last executing test programs:

17m22.585629823s ago: executing program 0 (id=1):
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)
landlock_restrict_self$auto(r0, 0x0)
getcwd$auto(0x0, 0xffffffffffffffff)
move_mount$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0)

17m22.225661847s ago: executing program 0 (id=10):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x15)
sendmsg$auto_IEEE802154_ADD_IFACE(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000340)={0xa0, 0x0, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0xfb}, @IEEE802154_ATTR_CHANNEL_PAGE_LIST={0x84, 0x1e, "8fb96e2e8f6438aaf6cee9cb2ef5514c7230525d2e5b9611f3894bbc3fedbaa47bc73cd49a5b35be62be7c6273f01f1403557ab47602b2aba5d91c8e992ef67ac2d26185d937e5e93b50a87205bda3c8502a921d35b874048c3405628068d2080d00bc6add998c7af6fc93712a61abfb0e84a0cbb699651c60c8ac3fe3684c0f"}]}, 0xa0}, 0x1, 0x0, 0x0, 0x24008000}, 0x84)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000afd0"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

17m21.930206246s ago: executing program 0 (id=12):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x2, 0x0)
r0 = fsopen$auto(0x0, 0x1)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
iopl$auto(0x3)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)
fsmount$auto(0x4, 0x0, 0x200003)

17m21.193585692s ago: executing program 0 (id=15):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x3, 0x6)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0)
mkdir$auto(0x0, 0x353)

17m20.015466902s ago: executing program 0 (id=21):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8002)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66)
mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000)
r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x6, 0x50b301a, 0x2c, 0x2c, 0x0, 0x2})

17m18.922558762s ago: executing program 0 (id=25):
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioperm$auto(0x7, 0x6, 0x2)
io_uring_setup$auto(0x6, 0x0)
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0x5}, 0x5, 0x80000000)
close_range$auto(0x2, 0x8000, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec2\x00', 0x101000, 0x0)

17m18.417912337s ago: executing program 32 (id=25):
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioperm$auto(0x7, 0x6, 0x2)
io_uring_setup$auto(0x6, 0x0)
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0x5}, 0x5, 0x80000000)
close_range$auto(0x2, 0x8000, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec2\x00', 0x101000, 0x0)

15m19.292707984s ago: executing program 1 (id=772):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r0 = socket(0x2, 0x3, 0x6)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
open(0x0, 0x8643, 0x0)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0)

15m18.792107875s ago: executing program 1 (id=776):
r0 = socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000004", @ANYRES16, @ANYBLOB="93ab2dbd7000fcdbdf2508"], 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x8000)
r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x800)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

15m18.554053024s ago: executing program 1 (id=778):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x7fb, 0xa70, 0x10000003, 0x17, 0xfffffffffffffffa, 0x8004)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000000c0), 0x100, 0x0)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0x10a, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)

15m18.272797765s ago: executing program 1 (id=779):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r0 = socket(0xa, 0x5, 0x0)
connect$auto(0x3, &(0x7f0000000180)=@in={0x2, 0x0, @rand_addr=0x64010102}, 0x54)
sysfs$auto(0x2, 0x810000000000003a, 0x0)
getsockopt$auto(r0, 0x84, 0x1d, 0x0, 0x0)
semctl$auto(0x1ff, 0x100000001, 0x13, 0x9)
setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0xc)

15m17.06250739s ago: executing program 1 (id=787):
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x100000000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2, 0x3, 0x6)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x8643, 0x15e)
ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0)
rename$auto(&(0x7f0000000480)='./file0\x00', 0x0)

15m16.726706292s ago: executing program 1 (id=791):
madvise$auto(0x0, 0x2000040080000004, 0xe)
r0 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/self/clear_refs\x00', 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000)
recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0)
write$auto_proc_clear_refs_operations_internal(r0, 0x0, 0xffffff4b)
connect$auto(0xffffffffffffffff, &(0x7f00000018c0)=@generic={0xa}, 0x55)
mprotect$auto(0x200000000000, 0x806121, 0x6)

15m1.285413362s ago: executing program 33 (id=791):
madvise$auto(0x0, 0x2000040080000004, 0xe)
r0 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/self/clear_refs\x00', 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000)
recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0)
write$auto_proc_clear_refs_operations_internal(r0, 0x0, 0xffffff4b)
connect$auto(0xffffffffffffffff, &(0x7f00000018c0)=@generic={0xa}, 0x55)
mprotect$auto(0x200000000000, 0x806121, 0x6)

9.532140079s ago: executing program 2 (id=5130):
r0 = socket(0x2, 0x1, 0x106)
bind$auto(0x3, 0x0, 0x6a)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55)
setsockopt$auto(r0, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x10000000017, 0x28, 0x4, 0x8000000156, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0xf1, 0x2, 0x8000)
remap_file_pages$auto(0x5, 0x1000, 0x0, 0x8, 0x10007)
openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01002dbd70007cdbdf257e000000"], 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0)
sendfile$auto(0x3, 0xffffffffffffffff, 0x0, 0x400000000006)
open(0x0, 0x1e1401, 0xe5)
close_range$auto(0x2, 0x8, 0x0)
move_mount$auto(0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x77)
socket(0x15, 0x5, 0x0)
unshare$auto(0x40000080)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r1, &(0x7f0000000e00)="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", 0xc84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x1008000)

8.915626598s ago: executing program 4 (id=5132):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_ABORT_SCAN(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x20000848)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0)
write$auto_tty_fops_tty_io(r0, &(0x7f0000000580)="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", 0xfdef)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_ADD_LINK_STA(0xffffffffffffffff, 0x0, 0x14)
pipe2$auto(&(0x7f0000000040)=<r2=>r1, 0x9)
read$auto_proc_single_file_operations_base(r2, &(0x7f0000000280)=""/133, 0x85)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
select$auto(0x3, 0x0, 0x0, 0x0, 0x0)
syslog$auto(0x2, 0x0, 0xcf)
madvise$auto(0x0, 0x2003f0, 0x15)
select$auto(0x6, 0x0, 0x0, 0x0, 0x0)
mlock$auto(0x1000, 0x6)
mlockall$auto(0x800000000000005)
mq_open$auto(&(0x7f00000000c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\xbb\x192\x1c4\x86\xc0\xc1-\xd5\x10\xc3\xfc*[8\x89h\xc5\xba\xff\xc8u5<y\xa5\x97\x13\xef\xc4g\xc3\xa4&\x81I6\v\xcc\x00\x00', 0x62, 0xfffc, 0x0)

7.39230063s ago: executing program 3 (id=5133):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
r0 = socket(0xa, 0x3, 0xff)
connect$auto(r0, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
mmap$auto(0x200, 0x400008, 0x200, 0x9b72, 0xffffffffffffffff, 0x6)
r1 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
write$auto_proc_mem_operations_base(r1, &(0x7f0000001680)="a7", 0x80000)
mmap$auto(0x0, 0x20009, 0x4001000000df, 0xeb1, 0x401, 0x8000)
syz_clone3(0x0, 0x0)
madvise$auto(0x1ffff000, 0x7, 0x100000000)
shmget$auto(0x8, 0x10563, 0x568d1af2)
ioperm$auto(0x7, 0x6, 0x2)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event2\x00', 0x20081, 0x0)

6.673406777s ago: executing program 2 (id=5134):
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
r0 = socket(0x11, 0x3, 0x6)
getsockopt$auto_SO_TIMESTAMPNS_OLD(r0, 0x1, 0x23, &(0x7f0000000080)='-$\x00', &(0x7f00000000c0)=0x8)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000040)="205c2020027e0dc0203af10e9bfa1babfa203753ca9a20370a", 0x19)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0x401, 0x8000)
fchdir$auto(r0)
open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72)
setresuid$auto(0x0, 0x0, 0xffffffffffffffff)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)

6.34113607s ago: executing program 3 (id=5136):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/mpls/platform_labels\x00', 0x202, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x7, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
lseek$auto(0x0, 0x9, 0x1)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/swradio11\x00', 0x80002, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_policy\x00', 0x202, 0x0)
sendfile$auto(r1, r0, 0x0, 0x48)
openat$auto_ftrace_event_id_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/id\x00', 0xe2000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)

5.46484931s ago: executing program 2 (id=5139):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
select$auto(0x3, 0x0, &(0x7f0000000100)={[0x8, 0xb, 0x0, 0x9, 0xfffffffffffffffc, 0x83, 0x6, 0x2, 0x9, 0xffff, 0x4000000000000002, 0xd, 0x3, 0xfffffffffffffffe, 0x7, 0x1000000006]}, 0x0, 0x0)
syslog$auto(0x2, &(0x7f0000000000)='-#:\x00[\xda\xe2\xc3L\xd30{Q\xecvP\x93\x87\x1e\xdd\x95\x1b\x19qI\vv\xacO*X0V\x93\x85\xff\xb2\xdd\xd8\xd5Kh\xfa\xa3\xc7\x9b}\xec\x1e\xdc\x80\x1fR\xc30\x9a\xae\\\'\x14\x98\x98\xc3iDv\x97\xdfTMt\xe5?\xd0\xcc\xb8\xfa\a\x7f\x7f\x00\x00\x00\x00\x00\x00\x00n_\xb1\x1c\x7f\xb0y\xec\xe2\xcc\x1a/\xfa{d\xe4BN\x9c\xb9\x87.\xfe\xe7&1j\xe6]\xc3\x9anE6\x81\xe4\xec\xfa\xefE\xf7\x17h\xf4pumR\xd55Dd(\x0f(b\x1aD\xf4\x03\xc3\\\xdf\x8f\xa8\x82\xab\x102\xd1\xaf\xcaT\x86\x171\x11Q4\x94\x9d\xf5\x9c\xe3\xaa\xf3\xd26i\xf9\xb2\xd9T\xc9\xfd\xba\x91^\x19\x95\xde\xbc \xa8\x98\xc3\xed\xe9,{\xd4\xa1\xe4p\xcf\b\f\xb4\xbe_\xf2\xbe\xef\v\xf1d\xdd\x0e\xfc\xc3\xeaqt\x94\xe7\xce\xf1\xc5\x94~\xf6Cx\x0e\x98\xc7gE>*\x9c%\xa0\\\x14\t\tv.\x1c\x1a\xf1\xba\xc0>\xf4Hc\xc3\xfa\x033\x8f\xb9(\n/\xcdo\xc2', 0xcf)
close_range$auto(0x2, 0x8, 0x0)
clone$auto(0x1002, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f0, 0x15)
madvise$auto(0x6, 0x4, 0xfffffff7)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000240), 0x40, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
mlock$auto(0x1000, 0x6)
mlockall$auto(0x800000000000005)
r1 = mq_open$auto(&(0x7f00000000c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\xbb\x192\x1c4\x86\xc0\xc1-\xd5\x10\xc3\xfc*[8\x89h\xc5\xba\xff\xc8u5<y\xa5\x97\x13\xef\xc4g\xc3\xa4&\x81I6\v\xcc\x00\x00', 0x62, 0xfffc, 0x0)
mq_timedreceive$auto(r1, &(0x7f00000004c0)=' \x00;\xcc\xc7\x0f\xce\x8b|\xc0+I?\x8d+c\x82\x18\xec\xc5S\x19\xd7Vd\xecT\xf8\xaby\x82e\xb7\x1dz\xf5:\x80\x00\x00\x00\xf1\thR\x01N\xe6J\xfb\xc1\xd8J\xd6\xc0\xd2&\xa4\xdc\xe7}\xd5\xbb\xa9\x19\xaev9\xadP\x17Wh$\xb4\xfb\x1a:\xe8%\r\x11\xf8\xb7', 0x4dcd, 0x0, &(0x7f0000000080)={0x4, 0xd})
shmget$auto(0x400, 0x200000000008, 0x568c12f2)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x80, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NLBL_CALIPSO_C_LIST(r1, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, 0x0, 0x10, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x3895109967bb3fe0}, 0x50)

5.439587956s ago: executing program 5 (id=5140):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x1, 0x5, 0x0)
socket(0x2, 0x1, 0x5)
epoll_create$auto(0x4)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cpu/0/msr\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x2, 0x0, 0x9, 0x0, 0x1f, 0x7}, 0x6}, 0x5, 0x20000000)
mincore$auto(0x1000, 0x2, 0x0)
bpf$auto(0xf7fff011, &(0x7f0000000000)=@test={0xffffffffffffffff, 0x800004, 0xfaae, 0xc, 0x9, 0x2, 0x8, 0x3, 0x4, 0x1f8, 0x5, 0xb5, 0x4, 0x806, 0xd9f1}, 0x800000a3)
writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x7e)
r0 = socket(0x2a, 0x2, 0xf)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'team0\x00', <r2=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r2, r1, 0x4, 0x1, r0, @relative_id=0x13, 0xe600}, 0xf)
bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x7}, 0xc)

4.708676165s ago: executing program 3 (id=5141):
unshare$auto(0x40000082)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/platform/vicodec.0/video4linux/video2/uevent\x00', 0xa001, 0x0)
mmap$auto(0xfffffffffffffffe, 0x400007, 0xe895, 0x16, r0, 0x401)
write$auto(0x3, 0x0, 0x7fffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x14, r1, 0x300, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x400c080)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x70, 0xdf, 0x9b72, 0x2, 0x80000000008000)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x5, 0x0, 0xce24)
connect$auto(0x3, 0x0, 0x55)

4.0093607s ago: executing program 5 (id=5142):
mmap$auto(0x0, 0x3, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
getrlimit$auto(0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
r0 = socket(0xa, 0x801, 0x84)
bind$auto(0x3, 0x0, 0x6a)
socket$nl_generic(0x10, 0x3, 0x10)
connect$auto(0x3, 0x0, 0x54)
socket(0x10, 0x2, 0x0)
getsockopt$auto(r0, 0x84, 0x6c, 0x0, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x301001, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0)

3.554465188s ago: executing program 5 (id=5143):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
writev$auto(0x3, 0x0, 0x8009)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x18, r1, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@OVS_FLOW_ATTR_KEY={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x800)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
mmap$auto(0x3, 0x402000b, 0x2000006, 0xeb1, 0x401, 0xfff)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
r2 = io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
unshare$auto(0x40000080)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0xb02, 0x0)
pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9)
read$auto(0x3, 0x0, 0xf34)
read$auto(r2, &(0x7f00000000c0)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0x5)
write$auto(0x3, 0x0, 0xffd8)

3.375887843s ago: executing program 2 (id=5144):
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/softnet_stat\x00', 0x40102, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_dma_heap_fops_dma_heap(0xffffffffffffffff, 0xffffffffffdffe00, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x426883, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
mmap$auto(0x3, 0x7, 0xdf, 0x9b75, r0, 0x128000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mlock$auto(0xfbe8, 0x4)
munlock$auto(0xffff, 0x1)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
msgrcv$auto(0x0, 0x0, 0x3, 0x1, 0xf1)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
writev$auto(0x3, 0x0, 0x8)
timer_create$auto(0x5, 0x0, 0x0)
ioctl$auto(r1, 0x5609, r2)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0xa600, 0x0)
sendfile$auto(0x2, 0x3, 0x0, 0xc3e0)

3.00870453s ago: executing program 4 (id=5145):
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC1D1p\x00', 0x80201, 0x0)
openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim0/psample/enable\x00', 0x2, 0x0)
openat$auto_proc_pid_set_timerslack_ns_operations_base(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/time\x00')
socket(0x2, 0xa, 0x106)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
socket(0x2, 0x1, 0x0)
epoll_create$auto(0x4)
io_uring_setup$auto(0x85, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0xa)
socket(0x25, 0x1, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmsg$auto_WG_CMD_GET_DEVICE(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x400c810}, 0x200448c0)
r1 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x10b040, 0x0)
bpf$auto(0xfffff011, &(0x7f0000000000)=@test={r1, 0x4, 0xf9c, 0x468, 0x9, 0x3, 0x4, 0x2, 0x4, 0x200, 0x1fd, 0xb6, 0x4, 0x6, 0x3}, 0xa3)
writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x7e)

2.675086046s ago: executing program 4 (id=5146):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
fsopen$auto(0x0, 0x3)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x4, 0xffffffffffffffff, 0x400eb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x3, 0xff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0225020000000800030080"], 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x400d0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x20040004)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x80000005, &(0x7f0000000180)={0x0, 0xc8}, 0x1, 0x0, 0x5}, 0x3}, 0x40000204, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x15, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)

2.597305624s ago: executing program 3 (id=5147):
socket(0xa, 0x801, 0x84)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2200, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
select$auto(0xd, 0x0, 0x0, 0x0, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x7, 0x2, 0xdf, 0x410, 0x0, 0x8000000000000001)
syslog$auto(0x4, 0x0, 0x0)
sendmsg$auto_NL802154_CMD_SEND_BEACONS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x4)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x11, 0x80003, 0x300)
socket(0x11, 0xa, 0x300)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/snd_seq_oss/parameters/maxqlen\x00', 0x88802, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
read$auto(r1, 0x0, 0x8)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

1.871724839s ago: executing program 5 (id=5148):
socket$nl_generic(0x10, 0x3, 0x10)
read$auto(0xffffffffffffffff, 0x0, 0x20)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r0 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r1, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
write$auto(r0, 0x0, 0x9)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
clone3$auto(&(0x7f0000000240)={0x0, 0x80000000, 0xe, 0x8, 0x40, 0x0, 0x4, 0x7, 0x800, 0x0, 0x1}, 0x2)
socket(0x2, 0x1, 0x84)
connect$auto(0x3, 0x0, 0x52)
shutdown$auto(0x200000003, 0x2)
connect$auto(0x3, 0x0, 0x55)

1.870949712s ago: executing program 2 (id=5149):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000340)='/proc/thread-self/net/dev_mcast\x00', 0x404080, 0x0)
write$auto(r0, 0x0, 0x7ef)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/mac80211_hwsim/hwsim1/net/wlan1/type\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)=""/116, 0x74)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82040, 0x0)
socket(0xa, 0x1, 0x100)
modify_ldt$auto(0x1, 0x0, 0x10)
socket(0x28, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
select$auto(0x12, 0x0, 0x0, &(0x7f0000000240)={[0x1ff, 0x3, 0xd, 0x1d, 0x400000000000948f, 0x3, 0x15f4da0a, 0x3, 0x3, 0x64, 0x7f, 0x3, 0x1, 0x298, 0x1, 0x400000]}, 0x0)
write$auto(r2, &(0x7f0000000440)='/Eev/audio1\x00VI\xa3\xaa\xb1\x05\x00\x00\x00\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\x89C:\xc3\xcbx*=\x12\xb4q\xeeC\x81\n\\_\x04D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\x9e\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x0, 0x6d3e, 0x9, 0x8cec, 0x6]}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f0, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
fchownat$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x4)
unshare$auto(0x40000080)

1.845513403s ago: executing program 4 (id=5150):
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x0)
memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket(0x2c, 0x3, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x3)
socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x11, 0x2, 0x4)
bpf$auto(0x0, &(0x7f0000000000)=@iter_create={r0, 0x8}, 0xa3)

1.627505801s ago: executing program 4 (id=5151):
unshare$auto(0x40000080)
unshare$auto(0x7fffffff)
mmap$auto(0xfffffffffffffffe, 0x2020009, 0x1, 0x16, 0xfffffffffffffffa, 0x8000)
connect$auto(0x3, 0x0, 0x54)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid$auto(0x0, 0x0)
wait4$auto(0x0, 0x0, 0x8, 0x0)
r0 = getsockopt$auto(0xffffffffffffffff, 0x10002, 0x2, 0x0, &(0x7f0000000040)=0x2000000)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000000c0), r0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
memfd_create$auto(0x0, 0xe)
socket(0x1d, 0x2, 0x7)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0)
setsockopt$auto(0x3, 0x6b, 0x4, 0x0, 0xfb3)
mmap$auto(0x0, 0x2020009, 0x3, 0x13, 0xfffffffffffffffb, 0x8000)
fsconfig$auto_SHMEM_HUGE_NEVER(r0, 0x5, &(0x7f0000000000)='-:-[]\x00', &(0x7f0000000140), 0x0)
io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x29, 0x17000000, 0x0, 0x0, 0x0)

1.625778283s ago: executing program 3 (id=5152):
r0 = socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(r0, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioperm$auto(0x3, 0x8001, 0x2000000000000149)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto_BPF_LINK_CREATE(0x1c, &(0x7f0000000340)=@bpf_attr_4={0x3, r0, 0x40, r1}, 0x2)
shmctl$auto(0xa0000000, 0x6, &(0x7f00000002c0)={{0x3, 0x0, 0x0, 0x0, 0x7, 0xd, 0xff}, 0x2, 0xffffffff80000001, 0x3ff, 0x800, @raw=0x61a, @inferred=0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0})
sendmsg$auto_IPVS_CMD_GET_DAEMON(r0, 0x0, 0x20000000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0)
r2 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r2, 0x29, 0x39, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x10)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
execve$auto(0x0, 0x0, 0x0)
sendmsg$auto_ILA_CMD_ADD(r1, 0x0, 0x4000010)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0)
sendfile$auto(r3, r3, 0x0, 0x10000800000003)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)

1.490202174s ago: executing program 5 (id=5153):
r0 = socket(0x28, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/dirty_writeback_centisecs\x00', 0x163041, 0x0)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x0)
getsockopt$auto(r0, 0x0, 0x6, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/interrupts\x00', 0x18b202, 0x0)
pread64$auto(r1, &(0x7f0000000340)='/proc/Nes\x00'/22, 0x100000001, 0x100)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xfffffffffffff000}, 0x1, 0x0, 0x0, 0x9}, 0x9a27}, 0x3, 0x0)
writev$auto(0x3, &(0x7f0000000040)={0x0, 0x21f}, 0x800000007)

1.076871127s ago: executing program 5 (id=5154):
set_tid_address$auto(0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000180)='/:$]\x00', 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
open(0x0, 0x7ffd, 0x12)
kexec_load$auto(0x9, 0x0, 0x0, 0x1003e0000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
unshare$auto(0x20000080)
connect$auto(0x3, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x2710}, 0x10)
unshare$auto(0x40000080)
io_uring_setup$auto(0x4c2, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x180b01, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/ip6_vti0/stable_secret\x00', 0x2, 0x0)
pwrite64$auto(r1, 0x0, 0x1, 0x27)

373.660717ms ago: executing program 2 (id=5155):
unshare$auto(0x40000080)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
rseq$auto(&(0x7f0000000400)={0xe, 0x401, 0x6, 0x6, 0xffffffff, 0xfffffffe, "875f0491a00965c2c6d012e2291b20ffd56138075357c2c06c0a6ec43e121ac04e4e5f5ee005d2405df24820ff0fe9136ef90789d56d8124bec64fca28ff03feff92c804736117848cb1452209fedb1e84e9c73c265a4f3c694ee1144cc78129978d31280ea0784646ccf4f551e55e8adbac125a25d11186c8676238cee44192331a7f60537c40413ad354761b9999d144b607"}, 0x7, 0x0, 0x36)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_clone3(&(0x7f0000000200)={0x4000, 0x0, 0x0, 0x0, {0x2f}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = socket(0x12, 0x4, 0x440a)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff)
ioctl$auto_SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000040))
sendfile$auto(0x6, 0x3, 0x0, 0xfdef)
io_setup$auto(0x80002, 0x0)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), r0)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="20002abd7000fedcdf25010000000d000280055140d023e39b5a933e949a3ae6e421486b139cfc549d2c023a5139cca0b945b14436de99229dba6dc3e33db0d907fa3c196becbd49464d23bd9773a6cbc93748a7cfe94461145276ca90ebb14873788d1eff95dbc4f3a36f1fc3ec2e053f4ba5e39ba1ffac07d987d8f7992c5eb555c2b9e853"], 0x18}, 0x1, 0x0, 0x0, 0x8080}, 0x8041)
epoll_pwait2$auto(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0, 0x8)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
socket(0x10, 0x2, 0xc)
setreuid$auto(0x8, 0x9d7)

362.47364ms ago: executing program 3 (id=5156):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0)
read$auto(r0, 0x0, 0x20)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nbd15\x00', 0x80000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_METER_CMD_SET(r3, &(0x7f0000001700)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000016c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB='\x00', @ANYRES16=0x0, @ANYBLOB="10002abd7000ffdbdf250200000008000800010400000800010009000000040006006c0204800400128035a5c1b2a653e986b4dabb1df79558a586ae42076e4064db69dc0748946d3c51c4df10bbad8db8003562c82a70956403e2e884473124618d6063ebcbc4a2b8974fed725bc44bf97f7d087cda52ed8ec98a1139d120070eccfb8f86163f0346207ecaf39300338004007e80cb3adaaa8050d02e59e3a35817b86abf6e50dad81d19cb89b8c88b9cf3dc65e894367f66f7116b4a88e117a7e64f704d60e4237d3e2172b92e159ee2c7f123212f7abaa69506607d21c8c1efdbdd7c6236301d79fc2ec94fcc58d2d1b95198d8749be1a60201ab8b0ed8ac45e8f2d19042008f78113aabb92b656cca2989dfb5430b3348a9ad5bd3e944cc007dac33ef4a83df4b66d438a743d8e964611dbf1141c0a4c64eec00ab2720c4f5c217b5b2a889fc9576ac89847027ad63a7254b881240457fa7e4ba335d15a98832eaad2a7ba7209c27d9fefde9cc392b5087e97e3e5dec46ef4326629c0768abf85a9325d47284607b2c07199283cd19df57ba77024292c3743a0dcdc99ae0392e5cd13e870cb8967cd32f8b6a528c2e1a736cccc9b951e47f55ef9c969515e312799274b06bc2edc767391dcac5e0c0a504973add5e82e531274f1611b3b5d97d40016a3169403d2b3329dbb434127ecad9bb33fb9caee7a337916007e37e6de6b5e53b8fb770027eb844cde3c4e855aeb7fb5e607e4ef37f0444fcacd864d9ce58ef624129a9a8fbdcd1b9fdf7cf5b3f8dd81fd56e0a0c025af9c620a2f9c608d6ebb07a600e13eb89987aae059f1ae4c0e16f2c078cec01ff5035efd6994c116587b6b1b5c3e32be98c790b2bf56efac707d3475e1503e637070d518b14", @ANYRES32, @ANYBLOB], 0x29c}, 0x1, 0x0, 0x0, 0x24000001}, 0x40)
r4 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
execveat$auto(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
rename$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000340)='./file0\x00')
rename$auto(&(0x7f0000000000)='./file0\x00', &(0x7f00000002c0)='./file1\x00')
socketpair$auto(0x1, 0x0, 0x8000000000000000, 0x0)
setsockopt$auto(r2, 0x104000000000010e, 0xa, 0x0, 0x400)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000040), 0xffffffffffffffff)
r5 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000100), 0x28000, 0x0)
ioctl$auto_BTRFS_IOC_DEVICES_READY(r5, 0x90009427, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)

0s ago: executing program 4 (id=5157):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
r0 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f0000000040)="4a67d23edb3100000000000000000075210d2de48306c2fb", 0x49}, 0x5, 0x0, 0x5}, 0x1}, 0x2, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
lseek$auto(0x3, 0x2, 0x4)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x66ab80, 0x0)
r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000400), 0x101000, 0x0)
ioctl$auto_UI_SET_EVBIT(r1, 0x40045564, &(0x7f0000000140)=0xfffffffd)
socket(0xf, 0x3, 0x2)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0xa, 0xe)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
readv$auto(0x3, 0x0, 0x87)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
write$auto(0x3, 0x0, 0xfdef)

kernel console output (not intermixed with test programs):

2053b5f8
[  846.669930][T19154]  </TASK>
[  848.069553][T19176] cougar: G6 mapped to space
[  848.847260][T19188] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4181'.
[  848.862084][T19188] netlink: 25 bytes leftover after parsing attributes in process `syz.4.4181'.
[  849.619680][T19204] netlink: 252 bytes leftover after parsing attributes in process `syz.4.4185'.
[  849.661040][T19204] netlink: 252 bytes leftover after parsing attributes in process `syz.4.4185'.
[  850.984384][T19226] ERROR: Out of memory at tomoyo_memory_ok.
[  851.054832][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  851.061700][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  851.072968][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  851.082695][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  851.095907][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  851.106984][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  851.124632][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  851.136267][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  851.226928][T19226] HfR: entered promiscuous mode
[  852.361282][T19242] cougar: G6 mapped to space
[  852.714061][T19247] netlink: 330 bytes leftover after parsing attributes in process `syz.2.4197'.
[  852.862404][T19247] veth1_macvtap: left allmulticast mode
[  852.878482][T19247] veth1_macvtap: left promiscuous mode
[  852.899058][T19247] macsec0: entered promiscuous mode
[  853.160048][T19250] mkiss: ax0: crc mode is auto.
[  853.348921][T19260] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4200'.
[  853.360420][T19260] netlink: 13 bytes leftover after parsing attributes in process `syz.5.4200'.
[  853.568872][T19266] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4201'.
[  853.618555][T19266] netlink: 93 bytes leftover after parsing attributes in process `syz.2.4201'.
[  853.743323][T19271] netlink: 'syz.4.4203': attribute type 5 has an invalid length.
[  853.776858][T19271] netlink: 'syz.4.4203': attribute type 1 has an invalid length.
[  853.794317][T19272] netlink: 'syz.4.4203': attribute type 5 has an invalid length.
[  853.806602][T19271] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4203'.
[  853.832997][T19272] netlink: 'syz.4.4203': attribute type 1 has an invalid length.
[  853.889811][T19272] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4203'.
[  854.309637][T19279] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4205'.
[  854.631871][T19283] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4208'.
[  855.490455][T19307] netlink: set zone limit has 8 unknown bytes
[  855.538373][T19311] netlink: 86 bytes leftover after parsing attributes in process `syz.3.4217'.
[  857.418034][T19316] kexec: Could not allocate control_code_buffer
[  857.738042][T19342] cougar: G6 mapped to space
[  858.662123][T19354] mkiss: ax0: crc mode is auto.
[  859.573962][T19369] ERROR: Out of memory at tomoyo_memory_ok.
[  859.658353][T19369] openvswitch: HfR: Dropping previously announced user features
[  860.054819][T19375] ERROR: Out of memory at tomoyo_memory_ok.
[  860.085222][T19375] FAULT_INJECTION: forcing a failure.
[  860.085222][T19375] name failslab, interval 1, probability 0, space 0, times 0
[  860.102339][T19375] CPU: 0 UID: 0 PID: 19375 Comm: syz.3.4234 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  860.102398][T19375] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  860.102411][T19375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  860.102430][T19375] Call Trace:
[  860.102448][T19375]  <TASK>
[  860.102461][T19375]  dump_stack_lvl+0x16c/0x1f0
[  860.102518][T19375]  should_fail_ex+0x512/0x640
[  860.102567][T19375]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  860.102622][T19375]  should_failslab+0xc2/0x120
[  860.102656][T19375]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  860.102704][T19375]  ? __asan_memcpy+0x3c/0x60
[  860.102749][T19375]  ? __kernfs_new_node+0xd2/0x8e0
[  860.102811][T19375]  __kernfs_new_node+0xd2/0x8e0
[  860.102866][T19375]  ? __pfx___kernfs_new_node+0x10/0x10
[  860.102924][T19375]  ? find_held_lock+0x2b/0x80
[  860.102962][T19375]  ? kernfs_root+0xee/0x2a0
[  860.103018][T19375]  kernfs_new_node+0x13c/0x1e0
[  860.103074][T19375]  ? net_ns_get_ownership+0xf8/0x1b0
[  860.103133][T19375]  kernfs_create_dir_ns+0x4c/0x1a0
[  860.103193][T19375]  sysfs_create_dir_ns+0x13a/0x2b0
[  860.103242][T19375]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  860.103285][T19375]  ? find_held_lock+0x2b/0x80
[  860.103325][T19375]  ? net_namespace+0x12/0x50
[  860.103356][T19375]  ? device_namespace+0x76/0xa0
[  860.103393][T19375]  kobject_add_internal+0x2c4/0x9b0
[  860.103448][T19375]  kobject_add+0x16e/0x240
[  860.103483][T19375]  ? __pfx_kobject_add+0x10/0x10
[  860.103518][T19375]  ? get_device_parent+0x1c5/0x4e0
[  860.103575][T19375]  ? kobject_put+0xab/0x5a0
[  860.103643][T19375]  device_add+0x288/0x1a70
[  860.103680][T19375]  ? __pfx_dev_set_name+0x10/0x10
[  860.103721][T19375]  ? __pfx_device_add+0x10/0x10
[  860.103758][T19375]  ? lockdep_init_map_type+0x5c/0x280
[  860.103810][T19375]  ? __init_waitqueue_head+0xca/0x150
[  860.103852][T19375]  netdev_register_kobject+0x182/0x3a0
[  860.103894][T19375]  register_netdevice+0x13dc/0x2270
[  860.103936][T19375]  ? __pfx_register_netdevice+0x10/0x10
[  860.103983][T19375]  internal_dev_create+0x2d3/0x520
[  860.104022][T19375]  ovs_vport_add+0x147/0x4d0
[  860.104080][T19375]  new_vport+0x16/0x1d0
[  860.104124][T19375]  ovs_dp_cmd_new+0x6ba/0xe60
[  860.104182][T19375]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  860.104240][T19375]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  860.104285][T19375]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  860.104336][T19375]  genl_family_rcv_msg_doit+0x209/0x2f0
[  860.104382][T19375]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  860.104424][T19375]  ? trace_cap_capable+0x18d/0x200
[  860.104477][T19375]  ? bpf_lsm_capable+0x9/0x10
[  860.104519][T19375]  ? security_capable+0x7e/0x260
[  860.104555][T19375]  ? ns_capable+0xd7/0x110
[  860.104594][T19375]  genl_rcv_msg+0x55c/0x800
[  860.104642][T19375]  ? __pfx_genl_rcv_msg+0x10/0x10
[  860.104684][T19375]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  860.104748][T19375]  netlink_rcv_skb+0x158/0x420
[  860.104782][T19375]  ? __pfx_genl_rcv_msg+0x10/0x10
[  860.104827][T19375]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  860.104882][T19375]  ? netlink_deliver_tap+0x1ae/0xd30
[  860.104944][T19375]  genl_rcv+0x28/0x40
[  860.104980][T19375]  netlink_unicast+0x53a/0x7f0
[  860.105021][T19375]  ? __pfx_netlink_unicast+0x10/0x10
[  860.105071][T19375]  netlink_sendmsg+0x8d1/0xdd0
[  860.105115][T19375]  ? __pfx_netlink_sendmsg+0x10/0x10
[  860.105167][T19375]  ____sys_sendmsg+0xa98/0xc70
[  860.105206][T19375]  ? copy_msghdr_from_user+0x10a/0x160
[  860.105257][T19375]  ? __pfx_____sys_sendmsg+0x10/0x10
[  860.105304][T19375]  ? try_to_wake_up+0xa2f/0x1680
[  860.105348][T19375]  ___sys_sendmsg+0x134/0x1d0
[  860.105401][T19375]  ? __pfx____sys_sendmsg+0x10/0x10
[  860.105456][T19375]  ? __lock_acquire+0x622/0x1c90
[  860.105559][T19375]  __sys_sendmsg+0x16d/0x220
[  860.105611][T19375]  ? __pfx___sys_sendmsg+0x10/0x10
[  860.105661][T19375]  ? __x64_sys_futex+0x1e0/0x4c0
[  860.105732][T19375]  do_syscall_64+0xcd/0x490
[  860.105788][T19375]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  860.105823][T19375] RIP: 0033:0x7f0c1658e929
[  860.105854][T19375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  860.105888][T19375] RSP: 002b:00007f0c174a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  860.105922][T19375] RAX: ffffffffffffffda RBX: 00007f0c167b5fa0 RCX: 00007f0c1658e929
[  860.105943][T19375] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006
[  860.105964][T19375] RBP: 00007f0c16610b39 R08: 0000000000000000 R09: 0000000000000000
[  860.105984][T19375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  860.106003][T19375] R13: 0000000000000000 R14: 00007f0c167b5fa0 R15: 00007fff70ea1648
[  860.106046][T19375]  </TASK>
[  860.627476][T19375] kobject: kobject_add_internal failed for HfR (error: -12 parent: net)
[  861.014729][T19380] netlink: 246 bytes leftover after parsing attributes in process `syz.2.4237'.
[  862.353177][T19402] busy
[  862.494590][T19404] ERROR: Out of memory at tomoyo_memory_ok.
[  862.576521][T19404] openvswitch: HfR: Dropping previously announced user features
[  864.699149][T19433] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4253'.
[  864.748362][T19433] netlink: 354 bytes leftover after parsing attributes in process `syz.2.4253'.
[  865.045384][T19439] netlink: 338 bytes leftover after parsing attributes in process `syz.2.4256'.
[  865.094167][T19439] netlink: 338 bytes leftover after parsing attributes in process `syz.2.4256'.
[  865.192440][T19441] netlink: 338 bytes leftover after parsing attributes in process `syz.2.4256'.
[  866.038653][T19385] delete_channel: no stack
[  867.454512][T19480] ERROR: Out of memory at tomoyo_memory_ok.
[  867.509437][T19480] FAULT_INJECTION: forcing a failure.
[  867.509437][T19480] name failslab, interval 1, probability 0, space 0, times 0
[  867.544100][T19480] CPU: 0 UID: 0 PID: 19480 Comm: syz.3.4269 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  867.544162][T19480] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  867.544176][T19480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  867.544195][T19480] Call Trace:
[  867.544207][T19480]  <TASK>
[  867.544221][T19480]  dump_stack_lvl+0x16c/0x1f0
[  867.544277][T19480]  should_fail_ex+0x512/0x640
[  867.544324][T19480]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  867.544383][T19480]  should_failslab+0xc2/0x120
[  867.544416][T19480]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  867.544475][T19480]  ? kstrdup_const+0x63/0x80
[  867.544532][T19480]  kstrdup+0x53/0x100
[  867.544585][T19480]  kstrdup_const+0x63/0x80
[  867.544637][T19480]  __kernfs_new_node+0x9b/0x8e0
[  867.544690][T19480]  ? __pfx___kernfs_new_node+0x10/0x10
[  867.544750][T19480]  ? find_held_lock+0x2b/0x80
[  867.544796][T19480]  ? kernfs_root+0xee/0x2a0
[  867.544851][T19480]  kernfs_new_node+0x13c/0x1e0
[  867.544913][T19480]  kernfs_create_link+0xcc/0x240
[  867.544956][T19480]  sysfs_do_create_link_sd+0x90/0x140
[  867.545006][T19480]  sysfs_create_link+0x61/0xc0
[  867.545051][T19480]  device_add+0x62c/0x1a70
[  867.545095][T19480]  ? __pfx_device_add+0x10/0x10
[  867.545132][T19480]  ? lockdep_init_map_type+0x5c/0x280
[  867.545183][T19480]  ? __init_waitqueue_head+0xca/0x150
[  867.545227][T19480]  netdev_register_kobject+0x182/0x3a0
[  867.545269][T19480]  register_netdevice+0x13dc/0x2270
[  867.545312][T19480]  ? __pfx_register_netdevice+0x10/0x10
[  867.545360][T19480]  internal_dev_create+0x2d3/0x520
[  867.545392][T19480]  ovs_vport_add+0x147/0x4d0
[  867.545451][T19480]  new_vport+0x16/0x1d0
[  867.545496][T19480]  ovs_dp_cmd_new+0x6ba/0xe60
[  867.545564][T19480]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  867.545624][T19480]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  867.545669][T19480]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  867.545719][T19480]  genl_family_rcv_msg_doit+0x209/0x2f0
[  867.545766][T19480]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  867.545819][T19480]  ? trace_cap_capable+0x18d/0x200
[  867.545864][T19480]  ? bpf_lsm_capable+0x9/0x10
[  867.545905][T19480]  ? security_capable+0x7e/0x260
[  867.545940][T19480]  ? ns_capable+0xd7/0x110
[  867.545979][T19480]  genl_rcv_msg+0x55c/0x800
[  867.546026][T19480]  ? __pfx_genl_rcv_msg+0x10/0x10
[  867.546069][T19480]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  867.546133][T19480]  netlink_rcv_skb+0x158/0x420
[  867.546169][T19480]  ? __pfx_genl_rcv_msg+0x10/0x10
[  867.546214][T19480]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  867.546268][T19480]  ? netlink_deliver_tap+0x1ae/0xd30
[  867.546331][T19480]  genl_rcv+0x28/0x40
[  867.546366][T19480]  netlink_unicast+0x53a/0x7f0
[  867.546407][T19480]  ? __pfx_netlink_unicast+0x10/0x10
[  867.546455][T19480]  netlink_sendmsg+0x8d1/0xdd0
[  867.546498][T19480]  ? __pfx_netlink_sendmsg+0x10/0x10
[  867.546552][T19480]  ____sys_sendmsg+0xa98/0xc70
[  867.546594][T19480]  ? copy_msghdr_from_user+0x10a/0x160
[  867.546642][T19480]  ? __pfx_____sys_sendmsg+0x10/0x10
[  867.546691][T19480]  ? try_to_wake_up+0xa2f/0x1680
[  867.546733][T19480]  ___sys_sendmsg+0x134/0x1d0
[  867.546796][T19480]  ? __pfx____sys_sendmsg+0x10/0x10
[  867.546846][T19480]  ? __lock_acquire+0x622/0x1c90
[  867.546948][T19480]  __sys_sendmsg+0x16d/0x220
[  867.547001][T19480]  ? __pfx___sys_sendmsg+0x10/0x10
[  867.547050][T19480]  ? __x64_sys_futex+0x1e0/0x4c0
[  867.547118][T19480]  do_syscall_64+0xcd/0x490
[  867.547172][T19480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  867.547206][T19480] RIP: 0033:0x7f0c1658e929
[  867.547235][T19480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  867.547269][T19480] RSP: 002b:00007f0c174a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  867.547302][T19480] RAX: ffffffffffffffda RBX: 00007f0c167b5fa0 RCX: 00007f0c1658e929
[  867.547325][T19480] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006
[  867.547347][T19480] RBP: 00007f0c16610b39 R08: 0000000000000000 R09: 0000000000000000
[  867.547369][T19480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  867.547390][T19480] R13: 0000000000000000 R14: 00007f0c167b5fa0 R15: 00007fff70ea1648
[  867.547437][T19480]  </TASK>
[  869.472397][T19496] netlink: 25 bytes leftover after parsing attributes in process `syz.5.4274'.
[  869.588577][T19496] ima: policy update failed
[  869.613601][   T30] audit: type=1802 audit(6046974579.579:33): pid=19496 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.4274" res=0 errno=0
[  871.522492][T19520] cougar: G6 mapped to space
[  872.359362][T19522] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  872.421884][T19522] FAULT_INJECTION: forcing a failure.
[  872.421884][T19522] name failslab, interval 1, probability 0, space 0, times 0
[  872.436340][T19522] CPU: 0 UID: 0 PID: 19522 Comm: syz.3.4278 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  872.436400][T19522] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  872.436416][T19522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  872.436437][T19522] Call Trace:
[  872.436450][T19522]  <TASK>
[  872.436464][T19522]  dump_stack_lvl+0x16c/0x1f0
[  872.436522][T19522]  should_fail_ex+0x512/0x640
[  872.436570][T19522]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  872.436630][T19522]  should_failslab+0xc2/0x120
[  872.436664][T19522]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  872.436717][T19522]  ? alloc_inode+0xc3/0x240
[  872.436759][T19522]  alloc_inode+0xc3/0x240
[  872.436794][T19522]  iget_locked+0x2e4/0x830
[  872.436835][T19522]  ? __pfx_iget_locked+0x10/0x10
[  872.436875][T19522]  ? find_held_lock+0x2b/0x80
[  872.436912][T19522]  ? kernfs_root+0xee/0x2a0
[  872.436967][T19522]  kernfs_get_inode+0x48/0x460
[  872.437015][T19522]  kernfs_iop_lookup+0x1a7/0x2d0
[  872.437068][T19522]  __lookup_slow+0x251/0x460
[  872.437122][T19522]  ? __pfx___lookup_slow+0x10/0x10
[  872.437190][T19522]  ? lookup_fast+0x156/0x610
[  872.437232][T19522]  ? __pfx_kernfs_iop_permission+0x10/0x10
[  872.437284][T19522]  walk_component+0x353/0x5b0
[  872.437330][T19522]  link_path_walk+0x627/0xe20
[  872.437390][T19522]  path_openat+0x1b0/0x2cb0
[  872.437437][T19522]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  872.437488][T19522]  ? __pfx_path_openat+0x10/0x10
[  872.437540][T19522]  ? __lock_acquire+0xb8a/0x1c90
[  872.437593][T19522]  do_filp_open+0x20b/0x470
[  872.437641][T19522]  ? __pfx_do_filp_open+0x10/0x10
[  872.437723][T19522]  ? alloc_fd+0x471/0x7d0
[  872.437785][T19522]  do_sys_openat2+0x11b/0x1d0
[  872.437822][T19522]  ? __pfx_do_sys_openat2+0x10/0x10
[  872.437874][T19522]  __x64_sys_openat+0x174/0x210
[  872.437913][T19522]  ? __pfx___x64_sys_openat+0x10/0x10
[  872.437969][T19522]  do_syscall_64+0xcd/0x490
[  872.438023][T19522]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  872.438057][T19522] RIP: 0033:0x7f0c1658e929
[  872.438096][T19522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  872.438129][T19522] RSP: 002b:00007f0c174a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  872.438161][T19522] RAX: ffffffffffffffda RBX: 00007f0c167b5fa0 RCX: 00007f0c1658e929
[  872.438184][T19522] RDX: 0000000000183841 RSI: 0000200000000280 RDI: ffffffffffffff9c
[  872.438205][T19522] RBP: 00007f0c16610b39 R08: 0000000000000000 R09: 0000000000000000
[  872.438226][T19522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  872.438245][T19522] R13: 0000000000000000 R14: 00007f0c167b5fa0 R15: 00007fff70ea1648
[  872.438288][T19522]  </TASK>
[  876.105792][T19562] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  876.171805][ T5862] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  876.171849][ T5862] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  876.186786][ T5862] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  876.186825][ T5862] Bluetooth: hci2: adv larger than maximum supported
[  876.194194][ T5862] Bluetooth: hci2: adv larger than maximum supported
[  876.208445][ T5862] Bluetooth: hci2: Malformed LE Event: 0x0d
[  876.622970][T19573] netlink: 25 bytes leftover after parsing attributes in process `syz.5.4296'.
[  876.902771][T19580] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  877.074192][T19571] FAULT_INJECTION: forcing a failure.
[  877.074192][T19571] name failslab, interval 1, probability 0, space 0, times 0
[  877.145733][T19571] CPU: 0 UID: 0 PID: 19571 Comm: syz.4.4294 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  877.145792][T19571] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  877.145806][T19571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  877.145827][T19571] Call Trace:
[  877.145838][T19571]  <TASK>
[  877.145851][T19571]  dump_stack_lvl+0x16c/0x1f0
[  877.145907][T19571]  should_fail_ex+0x512/0x640
[  877.145954][T19571]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  877.146015][T19571]  should_failslab+0xc2/0x120
[  877.146046][T19571]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  877.146100][T19571]  ? trace_kmem_cache_alloc+0x28/0xc0
[  877.146135][T19571]  ? key_alloc+0x43e/0x1330
[  877.146183][T19571]  kmemdup_noprof+0x29/0x60
[  877.146234][T19571]  key_alloc+0x43e/0x1330
[  877.146291][T19571]  ? __pfx_key_alloc+0x10/0x10
[  877.146346][T19571]  keyring_alloc+0x44/0xc0
[  877.146399][T19571]  install_session_keyring_to_cred+0x190/0x230
[  877.146446][T19571]  join_session_keyring+0x1b8/0x340
[  877.146488][T19571]  lookup_user_key+0x576/0x1300
[  877.146532][T19571]  ? __pfx_lookup_user_key+0x10/0x10
[  877.146577][T19571]  ? __pfx_do_futex+0x10/0x10
[  877.146631][T19571]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  877.146704][T19571]  keyctl_keyring_move+0xb4/0x150
[  877.146742][T19571]  __do_sys_keyctl+0x171/0x590
[  877.146780][T19571]  do_syscall_64+0xcd/0x490
[  877.146836][T19571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  877.146871][T19571] RIP: 0033:0x7f9372b8e929
[  877.146900][T19571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  877.146933][T19571] RSP: 002b:00007f9373a3d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  877.146965][T19571] RAX: ffffffffffffffda RBX: 00007f9372db5fa0 RCX: 00007f9372b8e929
[  877.146987][T19571] RDX: fffffffffffffffd RSI: fffffffffffffffc RDI: 000000000000001e
[  877.147009][T19571] RBP: 00007f9372c10b39 R08: 0000000000000001 R09: 0000000000000000
[  877.147028][T19571] R10: fffffffffffffffd R11: 0000000000000246 R12: 0000000000000000
[  877.147049][T19571] R13: 0000000000000000 R14: 00007f9372db5fa0 R15: 00007fff177d5988
[  877.147090][T19571]  </TASK>
[  878.096941][T19596] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4302'.
[  878.420072][T19598] netlink: 338 bytes leftover after parsing attributes in process `syz.4.4303'.
[  879.410359][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  879.418633][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  880.051028][T19621] ERROR: Out of memory at tomoyo_memory_ok.
[  880.838133][T19638] netlink: set zone limit has 8 unknown bytes
[  881.187671][T19644] overlayfs: missing 'lowerdir'
[  881.677052][T19649] netlink: 210 bytes leftover after parsing attributes in process `syz.3.4317'.
[  881.693332][T19540] delete_channel: no stack
[  882.118693][T19657] FAULT_INJECTION: forcing a failure.
[  882.118693][T19657] name failslab, interval 1, probability 0, space 0, times 0
[  882.156801][T19657] CPU: 0 UID: 0 PID: 19657 Comm: syz.5.4319 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  882.156862][T19657] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  882.156876][T19657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  882.156895][T19657] Call Trace:
[  882.156908][T19657]  <TASK>
[  882.156922][T19657]  dump_stack_lvl+0x16c/0x1f0
[  882.156976][T19657]  should_fail_ex+0x512/0x640
[  882.157025][T19657]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  882.157081][T19657]  should_failslab+0xc2/0x120
[  882.157116][T19657]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  882.157167][T19657]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  882.157222][T19657]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[  882.157274][T19657]  idr_get_free+0x528/0xa30
[  882.157336][T19657]  idr_alloc_u32+0x190/0x2f0
[  882.157384][T19657]  ? __pfx_idr_alloc_u32+0x10/0x10
[  882.157435][T19657]  ? __pfx___mutex_lock+0x10/0x10
[  882.157495][T19657]  idr_alloc+0xc0/0x130
[  882.157548][T19657]  ? __pfx_idr_alloc+0x10/0x10
[  882.157594][T19657]  ? __radix_tree_lookup+0x21f/0x2c0
[  882.157647][T19657]  ppp_dev_configure+0x905/0xc80
[  882.157697][T19657]  ppp_ioctl+0x17e0/0x2660
[  882.157740][T19657]  ? find_held_lock+0x2b/0x80
[  882.157776][T19657]  ? __pfx_ppp_ioctl+0x10/0x10
[  882.157824][T19657]  ? __fget_files+0x20e/0x3c0
[  882.157878][T19657]  ? __pfx_ppp_ioctl+0x10/0x10
[  882.157920][T19657]  __x64_sys_ioctl+0x18b/0x210
[  882.157965][T19657]  do_syscall_64+0xcd/0x490
[  882.158019][T19657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  882.158054][T19657] RIP: 0033:0x7fcd92f8e929
[  882.158081][T19657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  882.158115][T19657] RSP: 002b:00007fcd90df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  882.158146][T19657] RAX: ffffffffffffffda RBX: 00007fcd931b5fa0 RCX: 00007fcd92f8e929
[  882.158169][T19657] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000003
[  882.158189][T19657] RBP: 00007fcd93010b39 R08: 0000000000000000 R09: 0000000000000000
[  882.158209][T19657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  882.158228][T19657] R13: 0000000000000000 R14: 00007fcd931b5fa0 R15: 00007fff2053b5f8
[  882.158271][T19657]  </TASK>
[  882.803271][T19664] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4322'.
[  882.826802][T19664] netlink: 354 bytes leftover after parsing attributes in process `syz.2.4322'.
[  886.469143][T19715] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  887.603179][T19736] netlink: 25 bytes leftover after parsing attributes in process `syz.4.4341'.
[  889.407964][T19763] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x1b8 pfn:0x78000
[  889.491746][T19763] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  889.638156][T19763] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[  889.733822][T19769] FAULT_INJECTION: forcing a failure.
[  889.733822][T19769] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  889.790581][T19763] raw: 00000000000001b8 0000000000000000 00000001ffffffff 0000000000000000
[  889.819577][T19763] page dumped because: unmovable page
[  889.835709][T19769] CPU: 0 UID: 0 PID: 19769 Comm: syz.3.4350 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  889.835785][T19769] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  889.835802][T19769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  889.835825][T19769] Call Trace:
[  889.835837][T19769]  <TASK>
[  889.835852][T19769]  dump_stack_lvl+0x16c/0x1f0
[  889.835914][T19769]  should_fail_ex+0x512/0x640
[  889.835984][T19769]  should_fail_alloc_page+0xe7/0x130
[  889.836025][T19769]  prepare_alloc_pages+0x3c2/0x610
[  889.836068][T19769]  ? find_held_lock+0x2b/0x80
[  889.836113][T19769]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  889.836181][T19769]  ? lock_acquire+0x179/0x350
[  889.836234][T19769]  ? find_held_lock+0x2b/0x80
[  889.836280][T19769]  ? mark_held_locks+0x49/0x80
[  889.836329][T19769]  ? finish_task_switch.isra.0+0x221/0xc10
[  889.836376][T19769]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  889.836442][T19769]  ? rcu_is_watching+0x12/0xc0
[  889.836484][T19769]  ? trace_sched_exit_tp+0xde/0x130
[  889.836531][T19769]  ? __schedule+0x1181/0x5de0
[  889.836599][T19769]  ? mark_held_locks+0x49/0x80
[  889.836649][T19769]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  889.836710][T19769]  ? policy_nodemask+0xea/0x4e0
[  889.836752][T19769]  alloc_pages_mpol+0x1fb/0x550
[  889.836801][T19769]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  889.836850][T19769]  folio_alloc_mpol_noprof+0x36/0x2f0
[  889.836895][T19769]  shmem_alloc_folio+0x135/0x160
[  889.836945][T19769]  shmem_alloc_and_add_folio+0x499/0xc20
[  889.837009][T19769]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  889.837068][T19769]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  889.837130][T19769]  shmem_get_folio_gfp+0x67f/0x1600
[  889.837195][T19769]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  889.837256][T19769]  ? filemap_map_pages+0xf6f/0x1680
[  889.837322][T19769]  shmem_fault+0x1fe/0xa30
[  889.837373][T19769]  ? find_held_lock+0x2b/0x80
[  889.837410][T19769]  ? __pfx_shmem_fault+0x10/0x10
[  889.837466][T19769]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  889.837512][T19769]  ? lockdep_hardirqs_on+0x7c/0x110
[  889.837554][T19769]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  889.837594][T19769]  ? rcu_preempt_deferred_qs_irqrestore+0x4f5/0xbc0
[  889.837646][T19769]  __do_fault+0x10a/0x490
[  889.837693][T19769]  __handle_mm_fault+0x3c2a/0x5490
[  889.837741][T19769]  ? __pfx___handle_mm_fault+0x10/0x10
[  889.837788][T19769]  ? __pte_offset_map_lock+0x174/0x310
[  889.837818][T19769]  ? find_held_lock+0x2b/0x80
[  889.837846][T19769]  ? find_held_lock+0x2b/0x80
[  889.837884][T19769]  ? follow_page_pte+0x3af/0x14c0
[  889.837924][T19769]  handle_mm_fault+0x589/0xd10
[  889.837968][T19769]  __get_user_pages+0x589/0x3b80
[  889.838016][T19769]  ? __pfx___futex_wait+0x10/0x10
[  889.838058][T19769]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  889.838098][T19769]  ? __pfx___get_user_pages+0x10/0x10
[  889.838135][T19769]  ? __lock_acquire+0xb8a/0x1c90
[  889.838180][T19769]  faultin_page_range+0x249/0x980
[  889.838223][T19769]  madvise_do_behavior+0x268/0x3f0
[  889.838258][T19769]  ? __pfx_madvise_do_behavior+0x10/0x10
[  889.838309][T19769]  do_madvise+0x161/0x230
[  889.838339][T19769]  ? __pfx_do_madvise+0x10/0x10
[  889.838385][T19769]  ? xfd_validate_state+0x61/0x180
[  889.838422][T19769]  ? __pfx_do_writev+0x10/0x10
[  889.838467][T19769]  __x64_sys_madvise+0xa9/0x110
[  889.838497][T19769]  ? lockdep_hardirqs_on+0x7c/0x110
[  889.838538][T19769]  do_syscall_64+0xcd/0x490
[  889.838584][T19769]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  889.838613][T19769] RIP: 0033:0x7f0c1658e929
[  889.838636][T19769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  889.838665][T19769] RSP: 002b:00007f0c17485038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  889.838692][T19769] RAX: ffffffffffffffda RBX: 00007f0c167b6080 RCX: 00007f0c1658e929
[  889.838711][T19769] RDX: 0000000000000016 RSI: 0000000000100000 RDI: 0000000000000000
[  889.838728][T19769] RBP: 00007f0c16610b39 R08: 0000000000000000 R09: 0000000000000000
[  889.838745][T19769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  889.838762][T19769] R13: 0000000000000000 R14: 00007f0c167b6080 R15: 00007fff70ea1648
[  889.838802][T19769]  </TASK>
[  890.251216][T19763] page_owner tracks the page as allocated
[  890.257208][T19763] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xcc0(GFP_KERNEL), pid 8686, tgid 8686 (syz-executor), ts 258908955659, free_ts 192729368891
[  890.520526][T19763]  post_alloc_hook+0x1c0/0x230
[  890.563674][T19763]  get_page_from_freelist+0x1321/0x3890
[  890.569375][T19763]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  890.596291][T19763]  alloc_pages_bulk_noprof+0x71c/0x1410
[  890.601983][T19763]  kasan_populate_vmalloc+0xf1/0x1f0
[  890.649247][T19763]  alloc_vmap_area+0x959/0x29c0
[  890.654318][T19763]  __get_vm_area_node+0x1ca/0x330
[  890.659576][T19763]  __vmalloc_node_range_noprof+0x271/0x14b0
[  890.665614][T19763]  vmalloc_user_noprof+0x9e/0xe0
[  890.671161][T19763]  kcov_ioctl+0x4c/0x730
[  890.676603][T19763]  __x64_sys_ioctl+0x18b/0x210
[  890.681982][T19763]  do_syscall_64+0xcd/0x490
[  890.687231][T19763]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  890.694076][T19763] page last free pid 43 tgid 43 stack trace:
[  890.700263][T19763]  __free_frozen_pages+0x7fe/0x1180
[  890.706144][T19763]  vfree+0x1fd/0xb50
[  890.710355][T19763]  pcpu_balance_free+0x5fb/0xaf0
[  890.742663][T19763]  pcpu_balance_workfn+0x9c2/0xe00
[  890.747910][T19763]  process_one_work+0x9cf/0x1b70
[  890.790862][T19763]  worker_thread+0x6c8/0xf10
[  890.821855][T19763]  kthread+0x3c2/0x780
[  890.874304][T19763]  ret_from_fork+0x5d7/0x6f0
[  890.882475][T19763]  ret_from_fork_asm+0x1a/0x30
[  890.904751][T19769] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x1b8 pfn:0x78000
[  890.928872][T19769] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  890.978614][T19769] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[  891.071642][T19769] raw: 00000000000001b8 0000000000000000 00000001ffffffff 0000000000000000
[  891.121200][T19769] page dumped because: unmovable page
[  891.126808][T19769] page_owner tracks the page as allocated
[  891.135049][T19769] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xcc0(GFP_KERNEL), pid 8686, tgid 8686 (syz-executor), ts 258908955659, free_ts 192729368891
[  891.151583][T19769]  post_alloc_hook+0x1c0/0x230
[  891.156581][T19769]  get_page_from_freelist+0x1321/0x3890
[  891.162517][T19769]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  891.168675][T19769]  alloc_pages_bulk_noprof+0x71c/0x1410
[  891.174494][T19769]  kasan_populate_vmalloc+0xf1/0x1f0
[  891.180143][T19769]  alloc_vmap_area+0x959/0x29c0
[  891.185548][T19769]  __get_vm_area_node+0x1ca/0x330
[  891.190926][T19769]  __vmalloc_node_range_noprof+0x271/0x14b0
[  891.198636][T19769]  vmalloc_user_noprof+0x9e/0xe0
[  891.203845][T19769]  kcov_ioctl+0x4c/0x730
[  891.208351][T19769]  __x64_sys_ioctl+0x18b/0x210
[  891.213310][T19769]  do_syscall_64+0xcd/0x490
[  891.218070][T19769]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  891.224184][T19769] page last free pid 43 tgid 43 stack trace:
[  891.230668][T19769]  __free_frozen_pages+0x7fe/0x1180
[  891.236050][T19769]  vfree+0x1fd/0xb50
[  891.240130][T19769]  pcpu_balance_free+0x5fb/0xaf0
[  891.245414][T19769]  pcpu_balance_workfn+0x9c2/0xe00
[  891.250954][T19769]  process_one_work+0x9cf/0x1b70
[  891.256081][T19769]  worker_thread+0x6c8/0xf10
[  891.260939][T19769]  kthread+0x3c2/0x780
[  891.265212][T19769]  ret_from_fork+0x5d7/0x6f0
[  891.269970][T19769]  ret_from_fork_asm+0x1a/0x30
[  892.489021][T19798] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4358'.
[  892.860722][T19796] could not allocate digest TFM handle 
[  893.636392][T19820] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  894.199169][T19827] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4363'.
[  894.210034][T19827] netlink: 25 bytes leftover after parsing attributes in process `syz.5.4363'.
[  895.652280][T19843] kAFS: No cell specified
[  895.672498][T19843] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4370'.
[  895.688777][T19843] ipvlan1: entered promiscuous mode
[  895.694086][T19843] ipvlan1: entered allmulticast mode
[  895.700271][T19843] veth0_vlan: entered allmulticast mode
[  895.737635][T19850] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4371'.
[  897.018833][T19870] netlink: 354 bytes leftover after parsing attributes in process `syz.2.4378'.
[  898.089935][T19898] overlayfs: missing 'lowerdir'
[  899.405703][T19908] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  901.805391][T19956] random: crng reseeded on system resumption
[  902.259996][T19965] netlink: 186 bytes leftover after parsing attributes in process `syz.5.4406'.
[  902.499824][T19973] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  902.747123][T19973] FAULT_INJECTION: forcing a failure.
[  902.747123][T19973] name failslab, interval 1, probability 0, space 0, times 0
[  902.773553][T19973] CPU: 1 UID: 0 PID: 19973 Comm: syz.4.4417 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  902.773612][T19973] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  902.773626][T19973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  902.773647][T19973] Call Trace:
[  902.773657][T19973]  <TASK>
[  902.773671][T19973]  dump_stack_lvl+0x16c/0x1f0
[  902.773724][T19973]  should_fail_ex+0x512/0x640
[  902.773773][T19973]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  902.773822][T19973]  should_failslab+0xc2/0x120
[  902.773855][T19973]  __kmalloc_cache_noprof+0x6a/0x3e0
[  902.773902][T19973]  ? loopback_open+0x145/0x13a0
[  902.773954][T19973]  loopback_open+0x145/0x13a0
[  902.774013][T19973]  snd_pcm_open_substream+0xa60/0x17f0
[  902.774061][T19973]  ? __pfx_snd_pcm_open_substream+0x10/0x10
[  902.774108][T19973]  ? rcu_is_watching+0x12/0xc0
[  902.774151][T19973]  snd_pcm_open+0x29e/0x730
[  902.774199][T19973]  ? __pfx_snd_pcm_open+0x10/0x10
[  902.774247][T19973]  ? __pfx_default_wake_function+0x10/0x10
[  902.774297][T19973]  ? __pfx_snd_pcm_capture_open+0x10/0x10
[  902.774341][T19973]  snd_pcm_capture_open+0x89/0xe0
[  902.774385][T19973]  snd_open+0x1fe/0x450
[  902.774437][T19973]  ? __pfx_snd_open+0x10/0x10
[  902.774496][T19973]  chrdev_open+0x231/0x6a0
[  902.774550][T19973]  ? __pfx_apparmor_file_open+0x10/0x10
[  902.774595][T19973]  ? __pfx_chrdev_open+0x10/0x10
[  902.774648][T19973]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  902.774703][T19973]  do_dentry_open+0x744/0x1c10
[  902.774755][T19973]  ? __pfx_chrdev_open+0x10/0x10
[  902.774815][T19973]  vfs_open+0x82/0x3f0
[  902.774858][T19973]  path_openat+0x1de4/0x2cb0
[  902.774922][T19973]  ? __pfx_path_openat+0x10/0x10
[  902.774970][T19973]  ? __lock_acquire+0xb8a/0x1c90
[  902.775014][T19973]  do_filp_open+0x20b/0x470
[  902.775056][T19973]  ? __pfx_do_filp_open+0x10/0x10
[  902.775124][T19973]  ? alloc_fd+0x471/0x7d0
[  902.775171][T19973]  do_sys_openat2+0x11b/0x1d0
[  902.775202][T19973]  ? __pfx_do_sys_openat2+0x10/0x10
[  902.775254][T19973]  __x64_sys_openat+0x174/0x210
[  902.775286][T19973]  ? __pfx___x64_sys_openat+0x10/0x10
[  902.775333][T19973]  do_syscall_64+0xcd/0x490
[  902.775378][T19973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  902.775406][T19973] RIP: 0033:0x7f9372b8e929
[  902.775429][T19973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  902.775456][T19973] RSP: 002b:00007f9373a1c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  902.775492][T19973] RAX: ffffffffffffffda RBX: 00007f9372db6080 RCX: 00007f9372b8e929
[  902.775512][T19973] RDX: 0000000000001200 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  902.775530][T19973] RBP: 00007f9372c10b39 R08: 0000000000000000 R09: 0000000000000000
[  902.775548][T19973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  902.775565][T19973] R13: 0000000000000000 R14: 00007f9372db6080 R15: 00007fff177d5988
[  902.775600][T19973]  </TASK>
[  903.898327][T19998] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  904.798653][T20012] random: crng reseeded on system resumption
[  907.028495][T20041] random: crng reseeded on system resumption
[  907.704340][T20050] random: crng reseeded on system resumption
[  907.847042][T20054] overlayfs: missing 'lowerdir'
[  909.592810][T20079] FAULT_INJECTION: forcing a failure.
[  909.592810][T20079] name failslab, interval 1, probability 0, space 0, times 0
[  909.634212][T20079] CPU: 0 UID: 0 PID: 20079 Comm: syz.4.4437 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  909.634270][T20079] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  909.634284][T20079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  909.634304][T20079] Call Trace:
[  909.634319][T20079]  <TASK>
[  909.634332][T20079]  dump_stack_lvl+0x16c/0x1f0
[  909.634386][T20079]  should_fail_ex+0x512/0x640
[  909.634435][T20079]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  909.634490][T20079]  should_failslab+0xc2/0x120
[  909.634521][T20079]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  909.634566][T20079]  ? find_held_lock+0x2b/0x80
[  909.634600][T20079]  ? skb_clone+0x190/0x3f0
[  909.634657][T20079]  skb_clone+0x190/0x3f0
[  909.634707][T20079]  netlink_broadcast_filtered+0xb19/0xf10
[  909.634775][T20079]  ? sprintf+0xcc/0x100
[  909.634819][T20079]  ? __pfx_netlink_broadcast_filtered+0x10/0x10
[  909.634898][T20079]  ? netlink_has_listeners+0x20f/0x430
[  909.634957][T20079]  netlink_broadcast+0x39/0x50
[  909.635013][T20079]  kobject_uevent_env+0xc6a/0x1870
[  909.635061][T20079]  ? queue_work_on+0x12a/0x1f0
[  909.635092][T20079]  ? bus_to_subsys+0x131/0x160
[  909.635141][T20079]  driver_bound+0x164/0x230
[  909.635194][T20079]  device_bind_driver+0x3a/0x70
[  909.635238][T20079]  mac80211_hwsim_new_radio+0x3e5/0x54d0
[  909.635301][T20079]  ? __asan_memset+0x23/0x50
[  909.635342][T20079]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  909.635397][T20079]  hwsim_new_radio_nl+0xb51/0x12c0
[  909.635444][T20079]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  909.635500][T20079]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  909.635543][T20079]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  909.635595][T20079]  genl_family_rcv_msg_doit+0x209/0x2f0
[  909.635642][T20079]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  909.635684][T20079]  ? trace_cap_capable+0x18d/0x200
[  909.635729][T20079]  ? bpf_lsm_capable+0x9/0x10
[  909.635770][T20079]  ? security_capable+0x7e/0x260
[  909.635804][T20079]  ? ns_capable+0xd7/0x110
[  909.635844][T20079]  genl_rcv_msg+0x55c/0x800
[  909.635904][T20079]  ? __pfx_genl_rcv_msg+0x10/0x10
[  909.635946][T20079]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  909.636016][T20079]  netlink_rcv_skb+0x158/0x420
[  909.636052][T20079]  ? __pfx_genl_rcv_msg+0x10/0x10
[  909.636099][T20079]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  909.636153][T20079]  ? netlink_deliver_tap+0x1ae/0xd30
[  909.636211][T20079]  genl_rcv+0x28/0x40
[  909.636244][T20079]  netlink_unicast+0x53a/0x7f0
[  909.636283][T20079]  ? __pfx_netlink_unicast+0x10/0x10
[  909.636327][T20079]  netlink_sendmsg+0x8d1/0xdd0
[  909.636366][T20079]  ? __pfx_netlink_sendmsg+0x10/0x10
[  909.636412][T20079]  ____sys_sendmsg+0xa98/0xc70
[  909.636451][T20079]  ? copy_msghdr_from_user+0x10a/0x160
[  909.636502][T20079]  ? __pfx_____sys_sendmsg+0x10/0x10
[  909.636551][T20079]  ? __pfx_futex_wake_mark+0x10/0x10
[  909.636606][T20079]  ___sys_sendmsg+0x134/0x1d0
[  909.636659][T20079]  ? __pfx____sys_sendmsg+0x10/0x10
[  909.636705][T20079]  ? __lock_acquire+0x622/0x1c90
[  909.636806][T20079]  __sys_sendmsg+0x16d/0x220
[  909.636857][T20079]  ? __pfx___sys_sendmsg+0x10/0x10
[  909.636914][T20079]  ? __x64_sys_futex+0x1e0/0x4c0
[  909.636980][T20079]  do_syscall_64+0xcd/0x490
[  909.637034][T20079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  909.637068][T20079] RIP: 0033:0x7f9372b8e929
[  909.637095][T20079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  909.637128][T20079] RSP: 002b:00007f9373a3d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  909.637158][T20079] RAX: ffffffffffffffda RBX: 00007f9372db5fa0 RCX: 00007f9372b8e929
[  909.637179][T20079] RDX: 00000000040000c0 RSI: 0000200000000300 RDI: 0000000000000005
[  909.637199][T20079] RBP: 00007f9372c10b39 R08: 0000000000000000 R09: 0000000000000000
[  909.637218][T20079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  909.637237][T20079] R13: 0000000000000000 R14: 00007f9372db5fa0 R15: 00007fff177d5988
[  909.637277][T20079]  </TASK>
[  910.978011][T20092] random: crng reseeded on system resumption
[  911.037588][T20090] sp0: Synchronizing with TNC
[  913.570765][T20127] netlink: 25 bytes leftover after parsing attributes in process `syz.5.4450'.
[  913.697772][T20127] ima: policy update failed
[  913.716433][   T30] audit: type=1802 audit(6046974684.910:34): pid=20127 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.5.4450" res=0 errno=0
[  915.754753][T20153] FAULT_INJECTION: forcing a failure.
[  915.754753][T20153] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  915.809206][T20153] CPU: 1 UID: 0 PID: 20153 Comm: syz.5.4459 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  915.809267][T20153] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  915.809281][T20153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  915.809300][T20153] Call Trace:
[  915.809323][T20153]  <TASK>
[  915.809337][T20153]  dump_stack_lvl+0x16c/0x1f0
[  915.809395][T20153]  should_fail_ex+0x512/0x640
[  915.809451][T20153]  should_fail_alloc_page+0xe7/0x130
[  915.809488][T20153]  prepare_alloc_pages+0x3c2/0x610
[  915.809529][T20153]  ? rcu_is_watching+0x12/0xc0
[  915.809572][T20153]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  915.809636][T20153]  ? __lock_acquire+0x622/0x1c90
[  915.809691][T20153]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  915.809742][T20153]  ? relay_open+0x653/0xad0
[  915.809799][T20153]  ? rcu_read_unlock+0x17/0x60
[  915.809843][T20153]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  915.809899][T20153]  ? policy_nodemask+0xea/0x4e0
[  915.809935][T20153]  alloc_pages_mpol+0x1fb/0x550
[  915.809972][T20153]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  915.810004][T20153]  ? __kvmalloc_node_noprof.cold+0x60/0x65
[  915.810054][T20153]  ? trace_kmalloc+0x2b/0xd0
[  915.810086][T20153]  ? __kmalloc_noprof.cold+0x5c/0x61
[  915.810137][T20153]  ? relay_open_buf.part.0+0x194/0xc80
[  915.810187][T20153]  alloc_pages_noprof+0x131/0x390
[  915.810221][T20153]  relay_open_buf.part.0+0x262/0xc80
[  915.810284][T20153]  relay_open+0x653/0xad0
[  915.810337][T20153]  ? debugfs_create_file_full+0x41/0x60
[  915.810390][T20153]  do_blk_trace_setup+0x503/0xb50
[  915.810435][T20153]  blk_trace_setup+0xed/0x1b0
[  915.810475][T20153]  ? __pfx_blk_trace_setup+0x10/0x10
[  915.810509][T20153]  ? __pfx_snprintf+0x10/0x10
[  915.810576][T20153]  blk_trace_ioctl+0x146/0x280
[  915.810614][T20153]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  915.810658][T20153]  ? find_held_lock+0x2b/0x80
[  915.810692][T20153]  ? hook_file_ioctl_common+0x145/0x410
[  915.810734][T20153]  blkdev_ioctl+0x108/0x6d0
[  915.810773][T20153]  ? __pfx_blkdev_ioctl+0x10/0x10
[  915.810818][T20153]  ? __pfx_blkdev_ioctl+0x10/0x10
[  915.810859][T20153]  __x64_sys_ioctl+0x18b/0x210
[  915.810900][T20153]  do_syscall_64+0xcd/0x490
[  915.810950][T20153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  915.810984][T20153] RIP: 0033:0x7fcd92f8e929
[  915.811012][T20153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  915.811045][T20153] RSP: 002b:00007fcd90df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  915.811079][T20153] RAX: ffffffffffffffda RBX: 00007fcd931b5fa0 RCX: 00007fcd92f8e929
[  915.811101][T20153] RDX: 00002000000000c0 RSI: 00000000c0481273 RDI: 0000000000000006
[  915.811122][T20153] RBP: 00007fcd93010b39 R08: 0000000000000000 R09: 0000000000000000
[  915.811143][T20153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  915.811164][T20153] R13: 0000000000000000 R14: 00007fcd931b5fa0 R15: 00007fff2053b5f8
[  915.811209][T20153]  </TASK>
[  916.334577][   T30] audit: type=1804 audit(6046974687.534:35): pid=20177 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.4463" name="/newroot/1135/file0" dev="tmpfs" ino=5903 res=1 errno=0
[  916.453258][T20174] netlink: 338 bytes leftover after parsing attributes in process `syz.4.4462'.
[  916.722359][T20176] netlink: 338 bytes leftover after parsing attributes in process `syz.4.4462'.
[  920.255306][T20223] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  920.734629][T20231] zswap: compressor  not available
[  920.764378][T20240] zswap: compressor  not available
[  920.882505][T20247] netlink: 'syz.3.4479': attribute type 4 has an invalid length.
[  920.891251][T20247] netlink: 314 bytes leftover after parsing attributes in process `syz.3.4479'.
[  923.205165][T20277] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input27
[  923.337918][ T5209] ERROR: Out of memory at tomoyo_memory_ok.
[  924.754926][T20283] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  924.786269][T20283] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  924.814236][T20283] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  924.848107][T20283] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  924.871392][   T30] audit: type=1326 audit(6046982496.114:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20294 comm="syz.3.4488" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0c1658e929 code=0x0
[  924.942611][T20296] FAULT_INJECTION: forcing a failure.
[  924.942611][T20296] name failslab, interval 1, probability 0, space 0, times 0
[  925.004740][T20296] CPU: 1 UID: 0 PID: 20296 Comm: syz.3.4488 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  925.004803][T20296] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  925.004819][T20296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  925.004839][T20296] Call Trace:
[  925.004850][T20296]  <TASK>
[  925.004864][T20296]  dump_stack_lvl+0x16c/0x1f0
[  925.004921][T20296]  should_fail_ex+0x512/0x640
[  925.004968][T20296]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  925.005020][T20296]  should_failslab+0xc2/0x120
[  925.005054][T20296]  __kmalloc_cache_noprof+0x6a/0x3e0
[  925.005100][T20296]  ? snd_pcm_oss_change_params_locked+0x1db/0x3a30
[  925.005148][T20296]  snd_pcm_oss_change_params_locked+0x1db/0x3a30
[  925.005191][T20296]  ? rcu_is_watching+0x12/0xc0
[  925.005230][T20296]  ? __mutex_lock+0x1ca/0xb90
[  925.005283][T20296]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  925.005325][T20296]  ? __pfx___mutex_lock+0x10/0x10
[  925.005387][T20296]  ? __fsnotify_parent+0x24b/0xc40
[  925.005444][T20296]  snd_pcm_oss_make_ready+0xe6/0x1b0
[  925.005493][T20296]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  925.005536][T20296]  snd_pcm_oss_sync+0x1de/0x840
[  925.005579][T20296]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  925.005614][T20296]  snd_pcm_oss_release+0x28b/0x310
[  925.005655][T20296]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  925.005690][T20296]  __fput+0x3ff/0xb70
[  925.005734][T20296]  task_work_run+0x150/0x240
[  925.005788][T20296]  ? __pfx_task_work_run+0x10/0x10
[  925.005840][T20296]  ? __pfx___do_sys_close_range+0x10/0x10
[  925.005901][T20296]  exit_to_user_mode_loop+0xeb/0x110
[  925.005955][T20296]  do_syscall_64+0x3f6/0x490
[  925.006011][T20296]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  925.006045][T20296] RIP: 0033:0x7f0c1658e929
[  925.006072][T20296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  925.006107][T20296] RSP: 002b:00007f0c17485038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  925.006140][T20296] RAX: 0000000000000000 RBX: 00007f0c167b6080 RCX: 00007f0c1658e929
[  925.006160][T20296] RDX: 0000000000000000 RSI: fffffffffffff000 RDI: 0000000000000000
[  925.006179][T20296] RBP: 00007f0c16610b39 R08: 0000000000000000 R09: 0000000000000000
[  925.006211][T20296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  925.006231][T20296] R13: 0000000000000000 R14: 00007f0c167b6080 R15: 00007fff70ea1648
[  925.006274][T20296]  </TASK>
[  926.201103][ T5862] Bluetooth: hci2: command 0x0406 tx timeout
[  926.737624][T20319] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4494'.
[  926.842523][ T5862] Bluetooth: hci1: command 0x0406 tx timeout
[  926.848666][ T5862] Bluetooth: hci3: command 0x0406 tx timeout
[  926.914687][ T5854] Bluetooth: hci0: command 0x0406 tx timeout
[  929.439039][   T30] audit: type=1326 audit(6046982500.708:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20346 comm="syz.5.4501" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcd92f8e929 code=0x0
[  929.502391][T20350] FAULT_INJECTION: forcing a failure.
[  929.502391][T20350] name failslab, interval 1, probability 0, space 0, times 0
[  929.558158][T20350] CPU: 0 UID: 0 PID: 20350 Comm: syz.5.4501 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  929.558221][T20350] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  929.558234][T20350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  929.558254][T20350] Call Trace:
[  929.558265][T20350]  <TASK>
[  929.558279][T20350]  dump_stack_lvl+0x16c/0x1f0
[  929.558334][T20350]  should_fail_ex+0x512/0x640
[  929.558391][T20350]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  929.558442][T20350]  should_failslab+0xc2/0x120
[  929.558478][T20350]  __kmalloc_cache_noprof+0x6a/0x3e0
[  929.558525][T20350]  ? snd_pcm_oss_change_params_locked+0x1db/0x3a30
[  929.558572][T20350]  snd_pcm_oss_change_params_locked+0x1db/0x3a30
[  929.558617][T20350]  ? rcu_is_watching+0x12/0xc0
[  929.558660][T20350]  ? __mutex_lock+0x1ca/0xb90
[  929.558716][T20350]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  929.558759][T20350]  ? __pfx___mutex_lock+0x10/0x10
[  929.558822][T20350]  ? __fsnotify_parent+0x24b/0xc40
[  929.558880][T20350]  snd_pcm_oss_make_ready+0xe6/0x1b0
[  929.558920][T20350]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  929.558957][T20350]  snd_pcm_oss_sync+0x1de/0x840
[  929.558999][T20350]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  929.559036][T20350]  snd_pcm_oss_release+0x28b/0x310
[  929.559076][T20350]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  929.559112][T20350]  __fput+0x3ff/0xb70
[  929.559157][T20350]  task_work_run+0x150/0x240
[  929.559219][T20350]  ? __pfx_task_work_run+0x10/0x10
[  929.559276][T20350]  ? __pfx___do_sys_close_range+0x10/0x10
[  929.559343][T20350]  exit_to_user_mode_loop+0xeb/0x110
[  929.559409][T20350]  do_syscall_64+0x3f6/0x490
[  929.559465][T20350]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  929.559501][T20350] RIP: 0033:0x7fcd92f8e929
[  929.559530][T20350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  929.559564][T20350] RSP: 002b:00007fcd90dd5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  929.559597][T20350] RAX: 0000000000000000 RBX: 00007fcd931b6080 RCX: 00007fcd92f8e929
[  929.559619][T20350] RDX: 0000000000000000 RSI: fffffffffffff000 RDI: 0000000000000000
[  929.559640][T20350] RBP: 00007fcd93010b39 R08: 0000000000000000 R09: 0000000000000000
[  929.559660][T20350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  929.559680][T20350] R13: 0000000000000000 R14: 00007fcd931b6080 R15: 00007fff2053b5f8
[  929.559721][T20350]  </TASK>
[  929.804916][    C0] vkms_vblank_simulate: vblank timer overrun
[  930.881877][T20357] zswap: compressor 000 not available
[  931.531825][T20371] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4506'.
[  932.042394][T20384] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4509'.
[  932.142168][T20384] netlink: 354 bytes leftover after parsing attributes in process `syz.5.4509'.
[  933.746642][T20401] FAULT_INJECTION: forcing a failure.
[  933.746642][T20401] name failslab, interval 1, probability 0, space 0, times 0
[  933.760506][T20401] CPU: 1 UID: 0 PID: 20401 Comm: syz.3.4514 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  933.760566][T20401] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  933.760579][T20401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  933.760600][T20401] Call Trace:
[  933.760611][T20401]  <TASK>
[  933.760625][T20401]  dump_stack_lvl+0x16c/0x1f0
[  933.760681][T20401]  should_fail_ex+0x512/0x640
[  933.760734][T20401]  should_failslab+0xc2/0x120
[  933.760766][T20401]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  933.760815][T20401]  ? __lock_acquire+0x622/0x1c90
[  933.760874][T20401]  ? dst_alloc+0x99/0x1a0
[  933.760924][T20401]  dst_alloc+0x99/0x1a0
[  933.760972][T20401]  rt_dst_alloc+0x35/0x3a0
[  933.761013][T20401]  ip_route_output_key_hash_rcu+0x87a/0x28f0
[  933.761075][T20401]  ip_route_output_key_hash+0x137/0x2e0
[  933.761124][T20401]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  933.761186][T20401]  ? find_held_lock+0x2b/0x80
[  933.761226][T20401]  ip_route_output_flow+0x27/0x150
[  933.761277][T20401]  udp_sendmsg+0x1bdd/0x29f0
[  933.761317][T20401]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  933.761362][T20401]  ? __pfx_udp_sendmsg+0x10/0x10
[  933.761395][T20401]  ? find_held_lock+0x2b/0x80
[  933.761453][T20401]  ? __lock_acquire+0xb8a/0x1c90
[  933.761498][T20401]  ? __pfx___might_resched+0x10/0x10
[  933.761535][T20401]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  933.761592][T20401]  ? aa_sk_perm+0x2f4/0xb10
[  933.761638][T20401]  ? __import_iovec+0x1dd/0x650
[  933.761667][T20401]  ? __might_fault+0xe3/0x190
[  933.761712][T20401]  ? __might_fault+0x13b/0x190
[  933.761761][T20401]  ? __pfx_udp_sendmsg+0x10/0x10
[  933.761799][T20401]  inet_sendmsg+0x105/0x140
[  933.761855][T20401]  ____sys_sendmsg+0x973/0xc70
[  933.761896][T20401]  ? copy_msghdr_from_user+0x10a/0x160
[  933.761946][T20401]  ? __pfx_____sys_sendmsg+0x10/0x10
[  933.761989][T20401]  ? kfree+0x24f/0x4d0
[  933.762028][T20401]  ? futex_unqueue+0x133/0x2c0
[  933.762073][T20401]  ___sys_sendmsg+0x134/0x1d0
[  933.762123][T20401]  ? __pfx____sys_sendmsg+0x10/0x10
[  933.762213][T20401]  ? __pfx___might_resched+0x10/0x10
[  933.762262][T20401]  __sys_sendmmsg+0x200/0x420
[  933.762319][T20401]  ? __pfx___sys_sendmmsg+0x10/0x10
[  933.762382][T20401]  ? __pfx_do_futex+0x10/0x10
[  933.762421][T20401]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  933.762491][T20401]  ? fput+0x70/0xf0
[  933.762526][T20401]  ? xfd_validate_state+0x61/0x180
[  933.762570][T20401]  ? __pfx_do_writev+0x10/0x10
[  933.762646][T20401]  __x64_sys_sendmmsg+0x9c/0x100
[  933.762696][T20401]  ? lockdep_hardirqs_on+0x7c/0x110
[  933.762745][T20401]  do_syscall_64+0xcd/0x490
[  933.762798][T20401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  933.762834][T20401] RIP: 0033:0x7f0c1658e929
[  933.762870][T20401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  933.762904][T20401] RSP: 002b:00007f0c174a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  933.762937][T20401] RAX: ffffffffffffffda RBX: 00007f0c167b5fa0 RCX: 00007f0c1658e929
[  933.762961][T20401] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  933.762981][T20401] RBP: 00007f0c16610b39 R08: 0000000000000000 R09: 0000000000000000
[  933.763001][T20401] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000000
[  933.763021][T20401] R13: 0000000000000000 R14: 00007f0c167b5fa0 R15: 00007fff70ea1648
[  933.763064][T20401]  </TASK>
[  936.034866][ T5854] Bluetooth: hci3: SCO packet for unknown connection handle 0
[  938.966751][   T30] audit: type=1804 audit(6046982510.288:38): pid=20471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.4527" name="/newroot/909/file0" dev="tmpfs" ino=4730 res=1 errno=0
[  940.540362][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  940.546907][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  941.077379][T20492] FAULT_INJECTION: forcing a failure.
[  941.077379][T20492] name failslab, interval 1, probability 0, space 0, times 0
[  941.121247][T20492] CPU: 1 UID: 0 PID: 20492 Comm: syz.3.4533 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  941.121313][T20492] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  941.121344][T20492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  941.121367][T20492] Call Trace:
[  941.121379][T20492]  <TASK>
[  941.121394][T20492]  dump_stack_lvl+0x16c/0x1f0
[  941.121467][T20492]  should_fail_ex+0x512/0x640
[  941.121521][T20492]  ? fs_reclaim_acquire+0xae/0x150
[  941.121570][T20492]  should_failslab+0xc2/0x120
[  941.121607][T20492]  __kmalloc_cache_noprof+0x6a/0x3e0
[  941.121660][T20492]  ? tomoyo_find_next_domain+0xfd/0x20b0
[  941.121707][T20492]  tomoyo_find_next_domain+0xfd/0x20b0
[  941.121768][T20492]  ? __pfx_tomoyo_find_next_domain+0x10/0x10
[  941.121828][T20492]  tomoyo_bprm_check_security+0x12e/0x1d0
[  941.121893][T20492]  ? tomoyo_bprm_check_security+0x120/0x1d0
[  941.121960][T20492]  security_bprm_check+0x1b9/0x1e0
[  941.122026][T20492]  bprm_execve+0x810/0x1650
[  941.122085][T20492]  ? __pfx_bprm_execve+0x10/0x10
[  941.122131][T20492]  ? copy_string_kernel+0x444/0x510
[  941.122192][T20492]  do_execveat_common.isra.0+0x4a5/0x610
[  941.122253][T20492]  __x64_sys_execve+0x8e/0xb0
[  941.122305][T20492]  do_syscall_64+0xcd/0x490
[  941.122364][T20492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  941.122400][T20492] RIP: 0033:0x7f0c1658e929
[  941.122436][T20492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  941.122472][T20492] RSP: 002b:00007f0c174a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  941.122506][T20492] RAX: ffffffffffffffda RBX: 00007f0c167b5fa0 RCX: 00007f0c1658e929
[  941.122529][T20492] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[  941.122551][T20492] RBP: 00007f0c16610b39 R08: 0000000000000000 R09: 0000000000000000
[  941.122572][T20492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  941.122593][T20492] R13: 0000000000000000 R14: 00007f0c167b5fa0 R15: 00007fff70ea1648
[  941.122639][T20492]  </TASK>
[  944.332996][T20540] ERROR: Out of memory at tomoyo_memory_ok.
[  944.650697][T20549] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  946.252998][T20567] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  949.130652][T20582] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  949.154340][T20582] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  949.170093][T20582] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  949.183334][T20582] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  950.950498][T20606] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  950.983887][T20606] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  951.009687][T20606] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  951.019802][T20606] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  952.306962][ T5854] Bluetooth: hci2: command 0x0406 tx timeout
[  953.029229][ T5854] Bluetooth: hci0: command 0x0406 tx timeout
[  953.035890][ T5854] Bluetooth: hci1: command 0x0406 tx timeout
[  953.049009][ T5854] Bluetooth: hci3: command 0x0406 tx timeout
[  954.016008][T20655] warning: `syz.4.4573' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  956.574098][T20681] blktrace: Concurrent blktraces are not allowed on loop2
[  956.853188][T20682] ERROR: Out of memory at tomoyo_memory_ok.
[  957.438510][T20688] FAULT_INJECTION: forcing a failure.
[  957.438510][T20688] name failslab, interval 1, probability 0, space 0, times 0
[  957.482816][T20688] CPU: 0 UID: 0 PID: 20688 Comm: syz.5.4583 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  957.482866][T20688] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  957.482877][T20688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  957.482893][T20688] Call Trace:
[  957.482901][T20688]  <TASK>
[  957.482911][T20688]  dump_stack_lvl+0x16c/0x1f0
[  957.482953][T20688]  should_fail_ex+0x512/0x640
[  957.482990][T20688]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  957.483038][T20688]  should_failslab+0xc2/0x120
[  957.483063][T20688]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  957.483106][T20688]  ? proc_create_reg+0xe3/0x180
[  957.483127][T20688]  ? fib_notifier_ops_register+0x32/0x270
[  957.483170][T20688]  ? __pfx_ipmr_net_init+0x10/0x10
[  957.483198][T20688]  kmemdup_noprof+0x29/0x60
[  957.483236][T20688]  fib_notifier_ops_register+0x32/0x270
[  957.483278][T20688]  ? __pfx_ipmr_net_init+0x10/0x10
[  957.483303][T20688]  ipmr_net_init+0x57/0x4e0
[  957.483328][T20688]  ? __pfx_ipmr_net_init+0x10/0x10
[  957.483353][T20688]  ops_init+0x1df/0x5f0
[  957.483396][T20688]  setup_net+0x1ff/0x510
[  957.483433][T20688]  ? lockdep_init_map_type+0x5c/0x280
[  957.483471][T20688]  ? __pfx_setup_net+0x10/0x10
[  957.483513][T20688]  ? debug_mutex_init+0x37/0x70
[  957.483541][T20688]  copy_net_ns+0x2a6/0x5f0
[  957.483568][T20688]  create_new_namespaces+0x3ea/0xa90
[  957.483604][T20688]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  957.483636][T20688]  ksys_unshare+0x45b/0xa40
[  957.483672][T20688]  ? __pfx_ksys_unshare+0x10/0x10
[  957.483707][T20688]  ? xfd_validate_state+0x61/0x180
[  957.483751][T20688]  __x64_sys_unshare+0x31/0x40
[  957.483785][T20688]  do_syscall_64+0xcd/0x490
[  957.483832][T20688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  957.483858][T20688] RIP: 0033:0x7fcd92f8e929
[  957.483877][T20688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  957.483902][T20688] RSP: 002b:00007fcd90df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  957.483924][T20688] RAX: ffffffffffffffda RBX: 00007fcd931b5fa0 RCX: 00007fcd92f8e929
[  957.483941][T20688] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  957.483957][T20688] RBP: 00007fcd93010b39 R08: 0000000000000000 R09: 0000000000000000
[  957.483972][T20688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  957.483987][T20688] R13: 0000000000000000 R14: 00007fcd931b5fa0 R15: 00007fff2053b5f8
[  957.484018][T20688]  </TASK>
[  961.755525][T20734] ERROR: Out of memory at tomoyo_memory_ok.
[  962.511291][T20738] ERROR: Out of memory at tomoyo_memory_ok.
[  963.794040][T20760] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4601'.
[  963.829848][T20760] hsr_slave_1: left promiscuous mode
[  968.048783][T20799] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  968.206118][T20809] ERROR: Out of memory at tomoyo_memory_ok.
[  968.288869][T20809] FAULT_INJECTION: forcing a failure.
[  968.288869][T20809] name failslab, interval 1, probability 0, space 0, times 0
[  968.359891][T20809] CPU: 1 UID: 0 PID: 20809 Comm: syz.5.4612 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  968.359953][T20809] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  968.359966][T20809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  968.359986][T20809] Call Trace:
[  968.359999][T20809]  <TASK>
[  968.360013][T20809]  dump_stack_lvl+0x16c/0x1f0
[  968.360070][T20809]  should_fail_ex+0x512/0x640
[  968.360119][T20809]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  968.360174][T20809]  should_failslab+0xc2/0x120
[  968.360206][T20809]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  968.360259][T20809]  ? __kernfs_new_node+0xd2/0x8e0
[  968.360311][T20809]  __kernfs_new_node+0xd2/0x8e0
[  968.360362][T20809]  ? kernfs_add_one+0x37d/0x840
[  968.360414][T20809]  ? __pfx___kernfs_new_node+0x10/0x10
[  968.360473][T20809]  ? find_held_lock+0x2b/0x80
[  968.360511][T20809]  ? kernfs_root+0xee/0x2a0
[  968.360568][T20809]  kernfs_new_node+0x13c/0x1e0
[  968.360626][T20809]  __kernfs_create_file+0x53/0x350
[  968.360671][T20809]  sysfs_add_file_mode_ns+0x207/0x3c0
[  968.360727][T20809]  sysfs_create_file_ns+0x13d/0x1d0
[  968.360771][T20809]  ? __pfx_sysfs_create_file_ns+0x10/0x10
[  968.360820][T20809]  ? down_read+0x13d/0x480
[  968.360853][T20809]  ? __pfx___up_read+0x10/0x10
[  968.360907][T20809]  ? acpi_device_notify+0x351/0x480
[  968.360964][T20809]  device_create_file+0xf2/0x1e0
[  968.361006][T20809]  device_add+0x2bf/0x1a70
[  968.361043][T20809]  ? __pfx_dev_set_name+0x10/0x10
[  968.361084][T20809]  ? __pfx_device_add+0x10/0x10
[  968.361120][T20809]  ? lockdep_init_map_type+0x5c/0x280
[  968.361170][T20809]  ? __init_waitqueue_head+0xca/0x150
[  968.361212][T20809]  netdev_register_kobject+0x182/0x3a0
[  968.361255][T20809]  register_netdevice+0x13dc/0x2270
[  968.361295][T20809]  ? __pfx_register_netdevice+0x10/0x10
[  968.361341][T20809]  internal_dev_create+0x2d3/0x520
[  968.361378][T20809]  ovs_vport_add+0x147/0x4d0
[  968.361432][T20809]  new_vport+0x16/0x1d0
[  968.361474][T20809]  ovs_dp_cmd_new+0x6ba/0xe60
[  968.361533][T20809]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  968.361590][T20809]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  968.361633][T20809]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  968.361687][T20809]  genl_family_rcv_msg_doit+0x209/0x2f0
[  968.361733][T20809]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  968.361776][T20809]  ? trace_cap_capable+0x18d/0x200
[  968.361830][T20809]  ? bpf_lsm_capable+0x9/0x10
[  968.361871][T20809]  ? security_capable+0x7e/0x260
[  968.361906][T20809]  ? ns_capable+0xd7/0x110
[  968.361948][T20809]  genl_rcv_msg+0x55c/0x800
[  968.361995][T20809]  ? __pfx_genl_rcv_msg+0x10/0x10
[  968.362036][T20809]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  968.362100][T20809]  netlink_rcv_skb+0x158/0x420
[  968.362136][T20809]  ? __pfx_genl_rcv_msg+0x10/0x10
[  968.362186][T20809]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  968.362241][T20809]  ? netlink_deliver_tap+0x1ae/0xd30
[  968.362303][T20809]  genl_rcv+0x28/0x40
[  968.362338][T20809]  netlink_unicast+0x53a/0x7f0
[  968.362379][T20809]  ? __pfx_netlink_unicast+0x10/0x10
[  968.362427][T20809]  netlink_sendmsg+0x8d1/0xdd0
[  968.362470][T20809]  ? __pfx_netlink_sendmsg+0x10/0x10
[  968.362523][T20809]  ____sys_sendmsg+0xa98/0xc70
[  968.362561][T20809]  ? copy_msghdr_from_user+0x10a/0x160
[  968.362612][T20809]  ? __pfx_____sys_sendmsg+0x10/0x10
[  968.362661][T20809]  ? __pfx_futex_wake_mark+0x10/0x10
[  968.362718][T20809]  ___sys_sendmsg+0x134/0x1d0
[  968.362772][T20809]  ? __pfx____sys_sendmsg+0x10/0x10
[  968.362828][T20809]  ? __lock_acquire+0x622/0x1c90
[  968.362933][T20809]  __sys_sendmsg+0x16d/0x220
[  968.362984][T20809]  ? __pfx___sys_sendmsg+0x10/0x10
[  968.363033][T20809]  ? __x64_sys_futex+0x1e0/0x4c0
[  968.363104][T20809]  do_syscall_64+0xcd/0x490
[  968.363160][T20809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  968.363193][T20809] RIP: 0033:0x7fcd92f8e929
[  968.363223][T20809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  968.363257][T20809] RSP: 002b:00007fcd90df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  968.363289][T20809] RAX: ffffffffffffffda RBX: 00007fcd931b5fa0 RCX: 00007fcd92f8e929
[  968.363312][T20809] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000007
[  968.363332][T20809] RBP: 00007fcd93010b39 R08: 0000000000000000 R09: 0000000000000000
[  968.363352][T20809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  968.363370][T20809] R13: 0000000000000000 R14: 00007fcd931b5fa0 R15: 00007fff2053b5f8
[  968.363410][T20809]  </TASK>
[  969.164943][T20818] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4614'.
[  969.306980][T20818] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  970.680811][T20824] hugetlbfs: syz.2.4617 (20824): Using mlock ulimits for SHM_HUGETLB is obsolete
[  970.713097][T20835] ERROR: Out of memory at tomoyo_memory_ok.
[  973.829544][T20885] netlink: 13 bytes leftover after parsing attributes in process `syz.4.4634'.
[  976.130828][T20916] openvswitch: netlink: nsh attribute has 14 unknown bytes.
[  976.791463][T20892] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  977.591413][T20937] FAULT_INJECTION: forcing a failure.
[  977.591413][T20937] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  977.680648][T20937] CPU: 1 UID: 0 PID: 20937 Comm: syz.3.4649 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  977.680708][T20937] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  977.680721][T20937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  977.680741][T20937] Call Trace:
[  977.680752][T20937]  <TASK>
[  977.680765][T20937]  dump_stack_lvl+0x16c/0x1f0
[  977.680824][T20937]  should_fail_ex+0x512/0x640
[  977.680878][T20937]  should_fail_alloc_page+0xe7/0x130
[  977.680918][T20937]  prepare_alloc_pages+0x3c2/0x610
[  977.680967][T20937]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  977.681025][T20937]  ? __lock_acquire+0xb8a/0x1c90
[  977.681094][T20937]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  977.681145][T20937]  ? __mutex_trylock_common+0xe9/0x250
[  977.681196][T20937]  ? __pfx___mutex_trylock_common+0x10/0x10
[  977.681248][T20937]  ? __pfx___might_resched+0x10/0x10
[  977.681293][T20937]  ? trace_contention_end+0xdd/0x130
[  977.681342][T20937]  ? __mutex_lock+0x1ca/0xb90
[  977.681396][T20937]  ? misc_open+0x63/0x420
[  977.681444][T20937]  ? __pfx___mutex_lock+0x10/0x10
[  977.681497][T20937]  __alloc_pages_noprof+0xb/0x1b0
[  977.681547][T20937]  ___kmalloc_large_node+0x84/0x1e0
[  977.681593][T20937]  __kmalloc_large_noprof+0x1c/0x70
[  977.681635][T20937]  uhid_char_open+0x24/0x250
[  977.681670][T20937]  ? __pfx_uhid_char_open+0x10/0x10
[  977.681706][T20937]  misc_open+0x35d/0x420
[  977.681748][T20937]  ? __pfx_misc_open+0x10/0x10
[  977.681790][T20937]  chrdev_open+0x231/0x6a0
[  977.681841][T20937]  ? __pfx_apparmor_file_open+0x10/0x10
[  977.681882][T20937]  ? __pfx_chrdev_open+0x10/0x10
[  977.681937][T20937]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  977.681991][T20937]  do_dentry_open+0x744/0x1c10
[  977.682043][T20937]  ? __pfx_chrdev_open+0x10/0x10
[  977.682114][T20937]  vfs_open+0x82/0x3f0
[  977.682158][T20937]  path_openat+0x1de4/0x2cb0
[  977.682219][T20937]  ? __pfx_path_openat+0x10/0x10
[  977.682272][T20937]  ? __lock_acquire+0xb8a/0x1c90
[  977.682324][T20937]  do_filp_open+0x20b/0x470
[  977.682421][T20937]  ? __pfx_do_filp_open+0x10/0x10
[  977.682505][T20937]  ? alloc_fd+0x471/0x7d0
[  977.682564][T20937]  do_sys_openat2+0x11b/0x1d0
[  977.682603][T20937]  ? __pfx_do_sys_openat2+0x10/0x10
[  977.682660][T20937]  __x64_sys_openat+0x174/0x210
[  977.682700][T20937]  ? __pfx___x64_sys_openat+0x10/0x10
[  977.682758][T20937]  do_syscall_64+0xcd/0x490
[  977.682812][T20937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  977.682847][T20937] RIP: 0033:0x7f0c1658e929
[  977.682876][T20937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  977.682907][T20937] RSP: 002b:00007f0c17485038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  977.682939][T20937] RAX: ffffffffffffffda RBX: 00007f0c167b6080 RCX: 00007f0c1658e929
[  977.682961][T20937] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  977.682982][T20937] RBP: 00007f0c16610b39 R08: 0000000000000000 R09: 0000000000000000
[  977.683002][T20937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  977.683021][T20937] R13: 0000000000000000 R14: 00007f0c167b6080 R15: 00007fff70ea1648
[  977.683064][T20937]  </TASK>
[  979.032630][T20951] ERROR: Out of memory at tomoyo_memory_ok.
[  979.397869][T20640] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  979.397925][T20640] Bluetooth: hci2: unexpected subevent 0x0e length: 725 > 15
[  979.412971][T20640] Bluetooth: hci2: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  980.513387][T20640] Bluetooth: hci1: unexpected event 0x04 length: 62 > 10
[  980.513721][T20640] Bluetooth: hci1: connection err: -111
[  980.611188][T20988] netlink: 206 bytes leftover after parsing attributes in process `syz.4.4659'.
[  983.197401][T21026] openvswitch: netlink: nsh attribute has 14 unknown bytes.
[  985.345290][T21061] ERROR: Out of memory at tomoyo_memory_ok.
[  985.412122][T21059] ERROR: Out of memory at tomoyo_memory_ok.
[  990.122510][T21122] netlink: 326 bytes leftover after parsing attributes in process `syz.4.4693'.
[  990.833912][T21127] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[  991.427963][T21128] nvme_fcloop: unknown parameter or missing value '^/]'
[  992.950291][T21152] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4701'.
[  994.365432][T21160] Malformed UNC in devname
[  994.365432][T21160] 
[  994.383992][T21160] CIFS: VFS: Malformed UNC in devname
[  995.084810][T21173] FAULT_INJECTION: forcing a failure.
[  995.084810][T21173] name fail_futex, interval 1, probability 0, space 0, times 0
[  995.114389][T21173] CPU: 1 UID: 0 PID: 21173 Comm: syz.5.4705 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[  995.114451][T21173] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[  995.114465][T21173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  995.114486][T21173] Call Trace:
[  995.114497][T21173]  <TASK>
[  995.114510][T21173]  dump_stack_lvl+0x16c/0x1f0
[  995.114569][T21173]  should_fail_ex+0x512/0x640
[  995.114635][T21173]  get_futex_key+0x1d0/0x1540
[  995.114682][T21173]  ? __pfx_get_futex_key+0x10/0x10
[  995.114724][T21173]  ? lock_mm_and_find_vma+0xa6/0x6e0
[  995.114777][T21173]  ? do_user_addr_fault+0x927/0x1370
[  995.114833][T21173]  futex_wait_setup+0x84/0x510
[  995.114894][T21173]  __futex_wait+0x194/0x2f0
[  995.114947][T21173]  ? __pfx___futex_wait+0x10/0x10
[  995.115005][T21173]  ? __pfx_futex_wake_mark+0x10/0x10
[  995.115060][T21173]  ? snd_pcm_oss_read2+0x21b/0x410
[  995.115107][T21173]  ? __futex_hash.constprop.0+0x1e9/0x440
[  995.115152][T21173]  futex_wait+0xe8/0x380
[  995.115202][T21173]  ? __pfx_futex_wait+0x10/0x10
[  995.115265][T21173]  ? task_mm_cid_work+0x6b9/0x910
[  995.115309][T21173]  do_futex+0x229/0x350
[  995.115352][T21173]  ? __pfx_do_futex+0x10/0x10
[  995.115401][T21173]  ? __pfx_task_mm_cid_work+0x10/0x10
[  995.115438][T21173]  ? __pfx___might_resched+0x10/0x10
[  995.115482][T21173]  __x64_sys_futex+0x1e0/0x4c0
[  995.115526][T21173]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  995.115573][T21173]  ? __pfx___x64_sys_futex+0x10/0x10
[  995.115622][T21173]  ? xfd_validate_state+0x61/0x180
[  995.115668][T21173]  ? __pfx_ksys_read+0x10/0x10
[  995.115731][T21173]  do_syscall_64+0xcd/0x490
[  995.115785][T21173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  995.115820][T21173] RIP: 0033:0x7fcd92f8e929
[  995.115847][T21173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  995.115880][T21173] RSP: 002b:00007fcd90dd50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  995.115912][T21173] RAX: ffffffffffffffda RBX: 00007fcd931b6088 RCX: 00007fcd92f8e929
[  995.115935][T21173] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fcd931b6088
[  995.115958][T21173] RBP: 00007fcd931b6080 R08: 0000000000000000 R09: 0000000000000000
[  995.115980][T21173] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcd931b608c
[  995.116002][T21173] R13: 0000000000000000 R14: 00007fff2053b510 R15: 00007fff2053b5f8
[  995.116047][T21173]  </TASK>
[  996.863413][   T30] audit: type=1804 audit(6046982568.489:39): pid=21182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.4707" name="/newroot/960/file0" dev="tmpfs" ino=5008 res=1 errno=0
[  998.827132][T21190] kexec: Could not allocate control_code_buffer
[ 1001.671747][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1001.682546][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1003.451037][T21261] HfR: entered promiscuous mode
[ 1003.698133][T21261] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4724'.
[ 1003.888126][T21263] openvswitch: HfR: Dropping previously announced user features
[ 1004.026436][T21261] HfR: left promiscuous mode
[ 1007.182909][T21290] ALSA: mixer_oss: invalid OSS volume ''
[ 1008.334562][T20640] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[ 1008.334609][T20640] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15
[ 1008.349905][T20640] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[ 1008.480717][T21323] syz.5.4742 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[ 1009.419192][T21332] FAULT_INJECTION: forcing a failure.
[ 1009.419192][T21332] name failslab, interval 1, probability 0, space 0, times 0
[ 1009.419282][T21332] CPU: 0 UID: 0 PID: 21332 Comm: syz.4.4743 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[ 1009.419335][T21332] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 1009.419349][T21332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1009.419368][T21332] Call Trace:
[ 1009.419379][T21332]  <TASK>
[ 1009.419393][T21332]  dump_stack_lvl+0x16c/0x1f0
[ 1009.419448][T21332]  should_fail_ex+0x512/0x640
[ 1009.419495][T21332]  ? __kmalloc_noprof+0xbf/0x510
[ 1009.419548][T21332]  ? xfrm_hash_alloc+0xd1/0x100
[ 1009.419591][T21332]  should_failslab+0xc2/0x120
[ 1009.419623][T21332]  __kmalloc_noprof+0xd2/0x510
[ 1009.419674][T21332]  ? __pfx_xfrm_statistics_seq_show+0x10/0x10
[ 1009.419712][T21332]  ? __pfx_xfrm_net_init+0x10/0x10
[ 1009.419761][T21332]  xfrm_hash_alloc+0xd1/0x100
[ 1009.419807][T21332]  xfrm_state_init+0x9c/0x630
[ 1009.419859][T21332]  ? __pfx_xfrm_net_init+0x10/0x10
[ 1009.419906][T21332]  xfrm_net_init+0x210/0xcc0
[ 1009.419962][T21332]  ? __pfx_xfrm_net_init+0x10/0x10
[ 1009.420010][T21332]  ops_init+0x1df/0x5f0
[ 1009.420068][T21332]  setup_net+0x1ff/0x510
[ 1009.420120][T21332]  ? lockdep_init_map_type+0x5c/0x280
[ 1009.420168][T21332]  ? __pfx_setup_net+0x10/0x10
[ 1009.420225][T21332]  ? debug_mutex_init+0x37/0x70
[ 1009.420271][T21332]  copy_net_ns+0x2a6/0x5f0
[ 1009.420311][T21332]  create_new_namespaces+0x3ea/0xa90
[ 1009.420362][T21332]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1009.420406][T21332]  ksys_unshare+0x45b/0xa40
[ 1009.420455][T21332]  ? __pfx_ksys_unshare+0x10/0x10
[ 1009.420505][T21332]  ? xfd_validate_state+0x61/0x180
[ 1009.420565][T21332]  __x64_sys_unshare+0x31/0x40
[ 1009.420612][T21332]  do_syscall_64+0xcd/0x490
[ 1009.420665][T21332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1009.420700][T21332] RIP: 0033:0x7f9372b8e929
[ 1009.420728][T21332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1009.420761][T21332] RSP: 002b:00007f9373a3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1009.420793][T21332] RAX: ffffffffffffffda RBX: 00007f9372db5fa0 RCX: 00007f9372b8e929
[ 1009.420814][T21332] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1009.420834][T21332] RBP: 00007f9372c10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1009.420854][T21332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1009.420874][T21332] R13: 0000000000000000 R14: 00007f9372db5fa0 R15: 00007fff177d5988
[ 1009.420917][T21332]  </TASK>
[ 1009.873371][T21337] random: crng reseeded on system resumption
[ 1011.501812][T21363] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4750'.
[ 1011.549647][T21363] netlink: 354 bytes leftover after parsing attributes in process `syz.3.4750'.
[ 1013.141218][T21371] netlink: 17 bytes leftover after parsing attributes in process `syz.3.4753'.
[ 1013.195594][T21370] ima: policy update failed
[ 1013.236459][   T30] audit: type=1802 audit(6046982584.944:40): pid=21370 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.4753" res=0 errno=0
[ 1016.728647][   T30] audit: type=1804 audit(6046982588.422:41): pid=21395 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.4759" name="/newroot/1204/file0" dev="tmpfs" ino=6271 res=1 errno=0
[ 1017.337705][T21428] device-mapper: ioctl: Unable to rename non-existent device,  to uuid �
[ 1017.917059][T21433] random: crng reseeded on system resumption
[ 1018.075174][T21435] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4768'.
[ 1018.142500][T21435] bond0: entered promiscuous mode
[ 1018.172534][T21435] : entered promiscuous mode
[ 1018.669055][T21441] netlink: 25 bytes leftover after parsing attributes in process `syz.4.4769'.
[ 1023.364809][T21479] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4778'.
[ 1027.806721][T21535] kafs: addr_prefs: Invalid Command
[ 1029.350972][    C1] vcan0: j1939_tp_rxtimer: 0xffff888060a91800: rx timeout, send abort
[ 1029.361834][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888060a91800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 1030.333357][T21561] serio: Serial port ttyS0
[ 1033.307377][T21590] random: crng reseeded on system resumption
[ 1033.436068][T21592] netlink: 326 bytes leftover after parsing attributes in process `syz.3.4808'.
[ 1035.575351][T21625] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4816'.
[ 1036.045951][T21627] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1037.082556][T21647] i2c i2c-0: new_device: Instantiated device card: at 0x01
[ 1037.796453][T21664] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4826'.
[ 1038.545578][T21672] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input30
[ 1038.809321][ T5209] ERROR: Out of memory at tomoyo_memory_ok.
[ 1039.301327][T21683] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4831'.
[ 1040.473435][T21672] ovs_��: entered promiscuous mode
[ 1041.161392][T21705] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1045.189068][T21767] vhci_hcd: invalid port number 16
[ 1045.197614][T21767] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[ 1046.576503][T21780] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input31
[ 1047.515362][T21796] netlink: 338 bytes leftover after parsing attributes in process `syz.3.4853'.
[ 1047.657142][T21796] veth1_macvtap: entered promiscuous mode
[ 1047.663158][T21796] veth1_macvtap: entered allmulticast mode
[ 1047.911382][T21792] could not allocate digest TFM handle 
[ 1048.816431][T21810] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4858'.
[ 1051.105801][T21834] FAULT_INJECTION: forcing a failure.
[ 1051.105801][T21834] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1051.122637][T21834] CPU: 1 UID: 0 PID: 21834 Comm: syz.5.4864 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[ 1051.122699][T21834] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 1051.122713][T21834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1051.122741][T21834] Call Trace:
[ 1051.122753][T21834]  <TASK>
[ 1051.122767][T21834]  dump_stack_lvl+0x16c/0x1f0
[ 1051.122823][T21834]  should_fail_ex+0x512/0x640
[ 1051.122878][T21834]  should_fail_alloc_page+0xe7/0x130
[ 1051.122913][T21834]  prepare_alloc_pages+0x3c2/0x610
[ 1051.122954][T21834]  ? rcu_is_watching+0x12/0xc0
[ 1051.122998][T21834]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1051.123063][T21834]  ? __lock_acquire+0x622/0x1c90
[ 1051.123116][T21834]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1051.123166][T21834]  ? relay_open+0x653/0xad0
[ 1051.123221][T21834]  ? rcu_read_unlock+0x17/0x60
[ 1051.123265][T21834]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1051.123319][T21834]  ? policy_nodemask+0xea/0x4e0
[ 1051.123354][T21834]  alloc_pages_mpol+0x1fb/0x550
[ 1051.123386][T21834]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1051.123415][T21834]  ? __kvmalloc_node_noprof.cold+0x60/0x65
[ 1051.123463][T21834]  ? trace_kmalloc+0x2b/0xd0
[ 1051.123495][T21834]  ? __kmalloc_noprof.cold+0x5c/0x61
[ 1051.123539][T21834]  ? relay_open_buf.part.0+0x194/0xc80
[ 1051.123588][T21834]  alloc_pages_noprof+0x131/0x390
[ 1051.123622][T21834]  relay_open_buf.part.0+0x262/0xc80
[ 1051.123682][T21834]  relay_open+0x653/0xad0
[ 1051.123727][T21834]  ? debugfs_create_file_full+0x41/0x60
[ 1051.123788][T21834]  do_blk_trace_setup+0x503/0xb50
[ 1051.123833][T21834]  blk_trace_setup+0xed/0x1b0
[ 1051.123871][T21834]  ? __pfx_blk_trace_setup+0x10/0x10
[ 1051.123908][T21834]  ? __pfx_snprintf+0x10/0x10
[ 1051.123978][T21834]  blk_trace_ioctl+0x146/0x280
[ 1051.124018][T21834]  ? __pfx_blk_trace_ioctl+0x10/0x10
[ 1051.124064][T21834]  ? find_held_lock+0x2b/0x80
[ 1051.124099][T21834]  ? hook_file_ioctl_common+0x145/0x410
[ 1051.124136][T21834]  blkdev_ioctl+0x108/0x6d0
[ 1051.124175][T21834]  ? __pfx_blkdev_ioctl+0x10/0x10
[ 1051.124218][T21834]  ? __pfx_blkdev_ioctl+0x10/0x10
[ 1051.124260][T21834]  __x64_sys_ioctl+0x18b/0x210
[ 1051.124300][T21834]  do_syscall_64+0xcd/0x490
[ 1051.124355][T21834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1051.124389][T21834] RIP: 0033:0x7fcd92f8e929
[ 1051.124418][T21834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1051.124451][T21834] RSP: 002b:00007fcd90df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1051.124484][T21834] RAX: ffffffffffffffda RBX: 00007fcd931b5fa0 RCX: 00007fcd92f8e929
[ 1051.124506][T21834] RDX: 00002000000000c0 RSI: 00000000c0481273 RDI: 0000000000000007
[ 1051.124527][T21834] RBP: 00007fcd93010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1051.124547][T21834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1051.124567][T21834] R13: 0000000000000000 R14: 00007fcd931b5fa0 R15: 00007fff2053b5f8
[ 1051.124611][T21834]  </TASK>
[ 1053.506412][T21863] snd_aloop snd_aloop.0: control 16781581:65539:6:�'x?F���/��zF˷fC���:7 is already present
[ 1055.486870][T21896] futex_wake_op: syz.3.4878 tries to shift op by -9; fix this program
[ 1062.664538][T21984] binder: 21978:21984 ioctl c018620c 0 returned -22
[ 1062.725518][T20640] Bluetooth: hci0: unexpected event for opcode 0x7c89
[ 1062.774085][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1062.780548][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1063.802340][T21995] netlink: 350 bytes leftover after parsing attributes in process `syz.4.4904'.
[ 1063.817725][T21997] netlink: 338 bytes leftover after parsing attributes in process `syz.2.4902'.
[ 1063.961368][T21997] veth1_macvtap: entered promiscuous mode
[ 1063.972339][T21997] veth1_macvtap: entered allmulticast mode
[ 1064.014533][T21991] could not allocate digest TFM handle 
[ 1065.846126][T22020] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4908'.
[ 1067.235740][T22031] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4912'.
[ 1067.285894][T22031] netlink: 'syz.4.4912': attribute type 1 has an invalid length.
[ 1067.334384][T22031] netlink: 'syz.4.4912': attribute type 6 has an invalid length.
[ 1068.628954][T22043] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4915'.
[ 1070.312594][T22053] kexec: Could not allocate control_code_buffer
[ 1070.513611][T22061] netlink: 'syz.4.4918': attribute type 1 has an invalid length.
[ 1070.633852][T22061] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1070.774435][T22063] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4919'.
[ 1075.113610][T22110] vhci_hcd: invalid port number 16
[ 1075.151628][T22110] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[ 1076.941122][T22127] program syz.4.4934 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1077.577598][T22122] capability: warning: `syz.5.4931' uses deprecated v2 capabilities in a way that may be insecure
[ 1080.370064][T22143] netlink: 'syz.3.4938': attribute type 10 has an invalid length.
[ 1080.436396][T22143] netlink: 230 bytes leftover after parsing attributes in process `syz.3.4938'.
[ 1080.666039][T22166] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1082.372469][T22187] netlink: 194 bytes leftover after parsing attributes in process `syz.2.4947'.
[ 1083.137313][T22202] netlink: 'syz.2.4951': attribute type 15 has an invalid length.
[ 1083.353524][T22202] netlink: 252 bytes leftover after parsing attributes in process `syz.2.4951'.
[ 1083.380462][T22204] netlink: 'syz.2.4951': attribute type 15 has an invalid length.
[ 1083.599798][T22204] netlink: 252 bytes leftover after parsing attributes in process `syz.2.4951'.
[ 1084.333033][T22208] tipc: Withdrawal distribution failure
[ 1084.891537][T22222] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input32
[ 1085.238161][T22217] FAULT_INJECTION: forcing a failure.
[ 1085.238161][T22217] name failslab, interval 1, probability 0, space 0, times 0
[ 1085.280711][T22217] CPU: 0 UID: 0 PID: 22217 Comm: syz.5.4954 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[ 1085.280770][T22217] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 1085.280784][T22217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1085.280803][T22217] Call Trace:
[ 1085.280826][T22217]  <TASK>
[ 1085.280841][T22217]  dump_stack_lvl+0x16c/0x1f0
[ 1085.280904][T22217]  should_fail_ex+0x512/0x640
[ 1085.280950][T22217]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1085.281004][T22217]  should_failslab+0xc2/0x120
[ 1085.281035][T22217]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1085.281088][T22217]  ? ptlock_alloc+0x1f/0x70
[ 1085.281137][T22217]  ptlock_alloc+0x1f/0x70
[ 1085.281180][T22217]  pte_alloc_one+0x82/0x3a0
[ 1085.281213][T22217]  __pte_alloc+0x6d/0x3c0
[ 1085.281247][T22217]  ? __pfx___pte_alloc+0x10/0x10
[ 1085.281282][T22217]  ? _raw_spin_unlock+0x28/0x50
[ 1085.281324][T22217]  ? __pmd_alloc+0x3fb/0x930
[ 1085.281367][T22217]  copy_page_range+0x1aed/0x5740
[ 1085.281427][T22217]  ? __lock_acquire+0x622/0x1c90
[ 1085.281507][T22217]  ? __pfx_copy_page_range+0x10/0x10
[ 1085.281552][T22217]  ? mas_store+0x7a9/0x1160
[ 1085.281584][T22217]  ? find_held_lock+0x2b/0x80
[ 1085.281620][T22217]  ? __vma_enter_locked+0x163/0x3f0
[ 1085.281688][T22217]  dup_mmap+0xe88/0x21d0
[ 1085.281745][T22217]  ? __pfx_dup_mmap+0x10/0x10
[ 1085.281826][T22217]  copy_process+0x4081/0x7650
[ 1085.281869][T22217]  ? __pfx___futex_wait+0x10/0x10
[ 1085.281934][T22217]  ? __pfx_copy_process+0x10/0x10
[ 1085.281983][T22217]  ? __lock_acquire+0xb8a/0x1c90
[ 1085.282029][T22217]  ? __futex_hash.constprop.0+0x1e9/0x440
[ 1085.282077][T22217]  kernel_clone+0xfc/0x960
[ 1085.282124][T22217]  ? __pfx_kernel_clone+0x10/0x10
[ 1085.282193][T22217]  __do_sys_clone+0xce/0x120
[ 1085.282236][T22217]  ? __pfx___do_sys_clone+0x10/0x10
[ 1085.282280][T22217]  ? ksys_unshare+0x687/0xa40
[ 1085.282346][T22217]  ? xfd_validate_state+0x61/0x180
[ 1085.282409][T22217]  do_syscall_64+0xcd/0x490
[ 1085.282461][T22217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1085.282496][T22217] RIP: 0033:0x7fcd92f8e929
[ 1085.282523][T22217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1085.282556][T22217] RSP: 002b:00007fcd90dd4fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1085.282589][T22217] RAX: ffffffffffffffda RBX: 00007fcd931b6080 RCX: 00007fcd92f8e929
[ 1085.282612][T22217] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[ 1085.282632][T22217] RBP: 00007fcd93010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1085.282652][T22217] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1085.282672][T22217] R13: 0000000000000000 R14: 00007fcd931b6080 R15: 00007fff2053b5f8
[ 1085.282717][T22217]  </TASK>
[ 1085.930155][T22233] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4956'.
[ 1086.157372][T22226] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input33
[ 1087.858025][T22255] random: crng reseeded on system resumption
[ 1089.073419][T22268] [U] 
[ 1089.076285][T22268] [U] 
[ 1089.079005][T22268] [U] 
[ 1089.081734][T22268] [U] 
[ 1089.102158][T22268] [U] 
[ 1089.104972][T22268] [U] 
[ 1089.107758][T22268] [U] 
[ 1089.110527][T22268] [U] 
[ 1089.141623][T22268] [U] 
[ 1089.144451][T22268] [U] 
[ 1089.147226][T22268] [U] 
[ 1089.149992][T22268] [U] 
[ 1089.191029][T22268] [U] 
[ 1089.193941][T22268] [U] 
[ 1089.196714][T22268] [U] 
[ 1089.199549][T22268] [U] 
[ 1089.255349][T22268] [U] 
[ 1089.258345][T22268] [U] 
[ 1089.261294][T22268] [U] 
[ 1089.264064][T22268] [U] 
[ 1089.328803][T22268] [U] 
[ 1089.331623][T22268] [U] 
[ 1089.334394][T22268] [U] 
[ 1089.337159][T22268] [U] 
[ 1089.379973][T22268] [U] 
[ 1089.382748][T22268] [U] 
[ 1089.385484][T22268] [U] 
[ 1089.388207][T22268] [U] 
[ 1089.456096][T22268] [U] 
[ 1089.458913][T22268] [U] 
[ 1089.461691][T22268] [U] 
[ 1089.464460][T22268] [U] 
[ 1089.510287][T22268] [U] 
[ 1089.513151][T22268] [U] 
[ 1089.516051][T22268] [U] 
[ 1089.518771][T22268] [U] 
[ 1089.618808][T22268] [U] 
[ 1089.621636][T22268] [U] 
[ 1089.624411][T22268] [U] 
[ 1089.627184][T22268] [U] 
[ 1089.690005][T22268] [U] 
[ 1092.753551][T22303] Invalid ELF header magic: != ELF
[ 1092.799018][T22311] sysfs_service_op_show: Client not running :-5:
[ 1096.029090][T22356] vhci_hcd: invalid port number 16
[ 1096.034302][T22356] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[ 1098.040607][T22383] tc_dump_action: action bad kind
[ 1101.336794][T22426] ERROR: Out of memory at tomoyo_memory_ok.
[ 1102.758292][T22448] Unable to find swap-space signature
[ 1104.987561][T22478] Invalid ELF header magic: != ELF
[ 1106.806774][T22499] Unable to find swap-space signature
[ 1111.295851][T22551] vivid-003: =================  START STATUS  =================
[ 1111.320319][T22551] vivid-003: Radio HW Seek Mode: Bounded
[ 1111.335658][T22551] vivid-003: Radio Programmable HW Seek: false
[ 1111.345477][T22551] vivid-003: RDS Rx I/O Mode: Block I/O
[ 1111.351366][T22551] vivid-003: Generate RBDS Instead of RDS: false
[ 1111.405553][T22551] vivid-003: RDS Reception: true
[ 1111.438108][T22551] vivid-003: RDS Program Type: 0 inactive
[ 1111.444418][T22551] vivid-003: RDS PS Name:  inactive
[ 1111.480364][T22551] vivid-003: RDS Radio Text:  inactive
[ 1111.504940][T22551] vivid-003: RDS Traffic Announcement: false inactive
[ 1111.532326][T22551] vivid-003: RDS Traffic Program: false inactive
[ 1111.564550][T22551] vivid-003: RDS Music: false inactive
[ 1111.570334][T22551] vivid-003: ==================  END STATUS  ==================
[ 1111.937067][T22552] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5031'.
[ 1112.018864][T22566] FAULT_INJECTION: forcing a failure.
[ 1112.018864][T22566] name failslab, interval 1, probability 0, space 0, times 0
[ 1112.061977][T22566] CPU: 1 UID: 0 PID: 22566 Comm: syz.5.5035 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[ 1112.062037][T22566] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 1112.062053][T22566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1112.062074][T22566] Call Trace:
[ 1112.062087][T22566]  <TASK>
[ 1112.062101][T22566]  dump_stack_lvl+0x16c/0x1f0
[ 1112.062173][T22566]  should_fail_ex+0x512/0x640
[ 1112.062220][T22566]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1112.062276][T22566]  should_failslab+0xc2/0x120
[ 1112.062310][T22566]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1112.062359][T22566]  ? __proc_create+0xc3/0x8c0
[ 1112.062408][T22566]  ? __proc_create+0x2ce/0x8c0
[ 1112.062473][T22566]  __proc_create+0x2ce/0x8c0
[ 1112.062527][T22566]  ? __pfx___proc_create+0x10/0x10
[ 1112.062587][T22566]  ? __pfx___netlink_kernel_create+0x10/0x10
[ 1112.062621][T22566]  ? fib4_semantics_init+0x25/0x100
[ 1112.062677][T22566]  proc_create_reg+0x7d/0x180
[ 1112.062713][T22566]  proc_create_seq_private+0x8e/0x1d0
[ 1112.062748][T22566]  ? __pfx_proc_create_seq_private+0x10/0x10
[ 1112.062784][T22566]  ? __pfx_nl_fib_input+0x10/0x10
[ 1112.062830][T22566]  ? __pfx_ip_rt_do_proc_init+0x10/0x10
[ 1112.062868][T22566]  ip_rt_do_proc_init+0x57/0x1b0
[ 1112.062909][T22566]  ops_init+0x1df/0x5f0
[ 1112.062967][T22566]  setup_net+0x1ff/0x510
[ 1112.063016][T22566]  ? lockdep_init_map_type+0x5c/0x280
[ 1112.063065][T22566]  ? __pfx_setup_net+0x10/0x10
[ 1112.063120][T22566]  ? debug_mutex_init+0x37/0x70
[ 1112.063159][T22566]  copy_net_ns+0x2a6/0x5f0
[ 1112.063197][T22566]  create_new_namespaces+0x3ea/0xa90
[ 1112.063246][T22566]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1112.063291][T22566]  ksys_unshare+0x45b/0xa40
[ 1112.063336][T22566]  ? __pfx_ksys_unshare+0x10/0x10
[ 1112.063385][T22566]  ? xfd_validate_state+0x61/0x180
[ 1112.063443][T22566]  __x64_sys_unshare+0x31/0x40
[ 1112.063495][T22566]  do_syscall_64+0xcd/0x490
[ 1112.063548][T22566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1112.063582][T22566] RIP: 0033:0x7fcd92f8e929
[ 1112.063616][T22566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1112.063649][T22566] RSP: 002b:00007fcd90df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1112.063681][T22566] RAX: ffffffffffffffda RBX: 00007fcd931b5fa0 RCX: 00007fcd92f8e929
[ 1112.063703][T22566] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1112.063724][T22566] RBP: 00007fcd93010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1112.063743][T22566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1112.063762][T22566] R13: 0000000000000000 R14: 00007fcd931b5fa0 R15: 00007fff2053b5f8
[ 1112.063805][T22566]  </TASK>
[ 1113.458283][T22585] Invalid ELF header magic: != ELF
[ 1113.843596][T22596] ERROR: Out of memory at tomoyo_memory_ok.
[ 1113.979137][T22567] ERROR: Out of memory at tomoyo_memory_ok.
[ 1114.128426][T22596] FAULT_INJECTION: forcing a failure.
[ 1114.128426][T22596] name failslab, interval 1, probability 0, space 0, times 0
[ 1114.231433][T22596] CPU: 1 UID: 0 PID: 22596 Comm: syz.3.5040 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[ 1114.231494][T22596] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 1114.231508][T22596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1114.231529][T22596] Call Trace:
[ 1114.231541][T22596]  <TASK>
[ 1114.231555][T22596]  dump_stack_lvl+0x16c/0x1f0
[ 1114.231627][T22596]  should_fail_ex+0x512/0x640
[ 1114.231679][T22596]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1114.231733][T22596]  should_failslab+0xc2/0x120
[ 1114.231767][T22596]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1114.231816][T22596]  ? fib6_net_init+0x1dc/0xb20
[ 1114.231867][T22596]  ? kasan_save_track+0x14/0x30
[ 1114.231919][T22596]  fib6_net_init+0x1dc/0xb20
[ 1114.231972][T22596]  ? __pfx_fib6_net_init+0x10/0x10
[ 1114.232025][T22596]  ops_init+0x1df/0x5f0
[ 1114.232082][T22596]  setup_net+0x1ff/0x510
[ 1114.232133][T22596]  ? lockdep_init_map_type+0x5c/0x280
[ 1114.232180][T22596]  ? __pfx_setup_net+0x10/0x10
[ 1114.232233][T22596]  ? debug_mutex_init+0x37/0x70
[ 1114.232270][T22596]  copy_net_ns+0x2a6/0x5f0
[ 1114.232306][T22596]  create_new_namespaces+0x3ea/0xa90
[ 1114.232350][T22596]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1114.232392][T22596]  ksys_unshare+0x45b/0xa40
[ 1114.232436][T22596]  ? __pfx_ksys_unshare+0x10/0x10
[ 1114.232482][T22596]  ? xfd_validate_state+0x61/0x180
[ 1114.232539][T22596]  __x64_sys_unshare+0x31/0x40
[ 1114.232585][T22596]  do_syscall_64+0xcd/0x490
[ 1114.232648][T22596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1114.232682][T22596] RIP: 0033:0x7f0c1658e929
[ 1114.232709][T22596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1114.232743][T22596] RSP: 002b:00007f0c174a6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1114.232774][T22596] RAX: ffffffffffffffda RBX: 00007f0c167b5fa0 RCX: 00007f0c1658e929
[ 1114.232795][T22596] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1114.232814][T22596] RBP: 00007f0c16610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1114.232833][T22596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1114.232853][T22596] R13: 0000000000000000 R14: 00007f0c167b5fa0 R15: 00007fff70ea1648
[ 1114.232895][T22596]  </TASK>
[ 1115.496088][T22623] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5045'.
[ 1115.672964][   T30] audit: type=1804 audit(4294967365.175:42): pid=22617 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.5044" name="file0" dev="tmpfs" ino=6644 res=1 errno=0
[ 1115.739158][   T30] audit: type=1800 audit(4294967365.175:43): pid=22617 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.5044" name="file0" dev="tmpfs" ino=6644 res=0 errno=0
[ 1119.018688][T22665] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5053'.
[ 1119.031353][T22665] ipvlan1: entered allmulticast mode
[ 1119.041083][T22665] veth0_vlan: entered allmulticast mode
[ 1119.140383][T22668] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5053'.
[ 1120.864429][T22686] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1123.906984][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1123.913570][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1124.220297][   T30] audit: type=1804 audit(4294967373.779:44): pid=22726 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.5065" name="file0" dev="tmpfs" ino=6676 res=1 errno=0
[ 1124.325059][   T30] audit: type=1800 audit(4294967373.799:45): pid=22726 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.5065" name="file0" dev="tmpfs" ino=6676 res=0 errno=0
[ 1126.423414][T22749] netlink: 338 bytes leftover after parsing attributes in process `syz.2.5071'.
[ 1126.454237][T22749] netlink: 338 bytes leftover after parsing attributes in process `syz.2.5071'.
[ 1126.595602][T22749] netlink: 210 bytes leftover after parsing attributes in process `syz.2.5071'.
[ 1126.606086][    C1] sd 0:0:1:0: [sda] tag#4224 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[ 1126.616606][    C1] sd 0:0:1:0: [sda] tag#4224 CDB: Write(6) 0a 00 00 00 0b 00 00 00 00 00 00 00
[ 1126.662368][T22749] netlink: 290 bytes leftover after parsing attributes in process `syz.2.5071'.
[ 1127.396240][T22759] ERROR: Out of memory at tomoyo_memory_ok.
[ 1127.462351][T22759] FAULT_INJECTION: forcing a failure.
[ 1127.462351][T22759] name failslab, interval 1, probability 0, space 0, times 0
[ 1127.476568][T22759] CPU: 1 UID: 0 PID: 22759 Comm: syz.4.5073 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[ 1127.476628][T22759] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 1127.476642][T22759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1127.476663][T22759] Call Trace:
[ 1127.476675][T22759]  <TASK>
[ 1127.476687][T22759]  dump_stack_lvl+0x16c/0x1f0
[ 1127.476743][T22759]  should_fail_ex+0x512/0x640
[ 1127.476789][T22759]  ? __kmalloc_noprof+0xbf/0x510
[ 1127.476839][T22759]  ? fib6_info_alloc+0x40/0x160
[ 1127.476886][T22759]  should_failslab+0xc2/0x120
[ 1127.476916][T22759]  __kmalloc_noprof+0xd2/0x510
[ 1127.476963][T22759]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1127.477010][T22759]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1127.477054][T22759]  ? __percpu_counter_init_many+0x2c1/0x3b0
[ 1127.477105][T22759]  fib6_info_alloc+0x40/0x160
[ 1127.477158][T22759]  ip6_route_net_init+0x85/0x8b0
[ 1127.477208][T22759]  ? inet_peer_base_init+0x76/0x120
[ 1127.477260][T22759]  ? __pfx_ip6_route_net_init+0x10/0x10
[ 1127.477309][T22759]  ops_init+0x1df/0x5f0
[ 1127.477369][T22759]  setup_net+0x1ff/0x510
[ 1127.477433][T22759]  ? lockdep_init_map_type+0x5c/0x280
[ 1127.477486][T22759]  ? __pfx_setup_net+0x10/0x10
[ 1127.477545][T22759]  ? debug_mutex_init+0x37/0x70
[ 1127.477584][T22759]  copy_net_ns+0x2a6/0x5f0
[ 1127.477624][T22759]  create_new_namespaces+0x3ea/0xa90
[ 1127.477675][T22759]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1127.477719][T22759]  ksys_unshare+0x45b/0xa40
[ 1127.477766][T22759]  ? __pfx_ksys_unshare+0x10/0x10
[ 1127.477813][T22759]  ? xfd_validate_state+0x61/0x180
[ 1127.477872][T22759]  __x64_sys_unshare+0x31/0x40
[ 1127.477918][T22759]  do_syscall_64+0xcd/0x490
[ 1127.477972][T22759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1127.478005][T22759] RIP: 0033:0x7f9372b8e929
[ 1127.478033][T22759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1127.478068][T22759] RSP: 002b:00007f9373a3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1127.478101][T22759] RAX: ffffffffffffffda RBX: 00007f9372db5fa0 RCX: 00007f9372b8e929
[ 1127.478123][T22759] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1127.478143][T22759] RBP: 00007f9372c10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1127.478164][T22759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1127.478184][T22759] R13: 0000000000000000 R14: 00007f9372db5fa0 R15: 00007fff177d5988
[ 1127.478228][T22759]  </TASK>
[ 1133.621872][T22817] FAULT_INJECTION: forcing a failure.
[ 1133.621872][T22817] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1133.690378][T22817] CPU: 0 UID: 0 PID: 22817 Comm: syz.3.5084 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[ 1133.690437][T22817] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 1133.690459][T22817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1133.690478][T22817] Call Trace:
[ 1133.690489][T22817]  <TASK>
[ 1133.690502][T22817]  dump_stack_lvl+0x16c/0x1f0
[ 1133.690559][T22817]  should_fail_ex+0x512/0x640
[ 1133.690621][T22817]  _copy_from_user+0x2e/0xd0
[ 1133.690677][T22817]  copy_msghdr_from_user+0x98/0x160
[ 1133.690725][T22817]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1133.690792][T22817]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1133.690848][T22817]  ___sys_sendmsg+0xfe/0x1d0
[ 1133.690900][T22817]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1133.690944][T22817]  ? __lock_acquire+0x622/0x1c90
[ 1133.691041][T22817]  __sys_sendmsg+0x16d/0x220
[ 1133.691092][T22817]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1133.691141][T22817]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1133.691210][T22817]  do_syscall_64+0xcd/0x490
[ 1133.691265][T22817]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1133.691300][T22817] RIP: 0033:0x7f0c1658e929
[ 1133.691327][T22817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1133.691361][T22817] RSP: 002b:00007f0c174a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1133.691393][T22817] RAX: ffffffffffffffda RBX: 00007f0c167b5fa0 RCX: 00007f0c1658e929
[ 1133.691421][T22817] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000009
[ 1133.691442][T22817] RBP: 00007f0c16610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1133.691463][T22817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1133.691481][T22817] R13: 0000000000000000 R14: 00007f0c167b5fa0 R15: 00007fff70ea1648
[ 1133.691524][T22817]  </TASK>
[ 1134.371913][T22819] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1135.133738][T22831] netlink: 186 bytes leftover after parsing attributes in process `syz.4.5089'.
[ 1138.174641][T22881] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1140.439099][T22914] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5115'.
[ 1140.680918][T22913] FAULT_INJECTION: forcing a failure.
[ 1140.680918][T22913] name failslab, interval 1, probability 0, space 0, times 0
[ 1140.719332][T22913] CPU: 1 UID: 0 PID: 22913 Comm: syz.3.5104 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[ 1140.719398][T22913] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 1140.719412][T22913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1140.719431][T22913] Call Trace:
[ 1140.719443][T22913]  <TASK>
[ 1140.719456][T22913]  dump_stack_lvl+0x16c/0x1f0
[ 1140.719511][T22913]  should_fail_ex+0x512/0x640
[ 1140.719558][T22913]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1140.719608][T22913]  should_failslab+0xc2/0x120
[ 1140.719641][T22913]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1140.719687][T22913]  ? pkcs7_parse_message+0x52/0x720
[ 1140.719736][T22913]  ? __pfx__request_firmware+0x10/0x10
[ 1140.719787][T22913]  pkcs7_parse_message+0x52/0x720
[ 1140.719843][T22913]  verify_pkcs7_signature+0x30/0xa0
[ 1140.719886][T22913]  valid_regdb+0x215/0x590
[ 1140.719922][T22913]  ? __pfx___mutex_lock+0x10/0x10
[ 1140.719975][T22913]  ? __pfx_valid_regdb+0x10/0x10
[ 1140.720026][T22913]  reg_reload_regdb+0x11e/0x460
[ 1140.720068][T22913]  ? __pfx_reg_reload_regdb+0x10/0x10
[ 1140.720111][T22913]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1140.720157][T22913]  ? nl80211_pre_doit+0x1b0/0xb10
[ 1140.720209][T22913]  genl_family_rcv_msg_doit+0x209/0x2f0
[ 1140.720254][T22913]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1140.720294][T22913]  ? rcu_is_watching+0x12/0xc0
[ 1140.720341][T22913]  ? bpf_lsm_capable+0x9/0x10
[ 1140.720382][T22913]  ? security_capable+0x7e/0x260
[ 1140.720424][T22913]  genl_rcv_msg+0x55c/0x800
[ 1140.720469][T22913]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1140.720511][T22913]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1140.720557][T22913]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[ 1140.720590][T22913]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1140.720649][T22913]  netlink_rcv_skb+0x158/0x420
[ 1140.720683][T22913]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1140.720726][T22913]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1140.720778][T22913]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1140.720835][T22913]  genl_rcv+0x28/0x40
[ 1140.720867][T22913]  netlink_unicast+0x53a/0x7f0
[ 1140.720906][T22913]  ? __pfx_netlink_unicast+0x10/0x10
[ 1140.720954][T22913]  netlink_sendmsg+0x8d1/0xdd0
[ 1140.721008][T22913]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1140.721061][T22913]  ____sys_sendmsg+0xa98/0xc70
[ 1140.721100][T22913]  ? copy_msghdr_from_user+0x10a/0x160
[ 1140.721148][T22913]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1140.721193][T22913]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1140.721248][T22913]  ___sys_sendmsg+0x134/0x1d0
[ 1140.721301][T22913]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1140.721345][T22913]  ? __lock_acquire+0x622/0x1c90
[ 1140.721446][T22913]  __sys_sendmsg+0x16d/0x220
[ 1140.721498][T22913]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1140.721546][T22913]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1140.721616][T22913]  do_syscall_64+0xcd/0x490
[ 1140.721668][T22913]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1140.721702][T22913] RIP: 0033:0x7f0c1658e929
[ 1140.721730][T22913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1140.721763][T22913] RSP: 002b:00007f0c174a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1140.721795][T22913] RAX: ffffffffffffffda RBX: 00007f0c167b5fa0 RCX: 00007f0c1658e929
[ 1140.721816][T22913] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000007
[ 1140.721835][T22913] RBP: 00007f0c16610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1140.721854][T22913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1140.721873][T22913] R13: 0000000000000000 R14: 00007f0c167b5fa0 R15: 00007fff70ea1648
[ 1140.721914][T22913]  </TASK>
[ 1141.861128][T22930] ERROR: Out of memory at tomoyo_memory_ok.
[ 1142.168708][T22932] netlink: 338 bytes leftover after parsing attributes in process `syz.3.5109'.
[ 1147.347799][T22994] ERROR: Out of memory at tomoyo_memory_ok.
[ 1147.451951][T22994] FAULT_INJECTION: forcing a failure.
[ 1147.451951][T22994] name failslab, interval 1, probability 0, space 0, times 0
[ 1147.487615][T22994] CPU: 0 UID: 0 PID: 22994 Comm: syz.5.5124 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[ 1147.487682][T22994] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 1147.487697][T22994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1147.487717][T22994] Call Trace:
[ 1147.487730][T22994]  <TASK>
[ 1147.487743][T22994]  dump_stack_lvl+0x16c/0x1f0
[ 1147.487799][T22994]  should_fail_ex+0x512/0x640
[ 1147.487847][T22994]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[ 1147.487907][T22994]  should_failslab+0xc2/0x120
[ 1147.487940][T22994]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[ 1147.487993][T22994]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1147.488041][T22994]  ? ip6_route_net_init+0xe2/0x8b0
[ 1147.488090][T22994]  ? __percpu_counter_init_many+0x2c1/0x3b0
[ 1147.488142][T22994]  kmemdup_noprof+0x29/0x60
[ 1147.488186][T22994]  ip6_route_net_init+0xe2/0x8b0
[ 1147.488226][T22994]  ? inet_peer_base_init+0x76/0x120
[ 1147.488270][T22994]  ? __pfx_ip6_route_net_init+0x10/0x10
[ 1147.488311][T22994]  ops_init+0x1df/0x5f0
[ 1147.488360][T22994]  setup_net+0x1ff/0x510
[ 1147.488403][T22994]  ? lockdep_init_map_type+0x5c/0x280
[ 1147.488446][T22994]  ? __pfx_setup_net+0x10/0x10
[ 1147.488493][T22994]  ? debug_mutex_init+0x37/0x70
[ 1147.488526][T22994]  copy_net_ns+0x2a6/0x5f0
[ 1147.488558][T22994]  create_new_namespaces+0x3ea/0xa90
[ 1147.488599][T22994]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1147.488636][T22994]  ksys_unshare+0x45b/0xa40
[ 1147.488688][T22994]  ? __pfx_ksys_unshare+0x10/0x10
[ 1147.488744][T22994]  __x64_sys_unshare+0x31/0x40
[ 1147.488782][T22994]  do_syscall_64+0xcd/0x490
[ 1147.488829][T22994]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1147.488857][T22994] RIP: 0033:0x7fcd92f8e929
[ 1147.488880][T22994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1147.488909][T22994] RSP: 002b:00007fcd90df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1147.488936][T22994] RAX: ffffffffffffffda RBX: 00007fcd931b5fa0 RCX: 00007fcd92f8e929
[ 1147.488954][T22994] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1147.488971][T22994] RBP: 00007fcd93010b39 R08: 0000000000000000 R09: 0000000000000000
[ 1147.488989][T22994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1147.489006][T22994] R13: 0000000000000000 R14: 00007fcd931b5fa0 R15: 00007fff2053b5f8
[ 1147.489043][T22994]  </TASK>
[ 1151.545447][T23028] FAULT_INJECTION: forcing a failure.
[ 1151.545447][T23028] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1151.545541][T23028] CPU: 1 UID: 0 PID: 23028 Comm: syz.4.5132 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[ 1151.545597][T23028] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 1151.545611][T23028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1151.545632][T23028] Call Trace:
[ 1151.545644][T23028]  <TASK>
[ 1151.545658][T23028]  dump_stack_lvl+0x16c/0x1f0
[ 1151.545715][T23028]  should_fail_ex+0x512/0x640
[ 1151.545773][T23028]  should_fail_alloc_page+0xe7/0x130
[ 1151.545810][T23028]  prepare_alloc_pages+0x3c2/0x610
[ 1151.545852][T23028]  ? rcu_is_watching+0x12/0xc0
[ 1151.545895][T23028]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 1151.545954][T23028]  ? rcu_is_watching+0x12/0xc0
[ 1151.545991][T23028]  ? trace_mm_page_alloc+0x11f/0x1a0
[ 1151.546030][T23028]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[ 1151.546085][T23028]  ? __pfx_stack_trace_save+0x10/0x10
[ 1151.546133][T23028]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1151.546202][T23028]  ? alloc_vmap_area+0x645/0x29c0
[ 1151.546239][T23028]  ? __vmalloc_node_range_noprof+0x271/0x14b0
[ 1151.546286][T23028]  ? __do_sys_listmount+0x1c2/0xec0
[ 1151.546326][T23028]  ? do_syscall_64+0xcd/0x490
[ 1151.546371][T23028]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1151.546424][T23028]  alloc_pages_bulk_noprof+0x71c/0x1410
[ 1151.546475][T23028]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1151.546529][T23028]  ? policy_nodemask+0xea/0x4e0
[ 1151.546567][T23028]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[ 1151.546621][T23028]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1151.546674][T23028]  kasan_populate_vmalloc+0xf1/0x1f0
[ 1151.546729][T23028]  alloc_vmap_area+0x959/0x29c0
[ 1151.546784][T23028]  ? __pfx_alloc_vmap_area+0x10/0x10
[ 1151.546832][T23028]  __get_vm_area_node+0x1ca/0x330
[ 1151.546879][T23028]  __vmalloc_node_range_noprof+0x271/0x14b0
[ 1151.546924][T23028]  ? __do_sys_listmount+0x1c2/0xec0
[ 1151.546977][T23028]  ? __lock_acquire+0xb8a/0x1c90
[ 1151.547022][T23028]  ? __do_sys_listmount+0x1c2/0xec0
[ 1151.547074][T23028]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1151.547126][T23028]  ? __alloc_pages_noprof+0xb/0x1b0
[ 1151.547176][T23028]  ? ___kmalloc_large_node+0x84/0x1e0
[ 1151.547213][T23028]  ? find_held_lock+0x2b/0x80
[ 1151.547256][T23028]  __kvmalloc_node_noprof+0x30a/0x620
[ 1151.547306][T23028]  ? __do_sys_listmount+0x1c2/0xec0
[ 1151.547350][T23028]  ? __do_sys_listmount+0x1c2/0xec0
[ 1151.547400][T23028]  ? __do_sys_listmount+0x1c2/0xec0
[ 1151.547440][T23028]  __do_sys_listmount+0x1c2/0xec0
[ 1151.547489][T23028]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1151.547528][T23028]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1151.547571][T23028]  ? __pfx___do_sys_listmount+0x10/0x10
[ 1151.547635][T23028]  do_syscall_64+0xcd/0x490
[ 1151.547688][T23028]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1151.547722][T23028] RIP: 0033:0x7f9372b8e929
[ 1151.547747][T23028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1151.547779][T23028] RSP: 002b:00007f9373a1c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 1151.547810][T23028] RAX: ffffffffffffffda RBX: 00007f9372db6080 RCX: 00007f9372b8e929
[ 1151.547827][T23028] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 1151.547843][T23028] RBP: 00007f9372c10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1151.547859][T23028] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 1151.547874][T23028] R13: 0000000000000000 R14: 00007f9372db6080 R15: 00007fff177d5988
[ 1151.547904][T23028]  </TASK>
[ 1151.665886][T23028] warn_alloc: 1 callbacks suppressed
[ 1151.665910][T23028] syz.4.5132: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1151.666048][T23028] CPU: 1 UID: 0 PID: 23028 Comm: syz.4.5132 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[ 1151.666100][T23028] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 1151.666122][T23028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1151.666141][T23028] Call Trace:
[ 1151.666153][T23028]  <TASK>
[ 1151.666166][T23028]  dump_stack_lvl+0x16c/0x1f0
[ 1151.666221][T23028]  warn_alloc+0x248/0x3a0
[ 1151.666272][T23028]  ? __pfx_warn_alloc+0x10/0x10
[ 1151.666325][T23028]  ? kfree+0x2b4/0x4d0
[ 1151.666378][T23028]  ? __get_vm_area_node+0x208/0x330
[ 1151.666428][T23028]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[ 1151.666483][T23028]  ? __lock_acquire+0xb8a/0x1c90
[ 1151.666531][T23028]  ? __do_sys_listmount+0x1c2/0xec0
[ 1151.666588][T23028]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1151.666639][T23028]  ? __alloc_pages_noprof+0xb/0x1b0
[ 1151.666689][T23028]  ? ___kmalloc_large_node+0x84/0x1e0
[ 1151.666727][T23028]  ? find_held_lock+0x2b/0x80
[ 1151.666772][T23028]  __kvmalloc_node_noprof+0x30a/0x620
[ 1151.666822][T23028]  ? __do_sys_listmount+0x1c2/0xec0
[ 1151.666869][T23028]  ? __do_sys_listmount+0x1c2/0xec0
[ 1151.666920][T23028]  ? __do_sys_listmount+0x1c2/0xec0
[ 1151.666961][T23028]  __do_sys_listmount+0x1c2/0xec0
[ 1151.667011][T23028]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1151.667052][T23028]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1151.667095][T23028]  ? __pfx___do_sys_listmount+0x10/0x10
[ 1151.667168][T23028]  do_syscall_64+0xcd/0x490
[ 1151.667224][T23028]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1151.667260][T23028] RIP: 0033:0x7f9372b8e929
[ 1151.667287][T23028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1151.667321][T23028] RSP: 002b:00007f9373a1c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 1151.667354][T23028] RAX: ffffffffffffffda RBX: 00007f9372db6080 RCX: 00007f9372b8e929
[ 1151.667378][T23028] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 1151.667399][T23028] RBP: 00007f9372c10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1151.667419][T23028] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 1151.667440][T23028] R13: 0000000000000000 R14: 00007f9372db6080 R15: 00007fff177d5988
[ 1151.667482][T23028]  </TASK>
[ 1151.667495][T23028] Mem-Info:
[ 1151.667511][T23028] active_anon:49837 inactive_anon:2 isolated_anon:0
[ 1151.667511][T23028]  active_file:11259 inactive_file:48037 isolated_file:0
[ 1151.667511][T23028]  unevictable:768 dirty:553 writeback:0
[ 1151.667511][T23028]  slab_reclaimable:14209 slab_unreclaimable:100795
[ 1151.667511][T23028]  mapped:30646 shmem:28093 pagetables:1416
[ 1151.667511][T23028]  sec_pagetables:0 bounce:0
[ 1151.667511][T23028]  kernel_misc_reclaimable:0
[ 1151.667511][T23028]  free:1270101 free_pcp:11317 free_cma:0
[ 1151.667594][T23028] Node 0 active_anon:199348kB inactive_anon:8kB active_file:45028kB inactive_file:191980kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:122576kB dirty:2204kB writeback:0kB shmem:110824kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11596kB pagetables:5496kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1151.667686][T23028] Node 1 active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:168kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:8kB dirty:8kB writeback:0kB shmem:1548kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:168kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1151.667768][T23028] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1151.667863][T23028] lowmem_reserve[]: 0 2480 2482 2482 2482
[ 1151.667931][T23028] Node 0 DMA32 free:1154104kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:199300kB inactive_anon:8kB active_file:45028kB inactive_file:190676kB unevictable:1536kB writepending:2204kB present:3129332kB managed:2540352kB mlocked:0kB bounce:0kB free_pcp:28100kB local_pcp:12384kB free_cma:0kB
[ 1151.668031][T23028] lowmem_reserve[]: 0 0 1 1 1
[ 1151.668095][T23028] Node 0 Normal free:4kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1304kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:32kB local_pcp:20kB free_cma:0kB
[ 1151.668201][T23028] lowmem_reserve[]: 0 0 0 0 0
[ 1151.668266][T23028] Node 1 Normal free:3910936kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:168kB unevictable:1536kB writepending:8kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:17136kB local_pcp:7772kB free_cma:0kB
[ 1151.668361][T23028] lowmem_reserve[]: 0 0 0 0 0
[ 1151.668425][T23028] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1151.668633][T23028] Node 0 DMA32: 2624*4kB (UME) 2139*8kB (UM) 1610*16kB (UME) 1178*32kB (UME) 760*64kB (UME) 305*128kB (UME) 248*256kB (UM) 83*512kB (UM) 49*1024kB (UM) 8*2048kB (UM) 196*4096kB (UM) = 1154104kB
[ 1151.668927][T23028] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[ 1151.669120][T23028] Node 1 Normal: 186*4kB (UME) 54*8kB (UME) 34*16kB (UME) 217*32kB (UME) 85*64kB (UME) 42*128kB (UME) 17*256kB (UME) 8*512kB (UM) 6*1024kB (UM) 3*2048kB (UM) 945*4096kB (UM) = 3910936kB
[ 1151.669422][T23028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1151.669452][T23028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1151.669481][T23028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1151.669510][T23028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1151.669539][T23028] 87387 total pagecache pages
[ 1151.669554][T23028] 2 pages in swap cache
[ 1151.669566][T23028] Free swap  = 124988kB
[ 1151.669580][T23028] Total swap = 124996kB
[ 1151.669595][T23028] 2097051 pages RAM
[ 1151.669608][T23028] 0 pages HighMem/MovableOnly
[ 1151.669621][T23028] 429985 pages reserved
[ 1151.669634][T23028] 0 pages cma reserved
[ 1156.671239][T23093] snd_aloop snd_aloop.0: Parsing timer source '
' failed with -22
[ 1156.840644][T23091] bond0: option all_slaves_active: invalid value ()
[ 1159.444863][T23138] ERROR: Out of memory at tomoyo_memory_ok.
[ 1159.704704][T23147] Console: switching to colour VGA+ 80x25
[ 1160.401274][T23147] ==================================================================
[ 1160.401300][T23147] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0xa03/0xc70
[ 1160.401368][T23147] Read of size 256 at addr ffff88807b8e4860 by task syz.4.5157/23147
[ 1160.401408][T23147] 
[ 1160.401425][T23147] CPU: 0 UID: 0 PID: 23147 Comm: syz.4.5157 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[ 1160.401471][T23147] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 1160.401483][T23147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1160.401501][T23147] Call Trace:
[ 1160.401511][T23147]  <TASK>
[ 1160.401522][T23147]  dump_stack_lvl+0x116/0x1f0
[ 1160.401571][T23147]  print_report+0xcd/0x680
[ 1160.401596][T23147]  ? __virt_addr_valid+0x81/0x610
[ 1160.401627][T23147]  ? __phys_addr+0xe8/0x180
[ 1160.401659][T23147]  ? fbcon_prepare_logo+0xa03/0xc70
[ 1160.401701][T23147]  kasan_report+0xe0/0x110
[ 1160.401727][T23147]  ? fbcon_prepare_logo+0xa03/0xc70
[ 1160.401775][T23147]  kasan_check_range+0x100/0x1b0
[ 1160.401807][T23147]  __asan_memcpy+0x23/0x60
[ 1160.401844][T23147]  fbcon_prepare_logo+0xa03/0xc70
[ 1160.401894][T23147]  fbcon_init+0xd77/0x1900
[ 1160.401938][T23147]  ? __pfx_drm_fb_helper_set_par+0x10/0x10
[ 1160.401992][T23147]  visual_init+0x31d/0x620
[ 1160.402028][T23147]  do_bind_con_driver.isra.0+0x57a/0xbf0
[ 1160.402076][T23147]  store_bind+0x61d/0x760
[ 1160.402119][T23147]  ? sysfs_file_kobj+0xe4/0x290
[ 1160.402152][T23147]  ? __pfx_store_bind+0x10/0x10
[ 1160.402193][T23147]  dev_attr_store+0x58/0x80
[ 1160.402219][T23147]  ? __pfx_dev_attr_store+0x10/0x10
[ 1160.402245][T23147]  sysfs_kf_write+0xef/0x150
[ 1160.402281][T23147]  kernfs_fop_write_iter+0x351/0x510
[ 1160.402440][T23147]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1160.402474][T23147]  vfs_write+0x6c7/0x1150
[ 1160.402511][T23147]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1160.402538][T23147]  ? __pfx___mutex_lock+0x10/0x10
[ 1160.402580][T23147]  ? __pfx_vfs_write+0x10/0x10
[ 1160.402625][T23147]  ksys_write+0x12a/0x250
[ 1160.402661][T23147]  ? __pfx_ksys_write+0x10/0x10
[ 1160.402702][T23147]  do_syscall_64+0xcd/0x490
[ 1160.402741][T23147]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1160.402767][T23147] RIP: 0033:0x7f9372b8e929
[ 1160.402787][T23147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1160.402813][T23147] RSP: 002b:00007f9373a3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1160.402837][T23147] RAX: ffffffffffffffda RBX: 00007f9372db5fa0 RCX: 00007f9372b8e929
[ 1160.402855][T23147] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003
[ 1160.402871][T23147] RBP: 00007f9372c10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1160.402887][T23147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1160.402903][T23147] R13: 0000000000000000 R14: 00007f9372db5fa0 R15: 00007fff177d5988
[ 1160.402928][T23147]  </TASK>
[ 1160.402937][T23147] 
[ 1160.402944][T23147] Allocated by task 6310:
[ 1160.402956][T23147]  kasan_save_stack+0x33/0x60
[ 1160.402992][T23147]  kasan_save_track+0x14/0x30
[ 1160.403028][T23147]  __kasan_kmalloc+0xaa/0xb0
[ 1160.403062][T23147]  __kmalloc_node_track_caller_noprof+0x221/0x510
[ 1160.403102][T23147]  kmemdup_noprof+0x29/0x60
[ 1160.403152][T23147]  bpf_prog_store_orig_filter+0xff/0x1d0
[ 1160.403190][T23147]  bpf_prog_create_from_user+0x1c3/0x2f0
[ 1160.403229][T23147]  do_seccomp+0x73a/0x2640
[ 1160.403254][T23147]  prctl_set_seccomp+0x4b/0x70
[ 1160.403281][T23147]  __do_sys_prctl+0x36d/0x24c0
[ 1160.403326][T23147]  do_syscall_64+0xcd/0x490
[ 1160.403362][T23147]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1160.403385][T23147] 
[ 1160.403391][T23147] The buggy address belongs to the object at ffff88807b8e4000
[ 1160.403391][T23147]  which belongs to the cache kmalloc-2k of size 2048
[ 1160.403412][T23147] The buggy address is located 1024 bytes to the right of
[ 1160.403412][T23147]  allocated 1120-byte region [ffff88807b8e4000, ffff88807b8e4460)
[ 1160.403438][T23147] 
[ 1160.403444][T23147] The buggy address belongs to the physical page:
[ 1160.403455][T23147] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7b8e0
[ 1160.403476][T23147] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1160.403497][T23147] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1160.403519][T23147] page_type: f5(slab)
[ 1160.403541][T23147] raw: 00fff00000000040 ffff88801b842000 dead000000000100 dead000000000122
[ 1160.403564][T23147] raw: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000
[ 1160.403589][T23147] head: 00fff00000000040 ffff88801b842000 dead000000000100 dead000000000122
[ 1160.403612][T23147] head: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000
[ 1160.403636][T23147] head: 00fff00000000003 ffffea0001ee3801 00000000ffffffff 00000000ffffffff
[ 1160.403659][T23147] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 1160.403673][T23147] page dumped because: kasan: bad access detected
[ 1160.403685][T23147] page_owner tracks the page as allocated
[ 1160.403694][T23147] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 24, tgid 24 (kworker/1:0), ts 109747501709, free_ts 109645349703
[ 1160.403739][T23147]  post_alloc_hook+0x1c0/0x230
[ 1160.403772][T23147]  get_page_from_freelist+0x1321/0x3890
[ 1160.403807][T23147]  __alloc_frozen_pages_noprof+0x261/0x23f0
[ 1160.403845][T23147]  alloc_pages_mpol+0x1fb/0x550
[ 1160.403866][T23147]  new_slab+0x23b/0x330
[ 1160.403893][T23147]  ___slab_alloc+0xd9c/0x1940
[ 1160.403923][T23147]  __slab_alloc.constprop.0+0x56/0xb0
[ 1160.403955][T23147]  __kmalloc_node_track_caller_noprof+0x2ee/0x510
[ 1160.403995][T23147]  kmalloc_reserve+0xef/0x2c0
[ 1160.404020][T23147]  __alloc_skb+0x166/0x380
[ 1160.404052][T23147]  mld_newpack.isra.0+0x18e/0xa20
[ 1160.404084][T23147]  add_grhead+0x299/0x340
[ 1160.404111][T23147]  add_grec+0x112a/0x1680
[ 1160.404142][T23147]  mld_ifc_work+0x41f/0xca0
[ 1160.404174][T23147]  process_one_work+0x9cf/0x1b70
[ 1160.404212][T23147]  worker_thread+0x6c8/0xf10
[ 1160.404250][T23147] page last free pid 5857 tgid 5857 stack trace:
[ 1160.404264][T23147]  __free_frozen_pages+0x7fe/0x1180
[ 1160.404295][T23147]  qlist_free_all+0x4d/0x120
[ 1160.404335][T23147]  kasan_quarantine_reduce+0x195/0x1e0
[ 1160.404372][T23147]  __kasan_slab_alloc+0x69/0x90
[ 1160.404409][T23147]  __kmalloc_noprof+0x1d4/0x510
[ 1160.404444][T23147]  __register_sysctl_table+0xb3/0x1900
[ 1160.404485][T23147]  neigh_sysctl_register+0x31f/0x670
[ 1160.404520][T23147]  devinet_sysctl_register+0xb6/0x200
[ 1160.404548][T23147]  inetdev_init+0x2b8/0x5a0
[ 1160.404573][T23147]  inetdev_event+0xc5f/0x18a0
[ 1160.404599][T23147]  notifier_call_chain+0xbc/0x410
[ 1160.404627][T23147]  call_netdevice_notifiers_info+0xbe/0x140
[ 1160.404655][T23147]  register_netdevice+0x182e/0x2270
[ 1160.404676][T23147]  team_newlink+0xb4/0x190
[ 1160.404711][T23147]  rtnl_newlink+0xc45/0x2000
[ 1160.404748][T23147]  rtnetlink_rcv_msg+0x95b/0xe90
[ 1160.404786][T23147] 
[ 1160.404791][T23147] Memory state around the buggy address:
[ 1160.404804][T23147]  ffff88807b8e4700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1160.404823][T23147]  ffff88807b8e4780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1160.404841][T23147] >ffff88807b8e4800: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1160.404855][T23147]                                                        ^
[ 1160.404870][T23147]  ffff88807b8e4880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1160.404888][T23147]  ffff88807b8e4900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1160.404916][T23147] ==================================================================
[ 1160.405032][T23147] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1160.405060][T23147] CPU: 0 UID: 0 PID: 23147 Comm: syz.4.5157 Tainted: G     U    I         6.16.0-rc5-syzkaller-00025-gd006330be3f7 #0 PREEMPT(full) 
[ 1160.405109][T23147] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND
[ 1160.405120][T23147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1160.405136][T23147] Call Trace:
[ 1160.405146][T23147]  <TASK>
[ 1160.405157][T23147]  dump_stack_lvl+0x3d/0x1f0
[ 1160.405195][T23147]  panic+0x71c/0x800
[ 1160.405232][T23147]  ? __pfx_panic+0x10/0x10
[ 1160.405268][T23147]  ? irqentry_exit+0x3b/0x90
[ 1160.405311][T23147]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1160.405348][T23147]  ? preempt_schedule_thunk+0x16/0x30
[ 1160.405381][T23147]  ? fbcon_prepare_logo+0xa03/0xc70
[ 1160.405420][T23147]  ? preempt_schedule_common+0x44/0xc0
[ 1160.405458][T23147]  ? fbcon_prepare_logo+0xa03/0xc70
[ 1160.405496][T23147]  check_panic_on_warn+0xab/0xb0
[ 1160.405535][T23147]  end_report+0x107/0x170
[ 1160.405558][T23147]  kasan_report+0xee/0x110
[ 1160.405581][T23147]  ? fbcon_prepare_logo+0xa03/0xc70
[ 1160.405624][T23147]  kasan_check_range+0x100/0x1b0
[ 1160.405654][T23147]  __asan_memcpy+0x23/0x60
[ 1160.405687][T23147]  fbcon_prepare_logo+0xa03/0xc70
[ 1160.405732][T23147]  fbcon_init+0xd77/0x1900
[ 1160.405771][T23147]  ? __pfx_drm_fb_helper_set_par+0x10/0x10
[ 1160.405815][T23147]  visual_init+0x31d/0x620
[ 1160.405848][T23147]  do_bind_con_driver.isra.0+0x57a/0xbf0
[ 1160.405892][T23147]  store_bind+0x61d/0x760
[ 1160.405930][T23147]  ? sysfs_file_kobj+0xe4/0x290
[ 1160.405960][T23147]  ? __pfx_store_bind+0x10/0x10
[ 1160.405996][T23147]  dev_attr_store+0x58/0x80
[ 1160.406020][T23147]  ? __pfx_dev_attr_store+0x10/0x10
[ 1160.406044][T23147]  sysfs_kf_write+0xef/0x150
[ 1160.406079][T23147]  kernfs_fop_write_iter+0x351/0x510
[ 1160.406105][T23147]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1160.406136][T23147]  vfs_write+0x6c7/0x1150
[ 1160.406172][T23147]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1160.406200][T23147]  ? __pfx___mutex_lock+0x10/0x10
[ 1160.406239][T23147]  ? __pfx_vfs_write+0x10/0x10
[ 1160.406284][T23147]  ksys_write+0x12a/0x250
[ 1160.406324][T23147]  ? __pfx_ksys_write+0x10/0x10
[ 1160.406365][T23147]  do_syscall_64+0xcd/0x490
[ 1160.406404][T23147]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1160.406431][T23147] RIP: 0033:0x7f9372b8e929
[ 1160.406450][T23147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1160.406475][T23147] RSP: 002b:00007f9373a3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1160.406499][T23147] RAX: ffffffffffffffda RBX: 00007f9372db5fa0 RCX: 00007f9372b8e929
[ 1160.406517][T23147] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000003
[ 1160.406532][T23147] RBP: 00007f9372c10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1160.406548][T23147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1160.406564][T23147] R13: 0000000000000000 R14: 00007f9372db5fa0 R15: 00007fff177d5988
[ 1160.406588][T23147]  </TASK>
[ 1160.406912][T23147] Kernel Offset: disabled