\x9a?\xf8b\x03\xd8\xdd\x84\xdf\x92\xf0\xcd\xd8\xba\xab\x15\x80\x9eo,\xc8\xf2\x82\xd2\x88\xbeL\xa0\x1a\xd3\xd5Of\x95\xee\x13e\xeb}o\x9b\x86_\xf0?\f<\xf3t7\xb6\x0f\x93\xc79@\xd8x\x9e\xef!\x006\b\xdbWB\x84\xdd\xac\xdau\x86g\x8f\x02@O7\x0f\xf8\x8d(\x9c\xf2NyD\x7f3\x14\x9eg\x86%)\xd6\b\xcd\x1f\x03\x00:\xa6\x83\'\xf4\xf2\x9dd\xf4z\x89\xc5D\xc4\x02\\\x81\xcf\x02Ep\xf6`\xde*\x1dV', 0x81)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4004)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001580), 0xffffffffffffffff)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r0, 0xc0305710, &(0x7f0000000040)={0x2, 0xf8, 0xfffffffffffffffa, 0x1, 0x20041b, "01000f00fc0300000c525596"})

386.269444ms ago: executing program 2 (id=2830):
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="20ec8afd57c8d07155cad189d5d47223c722b67bc66cd72e64871a74ad8f814cc6705ae7dc680d95e627c4a390ff97426d7c4519336e72e23afc71886aaa65e8322440ae2653a8952ae9fadae9d5d76263ef987d695b76ea2da183e9ccaa", @ANYRES16=0x0, @ANYBLOB="02002cbd7000fddbdf250a000000040003000400018004000280"], 0x20}, 0x1, 0x0, 0x0, 0x4008044}, 0x40)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
io_uring_setup$auto(0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'dummy0\x00', <r1=>0x0})
r2 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/syscall\x00', 0x80002, 0x0)
read$auto_proc_single_file_operations_base(r2, &(0x7f0000000040)=""/228, 0xe4)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002dbd7000fddbdf250c000000040003800c00018008000100", @ANYRES32=r1, @ANYBLOB="cb950d5c49b22d686393544074bd0a33f46e30e230fe05007026b21f410e88f95c8ec376a311a429a5d19e5fff3403d3b3051acc30cbebdf06a751e86d46d4790e66f5b63735a52b66b8020066cdd794686cceb29e9c62d8862f0a761b0878e1d39eeaedb15d15710a6ae2619f1b2e06832ba975bf14858c9271981d070973299fecedac227eec6cb7154837e70fe0d17b088726447fdddc3a17803260cf7c4598fe5abc3603f992f73f767fee4c1968fa257b90d42b2bc73a0bb18de3846a3424fadf8a0ef3d17fc650a2047db6627da2fc5712663c67cb0ba95137b6815a6981cdc1206cc918ae0c5875d5ff10bb9fce3f"], 0x24}, 0x1, 0x0, 0x0, 0x24004840}, 0x0)

0s ago: executing program 2 (id=2831):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/usb/drivers/dvb_usb_gp8psk/bind\x00', 0x400, 0x0)
read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffffff, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x23, 0x80805, 0x0)
sendmmsg$auto(r0, &(0x7f0000000180)={{&(0x7f0000000280), 0x80000000, &(0x7f0000000100)={&(0x7f0000000240)="af7bf4cf1364d21d6a5e899a2ddd53d2215809fd516b233ab25f928922455b69bdf7008593ac8eeea6", 0x801}, 0x4, &(0x7f0000000140)="24b7cd739e", 0x9, 0x3}, 0x7fffffff}, 0x7f, 0x4)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), 0xffffffffffffffff)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/controlC0\x00', 0xc2000, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f0000000200)=0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'caif0\x00'})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'macsec0\x00'})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x202000a, 0x3, 0xeb2, r0, 0x8000)
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000003b00)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x600, 0x0)
mmap$auto(0x7af0000000000000, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0)
shmctl$auto_IPC_STAT(0x4, 0x2, 0x0)
sendmsg$auto_OVS_METER_CMD_DEL(0xffffffffffffffff, 0x0, 0x4000)
mlockall$auto(0x7)
mmap$auto(0x0, 0xc, 0x4000000000df, 0x44eb2, 0x10006, 0x80300000000000)
mremap$auto(0x0, 0x4, 0x9, 0x3, 0xffffffff)
r3 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000000c0), r2)
ioctl$auto_UI_SET_FFBIT(r3, 0x4004556b, &(0x7f0000000040)=0x400)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)

kernel console output (not intermixed with test programs):


	




		






	

	
	

	
	

	
	

	
	

	
	

	
	
	
	

	
	

	
		
				
	
		


			

	
				
	
	



	

	
	
	

	
			

			

			

			

			

			

			

			

	

	
	

	
	

	

		

		
		
		

	



	

	
	

	
	

	
	

	
		

	
		

	


	
	

		
	
		
	


	



			








	





	




		

		

			

	

	


	
					

	









	




	




		






	
		

	


	
	

		
	
		
	


	



			








	



	



	






	



		

		
	
	



	





	
	

	
		



		

		

	
	








	








	






	







		











	


	
	
	


	
		
	
	
	

	
	

	
	

	
	

	

	
		

	


	
	

		
	
		
	


	



			








	



	



	

		
	

		
	

		
		
		





	
	

	
		






	




	





		






	

	

	
		

	


	
	

		
	
		
	


	



			








	





	





	

	












	

	
	
















	




	





		







	

	
	

	
	

	
	

	


	

	

	
		

	


	
	

		
	
		
	


	



			








	





	




		

		

			

	

	


	
					

	









	




	




		







	

	
	

	
	

	
	

	


	

	
	

	
	

	
	

	

				

		
		

	
		

	


	
	

		
	
		
	


	



			








	



	



	





	




	


		

		



	


	




	

	

	
		



		

		

	
	








	








	




	





		







	
		

	


	
	

		
	
		
	


	



			








	



	



	





	




	


		

		



	


	




	

	

	
		



		

		

	
	








	








	




	





		







	
		

	


	
	

		
	
		
	


	



			








	

	
	



	



















	
	
		
	
			
	






	






	







		














	

	
	

	
	

	
	

	
	

	
	
				
		




		


	



	
		

	


		

		
	
		
	


	



			








	






	
	
	
		



			









	




	





		





	

	
		
	
	
	
	
	
	



					
		

syzkaller
syzkaller login: [ 1002.056486][T20887] FAULT_INJECTION: forcing a failure.
[ 1002.056486][T20887] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1002.137618][T20887] CPU: 0 UID: 0 PID: 20887 Comm: syz.0.2558 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1002.137661][T20887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1002.137680][T20887] Call Trace:
[ 1002.137691][T20887]  <TASK>
[ 1002.137703][T20887]  dump_stack_lvl+0x16c/0x1f0
[ 1002.137755][T20887]  should_fail_ex+0x512/0x640
[ 1002.137817][T20887]  get_futex_key+0x1d0/0x1540
[ 1002.137857][T20887]  ? __pfx_get_futex_key+0x10/0x10
[ 1002.137903][T20887]  futex_wake+0xe7/0x4e0
[ 1002.137947][T20887]  ? __pfx_futex_wake+0x10/0x10
[ 1002.137991][T20887]  ? __pfx___might_resched+0x10/0x10
[ 1002.138022][T20887]  ? rcu_is_watching+0x12/0xc0
[ 1002.138053][T20887]  ? lockdep_init_map_type+0x5c/0x280
[ 1002.138100][T20887]  do_futex+0x1e3/0x350
[ 1002.138141][T20887]  ? __pfx_do_futex+0x10/0x10
[ 1002.138178][T20887]  ? file_init_path+0x4fe/0x760
[ 1002.138241][T20887]  __x64_sys_futex+0x1e0/0x4c0
[ 1002.138287][T20887]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1002.138344][T20887]  do_syscall_64+0xcd/0x490
[ 1002.138394][T20887]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1002.138425][T20887] RIP: 0033:0x7f7b2f98e929
[ 1002.138449][T20887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1002.138481][T20887] RSP: 002b:00007f7b307f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1002.138509][T20887] RAX: ffffffffffffffda RBX: 00007f7b2fbb6248 RCX: 00007f7b2f98e929
[ 1002.138530][T20887] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7b2fbb624c
[ 1002.138549][T20887] RBP: 00007f7b2fbb6240 R08: 00007f7b3085a000 R09: 0000000000000000
[ 1002.138569][T20887] R10: 000000000000000e R11: 0000000000000246 R12: 00007f7b2fbb624c
[ 1002.138589][T20887] R13: 0000000000000000 R14: 00007ffe35ccd390 R15: 00007ffe35ccd478
[ 1002.138629][T20887]  </TASK>
[ 1002.627039][T20892] FAULT_INJECTION: forcing a failure.
[ 1002.627039][T20892] name failslab, interval 1, probability 0, space 0, times 0
[ 1002.667747][T20892] CPU: 1 UID: 0 PID: 20892 Comm: syz.1.2561 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1002.667790][T20892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1002.667809][T20892] Call Trace:
[ 1002.667820][T20892]  <TASK>
[ 1002.667833][T20892]  dump_stack_lvl+0x16c/0x1f0
[ 1002.667884][T20892]  should_fail_ex+0x512/0x640
[ 1002.667927][T20892]  ? __kmalloc_noprof+0xbf/0x510
[ 1002.667977][T20892]  ? ima_write_template_field_data+0x5d/0x1f0
[ 1002.668014][T20892]  should_failslab+0xc2/0x120
[ 1002.668044][T20892]  __kmalloc_noprof+0xd2/0x510
[ 1002.668088][T20892]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1002.668125][T20892]  ima_write_template_field_data+0x5d/0x1f0
[ 1002.668169][T20892]  ima_eventdigest_init_common+0x154/0x430
[ 1002.668218][T20892]  ? __pfx_ima_eventdigest_init_common+0x10/0x10
[ 1002.668281][T20892]  ? rcu_is_watching+0x12/0xc0
[ 1002.668312][T20892]  ? trace_kmalloc+0x2b/0xd0
[ 1002.668340][T20892]  ? __kmalloc_noprof+0x242/0x510
[ 1002.668390][T20892]  ima_alloc_init_template+0x39d/0x720
[ 1002.668429][T20892]  ima_add_violation+0x123/0x3d0
[ 1002.668461][T20892]  ? __pfx_ima_add_violation+0x10/0x10
[ 1002.668489][T20892]  ? ima_d_path+0x12b/0x2a0
[ 1002.668517][T20892]  ? __pfx_ima_d_path+0x10/0x10
[ 1002.668553][T20892]  ? lockdep_init_map_type+0x5c/0x280
[ 1002.668596][T20892]  ? ima_inode_get+0x39e/0x580
[ 1002.668643][T20892]  process_measurement+0x1783/0x23e0
[ 1002.668701][T20892]  ? __pfx_process_measurement+0x10/0x10
[ 1002.668751][T20892]  ? futex_unqueue+0x133/0x2c0
[ 1002.668827][T20892]  ? __futex_hash.constprop.0+0x1e9/0x440
[ 1002.668871][T20892]  ima_file_mmap+0x1b1/0x1d0
[ 1002.668914][T20892]  ? __pfx_ima_file_mmap+0x10/0x10
[ 1002.668955][T20892]  ? __lock_acquire+0x622/0x1c90
[ 1002.669005][T20892]  security_mmap_file+0x88c/0x990
[ 1002.669046][T20892]  vm_mmap_pgoff+0xec/0x450
[ 1002.669078][T20892]  ? find_held_lock+0x2b/0x80
[ 1002.669108][T20892]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1002.669145][T20892]  ? __fget_files+0x20e/0x3c0
[ 1002.669192][T20892]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1002.669239][T20892]  __x64_sys_mmap+0x125/0x190
[ 1002.669288][T20892]  do_syscall_64+0xcd/0x490
[ 1002.669337][T20892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1002.669369][T20892] RIP: 0033:0x7fedec58e929
[ 1002.669393][T20892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1002.669423][T20892] RSP: 002b:00007feded3ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1002.669452][T20892] RAX: ffffffffffffffda RBX: 00007fedec7b5fa0 RCX: 00007fedec58e929
[ 1002.669473][T20892] RDX: 00000000000003ff RSI: 0000000000000001 RDI: 000000000000f000
[ 1002.669492][T20892] RBP: 00007fedec610b39 R08: 0000000000000003 R09: 0000000000000000
[ 1002.669511][T20892] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000000
[ 1002.669529][T20892] R13: 0000000000000000 R14: 00007fedec7b5fa0 R15: 00007ffcbe4e7ce8
[ 1002.669568][T20892]  </TASK>
[ 1002.675782][   T30] audit: type=1804 audit(4294967760.170:16): pid=20892 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2561" name="/newroot/65/file0" dev="tmpfs" ino=368 res=0 errno=0
[ 1003.014887][   T30] audit: type=1800 audit(4294967760.210:17): pid=20892 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2561" name="file0" dev="tmpfs" ino=368 res=0 errno=0
[ 1003.355611][T20890] ptrace attach of "./syz-executor exec"[19955] was attempted by "./syz-executor exec"[20890]
[ 1003.640934][T20902] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2562'.
[ 1003.659038][T20913] FAULT_INJECTION: forcing a failure.
[ 1003.659038][T20913] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1003.671901][T20913] CPU: 1 UID: 0 PID: 20913 Comm: syz.2.2563 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1003.671931][T20913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1003.671944][T20913] Call Trace:
[ 1003.671952][T20913]  <TASK>
[ 1003.671961][T20913]  dump_stack_lvl+0x16c/0x1f0
[ 1003.671998][T20913]  should_fail_ex+0x512/0x640
[ 1003.672033][T20913]  get_futex_key+0x1d0/0x1540
[ 1003.672063][T20913]  ? __pfx_get_futex_key+0x10/0x10
[ 1003.672098][T20913]  futex_wake+0xe7/0x4e0
[ 1003.672131][T20913]  ? __pfx_futex_wake+0x10/0x10
[ 1003.672186][T20913]  ? __pfx___might_resched+0x10/0x10
[ 1003.672212][T20913]  ? rcu_is_watching+0x12/0xc0
[ 1003.672237][T20913]  ? lockdep_init_map_type+0x5c/0x280
[ 1003.672274][T20913]  do_futex+0x1e3/0x350
[ 1003.672303][T20913]  ? __pfx_do_futex+0x10/0x10
[ 1003.672332][T20913]  ? file_init_path+0x4fe/0x760
[ 1003.672361][T20913]  __x64_sys_futex+0x1e0/0x4c0
[ 1003.672394][T20913]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1003.672435][T20913]  do_syscall_64+0xcd/0x490
[ 1003.672472][T20913]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1003.672497][T20913] RIP: 0033:0x7fdea618e929
[ 1003.672516][T20913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1003.672539][T20913] RSP: 002b:00007fdea3ff60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1003.672560][T20913] RAX: ffffffffffffffda RBX: 00007fdea63b6168 RCX: 00007fdea618e929
[ 1003.672576][T20913] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fdea63b616c
[ 1003.672590][T20913] RBP: 00007fdea63b6160 R08: 00007fdea6f40000 R09: 0000000000000000
[ 1003.672605][T20913] R10: 000000000000000d R11: 0000000000000246 R12: 00007fdea63b616c
[ 1003.672620][T20913] R13: 0000000000000000 R14: 00007ffe7f7abf10 R15: 00007ffe7f7abff8
[ 1003.672648][T20913]  </TASK>
[ 1004.587693][T20924] rtc_cmos 00:00: in use; can't configure
[ 1004.594816][T20921] FAULT_INJECTION: forcing a failure.
[ 1004.594816][T20921] name failslab, interval 1, probability 0, space 0, times 0
[ 1004.621845][T20921] CPU: 0 UID: 0 PID: 20921 Comm: syz.0.2564 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1004.621885][T20921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1004.621903][T20921] Call Trace:
[ 1004.621913][T20921]  <TASK>
[ 1004.621925][T20921]  dump_stack_lvl+0x16c/0x1f0
[ 1004.621974][T20921]  should_fail_ex+0x512/0x640
[ 1004.622017][T20921]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1004.622067][T20921]  should_failslab+0xc2/0x120
[ 1004.622096][T20921]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1004.622141][T20921]  ? security_file_alloc+0x34/0x2b0
[ 1004.622186][T20921]  security_file_alloc+0x34/0x2b0
[ 1004.622225][T20921]  init_file+0x93/0x4c0
[ 1004.622255][T20921]  alloc_empty_file+0x73/0x1e0
[ 1004.622288][T20921]  alloc_file_pseudo+0x13a/0x230
[ 1004.622322][T20921]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1004.622355][T20921]  ? security_inode_init_security_anon+0x79/0x240
[ 1004.622398][T20921]  secretmem_file_create.constprop.0+0x89/0x270
[ 1004.622432][T20921]  __x64_sys_memfd_secret+0xc5/0x1a0
[ 1004.622461][T20921]  do_syscall_64+0xcd/0x490
[ 1004.622509][T20921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1004.622539][T20921] RIP: 0033:0x7f7b2f98e929
[ 1004.622563][T20921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1004.622593][T20921] RSP: 002b:00007f7b307f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[ 1004.622621][T20921] RAX: ffffffffffffffda RBX: 00007f7b2fbb6240 RCX: 00007f7b2f98e929
[ 1004.622641][T20921] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1004.622658][T20921] RBP: 00007f7b2fa10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1004.622677][T20921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1004.622694][T20921] R13: 0000000000000000 R14: 00007f7b2fbb6240 R15: 00007ffe35ccd478
[ 1004.622737][T20921]  </TASK>
[ 1007.264972][T20946] rtc_cmos 00:00: in use; can't configure
[ 1008.140337][T20964] FAULT_INJECTION: forcing a failure.
[ 1008.140337][T20964] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1008.207097][T20964] CPU: 1 UID: 0 PID: 20964 Comm: syz.3.2572 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1008.207140][T20964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1008.207160][T20964] Call Trace:
[ 1008.207171][T20964]  <TASK>
[ 1008.207183][T20964]  dump_stack_lvl+0x16c/0x1f0
[ 1008.207232][T20964]  should_fail_ex+0x512/0x640
[ 1008.207282][T20964]  get_futex_key+0x1d0/0x1540
[ 1008.207323][T20964]  ? __pfx_get_futex_key+0x10/0x10
[ 1008.207370][T20964]  futex_wake+0xe7/0x4e0
[ 1008.207418][T20964]  ? __pfx_futex_wake+0x10/0x10
[ 1008.207467][T20964]  ? __pfx___might_resched+0x10/0x10
[ 1008.207500][T20964]  ? rcu_is_watching+0x12/0xc0
[ 1008.207532][T20964]  ? lockdep_init_map_type+0x5c/0x280
[ 1008.207587][T20964]  do_futex+0x1e3/0x350
[ 1008.207625][T20964]  ? __pfx_do_futex+0x10/0x10
[ 1008.207663][T20964]  ? file_init_path+0x4fe/0x760
[ 1008.207700][T20964]  __x64_sys_futex+0x1e0/0x4c0
[ 1008.207744][T20964]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1008.207797][T20964]  do_syscall_64+0xcd/0x490
[ 1008.207846][T20964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1008.207876][T20964] RIP: 0033:0x7fbb8f18e929
[ 1008.207900][T20964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1008.207931][T20964] RSP: 002b:00007fbb8cbb20e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1008.207959][T20964] RAX: ffffffffffffffda RBX: 00007fbb8f3b6248 RCX: 00007fbb8f18e929
[ 1008.207979][T20964] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbb8f3b624c
[ 1008.207999][T20964] RBP: 00007fbb8f3b6240 R08: 00007fbb8ff14000 R09: 0000000000000000
[ 1008.208018][T20964] R10: 000000000000000e R11: 0000000000000246 R12: 00007fbb8f3b624c
[ 1008.208036][T20964] R13: 0000000000000000 R14: 00007fffb79e30c0 R15: 00007fffb79e31a8
[ 1008.208073][T20964]  </TASK>
[ 1009.115603][T20974] FAULT_INJECTION: forcing a failure.
[ 1009.115603][T20974] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1009.324055][T20974] CPU: 1 UID: 0 PID: 20974 Comm: syz.1.2573 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1009.324098][T20974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1009.324119][T20974] Call Trace:
[ 1009.324129][T20974]  <TASK>
[ 1009.324141][T20974]  dump_stack_lvl+0x16c/0x1f0
[ 1009.324196][T20974]  should_fail_ex+0x512/0x640
[ 1009.324247][T20974]  get_futex_key+0x1d0/0x1540
[ 1009.324288][T20974]  ? __pfx_get_futex_key+0x10/0x10
[ 1009.324339][T20974]  futex_wake+0xe7/0x4e0
[ 1009.324385][T20974]  ? __pfx_futex_wake+0x10/0x10
[ 1009.324436][T20974]  ? __pfx___might_resched+0x10/0x10
[ 1009.324470][T20974]  ? rcu_is_watching+0x12/0xc0
[ 1009.324503][T20974]  ? lockdep_init_map_type+0x5c/0x280
[ 1009.324553][T20974]  do_futex+0x1e3/0x350
[ 1009.324591][T20974]  ? __pfx_do_futex+0x10/0x10
[ 1009.324630][T20974]  ? file_init_path+0x4fe/0x760
[ 1009.324680][T20974]  __x64_sys_futex+0x1e0/0x4c0
[ 1009.324725][T20974]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1009.324780][T20974]  do_syscall_64+0xcd/0x490
[ 1009.324832][T20974]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1009.324864][T20974] RIP: 0033:0x7fedec58e929
[ 1009.324889][T20974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1009.324920][T20974] RSP: 002b:00007feded3890e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1009.324951][T20974] RAX: ffffffffffffffda RBX: 00007fedec7b6248 RCX: 00007fedec58e929
[ 1009.324971][T20974] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fedec7b624c
[ 1009.324991][T20974] RBP: 00007fedec7b6240 R08: 00007feded3ed000 R09: 0000000000000000
[ 1009.325011][T20974] R10: 000000000000000d R11: 0000000000000246 R12: 00007fedec7b624c
[ 1009.325031][T20974] R13: 0000000000000000 R14: 00007ffcbe4e7c00 R15: 00007ffcbe4e7ce8
[ 1009.325069][T20974]  </TASK>
[ 1010.743518][T20988] FAULT_INJECTION: forcing a failure.
[ 1010.743518][T20988] name failslab, interval 1, probability 0, space 0, times 0
[ 1010.767055][T20988] CPU: 0 UID: 0 PID: 20988 Comm: syz.0.2576 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1010.767095][T20988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1010.767114][T20988] Call Trace:
[ 1010.767124][T20988]  <TASK>
[ 1010.767136][T20988]  dump_stack_lvl+0x16c/0x1f0
[ 1010.767185][T20988]  should_fail_ex+0x512/0x640
[ 1010.767228][T20988]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1010.767285][T20988]  should_failslab+0xc2/0x120
[ 1010.767315][T20988]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1010.767361][T20988]  ? security_file_alloc+0x34/0x2b0
[ 1010.767409][T20988]  security_file_alloc+0x34/0x2b0
[ 1010.767449][T20988]  init_file+0x93/0x4c0
[ 1010.767479][T20988]  alloc_empty_file+0x73/0x1e0
[ 1010.767513][T20988]  alloc_file_pseudo+0x13a/0x230
[ 1010.767546][T20988]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1010.767580][T20988]  ? security_inode_init_security_anon+0x79/0x240
[ 1010.767623][T20988]  secretmem_file_create.constprop.0+0x89/0x270
[ 1010.767657][T20988]  __x64_sys_memfd_secret+0xc5/0x1a0
[ 1010.767688][T20988]  do_syscall_64+0xcd/0x490
[ 1010.767736][T20988]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1010.767767][T20988] RIP: 0033:0x7f7b2f98e929
[ 1010.767791][T20988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1010.767821][T20988] RSP: 002b:00007f7b30817038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[ 1010.767849][T20988] RAX: ffffffffffffffda RBX: 00007f7b2fbb6160 RCX: 00007f7b2f98e929
[ 1010.767869][T20988] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1010.767887][T20988] RBP: 00007f7b2fa10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1010.767906][T20988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1010.767924][T20988] R13: 0000000000000000 R14: 00007f7b2fbb6160 R15: 00007ffe35ccd478
[ 1010.767961][T20988]  </TASK>
[ 1012.291273][T20997] ubi0: attaching mtd0
[ 1012.298848][T20997] ubi0: scanning is finished
[ 1012.303489][T20997] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1012.454521][T20999] ERROR: Out of memory at tomoyo_memory_ok.
[ 1012.658226][T20997] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1012.810158][T20995] ERROR: Out of memory at tomoyo_memory_ok.
[ 1013.949743][T21027] ERROR: Out of memory at tomoyo_memory_ok.
[ 1013.975494][T21027] FAULT_INJECTION: forcing a failure.
[ 1013.975494][T21027] name failslab, interval 1, probability 0, space 0, times 0
[ 1014.018110][T21027] CPU: 0 UID: 0 PID: 21027 Comm: syz.1.2586 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1014.018139][T21027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1014.018152][T21027] Call Trace:
[ 1014.018159][T21027]  <TASK>
[ 1014.018168][T21027]  dump_stack_lvl+0x16c/0x1f0
[ 1014.018205][T21027]  should_fail_ex+0x512/0x640
[ 1014.018234][T21027]  ? fs_reclaim_acquire+0xae/0x150
[ 1014.018261][T21027]  should_failslab+0xc2/0x120
[ 1014.018282][T21027]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1014.018323][T21027]  ? security_inode_alloc+0x3b/0x2b0
[ 1014.018351][T21027]  security_inode_alloc+0x3b/0x2b0
[ 1014.018375][T21027]  inode_init_always_gfp+0xce4/0x1030
[ 1014.018409][T21027]  alloc_inode+0x86/0x240
[ 1014.018431][T21027]  new_inode+0x22/0x1c0
[ 1014.018454][T21027]  simple_fill_super+0x306/0x720
[ 1014.018487][T21027]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1014.018510][T21027]  nfsd_fill_super+0x90/0x530
[ 1014.018531][T21027]  ? __pfx_set_anon_super_fc+0x10/0x10
[ 1014.018559][T21027]  ? __pfx_nfsd_fill_super+0x10/0x10
[ 1014.018581][T21027]  get_tree_keyed+0x10e/0x1d0
[ 1014.018611][T21027]  vfs_get_tree+0x8e/0x340
[ 1014.018635][T21027]  path_mount+0x1414/0x2020
[ 1014.018669][T21027]  ? kmem_cache_free+0x2d1/0x4d0
[ 1014.018698][T21027]  ? __pfx_path_mount+0x10/0x10
[ 1014.018733][T21027]  ? putname+0x154/0x1a0
[ 1014.018756][T21027]  __x64_sys_mount+0x28d/0x310
[ 1014.018789][T21027]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1014.018829][T21027]  do_syscall_64+0xcd/0x490
[ 1014.018862][T21027]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1014.018884][T21027] RIP: 0033:0x7fedec58e929
[ 1014.018900][T21027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1014.018920][T21027] RSP: 002b:00007feded3cb038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1014.018939][T21027] RAX: ffffffffffffffda RBX: 00007fedec7b6080 RCX: 00007fedec58e929
[ 1014.018953][T21027] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[ 1014.018966][T21027] RBP: 00007fedec610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1014.018978][T21027] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[ 1014.018991][T21027] R13: 0000000000000000 R14: 00007fedec7b6080 R15: 00007ffcbe4e7ce8
[ 1014.019016][T21027]  </TASK>
[ 1016.539234][T21053] rtc_cmos 00:00: in use; can't configure
[ 1017.352110][T21073] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input54
[ 1017.426487][T21071] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.2597: iget: checksum invalid
[ 1017.524339][T21071] platform regulatory.0: loading /lib/firmware/updates/6.16.0-rc5-syzkaller-00193-g40f92e79b0aa/regulatory.db failed with error -74
[ 1017.605578][T21069] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1017.616626][T21069] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1017.625395][T21069] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1017.632570][T21069] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1017.639877][T21071] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.2597: iget: checksum invalid
[ 1017.690156][T21071] platform regulatory.0: loading /lib/firmware/updates/regulatory.db failed with error -74
[ 1017.701613][T21071] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.2597: iget: checksum invalid
[ 1017.716937][T21071] platform regulatory.0: loading /lib/firmware/6.16.0-rc5-syzkaller-00193-g40f92e79b0aa/regulatory.db failed with error -74
[ 1017.766678][T21071] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.2.2597: iget: checksum invalid
[ 1017.784350][T21071] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -74
[ 1017.800489][T21071] platform regulatory.0: Direct firmware load for regulatory.db failed with error -74
[ 1017.813870][T21071] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1017.839604][T21071] FAULT_INJECTION: forcing a failure.
[ 1017.839604][T21071] name failslab, interval 1, probability 0, space 0, times 0
[ 1017.854652][T21071] CPU: 1 UID: 0 PID: 21071 Comm: syz.2.2597 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1017.854684][T21071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1017.854700][T21071] Call Trace:
[ 1017.854708][T21071]  <TASK>
[ 1017.854718][T21071]  dump_stack_lvl+0x16c/0x1f0
[ 1017.854759][T21071]  should_fail_ex+0x512/0x640
[ 1017.854796][T21071]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1017.854837][T21071]  should_failslab+0xc2/0x120
[ 1017.854859][T21071]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1017.854897][T21071]  ? __kernfs_new_node+0xd2/0x8e0
[ 1017.854935][T21071]  __kernfs_new_node+0xd2/0x8e0
[ 1017.854972][T21071]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1017.855013][T21071]  ? find_held_lock+0x2b/0x80
[ 1017.855047][T21071]  ? kernfs_root+0xee/0x2a0
[ 1017.855086][T21071]  kernfs_new_node+0x13c/0x1e0
[ 1017.855154][T21071]  kernfs_create_dir_ns+0x4c/0x1a0
[ 1017.855193][T21071]  internal_create_group+0x34d/0xf30
[ 1017.855231][T21071]  ? __pfx_internal_create_group+0x10/0x10
[ 1017.855263][T21071]  ? __pfx_internal_create_group+0x10/0x10
[ 1017.855297][T21071]  ? __pfx_dev_add_physical_location+0x10/0x10
[ 1017.855321][T21071]  ? bus_to_subsys+0x131/0x160
[ 1017.855363][T21071]  dpm_sysfs_add+0x80/0x280
[ 1017.855385][T21071]  device_add+0x9a6/0x1a70
[ 1017.855408][T21071]  ? __pfx_device_add+0x10/0x10
[ 1017.855428][T21071]  ? __init_waitqueue_head+0xca/0x150
[ 1017.855458][T21071]  firmware_fallback_sysfs+0x2ec/0xbe0
[ 1017.855494][T21071]  _request_firmware+0xfe9/0x1470
[ 1017.855531][T21071]  ? __pfx__request_firmware+0x10/0x10
[ 1017.855558][T21071]  ? __pfx_netdev_run_todo+0x10/0x10
[ 1017.855591][T21071]  ? __pfx___mutex_lock+0x10/0x10
[ 1017.855630][T21071]  request_firmware+0x35/0x50
[ 1017.855658][T21071]  reg_reload_regdb+0x89/0x460
[ 1017.855683][T21071]  ? __pfx_reg_reload_regdb+0x10/0x10
[ 1017.855708][T21071]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1017.855738][T21071]  ? nl80211_pre_doit+0x1b0/0xb10
[ 1017.855771][T21071]  genl_family_rcv_msg_doit+0x206/0x2f0
[ 1017.855799][T21071]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1017.855823][T21071]  ? rcu_is_watching+0x12/0xc0
[ 1017.855854][T21071]  ? bpf_lsm_capable+0x9/0x10
[ 1017.855879][T21071]  ? security_capable+0x7e/0x260
[ 1017.855904][T21071]  genl_rcv_msg+0x55c/0x800
[ 1017.855931][T21071]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1017.855956][T21071]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1017.855985][T21071]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[ 1017.856007][T21071]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1017.856053][T21071]  netlink_rcv_skb+0x155/0x420
[ 1017.856075][T21071]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1017.856101][T21071]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1017.856133][T21071]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1017.856171][T21071]  genl_rcv+0x28/0x40
[ 1017.856191][T21071]  netlink_unicast+0x58d/0x850
[ 1017.856216][T21071]  ? __pfx_netlink_unicast+0x10/0x10
[ 1017.856245][T21071]  netlink_sendmsg+0x8d1/0xdd0
[ 1017.856270][T21071]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1017.856301][T21071]  ____sys_sendmsg+0xa95/0xc70
[ 1017.856324][T21071]  ? copy_msghdr_from_user+0x10a/0x160
[ 1017.856354][T21071]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1017.856382][T21071]  ? try_to_wake_up+0xa2f/0x1680
[ 1017.856407][T21071]  ___sys_sendmsg+0x134/0x1d0
[ 1017.856439][T21071]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1017.856467][T21071]  ? __lock_acquire+0x622/0x1c90
[ 1017.856526][T21071]  __sys_sendmsg+0x16d/0x220
[ 1017.856557][T21071]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1017.856587][T21071]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1017.856628][T21071]  do_syscall_64+0xcd/0x490
[ 1017.856661][T21071]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1017.856682][T21071] RIP: 0033:0x7fdea618e929
[ 1017.856698][T21071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1017.856719][T21071] RSP: 002b:00007fdea6f3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1017.856738][T21071] RAX: ffffffffffffffda RBX: 00007fdea63b5fa0 RCX: 00007fdea618e929
[ 1017.856752][T21071] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000007
[ 1017.856765][T21071] RBP: 00007fdea6210b39 R08: 0000000000000000 R09: 0000000000000000
[ 1017.856777][T21071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1017.856790][T21071] R13: 0000000000000000 R14: 00007fdea63b5fa0 R15: 00007ffe7f7abff8
[ 1017.856817][T21071]  </TASK>
[ 1017.857247][T21071] firmware regulatory.db: fw_load_sysfs_fallback: device_register failed
[ 1018.025917][T21077] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2598'.
[ 1018.349511][T21081] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2598'.
[ 1018.374529][T21077] geneve1: entered promiscuous mode
[ 1018.384658][T21077] geneve1: entered allmulticast mode
[ 1018.549039][T21079] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2599'.
[ 1018.683533][T21092] FAULT_INJECTION: forcing a failure.
[ 1018.683533][T21092] name failslab, interval 1, probability 0, space 0, times 0
[ 1018.704197][T21092] CPU: 1 UID: 0 PID: 21092 Comm: syz.2.2600 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1018.704244][T21092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1018.704265][T21092] Call Trace:
[ 1018.704277][T21092]  <TASK>
[ 1018.704291][T21092]  dump_stack_lvl+0x16c/0x1f0
[ 1018.704346][T21092]  should_fail_ex+0x512/0x640
[ 1018.704395][T21092]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1018.704451][T21092]  should_failslab+0xc2/0x120
[ 1018.704485][T21092]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1018.704537][T21092]  ? security_file_alloc+0x34/0x2b0
[ 1018.704588][T21092]  security_file_alloc+0x34/0x2b0
[ 1018.704633][T21092]  init_file+0x93/0x4c0
[ 1018.704669][T21092]  alloc_empty_file+0x73/0x1e0
[ 1018.704706][T21092]  alloc_file_pseudo+0x13a/0x230
[ 1018.704756][T21092]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1018.704795][T21092]  ? security_inode_init_security_anon+0x79/0x240
[ 1018.704845][T21092]  secretmem_file_create.constprop.0+0x89/0x270
[ 1018.704884][T21092]  __x64_sys_memfd_secret+0xc5/0x1a0
[ 1018.704919][T21092]  do_syscall_64+0xcd/0x490
[ 1018.704974][T21092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1018.705010][T21092] RIP: 0033:0x7fdea618e929
[ 1018.705036][T21092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1018.705069][T21092] RSP: 002b:00007fdea3bd3038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[ 1018.705100][T21092] RAX: ffffffffffffffda RBX: 00007fdea63b6240 RCX: 00007fdea618e929
[ 1018.705123][T21092] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1018.705144][T21092] RBP: 00007fdea6210b39 R08: 0000000000000000 R09: 0000000000000000
[ 1018.705176][T21092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1018.705195][T21092] R13: 0000000000000000 R14: 00007fdea63b6240 R15: 00007ffe7f7abff8
[ 1018.705239][T21092]  </TASK>
[ 1019.401896][ T5852] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1019.645885][ T5852] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1019.652048][T16932] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1019.707852][ T5852] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1019.796609][T21095] netlink: 504 bytes leftover after parsing attributes in process `syz.1.2602'.
[ 1021.055651][T21143] Invalid ELF header magic: != ELF
[ 1021.966547][T21132] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1021.980480][T21132] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1021.988161][T21132] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1021.994363][T21132] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1022.032813][T21165] vivid-007: =================  START STATUS  =================
[ 1022.040683][T21165] vivid-007: Generate PTS: true
[ 1022.045614][T21165] vivid-007: Generate SCR: true
[ 1022.050966][T21165] tpg source WxH: 320x240 (Y'CbCr)
[ 1022.056127][T21165] tpg field: 1
[ 1022.059610][T21165] tpg crop: (0,0)/320x240
[ 1022.072262][T21165] tpg compose: (0,0)/320x240
[ 1022.076914][T21165] tpg colorspace: 8
[ 1022.100055][T21165] tpg transfer function: 0/0
[ 1022.113740][T21165] tpg Y'CbCr encoding: 0/0
[ 1022.137562][T21165] tpg quantization: 0/0
[ 1022.141775][T21165] tpg RGB range: 0/2
[ 1022.145705][T21165] vivid-007: ==================  END STATUS  ==================
[ 1022.924195][T21189] FAULT_INJECTION: forcing a failure.
[ 1022.924195][T21189] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1022.937859][T21189] CPU: 0 UID: 0 PID: 21189 Comm: syz.3.2614 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1022.937888][T21189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1022.937900][T21189] Call Trace:
[ 1022.937907][T21189]  <TASK>
[ 1022.937915][T21189]  dump_stack_lvl+0x16c/0x1f0
[ 1022.937949][T21189]  should_fail_ex+0x512/0x640
[ 1022.937983][T21189]  get_futex_key+0x293/0x1540
[ 1022.938011][T21189]  ? __pfx_get_futex_key+0x10/0x10
[ 1022.938038][T21189]  ? kasan_save_track+0x14/0x30
[ 1022.938068][T21189]  ? __kasan_kmalloc+0xaa/0xb0
[ 1022.938101][T21189]  futex_lock_pi+0x1ca/0x740
[ 1022.938134][T21189]  ? __pfx_futex_lock_pi+0x10/0x10
[ 1022.938161][T21189]  ? __futex_wait+0x24c/0x2f0
[ 1022.938210][T21189]  ? __futex_hash.constprop.0+0x1e9/0x440
[ 1022.938238][T21189]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1022.938273][T21189]  ? __schedule+0x1181/0x5de0
[ 1022.938323][T21189]  do_futex+0x11a/0x350
[ 1022.938351][T21189]  ? __pfx_do_futex+0x10/0x10
[ 1022.938380][T21189]  ? __pfx___schedule+0x10/0x10
[ 1022.938411][T21189]  __x64_sys_futex+0x1e0/0x4c0
[ 1022.938441][T21189]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1022.938469][T21189]  ? xfd_validate_state+0x61/0x180
[ 1022.938508][T21189]  do_syscall_64+0xcd/0x490
[ 1022.938542][T21189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1022.938565][T21189] RIP: 0033:0x7fbb8f18e929
[ 1022.938583][T21189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1022.938604][T21189] RSP: 002b:00007fbb8ff13038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1022.938624][T21189] RAX: ffffffffffffffda RBX: 00007fbb8f3b5fa0 RCX: 00007fbb8f18e929
[ 1022.938639][T21189] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[ 1022.938652][T21189] RBP: 00007fbb8f210b39 R08: 0000000000000000 R09: 0000000080000001
[ 1022.938673][T21189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1022.938687][T21189] R13: 0000000000000000 R14: 00007fbb8f3b5fa0 R15: 00007fffb79e31a8
[ 1022.938713][T21189]  </TASK>
[ 1023.163521][T21186] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2613'.
[ 1023.237322][ T5852] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1024.010671][T21195] device-mapper: ioctl: Invalid ioctl structure: name , dev 3000000000
[ 1024.039589][ T5852] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1024.047648][T16932] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1024.053707][T16932] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1024.340373][T21218] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2619'.
[ 1024.362047][T21218] mac80211_hwsim hwsim17 wlan1: entered allmulticast mode
[ 1025.166851][T21229] rtc_cmos 00:00: in use; can't configure
[ 1025.539054][T21248] FAULT_INJECTION: forcing a failure.
[ 1025.539054][T21248] name failslab, interval 1, probability 0, space 0, times 0
[ 1025.601929][T21248] CPU: 0 UID: 0 PID: 21248 Comm: syz.2.2623 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1025.601969][T21248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1025.601986][T21248] Call Trace:
[ 1025.601995][T21248]  <TASK>
[ 1025.602007][T21248]  dump_stack_lvl+0x16c/0x1f0
[ 1025.602053][T21248]  should_fail_ex+0x512/0x640
[ 1025.602090][T21248]  ? __kmalloc_noprof+0xbf/0x510
[ 1025.602134][T21248]  ? tbl_mask_array_alloc+0x38/0x160
[ 1025.602169][T21248]  should_failslab+0xc2/0x120
[ 1025.602197][T21248]  __kmalloc_noprof+0xd2/0x510
[ 1025.602253][T21248]  tbl_mask_array_alloc+0x38/0x160
[ 1025.602290][T21248]  ovs_flow_tbl_init+0x40/0x600
[ 1025.602327][T21248]  ? kasan_save_track+0x14/0x30
[ 1025.602372][T21248]  ovs_dp_cmd_new+0x251/0xe60
[ 1025.602422][T21248]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[ 1025.602470][T21248]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[ 1025.602514][T21248]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[ 1025.602559][T21248]  genl_family_rcv_msg_doit+0x206/0x2f0
[ 1025.602598][T21248]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1025.602633][T21248]  ? trace_cap_capable+0x18d/0x200
[ 1025.602669][T21248]  ? bpf_lsm_capable+0x9/0x10
[ 1025.602705][T21248]  ? security_capable+0x7e/0x260
[ 1025.602733][T21248]  ? ns_capable+0xd7/0x110
[ 1025.602767][T21248]  genl_rcv_msg+0x55c/0x800
[ 1025.602805][T21248]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1025.602841][T21248]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[ 1025.602892][T21248]  netlink_rcv_skb+0x155/0x420
[ 1025.602922][T21248]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1025.602959][T21248]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1025.603003][T21248]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1025.603055][T21248]  genl_rcv+0x28/0x40
[ 1025.603084][T21248]  netlink_unicast+0x58d/0x850
[ 1025.603119][T21248]  ? __pfx_netlink_unicast+0x10/0x10
[ 1025.603159][T21248]  netlink_sendmsg+0x8d1/0xdd0
[ 1025.603194][T21248]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1025.603237][T21248]  ____sys_sendmsg+0xa95/0xc70
[ 1025.603270][T21248]  ? copy_msghdr_from_user+0x10a/0x160
[ 1025.603313][T21248]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1025.603363][T21248]  ___sys_sendmsg+0x134/0x1d0
[ 1025.603408][T21248]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1025.603448][T21248]  ? __lock_acquire+0x622/0x1c90
[ 1025.603536][T21248]  __sys_sendmsg+0x16d/0x220
[ 1025.603579][T21248]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1025.603647][T21248]  do_syscall_64+0xcd/0x490
[ 1025.603693][T21248]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1025.603722][T21248] RIP: 0033:0x7fdea618e929
[ 1025.603744][T21248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1025.603772][T21248] RSP: 002b:00007fdea6f1e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1025.603798][T21248] RAX: ffffffffffffffda RBX: 00007fdea63b6080 RCX: 00007fdea618e929
[ 1025.603817][T21248] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000004
[ 1025.603834][T21248] RBP: 00007fdea6f1e090 R08: 0000000000000000 R09: 0000000000000000
[ 1025.603851][T21248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1025.603869][T21248] R13: 0000000000000000 R14: 00007fdea63b6080 R15: 00007ffe7f7abff8
[ 1025.603905][T21248]  </TASK>
[ 1026.687866][T21263] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2626'.
[ 1027.818214][T21295] FAULT_INJECTION: forcing a failure.
[ 1027.818214][T21295] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1027.836833][T21295] CPU: 1 UID: 0 PID: 21295 Comm: syz.1.2630 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1027.836875][T21295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1027.836889][T21295] Call Trace:
[ 1027.836897][T21295]  <TASK>
[ 1027.836906][T21295]  dump_stack_lvl+0x16c/0x1f0
[ 1027.836943][T21295]  should_fail_ex+0x512/0x640
[ 1027.836979][T21295]  get_futex_key+0x1d0/0x1540
[ 1027.837009][T21295]  ? __pfx_get_futex_key+0x10/0x10
[ 1027.837032][T21295]  ? plist_check_head+0xa3/0x150
[ 1027.837056][T21295]  ? find_held_lock+0x2b/0x80
[ 1027.837094][T21295]  futex_wake+0xe7/0x4e0
[ 1027.837123][T21295]  ? apparmor_file_permission+0x251/0x400
[ 1027.837150][T21295]  ? bpf_lsm_file_permission+0x9/0x10
[ 1027.837175][T21295]  ? __pfx_futex_wake+0x10/0x10
[ 1027.837210][T21295]  ? __pfx_cpuid_read+0x10/0x10
[ 1027.837233][T21295]  ? vfs_read+0x23b/0xc60
[ 1027.837270][T21295]  do_futex+0x1e3/0x350
[ 1027.837298][T21295]  ? __pfx_do_futex+0x10/0x10
[ 1027.837451][T21295]  __x64_sys_futex+0x1e0/0x4c0
[ 1027.837500][T21295]  ? fput+0x70/0xf0
[ 1027.837536][T21295]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1027.837562][T21295]  ? ksys_read+0x1ac/0x250
[ 1027.837590][T21295]  ? __pfx_ksys_read+0x10/0x10
[ 1027.837627][T21295]  do_syscall_64+0xcd/0x490
[ 1027.837661][T21295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1027.837683][T21295] RIP: 0033:0x7fedec58e929
[ 1027.837700][T21295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1027.837720][T21295] RSP: 002b:00007feded3cb0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1027.837739][T21295] RAX: ffffffffffffffda RBX: 00007fedec7b6088 RCX: 00007fedec58e929
[ 1027.837753][T21295] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fedec7b608c
[ 1027.837765][T21295] RBP: 00007fedec7b6080 R08: 00007feded3ed000 R09: 0000000000000000
[ 1027.837778][T21295] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fedec7b608c
[ 1027.837792][T21295] R13: 0000000000000000 R14: 00007ffcbe4e7c00 R15: 00007ffcbe4e7ce8
[ 1027.837824][T21295]  </TASK>
[ 1028.173434][T21295] FAULT_INJECTION: forcing a failure.
[ 1028.173434][T21295] name failslab, interval 1, probability 0, space 0, times 0
[ 1028.535672][T21295] CPU: 0 UID: 0 PID: 21295 Comm: syz.1.2630 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1028.535719][T21295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1028.535740][T21295] Call Trace:
[ 1028.535751][T21295]  <TASK>
[ 1028.535764][T21295]  dump_stack_lvl+0x16c/0x1f0
[ 1028.535817][T21295]  should_fail_ex+0x512/0x640
[ 1028.535864][T21295]  ? fs_reclaim_acquire+0xae/0x150
[ 1028.535906][T21295]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1028.535950][T21295]  should_failslab+0xc2/0x120
[ 1028.535973][T21295]  __kmalloc_noprof+0xd2/0x510
[ 1028.536014][T21295]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1028.536057][T21295]  tomoyo_check_open_permission+0x2ab/0x3c0
[ 1028.536086][T21295]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1028.536145][T21295]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1028.536207][T21295]  tomoyo_file_open+0x6b/0x90
[ 1028.536253][T21295]  security_file_open+0x84/0x1e0
[ 1028.536291][T21295]  do_dentry_open+0x596/0x1c10
[ 1028.536334][T21295]  vfs_open+0x82/0x3f0
[ 1028.536361][T21295]  path_openat+0x1de4/0x2cb0
[ 1028.536402][T21295]  ? __pfx_path_openat+0x10/0x10
[ 1028.536436][T21295]  ? __lock_acquire+0xb8a/0x1c90
[ 1028.536468][T21295]  do_filp_open+0x20b/0x470
[ 1028.536500][T21295]  ? __pfx_do_filp_open+0x10/0x10
[ 1028.536551][T21295]  ? alloc_fd+0x471/0x7d0
[ 1028.536588][T21295]  do_sys_openat2+0x11b/0x1d0
[ 1028.536612][T21295]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1028.536647][T21295]  __x64_sys_openat+0x174/0x210
[ 1028.536672][T21295]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1028.536709][T21295]  do_syscall_64+0xcd/0x490
[ 1028.536744][T21295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1028.536766][T21295] RIP: 0033:0x7fedec58e929
[ 1028.536784][T21295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1028.536805][T21295] RSP: 002b:00007feded3cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1028.536826][T21295] RAX: ffffffffffffffda RBX: 00007fedec7b6080 RCX: 00007fedec58e929
[ 1028.536841][T21295] RDX: 000000000002ab01 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 1028.536856][T21295] RBP: 00007fedec610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1028.536869][T21295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1028.536882][T21295] R13: 0000000000000000 R14: 00007fedec7b6080 R15: 00007ffcbe4e7ce8
[ 1028.536910][T21295]  </TASK>
[ 1028.565601][T21295] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1029.739763][T21325] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input55
[ 1029.752758][T21325] FAULT_INJECTION: forcing a failure.
[ 1029.752758][T21325] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1029.797602][T21325] CPU: 0 UID: 0 PID: 21325 Comm: syz.1.2635 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1029.797640][T21325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1029.797658][T21325] Call Trace:
[ 1029.797668][T21325]  <TASK>
[ 1029.797679][T21325]  dump_stack_lvl+0x16c/0x1f0
[ 1029.797726][T21325]  should_fail_ex+0x512/0x640
[ 1029.797774][T21325]  _copy_from_user+0x2e/0xd0
[ 1029.797820][T21325]  input_event_from_user+0xb9/0x290
[ 1029.797865][T21325]  ? __pfx_input_event_from_user+0x10/0x10
[ 1029.797910][T21325]  ? __pfx___might_resched+0x10/0x10
[ 1029.797942][T21325]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1029.797982][T21325]  ? input_event+0x98/0xb0
[ 1029.798025][T21325]  uinput_write+0xbe7/0xff0
[ 1029.798061][T21325]  ? __pfx_uinput_write+0x10/0x10
[ 1029.798091][T21325]  ? bpf_lsm_file_permission+0x9/0x10
[ 1029.798123][T21325]  ? security_file_permission+0x71/0x210
[ 1029.798162][T21325]  ? rw_verify_area+0xcf/0x680
[ 1029.798213][T21325]  ? __pfx_uinput_write+0x10/0x10
[ 1029.798239][T21325]  vfs_writev+0x5df/0xde0
[ 1029.798287][T21325]  ? __pfx_vfs_writev+0x10/0x10
[ 1029.798351][T21325]  ? __fget_files+0x20e/0x3c0
[ 1029.798388][T21325]  ? __fget_files+0x1a0/0x3c0
[ 1029.798436][T21325]  ? do_writev+0x28c/0x340
[ 1029.798471][T21325]  do_writev+0x28c/0x340
[ 1029.798510][T21325]  ? __pfx_do_writev+0x10/0x10
[ 1029.798560][T21325]  do_syscall_64+0xcd/0x490
[ 1029.798606][T21325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1029.798637][T21325] RIP: 0033:0x7fedec58e929
[ 1029.798659][T21325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1029.798687][T21325] RSP: 002b:00007feded3aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1029.798712][T21325] RAX: ffffffffffffffda RBX: 00007fedec7b6160 RCX: 00007fedec58e929
[ 1029.798731][T21325] RDX: 0000000000000009 RSI: 0000200000000340 RDI: 0000000000000007
[ 1029.798748][T21325] RBP: 00007feded3aa090 R08: 0000000000000000 R09: 0000000000000000
[ 1029.798765][T21325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1029.798782][T21325] R13: 0000000000000000 R14: 00007fedec7b6160 R15: 00007ffcbe4e7ce8
[ 1029.798818][T21325]  </TASK>
[ 1030.023877][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1030.036156][T21327] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2637'.
[ 1030.457891][T21337] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input56

syzkaller
syzkaller login: [ 1032.658886][T21377] random: crng reseeded on system resumption
[ 1032.676101][T21377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2646'.
[ 1032.691705][T21377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2646'.
[ 1033.133152][T21387] FAULT_INJECTION: forcing a failure.
[ 1033.133152][T21387] name failslab, interval 1, probability 0, space 0, times 0
[ 1033.146657][T21387] CPU: 1 UID: 0 PID: 21387 Comm: syz.3.2648 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1033.146703][T21387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1033.146723][T21387] Call Trace:
[ 1033.146734][T21387]  <TASK>
[ 1033.146747][T21387]  dump_stack_lvl+0x16c/0x1f0
[ 1033.146801][T21387]  should_fail_ex+0x512/0x640
[ 1033.146853][T21387]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1033.146909][T21387]  should_failslab+0xc2/0x120
[ 1033.146947][T21387]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1033.146999][T21387]  ? security_file_alloc+0x34/0x2b0
[ 1033.147048][T21387]  security_file_alloc+0x34/0x2b0
[ 1033.147093][T21387]  init_file+0x93/0x4c0
[ 1033.147127][T21387]  alloc_empty_file+0x73/0x1e0
[ 1033.147163][T21387]  alloc_file_pseudo+0x13a/0x230
[ 1033.147202][T21387]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1033.147240][T21387]  ? security_inode_init_security_anon+0x79/0x240
[ 1033.147287][T21387]  secretmem_file_create.constprop.0+0x89/0x270
[ 1033.147324][T21387]  __x64_sys_memfd_secret+0xc5/0x1a0
[ 1033.147358][T21387]  do_syscall_64+0xcd/0x490
[ 1033.147415][T21387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1033.147450][T21387] RIP: 0033:0x7fbb8f18e929
[ 1033.147475][T21387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1033.147509][T21387] RSP: 002b:00007fbb8cfd5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[ 1033.147540][T21387] RAX: ffffffffffffffda RBX: 00007fbb8f3b6160 RCX: 00007fbb8f18e929
[ 1033.147563][T21387] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1033.147584][T21387] RBP: 00007fbb8f210b39 R08: 0000000000000000 R09: 0000000000000000
[ 1033.147626][T21387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1033.147647][T21387] R13: 0000000000000000 R14: 00007fbb8f3b6160 R15: 00007fffb79e31a8
[ 1033.147688][T21387]  </TASK>
[ 1033.834547][T21393] rtc_cmos 00:00: in use; can't configure
[ 1034.484236][T21421] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input57
[ 1034.643701][T21431] FAULT_INJECTION: forcing a failure.
[ 1034.643701][T21431] name failslab, interval 1, probability 0, space 0, times 0
[ 1034.728258][T21431] CPU: 1 UID: 0 PID: 21431 Comm: syz.3.2655 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1034.728297][T21431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1034.728313][T21431] Call Trace:
[ 1034.728323][T21431]  <TASK>
[ 1034.728334][T21431]  dump_stack_lvl+0x16c/0x1f0
[ 1034.728379][T21431]  should_fail_ex+0x512/0x640
[ 1034.728427][T21431]  should_failslab+0xc2/0x120
[ 1034.728455][T21431]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 1034.728499][T21431]  ? __alloc_skb+0x2b2/0x380
[ 1034.728545][T21431]  __alloc_skb+0x2b2/0x380
[ 1034.728584][T21431]  ? __pfx___alloc_skb+0x10/0x10
[ 1034.728627][T21431]  ? sctp_packet_transmit+0xaa6/0x3040
[ 1034.728673][T21431]  _sctp_make_chunk+0x51/0x270
[ 1034.728715][T21431]  sctp_make_shutdown_ack+0x2e/0x340
[ 1034.728759][T21431]  sctp_sf_do_9_2_shutdown_ack+0x318/0x7c0
[ 1034.728799][T21431]  ? __pfx_sctp_cname+0x10/0x10
[ 1034.728846][T21431]  sctp_do_sm+0x181/0x5c80
[ 1034.728888][T21431]  ? mark_held_locks+0x49/0x80
[ 1034.728927][T21431]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1034.728966][T21431]  ? __pfx_sctp_outq_flush+0x10/0x10
[ 1034.729002][T21431]  ? __pfx_sctp_do_sm+0x10/0x10
[ 1034.729082][T21431]  ? ktime_get+0x200/0x310
[ 1034.729117][T21431]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1034.729161][T21431]  sctp_assoc_bh_rcv+0x392/0x6f0
[ 1034.729203][T21431]  sctp_inq_push+0x1db/0x270
[ 1034.729235][T21431]  sctp_backlog_rcv+0x169/0x590
[ 1034.729275][T21431]  ? __pfx_sctp_backlog_rcv+0x10/0x10
[ 1034.729314][T21431]  __release_sock+0x35f/0x400
[ 1034.729359][T21431]  ? __pfx_sctp_shutdown+0x10/0x10
[ 1034.729402][T21431]  release_sock+0x5a/0x220
[ 1034.729453][T21431]  ? __pfx_sctp_shutdown+0x10/0x10
[ 1034.729495][T21431]  inet_shutdown+0x1e3/0x440
[ 1034.729530][T21431]  __sys_shutdown+0x113/0x1b0
[ 1034.729572][T21431]  __x64_sys_shutdown+0x53/0x80
[ 1034.729611][T21431]  do_syscall_64+0xcd/0x490
[ 1034.729656][T21431]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1034.729685][T21431] RIP: 0033:0x7fbb8f18e929
[ 1034.729707][T21431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1034.729735][T21431] RSP: 002b:00007fbb8cf93038 EFLAGS: 00000246 ORIG_RAX: 0000000000000030
[ 1034.729760][T21431] RAX: ffffffffffffffda RBX: 00007fbb8f3b6320 RCX: 00007fbb8f18e929
[ 1034.729778][T21431] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000200000003
[ 1034.729795][T21431] RBP: 00007fbb8cf93090 R08: 0000000000000000 R09: 0000000000000000
[ 1034.729811][T21431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1034.729835][T21431] R13: 0000000000000001 R14: 00007fbb8f3b6320 R15: 00007fffb79e31a8
[ 1034.729871][T21431]  </TASK>
[ 1037.634410][T21491] ubi0: attaching mtd0
[ 1037.695920][T21491] ubi0: scanning is finished
[ 1037.833708][T21491] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1037.961713][T21503] binder: BINDER_SET_CONTEXT_MGR already set
[ 1038.212998][T21503] binder: 21489:21503 ioctl 4018620d 200000000040 returned -16
[ 1038.224254][T21503] binder: BINDER_SET_CONTEXT_MGR already set
[ 1038.379384][T21512] FAULT_INJECTION: forcing a failure.
[ 1038.379384][T21512] name failslab, interval 1, probability 0, space 0, times 0
[ 1038.394214][T21503] binder: 21489:21503 ioctl 4018620d 200000000040 returned -16
[ 1038.498419][T21491] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1038.568421][T21512] CPU: 0 UID: 0 PID: 21512 Comm: syz.2.2670 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1038.568463][T21512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1038.568483][T21512] Call Trace:
[ 1038.568494][T21512]  <TASK>
[ 1038.568507][T21512]  dump_stack_lvl+0x16c/0x1f0
[ 1038.568560][T21512]  should_fail_ex+0x512/0x640
[ 1038.568610][T21512]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1038.568663][T21512]  should_failslab+0xc2/0x120
[ 1038.568693][T21512]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1038.568740][T21512]  ? security_file_alloc+0x34/0x2b0
[ 1038.568784][T21512]  security_file_alloc+0x34/0x2b0
[ 1038.568823][T21512]  init_file+0x93/0x4c0
[ 1038.568853][T21512]  alloc_empty_file+0x73/0x1e0
[ 1038.568885][T21512]  alloc_file_pseudo+0x13a/0x230
[ 1038.568920][T21512]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1038.568953][T21512]  ? security_inode_init_security_anon+0x79/0x240
[ 1038.568996][T21512]  secretmem_file_create.constprop.0+0x89/0x270
[ 1038.569048][T21512]  __x64_sys_memfd_secret+0xc5/0x1a0
[ 1038.569081][T21512]  do_syscall_64+0xcd/0x490
[ 1038.569132][T21512]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1038.569165][T21512] RIP: 0033:0x7fdea618e929
[ 1038.569211][T21512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1038.569244][T21512] RSP: 002b:00007fdea3bd3038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[ 1038.569275][T21512] RAX: ffffffffffffffda RBX: 00007fdea63b6240 RCX: 00007fdea618e929
[ 1038.569297][T21512] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1038.569317][T21512] RBP: 00007fdea6210b39 R08: 0000000000000000 R09: 0000000000000000
[ 1038.569338][T21512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1038.569358][T21512] R13: 0000000000000000 R14: 00007fdea63b6240 R15: 00007ffe7f7abff8
[ 1038.569399][T21512]  </TASK>
[ 1038.760812][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1039.456872][T21523] netlink: 'syz.0.2672': attribute type 2 has an invalid length.
[ 1039.582676][T21524] FAULT_INJECTION: forcing a failure.
[ 1039.582676][T21524] name failslab, interval 1, probability 0, space 0, times 0
[ 1039.595516][T21524] CPU: 1 UID: 0 PID: 21524 Comm: syz.1.2671 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1039.595559][T21524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1039.595580][T21524] Call Trace:
[ 1039.595592][T21524]  <TASK>
[ 1039.595604][T21524]  dump_stack_lvl+0x16c/0x1f0
[ 1039.595656][T21524]  should_fail_ex+0x512/0x640
[ 1039.595701][T21524]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1039.595754][T21524]  should_failslab+0xc2/0x120
[ 1039.595785][T21524]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1039.595836][T21524]  ? security_file_alloc+0x34/0x2b0
[ 1039.595883][T21524]  security_file_alloc+0x34/0x2b0
[ 1039.595926][T21524]  init_file+0x93/0x4c0
[ 1039.595958][T21524]  alloc_empty_file+0x73/0x1e0
[ 1039.595994][T21524]  alloc_file_pseudo+0x13a/0x230
[ 1039.596031][T21524]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1039.596066][T21524]  ? security_inode_init_security_anon+0x79/0x240
[ 1039.596112][T21524]  secretmem_file_create.constprop.0+0x89/0x270
[ 1039.596167][T21524]  __x64_sys_memfd_secret+0xc5/0x1a0
[ 1039.596201][T21524]  do_syscall_64+0xcd/0x490
[ 1039.596256][T21524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1039.596300][T21524] RIP: 0033:0x7fedec58e929
[ 1039.596328][T21524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1039.596363][T21524] RSP: 002b:00007feded389038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[ 1039.596395][T21524] RAX: ffffffffffffffda RBX: 00007fedec7b6240 RCX: 00007fedec58e929
[ 1039.596418][T21524] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1039.596450][T21524] RBP: 00007fedec610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1039.596470][T21524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1039.596489][T21524] R13: 0000000000000000 R14: 00007fedec7b6240 R15: 00007ffcbe4e7ce8
[ 1039.596529][T21524]  </TASK>
[ 1040.980029][T21534] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2674'.
[ 1041.082663][T21535] netlink: 354 bytes leftover after parsing attributes in process `syz.0.2674'.
[ 1042.793215][T21572] batman_adv: Routing algorithm '' is not supported
[ 1043.588664][T21593] rtc_cmos 00:00: in use; can't configure
[ 1044.151992][T21579] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1044.162672][T21579] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1044.169264][T21579] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1044.182217][T21579] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1044.867673][T21617] FAULT_INJECTION: forcing a failure.
[ 1044.867673][T21617] name failslab, interval 1, probability 0, space 0, times 0
[ 1044.934158][T21617] CPU: 0 UID: 0 PID: 21617 Comm: syz.3.2691 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1044.934193][T21617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1044.934207][T21617] Call Trace:
[ 1044.934215][T21617]  <TASK>
[ 1044.934223][T21617]  dump_stack_lvl+0x16c/0x1f0
[ 1044.934262][T21617]  should_fail_ex+0x512/0x640
[ 1044.934296][T21617]  ? __kmalloc_noprof+0xbf/0x510
[ 1044.934340][T21617]  ? kobject_get_path+0xd2/0x2a0
[ 1044.934374][T21617]  should_failslab+0xc2/0x120
[ 1044.934396][T21617]  __kmalloc_noprof+0xd2/0x510
[ 1044.934436][T21617]  kobject_get_path+0xd2/0x2a0
[ 1044.934477][T21617]  kobject_uevent_env+0x289/0x1870
[ 1044.934501][T21617]  ? __pfx_dev_uevent_name+0x10/0x10
[ 1044.934535][T21617]  ? queue_work_on+0x12a/0x1f0
[ 1044.934556][T21617]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1044.934593][T21617]  rfkill_set_block+0x3c7/0x550
[ 1044.934625][T21617]  state_store+0x11c/0x190
[ 1044.934650][T21617]  ? __pfx_state_store+0x10/0x10
[ 1044.934677][T21617]  ? find_held_lock+0x2b/0x80
[ 1044.934702][T21617]  ? sysfs_file_kobj+0xe4/0x290
[ 1044.934731][T21617]  ? __pfx_state_store+0x10/0x10
[ 1044.934756][T21617]  dev_attr_store+0x58/0x80
[ 1044.934777][T21617]  ? __pfx_dev_attr_store+0x10/0x10
[ 1044.934799][T21617]  sysfs_kf_write+0xef/0x150
[ 1044.934828][T21617]  kernfs_fop_write_iter+0x354/0x510
[ 1044.934854][T21617]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1044.934885][T21617]  iter_file_splice_write+0x91f/0x1150
[ 1044.934934][T21617]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1044.934971][T21617]  ? __pfx_copy_splice_read+0x10/0x10
[ 1044.935016][T21617]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1044.935049][T21617]  direct_splice_actor+0x192/0x6c0
[ 1044.935083][T21617]  splice_direct_to_actor+0x342/0xa30
[ 1044.935128][T21617]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1044.935163][T21617]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1044.935192][T21617]  ? get_pid_task+0xfc/0x250
[ 1044.935241][T21617]  do_splice_direct+0x174/0x240
[ 1044.935270][T21617]  ? __pfx_do_splice_direct+0x10/0x10
[ 1044.935298][T21617]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1044.935331][T21617]  ? rw_verify_area+0xcf/0x680
[ 1044.935360][T21617]  do_sendfile+0xb06/0xe50
[ 1044.935394][T21617]  ? __pfx_do_sendfile+0x10/0x10
[ 1044.935423][T21617]  ? __fget_files+0x20e/0x3c0
[ 1044.935459][T21617]  __x64_sys_sendfile64+0x1d8/0x220
[ 1044.935480][T21617]  ? ksys_write+0x1ac/0x250
[ 1044.935509][T21617]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1044.935539][T21617]  do_syscall_64+0xcd/0x490
[ 1044.935573][T21617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1044.935595][T21617] RIP: 0033:0x7fbb8f18e929
[ 1044.935611][T21617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1044.935632][T21617] RSP: 002b:00007fbb8cff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1044.935653][T21617] RAX: ffffffffffffffda RBX: 00007fbb8f3b6080 RCX: 00007fbb8f18e929
[ 1044.935668][T21617] RDX: 0000000000000000 RSI: 000000000000000a RDI: 000000000000000e
[ 1044.935681][T21617] RBP: 00007fbb8cff6090 R08: 0000000000000000 R09: 0000000000000000
[ 1044.935700][T21617] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000001
[ 1044.935713][T21617] R13: 0000000000000000 R14: 00007fbb8f3b6080 R15: 00007fffb79e31a8
[ 1044.935741][T21617]  </TASK>
[ 1045.308612][T21214] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1045.718782][T21624] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2692'.
[ 1046.193211][T21214] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1046.199351][T21214] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1046.205524][ T5851] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1046.988730][T21644] rtc_cmos 00:00: in use; can't configure
[ 1049.743687][T21652] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1049.770616][T21652] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1049.798183][T21652] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1049.804425][T21652] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1050.287764][T21695] rtc_cmos 00:00: in use; can't configure
[ 1051.151441][ T5851] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1051.215796][T21706] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2705'.
[ 1051.788879][ T5851] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1051.867686][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1051.873889][T21214] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1052.185184][T21740] ERROR: Out of memory at tomoyo_memory_ok.
[ 1053.036847][T21753] FAULT_INJECTION: forcing a failure.
[ 1053.036847][T21753] name failslab, interval 1, probability 0, space 0, times 0
[ 1053.080726][T21753] CPU: 0 UID: 0 PID: 21753 Comm: syz.3.2712 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1053.080767][T21753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1053.080785][T21753] Call Trace:
[ 1053.080795][T21753]  <TASK>
[ 1053.080806][T21753]  dump_stack_lvl+0x16c/0x1f0
[ 1053.080858][T21753]  should_fail_ex+0x512/0x640
[ 1053.080902][T21753]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1053.080961][T21753]  should_failslab+0xc2/0x120
[ 1053.080992][T21753]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1053.081038][T21753]  ? security_file_alloc+0x34/0x2b0
[ 1053.081082][T21753]  security_file_alloc+0x34/0x2b0
[ 1053.081122][T21753]  init_file+0x93/0x4c0
[ 1053.081152][T21753]  alloc_empty_file+0x73/0x1e0
[ 1053.081185][T21753]  alloc_file_pseudo+0x13a/0x230
[ 1053.081220][T21753]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1053.081253][T21753]  ? security_inode_init_security_anon+0x79/0x240
[ 1053.081321][T21753]  secretmem_file_create.constprop.0+0x89/0x270
[ 1053.081356][T21753]  __x64_sys_memfd_secret+0xc5/0x1a0
[ 1053.081387][T21753]  do_syscall_64+0xcd/0x490
[ 1053.081435][T21753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1053.081465][T21753] RIP: 0033:0x7fbb8f18e929
[ 1053.081488][T21753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1053.081519][T21753] RSP: 002b:00007fbb8cbb2038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[ 1053.081546][T21753] RAX: ffffffffffffffda RBX: 00007fbb8f3b6240 RCX: 00007fbb8f18e929
[ 1053.081566][T21753] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1053.081583][T21753] RBP: 00007fbb8f210b39 R08: 0000000000000000 R09: 0000000000000000
[ 1053.081602][T21753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1053.081626][T21753] R13: 0000000000000000 R14: 00007fbb8f3b6240 R15: 00007fffb79e31a8
[ 1053.081663][T21753]  </TASK>
[ 1054.762937][T21771] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2718'.
[ 1055.186615][T21777] rtc_cmos 00:00: in use; can't configure
[ 1055.845436][T21792] FAULT_INJECTION: forcing a failure.
[ 1055.845436][T21792] name failslab, interval 1, probability 0, space 0, times 0
[ 1055.863818][T21792] CPU: 0 UID: 0 PID: 21792 Comm: syz.0.2722 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1055.863855][T21792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1055.863872][T21792] Call Trace:
[ 1055.863881][T21792]  <TASK>
[ 1055.863891][T21792]  dump_stack_lvl+0x16c/0x1f0
[ 1055.863938][T21792]  should_fail_ex+0x512/0x640
[ 1055.863978][T21792]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1055.864039][T21792]  should_failslab+0xc2/0x120
[ 1055.864073][T21792]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1055.864115][T21792]  ? __lock_acquire+0xb8a/0x1c90
[ 1055.864159][T21792]  ? snd_timer_instance_new+0x47/0x2e0
[ 1055.864219][T21792]  snd_timer_instance_new+0x47/0x2e0
[ 1055.864272][T21792]  snd_seq_timer_open+0x1cc/0x5e0
[ 1055.864327][T21792]  ? __pfx_snd_seq_timer_open+0x10/0x10
[ 1055.864375][T21792]  ? find_held_lock+0x2b/0x80
[ 1055.864416][T21792]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1055.864461][T21792]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1055.864506][T21792]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1055.864556][T21792]  queue_use+0xe3/0x250
[ 1055.864592][T21792]  snd_seq_queue_alloc+0x2e5/0x550
[ 1055.864637][T21792]  snd_seq_ioctl_create_queue+0xa9/0x380
[ 1055.864689][T21792]  snd_seq_kernel_client_ctl+0x107/0x1c0
[ 1055.864725][T21792]  alloc_seq_queue+0xda/0x180
[ 1055.864754][T21792]  ? __pfx_alloc_seq_queue+0x10/0x10
[ 1055.864806][T21792]  ? mark_held_locks+0x49/0x80
[ 1055.864847][T21792]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1055.864892][T21792]  snd_seq_oss_open+0x38c/0xa20
[ 1055.864931][T21792]  odev_open+0x6f/0x90
[ 1055.864996][T21792]  ? __pfx_odev_open+0x10/0x10
[ 1055.865046][T21792]  soundcore_open+0x409/0x580
[ 1055.865100][T21792]  ? __pfx_soundcore_open+0x10/0x10
[ 1055.865149][T21792]  chrdev_open+0x234/0x6a0
[ 1055.865201][T21792]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1055.865252][T21792]  ? __pfx_chrdev_open+0x10/0x10
[ 1055.865302][T21792]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[ 1055.865357][T21792]  do_dentry_open+0x741/0x1c10
[ 1055.865402][T21792]  ? __pfx_chrdev_open+0x10/0x10
[ 1055.865456][T21792]  vfs_open+0x82/0x3f0
[ 1055.865491][T21792]  path_openat+0x1de4/0x2cb0
[ 1055.865548][T21792]  ? __pfx_path_openat+0x10/0x10
[ 1055.865595][T21792]  ? __lock_acquire+0xb8a/0x1c90
[ 1055.865651][T21792]  do_filp_open+0x20b/0x470
[ 1055.865711][T21792]  ? __pfx_do_filp_open+0x10/0x10
[ 1055.865783][T21792]  ? alloc_fd+0x471/0x7d0
[ 1055.865834][T21792]  do_sys_openat2+0x11b/0x1d0
[ 1055.865868][T21792]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1055.865906][T21792]  ? __fget_files+0x20e/0x3c0
[ 1055.865954][T21792]  __x64_sys_openat+0x174/0x210
[ 1055.865989][T21792]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1055.866023][T21792]  ? ksys_write+0x1ac/0x250
[ 1055.866095][T21792]  do_syscall_64+0xcd/0x490
[ 1055.866148][T21792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1055.866180][T21792] RIP: 0033:0x7f7b2f98e929
[ 1055.866205][T21792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1055.866234][T21792] RSP: 002b:00007f7b30817038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1055.866264][T21792] RAX: ffffffffffffffda RBX: 00007f7b2fbb6160 RCX: 00007f7b2f98e929
[ 1055.866285][T21792] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1055.866305][T21792] RBP: 00007f7b30817090 R08: 0000000000000000 R09: 0000000000000000
[ 1055.866334][T21792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1055.866353][T21792] R13: 0000000000000000 R14: 00007f7b2fbb6160 R15: 00007ffe35ccd478
[ 1055.866395][T21792]  </TASK>
[ 1056.481481][T21795] FAULT_INJECTION: forcing a failure.
[ 1056.481481][T21795] name failslab, interval 1, probability 0, space 0, times 0
[ 1056.506529][T21792] zswap: compressor  not available
[ 1056.516590][T21795] CPU: 1 UID: 0 PID: 21795 Comm: syz.1.2723 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1056.516628][T21795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1056.516645][T21795] Call Trace:
[ 1056.516655][T21795]  <TASK>
[ 1056.516665][T21795]  dump_stack_lvl+0x16c/0x1f0
[ 1056.516712][T21795]  should_fail_ex+0x512/0x640
[ 1056.516752][T21795]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1056.516797][T21795]  should_failslab+0xc2/0x120
[ 1056.516825][T21795]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1056.516869][T21795]  ? copy_net_ns+0xe8/0x5f0
[ 1056.516904][T21795]  copy_net_ns+0xe8/0x5f0
[ 1056.516930][T21795]  ? copy_cgroup_ns+0x71/0x700
[ 1056.516965][T21795]  create_new_namespaces+0x3ea/0xa90
[ 1056.517006][T21795]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1056.517052][T21795]  ksys_unshare+0x45b/0xa40
[ 1056.517097][T21795]  ? __pfx_ksys_unshare+0x10/0x10
[ 1056.517142][T21795]  ? xfd_validate_state+0x61/0x180
[ 1056.517192][T21795]  __x64_sys_unshare+0x31/0x40
[ 1056.517236][T21795]  do_syscall_64+0xcd/0x490
[ 1056.517281][T21795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1056.517315][T21795] RIP: 0033:0x7fedec58e929
[ 1056.517338][T21795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1056.517373][T21795] RSP: 002b:00007feded3ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1056.517399][T21795] RAX: ffffffffffffffda RBX: 00007fedec7b5fa0 RCX: 00007fedec58e929
[ 1056.517417][T21795] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1056.517439][T21795] RBP: 00007feded3ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1056.517456][T21795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1056.517473][T21795] R13: 0000000000000000 R14: 00007fedec7b5fa0 R15: 00007ffcbe4e7ce8
[ 1056.517513][T21795]  </TASK>
[ 1058.348626][T21822] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2727'.
[ 1058.977627][T21839] zswap: compressor  not available
[ 1059.425362][T21860] FAULT_INJECTION: forcing a failure.
[ 1059.425362][T21860] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1059.470663][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[ 1059.477553][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[ 1059.519699][T21860] CPU: 0 UID: 0 PID: 21860 Comm: syz.1.2732 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1059.519729][T21860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1059.519741][T21860] Call Trace:
[ 1059.519748][T21860]  <TASK>
[ 1059.519756][T21860]  dump_stack_lvl+0x16c/0x1f0
[ 1059.519791][T21860]  should_fail_ex+0x512/0x640
[ 1059.519824][T21860]  _copy_to_user+0x32/0xd0
[ 1059.519857][T21860]  rng_dev_read+0x1ea/0x810
[ 1059.519880][T21860]  ? __pfx_virtio_read+0x10/0x10
[ 1059.519902][T21860]  ? __pfx_rng_dev_read+0x10/0x10
[ 1059.519927][T21860]  ? bpf_lsm_file_permission+0x9/0x10
[ 1059.519949][T21860]  ? security_file_permission+0x71/0x210
[ 1059.519976][T21860]  ? rw_verify_area+0xcf/0x680
[ 1059.520004][T21860]  ? __pfx_rng_dev_read+0x10/0x10
[ 1059.520023][T21860]  vfs_readv+0x5be/0x8b0
[ 1059.520061][T21860]  ? __pfx_vfs_readv+0x10/0x10
[ 1059.520104][T21860]  ? __fget_files+0x20e/0x3c0
[ 1059.520130][T21860]  ? __fget_files+0x1a0/0x3c0
[ 1059.520163][T21860]  ? do_readv+0x132/0x340
[ 1059.520186][T21860]  do_readv+0x132/0x340
[ 1059.520212][T21860]  ? __pfx_do_readv+0x10/0x10
[ 1059.520244][T21860]  do_syscall_64+0xcd/0x490
[ 1059.520277][T21860]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1059.520298][T21860] RIP: 0033:0x7fedec58e929
[ 1059.520313][T21860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1059.520333][T21860] RSP: 002b:00007feded3cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[ 1059.520351][T21860] RAX: ffffffffffffffda RBX: 00007fedec7b6080 RCX: 00007fedec58e929
[ 1059.520365][T21860] RDX: 0000000000000001 RSI: 0000200000000a80 RDI: 0000000000000003
[ 1059.520377][T21860] RBP: 00007feded3cb090 R08: 0000000000000000 R09: 0000000000000000
[ 1059.520390][T21860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1059.520402][T21860] R13: 0000000000000000 R14: 00007fedec7b6080 R15: 00007ffcbe4e7ce8
[ 1059.520426][T21860]  </TASK>
[ 1062.923997][   T30] audit: type=1800 audit(4294967820.420:18): pid=21913 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2738" name="dbroot" dev="configfs" ino=69907 res=0 errno=0
[ 1063.104592][T21912] lo: entered allmulticast mode
[ 1063.110697][T21912] lo: left allmulticast mode
[ 1064.915290][T21914] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1064.922291][T21914] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1064.930375][T21914] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1064.936596][T21914] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1065.132096][T21955] FAULT_INJECTION: forcing a failure.
[ 1065.132096][T21955] name failslab, interval 1, probability 0, space 0, times 0
[ 1065.164099][T21955] CPU: 1 UID: 0 PID: 21955 Comm: syz.0.2747 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1065.164149][T21955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1065.164170][T21955] Call Trace:
[ 1065.164182][T21955]  <TASK>
[ 1065.164196][T21955]  dump_stack_lvl+0x16c/0x1f0
[ 1065.164252][T21955]  should_fail_ex+0x512/0x640
[ 1065.164309][T21955]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1065.164366][T21955]  should_failslab+0xc2/0x120
[ 1065.164400][T21955]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1065.164454][T21955]  ? alloc_empty_file+0x55/0x1e0
[ 1065.164495][T21955]  alloc_empty_file+0x55/0x1e0
[ 1065.164534][T21955]  path_openat+0xda/0x2cb0
[ 1065.164579][T21955]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1065.164631][T21955]  ? __pfx_path_openat+0x10/0x10
[ 1065.164691][T21955]  ? __lock_acquire+0xb8a/0x1c90
[ 1065.164743][T21955]  do_filp_open+0x20b/0x470
[ 1065.164794][T21955]  ? __pfx_do_filp_open+0x10/0x10
[ 1065.164874][T21955]  ? alloc_fd+0x471/0x7d0
[ 1065.164933][T21955]  do_sys_openat2+0x11b/0x1d0
[ 1065.164972][T21955]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1065.165025][T21955]  __x64_sys_openat+0x174/0x210
[ 1065.165065][T21955]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1065.165122][T21955]  do_syscall_64+0xcd/0x490
[ 1065.165178][T21955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1065.165213][T21955] RIP: 0033:0x7f7b2f98e929
[ 1065.165250][T21955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1065.165283][T21955] RSP: 002b:00007f7b30859038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1065.165313][T21955] RAX: ffffffffffffffda RBX: 00007f7b2fbb5fa0 RCX: 00007f7b2f98e929
[ 1065.165334][T21955] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 1065.165356][T21955] RBP: 00007f7b2fa10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1065.165376][T21955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1065.165396][T21955] R13: 0000000000000000 R14: 00007f7b2fbb5fa0 R15: 00007ffe35ccd478
[ 1065.165437][T21955]  </TASK>
[ 1065.370490][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1065.419371][T21956] netlink: 346 bytes leftover after parsing attributes in process `syz.3.2746'.
[ 1065.947726][ T5851] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1066.252921][T21971] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input59
[ 1066.987689][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1066.987717][T21214] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1066.987730][T16932] Bluetooth: hci4: command 0x0c1a tx timeout

syzkaller
syzkaller login: [ 1067.318820][T21988] FAULT_INJECTION: forcing a failure.
[ 1067.318820][T21988] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1067.344354][T21988] CPU: 1 UID: 0 PID: 21988 Comm: syz.3.2755 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1067.344402][T21988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1067.344423][T21988] Call Trace:
[ 1067.344434][T21988]  <TASK>
[ 1067.344448][T21988]  dump_stack_lvl+0x16c/0x1f0
[ 1067.344513][T21988]  should_fail_ex+0x512/0x640
[ 1067.344570][T21988]  should_fail_alloc_page+0xe7/0x130
[ 1067.344608][T21988]  prepare_alloc_pages+0x3c2/0x610
[ 1067.344657][T21988]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1067.344714][T21988]  ? __pfx_stack_trace_save+0x10/0x10
[ 1067.344755][T21988]  ? stack_depot_save_flags+0x28/0xa40
[ 1067.344809][T21988]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[ 1067.344867][T21988]  ? kasan_save_stack+0x42/0x60
[ 1067.344916][T21988]  ? kasan_save_stack+0x33/0x60
[ 1067.344964][T21988]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1067.345016][T21988]  ? __pmd_alloc+0xbf/0x930
[ 1067.345053][T21988]  ? handle_mm_fault+0x589/0xd10
[ 1067.345096][T21988]  ? populate_vma_page_range+0x278/0x3a0
[ 1067.345137][T21988]  ? __mm_populate+0x1d8/0x380
[ 1067.345174][T21988]  ? vm_mmap_pgoff+0x362/0x450
[ 1067.345217][T21988]  ? ksys_mmap_pgoff+0x7d/0x5c0
[ 1067.345267][T21988]  ? __x64_sys_mmap+0x125/0x190
[ 1067.345309][T21988]  ? do_syscall_64+0xcd/0x490
[ 1067.345354][T21988]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1067.345401][T21988]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1067.345450][T21988]  ? policy_nodemask+0xea/0x4e0
[ 1067.345483][T21988]  alloc_pages_mpol+0x1fb/0x550
[ 1067.345523][T21988]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1067.345550][T21988]  ? css_rstat_updated+0x9d/0xd30
[ 1067.345594][T21988]  alloc_pages_noprof+0x131/0x390
[ 1067.345627][T21988]  pte_alloc_one+0x1c/0x3a0
[ 1067.345656][T21988]  __pte_alloc+0x6d/0x3c0
[ 1067.345685][T21988]  ? __pfx___pte_alloc+0x10/0x10
[ 1067.345713][T21988]  ? _raw_spin_unlock+0x28/0x50
[ 1067.345751][T21988]  ? __pmd_alloc+0x3fb/0x930
[ 1067.345789][T21988]  __handle_mm_fault+0x4358/0x5490
[ 1067.345842][T21988]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1067.345917][T21988]  handle_mm_fault+0x589/0xd10
[ 1067.345978][T21988]  __get_user_pages+0x589/0x3b80
[ 1067.346020][T21988]  ? __pfx_mt_find+0x10/0x10
[ 1067.346048][T21988]  ? __pfx___get_user_pages+0x10/0x10
[ 1067.346093][T21988]  populate_vma_page_range+0x278/0x3a0
[ 1067.346132][T21988]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1067.346167][T21988]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1067.346201][T21988]  ? do_mmap+0x69c/0x1210
[ 1067.346238][T21988]  __mm_populate+0x1d8/0x380
[ 1067.346274][T21988]  ? __pfx___mm_populate+0x10/0x10
[ 1067.346314][T21988]  ? up_write+0x1b2/0x520
[ 1067.346362][T21988]  vm_mmap_pgoff+0x362/0x450
[ 1067.346396][T21988]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1067.346434][T21988]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1067.346467][T21988]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1067.346515][T21988]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1067.346545][T21988]  ? xfd_validate_state+0x61/0x180
[ 1067.346583][T21988]  ? __pfx_ksys_write+0x10/0x10
[ 1067.346630][T21988]  __x64_sys_mmap+0x125/0x190
[ 1067.346676][T21988]  do_syscall_64+0xcd/0x490
[ 1067.346723][T21988]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1067.346753][T21988] RIP: 0033:0x7fbb8f18e929
[ 1067.346777][T21988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1067.346806][T21988] RSP: 002b:00007fbb8ff13038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1067.346834][T21988] RAX: ffffffffffffffda RBX: 00007fbb8f3b5fa0 RCX: 00007fbb8f18e929
[ 1067.346854][T21988] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 1067.346872][T21988] RBP: 00007fbb8f210b39 R08: 0000000000000002 R09: 0000000000008000
[ 1067.346891][T21988] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 1067.346908][T21988] R13: 0000000000000000 R14: 00007fbb8f3b5fa0 R15: 00007fffb79e31a8
[ 1067.346946][T21988]  </TASK>
[ 1067.723551][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1068.445816][T22004] ERROR: Out of memory at tomoyo_memory_ok.
[ 1068.482353][T21986] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1068.491049][T21986] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1068.497178][T21986] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1068.506365][T21986] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1069.035527][T22004] zswap: compressor  not available
[ 1069.339221][T22020] FAULT_INJECTION: forcing a failure.
[ 1069.339221][T22020] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1069.352409][T22020] CPU: 0 UID: 0 PID: 22020 Comm: syz.0.2759 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1069.352446][T22020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1069.352465][T22020] Call Trace:
[ 1069.352474][T22020]  <TASK>
[ 1069.352485][T22020]  dump_stack_lvl+0x16c/0x1f0
[ 1069.352532][T22020]  should_fail_ex+0x512/0x640
[ 1069.352579][T22020]  _copy_from_user+0x2e/0xd0
[ 1069.352625][T22020]  copy_msghdr_from_user+0x98/0x160
[ 1069.352669][T22020]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1069.352718][T22020]  ? kfree+0x24f/0x4d0
[ 1069.352751][T22020]  ? __pfx__kstrtoull+0x10/0x10
[ 1069.352793][T22020]  ___sys_sendmsg+0xfe/0x1d0
[ 1069.352836][T22020]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1069.352911][T22020]  ? __pfx___might_resched+0x10/0x10
[ 1069.352951][T22020]  __sys_sendmmsg+0x200/0x420
[ 1069.352998][T22020]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1069.353054][T22020]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1069.353115][T22020]  ? fput+0x70/0xf0
[ 1069.353160][T22020]  ? ksys_write+0x1ac/0x250
[ 1069.353204][T22020]  ? __pfx_ksys_write+0x10/0x10
[ 1069.353255][T22020]  __x64_sys_sendmmsg+0x9c/0x100
[ 1069.353301][T22020]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1069.353345][T22020]  do_syscall_64+0xcd/0x490
[ 1069.353418][T22020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1069.353450][T22020] RIP: 0033:0x7f7b2f98e929
[ 1069.353474][T22020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1069.353504][T22020] RSP: 002b:00007f7b307b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1069.353533][T22020] RAX: ffffffffffffffda RBX: 00007f7b2fbb6400 RCX: 00007f7b2f98e929
[ 1069.353553][T22020] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[ 1069.353572][T22020] RBP: 00007f7b307b4090 R08: 0000000000000000 R09: 0000000000000000
[ 1069.353591][T22020] R10: 0000000007fffffe R11: 0000000000000246 R12: 0000000000000002
[ 1069.353609][T22020] R13: 0000000000000001 R14: 00007f7b2fbb6400 R15: 00007ffe35ccd478
[ 1069.353647][T22020]  </TASK>
[ 1069.837975][T22023] rtc_cmos 00:00: in use; can't configure
[ 1070.267680][ T5851] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1070.517571][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1070.524872][T21214] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1070.524883][T16932] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1070.680896][T22029] zswap: compressor  not available
[ 1072.545334][T22066] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2771'.
[ 1074.340859][T22098] FAULT_INJECTION: forcing a failure.
[ 1074.340859][T22098] name failslab, interval 1, probability 0, space 0, times 0
[ 1074.359269][T22098] CPU: 0 UID: 0 PID: 22098 Comm: syz.0.2776 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1074.359314][T22098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1074.359332][T22098] Call Trace:
[ 1074.359344][T22098]  <TASK>
[ 1074.359356][T22098]  dump_stack_lvl+0x16c/0x1f0
[ 1074.359407][T22098]  should_fail_ex+0x512/0x640
[ 1074.359454][T22098]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1074.359506][T22098]  should_failslab+0xc2/0x120
[ 1074.359530][T22098]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1074.359563][T22098]  ? security_file_alloc+0x34/0x2b0
[ 1074.359596][T22098]  security_file_alloc+0x34/0x2b0
[ 1074.359625][T22098]  init_file+0x93/0x4c0
[ 1074.359647][T22098]  alloc_empty_file+0x73/0x1e0
[ 1074.359671][T22098]  alloc_file_pseudo+0x13a/0x230
[ 1074.359696][T22098]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1074.359720][T22098]  ? security_inode_init_security_anon+0x79/0x240
[ 1074.359752][T22098]  secretmem_file_create.constprop.0+0x89/0x270
[ 1074.359779][T22098]  __x64_sys_memfd_secret+0xc5/0x1a0
[ 1074.359801][T22098]  do_syscall_64+0xcd/0x490
[ 1074.359836][T22098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1074.359859][T22098] RIP: 0033:0x7f7b2f98e929
[ 1074.359876][T22098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1074.359898][T22098] RSP: 002b:00007f7b307d5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[ 1074.359919][T22098] RAX: ffffffffffffffda RBX: 00007f7b2fbb6320 RCX: 00007f7b2f98e929
[ 1074.359934][T22098] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1074.359947][T22098] RBP: 00007f7b2fa10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1074.359961][T22098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1074.359974][T22098] R13: 0000000000000000 R14: 00007f7b2fbb6320 R15: 00007ffe35ccd478
[ 1074.360000][T22098]  </TASK>
[ 1075.319849][T22093] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1075.326086][T22093] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1075.348006][T22093] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1075.354339][T22110] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2780'.
[ 1075.363846][T22093] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1075.678774][T22117] Invalid ELF header magic: != ELF
[ 1076.249319][T22117] could not allocate digest TFM handle 
[ 1076.390095][T22119] could not allocate digest TFM handle 
[ 1076.522101][T22134] rtc_cmos 00:00: in use; can't configure
[ 1077.159957][T22140] FAULT_INJECTION: forcing a failure.
[ 1077.159957][T22140] name failslab, interval 1, probability 0, space 0, times 0
[ 1077.178613][T22140] CPU: 0 UID: 0 PID: 22140 Comm: syz.1.2788 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1077.178661][T22140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1077.178682][T22140] Call Trace:
[ 1077.178694][T22140]  <TASK>
[ 1077.178708][T22140]  dump_stack_lvl+0x16c/0x1f0
[ 1077.178763][T22140]  should_fail_ex+0x512/0x640
[ 1077.178812][T22140]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1077.178876][T22140]  should_failslab+0xc2/0x120
[ 1077.178909][T22140]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1077.178957][T22140]  ? drm_mode_duplicate+0x47/0x200
[ 1077.179013][T22140]  drm_mode_duplicate+0x47/0x200
[ 1077.179063][T22140]  drm_add_modes_noedid+0x167/0x200
[ 1077.179112][T22140]  vkms_conn_get_modes+0x20/0x40
[ 1077.179157][T22140]  drm_helper_probe_single_connector_modes+0x571/0x16d0
[ 1077.179224][T22140]  ? __pfx_drm_helper_probe_single_connector_modes+0x10/0x10
[ 1077.179265][T22140]  ? __mutex_lock+0x1ca/0xb90
[ 1077.179314][T22140]  ? __mutex_trylock_common+0xe9/0x250
[ 1077.179401][T22140]  ? __pfx_drm_helper_probe_single_connector_modes+0x10/0x10
[ 1077.179446][T22140]  status_store+0x322/0x8f0
[ 1077.179482][T22140]  ? sysfs_file_kobj+0xe4/0x290
[ 1077.179525][T22140]  ? __pfx_status_store+0x10/0x10
[ 1077.179556][T22140]  dev_attr_store+0x58/0x80
[ 1077.179588][T22140]  ? __pfx_dev_attr_store+0x10/0x10
[ 1077.179621][T22140]  sysfs_kf_write+0xef/0x150
[ 1077.179664][T22140]  kernfs_fop_write_iter+0x354/0x510
[ 1077.179699][T22140]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1077.179744][T22140]  do_iter_readv_writev+0x654/0x950
[ 1077.179795][T22140]  ? __pfx_do_iter_readv_writev+0x10/0x10
[ 1077.179870][T22140]  vfs_writev+0x35f/0xde0
[ 1077.179915][T22140]  ? proc_fail_nth_write+0x9f/0x250
[ 1077.179966][T22140]  ? __pfx_vfs_writev+0x10/0x10
[ 1077.180014][T22140]  ? vfs_write+0x15d/0x1150
[ 1077.180104][T22140]  ? do_writev+0x132/0x340
[ 1077.180146][T22140]  do_writev+0x132/0x340
[ 1077.180191][T22140]  ? __pfx_do_writev+0x10/0x10
[ 1077.180250][T22140]  do_syscall_64+0xcd/0x490
[ 1077.180303][T22140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1077.180338][T22140] RIP: 0033:0x7fedec58e929
[ 1077.180365][T22140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1077.180399][T22140] RSP: 002b:00007feded3ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1077.180431][T22140] RAX: ffffffffffffffda RBX: 00007fedec7b5fa0 RCX: 00007fedec58e929
[ 1077.180454][T22140] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003
[ 1077.180475][T22140] RBP: 00007feded3ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1077.180496][T22140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1077.180517][T22140] R13: 0000000000000000 R14: 00007fedec7b5fa0 R15: 00007ffcbe4e7ce8
[ 1077.180562][T22140]  </TASK>
[ 1077.463444][ T5851] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1077.469581][ T5851] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1077.475678][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1077.481758][ T5851] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1078.471294][T22144] FAULT_INJECTION: forcing a failure.
[ 1078.471294][T22144] name failslab, interval 1, probability 0, space 0, times 0
[ 1078.484215][T22144] CPU: 1 UID: 0 PID: 22144 Comm: syz.1.2789 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1078.484263][T22144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1078.484285][T22144] Call Trace:
[ 1078.484297][T22144]  <TASK>
[ 1078.484312][T22144]  dump_stack_lvl+0x16c/0x1f0
[ 1078.484369][T22144]  should_fail_ex+0x512/0x640
[ 1078.484420][T22144]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1078.484477][T22144]  should_failslab+0xc2/0x120
[ 1078.484512][T22144]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1078.484576][T22144]  ? security_file_alloc+0x34/0x2b0
[ 1078.484629][T22144]  security_file_alloc+0x34/0x2b0
[ 1078.484677][T22144]  init_file+0x93/0x4c0
[ 1078.484712][T22144]  alloc_empty_file+0x73/0x1e0
[ 1078.484753][T22144]  alloc_file_pseudo+0x13a/0x230
[ 1078.484794][T22144]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1078.484833][T22144]  ? security_inode_init_security_anon+0x79/0x240
[ 1078.484884][T22144]  secretmem_file_create.constprop.0+0x89/0x270
[ 1078.484925][T22144]  __x64_sys_memfd_secret+0xc5/0x1a0
[ 1078.484962][T22144]  do_syscall_64+0xcd/0x490
[ 1078.485020][T22144]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1078.485056][T22144] RIP: 0033:0x7fedec58e929
[ 1078.485083][T22144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1078.485119][T22144] RSP: 002b:00007feded3ec038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[ 1078.485154][T22144] RAX: ffffffffffffffda RBX: 00007fedec7b5fa0 RCX: 00007fedec58e929
[ 1078.485177][T22144] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1078.485199][T22144] RBP: 00007fedec610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1078.485233][T22144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1078.485253][T22144] R13: 0000000000000000 R14: 00007fedec7b5fa0 R15: 00007ffcbe4e7ce8
[ 1078.485296][T22144]  </TASK>
[ 1079.304556][T22173] net_ratelimit: 97 callbacks suppressed
[ 1079.304576][T22173] openvswitch: netlink: Tunnel attr 242 out of range max 16
[ 1080.654470][T22179] FAULT_INJECTION: forcing a failure.
[ 1080.654470][T22179] name failslab, interval 1, probability 0, space 0, times 0
[ 1080.907590][T22179] CPU: 1 UID: 0 PID: 22179 Comm: syz.0.2797 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1080.907638][T22179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1080.907660][T22179] Call Trace:
[ 1080.907671][T22179]  <TASK>
[ 1080.907685][T22179]  dump_stack_lvl+0x16c/0x1f0
[ 1080.907740][T22179]  should_fail_ex+0x512/0x640
[ 1080.907796][T22179]  should_failslab+0xc2/0x120
[ 1080.907828][T22179]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 1080.907882][T22179]  ? zswap_store+0x839/0x25a0
[ 1080.907940][T22179]  zswap_store+0x839/0x25a0
[ 1080.907995][T22179]  ? __pfx_zswap_store+0x10/0x10
[ 1080.908033][T22179]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1080.908084][T22179]  ? find_held_lock+0x2b/0x80
[ 1080.908119][T22179]  ? folio_free_swap+0x171/0x580
[ 1080.908173][T22179]  ? do_raw_spin_unlock+0x172/0x230
[ 1080.908202][T22179]  ? swp_swap_info+0xce/0x130
[ 1080.908234][T22179]  ? __pfx_swp_swap_info+0x10/0x10
[ 1080.908277][T22179]  swap_writeout+0x38e/0xfe0
[ 1080.908326][T22179]  ? folio_clear_dirty_for_io+0x112/0x810
[ 1080.908369][T22179]  ? __pfx_swap_writeout+0x10/0x10
[ 1080.908409][T22179]  pageout+0x38c/0xa50
[ 1080.908451][T22179]  ? __pfx_pageout+0x10/0x10
[ 1080.908488][T22179]  ? mark_held_locks+0x49/0x80
[ 1080.908576][T22179]  ? on_each_cpu_cond_mask+0x5a/0x90
[ 1080.908612][T22179]  ? arch_tlbbatch_flush+0x18c/0x370
[ 1080.908664][T22179]  shrink_folio_list+0x2f4d/0x3fc0
[ 1080.908723][T22179]  ? __pfx_shrink_folio_list+0x10/0x10
[ 1080.908767][T22179]  ? __lock_acquire+0x570/0x1c90
[ 1080.908820][T22179]  ? __lock_acquire+0x622/0x1c90
[ 1080.908868][T22179]  ? lock_acquire+0x179/0x350
[ 1080.908922][T22179]  ? lock_acquire+0x179/0x350
[ 1080.908996][T22179]  ? __lock_acquire+0x622/0x1c90
[ 1080.909048][T22179]  ? __lock_acquire+0x622/0x1c90
[ 1080.909096][T22179]  reclaim_folio_list+0xda/0x5d0
[ 1080.909138][T22179]  ? __lock_acquire+0x622/0x1c90
[ 1080.909188][T22179]  ? __pfx_reclaim_folio_list+0x10/0x10
[ 1080.909259][T22179]  ? css_rstat_updated+0x9d/0xd30
[ 1080.909301][T22179]  ? lru_gen_del_folio+0x32b/0x540
[ 1080.909347][T22179]  reclaim_pages+0x47b/0x650
[ 1080.909396][T22179]  ? __pfx_reclaim_pages+0x10/0x10
[ 1080.909439][T22179]  ? find_held_lock+0x2b/0x80
[ 1080.909474][T22179]  ? madvise_cold_or_pageout_pte_range+0x5fb/0x2180
[ 1080.909519][T22179]  madvise_cold_or_pageout_pte_range+0x1437/0x2180
[ 1080.909575][T22179]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[ 1080.909617][T22179]  ? __lock_acquire+0x622/0x1c90
[ 1080.909673][T22179]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[ 1080.909714][T22179]  walk_pgd_range+0xc53/0x1f60
[ 1080.909814][T22179]  ? __pfx_walk_pgd_range+0x10/0x10
[ 1080.909881][T22179]  __walk_page_range+0x163/0x820
[ 1080.909938][T22179]  ? find_vma+0xbf/0x140
[ 1080.909971][T22179]  ? __pfx_find_vma+0x10/0x10
[ 1080.910010][T22179]  ? walk_page_test+0x9b/0x180
[ 1080.910063][T22179]  walk_page_range_mm+0x54d/0x8a0
[ 1080.910135][T22179]  ? __pfx_walk_page_range_mm+0x10/0x10
[ 1080.910195][T22179]  ? find_held_lock+0x2b/0x80
[ 1080.910230][T22179]  ? mlock_drain_local+0x22d/0x4f0
[ 1080.910284][T22179]  walk_page_range+0x63/0x90
[ 1080.910346][T22179]  madvise_pageout+0x254/0x540
[ 1080.910383][T22179]  ? __pfx_madvise_pageout+0x10/0x10
[ 1080.910438][T22179]  ? find_held_lock+0x2b/0x80
[ 1080.910470][T22179]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1080.910526][T22179]  madvise_vma_behavior+0x460/0x2420
[ 1080.910564][T22179]  ? mt_find+0x3ef/0xa30
[ 1080.910594][T22179]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 1080.910631][T22179]  ? __pfx_mt_find+0x10/0x10
[ 1080.910671][T22179]  ? find_vma_prev+0xda/0x160
[ 1080.910718][T22179]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 1080.910753][T22179]  ? find_vma+0xbf/0x140
[ 1080.910786][T22179]  ? __pfx_find_vma+0x10/0x10
[ 1080.910828][T22179]  ? __pfx_madvise_vma_behavior+0x10/0x10
[ 1080.910864][T22179]  madvise_walk_vmas+0x1ce/0x2c0
[ 1080.910900][T22179]  ? __pfx_madvise_walk_vmas+0x10/0x10
[ 1080.910944][T22179]  madvise_do_behavior+0x15d/0x3f0
[ 1080.910985][T22179]  ? __pfx_madvise_do_behavior+0x10/0x10
[ 1080.911044][T22179]  do_madvise+0x161/0x230
[ 1080.911080][T22179]  ? __pfx_do_madvise+0x10/0x10
[ 1080.911133][T22179]  ? ksys_write+0x1ac/0x250
[ 1080.911180][T22179]  ? __pfx_ksys_write+0x10/0x10
[ 1080.911234][T22179]  __x64_sys_madvise+0xa9/0x110
[ 1080.911269][T22179]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1080.911322][T22179]  do_syscall_64+0xcd/0x490
[ 1080.911374][T22179]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1080.911407][T22179] RIP: 0033:0x7f7b2f98e929
[ 1080.911433][T22179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1080.911464][T22179] RSP: 002b:00007f7b30859038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[ 1080.911495][T22179] RAX: ffffffffffffffda RBX: 00007f7b2fbb5fa0 RCX: 00007f7b2f98e929
[ 1080.911516][T22179] RDX: 0000000000000015 RSI: ffffffffffff0001 RDI: 0000000000000000
[ 1080.911537][T22179] RBP: 00007f7b30859090 R08: 0000000000000000 R09: 0000000000000000
[ 1080.911557][T22179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1080.911578][T22179] R13: 0000000000000000 R14: 00007f7b2fbb5fa0 R15: 00007ffe35ccd478
[ 1080.911620][T22179]  </TASK>
[ 1081.885089][T22185] HfR: entered promiscuous mode
[ 1082.870844][T22201] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2800'.
[ 1083.842134][   T30] audit: type=1800 audit(4294967841.340:19): pid=22208 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2802" name="lu_gp_id" dev="configfs" ino=69628 res=0 errno=0
[ 1083.862512][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1084.517851][T22208] svc: failed to register nfsdv3 RPC service (errno 111).
[ 1084.538639][T22208] svc: failed to register nfsaclv3 RPC service (errno 111).
[ 1085.388580][T22213] FAULT_INJECTION: forcing a failure.
[ 1085.388580][T22213] name failslab, interval 1, probability 0, space 0, times 0
[ 1085.401528][T22213] CPU: 0 UID: 0 PID: 22213 Comm: syz.0.2806 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1085.401571][T22213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1085.401591][T22213] Call Trace:
[ 1085.401602][T22213]  <TASK>
[ 1085.401615][T22213]  dump_stack_lvl+0x16c/0x1f0
[ 1085.401668][T22213]  should_fail_ex+0x512/0x640
[ 1085.401715][T22213]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1085.401768][T22213]  should_failslab+0xc2/0x120
[ 1085.401799][T22213]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1085.401849][T22213]  ? security_file_alloc+0x34/0x2b0
[ 1085.401897][T22213]  security_file_alloc+0x34/0x2b0
[ 1085.401940][T22213]  init_file+0x93/0x4c0
[ 1085.401972][T22213]  alloc_empty_file+0x73/0x1e0
[ 1085.402007][T22213]  alloc_file_pseudo+0x13a/0x230
[ 1085.402046][T22213]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1085.402082][T22213]  ? security_inode_init_security_anon+0x79/0x240
[ 1085.402128][T22213]  secretmem_file_create.constprop.0+0x89/0x270
[ 1085.402165][T22213]  __x64_sys_memfd_secret+0xc5/0x1a0
[ 1085.402198][T22213]  do_syscall_64+0xcd/0x490
[ 1085.402249][T22213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1085.402291][T22213] RIP: 0033:0x7f7b2f98e929
[ 1085.402316][T22213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1085.402348][T22213] RSP: 002b:00007f7b30859038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[ 1085.402378][T22213] RAX: ffffffffffffffda RBX: 00007f7b2fbb5fa0 RCX: 00007f7b2f98e929
[ 1085.402399][T22213] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1085.402419][T22213] RBP: 00007f7b2fa10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1085.402439][T22213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1085.402459][T22213] R13: 0000000000000000 R14: 00007f7b2fbb5fa0 R15: 00007ffe35ccd478
[ 1085.402499][T22213]  </TASK>
[ 1085.593666][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1085.599672][    C0] hrtimer: interrupt took 192313626 ns
[ 1085.699713][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1088.167307][T22265] Invalid ELF header magic: != ELF
[ 1092.069038][T21214] Bluetooth: hci3: unexpected event for opcode 0x7c89
[ 1092.094545][T22287] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1092.114655][T22287] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1092.135883][T22287] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1092.152841][T22287] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1094.195298][ T5851] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1094.205169][T16932] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1094.211343][T21214] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1094.907680][   T31] INFO: task kworker/u8:8:13438 blocked for more than 142 seconds.
[ 1094.915620][   T31]       Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0
[ 1095.012194][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1095.051655][   T31] task:kworker/u8:8    state:D stack:24184 pid:13438 tgid:13438 ppid:2      task_flags:0x4208060 flags:0x00004000
[ 1095.112298][   T31] Workqueue: netns cleanup_net
[ 1095.117235][   T31] Call Trace:
[ 1095.124188][   T31]  <TASK>
[ 1095.127251][   T31]  __schedule+0x116a/0x5de0
[ 1095.145113][   T31]  ? __lock_acquire+0x622/0x1c90
[ 1095.156572][   T31]  ? __pfx___schedule+0x10/0x10
[ 1095.221292][   T31]  ? find_held_lock+0x2b/0x80
[ 1095.241729][   T31]  ? schedule+0x2d7/0x3a0
[ 1095.251820][   T31]  schedule+0xe7/0x3a0
[ 1095.259995][   T31]  afs_cell_purge+0x41f/0x4f0
[ 1095.266864][   T31]  ? __try_to_del_timer_sync+0x115/0x170
[ 1095.277497][   T31]  ? __pfx_afs_cell_purge+0x10/0x10
[ 1095.282771][   T31]  ? __pfx_var_wake_function+0x10/0x10
[ 1095.296260][   T31]  ? __timer_delete_sync+0x108/0x1b0
[ 1095.301785][   T31]  ? __pfx_afs_net_exit+0x10/0x10
[ 1095.311372][   T31]  afs_net_exit+0x83/0x140
[ 1095.315905][   T31]  ops_undo_list+0x2ee/0xab0
[ 1095.320625][   T31]  ? __pfx_ops_undo_list+0x10/0x10
[ 1095.325803][   T31]  ? __local_bh_enable_ip+0xa4/0x120
[ 1095.333799][   T31]  cleanup_net+0x408/0x890
[ 1095.348940][   T31]  ? __pfx_cleanup_net+0x10/0x10
[ 1095.355751][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1095.400873][   T31]  process_one_work+0x9cf/0x1b70
[ 1095.406193][   T31]  ? __pfx_toggle_allocation_gate+0x10/0x10
[ 1095.430918][   T31]  ? __pfx_process_one_work+0x10/0x10
[ 1095.441552][   T31]  ? assign_work+0x1a0/0x250
[ 1095.457481][   T31]  worker_thread+0x6c8/0xf10
[ 1095.462336][   T31]  ? __pfx_worker_thread+0x10/0x10
[ 1095.472567][   T31]  kthread+0x3c2/0x780
[ 1095.477216][   T31]  ? __pfx_kthread+0x10/0x10
[ 1095.497421][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1095.523174][   T31]  ? __pfx_kthread+0x10/0x10
[ 1095.530408][   T31]  ret_from_fork+0x5d7/0x6f0
[ 1095.536324][   T31]  ? __pfx_kthread+0x10/0x10
[ 1095.544550][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1095.551096][   T31]  </TASK>
[ 1095.554514][   T31] 
[ 1095.554514][   T31] Showing all locks held in the system:
[ 1095.562857][   T31] 1 lock held by khungtaskd/31:
[ 1095.568099][   T31]  #0: ffffffff8e5c4d00 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[ 1095.578524][   T31] 3 locks held by kworker/u8:8/13438:
[ 1095.584073][   T31]  #0: ffff88801c6fe148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 1095.595281][   T31]  #1: ffffc9000bb17d10 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 1095.642450][   T31]  #2: ffffffff9034e190 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xad/0x890
[ 1095.701337][   T31] 2 locks held by getty/21974:
[ 1095.706355][   T31]  #0: ffff88803673a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 1095.719895][   T31]  #1: ffffc90003d732f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[ 1095.738097][   T31] 1 lock held by syz.0.2826/22327:
[ 1095.747206][   T31] 1 lock held by syz.3.2829/22331:
[ 1095.760251][   T31] 2 locks held by syz.3.2829/22333:
[ 1095.765605][   T31] 1 lock held by syz.2.2831/22338:
[ 1095.772958][   T31]  #0: ffffffff8e5d01c0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x48/0x6e0
[ 1095.786929][   T31] 3 locks held by syz.2.2831/22339:
[ 1095.794568][   T31]  #0: ffff888049274a08 (&sb->s_type->i_mutex_key#11){+.+.}-{4:4}, at: __sock_release+0x86/0x270
[ 1095.807133][   T31]  #1: ffff88807b99d6d8 (sk_lock-AF_PHONET){+.+.}-{0:0}, at: pep_sock_unhash+0x1c/0x3c0
[ 1095.818488][   T31]  #2: ffffffff8e5d02f8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0
[ 1095.834154][   T31] 
[ 1095.837821][   T31] =============================================
[ 1095.837821][   T31] 
[ 1095.851052][   T31] NMI backtrace for cpu 1
[ 1095.851075][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1095.851114][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1095.851134][   T31] Call Trace:
[ 1095.851145][   T31]  <TASK>
[ 1095.851158][   T31]  dump_stack_lvl+0x116/0x1f0
[ 1095.851210][   T31]  nmi_cpu_backtrace+0x27b/0x390
[ 1095.851250][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1095.851304][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[ 1095.851347][   T31]  watchdog+0xf70/0x12c0
[ 1095.851404][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1095.851450][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1095.851501][   T31]  ? __kthread_parkme+0x19e/0x250
[ 1095.851544][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1095.851592][   T31]  kthread+0x3c2/0x780
[ 1095.851641][   T31]  ? __pfx_kthread+0x10/0x10
[ 1095.851692][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1095.851727][   T31]  ? __pfx_kthread+0x10/0x10
[ 1095.851776][   T31]  ret_from_fork+0x5d7/0x6f0
[ 1095.851821][   T31]  ? __pfx_kthread+0x10/0x10
[ 1095.851870][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1095.851925][   T31]  </TASK>
[ 1095.851937][   T31] Sending NMI from CPU 1 to CPUs 0:
[ 1095.974903][    C0] NMI backtrace for cpu 0
[ 1095.974923][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1095.974956][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1095.974973][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[ 1095.975023][    C0] Code: 2b 6f 02 e9 93 fb 02 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 93 a7 25 00 fb f4 <c3> cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[ 1095.975050][    C0] RSP: 0018:ffffffff8e207e08 EFLAGS: 000002c6
[ 1095.975071][    C0] RAX: 000000000095b977 RBX: 0000000000000000 RCX: ffffffff8b846c49
[ 1095.975089][    C0] RDX: 0000000000000000 RSI: ffffffff8de2c763 RDI: ffffffff8c1578e0
[ 1095.975106][    C0] RBP: fffffbfff1c52ef0 R08: 0000000000000001 R09: ffffed1017086645
[ 1095.975123][    C0] R10: ffff8880b843322b R11: 0000000000000001 R12: 0000000000000000
[ 1095.975140][    C0] R13: ffffffff8e297780 R14: ffffffff90a99e50 R15: 0000000000000000
[ 1095.975157][    C0] FS:  0000000000000000(0000) GS:ffff888124721000(0000) knlGS:0000000000000000
[ 1095.975191][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1095.975208][    C0] CR2: 0000001b325f7ff8 CR3: 0000000079e62000 CR4: 00000000003526f0
[ 1095.975224][    C0] Call Trace:
[ 1095.975232][    C0]  <TASK>
[ 1095.975240][    C0]  default_idle+0x13/0x20
[ 1095.975262][    C0]  default_idle_call+0x6d/0xb0
[ 1095.975284][    C0]  do_idle+0x391/0x510
[ 1095.975312][    C0]  ? __pfx_do_idle+0x10/0x10
[ 1095.975336][    C0]  ? trace_sched_exit_tp+0x31/0x130
[ 1095.975369][    C0]  cpu_startup_entry+0x4f/0x60
[ 1095.975395][    C0]  rest_init+0x16b/0x2b0
[ 1095.975417][    C0]  ? acpi_subsystem_init+0x133/0x180
[ 1095.975446][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[ 1095.975506][    C0]  start_kernel+0x3ee/0x4d0
[ 1095.975541][    C0]  x86_64_start_reservations+0x18/0x30
[ 1095.975576][    C0]  x86_64_start_kernel+0x130/0x190
[ 1095.975611][    C0]  common_startup_64+0x13e/0x148
[ 1095.975644][    C0]  </TASK>
[ 1096.170100][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1096.197473][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1096.204364][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(full) 
[ 1096.216207][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1096.226468][   T31] Call Trace:
[ 1096.229760][   T31]  <TASK>
[ 1096.232700][   T31]  dump_stack_lvl+0x3d/0x1f0
[ 1096.237315][   T31]  panic+0x71c/0x800
[ 1096.241248][   T31]  ? __pfx___irq_work_queue_local+0x10/0x10
[ 1096.247186][   T31]  ? __pfx_panic+0x10/0x10
[ 1096.251636][   T31]  ? preempt_schedule_thunk+0x16/0x30
[ 1096.257037][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1096.263054][   T31]  ? preempt_schedule_thunk+0x16/0x30
[ 1096.268494][   T31]  ? watchdog+0xdda/0x12c0
[ 1096.272940][   T31]  ? watchdog+0xdcd/0x12c0
[ 1096.277400][   T31]  watchdog+0xdeb/0x12c0
[ 1096.281722][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1096.286420][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1096.291743][   T31]  ? __kthread_parkme+0x19e/0x250
[ 1096.296783][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1096.301484][   T31]  kthread+0x3c2/0x780
[ 1096.305597][   T31]  ? __pfx_kthread+0x10/0x10
[ 1096.310214][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1096.314989][   T31]  ? __pfx_kthread+0x10/0x10
[ 1096.319607][   T31]  ret_from_fork+0x5d7/0x6f0
[ 1096.324226][   T31]  ? __pfx_kthread+0x10/0x10
[ 1096.328860][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1096.333653][   T31]  </TASK>
[ 1096.337035][   T31] Kernel Offset: disabled
[ 1096.341397][   T31] Rebooting in 86400 seconds..